last executing test programs: 2.257893152s ago: executing program 3 (id=3379): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0, r0}, 0x10) syz_emit_ethernet(0x47, &(0x7f0000000740)={@link_local, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010700", 0x11, 0x11, 0x0, @dev, @mcast2, {[], {0x0, 0xe22, 0x11, 0x0, @opaque="9cf45339bd639da3dc"}}}}}}, 0x0) 2.228223605s ago: executing program 3 (id=3381): bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffb5, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r0, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002540)=ANY=[@ANYBLOB="0207000802"], 0x10}}, 0x0) 1.37699743s ago: executing program 2 (id=3392): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000dfffffff95"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1, 0xffffffffffffffff}, 0x4) close(0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x2}}, &(0x7f0000000000)='syzkaller\x00', 0x8, 0xc7, &(0x7f0000000140)=""/199}, 0x90) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000000), 0xfea7) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r3, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x0, 0xd, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f00000002c0), 0x1, 0x558, &(0x7f00000010c0)="$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") 1.297721866s ago: executing program 2 (id=3394): prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES8=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000590000"], 0x0}, 0x90) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000200000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000280)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x1000, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) syz_usb_disconnect(r2) 1.244772501s ago: executing program 1 (id=3395): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r3 = perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x9a, 0x0, 0x9e, 0xef, 0x0, 0x9741, 0x0, 0x8, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x7ff, 0x6}, 0x1, 0x3, 0x9, 0x4, 0x5, 0x5, 0x9, 0x0, 0x7f, 0x0, 0x7}, 0x0, 0x3, 0xffffffffffffffff, 0x2) r4 = socket(0x11, 0x800000003, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'}) setsockopt$XDP_TX_RING(r4, 0x11b, 0x3, &(0x7f0000000200)=0x2, 0x4) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10) r6 = epoll_create1(0x0) r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/stat\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r7, &(0x7f00000000c0)={0x2000000a}) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) rt_sigprocmask(0x2, &(0x7f0000000280)={[0x6]}, &(0x7f00000005c0), 0x8) setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, &(0x7f00000000c0)=0x40, 0x4) setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, 0x0, 0x0) mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, 0xffffffffffffffff, 0x180000000) syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000000), 0x7, 0x4ce, &(0x7f0000000740)="$eJzs3E9sFFUcAODfbFtaoMiKiIKoi2hsNLZQUDiYGIwmHjQx4kGPTVsIUqihNRFCZEkMHg2Jd+PRqwev6s14MvGKRxNDQgwXwNOY2Z1tt9vdpX+2Xdt+X7Ld92be7Js3b97Mm/e6G8CWVcr+JBGDEXErInZHRKExQan6dv/u1fEHd6+ORzlNT/+TZJvFvSyeS/L3nXlkqBBR+DKZX1Fn5vKV82NTU5OX8vjI7IVPR2YuX3nl3IWxs5NnJy+Onjx5/NjRE6+Nvrr8QjXJLyvXvQNfTB/c/87HN98b760tH8jf68vRKaUoNduVihc6nVmX7aoLJ73tUr6x9jvDkmXnf1ZdfZX2vzt6om3lAZtImqZpf+vV5bTR9UVLgA0riW7vAdAdtRt99vxbezXrCGxbm+5H1905VX0Aysp9P39FPFtZWBsH6Wt4vu2kUkR8VP732+wVazQOAQBQ7+dTtZ5gQ/+vGLGvLt0j+RxKMSIejYg9EfFYROyNiMejmvaJiHiy4fN7IiJtk3+pIb64/1O4vboStpf1/17P57bm+39RPwtW7MljuyJqHebJI/kxGYq+/jPnpiaPtsnjl7f++LrVuvr+X/bK8q/1BfP9uN3bMEA3MTY7tuICN7hzPeJAb2P5k96IZG4mIImI/RFxYBmfW6wLn3vp+4Nzkb6F6R5e/oq06TxaB6Yq0u8iXqzWfzkW1P98jkn7+cmRgZiaPDKSnQVHmubx2+833m+V/0PL/+NfjZu8feKn03nLWr2s/nfUnf9Rm7+dL38xiUjm5mtnlp/HjT+/avlMs9Lzf1vyYSVcey79fGx29tLRiG3Ju4uXj85vW4tn71Guln/ocPP2vyffJjsST0VEdhI/HRHPRPUJsRTptUMR8VxEHG5T/l/ffP6TlZd/bWXln2h6/VtQ//Pz9a0CSbmausmqnvOHbj1ocfFYWv0fr4SG8iXNr3/JgktEmz1dEFjt8QMAAICNoBARg3VjSYNRKAwPV8eA9saOwtT0zOzLZ6Y/uzhR/Y5AMfoKtZGu6nhwX1Ib/yzWxUcb4sfyceNverZX4sPj01MTXS05sLPS5pPC8Ny1oNr+M393ZogZ+D/zlR/Yuh7W/vfdXKcdAdad+z9sXXXtv9wiSdl/ysDmtJT7v7FA2Jyatf9rlb+tfr7KMwNsBuny23Kb3wsCNprltH/3fdhceuODuXChq3sCrDf3dNiSlvQl+RUH0v7mqwZiceIYaP+BPbGy3djeJK+uBLKeVVdy376SrWojvy3TRGF5H9gfnanTM6s/LGf3dfzkT/P5sU7X4A/r0k6bBdpfN0YH1+6aBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0En/BQAA//+NHdx3") r9 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0}, 0x48) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x2, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000002000000000000000002000018120000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70300000000000085000000ad000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000500)={r10, 0xffffffffffffffff, 0x30, 0x0, @val=@uprobe_multi={&(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)=[0x4], 0x0, 0x0, 0x1}}, 0x40) epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r7, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r3) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000e00851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000480000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2}, 0x90) 1.238836871s ago: executing program 3 (id=3396): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r3 = perf_event_open(&(0x7f0000000180)={0x3, 0x80, 0x9a, 0x0, 0x9e, 0xef, 0x0, 0x9741, 0x0, 0x8, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x7ff, 0x6}, 0x1, 0x3, 0x9, 0x4, 0x5, 0x5, 0x9, 0x0, 0x7f, 0x0, 0x7}, 0x0, 0x3, 0xffffffffffffffff, 0x2) r4 = socket(0x11, 0x800000003, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'}) setsockopt$XDP_TX_RING(r4, 0x11b, 0x3, &(0x7f0000000200)=0x2, 0x4) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10) r6 = epoll_create1(0x0) r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/stat\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r7, &(0x7f0000000040)) epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r7, &(0x7f00000000c0)={0x2000000a}) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) rt_sigprocmask(0x2, &(0x7f0000000280)={[0x6]}, &(0x7f00000005c0), 0x8) setsockopt$XDP_UMEM_FILL_RING(0xffffffffffffffff, 0x11b, 0x5, &(0x7f00000000c0)=0x40, 0x4) setsockopt$XDP_UMEM_COMPLETION_RING(0xffffffffffffffff, 0x11b, 0x6, 0x0, 0x0) mmap$xdp(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x13, 0xffffffffffffffff, 0x180000000) syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000000), 0x7, 0x4ce, &(0x7f0000000740)="$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") r9 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0}, 0x48) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x2, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000002000000000000000002000018120000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70300000000000085000000ad000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000500)={r10, 0xffffffffffffffff, 0x30, 0x0, @val=@uprobe_multi={&(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)=[0x4], 0x0, 0x0, 0x1}}, 0x40) epoll_ctl$EPOLL_CTL_MOD(r6, 0x3, r7, &(0x7f0000000000)) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r2, 0x2405, r3) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000e00851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000480000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2}, 0x90) 1.041208149s ago: executing program 3 (id=3400): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x6}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r1}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0xb98}}, 0x0) 1.008062102s ago: executing program 1 (id=3402): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x9) syz_emit_ethernet(0x0, 0x0, 0x0) 997.968092ms ago: executing program 3 (id=3403): connect$unix(0xffffffffffffffff, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1}, 0x48) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r2}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r3}, 0x10) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000380)={'pim6reg1\x00', @broadcast}) close(r4) clock_nanosleep(0x2, 0x0, &(0x7f0000000300)={0x0, 0x989680}, 0x0) timer_create(0x2, 0x0, 0x0) unshare(0x40000000) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000700)={0xffffffffffffffff, 0xe0, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f00000004c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, &(0x7f0000000500)=[0x0, 0x0, 0x0], &(0x7f0000000540)=[0x0], 0x0, 0xbb, &(0x7f0000000480)=[{}, {}, {}, {}, {}, {}, {}], 0x38, 0x10, &(0x7f0000000640), 0x0, 0x0, 0x93, 0x8, 0x8, &(0x7f00000006c0)}}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10) pipe2(&(0x7f00000000c0), 0x0) r6 = socket$unix(0x1, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r6, 0x8933, &(0x7f00000002c0)={'wg2\x00'}) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_clone(0x4000, &(0x7f0000000800), 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xb, &(0x7f0000000c80)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) 949.957897ms ago: executing program 1 (id=3404): r0 = syz_init_net_socket$llc(0x1a, 0x802, 0x0) bind$llc(r0, &(0x7f0000000000), 0x10) close(r0) 944.697887ms ago: executing program 1 (id=3405): socket$rds(0x15, 0x5, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000600)='sched_switch\x00', r1}, 0x10) r2 = socket$inet6_dccp(0xa, 0x6, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x550, 0x1c0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x480, 0xffffffff, 0xffffffff, 0x480, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x298, 0x2c0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x1c8, 0x4, 0x0, 'syz0\x00'}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5b0) bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57) r3 = socket(0x40000000015, 0x5, 0x0) getsockopt(r3, 0x200000000114, 0x2716, &(0x7f00000198c0)=""/102393, &(0x7f0000000240)=0x18ff9) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000001300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x4, [{0x0, 0x4}]}, @ptr={0x0, 0x0, 0x0, 0x4}, @ptr={0x10, 0x0, 0x0, 0x2, 0x2}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x5a}, 0x20) 928.226349ms ago: executing program 1 (id=3406): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32], 0x0, 0x10c, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x8000}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2a, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r3}, 0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020025797a31000000000900010073797a3000000000080005400000001c"], 0xe8}}, 0x0) socket$kcm(0x29, 0x2, 0x0) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040), 0x208e24b) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10) open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0) pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r6 = dup(r5) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r7, @ANYBLOB=',wfdno=', @ANYRESHEX=r6]) 828.946977ms ago: executing program 0 (id=3410): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000e41621eb70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r1}, 0x10) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r3}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000", @ANYBLOB="0000000000000000b702000014000000b70300000000000085000000830000"], 0x0}, 0x90) syz_io_uring_setup(0x320e, &(0x7f0000000280)={0x0, 0x0, 0x10100}, &(0x7f0000000180), &(0x7f0000000000)) 787.470401ms ago: executing program 0 (id=3412): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x5, 0x6, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) faccessat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x3) 717.674537ms ago: executing program 0 (id=3413): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x6}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0xb98}}, 0x0) 717.473327ms ago: executing program 4 (id=3414): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x9) syz_emit_ethernet(0x0, 0x0, 0x0) 675.649791ms ago: executing program 0 (id=3415): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) fcntl$lock(r0, 0x7, &(0x7f00000006c0)) fcntl$lock(r0, 0x26, &(0x7f0000000000)={0x1}) close(r0) 577.995369ms ago: executing program 4 (id=3416): r0 = socket$kcm(0x10, 0x2, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="d8000000180081054e81f783db4cb9040a1d080006007c09e8fc55a10a0015000600142603600e1208000f00fff00401a80008000800104004080000055c0461c1d67f6f94007134cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb71b14d6d930dfe144ecc447c65e206d254f9ea7b4084121d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db798262f3d40fad9e3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd4e1ffffffffc1c9b6278754ca397c388b0dd6e4edef3d9300", 0xd8}], 0x1}, 0x0) 565.03607ms ago: executing program 0 (id=3417): socket$packet(0x11, 0x3, 0x300) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010010850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='setgroups\x00') close_range(r2, 0xffffffffffffffff, 0x0) setresuid(0x0, 0x0, 0x0) lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', &(0x7f00000003c0)='system.posix_acl_access\x00', 0x0, 0x0, 0x0) 488.149477ms ago: executing program 2 (id=3418): r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$USBDEVFS_SUBMITURB(r4, 0xc0105500, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0}) 453.42433ms ago: executing program 4 (id=3419): socket$rds(0x15, 0x5, 0x0) r0 = socket(0x40000000015, 0x5, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000600)='sched_switch\x00', r1}, 0x10) r2 = socket$inet6_dccp(0xa, 0x6, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x550, 0x1c0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x480, 0xffffffff, 0xffffffff, 0x480, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x298, 0x2c0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x1c8, 0x4, 0x0, 'syz0\x00'}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5b0) bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57) r3 = socket(0x40000000015, 0x5, 0x0) getsockopt(r3, 0x200000000114, 0x2716, &(0x7f00000198c0)=""/102393, &(0x7f0000000240)=0x18ff9) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000001300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x3c, 0x3c, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x4}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x4, [{0x0, 0x4}]}, @ptr={0x0, 0x0, 0x0, 0x4}, @ptr={0x10, 0x0, 0x0, 0x2, 0x2}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x5a}, 0x20) 400.799435ms ago: executing program 4 (id=3420): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_mgmt(0x0, r1) sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000005c0)=ANY=[@ANYRES16=r2, @ANYBLOB, @ANYRES32=r0], 0x114}}, 0x0) sendmsg$NLBL_MGMT_C_LISTDEF(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000003c0)={0x14, r2, 0x100, 0x70bd25, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x40050}, 0x8000) semget$private(0x0, 0x2, 0x82) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket$inet6_sctp(0xa, 0x5, 0x84) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r4}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)) r5 = socket(0x11, 0x800000003, 0x0) r6 = socket(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r5, 0x8933, &(0x7f0000000600)={'team0\x00', 0x0}) sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4]}}}}]}, 0x88}}, 0x0) 360.171358ms ago: executing program 3 (id=3421): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=@base={0x5, 0x2, 0xfff, 0x7}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r2, 0x0, &(0x7f00000000c0)=0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000240), r4) sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010000000000000000000200000008000100", @ANYRES32=r3], 0x1c}}, 0x0) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r8}, 0xb) open(&(0x7f0000000180)='./file0\x00', 0x14d842, 0x0) r9 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0) fcntl$setlease(r9, 0x400, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r7}, 0x0, &(0x7f0000000500)}, 0x20) r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r10}, 0x10) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, 0x0, 0x0, 0xffffffffffffffff) syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000006c0), 0xfe, 0x246, &(0x7f0000000ac0)="$eJzs3T9oM2UcB/DvXRJf+75BXnURxD8gIloor5vg8rooFKQUEUGFioiL0gq1xa1xcnHQWaWTSxE3q6N0KS6K4FS1Q10ELQ4WBx0iybVS24ja1Jz0Ph+43l3vee73HLnvkyyXBGisq0muJ2klmU7SSVIcb3B3tVw93F2f2l5I+v0nfiqG7ar9ylG/K0l6SR5KslUWeamdrG4+s/fLzmP3vbnSuff9zaenJnqRh/b3dh8/eG/ujY9mH1z94qsf5opcT/dP13X+ihH/axfJLf9Fsf+Jol33CPgn5l/78OtB7m9Ncs8w/52UqV68t5Zv2OrkgXf/qu/bP355+yTHCpy/fr8zeA/s9YHGKZN0U5QzSartspyZqT7Df9O6XL68tPzq9ItLK4sv1D1TAeelm+w++smlj6+cyP/3rSr/wMU1yP+T8xvfDrYPWnWPBpiIO6rVIP/Tz63dH/mHxpF/aC75h+aSf2gu+Yfmkn9oLvmHC6xztNEbeVj+obnkH5pL/qG5jucfAGiW/qW6n0AG6lL3/AMAAAAAAAAAAAAAAAAAAJy2PrW9cLRMquZn7yT7jyRpj6rfGv4ecXLj8O/ln4tBsz8UVbexPHvXmCcY0wc1P31903f11v/8znrrry0mvdeTXGu3T99/xeH9d3Y3/83xzvNjFviXihP7Dz812fon/bZRb/3ZneTTwfxzbdT8U+a24Xr0/NM9/hXLZ/TKr2OeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIn5PQAA//8PK23M") r11 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.rsvd.usage_in_bytes\x00', 0x275a, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_SETFLAGS(r11, 0x40086602, &(0x7f00000006c0)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r6}, 0x10) syz_emit_ethernet(0x7e, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0008"], 0x0) 359.129388ms ago: executing program 0 (id=3422): perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x28, 0x1, 0x0, 0x0, 0x0, 0x5, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x100000, 0x7, 0x0, 0x0, 0x9ac3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10) syz_clone(0xae003400, 0x0, 0xffffff39, 0xfffffffffffffffd, 0x0, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40001, 0x0, 0x0}, 0x48) syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) r2 = socket$inet_tcp(0x2, 0x1, 0x0) close(r2) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r3, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) setsockopt$inet_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7654}]}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000300)='scalable\x00', 0x9) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10) sendmsg$inet(r3, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0) recvmsg(r3, &(0x7f0000000580)={0x0, 0x2, &(0x7f0000000500)=[{&(0x7f0000000740)=""/4096, 0xa15b0}], 0x1, 0x0, 0x2000000000000}, 0x700) setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0xfa) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) sendmsg$key(0xffffffffffffffff, &(0x7f0000000800)={0x0, 0x0, &(0x7f00008feff0)={&(0x7f0000000f00)=ANY=[], 0x40}}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, 0x0, 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r4}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x2, &(0x7f0000000100)=ANY=[@ANYBLOB="89100000000000"], 0x0}, 0x90) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000004fc0)={0x38, r5, 0x10ada85e65c25349, 0x0, 0x0, {{0x67}, {@val={0x8}, @val={0xc}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x4, 0x2}]}]}]}]}, 0x38}}, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x2200054, &(0x7f0000000140)={[{@minixdf}, {@nodelalloc}]}, 0x0, 0x236, &(0x7f0000000540)="$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") 352.960019ms ago: executing program 4 (id=3423): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x5, 0x6, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) faccessat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x3) 291.525524ms ago: executing program 4 (id=3424): r0 = syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000280), 0x1, 0x787, &(0x7f0000001000)="$eJzs3ctrXNUfAPDvnSRNk/b3SwRB6yogaKB0YmpsFVxUXIhgoaBr22EyDTWTTMlMShMCtojgRlBxIeimax9159bHVv8LF9JSNS1WXEjkzqOdNjPppM3MBPL5wMmcc++dnPOdcx/nzr3MDWDPmkj/ZCIORcRHScRYfXoSEUPV3GDEidpyt9fX8mlKYmPjzT+S6jK31tfy0fSe1IF64cmI+PH9iMOZzfWWV1bnc8ViYalenqosnJ8qr6weObeQmyvMFRaPTc/MHD3+wvFjOxfrX7+sHrz+8WvPfnPin/eeuPrhT0mciIP1ec1x7JSJmKh/JkPpR3iPV3e6sj5L+t0AHkq6aQ7UtvI4FGMxUM21MdLLlgEA3fJuRGwAAHtM4vgPAHtM43uAW+tr+Ubq7zcSvXXjlYjYX4u/cX2zNmewfs1uf/U66Oit5J4rI0lEjO9A/RMR8cV3b3+Vpqj3g2tpQC9cuhwRZ8YnNu//k033LGzXc1vN3BiuvkzcN3mvHX+gn75Pxz8vthr/Ze6Mf6LF+Ge4xbb7MB68/Weu7UA1baXjv5eb7m273RR/3fhAvfS/6phvKDl7rlhI923/j4jJGBpOy9PVRVuP3CZv/nuzXf3N478/P3nny7T+9PXuEplrg8P3vmc2V8k9atwNNy5HPDXYKv7kTv8nbca/pzqs4/WXPvi83bw0/jTeRtocf3dtXIl4pmX/3+3LZMv7E6eqq8NUY6Vo4dtfPxttV39z/6cprb9xLtALaf+Pbh3/eNJ8v2Z5+3X8fGXsh3bzHhx/6/V/X/JWNb+vPu1irlJZmo7Yl7yxefrRu+9tlBvLp/FPPt16+69V23r9T88Jz3QY/+D1379++Pi7K41/dlv9v/3M1dvzA+3q76z/Z6q5yfqUTvZ/nTbwUT47AAAAAAAAAAAAAAAAAAAAAAAAAOhUJiIORpLJ3slnMtls7Rnej8doplgqVw6fLS0vzkb1WdnjMZRp/NTlWNPvoU7Xfw+/UT56X/n5iHgsIj4dHqmWs/lScbbfwQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABA3YE2z/9P/Tbc79YBAF2zv98NAAB6zvEfAPae7R3/R7rWDgCgd5z/A8De0/Hx/0x32wEA9I7zfwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALrs1MmTadr4e30tn5ZnL6wsz5cuHJktlOezC8v5bL60dD47VyrNFQvZfGmh7T+6VHsplkrnZ2Jx+eJUpVCuTJVXVk8vlJYXK6fPLeTmCqcLQz2LDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6V15Znc8Vi4UlmS0zI7ujGbsmMxi7ohkyXcs07yVG+reDAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANjl/gsAAP//IIYqoQ==") r1 = open(&(0x7f00000000c0)='./bus\x00', 0x24142, 0x0) r2 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) r3 = open(&(0x7f0000000000)='./bus\x00', 0x60302, 0x0) r4 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085000000d000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r5}, 0xe) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000700)='/sys/power/resume', 0x149a82, 0x0) sendfile(r6, r6, 0x0, 0x5) bpf$MAP_CREATE(0x0, 0x0, 0x0) r7 = openat$ptmx(0xffffffffffffff9c, &(0x7f00001f0000), 0x1000002, 0x0) dup(r7) open(&(0x7f0000000000)='./bus\x00', 0x44542, 0x0) vmsplice(r0, &(0x7f0000000140)=[{&(0x7f00000002c0)="3726f4611853f477ad2fe6601fa231f4943c7fdf30f6f335cbe1ecad0fb4012879924937fc67a403241c00ff780d72183302284727e02535affc63c0999a1519ff52038311b411c406b5f4f3964da85a7c292b5d7c8d88f4d613b021cf4b730e5b8c7088205eb9d5fdddb073d30fce124383755b624f232737e5dac6b2b4a1d2c248f04b1e75e37fba", 0x89}], 0x1, 0x2) ftruncate(r3, 0x2007ffd) r8 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r9 = bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$PERF_EVENT_IOC_SET_BPF(r8, 0x40042408, r9) syz_open_dev$evdev(0x0, 0x0, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)) r10 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r10, 0x0, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) timer_delete(0x0) sendfile(r3, r4, 0x0, 0x1000000201005) sendfile(r1, r2, 0x0, 0x47a752ba) 215.393441ms ago: executing program 2 (id=3425): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x6}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000020900010073797a30000000000900030073797a3200000000240b0000060a010400000000000000000100000008000b4000000000fc0a048028000180080001006c6f67001c0002800e00024073797a6b616c6c65720000000800054000000008d00a01800e000100696d6d656469617465000000bc0a0280640002804c0002800900020073797a32000000000900020073797a310000000008000180fffffffc0900020073797a31000000000800034000009c920900020073797a300000000008000180ffffffff14000280080003400000000808000180fffffffb0800014000000002080001400000000b500002804b000100fa62d7ba9ceeacf9aa4f832b78f35731f355d63e192a72aef5e68a05d1b806151b6bd1e2d74abafd383790ad363fdc1b7766748630b48f9beefdb33c86d5835a470b5ffd20d7e9006c0102805c00028008000180fffffffe0900020073797a30000000000900020073797a320000000008000180ffffffff0900020073797a320000000008000180fffffffd0900020073797a310000000008000180fffffffc0800034000000e5628000280080003400000000608000340000000070900020073797a320000000008000180fffffffe540002800900020073797a320000000008000180fffffffe0800034000000000080003400000000008000340000000090900020073797a310000000008000180fffffffe080003400000800108000180fffffffd8e000100818ce881ff18470752e86442e8b77ddcfc7a4c87f05cd36147be26c85cc854cc117db1906007a5a8c298f4724c8c743d46ec7f3ba478d9dfb10bbe9e4fdfc2188d62db9bb1364fed383fe0b0c3fbbab83959470cb0ffb14765c32f10b54d99531d04caaf264214997543a1c63637d9a3a20b7ce9312e545626eb375c88462c198f35cf8a11616de4fa0c000098020280eb00010099c8e680eb4d0e7f78e1fb62226ae541d997c8cb51c5ebd0bb7e2730b61310dcd7525807288a7ad8c00f6aa230a1d1b876ddb0e188384e7c79cd8af94a02451a04d8f116bde38077da45650d82bdd1767b03e3f35bc4a5769e659d8cdb6d9d9d717c78b50f6b3ac899b07a9eaf2c989654de7d6609299bad01ca1f3fa8b6229a6c69627a07f627880e902231b20368f3ae64fd12fc37afeb95f14a4dc3d0bc5f6e2afd0fc8ef6982054cffa703ee1376654019ad6d2add9052c5d2f2e0ba3318f931b2c5f2dcce5cbca6093c64d23b64e2f2061da3dd5983644280de22d592b63b5d7f6b571beb005400010041bbc64da6bacaad1bebec23352accccbca40d6ba87943f82df945bf4ccc5250a0c2b2cb13793380f424b280bfb960885af6df4afa26efa8fcd7a1243389ef3fcf1d709f775a9cd1dfb2b84fd03e5d70f800010001950b7c0ec30534e476b721ba6e82d03078fe63b683918ecbbb9c339c8cdd63689339ac43acd5973f4aac8720a98d18e13b98e11e291f3f3621ed29c717639f84bdd28810da6ae30538775f15e00133741e9de3f96f69ab363752fa962b3c71041ba1e463a91d782a968d9febb648b66e71a6827c53b3be014b785f61c4fd46fef00658f64cdd465edb61ba4c5f00849b2935c485da99a38489ecc29837433ac5446c3922d73153fd8fb2368a5ce4201760ca6778f570b7fcb38be633a02d57c5884b6bcbaf3bc28ca7686edb5d59e1b823a8f0f5ff788625995d51c16413783c6290a9714bd4dcbd2a388139f3e46f69916f335c0002800900020073797a3000000000080003400000000908000180000000000900020073797a3000000000080003400000000808000180fffffffd080003400000000408000340fffffff908000180fffffffb0800034000000003a80002801c000280080003400000020008000340fffffff508000340000000001400028008000340000000050800034000000007720001001c2cce526d2ee30fb33f426450278cb35ac06b1cef15fefc26b5c17a8c9251bed316fccb5588f2e071fc355537fcf458cf14217f16ce4c12a4b559f3e807c94c6cc4f418baebc6024b74b9dbc5ef66dbbe91812ea247db80670c101ed494f105ad9c09b4eaf8d5c133b46a311c1a00001c0302802000028008000180fffffffc0900020073797a320000000008000340000000035c00028008000180fffffffc08000180fffffffc08000180fffffffb0900020073797a300000000008000340000000060900020073797a30000000000900020073797a31000000000900020073797a310000000008000180fffffffbf6000100330e5af714359ac9da33381a13071148dbe4293800e6be0290efbb549850cda132ca27a55553fd77c3067504c4596086f4001f53d49e8111395ebccb983c6b04735a58ab2617dfc62123b09c8dc5a47154667414dc28e8369829764b2e3cc23303a882890bad6d3a70d9e15701ec8c4c15a46d38c9ed6bc8658f8a45a02083f563324a27c649bab7cbcb485c289bd8df0a040128df6891ab48095977e0463f8e3ed7ba6df976ee30768954dfeb3f08c942b2c9384aa0b78baf92ecf5e4d73788afb1bc5a8f7c4b454897cd8bcac7f19cdd949fac66756da3b9311e13362eee317df853f6bc7e4638eb145a1484d3780e09b50000c8000100d5c1e4159bf770e02e6e1ebe911d7513709588175328d2e11f2ebf3f6967c49bedcb2a5459a45272bb8084e3bb55ea7a80166d97ec16457ed7d2a834d9aafdb2a54110ddc7975eaeda4f897ec7d533c27df0ce5ff92cfedadc67fff850ee5d07822d72b27af229d17ad2f8d802ae40d98f373e348a04b4f0270c71f82319de3a0331f165204896e0e448cf7ea0f8eb32a312fda6716f72f0234742fe6708ad0adf587ea21d94b8c8f5080028dda1e21d3d9ac82d8edd12941631b72b692ecc262d6ae12393000100c56deda494a09379df59bad8f0f17376b307ce49571034af728b1c4bf694e3b91406b976944238ab36ccaf40e3d92952ba87aa27af6353a82868c9508577a1b6a349fce75b3e4952b04b9527f496b5555e6db110dec07430b01446635eff12f136dbcb54fd4dc90b02e1bc6488ed74efd9eeb1b6de6e2a234f6c323df5c28a0352d03b34ee4f64ab614078125aa3cc0048000280080003400000000c08000340000000010900020073797a310000000008000180fffffffd0800034000008000080003400000dc5b08000180fffffffc08000180fffffffb2c0202804b000100cece2d8ff50c68c1060c2e691ddc50c6d87b46b4e5f6695010163d98bac2d9d7693cff0ec1e2107f58d3c305c78e5a596df92f1dbe80793dce5424be9e7951890023db7d0b9b2700e5000100f46e4b21dd4b92221713eece21b0e3bfb3fe995725eca78713a8d11ac82a6aefeeeab4720bd136479523ccafa34771afedeafc55275842bb7adb37ff3c93b19d9d5139f8b67ee81e380faa9506e6c8e5956cf7efc9828438d340aa4bfe771769c6ddb2f8c31049c1fc37e8f28812ea0aadd0caa7e32f6bb4b2b7a4473e5fa876c87bf285a503660ea12a0cfff6863a87c64ea83c31e737e278edcad77cb964828c7049d335e25156fd4d1c2faada6a8363794fe487155fbfd7c2e1b8504d4a744357734f51fca0426ffe929280df27411f8a90a067b285e970fa1e403722ae91dd000000f400010073e22ba6603d1c92836887468b100c2dc430efeb2ef19c66bd0582fe94df7b5a20292fdfbd2009980dbf9651685f7713bfb0f42583e452670f29e2cabf848fcdcb7a2067f0b257efd7dc927e540584b08f026e14be231afa797e36410d8ad6cbced8c5d2cce2f5a8b75713e57b3161b5b4ce78f283bf59a04f90bc1c5a4371abed0124c621ecb51b6166ad39f14216c09456232b7ea8dd7058bbbeae8b1c13df7ffa1515a359309683421d783f4fb00547cb06b3f974e65f28397c2c16675436a414b6e28d61800c35bdc05f9837e14491ce0fa7c0fbf6f61dd8f7eceac62373ed913de212a188ad5fa12d0eab8a0b440900010073797a30"], 0xb98}}, 0x0) 187.250793ms ago: executing program 2 (id=3426): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x9) syz_emit_ethernet(0x3e, &(0x7f0000000740)={@link_local, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010700", 0x8, 0x11, 0x0, @dev, @mcast2, {[], {0x0, 0xe22, 0x8}}}}}}, 0x0) 171.147374ms ago: executing program 2 (id=3427): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newtaction={0xe68, 0x30, 0x25, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{}, 0x2}, [{}, {}, {}, {}, {}, {}, {}, {0x0, 0x800}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, {}, {0x10}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x400}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x29}, {}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {0x0, 0x0, 0x20000000}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x3}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x1000, 0x0, 0x800000}, {}, {}, {}, {}, {0x0, 0x8}, {}, {}, {0x0, 0x8, 0x800}, {}, {}, {}, {0x0, 0x2}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x2}, {0x0, 0x1}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {0x4}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0) r4 = creat(&(0x7f0000000080)='./file0/file0\x00', 0x0) write$cgroup_type(r4, &(0x7f00000009c0), 0xd4ba0ff) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_TID_CONFIG(r6, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000003c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="4953000000000000000005000000080003"], 0x30}}, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f00000004c0)=ANY=[@ANYBLOB="180000000000000000000000000000008500000023000000850000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r7}, 0x10) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r8, 0x29, 0x40, &(0x7f0000000880)=@raw={'raw\x00', 0x3c1, 0x3, 0x330, 0x170, 0x150, 0x150, 0x170, 0x0, 0x260, 0x238, 0x206, 0x260, 0x238, 0x7fffffe, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'veth1_to_team\x00', 'xfrm0\x00'}, 0x0, 0x128, 0x170, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'dummy0\x00', {0x0, 0x0, 0x100, 0x0, 0x0, 0xfffffff7, 0x7}}}, @common=@inet=@ecn={{0x28}, {0x11}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00'}}}, {{@uncond, 0x0, 0xa8, 0xf0}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x390) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={0x0, r9, 0x0, 0x2, 0x2}}, 0x20) 0s ago: executing program 1 (id=3428): mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x04\x00\x00 \x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x00 [ 214.181375][T16524] dump_stack_lvl+0xf2/0x150 [ 214.186027][T16524] dump_stack+0x15/0x20 [ 214.190280][T16524] should_fail_ex+0x229/0x230 [ 214.194995][T16524] should_fail+0xb/0x10 [ 214.199210][T16524] should_fail_usercopy+0x1a/0x20 [ 214.204320][T16524] _copy_from_iter+0xd3/0xb00 [ 214.209035][T16524] ? kmalloc_reserve+0x16e/0x190 [ 214.213993][T16524] ? __build_skb_around+0x196/0x1f0 [ 214.219196][T16524] ? __alloc_skb+0x21f/0x310 [ 214.223887][T16524] ? __virt_addr_valid+0x1ed/0x250 [ 214.229007][T16524] ? __check_object_size+0x35b/0x510 [ 214.234329][T16524] netlink_sendmsg+0x460/0x6e0 [ 214.239106][T16524] ? __pfx_netlink_sendmsg+0x10/0x10 [ 214.244478][T16524] __sock_sendmsg+0x140/0x180 [ 214.249248][T16524] ____sys_sendmsg+0x312/0x410 [ 214.254066][T16524] __sys_sendmsg+0x1e9/0x280 [ 214.258682][T16524] __x64_sys_sendmsg+0x46/0x50 [ 214.263568][T16524] x64_sys_call+0x2689/0x2d60 [ 214.268452][T16524] do_syscall_64+0xc9/0x1c0 [ 214.273006][T16524] ? clear_bhb_loop+0x55/0xb0 [ 214.277704][T16524] ? clear_bhb_loop+0x55/0xb0 [ 214.282380][T16524] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 214.288377][T16524] RIP: 0033:0x7fb8c6f5cef9 [ 214.292844][T16524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 214.312521][T16524] RSP: 002b:00007fb8c5bd7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 214.320953][T16524] RAX: ffffffffffffffda RBX: 00007fb8c7115f80 RCX: 00007fb8c6f5cef9 [ 214.329090][T16524] RDX: 0000000020000090 RSI: 0000000020000080 RDI: 0000000000000006 [ 214.337093][T16524] RBP: 00007fb8c5bd7090 R08: 0000000000000000 R09: 0000000000000000 [ 214.345076][T16524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 214.353098][T16524] R13: 0000000000000000 R14: 00007fb8c7115f80 R15: 00007ffeea936468 [ 214.361086][T16524] [ 214.375250][T16467] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 214.396127][T16467] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 214.432807][ T3701] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.445759][ T29] audit: type=1326 audit(1725864947.307:20587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16530 comm="syz.4.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 214.474487][T16531] loop4: detected capacity change from 0 to 512 [ 214.503065][ T3701] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.504531][ T29] audit: type=1326 audit(1725864947.337:20588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16530 comm="syz.4.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 214.526287][T16531] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2379: bg 0: block 5: invalid block bitmap [ 214.536930][ T29] audit: type=1326 audit(1725864947.337:20589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16530 comm="syz.4.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 214.557306][T16531] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 214.572790][ T29] audit: type=1326 audit(1725864947.337:20590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16530 comm="syz.4.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 214.591821][T16531] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.2379: invalid indirect mapped block 3 (level 2) [ 214.605109][ T29] audit: type=1326 audit(1725864947.337:20591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16530 comm="syz.4.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 214.622038][T16531] EXT4-fs (loop4): 1 orphan inode deleted [ 214.641743][ T29] audit: type=1326 audit(1725864947.337:20592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16530 comm="syz.4.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 214.641833][ T29] audit: type=1326 audit(1725864947.337:20593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16530 comm="syz.4.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 214.647538][T16531] EXT4-fs (loop4): 1 truncate cleaned up [ 214.671127][ T29] audit: type=1326 audit(1725864947.337:20594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16530 comm="syz.4.2379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 214.674483][T16467] team0: Port device team_slave_0 added [ 214.733188][T16467] team0: Port device team_slave_1 added [ 214.745109][T16531] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 214.766570][T16467] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 214.773704][T16467] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 214.799761][T16467] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 214.833326][ T3701] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 214.850619][T16467] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 214.857660][T16467] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 214.884107][T16467] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 214.895431][T16537] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow [ 214.983791][T16467] hsr_slave_0: entered promiscuous mode [ 215.037125][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 215.049131][T16467] hsr_slave_1: entered promiscuous mode [ 215.057241][T16467] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 215.075264][T16467] Cannot create hsr debugfs directory [ 215.112498][ T3701] bridge_slave_1: left allmulticast mode [ 215.118226][ T3701] bridge_slave_1: left promiscuous mode [ 215.123884][ T3701] bridge0: port 2(bridge_slave_1) entered disabled state [ 215.144194][ T3701] bridge_slave_0: left allmulticast mode [ 215.149936][ T3701] bridge_slave_0: left promiscuous mode [ 215.155772][ T3701] bridge0: port 1(bridge_slave_0) entered disabled state [ 215.342365][ T3701] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 215.354305][ T3701] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 215.377705][ T3701] bond0 (unregistering): Released all slaves [ 215.562531][ T3701] hsr_slave_0: left promiscuous mode [ 215.585086][ T3701] hsr_slave_1: left promiscuous mode [ 215.597379][ T3701] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 215.604866][ T3701] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 215.615734][T16552] loop4: detected capacity change from 0 to 2048 [ 215.634541][ T3701] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 215.642023][ T3701] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 215.654847][ T3701] veth1_macvtap: left promiscuous mode [ 215.660411][ T3701] veth0_macvtap: left promiscuous mode [ 215.665964][ T3701] veth1_vlan: left promiscuous mode [ 215.671210][ T3701] veth0_vlan: left promiscuous mode [ 215.677286][T16552] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 215.749436][T16552] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 215.910716][T16577] loop0: detected capacity change from 0 to 512 [ 215.917595][ T3701] infiniband syz0: set down [ 216.010914][ T3701] team0 (unregistering): Port device team_slave_1 removed [ 216.032346][ T3701] team0 (unregistering): Port device team_slave_0 removed [ 216.100644][ T3352] smc: removing ib device syz0 [ 216.123078][T13479] infiniband syz0: ib_query_port failed (-19) [ 216.539435][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 216.562167][T16467] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 216.601623][T16467] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 216.639373][T16467] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 216.676590][T16467] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 216.799463][T16467] 8021q: adding VLAN 0 to HW filter on device bond0 [ 216.822259][T16467] 8021q: adding VLAN 0 to HW filter on device team0 [ 216.838888][ T3940] bridge0: port 1(bridge_slave_0) entered blocking state [ 216.846009][ T3940] bridge0: port 1(bridge_slave_0) entered forwarding state [ 216.862227][ T3940] bridge0: port 2(bridge_slave_1) entered blocking state [ 216.869369][ T3940] bridge0: port 2(bridge_slave_1) entered forwarding state [ 216.897847][T16586] loop1: detected capacity change from 0 to 512 [ 216.919834][T16586] EXT4-fs: Ignoring removed nobh option [ 216.925518][T16586] EXT4-fs: Ignoring removed nobh option [ 216.939466][T16586] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 216.952182][T16586] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2397: invalid indirect mapped block 2683928664 (level 1) [ 216.975246][T16586] EXT4-fs (loop1): 1 truncate cleaned up [ 216.982295][T16586] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 217.016053][T16467] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 217.029636][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 217.110500][T16609] loop4: detected capacity change from 0 to 2048 [ 217.179702][T16467] veth0_vlan: entered promiscuous mode [ 217.189918][T16467] veth1_vlan: entered promiscuous mode [ 217.209938][T16467] veth0_macvtap: entered promiscuous mode [ 217.227911][T16467] veth1_macvtap: entered promiscuous mode [ 217.236647][T16609] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 217.253273][T16467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.263862][T16467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.273804][T16467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.284316][T16467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.294177][T16467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.304713][T16467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.312793][T16609] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 217.314565][T16467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.339966][T16467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.350113][T16467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.360613][T16467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.370668][T16467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 217.381279][T16467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.394823][T16467] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 217.403416][T16467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 217.413995][T16467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.423899][T16467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 217.434671][T16467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.444554][T16467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 217.455200][T16467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.465333][T16467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 217.475884][T16467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.485737][T16467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 217.496185][T16467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 217.507436][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 217.511864][T16467] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 217.535117][T16467] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 217.544245][T16467] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 217.553344][T16467] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 217.562058][T16467] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 217.642632][T16639] loop1: detected capacity change from 0 to 512 [ 217.658070][T16639] EXT4-fs: Ignoring removed nobh option [ 217.663829][T16639] EXT4-fs: Ignoring removed nobh option [ 217.677003][T16639] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 217.686406][T16639] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2414: invalid indirect mapped block 2683928664 (level 1) [ 217.703657][T16639] EXT4-fs (loop1): 1 truncate cleaned up [ 217.710156][T16639] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.102438][ T3940] bridge_slave_1: left allmulticast mode [ 218.108305][ T3940] bridge_slave_1: left promiscuous mode [ 218.115075][ T3940] bridge0: port 2(bridge_slave_1) entered disabled state [ 218.169645][ T3940] bridge_slave_0: left allmulticast mode [ 218.175413][ T3940] bridge_slave_0: left promiscuous mode [ 218.181250][ T3940] bridge0: port 1(bridge_slave_0) entered disabled state [ 218.219588][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.307356][T16668] loop1: detected capacity change from 0 to 2048 [ 218.337943][T16668] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 218.390480][T16668] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 218.460870][ T3940] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 218.501562][ T3940] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 218.539317][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.552620][ T3940] bond0 (unregistering): Released all slaves [ 218.582014][T16673] Falling back ldisc for ptm0. [ 218.591551][T16682] netlink: 'syz.0.2429': attribute type 21 has an invalid length. [ 219.583812][ T3940] hsr_slave_0: left promiscuous mode [ 219.604371][ T3940] hsr_slave_1: left promiscuous mode [ 219.619503][T16707] loop0: detected capacity change from 0 to 512 [ 219.632585][T16707] EXT4-fs: Ignoring removed nobh option [ 219.638272][T16707] EXT4-fs: Ignoring removed nobh option [ 219.653738][T16714] loop2: detected capacity change from 0 to 2048 [ 219.670505][ T3940] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 219.678028][ T3940] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 219.704500][ T3940] veth1_macvtap: left promiscuous mode [ 219.710068][ T3940] veth0_macvtap: left promiscuous mode [ 219.722854][T16721] loop2: detected capacity change from 0 to 512 [ 219.960347][ T3940] team0 (unregistering): Port device team_slave_1 removed [ 220.094912][ T3940] team0 (unregistering): Port device team_slave_0 removed [ 220.964668][T16731] netlink: 'syz.0.2449': attribute type 21 has an invalid length. [ 221.026284][T16758] loop4: detected capacity change from 0 to 512 [ 221.042891][T16758] EXT4-fs: Ignoring removed nobh option [ 221.048517][T16758] EXT4-fs: Ignoring removed nobh option [ 221.078172][T16760] loop2: detected capacity change from 0 to 2048 [ 221.103270][T16758] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 221.113055][T16760] loop2: detected capacity change from 0 to 512 [ 221.126274][T16758] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2458: invalid indirect mapped block 2683928664 (level 1) [ 221.143428][T16758] EXT4-fs (loop4): 1 truncate cleaned up [ 221.149544][T16758] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 221.274567][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.251575][T16802] loop0: detected capacity change from 0 to 2048 [ 222.260691][T16806] netlink: 'syz.4.2471': attribute type 21 has an invalid length. [ 222.351725][T16802] loop0: detected capacity change from 0 to 512 [ 222.375042][T16816] loop4: detected capacity change from 0 to 512 [ 222.388160][T16816] EXT4-fs: Ignoring removed nobh option [ 222.393860][T16816] EXT4-fs: Ignoring removed nobh option [ 222.399645][ T29] kauditd_printk_skb: 148 callbacks suppressed [ 222.399661][ T29] audit: type=1326 audit(1725864955.265:20743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16814 comm="syz.3.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 222.430028][ T29] audit: type=1326 audit(1725864955.265:20744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16814 comm="syz.3.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 222.453723][ T29] audit: type=1326 audit(1725864955.265:20745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16814 comm="syz.3.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 222.467666][T16816] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 222.477615][ T29] audit: type=1326 audit(1725864955.265:20746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16814 comm="syz.3.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 222.510071][ T29] audit: type=1326 audit(1725864955.265:20747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16814 comm="syz.3.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 222.533795][ T29] audit: type=1326 audit(1725864955.265:20748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16814 comm="syz.3.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 222.533995][T16816] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2482: invalid indirect mapped block 2683928664 (level 1) [ 222.557866][ T29] audit: type=1326 audit(1725864955.265:20749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16814 comm="syz.3.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 222.595602][ T29] audit: type=1326 audit(1725864955.265:20750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16814 comm="syz.3.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 222.619235][ T29] audit: type=1326 audit(1725864955.265:20751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16814 comm="syz.3.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 222.642957][ T29] audit: type=1326 audit(1725864955.265:20752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16814 comm="syz.3.2483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 222.671656][T16816] EXT4-fs (loop4): 1 truncate cleaned up [ 222.677844][T16816] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 222.761093][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.789620][T16839] netlink: 'syz.2.2493': attribute type 21 has an invalid length. [ 223.785711][T16862] loop1: detected capacity change from 0 to 512 [ 223.813150][T16862] EXT4-fs: Ignoring removed nobh option [ 223.818901][T16862] EXT4-fs: Ignoring removed nobh option [ 223.850644][T16866] loop3: detected capacity change from 0 to 2048 [ 223.860315][T16862] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 223.874069][T16862] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.2500: invalid indirect mapped block 2683928664 (level 1) [ 223.912812][T16862] EXT4-fs (loop1): 1 truncate cleaned up [ 223.923180][T16862] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 223.945573][T16877] netlink: 'syz.4.2506': attribute type 21 has an invalid length. [ 223.964770][T16866] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 224.009540][T16866] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 224.029143][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.646463][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.666687][T16907] loop4: detected capacity change from 0 to 512 [ 225.677870][T16907] EXT4-fs: Ignoring removed nobh option [ 225.683462][T16907] EXT4-fs: Ignoring removed nobh option [ 225.697341][T16907] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 225.713680][T16907] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2518: invalid indirect mapped block 2683928664 (level 1) [ 225.735366][T16914] netlink: 'syz.2.2520': attribute type 21 has an invalid length. [ 225.746280][T16907] EXT4-fs (loop4): 1 truncate cleaned up [ 225.752241][T16907] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 225.878730][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.900705][T16926] Cannot find del_set index 0 as target [ 226.021748][T16928] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2526'. [ 227.035458][T16949] loop0: detected capacity change from 0 to 512 [ 227.186430][T16957] netlink: 'syz.3.2539': attribute type 21 has an invalid length. [ 227.328895][T16978] loop3: detected capacity change from 0 to 2048 [ 227.369406][T16978] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 227.389333][T16978] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 227.411272][T16984] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2544'. [ 227.436253][ T29] kauditd_printk_skb: 117 callbacks suppressed [ 227.436280][ T29] audit: type=1326 audit(1725864960.292:20870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16971 comm="syz.1.2544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 227.466359][ T29] audit: type=1326 audit(1725864960.292:20871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16971 comm="syz.1.2544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 227.490008][ T29] audit: type=1326 audit(1725864960.292:20872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16971 comm="syz.1.2544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 227.513660][ T29] audit: type=1326 audit(1725864960.292:20873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16971 comm="syz.1.2544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 227.537363][ T29] audit: type=1326 audit(1725864960.292:20874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16971 comm="syz.1.2544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 227.561149][ T29] audit: type=1326 audit(1725864960.292:20875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16971 comm="syz.1.2544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 227.584877][ T29] audit: type=1326 audit(1725864960.292:20876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16971 comm="syz.1.2544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 227.608651][ T29] audit: type=1326 audit(1725864960.292:20877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16971 comm="syz.1.2544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 227.632281][ T29] audit: type=1326 audit(1725864960.292:20878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16971 comm="syz.1.2544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 227.655883][ T29] audit: type=1326 audit(1725864960.292:20879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16971 comm="syz.1.2544" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f784e01b890 code=0x7ffc0000 [ 228.921476][T16972] xt_CT: No such helper "syz0" [ 229.017976][T16995] loop0: detected capacity change from 0 to 512 [ 229.028378][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.032707][T16997] netlink: 'syz.4.2551': attribute type 21 has an invalid length. [ 229.277562][T17023] netlink: 'syz.0.2563': attribute type 21 has an invalid length. [ 230.532343][T17026] loop0: detected capacity change from 0 to 2048 [ 230.548726][T17017] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2559'. [ 230.566702][T17026] loop0: detected capacity change from 0 to 512 [ 230.707467][T17033] loop2: detected capacity change from 0 to 512 [ 230.834216][T17051] netlink: 'syz.0.2574': attribute type 21 has an invalid length. [ 230.986031][T17066] loop2: detected capacity change from 0 to 128 [ 231.002014][T17067] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2575'. [ 231.028339][T17041] xt_CT: No such helper "syz0" [ 231.875488][T17077] loop2: detected capacity change from 0 to 2048 [ 231.920611][T17077] loop2: detected capacity change from 0 to 512 [ 231.947826][T17079] loop1: detected capacity change from 0 to 512 [ 231.979512][T17079] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.2583: bg 0: block 5: invalid block bitmap [ 232.003624][T17079] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 232.017383][T17079] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.2583: invalid indirect mapped block 3 (level 2) [ 232.034237][T17079] EXT4-fs (loop1): 1 orphan inode deleted [ 232.040108][T17079] EXT4-fs (loop1): 1 truncate cleaned up [ 232.046636][T17079] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 232.088426][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.160079][T17098] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2591'. [ 233.276544][ T29] kauditd_printk_skb: 270 callbacks suppressed [ 233.276560][ T29] audit: type=1326 audit(1725864966.158:21150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17131 comm="syz.1.2603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 233.283301][T17132] loop1: detected capacity change from 0 to 512 [ 233.306550][ T29] audit: type=1326 audit(1725864966.158:21151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17131 comm="syz.1.2603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 233.306592][ T29] audit: type=1326 audit(1725864966.158:21152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17131 comm="syz.1.2603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 233.327369][T17130] loop4: detected capacity change from 0 to 2048 [ 233.336427][ T29] audit: type=1326 audit(1725864966.158:21153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17131 comm="syz.1.2603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 233.390068][ T29] audit: type=1326 audit(1725864966.158:21154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17133 comm="syz.3.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 233.413717][ T29] audit: type=1326 audit(1725864966.158:21155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17133 comm="syz.3.2604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 233.421541][T17132] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.2603: bg 0: block 5: invalid block bitmap [ 233.437329][ T29] audit: type=1326 audit(1725864966.158:21156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17131 comm="syz.1.2603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 233.437440][ T29] audit: type=1326 audit(1725864966.158:21157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17131 comm="syz.1.2603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 233.437478][ T29] audit: type=1326 audit(1725864966.158:21158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17131 comm="syz.1.2603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 233.437542][ T29] audit: type=1326 audit(1725864966.158:21159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17131 comm="syz.1.2603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 233.441958][T17130] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.506479][T17132] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 233.534091][T17136] xt_CT: No such helper "syz0" [ 233.547982][T17132] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.2603: invalid indirect mapped block 3 (level 2) [ 233.614783][T17130] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 233.617877][T17132] EXT4-fs (loop1): 1 orphan inode deleted [ 233.635298][T17132] EXT4-fs (loop1): 1 truncate cleaned up [ 233.641909][T17132] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 233.685518][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.705456][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.823966][T17152] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2608'. [ 234.754425][T17180] loop0: detected capacity change from 0 to 512 [ 234.817744][T17184] loop1: detected capacity change from 0 to 2048 [ 234.836564][T17184] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.851668][T17184] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 234.904453][T17186] xt_CT: No such helper "syz0" [ 234.910258][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.142014][T17206] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2626'. [ 235.535167][T17217] loop4: detected capacity change from 0 to 512 [ 235.543859][T17217] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2632: bg 0: block 5: invalid block bitmap [ 235.557082][T17217] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 235.566772][T17217] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.2632: invalid indirect mapped block 3 (level 2) [ 235.580648][T17217] EXT4-fs (loop4): 1 orphan inode deleted [ 235.586531][T17217] EXT4-fs (loop4): 1 truncate cleaned up [ 235.592577][T17217] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 235.627908][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.682999][T17225] loop4: detected capacity change from 0 to 2048 [ 235.696248][T17225] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 235.710078][T17225] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 235.740421][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.073905][T17233] xt_CT: No such helper "syz0" [ 236.223087][T17250] loop1: detected capacity change from 0 to 512 [ 236.233161][T17250] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.2644: bg 0: block 5: invalid block bitmap [ 236.248700][T17250] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 236.258069][T17250] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.2644: invalid indirect mapped block 3 (level 2) [ 236.274068][T17250] EXT4-fs (loop1): 1 orphan inode deleted [ 236.279951][T17250] EXT4-fs (loop1): 1 truncate cleaned up [ 236.286264][T17250] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 236.334511][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.381856][T17261] loop0: detected capacity change from 0 to 2048 [ 236.400855][T17261] loop0: detected capacity change from 0 to 512 [ 236.472411][T17263] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2650'. [ 236.752860][T17274] xt_CT: No such helper "syz0" [ 236.919508][T17287] loop0: detected capacity change from 0 to 512 [ 237.606901][T17311] xt_CT: No such helper "syz0" [ 237.748886][T17314] loop4: detected capacity change from 0 to 512 [ 237.757414][T17314] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2669: bg 0: block 5: invalid block bitmap [ 237.770042][T17314] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 237.779037][T17314] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.2669: invalid indirect mapped block 3 (level 2) [ 237.793821][T17314] EXT4-fs (loop4): 1 orphan inode deleted [ 237.799582][T17314] EXT4-fs (loop4): 1 truncate cleaned up [ 237.805639][T17314] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 237.840615][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 237.867320][T17318] loop4: detected capacity change from 0 to 2048 [ 237.885618][T17318] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 237.900742][T17318] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 237.965268][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.123381][T17341] loop4: detected capacity change from 0 to 512 [ 238.132010][T17341] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2680: bg 0: block 5: invalid block bitmap [ 238.145176][T17341] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 238.155830][T17341] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.2680: invalid indirect mapped block 3 (level 2) [ 238.169727][T17341] EXT4-fs (loop4): 1 orphan inode deleted [ 238.175517][T17341] EXT4-fs (loop4): 1 truncate cleaned up [ 238.185484][T17341] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 238.238959][T17336] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2678'. [ 238.295899][ T29] kauditd_printk_skb: 526 callbacks suppressed [ 238.295918][ T29] audit: type=1326 audit(1725864971.192:21686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17340 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 238.392048][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.511300][ T29] audit: type=1326 audit(1725864971.222:21687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17340 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 238.535071][ T29] audit: type=1326 audit(1725864971.222:21688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17340 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 238.559376][ T29] audit: type=1326 audit(1725864971.222:21689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17340 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 238.583371][ T29] audit: type=1326 audit(1725864971.222:21690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17340 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 238.607113][ T29] audit: type=1326 audit(1725864971.222:21691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17340 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 238.630882][ T29] audit: type=1326 audit(1725864971.242:21692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17340 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 238.654583][ T29] audit: type=1326 audit(1725864971.242:21693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17340 comm="syz.4.2680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 239.051659][T17362] loop1: detected capacity change from 0 to 2048 [ 239.063846][T17362] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 239.078503][T17362] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 239.111318][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.114480][ T29] audit: type=1326 audit(1725864972.003:21694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17370 comm="syz.4.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 239.143951][ T29] audit: type=1326 audit(1725864972.003:21695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17370 comm="syz.4.2689" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 239.283089][T17377] loop3: detected capacity change from 0 to 512 [ 239.291578][T17377] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2692: bg 0: block 5: invalid block bitmap [ 239.304167][T17377] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 239.313487][T17377] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.2692: invalid indirect mapped block 3 (level 2) [ 239.327017][T17377] EXT4-fs (loop3): 1 orphan inode deleted [ 239.332895][T17377] EXT4-fs (loop3): 1 truncate cleaned up [ 239.338972][T17377] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 239.350111][T17378] xt_CT: No such helper "syz0" [ 239.380288][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.974479][T17405] loop2: detected capacity change from 0 to 512 [ 240.035232][T17407] loop2: detected capacity change from 0 to 2048 [ 240.046648][T17388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2695'. [ 240.067738][T17407] loop2: detected capacity change from 0 to 512 [ 240.707563][T17431] loop0: detected capacity change from 0 to 1024 [ 240.714457][T17431] EXT4-fs: Ignoring removed orlov option [ 240.720142][T17431] EXT4-fs: Ignoring removed nomblk_io_submit option [ 240.741798][T17433] loop3: detected capacity change from 0 to 512 [ 240.750489][T17433] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2714: bg 0: block 5: invalid block bitmap [ 240.763621][T17433] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 240.772732][T17433] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.2714: invalid indirect mapped block 3 (level 2) [ 240.837153][T17433] EXT4-fs (loop3): 1 orphan inode deleted [ 240.843099][T17433] EXT4-fs (loop3): 1 truncate cleaned up [ 240.849861][T17433] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 240.887499][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 240.919440][T17438] xt_CT: No such helper "syz0" [ 241.181483][T17455] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2722'. [ 241.856951][T17472] loop4: detected capacity change from 0 to 512 [ 241.879070][T17473] loop0: detected capacity change from 0 to 2048 [ 241.894221][T17472] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2728: bg 0: block 5: invalid block bitmap [ 241.913923][T17472] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 241.924616][T17472] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.2728: invalid indirect mapped block 3 (level 2) [ 241.938421][T17472] EXT4-fs (loop4): 1 orphan inode deleted [ 241.944394][T17472] EXT4-fs (loop4): 1 truncate cleaned up [ 241.952480][T17472] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 241.974034][T17475] loop0: detected capacity change from 0 to 512 [ 242.025527][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 242.641386][T17500] xt_CT: No such helper "syz0" [ 242.981257][T17512] loop3: detected capacity change from 0 to 512 [ 242.991894][T17512] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2744: bg 0: block 5: invalid block bitmap [ 242.999152][T17514] loop4: detected capacity change from 0 to 2048 [ 243.005033][T17512] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 243.020071][T17512] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.2744: invalid indirect mapped block 3 (level 2) [ 243.022642][T17514] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 243.038435][T17512] EXT4-fs (loop3): 1 orphan inode deleted [ 243.049507][T17505] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2741'. [ 243.051225][T17512] EXT4-fs (loop3): 1 truncate cleaned up [ 243.052027][T17512] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 243.065121][T17514] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 243.108037][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.128527][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.084175][ T29] kauditd_printk_skb: 400 callbacks suppressed [ 244.084195][ T29] audit: type=1326 audit(1725864976.975:22096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17533 comm="syz.1.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 244.114131][ T29] audit: type=1326 audit(1725864976.975:22097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17533 comm="syz.1.2752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 244.213911][T17546] loop0: detected capacity change from 0 to 2048 [ 244.242996][ T29] audit: type=1326 audit(1725864977.145:22098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17550 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 244.266876][ T29] audit: type=1326 audit(1725864977.145:22099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17550 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 244.271752][T17551] loop4: detected capacity change from 0 to 512 [ 244.290866][ T29] audit: type=1326 audit(1725864977.145:22100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17550 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 244.320788][ T29] audit: type=1326 audit(1725864977.145:22101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17550 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 244.345066][ T29] audit: type=1326 audit(1725864977.145:22102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17550 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 244.368730][ T29] audit: type=1326 audit(1725864977.145:22103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17550 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 244.392730][ T29] audit: type=1326 audit(1725864977.145:22104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17550 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 244.414408][T17551] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2758: bg 0: block 5: invalid block bitmap [ 244.416764][ T29] audit: type=1326 audit(1725864977.165:22105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17550 comm="syz.4.2758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 244.430848][T17551] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 244.461594][T17551] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.2758: invalid indirect mapped block 3 (level 2) [ 244.475389][T17551] EXT4-fs (loop4): 1 orphan inode deleted [ 244.481331][T17551] EXT4-fs (loop4): 1 truncate cleaned up [ 244.487557][T17551] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 244.540667][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.685585][T17576] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2766'. [ 244.707707][T17572] xt_CT: No such helper "syz0" [ 245.009944][T17580] syz.1.2768[17580] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 245.010149][T17580] syz.1.2768[17580] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 245.708382][T17591] loop0: detected capacity change from 0 to 2048 [ 245.768590][T17597] loop1: detected capacity change from 0 to 512 [ 245.795459][T17597] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.2775: bg 0: block 5: invalid block bitmap [ 245.810737][T17597] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 245.820727][T17597] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.2775: invalid indirect mapped block 3 (level 2) [ 245.840774][T17597] EXT4-fs (loop1): 1 orphan inode deleted [ 245.846556][T17597] EXT4-fs (loop1): 1 truncate cleaned up [ 245.854256][T17597] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 245.921732][T17606] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2780'. [ 245.939736][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 246.534004][T17627] syz.1.2785[17627] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 246.534065][T17627] syz.1.2785[17627] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 246.895582][T17637] loop2: detected capacity change from 0 to 512 [ 246.947372][T17643] loop4: detected capacity change from 0 to 2048 [ 246.972984][T17643] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 246.997716][T17643] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 247.014207][T17641] xt_CT: No such helper "syz0" [ 247.063106][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 247.294722][T17665] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2798'. [ 247.605452][T17675] loop3: detected capacity change from 0 to 512 [ 247.613920][T17675] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2804: bg 0: block 5: invalid block bitmap [ 247.627283][T17675] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 247.636399][T17675] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.2804: invalid indirect mapped block 3 (level 2) [ 247.650124][T17675] EXT4-fs (loop3): 1 orphan inode deleted [ 247.655900][T17675] EXT4-fs (loop3): 1 truncate cleaned up [ 247.662353][T17675] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 247.697798][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 247.800452][T17684] loop2: detected capacity change from 0 to 2048 [ 247.816296][T17684] loop2: detected capacity change from 0 to 512 [ 248.047148][T17697] syz.2.2809[17697] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 248.047270][T17697] syz.2.2809[17697] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 248.192824][T17702] loop1: detected capacity change from 0 to 512 [ 248.271393][T17689] xt_CT: No such helper "syz0" [ 248.389589][T17702] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.2815: bg 0: block 5: invalid block bitmap [ 248.408612][T17702] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 248.417641][T17702] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.2815: invalid indirect mapped block 3 (level 2) [ 248.432375][T17702] EXT4-fs (loop1): 1 orphan inode deleted [ 248.438424][T17702] EXT4-fs (loop1): 1 truncate cleaned up [ 248.445120][T17702] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 248.485394][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.567040][T17723] loop1: detected capacity change from 0 to 2048 [ 248.580021][T17723] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 248.595385][T17723] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 248.654297][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.761674][T17728] Cannot find del_set index 0 as target [ 248.915293][T17730] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2826'. [ 249.076995][T17746] loop0: detected capacity change from 0 to 512 [ 249.088570][ T29] kauditd_printk_skb: 596 callbacks suppressed [ 249.088587][ T29] audit: type=1326 audit(1725864981.987:22702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17745 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d6c3cef9 code=0x7ffc0000 [ 249.118674][ T29] audit: type=1326 audit(1725864981.987:22703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17745 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f87d6c3cef9 code=0x7ffc0000 [ 249.142255][ T29] audit: type=1326 audit(1725864981.997:22704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17745 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d6c3cef9 code=0x7ffc0000 [ 249.165860][ T29] audit: type=1326 audit(1725864981.997:22705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17745 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d6c3cef9 code=0x7ffc0000 [ 249.191119][ T29] audit: type=1326 audit(1725864982.027:22706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17745 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87d6c3cef9 code=0x7ffc0000 [ 249.214835][ T29] audit: type=1326 audit(1725864982.047:22707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17745 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d6c3cef9 code=0x7ffc0000 [ 249.238514][ T29] audit: type=1326 audit(1725864982.047:22708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17745 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d6c3cef9 code=0x7ffc0000 [ 249.255352][T17748] xt_CT: No such helper "syz0" [ 249.369188][T17756] loop1: detected capacity change from 0 to 2048 [ 249.409352][T17756] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 249.441183][T17756] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 249.471821][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 249.538011][T17772] syz.3.2835[17772] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 249.538091][T17772] syz.3.2835[17772] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 249.606471][ T29] audit: type=1326 audit(1725864982.507:22709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17774 comm="syz.0.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d6c3cef9 code=0x7ffc0000 [ 249.648949][ T29] audit: type=1326 audit(1725864982.507:22710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17774 comm="syz.0.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d6c3cef9 code=0x7ffc0000 [ 249.672805][ T29] audit: type=1326 audit(1725864982.547:22711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=17774 comm="syz.0.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f87d6c3cef9 code=0x7ffc0000 [ 249.892065][T17780] Cannot find del_set index 0 as target [ 249.960868][T17782] loop1: detected capacity change from 0 to 512 [ 249.972782][T17782] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.2846: bg 0: block 5: invalid block bitmap [ 249.990280][T17782] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 250.001579][T17782] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.2846: invalid indirect mapped block 3 (level 2) [ 250.015394][T17782] EXT4-fs (loop1): 1 orphan inode deleted [ 250.021179][T17782] EXT4-fs (loop1): 1 truncate cleaned up [ 250.029375][T17782] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 250.302861][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.382063][T17796] loop1: detected capacity change from 0 to 2048 [ 250.385920][T17788] xt_CT: No such helper "syz0" [ 250.400913][T17796] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 250.423100][T17796] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 250.483430][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.571628][T17817] loop0: detected capacity change from 0 to 512 [ 250.649540][T17808] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2855'. [ 250.677973][T17824] Cannot find del_set index 0 as target [ 250.747595][T17829] syz.1.2857[17829] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 250.747729][T17829] syz.1.2857[17829] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 251.132323][T17834] xt_CT: No such helper "syz0" [ 251.350139][T17837] loop3: detected capacity change from 0 to 2048 [ 251.368705][T17837] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 251.389637][T17837] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 251.453534][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.582062][T17853] loop0: detected capacity change from 0 to 512 [ 251.865196][T17871] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2876'. [ 252.167637][T17873] syz.0.2877[17873] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 252.167732][T17873] syz.0.2877[17873] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 252.626183][T17902] netlink: 'syz.1.2889': attribute type 21 has an invalid length. [ 252.633536][T17898] loop0: detected capacity change from 0 to 512 [ 252.668448][T17898] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 ro without journal. Quota mode: writeback. [ 252.758131][ T9241] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 252.850589][T17929] loop4: detected capacity change from 0 to 512 [ 252.880898][T17929] EXT4-fs: Ignoring removed nobh option [ 252.886574][T17929] EXT4-fs: Ignoring removed nobh option [ 252.908505][T17929] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 252.932264][T17929] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2894: invalid indirect mapped block 2683928664 (level 1) [ 252.987212][T17929] EXT4-fs (loop4): 1 truncate cleaned up [ 252.999003][T17929] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 253.066610][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 253.264034][T17953] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2897'. [ 253.620063][T17978] syz.0.2899[17978] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 253.620145][T17978] syz.0.2899[17978] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 254.104540][ T29] kauditd_printk_skb: 452 callbacks suppressed [ 254.104559][ T29] audit: type=1326 audit(1725864986.998:23164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18024 comm="syz.3.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 254.150990][T18025] loop3: detected capacity change from 0 to 512 [ 254.155791][ T29] audit: type=1326 audit(1725864987.038:23165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18024 comm="syz.3.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 254.180880][ T29] audit: type=1326 audit(1725864987.038:23166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18024 comm="syz.3.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 254.205363][ T29] audit: type=1326 audit(1725864987.038:23167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18024 comm="syz.3.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 254.228996][ T29] audit: type=1326 audit(1725864987.038:23168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18024 comm="syz.3.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 254.252663][ T29] audit: type=1326 audit(1725864987.048:23169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18024 comm="syz.3.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 254.276235][ T29] audit: type=1326 audit(1725864987.048:23170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18024 comm="syz.3.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 254.300040][ T29] audit: type=1326 audit(1725864987.048:23171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18024 comm="syz.3.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 254.323531][ T29] audit: type=1326 audit(1725864987.048:23172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18024 comm="syz.3.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 254.347487][ T29] audit: type=1326 audit(1725864987.048:23173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18024 comm="syz.3.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 254.387454][T18025] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2903: bg 0: block 5: invalid block bitmap [ 254.406961][T18025] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 254.417423][T18025] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.2903: invalid indirect mapped block 3 (level 2) [ 254.430777][T18033] xt_CT: No such helper "syz0" [ 254.436078][T18025] EXT4-fs (loop3): 1 orphan inode deleted [ 254.441916][T18025] EXT4-fs (loop3): 1 truncate cleaned up [ 254.454125][T18025] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 254.505569][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 254.682205][T18053] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2912'. [ 255.510963][T18163] loop0: detected capacity change from 0 to 512 [ 255.602420][T18171] syz.4.2917[18171] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 255.602570][T18171] syz.4.2917[18171] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 255.701123][T18173] loop2: detected capacity change from 0 to 512 [ 255.958416][T18180] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2927'. [ 255.967815][T18180] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2927'. [ 256.027515][T18185] xt_CT: No such helper "syz0" [ 256.395453][T18208] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2931'. [ 257.272266][T18310] loop3: detected capacity change from 0 to 512 [ 257.284221][T18310] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2938: bg 0: block 5: invalid block bitmap [ 257.297660][T18310] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 257.308611][T18310] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.2938: invalid indirect mapped block 3 (level 2) [ 257.322099][T18310] EXT4-fs (loop3): 1 orphan inode deleted [ 257.328086][T18310] EXT4-fs (loop3): 1 truncate cleaned up [ 257.336277][T18310] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 257.463817][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 257.568120][T18327] syz.4.2941[18327] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 257.568338][T18327] syz.4.2941[18327] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 257.958665][T18335] xt_CT: No such helper "syz0" [ 258.378140][T18391] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2949'. [ 258.458966][T18427] loop3: detected capacity change from 0 to 512 [ 258.468602][T18427] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.2954: bg 0: block 5: invalid block bitmap [ 258.481151][T18427] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 258.491005][T18427] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.2954: invalid indirect mapped block 3 (level 2) [ 258.509077][T18427] EXT4-fs (loop3): 1 orphan inode deleted [ 258.514871][T18427] EXT4-fs (loop3): 1 truncate cleaned up [ 258.522820][T18427] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 258.586493][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 258.646565][T18447] syz.3.2956[18447] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 258.646628][T18447] syz.3.2956[18447] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 259.117313][T18461] syz.3.2958[18461] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 259.129218][T18461] syz.3.2958[18461] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 259.690806][ T29] kauditd_printk_skb: 505 callbacks suppressed [ 259.690831][ T29] audit: type=1326 audit(1725864992.589:23679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18481 comm="syz.3.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 259.755692][ T29] audit: type=1326 audit(1725864992.589:23680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18481 comm="syz.3.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 259.779415][ T29] audit: type=1326 audit(1725864992.619:23681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18481 comm="syz.3.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 259.803271][ T29] audit: type=1326 audit(1725864992.619:23682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18481 comm="syz.3.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 259.826996][ T29] audit: type=1326 audit(1725864992.619:23683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18481 comm="syz.3.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 259.850683][ T29] audit: type=1326 audit(1725864992.619:23684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18481 comm="syz.3.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 259.874343][ T29] audit: type=1326 audit(1725864992.619:23685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18481 comm="syz.3.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 259.898102][ T29] audit: type=1326 audit(1725864992.619:23686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18481 comm="syz.3.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 259.921712][ T29] audit: type=1326 audit(1725864992.619:23687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18481 comm="syz.3.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 259.945541][ T29] audit: type=1326 audit(1725864992.619:23688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18481 comm="syz.3.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f160677b890 code=0x7ffc0000 [ 259.975124][T18501] loop2: detected capacity change from 0 to 512 [ 260.151261][T18513] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2970'. [ 260.338564][T18523] xt_CT: No such helper "syz0" [ 260.767538][T18528] syz.3.2972[18528] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 260.767667][T18528] syz.3.2972[18528] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 261.256154][T18563] loop1: detected capacity change from 0 to 512 [ 261.287036][T18563] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.2982: bg 0: block 5: invalid block bitmap [ 261.301315][T18563] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 261.310356][T18563] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.2982: invalid indirect mapped block 3 (level 2) [ 261.325905][T18563] EXT4-fs (loop1): 1 orphan inode deleted [ 261.331760][T18563] EXT4-fs (loop1): 1 truncate cleaned up [ 261.338946][T18563] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 261.381143][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 261.553594][T18577] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2984'. [ 262.164408][T18649] xt_CT: No such helper "syz0" [ 262.329921][T18665] loop1: detected capacity change from 0 to 512 [ 262.336443][T18665] journal_path: Lookup failure for './file0' [ 262.342563][T18665] EXT4-fs: error: could not find journal device path [ 262.550325][T18669] syz.1.2995[18669] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 262.550407][T18669] syz.1.2995[18669] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 262.932855][T18676] loop3: detected capacity change from 0 to 512 [ 262.964300][T18676] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.3000: bg 0: block 5: invalid block bitmap [ 262.978497][T18676] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 262.997251][T18676] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.3000: invalid indirect mapped block 3 (level 2) [ 263.012257][T18676] EXT4-fs (loop3): 1 orphan inode deleted [ 263.018081][T18676] EXT4-fs (loop3): 1 truncate cleaned up [ 263.034307][T18676] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 263.209805][T18700] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3002'. [ 263.537327][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 264.075632][T18810] loop0: detected capacity change from 0 to 512 [ 264.091616][T18803] xt_CT: No such helper "syz0" [ 264.147919][T18816] syz.1.3013[18816] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 264.147996][T18816] syz.1.3013[18816] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 265.100157][ T29] kauditd_printk_skb: 628 callbacks suppressed [ 265.100176][ T29] audit: type=1326 audit(1725864998.000:24317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18839 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 265.105126][T18840] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3023'. [ 265.112121][ T29] audit: type=1326 audit(1725864998.000:24318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18839 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 265.174127][ T29] audit: type=1326 audit(1725864998.000:24319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18839 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 265.197796][ T29] audit: type=1326 audit(1725864998.000:24320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18839 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 265.221410][ T29] audit: type=1326 audit(1725864998.000:24321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18839 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 265.245075][ T29] audit: type=1326 audit(1725864998.000:24322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18839 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 265.268883][ T29] audit: type=1326 audit(1725864998.000:24323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18839 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 265.292568][ T29] audit: type=1326 audit(1725864998.000:24324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18839 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 265.316173][ T29] audit: type=1326 audit(1725864998.000:24325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18839 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 265.339826][ T29] audit: type=1326 audit(1725864998.000:24326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18839 comm="syz.4.3023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 265.506920][T18910] loop3: detected capacity change from 0 to 512 [ 265.517189][T18910] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.3029: bg 0: block 5: invalid block bitmap [ 265.529867][T18910] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 265.538938][T18910] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.3029: invalid indirect mapped block 3 (level 2) [ 265.552496][T18910] EXT4-fs (loop3): 1 orphan inode deleted [ 265.558315][T18910] EXT4-fs (loop3): 1 truncate cleaned up [ 265.564424][T18910] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 265.700579][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 265.935795][T18969] syz.3.3032[18969] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 265.935895][T18969] syz.3.3032[18969] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 266.914777][T18974] xt_CT: No such helper "syz0" [ 267.163829][T19016] loop2: detected capacity change from 0 to 512 [ 267.398159][T19056] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3046'. [ 267.523513][T19070] syz.1.3047[19070] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 267.523650][T19070] syz.1.3047[19070] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 268.550897][T19112] loop2: detected capacity change from 0 to 512 [ 268.644999][T19110] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3053'. [ 268.786555][T19133] xt_CT: No such helper "syz0" [ 268.897564][T19136] syz.4.3062[19136] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 268.897636][T19136] syz.4.3062[19136] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 269.452838][T19147] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3064'. [ 269.816636][T19209] syz.4.3076[19209] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 269.816781][T19209] syz.4.3076[19209] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 270.359245][ T29] kauditd_printk_skb: 424 callbacks suppressed [ 270.359260][ T29] audit: type=1326 audit(1725865003.260:24751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19253 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 270.402801][ T29] audit: type=1326 audit(1725865003.310:24752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19253 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 270.426475][ T29] audit: type=1326 audit(1725865003.310:24753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19253 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 270.450108][ T29] audit: type=1326 audit(1725865003.310:24754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19253 comm="syz.3.3070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 270.463987][T19266] loop2: detected capacity change from 0 to 512 [ 270.573702][ T29] audit: type=1326 audit(1725865003.360:24755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19265 comm="syz.2.3071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 270.597432][ T29] audit: type=1326 audit(1725865003.360:24756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19265 comm="syz.2.3071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 270.621057][ T29] audit: type=1326 audit(1725865003.360:24757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19265 comm="syz.2.3071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 270.644748][ T29] audit: type=1326 audit(1725865003.360:24758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19265 comm="syz.2.3071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 270.668290][ T29] audit: type=1326 audit(1725865003.360:24759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19265 comm="syz.2.3071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 270.691920][ T29] audit: type=1326 audit(1725865003.360:24760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19265 comm="syz.2.3071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 270.941962][T19274] xt_CT: No such helper "syz0" [ 271.032711][T19284] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3080'. [ 271.409315][T19345] syz.1.3085[19345] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 271.409450][T19345] syz.1.3085[19345] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 271.786190][T19358] loop0: detected capacity change from 0 to 512 [ 272.278518][T19401] xt_CT: No such helper "syz0" [ 272.355965][T19425] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3099'. [ 272.549987][T19436] loop3: detected capacity change from 0 to 512 [ 272.558637][T19436] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.3102: bg 0: block 5: invalid block bitmap [ 272.571560][T19436] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 272.581185][T19436] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.3102: invalid indirect mapped block 3 (level 2) [ 272.595103][T19436] EXT4-fs (loop3): 1 orphan inode deleted [ 272.600901][T19436] EXT4-fs (loop3): 1 truncate cleaned up [ 272.606978][T19436] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 272.642208][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.052059][T19489] syz.0.3106[19489] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 273.052189][T19489] syz.0.3106[19489] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 273.518237][T19515] xt_CT: No such helper "syz0" [ 273.671272][T19554] loop3: detected capacity change from 0 to 512 [ 273.749084][T19554] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.3113: bg 0: block 5: invalid block bitmap [ 273.818957][T19554] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 273.831505][T19554] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.3113: invalid indirect mapped block 3 (level 2) [ 273.851244][T19554] EXT4-fs (loop3): 1 orphan inode deleted [ 273.857111][T19554] EXT4-fs (loop3): 1 truncate cleaned up [ 273.867026][T19554] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 273.932796][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.974982][T19585] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3118'. [ 274.941817][T19715] loop3: detected capacity change from 0 to 512 [ 274.953139][T19715] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.3130: bg 0: block 5: invalid block bitmap [ 274.966974][T19715] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 274.976115][T19715] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.3130: invalid indirect mapped block 3 (level 2) [ 274.991495][T19715] EXT4-fs (loop3): 1 orphan inode deleted [ 274.997291][T19715] EXT4-fs (loop3): 1 truncate cleaned up [ 275.004231][T19718] syz.4.3125[19718] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 275.004315][T19718] syz.4.3125[19718] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 275.157215][T19715] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 275.403522][T19714] xt_CT: No such helper "syz0" [ 275.413346][ T29] kauditd_printk_skb: 480 callbacks suppressed [ 275.413361][ T29] audit: type=1326 audit(1725865008.321:25241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19712 comm="syz.3.3130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 275.458236][ T29] audit: type=1326 audit(1725865008.331:25242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19712 comm="syz.3.3130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 275.482123][ T29] audit: type=1326 audit(1725865008.331:25243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19712 comm="syz.3.3130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 275.505802][ T29] audit: type=1326 audit(1725865008.351:25244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19712 comm="syz.3.3130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 275.529482][ T29] audit: type=1326 audit(1725865008.351:25245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19712 comm="syz.3.3130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 275.553088][ T29] audit: type=1326 audit(1725865008.351:25246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19712 comm="syz.3.3130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 275.576782][ T29] audit: type=1326 audit(1725865008.351:25247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19712 comm="syz.3.3130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 275.600654][ T29] audit: type=1326 audit(1725865008.351:25248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19712 comm="syz.3.3130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 275.624346][ T29] audit: type=1326 audit(1725865008.351:25249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19712 comm="syz.3.3130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 275.648030][ T29] audit: type=1326 audit(1725865008.351:25250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19712 comm="syz.3.3130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f160677cef9 code=0x7ffc0000 [ 275.988777][T19775] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3135'. [ 276.036043][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 276.799359][T19913] loop4: detected capacity change from 0 to 512 [ 276.893554][T19913] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.3146: bg 0: block 5: invalid block bitmap [ 276.913498][T19913] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 276.923283][T19913] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.3146: invalid indirect mapped block 3 (level 2) [ 276.973571][T19913] EXT4-fs (loop4): 1 orphan inode deleted [ 276.979466][T19913] EXT4-fs (loop4): 1 truncate cleaned up [ 276.986076][T19913] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 276.999703][T19924] syz.1.3145[19924] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 276.999835][T19924] syz.1.3145[19924] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 277.084454][T19911] xt_CT: No such helper "syz0" [ 277.422644][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 277.841686][T19950] netlink: 'syz.4.3156': attribute type 21 has an invalid length. [ 277.994133][T19957] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3157'. [ 278.755604][T20090] loop2: detected capacity change from 0 to 512 [ 278.763720][T20090] EXT4-fs: Ignoring removed nobh option [ 278.769406][T20090] EXT4-fs: Ignoring removed nobh option [ 278.911728][T20097] xt_CT: No such helper "syz0" [ 278.991901][T20110] syz.2.3163[20110] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 278.991981][T20110] syz.2.3163[20110] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 279.486302][T20128] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3173'. [ 280.312581][T20257] loop1: detected capacity change from 0 to 512 [ 280.341410][T20257] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.3180: bg 0: block 5: invalid block bitmap [ 280.358776][T20257] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 280.369698][T20257] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.3180: invalid indirect mapped block 3 (level 2) [ 280.383747][T20257] EXT4-fs (loop1): 1 orphan inode deleted [ 280.389573][T20257] EXT4-fs (loop1): 1 truncate cleaned up [ 280.396052][T20257] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 280.415342][ T29] kauditd_printk_skb: 344 callbacks suppressed [ 280.415358][ T29] audit: type=1326 audit(1725865013.321:25595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20254 comm="syz.1.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f784e01b890 code=0x7ffc0000 [ 280.445269][ T29] audit: type=1326 audit(1725865013.321:25596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20254 comm="syz.1.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f784e01bc77 code=0x7ffc0000 [ 280.468983][ T29] audit: type=1326 audit(1725865013.321:25597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20254 comm="syz.1.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f784e01b890 code=0x7ffc0000 [ 280.492681][ T29] audit: type=1326 audit(1725865013.321:25598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20254 comm="syz.1.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 280.520121][ T29] audit: type=1326 audit(1725865013.321:25599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20254 comm="syz.1.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 280.543920][ T29] audit: type=1326 audit(1725865013.321:25600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20254 comm="syz.1.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 280.567849][ T29] audit: type=1326 audit(1725865013.321:25601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20254 comm="syz.1.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 280.591778][ T29] audit: type=1326 audit(1725865013.321:25602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20254 comm="syz.1.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 280.615863][ T29] audit: type=1326 audit(1725865013.321:25603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20254 comm="syz.1.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 280.639522][ T29] audit: type=1326 audit(1725865013.321:25604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20254 comm="syz.1.3180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 280.663550][T20252] xt_CT: No such helper "syz0" [ 280.690321][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 280.941944][T20297] syz.1.3185[20297] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 280.942140][T20297] syz.1.3185[20297] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 281.802273][T20306] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3190'. [ 282.080060][T20369] loop0: detected capacity change from 0 to 512 [ 282.163845][T20380] netlink: 'syz.0.3200': attribute type 21 has an invalid length. [ 282.379575][T20389] syz.4.3202[20389] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 282.379743][T20389] syz.4.3202[20389] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 283.151479][T20388] xt_CT: No such helper "syz0" [ 283.275838][T20396] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3205'. [ 283.454031][T20440] loop1: detected capacity change from 0 to 512 [ 283.462653][T20440] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.3212: bg 0: block 5: invalid block bitmap [ 283.476780][T20440] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 283.486093][T20440] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.3212: invalid indirect mapped block 3 (level 2) [ 283.504461][T20440] EXT4-fs (loop1): 1 orphan inode deleted [ 283.510644][T20440] EXT4-fs (loop1): 1 truncate cleaned up [ 283.519065][T20440] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 283.558543][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 283.586076][T20458] netlink: 'syz.1.3214': attribute type 21 has an invalid length. [ 283.631515][T20463] Cannot find del_set index 0 as target [ 284.383011][T20548] netlink: 'syz.4.3225': attribute type 21 has an invalid length. [ 284.516916][T20557] xt_CT: No such helper "syz0" [ 284.600416][T20577] loop1: detected capacity change from 0 to 2048 [ 284.616583][T20577] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 284.639399][T20577] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 285.275747][T20679] netlink: 'syz.3.3236': attribute type 21 has an invalid length. [ 285.410051][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 285.444982][T20709] program syz.3.3241 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 285.534054][T20722] loop4: detected capacity change from 0 to 7 [ 285.543889][T20722] Buffer I/O error on dev loop4, logical block 0, async page read [ 285.552063][T20722] Buffer I/O error on dev loop4, logical block 0, async page read [ 285.559969][T20722] loop4: unable to read partition table [ 285.565971][T20722] loop_reread_partitions: partition scan of loop4 (被xڬdƤݡ [ 285.565971][T20722] ) failed (rc=-5) [ 285.618237][T20733] loop0: detected capacity change from 0 to 2048 [ 285.647381][T20733] loop0: detected capacity change from 0 to 512 [ 286.354913][ T29] kauditd_printk_skb: 505 callbacks suppressed [ 286.354931][ T29] audit: type=1326 audit(1725865019.261:26110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20779 comm="syz.1.3251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 286.355577][T20780] FAULT_INJECTION: forcing a failure. [ 286.355577][T20780] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 286.361187][ T29] audit: type=1326 audit(1725865019.261:26111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20779 comm="syz.1.3251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 286.384928][T20780] CPU: 1 UID: 0 PID: 20780 Comm: syz.1.3251 Not tainted 6.11.0-rc6-syzkaller-00355-g5dadc1be8fc5 #0 [ 286.384960][T20780] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 286.384975][T20780] Call Trace: [ 286.397995][ T29] audit: type=1326 audit(1725865019.261:26112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20779 comm="syz.1.3251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f784e01b890 code=0x7ffc0000 [ 286.421464][T20780] [ 286.421476][T20780] dump_stack_lvl+0xf2/0x150 [ 286.432352][ T29] audit: type=1326 audit(1725865019.261:26113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20779 comm="syz.1.3251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f784e01b9df code=0x7ffc0000 [ 286.442372][T20780] dump_stack+0x15/0x20 [ 286.442401][T20780] should_fail_ex+0x229/0x230 [ 286.509395][T20780] should_fail+0xb/0x10 [ 286.513572][T20780] should_fail_usercopy+0x1a/0x20 [ 286.518622][T20780] strncpy_from_user+0x25/0x270 [ 286.523515][T20780] ? __rcu_read_unlock+0x34/0x70 [ 286.528485][T20780] strncpy_from_user_nofault+0x66/0xe0 [ 286.534140][T20780] bpf_probe_read_user_str+0x2a/0x70 [ 286.539440][T20780] bpf_prog_02a70dbeb5f742df+0x42/0x44 [ 286.544918][T20780] bpf_trace_run2+0x104/0x1d0 [ 286.549806][T20780] ? selinux_release_secctx+0x15/0x20 [ 286.555281][T20780] ? selinux_release_secctx+0x15/0x20 [ 286.560745][T20780] __traceiter_kfree+0x2b/0x50 [ 286.565579][T20780] ? selinux_release_secctx+0x15/0x20 [ 286.571050][T20780] kfree+0x20d/0x290 [ 286.575018][T20780] ? security_sid_to_context+0x27/0x30 [ 286.580494][T20780] selinux_release_secctx+0x15/0x20 [ 286.585781][T20780] security_release_secctx+0x41/0x70 [ 286.591187][T20780] audit_log_task_context+0xfc/0x1b0 [ 286.596506][T20780] audit_log_task+0xfb/0x180 [ 286.601183][T20780] audit_seccomp+0x68/0x130 [ 286.605733][T20780] __seccomp_filter+0x6fa/0x1180 [ 286.610691][T20780] ? proc_fail_nth_write+0x130/0x160 [ 286.616027][T20780] ? __pfx_proc_fail_nth_write+0x10/0x10 [ 286.621678][T20780] ? vfs_write+0x5a5/0x900 [ 286.626137][T20780] ? __fget_files+0x1da/0x210 [ 286.630838][T20780] __secure_computing+0x9f/0x1c0 [ 286.635874][T20780] syscall_trace_enter+0xd1/0x1f0 [ 286.641100][T20780] do_syscall_64+0xaa/0x1c0 [ 286.645695][T20780] ? clear_bhb_loop+0x55/0xb0 [ 286.650389][T20780] ? clear_bhb_loop+0x55/0xb0 [ 286.655142][T20780] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.661071][T20780] RIP: 0033:0x7f784e01cef9 [ 286.665497][T20780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 286.685188][T20780] RSP: 002b:00007f784cc97038 EFLAGS: 00000246 ORIG_RAX: 00000000000001cd [ 286.693614][T20780] RAX: ffffffffffffffda RBX: 00007f784e1d5f80 RCX: 00007f784e01cef9 [ 286.701605][T20780] RDX: 0000000000000000 RSI: 0000000020000540 RDI: 0000000020000500 [ 286.709695][T20780] RBP: 00007f784cc97090 R08: 0000000000000000 R09: 0000000000000000 [ 286.717787][T20780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 286.725822][T20780] R13: 0000000000000000 R14: 00007f784e1d5f80 R15: 00007ffed66759a8 [ 286.733862][T20780] [ 286.744492][ T29] audit: type=1326 audit(1725865019.261:26114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20779 comm="syz.1.3251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 286.768431][ T29] audit: type=1326 audit(1725865019.651:26115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20779 comm="syz.1.3251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f784e01b93c code=0x7ffc0000 [ 286.791938][ T29] audit: type=1326 audit(1725865019.651:26116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20779 comm="syz.1.3251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f784e01b9df code=0x7ffc0000 [ 286.815392][ T29] audit: type=1326 audit(1725865019.651:26117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20779 comm="syz.1.3251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f784e01bb8a code=0x7ffc0000 [ 286.838809][ T29] audit: type=1326 audit(1725865019.651:26118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20779 comm="syz.1.3251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 286.862402][ T29] audit: type=1326 audit(1725865019.651:26119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20779 comm="syz.1.3251" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f784e01cef9 code=0x7ffc0000 [ 287.046450][T20833] loop4: detected capacity change from 0 to 7 [ 287.064001][T20833] Buffer I/O error on dev loop4, logical block 0, async page read [ 287.080033][T20833] Buffer I/O error on dev loop4, logical block 0, async page read [ 287.088062][T20833] loop4: unable to read partition table [ 287.113595][T20833] loop_reread_partitions: partition scan of loop4 (被xڬdƤݡ [ 287.113595][T20833] ) failed (rc=-5) [ 287.155180][T20844] @: renamed from veth0_vlan (while UP) [ 287.165526][T20847] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3264'. [ 287.177008][T20847] xt_ecn: cannot match TCP bits for non-tcp packets [ 287.707936][T20854] loop1: detected capacity change from 0 to 2048 [ 287.727325][T20854] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 287.741401][T20867] netlink: 'syz.3.3270': attribute type 21 has an invalid length. [ 287.757219][T20854] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 287.808304][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 287.857428][T20879] loop4: detected capacity change from 0 to 7 [ 287.864052][T20879] Buffer I/O error on dev loop4, logical block 0, async page read [ 287.872125][T20879] Buffer I/O error on dev loop4, logical block 0, async page read [ 287.880120][T20879] loop4: unable to read partition table [ 287.886402][T20879] loop_reread_partitions: partition scan of loop4 (被xڬdƤݡ [ 287.886402][T20879] ) failed (rc=-5) [ 287.945645][T20886] loop4: detected capacity change from 0 to 512 [ 287.952416][T20886] EXT4-fs: Ignoring removed bh option [ 287.958307][T20886] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 287.968696][T20886] EXT4-fs (loop4): 1 truncate cleaned up [ 287.975107][T20886] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 287.990313][T20886] tmpfs: Unknown parameter '\~' [ 288.016822][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.047948][T20898] program syz.2.3281 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 288.131465][T20907] loop0: detected capacity change from 0 to 2048 [ 288.183379][T20907] loop0: detected capacity change from 0 to 512 [ 288.191290][T20919] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3289'. [ 288.217517][T20919] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3289'. [ 288.252286][T20930] loop2: detected capacity change from 0 to 1764 [ 288.266638][T20919] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3289'. [ 288.284044][T20929] Cannot find del_set index 0 as target [ 288.289999][T20933] Cannot find del_set index 0 as target [ 288.303671][T20919] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 288.336600][T20937] loop0: detected capacity change from 0 to 128 [ 288.352417][T20937] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4 sclass=netlink_route_socket pid=20937 comm=syz.0.3296 [ 288.462728][T20954] loop1: detected capacity change from 0 to 512 [ 288.463856][T20956] sctp: [Deprecated]: syz.2.3305 (pid 20956) Use of struct sctp_assoc_value in delayed_ack socket option. [ 288.463856][T20956] Use struct sctp_sack_info instead [ 288.496028][T20954] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 288.517296][T20954] ext4 filesystem being mounted at /243/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 288.575346][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.616122][T20975] loop1: detected capacity change from 0 to 1024 [ 288.625610][T20975] EXT4-fs: Mount option(s) incompatible with ext3 [ 288.625702][T20978] FAULT_INJECTION: forcing a failure. [ 288.625702][T20978] name failslab, interval 1, probability 0, space 0, times 0 [ 288.644930][T20978] CPU: 1 UID: 0 PID: 20978 Comm: syz.3.3312 Not tainted 6.11.0-rc6-syzkaller-00355-g5dadc1be8fc5 #0 [ 288.655799][T20978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 288.665966][T20978] Call Trace: [ 288.669310][T20978] [ 288.672305][T20978] dump_stack_lvl+0xf2/0x150 [ 288.677096][T20978] dump_stack+0x15/0x20 [ 288.681275][T20978] should_fail_ex+0x229/0x230 [ 288.686040][T20978] ? mas_alloc_nodes+0x1d3/0x4a0 [ 288.691059][T20978] should_failslab+0x8f/0xb0 [ 288.695720][T20978] kmem_cache_alloc_noprof+0x4c/0x290 [ 288.701198][T20978] mas_alloc_nodes+0x1d3/0x4a0 [ 288.705998][T20978] mas_preallocate+0x773/0xc30 [ 288.710824][T20978] __split_vma+0x244/0x690 [ 288.715351][T20978] do_vmi_align_munmap+0x227/0xa60 [ 288.720521][T20978] do_vmi_munmap+0x1fb/0x250 [ 288.725259][T20978] mmap_region+0x52a/0x1620 [ 288.729838][T20978] ? mm_get_unmapped_area+0x8a/0xa0 [ 288.735206][T20978] ? security_mmap_addr+0x4c/0x70 [ 288.740299][T20978] ? __get_unmapped_area+0x2d1/0x300 [ 288.745597][T20978] do_mmap+0x72a/0xb70 [ 288.749752][T20978] ? security_mmap_file+0x128/0x150 [ 288.754966][T20978] vm_mmap_pgoff+0x133/0x290 [ 288.759571][T20978] ksys_mmap_pgoff+0x292/0x340 [ 288.764349][T20978] x64_sys_call+0x1884/0x2d60 [ 288.769108][T20978] do_syscall_64+0xc9/0x1c0 [ 288.773620][T20978] ? clear_bhb_loop+0x55/0xb0 [ 288.778304][T20978] ? clear_bhb_loop+0x55/0xb0 [ 288.782989][T20978] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 288.788917][T20978] RIP: 0033:0x7f160677cef9 [ 288.793373][T20978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 288.812989][T20978] RSP: 002b:00007f16053f7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 288.821496][T20978] RAX: ffffffffffffffda RBX: 00007f1606935f80 RCX: 00007f160677cef9 [ 288.829540][T20978] RDX: 0000000000000003 RSI: 0000000000003000 RDI: 0000000020000000 [ 288.837520][T20978] RBP: 00007f16053f7090 R08: 0000000000000005 R09: 0000000000000000 [ 288.845818][T20978] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001 [ 288.853828][T20978] R13: 0000000000000000 R14: 00007f1606935f80 R15: 00007ffe0624b6b8 [ 288.861816][T20978] [ 288.955506][T20986] FAULT_INJECTION: forcing a failure. [ 288.955506][T20986] name failslab, interval 1, probability 0, space 0, times 0 [ 288.968218][T20986] CPU: 0 UID: 0 PID: 20986 Comm: syz.3.3316 Not tainted 6.11.0-rc6-syzkaller-00355-g5dadc1be8fc5 #0 [ 288.978733][T20988] loop1: detected capacity change from 0 to 512 [ 288.979077][T20986] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 288.995510][T20986] Call Trace: [ 288.998806][T20986] [ 289.001756][T20986] dump_stack_lvl+0xf2/0x150 [ 289.006488][T20986] dump_stack+0x15/0x20 [ 289.010717][T20986] should_fail_ex+0x229/0x230 [ 289.015429][T20986] ? virtio_transport_do_socket_init+0x39/0x190 [ 289.021813][T20986] should_failslab+0x8f/0xb0 [ 289.026575][T20986] __kmalloc_cache_noprof+0x4b/0x2a0 [ 289.031885][T20986] virtio_transport_do_socket_init+0x39/0x190 [ 289.038089][T20986] vsock_assign_transport+0x3af/0x430 [ 289.043582][T20986] vsock_connect+0x3a3/0x800 [ 289.048261][T20986] ? __pfx_autoremove_wake_function+0x10/0x10 [ 289.054420][T20986] ? __pfx_vsock_connect+0x10/0x10 [ 289.059557][T20986] __sys_connect+0x1a9/0x1c0 [ 289.064293][T20986] __x64_sys_connect+0x41/0x50 [ 289.069151][T20986] x64_sys_call+0x2220/0x2d60 [ 289.073865][T20986] do_syscall_64+0xc9/0x1c0 [ 289.078399][T20986] ? clear_bhb_loop+0x55/0xb0 [ 289.083105][T20986] ? clear_bhb_loop+0x55/0xb0 [ 289.087807][T20986] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 289.093821][T20986] RIP: 0033:0x7f160677cef9 [ 289.098278][T20986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 289.117991][T20986] RSP: 002b:00007f16053f7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a [ 289.126455][T20986] RAX: ffffffffffffffda RBX: 00007f1606935f80 RCX: 00007f160677cef9 [ 289.134452][T20986] RDX: 0000000000000010 RSI: 0000000020000140 RDI: 0000000000000006 [ 289.142529][T20986] RBP: 00007f16053f7090 R08: 0000000000000000 R09: 0000000000000000 [ 289.150559][T20986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 289.158679][T20986] R13: 0000000000000000 R14: 00007f1606935f80 R15: 00007ffe0624b6b8 [ 289.166690][T20986] [ 289.182154][T20988] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.3311: invalid indirect mapped block 256 (level 2) [ 289.202952][T20988] EXT4-fs (loop1): 2 truncates cleaned up [ 289.215084][T20988] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 289.350266][T21003] loop2: detected capacity change from 0 to 256 [ 289.384976][T21003] Invalid ELF header magic: != ELF [ 289.451509][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 289.482581][T21009] loop2: detected capacity change from 0 to 512 [ 289.700533][T21026] loop4: detected capacity change from 0 to 8192 [ 289.725557][T21040] loop2: detected capacity change from 0 to 2048 [ 289.759851][T21025] xt_CT: No such helper "syz0" [ 289.813359][T21045] netlink: 'syz.4.3340': attribute type 21 has an invalid length. [ 289.935382][T21052] FAULT_INJECTION: forcing a failure. [ 289.935382][T21052] name failslab, interval 1, probability 0, space 0, times 0 [ 289.948114][T21052] CPU: 0 UID: 0 PID: 21052 Comm: syz.4.3343 Not tainted 6.11.0-rc6-syzkaller-00355-g5dadc1be8fc5 #0 [ 289.958903][T21052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 289.969077][T21052] Call Trace: [ 289.972429][T21052] [ 289.975378][T21052] dump_stack_lvl+0xf2/0x150 [ 289.980005][T21052] dump_stack+0x15/0x20 [ 289.984187][T21052] should_fail_ex+0x229/0x230 [ 289.988915][T21052] ? mas_alloc_nodes+0x1d3/0x4a0 [ 289.993927][T21052] should_failslab+0x8f/0xb0 [ 289.998557][T21052] kmem_cache_alloc_noprof+0x4c/0x290 [ 290.004025][T21052] mas_alloc_nodes+0x1d3/0x4a0 [ 290.008864][T21052] mas_preallocate+0x773/0xc30 [ 290.013667][T21052] __split_vma+0x244/0x690 [ 290.018159][T21052] do_vmi_align_munmap+0x227/0xa60 [ 290.023311][T21052] do_vmi_munmap+0x1fb/0x250 [ 290.028026][T21052] mmap_region+0x52a/0x1620 [ 290.032558][T21052] ? mm_get_unmapped_area+0x8a/0xa0 [ 290.037881][T21052] ? security_mmap_addr+0x4c/0x70 [ 290.043012][T21052] ? __get_unmapped_area+0x2d1/0x300 [ 290.048454][T21052] do_mmap+0x72a/0xb70 [ 290.052637][T21052] ? security_mmap_file+0x128/0x150 [ 290.057880][T21052] vm_mmap_pgoff+0x133/0x290 [ 290.062551][T21052] ksys_mmap_pgoff+0x292/0x340 [ 290.067361][T21052] x64_sys_call+0x1884/0x2d60 [ 290.072093][T21052] do_syscall_64+0xc9/0x1c0 [ 290.076687][T21052] ? clear_bhb_loop+0x55/0xb0 [ 290.081474][T21052] ? clear_bhb_loop+0x55/0xb0 [ 290.086279][T21052] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 290.092224][T21052] RIP: 0033:0x7fb8c6f5cef9 [ 290.096805][T21052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 290.116621][T21052] RSP: 002b:00007fb8c5bd7038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009 [ 290.125148][T21052] RAX: ffffffffffffffda RBX: 00007fb8c7115f80 RCX: 00007fb8c6f5cef9 [ 290.133276][T21052] RDX: 0000000000000005 RSI: 0000000000003000 RDI: 0000000020000000 [ 290.141290][T21052] RBP: 00007fb8c5bd7090 R08: 0000000000000006 R09: 0000000000000000 [ 290.149285][T21052] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000001 [ 290.157301][T21052] R13: 0000000000000000 R14: 00007fb8c7115f80 R15: 00007ffeea936468 [ 290.165349][T21052] [ 290.348611][T21066] loop3: detected capacity change from 0 to 128 [ 290.367389][T21066] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 290.397932][T21066] ext4 filesystem being mounted at /193/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 290.481891][T16467] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 290.535619][T21080] netlink: 'syz.3.3353': attribute type 21 has an invalid length. [ 290.568081][T21081] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3354'. [ 290.675979][T21096] loop1: detected capacity change from 0 to 512 [ 290.690381][T21096] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 290.706713][T21096] EXT4-fs (loop1): 1 truncate cleaned up [ 290.712884][T21096] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 290.728672][T21108] loop4: detected capacity change from 0 to 164 [ 290.746258][T21106] bond1: entered promiscuous mode [ 290.751456][T21106] bond1: entered allmulticast mode [ 290.764381][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.785091][T21106] 8021q: adding VLAN 0 to HW filter on device bond1 [ 290.815417][T21106] bond1 (unregistering): Released all slaves [ 290.845539][T21113] 9pnet: Could not find request transport: fd [ 290.859948][T21117] veth0_vlan: entered allmulticast mode [ 290.939687][T21122] netlink: 'syz.1.3370': attribute type 21 has an invalid length. [ 291.113593][T21140] Cannot find del_set index 0 as target [ 291.458352][ T29] kauditd_printk_skb: 480 callbacks suppressed [ 291.458369][ T29] audit: type=1326 audit(1725865024.361:26598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21163 comm="syz.4.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 291.491665][ T29] audit: type=1326 audit(1725865024.401:26599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21163 comm="syz.4.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8c6f5cef9 code=0x7ffc0000 [ 291.669237][T21190] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3388'. [ 291.694193][T21190] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 291.702992][T21190] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 291.711858][T21190] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 291.720763][T21190] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 291.735135][T21190] vxlan0: entered promiscuous mode [ 291.743076][ T29] audit: type=1326 audit(1725865024.641:26600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21183 comm="syz.2.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 291.766806][ T29] audit: type=1326 audit(1725865024.641:26601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21183 comm="syz.2.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 291.790660][ T29] audit: type=1326 audit(1725865024.641:26602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21183 comm="syz.2.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 291.814331][ T29] audit: type=1326 audit(1725865024.641:26603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21183 comm="syz.2.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 291.838009][ T29] audit: type=1326 audit(1725865024.641:26604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21183 comm="syz.2.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 291.861591][ T29] audit: type=1326 audit(1725865024.641:26605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21183 comm="syz.2.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 291.885279][ T29] audit: type=1326 audit(1725865024.641:26606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21183 comm="syz.2.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 291.909372][ T29] audit: type=1326 audit(1725865024.641:26607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21183 comm="syz.2.3387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1b1454cef9 code=0x7ffc0000 [ 292.162160][T21263] loop3: detected capacity change from 0 to 512 [ 292.175120][T21263] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.3396: bg 0: block 5: invalid block bitmap [ 292.189063][T21263] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 292.199995][T21263] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.3396: invalid indirect mapped block 3 (level 2) [ 292.207054][T21265] loop1: detected capacity change from 0 to 512 [ 292.217239][T21263] EXT4-fs (loop3): 1 orphan inode deleted [ 292.225379][T21263] EXT4-fs (loop3): 1 truncate cleaned up [ 292.231652][T21263] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 292.247044][T21265] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.3395: bg 0: block 5: invalid block bitmap [ 292.260255][T21265] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6551: Corrupt filesystem [ 292.270394][T21265] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.3395: invalid indirect mapped block 3 (level 2) [ 292.285084][T21265] EXT4-fs (loop1): 1 orphan inode deleted [ 292.290831][T21265] EXT4-fs (loop1): 1 truncate cleaned up [ 292.296894][T21265] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 292.297129][T21274] Cannot find del_set index 0 as target [ 292.328911][T16467] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.361778][T14357] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.380619][T21278] loop4: detected capacity change from 0 to 512 [ 292.381347][T21280] pim6reg1: entered promiscuous mode [ 292.392256][T21280] pim6reg1: entered allmulticast mode [ 292.399848][T21278] EXT4-fs (loop4): 1 truncate cleaned up [ 292.411759][T21278] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 292.425367][T21287] Cannot find del_set index 0 as target [ 292.442982][T21278] EXT4-fs error (device loop4): htree_dirblock_to_tree:1083: inode #2: comm syz.4.3401: Directory hole found for htree leaf block 0 [ 292.460986][T21278] EXT4-fs (loop4): Remounting filesystem read-only [ 292.476373][T21278] vhci_hcd: default hub control req: 0200 v0000 i0000 l0 [ 292.561615][T15605] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.822554][T21316] netlink: 'syz.4.3416': attribute type 21 has an invalid length. [ 292.934078][T21323] Cannot find del_set index 0 as target [ 292.979794][T21324] vhci_hcd: default hub control req: 0200 v0000 i0000 l0 [ 293.043314][T21338] loop4: detected capacity change from 0 to 2048 [ 293.064926][T21338] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 293.082714][T21342] loop3: detected capacity change from 0 to 128 [ 293.090913][T21342] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 293.103370][T21342] ext4 filesystem being mounted at /207/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 293.142966][T21346] loop0: detected capacity change from 0 to 128 [ 293.153268][T21338] bio_check_eod: 183 callbacks suppressed [ 293.153286][T21338] syz.4.3424: attempt to access beyond end of device [ 293.153286][T21338] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 293.234311][T21345] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 293.249846][T21345] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 32 with error 28 [ 293.262253][T21345] EXT4-fs (loop4): This should not happen!! Data will be lost [ 293.262253][T21345] [ 293.265998][T21353] xt_ecn: cannot match TCP bits for non-tcp packets [ 293.272022][T21345] EXT4-fs (loop4): Total free blocks count 0 [ 293.284632][T21345] EXT4-fs (loop4): Free/Dirty block details [ 293.290527][T21345] EXT4-fs (loop4): free_blocks=2415919104 [ 293.296264][T21345] EXT4-fs (loop4): dirty_blocks=3968 [ 293.301596][T21345] EXT4-fs (loop4): Block reservation details [ 293.307601][T21345] EXT4-fs (loop4): i_reserved_data_blocks=248 [ 293.316657][T21345] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 32 with error 28 [ 293.376203][T21355] nfs: Unknown parameter '' [ 293.548563][T21345] ================================================================== [ 293.556695][T21345] BUG: KCSAN: data-race in __filemap_add_folio / filemap_write_and_wait_range [ 293.565581][T21345] [ 293.567906][T21345] read-write to 0xffff888106ac1e20 of 8 bytes by task 21338 on cpu 1: [ 293.576064][T21345] __filemap_add_folio+0x439/0x710 [ 293.581285][T21345] filemap_add_folio+0x9c/0x1b0 [ 293.586160][T21345] page_cache_ra_unbounded+0x148/0x2e0 [ 293.591649][T21345] page_cache_async_ra+0x40c/0x420 [ 293.596781][T21345] filemap_get_pages+0x398/0xfb0 [ 293.601843][T21345] filemap_splice_read+0x360/0x920 [ 293.606980][T21345] ext4_file_splice_read+0x95/0xc0 [ 293.612111][T21345] splice_direct_to_actor+0x26c/0x670 [ 293.617512][T21345] do_splice_direct+0xd7/0x150 [ 293.622295][T21345] do_sendfile+0x3ab/0x950 [ 293.626708][T21345] __x64_sys_sendfile64+0x110/0x150 [ 293.631920][T21345] x64_sys_call+0xed5/0x2d60 [ 293.636514][T21345] do_syscall_64+0xc9/0x1c0 [ 293.641026][T21345] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.646927][T21345] [ 293.649240][T21345] read to 0xffff888106ac1e20 of 8 bytes by task 21345 on cpu 0: [ 293.656947][T21345] filemap_write_and_wait_range+0x58/0x1f0 [ 293.662755][T21345] kiocb_invalidate_pages+0x87/0x1e0 [ 293.668046][T21345] __iomap_dio_rw+0x585/0x1090 [ 293.672816][T21345] iomap_dio_rw+0x40/0x90 [ 293.677149][T21345] ext4_file_write_iter+0xaa4/0xe30 [ 293.682336][T21345] iter_file_splice_write+0x5e6/0x970 [ 293.687728][T21345] direct_splice_actor+0x16c/0x2c0 [ 293.692853][T21345] splice_direct_to_actor+0x305/0x670 [ 293.698243][T21345] do_splice_direct+0xd7/0x150 [ 293.703192][T21345] do_sendfile+0x3ab/0x950 [ 293.707614][T21345] __x64_sys_sendfile64+0x110/0x150 [ 293.712817][T21345] x64_sys_call+0xed5/0x2d60 [ 293.717422][T21345] do_syscall_64+0xc9/0x1c0 [ 293.721934][T21345] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 293.727849][T21345] [ 293.730172][T21345] value changed: 0x0000000000001423 -> 0x0000000000001424 [ 293.737358][T21345] [ 293.739671][T21345] Reported by Kernel Concurrency Sanitizer on: [ 293.745806][T21345] CPU: 0 UID: 0 PID: 21345 Comm: syz.4.3424 Not tainted 6.11.0-rc6-syzkaller-00355-g5dadc1be8fc5 #0 [ 293.756571][T21345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 293.766619][T21345] ================================================================== [ 293.867543][T16467] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.