last executing test programs: 4.017990263s ago: executing program 4 (id=6700): bpf$OBJ_GET_PROG(0x7, &(0x7f0000000140)=@o_path={&(0x7f0000000100)='./file0\x00'}, 0x18) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_io_uring_setup(0x3f27, &(0x7f0000000100)={0x0, 0x0, 0x22}, &(0x7f0000000180), &(0x7f00000001c0)) socket$inet6_tcp(0xa, 0x1, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) (async) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) socket$nl_netfilter(0x10, 0x3, 0xc) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, 0x0) socket$nl_route(0x10, 0x3, 0x0) (async) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x600, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) r3 = dup2(r2, r0) close_range(r3, 0xffffffffffffffff, 0x0) (async) close_range(r3, 0xffffffffffffffff, 0x0) r4 = open(&(0x7f0000000280)='./file1\x00', 0x280000, 0x0) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x3, 0x0, @local}, 0x1c) open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) (async) r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) r6 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r6, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) (async) setsockopt$inet_tcp_int(r6, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) symlinkat(&(0x7f0000000140)='./file0\x00', r5, &(0x7f0000000240)='./file0\x00') (async) symlinkat(&(0x7f0000000140)='./file0\x00', r5, &(0x7f0000000240)='./file0\x00') setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r6, 0x6, 0x1d, &(0x7f0000000100)={0x7}, 0x14) move_mount(r5, &(0x7f0000008080)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x167) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc) (async) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000040)=0xc) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000000)='GPL\x00'}, 0x90) r7 = openat2(0xffffffffffffff9c, &(0x7f0000000700)='./file0\x00', 0x0, 0x0) bind$packet(r7, 0x0, 0x0) (async) bind$packet(r7, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x8, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0) (async) bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r8}, 0x10) (async) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r8}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) 3.959920055s ago: executing program 3 (id=6701): r0 = socket$inet6(0xa, 0x2, 0x0) sendmsg$IPVS_CMD_NEW_DAEMON(0xffffffffffffffff, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioprio_set$uid(0x3, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8) socket$nl_route(0x10, 0x3, 0x0) openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x201810, &(0x7f0000001580)={[{@user_xattr}, {@nombcache}, {@dioread_lock}, {@delalloc}, {@barrier_val={'barrier', 0x3d, 0x4c}}, {@lazytime}, {@init_itable_val={'init_itable', 0x3d, 0x5}}, {@usrquota}, {@errors_continue}], [{@euid_eq}, {@euid_lt}, {@uid_gt}, {@fowner_eq}, {@uid_lt}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x50, 0x30, 0x65, 0x62, 0x35, 0x39, 0x61], 0x2d, [0x35, 0x31, 0x32, 0x35], 0x2d, [0x38, 0x65, 0x38, 0x33], 0x2d, [0x63, 0x65, 0x63, 0x65], 0x2d, [0x56, 0x33, 0x65, 0x32, 0x62, 0x32, 0x38, 0x557f97da0f2b39c7]}}}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}]}, 0xfe, 0x55d, &(0x7f0000000980)="$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") r2 = memfd_create(0x0, 0x0) ftruncate(r2, 0x400000) finit_module(r2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x452, &(0x7f0000000ec0)="$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") r3 = socket(0x10, 0x803, 0x0) perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r4, &(0x7f000000c2c0)={0x0, 0xfffffd66, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101804bc9555e1affd5020000000900010001797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000000009000300737975320000000014000000110001"], 0x7c}}, 0x0) r5 = syz_open_dev$tty1(0xc, 0x4, 0x1) r6 = dup(r5) write$UHID_INPUT(r6, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006) r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0001}]}) close_range(r7, 0xffffffffffffffff, 0x0) sendmsg$nl_route(r3, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0) getsockname$packet(r3, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB="50000000100039040000000000000000000000005a1f2a6ffffffffffffffff9bc19703d70f74734af3f220e064c4eb14d2fc65308e594c6b07e7d5f3ef31f8d3a3d6e5055565dedf90ea7ba5b000000000000000000", @ANYRES32=r8, @ANYBLOB="019800000000000030001280080001006772650024000280050009000000000006000e0001000000080007000a01010206000f00ff000000"], 0x50}}, 0x0) sendmmsg$inet(r0, &(0x7f0000005ac0)=[{{&(0x7f0000000180)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000400)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r8, @local, @local}}}], 0x20}}], 0x1, 0x0) 3.927446876s ago: executing program 4 (id=6703): r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000240), &(0x7f00000003c0)=r5}, 0x20) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r4, r1, 0x25, 0x0, @val=@tcx}, 0x40) syz_emit_ethernet(0xfdef, &(0x7f0000000040)=ANY=[], 0x0) 3.224365833s ago: executing program 3 (id=6708): r0 = syz_io_uring_setup(0x1516, &(0x7f0000000300), &(0x7f00000001c0)=0x0, &(0x7f0000000040)=0x0) io_uring_setup(0x0, 0x0) r3 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x66, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x5, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x252, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xfdcd}, 0x48) ioctl$PERF_EVENT_IOC_SET_BPF(r3, 0x40042408, r4) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x7, 0x0, 0x0}) io_uring_enter(r0, 0x47fa, 0x600, 0x0, 0x0, 0x0) 3.183264975s ago: executing program 1 (id=6709): socket$inet_tcp(0x2, 0x1, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000002c00), 0xa00, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000002600)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r2}, 0x10) socket$netlink(0x10, 0x3, 0x0) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000003c0)={'ip_vti0\x00', &(0x7f00000002c0)={'gre0\x00', 0x0, 0x0, 0x0, 0xfffffff8, 0x401, {{0x1f, 0x4, 0x0, 0x0, 0x7c, 0x65, 0x0, 0x6f, 0x2f, 0x0, @multicast1, @local, {[@timestamp={0x44, 0xc, 0x8b, 0x0, 0x5, [0x0, 0xffff]}, @cipso={0x86, 0x5b, 0x2, [{0x6, 0x2}, {0x5, 0x11, "7e114c0976b193497da8ba1d037381"}, {0x7, 0x3, "d9"}, {0x1, 0x9, "54de7c8af5c63c"}, {0x0, 0x3, "b9"}, {0x3a3b9bb582dcac88, 0x10, "233a1587b0abdb6c42d231379869"}, {0x6, 0xe, "8d5d4a84d5c76356bebc4c3f"}, {0x6, 0x4, "1646"}, {0x1, 0x4, "5bb3"}, {0x7, 0xd, "13286c2021182f33d3e577"}]}]}}}}}) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x0, 0x7fc00100}]}) prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) r4 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000100)) timer_create(0x0, &(0x7f0000066000)={0x0, 0x12}, &(0x7f00009b1ffc)) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) waitid(0x0, 0x0, 0x0, 0x41000004, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x13}, &(0x7f0000000240)=0x0) timer_settime(r5, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) futex(&(0x7f000000cffc), 0x800000000006, 0x0, 0x0, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000500)={'team0\x00', 0x0}) ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f0000000600)={@private0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @empty, 0x15f, 0x11, 0x45, 0x400, 0x9523, 0x10200, r6}) r7 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) ioctl$sock_inet_SIOCSARP(r7, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @multicast1}, {0x0, @dev}, 0x5c, {0x2, 0x0, @multicast1=0xe000cc02}}) socket$inet6_udp(0xa, 0x2, 0x0) recvmmsg(r1, &(0x7f0000001bc0)=[{{&(0x7f0000000400)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @local}, 0x80, &(0x7f0000000880)=[{&(0x7f00000001c0)=""/43, 0x2b}, {&(0x7f0000000680)=""/254, 0xfe}, {&(0x7f0000000480)=""/65, 0x41}, {&(0x7f0000000780)=""/204, 0xcc}, {&(0x7f0000000580)=""/8, 0x8}, {&(0x7f00000005c0)=""/33, 0x21}], 0x6, &(0x7f0000000900)=""/193, 0xc1}, 0x8}, {{&(0x7f0000000a00)=@xdp, 0x80, &(0x7f0000001a80)=[{&(0x7f0000000a80)=""/4096, 0x1000}], 0x1, &(0x7f0000001ac0)=""/224, 0xe0}, 0x43c}], 0x2, 0x32020, 0x0) cachestat(r0, &(0x7f0000000340)={0x8001, 0x3}, &(0x7f0000000380), 0x0) syz_io_uring_setup(0x15169, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000000)) syz_io_uring_setup(0x5e2, &(0x7f0000000280), &(0x7f0000000040), &(0x7f0000000180)) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x40, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000100)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}) 2.584017669s ago: executing program 3 (id=6712): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) fdatasync(r0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) preadv(r0, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffffff000}], 0x10000000000002a9, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 2.54404982s ago: executing program 2 (id=6714): socket$inet6_udp(0xa, 0x2, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp\x00') io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x0, @empty}, 0x10) preadv(r0, &(0x7f0000000340)=[{&(0x7f0000000280)=""/33, 0x21}], 0x1, 0x3c, 0x0) 2.316702139s ago: executing program 0 (id=6715): socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4) sendto$inet(r1, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10) sendto$inet(r1, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="4c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000020090100240012800b000100697036746e6c000014000280050009002900000008000100", @ANYRES32, @ANYBLOB="0800040000000300"], 0x4c}}, 0x0) 2.163904495s ago: executing program 2 (id=6716): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000040)={0x2, 0x0, &(0x7f0000000340)={&(0x7f0000000540)={0x2, 0x3, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @dev}}, @sadb_sa={0x2}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback}}]}, 0x60}, 0x1, 0x7}, 0x0) (async, rerun: 64) pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00') (rerun: 64) 1.901086595s ago: executing program 1 (id=6717): perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xbe, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700) write$cgroup_int(r0, &(0x7f0000000200)=0x4300, 0x43400) 1.800008819s ago: executing program 2 (id=6718): syz_read_part_table(0x5da, &(0x7f0000000280)="$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") openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) syz_io_uring_setup(0x3b67, &(0x7f0000001180)={0x0, 0x0, 0x10100}, &(0x7f0000001140), &(0x7f0000000000)=0x0) syz_io_uring_setup(0x7138, &(0x7f00000010c0), &(0x7f0000000080), &(0x7f00000000c0)) (async) syz_io_uring_setup(0x7138, &(0x7f00000010c0), &(0x7f0000000080)=0x0, &(0x7f00000000c0)) syz_io_uring_submit(r1, r0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54}) 1.632848966s ago: executing program 1 (id=6719): syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', 0x8, &(0x7f0000000680)={[{@dots}, {@dots}, {@nodots}, {@nodots}, {@dots}, {@fat=@quiet}, {@dots}, {@fat=@quiet}, {@nodots}, {@fat=@flush}, {@fat=@umask}, {@dots}, {@dots}, {@fat=@umask={'umask', 0x3d, 0x7fff}}, {@fat=@nfs}, {@dots}, {@fat=@tz_utc}, {@dots}, {@dots}, {@fat=@check_strict}, {@fat=@sys_immutable}, {@dots}]}, 0xfd, 0x1bf, &(0x7f0000000300)="$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") r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00') r1 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0) mount$bind(&(0x7f0000000300)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0) mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1adc51, 0x0) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) sendfile(r1, r0, 0x0, 0x80006804) 1.576467938s ago: executing program 0 (id=6720): r0 = socket$rxrpc(0x21, 0x2, 0xa) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x160000001}) ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000280)={0x0, "48b65584ae0ab1c2b080173318dc55df"}) ioctl$BTRFS_IOC_BALANCE_V2(r1, 0xc4009420, &(0x7f0000001280)={0x10, 0x4, {0x9, @struct={0x626f, 0x4}, 0x0, 0x1, 0x9, 0x7a, 0x7fffffff, 0x2, 0x4c0, @usage=0x7f, 0x4, 0x8, [0x5, 0x1, 0xe36, 0xdda, 0x6, 0x100000001]}, {0xf3c1, @usage=0x200, 0x0, 0x3, 0x4b, 0x8, 0x7, 0x7fffffff, 0x0, @usage=0x7fffffff, 0x0, 0x0, [0x1f, 0x100000000, 0x8, 0x8000000000000000, 0x5, 0x7d]}, {0x7fff, @struct={0xff, 0x7}, r2, 0x9, 0x1f, 0x7fffffffffffffff, 0x5, 0x100000001, 0x40, @usage=0x80, 0xfffffffd, 0x3, [0x81, 0xda5, 0x3f, 0x4, 0x5, 0x8]}, {0x3, 0x80000001, 0xfffffffffffffffb}}) r3 = syz_open_dev$loop(&(0x7f0000000080), 0x3, 0x8002) ioctl$BLKSECTGET(r3, 0x1267, &(0x7f00000000c0)) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r1, 0x4008941a, &(0x7f0000000040)=0x2) setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000240), 0x4) 1.470331592s ago: executing program 3 (id=6721): bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b702000000090001db1000000000000007000000000000009500000000000a6682f0a61b01e4c027d252f602901b7cbbd5b9097bb8334a5541cf9e345af317e35f2ad53d857708f974879196ac07622b10548ccd2028eaf7610ae297a58e413b22d81494fcb1dbd1e9cb784c590ddd3d400ac1949839f92232e7684f2305d906ee929a27a5dedf301650960d8ae1cf339f6bda65bf6594c2839dcea6e419c9b8b7d17b9e49f392c832ffa41c17b82700789b163bbc8507f171b46d2c569e75810e60a06b6f69ef41ca39a2e8c2f369545d761d74"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0x3, &(0x7f000000cf3d)=""/195}, 0x23) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bind$bt_hci(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x26, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$qrtr(0x2a, 0x2, 0x0) getsockname$qrtr(r3, &(0x7f0000000140), &(0x7f0000000180)=0xc) sendmsg$TIPC_NL_MEDIA_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000600)={0x4c, r2, 0x1, 0x0, 0x0, {0x3}, [@TIPC_NLA_BEARER={0x38, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x17, 0x1, @l2={'ib', 0x3a, 'veth0_virt_wifi\x00'}}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfff}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7f}]}]}]}, 0x4c}}, 0x0) ioperm(0x0, 0x4, 0x4000000001) syslog(0x1, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) setsockopt(0xffffffffffffffff, 0x10d, 0x0, 0x0, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001640)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x5c, 0x18, 0xa, 0x801, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x30, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'gretap0\x00'}, {0x14, 0x1, 'wg2\x00'}]}]}]}], {0x14, 0x10}}, 0xe4}}, 0x0) 1.251753301s ago: executing program 4 (id=6704): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x5, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x69, 0x11, 0x50}, [@func, @call], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil) preadv(0xffffffffffffffff, &(0x7f0000000300)=[{&(0x7f0000000200)=""/196, 0xfe94}, {&(0x7f00000001c0)=""/11, 0xb}, {&(0x7f0000000340)=""/235, 0xf5}], 0x3, 0x0, 0x0) perf_event_open$cgroup(&(0x7f0000000180)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x0, 0x6}, 0x0, 0x0, 0xfffffffd}, 0xffffffffffffffff, 0x22, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000014c0)={0x6, 0x23, &(0x7f0000000f40)=ANY=[@ANYBLOB="1800000009000000000000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000740700001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000100007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000010000008500000082000000310906000000000018110000", @ANYRES32=r0, @ANYBLOB="01006500000001000000000000000000000000000000000000000000f4cb652d74368699d9c91ddc8534da90b16527e5640ca435b16e73d655f079deac584e043a40ab902ed5f992abee4091060f6128d468eded422fdedc053381482e0a94443cbc34e333cc4654fbfc1a4998b1207ea568a0099a46c1e014b3ebda16954a95f5f435bf75ee39221b1fcecb0ec5", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000bf91000000000000b7020000020000008500000000000000b7000000000000009500000000000000"], 0x0, 0xfffffff9, 0x6, &(0x7f0000001340)=""/6, 0x0, 0x54, '\x00', 0x0, 0x25, r0, 0x8, &(0x7f0000001380)={0x5, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000013c0)=[r0, r0, r0], 0x0, 0x10, 0x8001}, 0x90) perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x9, 0x4, 0x0, 0x0, 0x0, 0x0, 0x26c5f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, @perf_config_ext={0x200, 0x2000000000008000}, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={0xffffffffffffffff, 0x0, 0xe, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) perf_event_open(0x0, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=@base={0x7, 0x4, 0x18, 0x28e, 0x20}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x7, &(0x7f0000000140)=@framed={{}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @alu={0x6, 0x0, 0xd}, @exit={0x95, 0x0, 0x7b00}, @call={0x85, 0x0, 0x0, 0x98}]}, &(0x7f00000003c0)='syzkaller\x00', 0x4, 0x9d, &(0x7f0000000500)=""/157}, 0x90) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f00000000c0)={0x0, 0x9, &(0x7f0000000080)={&(0x7f00000004c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0x4}, @ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x30}}, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000007c0)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000800)=ANY=[@ANYBLOB="bf16000000000000b7070000010000004070000000000000400000004000e1ff95000000000000002ba76bb33123751c4e3409e62751ee00ba19ce670d25010000020000040000009fc404000000c788b277beee1cbf9b0a4def23d410f6accd3641110bec4e90a6341965dac03d046837d907b09ec39e9ef8f6e396ad200e011ea665c45a3449abe802f5ab3e89cf40b8580218ce740068720000074e3e8eea3fd8cf49827ca315f5b87e1ca6433a8acd715f5888b2007f0000000000000000010089937090c34410000000000000090000000000414027efc842b6d6f800005335001db43a5c000000000000000024000000000000000000e75a89faff01210cce39bf405f1e846c1242000000000000cad326ad7add65873d9f87463ad6f7c2e8ee1a39244960b318778f2a047f6d5bc24fef5d7d617da7fb5e2a431ab9142f3a06d55740a43088696daaed74b9c5c29647d2f950a959cf9938d6df8600a62e96b7cb8e52cbdce57a79d6fce424c22001f6c3784a1975fa657d05003a32a4fd67ce446ac5430207db79240acaf091231b986e77d05d988d6edc71df48dca02113a38300c2bd2b5543ffc16695572361629d1022f722ec23812b70d72cd0010000007881bfa35b9fd6864e90ddb31f75f6324989cdc7044f563a1f74d4efe895fdbc463f747c08f40105869035000000000003000000000000000000000000000000000000080000003ddf4aa4b1c8b8a0ae6feb6737c275dc2740f742b5425f1d5819610608bbab35471cdb0500000000000000d4123f955267fe4a75c114f874e086287547d4099aeec9f15b8ee25a2a5ccf4a9b603c88e12ff25184d4e3c2f7f623559435b2c505fb7113400000f0bc440550ee91302f5a00000000000000000000000000000000e67ccc00148ac4c43021cce9f24f4b2f9492c32e7a92a557ac2b44b8f7a49789906d922b3e4916f390ab7edcd3f5b9fe14446dd446a52131c464f2c08efb46d934615c8631b7c42efd0294bea179b0433f5c899119ec0c0acef5383b5a2720caeb68f1e9c05b05d89467ded84da092dea262e51811e2d7fa515722516bd5ef6c8c4966e5937562a5648a696abaa042a7097ddefe0671f977fb145890f5bf41ba92b8c4c8b14f0d4a880ef4518bb328790700000021e041254f06bd7f000000000000000000000000000000282ffe000000000000000431e8e3204a7d95938c5334a0dd177f1a7389ee570d95e543a27546d3770740f354df6dfdb3d1179b4b9fccd0cd5b7578802c66f5dbf22ad0bd03cbe0fecd096bcf419d35988948d1cd4c51c406040000000090a3bc3cbc08255975f3cee08dab765d8a4ef870aaae3f81ed6364837171ce5564f3cf6feba1b6745409000000000000003459263499fae97e7dcb30e4cff009e0f4f78c155c4ab19b878fcb4cc14b8d2823643a17120418f42b42ed879cb23e6d4e0d11db988d0bc46de02702d29243b72215d5563bdae8c2ccda4498687cd50f3a9058f61d52d70aabccb18d41d75788faf60ce9be97c13e4252d9d112d9ac47368829f8a29eca17de807c840293dd387eee13fdecf3d5a334350f045a22b9adb0539d44d58a00fb9e83ebf4fea36b87e2afdf63f7abf5caf2b01317a5f65f22c8bcf36b390dece1e98541ae932ec3486f74c1eea673c1647568acb17efcef24a9c3504dfa7c7eefe3dcb8d570a730a0837839f54527ce334b8173e7bf73bcd8d80ef294fde6549a0f1a23b78b41f79ea543d2b38b80d3d28c6c93901b763fc8b88794aa74facc345e28f0ad79de4df5afd52e7dfc387e4d2ca4d5caca74754987dbbd4d64e233b4a1d81a9aeb981734ca5416cacf516ca8384d85310f24d393fd48c668465546117377547d11a61bd2bd9e35fa0da5118554a1d93147b103a51baf94aeb1b6292038300423344e6add2226ba5f6724a08567ef515898f0f7dfd3fc198092af3265c5df377a66bbde4fa4a049692e06ee5022c58290bdc37eeb16f4e099e33679044ba21898f76c982c8203663f1adb7bbb42ed8d9b0bb8bd9255e342959b822fa8b3d08b29f2201dfe3a3c5c8bf8bc82f249e7eb9f8571823d730fdc78c6b3122a3fd9209dcae70c10c7b17e83dd759a52fe5c362358dbb780a52f540000000000000000000011230e1d6f9fd3315ada8ecee55fc0ec6ec0ec950c0ad006a06a162035d5729795c4a58b59f9a252723480b08ae9bd52c176380a42b972a3400b5d28b273e60000007cac9d35a991c27e23ce5217fec9ce89ea2dea8ddb383e53cdd077e7c2d73404b7450664f70225897307d8a140ba97bfc2232dccdb1dd0496c219315c02f2ef46f30add1aa13e52d67116328c3a5ee3356eadea07abe8506767771d68e760f8c623fb64865a942acc4912dcd1fa5d729cb45c15577bbb8b08a705efeaf09dd6aadeb8d61501e4fd9c9b1ac845a2138cbde58a04589888c0e528a5134e1dfa8b3f6d8a76517df589cae1019a3bc280e99fb661271357dbbd7e9c42d3fe45efaaa00"/1810], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x35}, 0x48) setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000200)=r5, 0x4) sendmsg$inet(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000680)="00ba3b0000", 0x5}], 0x1}, 0x0) write$cgroup_subtree(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="2d64657669636573202d706964730200000020"], 0x13) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x4030582a, &(0x7f0000000040)) write$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000140)={'full'}, 0xfffffdef) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700) dup2(r6, r7) 1.181531293s ago: executing program 2 (id=6722): syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a320000000064000000060a010400000000000000000100000008000b40000000003c000480240001800b0001007470726f787900001400028008000140000000020800034000000016140001800b0001006578746864720000040002800900010073797a30"], 0xd8}}, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'geneve0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=@newlink={0x38, 0x10, 0x3, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_AF_SPEC={0x4}]}, 0x38}, 0x1, 0x2}, 0x0) syz_emit_ethernet(0x46, &(0x7f0000000100)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x10, 0x3a, 0xfe, @initdev={0xfe, 0x88, '\x00', 0x8, 0x0}, @ipv4={'\x00', '\xff\xff', @local}, {[], @ni={0x193, 0x0, 0x0, 0x0, 0x87}}}}}}, 0x0) 1.135843976s ago: executing program 1 (id=6723): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./file0\x00', 0xc, &(0x7f00000000c0)=ANY=[], 0x1, 0x25d, &(0x7f0000000c00)="$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") (async) r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', 0x0}) r2 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="0000000000000000f4000c80130018800c0005880800000000000000080003803000024066"], 0x270}, 0x1, 0x0, 0x0, 0x40000}, 0x0) open(&(0x7f0000002000)='./bus\x00', 0x14f942, 0x0) (async, rerun: 32) r3 = syz_io_uring_setup(0x239, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=0x0, &(0x7f00000001c0)=0x0) (rerun: 32) r6 = io_uring_setup(0x1717, &(0x7f0000000100)={0x0, 0x29c6, 0x200, 0x2, 0xef, 0x0, r3}) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000380)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x0, {0x0, r7}}) (async, rerun: 64) io_uring_enter(r3, 0x2def, 0x0, 0x0, 0x0, 0x0) (rerun: 64) perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x27, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) (async) r8 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r8, 0x8933, &(0x7f0000000340)={'vcan0\x00', 0x0}) (async) r10 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x111400, 0x0) ioctl$SIOCSIFHWADDR(r10, 0x8924, &(0x7f0000000200)={'veth0_macvtap\x00', @local}) (async) r11 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r11, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@newqdisc={0x48, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x18, 0x2, [@TCA_CAKE_BASE_RATE64={0xc, 0x2, 0x3b9aca00}, @TCA_CAKE_DIFFSERV_MODE={0x8, 0x3, 0x1}]}}]}, 0x48}}, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) r12 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r12, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000200)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10) (async) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) (async) r13 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) quotactl_fd$Q_SYNC(r13, 0xffffffff80000100, 0x0, 0x0) perf_event_open$cgroup(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000401, 0x0, @perf_bp={0x0}, 0x1420, 0xfffffffffffffffc, 0x0, 0x8, 0x0, 0x0, 0x82}, 0xffffffffffffffff, 0xfffffffffffffffe, 0xffffffffffffffff, 0xf) (async) socket$nl_generic(0x10, 0x3, 0x10) (async) syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) syz_io_uring_setup(0x24f8, &(0x7f0000000300)={0x0, 0x6a1e, 0x10100, 0x10}, &(0x7f0000000100)=0x0, &(0x7f0000000080)=0x0) r16 = socket$inet6_dccp(0xa, 0x6, 0x0) syz_io_uring_submit(r14, r15, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r16, 0x80, &(0x7f0000000200)=@in6={0xa, 0x0, 0x0, @dev, 0xfffffffd}}) 1.135535996s ago: executing program 0 (id=6724): perf_event_open$cgroup(&(0x7f00000003c0)={0x0, 0x80, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x62) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000008b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYRES8], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) r3 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x200000, 0x1000}, 0x20) setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) syz_emit_ethernet(0x7e, &(0x7f0000000040)={@link_local, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "ecff80", 0x48, 0x33, 0x0, @remote, @mcast2, {[], {0x0, 0x0, 0x48, 0x0, @wg=@cookie={0x4, 0x0, "7d91b3ccaf4c63521df8f969a9a3ef8377d86e2c440fb055", "8fc99fa615e832d5f00ce4a5807ebb53fbfc8fbe4761a7cfe44dcf957dbdc946"}}}}}}}, 0x0) 1.01252001s ago: executing program 4 (id=6725): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @local}, 0xc) socket(0x0, 0x3, 0x0) write$RDMA_USER_CM_CMD_DISCONNECT(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file0\x00', 0x3900c20, &(0x7f00000001c0), 0x81, 0x79e, &(0x7f00000018c0)="$eJzs3ctrXGUbAPDnTG5N2u9LPvhA6yogaKB0YmpsFVxUXIhgoaBr2zCZhjaTTMlMShMCbRHBjaDFhaCb7gQvdefWy1b/CxfSUmwajLiQkTOZaSfNTDppbo35/eC07zvnTJ73OZf3vDPnMCeAfWsw/ScTcTgiPkoi+muvJxHRVS11RpxcWW55cSGXTklUKm//nlSXWVpcyEXDe1IHa5WnI+LH9yOOZNbGLc3NT44VCvmZWn24PHVxuDQ3f/T81NhEfiI/fXxkdPTYiZdOHN+6XP/4Zf7Q7Y/feP6bk3+999TND39K4mQcqs1rzGOrDMZgbZ10patwlde3OtguS9aZd2AH28HGpIdmx8pRHoejPzqqpRZ6d7JlAMB2uRIRFQBgn0mc/wFgn6l/D7C0uJCrT+t8XbDOxYG96c5rKxeolmrXNpfv599Zu2Z3oHodtG8pWZV8EhEDWxB/MCI+/+7dr9Iptuk6JEAzV69FxNmBwbX9f7LmnoWNeqGNZQYfqjf0f92bDA88wvfp+OflZuO/zP3xTzQZ//Q0OXYfxzrHf03m1haEaSkd/73acG/bckP+NQMdtdp/qmO+ruTc+UI+7dv+GxFD0dWT1kfWiTF07+97reY1jv/uXr+Q9nm5u9cvfPlgicytzp7V7xkfK49tJudGd65FPNPZLP96/79yD1uz8e/pNmO8+coHn7Wal+af5luf0vir899elRsRzzXd/g/uaEvWvT9xuLo7DNd3iia+/fXTvlbxG7d/OqXx658FdkK6/fvWz38gabxfs7TxGD/f6P+h1bxH5998/+9O3qmW64OEy2Pl8sxIRHfy1trXjz14b71eXz7Nf+jZ7qbHf73/a7b/p58Jz7aZf+fta18/fv7bK81/fEPbf+OFm8uTHa3it7f9R6ulodor7fR/7TZwM+sOAAAAAAAAAAAAAAAAAAAAAAAAANqViYhDkWSy98uZTDa78gzv/0dfplAslY+cK85Oj0f1WdkD0ZWp/9Rlf8PvoY7Ufg+/Xj/2UP3FiPhfRHzS01utZ3PFwvhuJw8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANQdbPP8/9VvPbrcOANg2B3a7AQDAjnP+B4D9Z2Pn/95tawcAsHN8/geA/cf5HwD2H+d/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAttnpU6fSqfLn4kIurY9fmpudLF46Op4vTWanZnPZXHHmYnaiWJwo5LO54lTLP3R15b9CsXhxNKZnLw+X86XycGlu/sxUcXa6fOb81NhE/ky+a8cyAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAID2lebmJ8cKhfzMnilUKpUrT0Az/g2FjtpO8KS0Z88VMptYdV/sduMfUWjsJXp3p3MCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2AP+CQAA//+qiiUU") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_merged\x00', 0x275a, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x10, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000100000001104800000000009500000000d20000"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90) r1 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382) r2 = socket$inet6(0xa, 0x800000000000002, 0x0) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x2}, 0x1c) setsockopt$sock_linger(r2, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @broadcast}, 0x200020}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171, 0x0, 0x0, 0x20000000}, 0xa}], 0x400000000000172, 0x4000300) r3 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xaf\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n0xffffffffffffffff, @ANYRES16], &(0x7f0000001cc0)='syzkaller\x00', 0x9, 0x30, &(0x7f0000000200)=""/48, 0x41100, 0x9, '\x00', 0x0, 0x1c, 0xffffffffffffffff, 0x8, &(0x7f0000002400)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000002440)={0x0, 0xf, 0x1}, 0x10}, 0x80) r8 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r8, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) r9 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r9, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010000100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b000000000000000000"], 0x2c}, {&(0x7f0000002bc0)=ANY=[@ANYRES32, @ANYRESDEC, @ANYRESHEX, @ANYRESOCT=r8, @ANYBLOB="00000000d75d17e6193fafe207b25360fb1fe2edb8f9c597110e606ba7ea7d9370a898e71cb4221e5812adb4e9523a5ebc6fbc658f059046c3c0dd5113a2f11b9b31df04832500b95fba147ad27370100207d17ce4220f6088557280ce35d818943e3ce2a9e2e563798fe050ae7deb9a", @ANYRES32, @ANYRESOCT, @ANYRESOCT=r4, @ANYRES64], 0x200}, {&(0x7f0000000a40)=ANY=[@ANYRES8, @ANYRES32, @ANYRESHEX, @ANYRES64=r7, @ANYBLOB="0400290014007100fcc9000000000000000000000000000000001400560020010000000000000000000000000000d2008a8008004200", @ANYRES32=r8, @ANYRESOCT=r3], 0x3b0}, {&(0x7f00000021c0)=ANY=[@ANYRES16=r6, @ANYRES32, @ANYBLOB="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"], 0x16c}], 0x4}, 0x0) syz_emit_ethernet(0x56, &(0x7f0000000200)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0000f5", 0x20, 0x6, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x2, 0x0, 0x0, 0x0, {[@mptcp=@add_addr={0x1e, 0xa, 0x2, 0xa, 0x0, @local, 0x100}]}}}}}}}}, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000d40)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa000800450000280000000000069078ac1414bbac1414aa00004e22", @ANYRES32=0x41424344, @ANYRES32, @ANYBLOB="5c6014ed020000906c36cc0899f6b5538d42af188015702ec935aa96b66b86b6e25486f09d9f5cc5a0846bf87d9c71e6242844fdf7cf199055d9af3d99475fa89ce6688874c153e2756899cdc02eaaee2f46bccda936036d9a3dca41a7bc4e216b843bf92fb20fcd5636635f450a93bdb286e39eb1c4de8e9c7bd47007fae56c8adf74"], 0x0) syz_emit_ethernet(0x0, 0x0, 0x0) 856.458306ms ago: executing program 0 (id=6727): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r4) sendmsg$NLBL_MGMT_C_REMOVEDEF(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="04e26003", @ANYRES16=r6, @ANYBLOB="0100000000000000000005000000"], 0x14}}, 0x0) sendmsg$NLBL_MGMT_C_ADDDEF(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2c000000a426cd823e924aa73c31d6607d98bc7b6eecbf6a570be3ee2bd0bbeec74625dba85594eefc1e04af3a2e34419f931632338d320144917ad2ce628a9e8eb7808dc350998288bf0ecd64ebf2dcf33905c3631631227fe1df004a2fe9ed34cd923e22c4db8607b7dd389e5b34f401aa21588b02567aca0a71c19e5212cf4970b0fa862008dc9963dfc780de0c3bebe682c4d2f584afd98cd385ad1878914a7d212711b1c15d659b79acecd3970ca51d2ab9eff0755a216481d4662994b716430b50c97d39a5d237b9a57378a2e279a9ac8359582f60d5174bbbda64d39913a3", @ANYRES16=r6, @ANYBLOB="0100000000000000000004000000080007000000000008000200050000000800080000000000"], 0x2c}}, 0x0) r7 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r7, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r7, 0x1, 0x8, &(0x7f0000000000), 0x4) sendmsg$NFT_MSG_GETSET(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000000a0a01"], 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x0) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000100)=@ethtool_link_settings={0x2}}) r8 = socket$inet6_sctp(0xa, 0x801, 0x84) getsockopt$inet_sctp6_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000000), &(0x7f0000000080)=0x4) r9 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r9, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_MAX_BURST(r8, 0x84, 0x14, &(0x7f0000000280)=@assoc_value={r10}, 0x8) r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB, @ANYRES32=r1], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r11}, 0x10) r12 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r12, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x40, 0x3, 0x8, 0x3, 0x0, 0x0, {}, [@CTA_TIMEOUT_L3PROTO={0x6}, @CTA_TIMEOUT_DATA={0x1c, 0x4, 0x0, 0x1, @sctp=[@CTA_TIMEOUT_SCTP_SHUTDOWN_RECD={0x8}, @CTA_TIMEOUT_SCTP_ESTABLISHED={0x8}, @CTA_TIMEOUT_SCTP_SHUTDOWN_ACK_SENT={0x8}]}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x21}]}, 0x40}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, r11, {0x2}}, './file0\x00'}) r14 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) r15 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r16 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r16, 0x8933, &(0x7f0000000140)={'wpan1\x00', 0x0}) sendmsg$NL802154_CMD_DEL_SEC_DEVKEY(r15, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000380)={0x24, r14, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_SEC_DEVKEY={0x8, 0x2f, 0x0, 0x1, [@NL802154_DEVKEY_ATTR_ID={0x4}]}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r17}]}, 0x24}}, 0x0) ioctl$TUNDETACHFILTER(r13, 0x401054d6, 0x0) 681.356983ms ago: executing program 1 (id=6728): perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0xbe, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) timer_create(0x0, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)=0x4300, 0x43400) 680.693733ms ago: executing program 2 (id=6729): socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10) setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4) sendto$inet(r1, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10) sendto$inet(r1, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="4c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="0000000020090100240012800b000100697036746e6c000014000280050009002900000008000100", @ANYRES32, @ANYBLOB="0800040000000300"], 0x4c}}, 0x0) 620.778946ms ago: executing program 3 (id=6730): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) fdatasync(r0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) preadv(r0, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffffff000}], 0x10000000000002a9, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 432.067713ms ago: executing program 0 (id=6731): openat$vcsu(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) read$usbmon(0xffffffffffffffff, 0x0, 0x0) 389.583045ms ago: executing program 4 (id=6732): r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_buf(r0, 0x6, 0x1f, 0x0, &(0x7f0000000480)) 373.279105ms ago: executing program 1 (id=6733): socket$inet_mptcp(0x2, 0x1, 0x106) r0 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r2) socket$kcm(0x2, 0x200000000000001, 0x106) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x2000480, &(0x7f0000000140), 0x1, 0x796, &(0x7f0000001440)="$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") pipe2$9p(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r5 = dup(r4) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX=r4]) write$P9_RLERRORu(r5, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000300000000000000000000001801000020a0702500000000008000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000000400000006000000180100002020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) write$binfmt_elf64(r5, &(0x7f0000000340)=ANY=[], 0x7c8) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r5]) syz_emit_ethernet(0x371, &(0x7f0000000840)=ANY=[@ANYBLOB="bbbbbbbbbbbbffffffffffff86dd60430093033b3afffe800000000000000000000000000000ff020000000000000000000000000001860090780000000000000000000000000007a78ce5400659808000ffffc0fe4023493b87aafaffffffffffffff2373247202fa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d000100000000000000000800ee000018fe906d26efe39393fe08f73eabc5977b1190a3a6ad8338f1511cdd10c35d8f6de79fc7fd175f75649fa368a32c829af02d7f44d92324a7051e460a13ddde25a5b85b9d930914625d8a049b4cf0d129806a610ad8477a2499a9a0527f75b655a6653d0363a979acf93f88eea07d68423e90280409de1657275f716a2bf2915d1783e8eb477b0d1170f0ecbdef4c23e1b76e9ab3d2fbe4b34438d2a77577edd0ebed9682b851b380ae0cab282af9d7ebe668177704c5fd4698c934de4731f3f61effc978001d06aa85616177c61bc943afcb84619755403946b0730a18d5c38cf7dcad830f2dc8674b87ba8b58f81ece27975cc39e595e9af90b4fe92a38d25551c2d9ebfc5dfc5a2a501b7e483de3f808895c5f4a1a2367bc591dd8b094822ff0822a18b79f7c5eba31fb68b2d734a6671e27182aee4df24a4a5c6186c0d3baa75af390dab23b500b0c0272479611e4f7f4299ec4d926d443367b105185e6ecd9602ba95392343e9bbd047ef6bc1ba42399907ccd0a562db212baa39eb8164e240069f656d3a05fecf894222a141123f5acaa556b9f30dcab2b90aa235a670670ffc5dc49dfb58d893100000000000005d47ae6e8805d4809c20547406b18901b0aeff04c0300f3c75dc2d227a83b89483b1084743475671545e65eb20506fcf98a102ec1876d4e6fa3b20519bbaa8a029cee00b8d3485e4163ed09bdb581c9fe68a356f542b0430509da61bfb02b3200145e14f0e74d2d52cfb3f27fafb60845f90b6dfc87c6905bbc94d33e4575c853105f543e868a8a53b360a9d33e2b1e26eb1d18065daa7628cf9ef083611c9f6ae2e1eb3d8bf9c6ab2642c4808288e62afbf03269f1f98aea6ab3beb1fdc5fdaabc2c676d8800871a6aa54155dea2d995cb22c9924e0ad38c6967052cc7786d779b8353aac33a57d79b05613a12328f61129017fb632dbf04542188b196e213408c258a6f0005d517fb2cf1a4ffdc1b7e018dff16e70b8b14c4b7a94fe18e88605aa6be1a02a326a6bce65f81edba66bd868ced53cc21616afb1999773defe61b16d3ee3477de777ea9ebe6d2e30f897fcb2f678038ec334b4057136308529573f6766965d0f37a203bdd68728eafe072a602c4ed7cbe836b5d170da55dc62ff9c931d9d418b4fda8c024b2a0837184da080f35090ebd53e36f"], 0x0) r7 = socket$inet6_sctp(0xa, 0x5, 0x84) r8 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r8, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}]}, &(0x7f0000000180)=0x10) r9 = socket$inet_sctp(0x2, 0x1, 0x84) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x0, 0x5, 0x0, &(0x7f0000000000)='syzkaller\x00'}, 0x90) getsockopt$inet_sctp_SCTP_MAX_BURST(r9, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r7, 0x84, 0x1, &(0x7f0000000400)={r10}, &(0x7f0000000440)=0x14) r11 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000000000000000000000018120000", @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r12 = openat$full(0xffffffffffffff9c, &(0x7f00000007c0), 0x0, 0x0) read$rfkill(r12, &(0x7f0000000080), 0xffffff1c) 133.724755ms ago: executing program 0 (id=6734): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_XFRM_DIR={0x5}, @NFTA_XFRM_DREG={0x8}, @NFTA_XFRM_KEY={0x8, 0x2, 0x1, 0x0, 0x4}]}}}]}]}], {0x14}}, 0x84}}, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000140), 0x12000, 0x0) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48) write$cgroup_int(r1, &(0x7f0000000580)=0x3, 0x12) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0x11, &(0x7f0000000140)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}, @call={0x85, 0x0, 0x0, 0x2a}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r3, 0xfffff000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7000000, 0x0, 0x0, 0x0, 0x0}, 0x50) getsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000180)={0x0, 0xf0}, &(0x7f00000001c0)=0x8) getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000240)={r4, @in6={{0xa, 0x4e23, 0xffff, @empty, 0x401}}, 0x9, 0x2800, 0x5, 0x0, 0x0, 0x400, 0x2}, &(0x7f0000000300)=0x9c) 133.225825ms ago: executing program 2 (id=6735): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014800000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000008000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, &(0x7f0000000040)=""/247, 0x26, 0xf7, 0x1}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="180000002000000000000000000000009500000000000000"], &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x2, 0x0, 0x0, 0x8000000}, 0x80) 0s ago: executing program 4 (id=6736): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(r0, 0xf504, 0x0) shutdown(r0, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e24, @multicast2}, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) r2 = perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0x25, 0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xfffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000f3ffffb0150000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$PERF_EVENT_IOC_SET_BPF(r2, 0x40042408, r4) r5 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000200)=@base={0x12, 0x5, 0x8, 0x2}, 0x48) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r6, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r5, &(0x7f0000000340), &(0x7f0000000180)=@tcp6=r6}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r5, &(0x7f0000000000), &(0x7f0000000040)=""/24}, 0x20) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_RATE_NEW(r7, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)={0x30, r1, 0x10, 0x0, 0x0, {}, [@DEVLINK_ATTR_RATE_TX_SHARE={0xc, 0xa6, 0xec75}, @DEVLINK_ATTR_RATE_PARENT_NODE_NAME={0xf, 0xa9, @name2}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=@can_delroute={0x34, 0x19, 0x1, 0x0, 0x0, {}, [@CGW_CS_XOR={0x8, 0x5, {0x0, 0xfc}}, @CGW_MOD_AND={0x15, 0x1, {{{}, 0x0, 0x0, 0x0, 0x0, "39f9dac5a3619b2c"}, 0x4}}]}, 0xfffffffffffffe8b}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x69, 0x11, 0xb6}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit={0x95, 0x0, 0x48}], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0xc, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x90) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) add_key$fscrypt_v1(&(0x7f00000000c0), &(0x7f0000000100)={'fscrypt:', @auto=[0x38, 0x63, 0x30, 0x33, 0x35, 0x62, 0x0, 0x37, 0x63, 0x39, 0x34, 0x34, 0x31, 0x32, 0x63, 0x30]}, &(0x7f0000000140)={0x0, "523cb30e34b3db65988ea42d6614c5bd4bcb59a860612ba7564c55876c9ed189ad2acbf13811a281d56d582fcc23f9ef1654d7baebb4db72cda98bdfadf37140", 0x36}, 0x48, 0x0) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000500)={{{@in=@broadcast, @in6=@initdev}}, {{@in=@remote}, 0x0, @in6=@ipv4={""/10, ""/2, @multicast1}}}, &(0x7f00000001c0)=0xe8) newfstatat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f00000002c0), 0x2000) r9 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r9, &(0x7f0000000ec0)=[{{&(0x7f0000000300)={0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000100)='k', 0x1}], 0x1}}], 0x1, 0x0) sendto$inet6(r9, &(0x7f0000000340)='0', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r10, &(0x7f0000000100), 0xfecc) kernel console output (not intermixed with test programs): -000000000000. [ 602.578828][T20985] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5811'. [ 602.690300][T20989] loop2: detected capacity change from 0 to 512 [ 602.737339][T20991] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5811'. [ 602.752528][T20989] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 602.772951][T20989] ext4 filesystem being mounted at /root/syzkaller.M92TMC/244/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 602.816363][T20989] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4117: comm syz.2.5812: Allocating blocks 18-19 which overlap fs metadata [ 602.861546][T20963] syz.3.5805 (20963) used greatest stack depth: 7112 bytes left [ 602.954370][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 603.741773][T21012] loop3: detected capacity change from 0 to 256 [ 603.858860][T21014] netlink: 'syz.0.5821': attribute type 27 has an invalid length. [ 604.255193][T21019] syz.0.5823 (21019): attempted to duplicate a private mapping with mremap. This is not supported. [ 604.280142][T21019] cgroup: fork rejected by pids controller in /syz0 [ 604.686928][T21025] loop2: detected capacity change from 0 to 8192 [ 604.731894][T21025] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 604.777374][ T29] kauditd_printk_skb: 40 callbacks suppressed [ 604.777469][ T29] audit: type=1400 audit(1719910676.850:14662): avc: denied { write } for pid=21023 comm="syz.2.5825" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 604.908442][T21039] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5827'. [ 605.111446][T21031] chnl_net:caif_netlink_parms(): no params data found [ 605.205193][T21031] bridge0: port 1(bridge_slave_0) entered blocking state [ 605.212547][T21031] bridge0: port 1(bridge_slave_0) entered disabled state [ 605.221826][T21031] bridge_slave_0: entered allmulticast mode [ 605.234407][T21031] bridge_slave_0: entered promiscuous mode [ 605.242977][T21031] bridge0: port 2(bridge_slave_1) entered blocking state [ 605.250413][T21031] bridge0: port 2(bridge_slave_1) entered disabled state [ 605.262853][T21031] bridge_slave_1: entered allmulticast mode [ 605.271957][T21031] bridge_slave_1: entered promiscuous mode [ 605.337441][T21031] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 605.355324][T21031] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 605.386072][T21031] team0: Port device team_slave_0 added [ 605.395331][T21053] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5832'. [ 605.406354][T21031] team0: Port device team_slave_1 added [ 605.435341][T21031] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 605.442373][T21031] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 605.468620][T21031] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 605.480709][ T29] audit: type=1326 audit(1719910677.496:14663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21049 comm="syz.2.5832" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2863f94b99 code=0x0 [ 605.502089][T21031] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 605.511026][T21031] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 605.537121][T21031] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 605.583517][T21053] loop2: detected capacity change from 0 to 2048 [ 605.597985][T21031] hsr_slave_0: entered promiscuous mode [ 605.614697][T21031] hsr_slave_1: entered promiscuous mode [ 605.626763][T21031] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 605.643741][T21031] Cannot create hsr debugfs directory [ 605.651367][T21056] netlink: 'syz.4.5833': attribute type 27 has an invalid length. [ 605.659554][T21053] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 605.674147][T21056] team0: left promiscuous mode [ 605.679010][T21056] team_slave_0: left promiscuous mode [ 605.684450][T21056] team_slave_1: left promiscuous mode [ 605.725760][T21053] ext4 filesystem being mounted at /root/syzkaller.M92TMC/247/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 605.786301][T21053] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5832'. [ 605.943745][T21063] loop4: detected capacity change from 0 to 512 [ 606.001865][ T29] audit: type=1326 audit(1719910677.976:14664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21062 comm="syz.1.5835" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8418d79b99 code=0x0 [ 606.031589][T21063] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 606.044725][T21063] ext4 filesystem being mounted at /root/syzkaller.1tkfIB/288/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 606.075385][T21063] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4117: comm syz.4.5834: Allocating blocks 18-19 which overlap fs metadata [ 606.148373][T21031] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 606.157041][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 606.168235][T21031] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 606.177084][T21031] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 606.190088][T21031] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 606.268677][T21031] 8021q: adding VLAN 0 to HW filter on device bond0 [ 606.290022][T21031] 8021q: adding VLAN 0 to HW filter on device team0 [ 606.307970][T17937] bridge0: port 1(bridge_slave_0) entered blocking state [ 606.315310][T17937] bridge0: port 1(bridge_slave_0) entered forwarding state [ 606.348632][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 606.350950][T17937] bridge0: port 2(bridge_slave_1) entered blocking state [ 606.364932][T17937] bridge0: port 2(bridge_slave_1) entered forwarding state [ 606.456019][T21031] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 606.514351][ T29] audit: type=1400 audit(1719910678.447:14665): avc: denied { mounton } for pid=21072 comm="syz.4.5836" path="/syzcgroup/unified/syz4" dev="cgroup2" ino=75 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 606.611620][T21031] veth0_vlan: entered promiscuous mode [ 606.625979][T21077] loop4: detected capacity change from 0 to 8192 [ 606.633744][T21031] veth1_vlan: entered promiscuous mode [ 606.666897][T21077] FAT-fs (loop4): Unrecognized mount option "00000000000000000003˙00000000000000000003" or missing value [ 606.679447][T21031] veth0_macvtap: entered promiscuous mode [ 606.690539][T21031] veth1_macvtap: entered promiscuous mode [ 606.705410][T21031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 606.716494][T21031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 606.730438][T21031] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 606.744008][T21031] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 606.754653][T21031] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 606.770373][T21031] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 606.786106][T21031] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 606.795381][T21031] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 606.804176][T21031] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 606.812880][T21031] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 607.089473][T21089] xt_CT: You must specify a L4 protocol and not use inversions on it [ 607.221679][T21092] loop2: detected capacity change from 0 to 1764 [ 607.228477][ T29] audit: type=1400 audit(1719910679.111:14666): avc: denied { unmount } for pid=21031 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 607.267435][ T29] audit: type=1400 audit(1719910679.139:14667): avc: denied { mounton } for pid=21091 comm="syz.2.5839" path="/root/syzkaller.M92TMC/249/file0/file0" dev="loop2" ino=1986 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=file permissive=1 [ 607.662473][T21103] netlink: 'syz.1.5844': attribute type 27 has an invalid length. [ 607.840665][T21110] loop4: detected capacity change from 0 to 512 [ 607.893982][T21110] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 607.906771][T21110] ext4 filesystem being mounted at /root/syzkaller.1tkfIB/290/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 607.944521][T21110] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4117: comm syz.4.5846: Allocating blocks 18-19 which overlap fs metadata [ 608.090126][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 608.453334][ T29] audit: type=1326 audit(1719910680.237:14668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21127 comm="syz.2.5851" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2863f94b99 code=0x0 [ 608.877027][T21147] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 608.907789][T21148] netlink: 'syz.0.5857': attribute type 27 has an invalid length. [ 609.018768][T21148] bridge0: port 2(bridge_slave_1) entered disabled state [ 609.026098][T21148] bridge0: port 1(bridge_slave_0) entered disabled state [ 609.258423][T21148] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 609.277118][T21148] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 609.362549][T21148] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 609.371619][T21148] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 609.380776][T21148] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 609.389881][T21148] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 609.630540][T21157] loop3: detected capacity change from 0 to 512 [ 609.666334][T21157] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 609.681700][T21157] ext4 filesystem being mounted at /root/syzkaller.8yxvaZ/965/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 609.699310][T21157] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4117: comm syz.3.5860: Allocating blocks 18-19 which overlap fs metadata [ 609.812399][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 610.382723][ T29] audit: type=1400 audit(1719910682.019:14669): avc: denied { map } for pid=21176 comm="syz.2.5868" path="socket:[71154]" dev="sockfs" ino=71154 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1 [ 610.508424][T21180] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 610.776246][ T29] audit: type=1326 audit(1719910682.379:14670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21184 comm="syz.3.5871" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f835caf3b99 code=0x0 [ 610.971419][T21191] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5873'. [ 611.011623][T21192] loop4: detected capacity change from 0 to 512 [ 611.045334][T21192] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 611.062924][T21192] ext4 filesystem being mounted at /root/syzkaller.1tkfIB/298/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 611.081296][T21192] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4117: comm syz.4.5874: Allocating blocks 18-19 which overlap fs metadata [ 611.139515][T21196] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 611.148444][T21196] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(9) [ 611.155064][T21196] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 611.162857][T21196] vhci_hcd vhci_hcd.0: Device attached [ 611.169686][T21196] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(11) [ 611.176395][T21196] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 611.183861][T21196] vhci_hcd vhci_hcd.0: Device attached [ 611.189844][T21196] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5875'. [ 611.191807][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 611.198896][T21196] netlink: 64 bytes leftover after parsing attributes in process `syz.2.5875'. [ 611.258631][T21197] vhci_hcd: connection closed [ 611.258817][T21199] vhci_hcd: connection closed [ 611.263699][T11567] vhci_hcd: stop threads [ 611.272682][T11567] vhci_hcd: release socket [ 611.277270][T11567] vhci_hcd: disconnect device [ 611.285023][T11567] vhci_hcd: stop threads [ 611.289373][T11567] vhci_hcd: release socket [ 611.294289][T11567] vhci_hcd: disconnect device [ 611.527700][ T29] audit: type=1326 audit(1719910683.080:14671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21201 comm="syz.4.5876" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f70df912b99 code=0x0 [ 612.111752][ T29] audit: type=1326 audit(1719910683.606:14672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21212 comm="syz.0.5881" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x0 [ 612.227426][T21218] netlink: 'syz.3.5883': attribute type 10 has an invalid length. [ 612.240983][T21218] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link [ 612.263061][T21222] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 612.362233][T21223] loop2: detected capacity change from 0 to 256 [ 612.595494][T21231] loop4: detected capacity change from 0 to 512 [ 612.634828][T21231] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 612.661005][T21231] ext4 filesystem being mounted at /root/syzkaller.1tkfIB/300/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 612.692019][T21231] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:4117: comm syz.4.5886: Allocating blocks 18-19 which overlap fs metadata [ 612.827716][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 613.311394][ T29] audit: type=1400 audit(1719910684.723:14673): avc: denied { read } for pid=21245 comm="syz.0.5892" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 613.621153][T21258] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 613.678523][T21259] loop4: detected capacity change from 0 to 512 [ 613.697225][T21259] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 613.710447][T21259] EXT4-fs (loop4): invalid journal inode [ 613.764985][ T29] audit: type=1326 audit(1719910685.138:14674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21257 comm="syz.4.5896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70df912b99 code=0x7ffc0000 [ 613.772457][T21263] loop3: detected capacity change from 0 to 512 [ 613.788631][ T29] audit: type=1326 audit(1719910685.138:14675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21257 comm="syz.4.5896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7f70df912b99 code=0x7ffc0000 [ 613.788668][ T29] audit: type=1326 audit(1719910685.138:14676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21257 comm="syz.4.5896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70df912b99 code=0x7ffc0000 [ 613.842290][ T29] audit: type=1326 audit(1719910685.138:14677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21257 comm="syz.4.5896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70df912b99 code=0x7ffc0000 [ 613.865917][ T29] audit: type=1326 audit(1719910685.138:14678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21257 comm="syz.4.5896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f70df912b99 code=0x7ffc0000 [ 613.913810][T21263] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 613.929809][T21263] ext4 filesystem being mounted at /root/syzkaller.8yxvaZ/974/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 613.948801][T21263] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4117: comm syz.3.5899: Allocating blocks 18-19 which overlap fs metadata [ 614.019973][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 614.165547][T21270] netlink: 52 bytes leftover after parsing attributes in process `syz.1.5901'. [ 614.542992][T21281] syzkaller0: entered promiscuous mode [ 614.548515][T21281] syzkaller0: entered allmulticast mode [ 614.742452][T21288] sctp: [Deprecated]: syz.3.5907 (pid 21288) Use of int in max_burst socket option. [ 614.742452][T21288] Use struct sctp_assoc_value instead [ 614.804167][T21291] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5908'. [ 614.914338][T21294] netlink: 'syz.1.5910': attribute type 21 has an invalid length. [ 614.922285][T21294] IPv6: NLM_F_CREATE should be specified when creating new route [ 614.935249][T21294] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 614.942510][T21294] IPv6: NLM_F_CREATE should be set when creating new route [ 614.949732][T21294] IPv6: NLM_F_CREATE should be set when creating new route [ 614.956978][T21294] IPv6: NLM_F_CREATE should be set when creating new route [ 614.997503][T21295] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5908'. [ 615.086388][T21298] netlink: 'syz.3.5911': attribute type 10 has an invalid length. [ 615.254687][T21302] loop2: detected capacity change from 0 to 512 [ 615.281032][T21302] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 615.294689][T21302] ext4 filesystem being mounted at /root/syzkaller.M92TMC/263/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 615.306909][T21304] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5913'. [ 615.311509][T21302] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4117: comm syz.2.5912: Allocating blocks 18-19 which overlap fs metadata [ 615.325815][T21304] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5913'. [ 615.423117][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 615.543169][T21312] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 615.663618][T21317] dvmrp0: entered allmulticast mode [ 615.716456][T21321] loop2: detected capacity change from 0 to 512 [ 615.735607][T21321] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 615.744736][T21321] EXT4-fs (loop2): Couldn't mount because of unsupported optional features (fffc1829) [ 615.754515][T21321] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities [ 615.829440][T21321] loop2: detected capacity change from 0 to 512 [ 615.846420][T21321] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 615.855568][T21321] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 615.867514][T21321] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 615.878625][T21321] System zones: 0-2, 18-18, 34-34 [ 615.887114][T21321] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 615.902208][T21321] EXT4-fs (loop2): 1 truncate cleaned up [ 615.911942][T21321] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 615.938267][T21321] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #2: block 3: comm syz.2.5917: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 616.042916][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 616.539537][T21346] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5928'. [ 616.642501][T21351] loop2: detected capacity change from 0 to 1024 [ 616.658762][T21351] EXT4-fs: Ignoring removed orlov option [ 616.664634][T21351] EXT4-fs: Ignoring removed nomblk_io_submit option [ 616.676549][T21351] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 616.703031][T21354] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5932'. [ 616.716241][ T29] kauditd_printk_skb: 14 callbacks suppressed [ 616.722453][ T29] audit: type=1326 audit(1719910687.861:14693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21350 comm="syz.0.5932" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x0 [ 616.851151][T21357] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5932'. [ 616.864944][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 617.084108][T21366] loop2: detected capacity change from 0 to 512 [ 617.109432][T21366] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 617.118607][T21366] EXT4-fs (loop2): Couldn't mount because of unsupported optional features (fffc1829) [ 617.128406][T21366] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities [ 617.180244][T21366] loop2: detected capacity change from 0 to 512 [ 617.189514][T21366] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 617.198809][T21366] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 617.210495][T21366] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 617.231212][T21366] System zones: 0-2, 18-18, 34-34 [ 617.237898][T21366] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 617.262493][T21366] EXT4-fs (loop2): 1 truncate cleaned up [ 617.270650][T21366] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 617.296709][T21366] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #2: block 3: comm syz.2.5935: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 617.372527][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 617.533638][T21376] loop4: detected capacity change from 0 to 512 [ 617.542322][T21376] EXT4-fs: Invalid want_extra_isize 4 [ 617.590457][T21376] loop4: detected capacity change from 0 to 1024 [ 617.624993][T21376] EXT4-fs: Ignoring removed nomblk_io_submit option [ 617.632651][T21376] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 617.645978][T21376] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 617.654238][T21376] System zones: 0-1, 3-36 [ 617.663286][T21376] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 617.764548][T21383] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5943'. [ 617.811937][T21383] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5943'. [ 617.844702][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 618.087251][T21391] loop2: detected capacity change from 0 to 2048 [ 618.106179][T21391] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 618.116740][T21391] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 618.131938][T21391] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002] [ 618.140655][T21391] System zones: 0-19 [ 618.150462][T21391] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 618.225463][T21395] loop4: detected capacity change from 0 to 2048 [ 618.258856][T21395] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 618.381445][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 618.438637][T21403] loop3: detected capacity change from 0 to 512 [ 618.461078][T21403] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 618.470209][T21403] EXT4-fs (loop3): Couldn't mount because of unsupported optional features (fffc1829) [ 618.479928][T21403] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities [ 618.511723][T21405] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem [ 618.522981][T21405] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=io+mem:owns=io+mem [ 618.539938][T21405] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5950'. [ 618.587388][T21403] loop3: detected capacity change from 0 to 512 [ 618.600363][T21403] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 618.609541][T21403] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 618.627153][T21403] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 618.652348][T21403] System zones: 0-2, 18-18, 34-34 [ 618.667006][T21403] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 618.698331][T21403] EXT4-fs (loop3): 1 truncate cleaned up [ 618.715989][T21403] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 618.729144][T21411] loop4: detected capacity change from 0 to 512 [ 618.783128][T21403] EXT4-fs error (device loop3): ext4_find_dest_de:2111: inode #2: block 3: comm syz.3.5951: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 618.811354][T21409] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5952'. [ 618.902085][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 619.074852][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 619.157595][T21417] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5955'. [ 619.178646][ T29] audit: type=1326 audit(1719910690.132:14694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21416 comm="syz.3.5955" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f835caf3b99 code=0x0 [ 619.316888][T21424] PM: Enabling pm_trace changes system date and time during resume. [ 619.316888][T21424] PM: Correct system time has to be restored manually after resume. [ 619.320232][T21422] loop3: detected capacity change from 0 to 2048 [ 619.363478][T21422] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 619.375892][T21422] ext4 filesystem being mounted at /root/syzkaller.8yxvaZ/987/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 619.390034][T21422] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5955'. [ 619.460895][T21429] loop2: detected capacity change from 0 to 512 [ 619.470572][T21429] EXT4-fs: Invalid want_extra_isize 4 [ 619.531550][T21429] loop2: detected capacity change from 0 to 1024 [ 619.550688][T21429] EXT4-fs: Ignoring removed nomblk_io_submit option [ 619.561060][T21429] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 619.571683][T21429] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 619.583109][T21429] System zones: 0-1, 3-36 [ 619.589007][T21429] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 619.773833][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 620.013273][T21440] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5963'. [ 620.111835][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 620.417855][T21454] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0 [ 620.426830][T21454] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0 [ 620.435703][T21454] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0 [ 620.444602][T21454] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0 [ 620.458009][T21454] geneve2: entered allmulticast mode [ 620.472497][ T29] audit: type=1400 audit(1719910691.332:14695): avc: denied { audit_write } for pid=21451 comm="syz.3.5966" capability=29 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 620.493977][ T29] audit: type=1107 audit(1719910691.332:14696): pid=21451 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='' [ 620.526371][ T29] audit: type=1400 audit(1719910691.378:14697): avc: denied { module_load } for pid=21451 comm="syz.3.5966" path=2F6D656D66643A2CEA202864656C6574656429 dev="tmpfs" ino=1716 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1 [ 620.640885][T21460] loop3: detected capacity change from 0 to 512 [ 620.668035][T21453] Invalid ELF header magic: != ELF [ 620.676427][T21460] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal [ 621.502160][T21476] loop3: detected capacity change from 0 to 512 [ 621.523770][T21476] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 621.531917][T21476] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 621.542691][T21476] EXT4-fs (loop3): orphan cleanup on readonly fs [ 621.552310][T21476] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 621.567783][T21476] EXT4-fs warning (device loop3): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 621.579829][T21476] EXT4-fs (loop3): 1 truncate cleaned up [ 621.593768][T21476] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 621.681357][ T29] audit: type=1326 audit(1719910692.449:14698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21478 comm="syz.0.5976" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x0 [ 621.746520][T21486] loop2: detected capacity change from 0 to 512 [ 621.783704][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 621.813911][T21486] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 621.823152][T21486] EXT4-fs (loop2): Couldn't mount because of unsupported optional features (fffc1829) [ 621.832781][T21486] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities [ 621.942834][T21486] loop2: detected capacity change from 0 to 512 [ 621.949784][T21486] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 621.958952][T21486] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 621.970577][T21486] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 621.978924][T21486] System zones: 0-2, 18-18, 34-34 [ 621.984493][T21486] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 622.008024][T21486] EXT4-fs (loop2): 1 truncate cleaned up [ 622.014476][T21486] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 622.040285][T21486] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #12: block 13: comm syz.2.5979: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=1 [ 622.139874][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 622.249940][T21493] __nla_validate_parse: 3 callbacks suppressed [ 622.249956][T21493] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5981'. [ 622.266244][T21493] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5981'. [ 622.373126][ T29] audit: type=1326 audit(1719910693.085:14699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21495 comm="syz.4.5982" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f70df912b99 code=0x0 [ 622.693610][T21508] loop2: detected capacity change from 0 to 512 [ 622.702163][T21508] EXT4-fs: Invalid want_extra_isize 4 [ 622.776275][T21508] loop2: detected capacity change from 0 to 1024 [ 622.809193][T21508] EXT4-fs: Ignoring removed nomblk_io_submit option [ 622.818912][T21508] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 622.831910][T21508] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 622.849377][T21508] System zones: 0-1, 3-36 [ 622.855736][T21508] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 623.040005][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 623.403318][T21526] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5990'. [ 623.833754][T21536] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5995'. [ 623.843381][T21536] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5995'. [ 623.861323][T21537] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5997'. [ 623.872244][ T29] audit: type=1326 audit(1719910694.470:14700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21532 comm="syz.3.5997" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f835caf3b99 code=0x0 [ 624.017569][T21540] loop3: detected capacity change from 0 to 2048 [ 624.055260][T21540] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 624.067969][T21540] ext4 filesystem being mounted at /root/syzkaller.8yxvaZ/995/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 624.086091][T21540] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5997'. [ 624.377593][ T29] audit: type=1400 audit(1719910694.941:14701): avc: denied { recv } for pid=3999 comm="syz.2.254" saddr=10.128.0.163 src=48132 daddr=10.128.0.144 dest=22 netif=eth0 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 624.548872][T21556] loop4: detected capacity change from 0 to 8192 [ 624.566166][T21558] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6005'. [ 624.583936][T21556] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 624.844703][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 625.377302][T21579] loop3: detected capacity change from 0 to 256 [ 625.419879][T21579] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6011'. [ 625.419933][ T29] audit: type=1400 audit(1719910695.901:14702): avc: denied { setopt } for pid=21573 comm="syz.3.6011" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 625.614906][T21579] usb usb8: usbfs: interface 0 claimed by hub while 'syz.3.6011' sets config #1640420592 [ 625.972810][T21605] netlink: 40 bytes leftover after parsing attributes in process `syz.0.6021'. [ 626.003359][ T29] audit: type=1326 audit(1719910696.436:14703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21598 comm="syz.0.6021" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x0 [ 627.178180][ T29] audit: type=1400 audit(1719910697.516:14704): avc: denied { setattr } for pid=21631 comm="syz.0.6031" name="PNPIPE" dev="sockfs" ino=72777 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 627.178441][T21633] IPVS: set_ctl: invalid protocol: 50 0.0.0.0:20000 [ 627.492099][T21645] wireguard0: entered promiscuous mode [ 627.497742][T21645] wireguard0: entered allmulticast mode [ 627.530819][ T29] audit: type=1326 audit(1719910697.839:14705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21638 comm="syz.3.6034" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f835caf3b99 code=0x0 [ 628.237093][T21660] __nla_validate_parse: 1 callbacks suppressed [ 628.237110][T21660] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6041'. [ 628.308341][ T29] audit: type=1326 audit(1719910698.559:14706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21659 comm="syz.1.6041" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8418d79b99 code=0x0 [ 628.449488][T21663] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6041'. [ 628.516550][T21666] team_slave_0: mtu less than device minimum [ 628.844964][T21682] team0: entered promiscuous mode [ 628.850116][T21682] team_slave_0: entered promiscuous mode [ 628.855885][T21682] team_slave_1: entered promiscuous mode [ 628.862160][T21682] syz_tun: entered promiscuous mode [ 628.868175][T21682] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6047'. [ 628.878629][T21682] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6047'. [ 628.888268][ T29] audit: type=1400 audit(1719910699.103:14707): avc: denied { execute } for pid=21680 comm="syz.4.6047" path=2F6D656D66643AF365099F9138C07901631F6E7578202864656C6574656429 dev="tmpfs" ino=1728 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 628.920436][T21680] syz_tun: left promiscuous mode [ 628.925598][T21680] team0: left promiscuous mode [ 628.930458][T21680] team_slave_0: left promiscuous mode [ 628.935886][T21680] team_slave_1: left promiscuous mode [ 630.140210][T21724] wireguard0: entered promiscuous mode [ 630.145766][T21724] wireguard0: entered allmulticast mode [ 630.362588][T21729] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6063'. [ 630.398328][T21729] loop2: detected capacity change from 0 to 256 [ 630.436444][T21732] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6065'. [ 630.454023][ T29] audit: type=1326 audit(1719910700.543:14708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21730 comm="syz.1.6065" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8418d79b99 code=0x0 [ 630.615524][T21734] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6065'. [ 630.723578][T21736] loop3: detected capacity change from 0 to 8192 [ 630.791891][T21736] loop3: p1 p2 p4 [ 630.797231][T21736] loop3: p1 start 83821824 is beyond EOD, truncated [ 630.803878][T21736] loop3: p2 start 4293394690 is beyond EOD, truncated [ 630.810811][T21736] loop3: p4 size 50331904 extends beyond EOD, truncated [ 630.880568][T21736] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6066'. [ 630.903635][ T29] audit: type=1326 audit(1719910700.959:14709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21739 comm="syz.2.6068" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2863f94b99 code=0x0 [ 630.963485][ T29] audit: type=1326 audit(1719910701.014:14710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21741 comm="syz.0.6069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 630.987429][ T29] audit: type=1326 audit(1719910701.014:14711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21741 comm="syz.0.6069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 631.011103][ T29] audit: type=1326 audit(1719910701.014:14712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21741 comm="syz.0.6069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 631.035314][ T29] audit: type=1326 audit(1719910701.014:14713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21741 comm="syz.0.6069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 631.059490][ T29] audit: type=1326 audit(1719910701.014:14714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21741 comm="syz.0.6069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 631.083124][ T29] audit: type=1326 audit(1719910701.014:14715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21741 comm="syz.0.6069" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 631.170131][T21745] netlink: 'syz.4.6071': attribute type 1 has an invalid length. [ 631.195378][T21745] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 631.204248][T21745] bond2: (slave batadv1): Enslaving as a backup interface with an up link [ 631.654504][T21755] loop3: detected capacity change from 0 to 512 [ 631.683721][T21755] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 631.696954][T21755] ext4 filesystem being mounted at /root/syzkaller.8yxvaZ/1006/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 631.715636][T21755] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4117: comm syz.3.6074: Allocating blocks 18-19 which overlap fs metadata [ 631.750792][T21759] loop4: detected capacity change from 0 to 512 [ 631.799309][T21759] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 631.812954][T21759] ext4 filesystem being mounted at /root/syzkaller.1tkfIB/337/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 631.848641][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 631.885017][T21763] netlink: 56 bytes leftover after parsing attributes in process `syz.4.6075'. [ 632.711976][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 632.972508][T21787] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6083'. [ 633.114399][T21790] loop4: detected capacity change from 0 to 2048 [ 633.142858][T21790] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 633.159194][T21790] ext4 filesystem being mounted at /root/syzkaller.1tkfIB/338/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 633.540287][T21799] loop2: detected capacity change from 0 to 512 [ 633.579809][T21799] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 633.593293][T21799] ext4 filesystem being mounted at /root/syzkaller.M92TMC/299/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 633.612064][T21799] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4117: comm syz.2.6087: Allocating blocks 18-19 which overlap fs metadata [ 633.696055][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 633.937544][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 634.335612][T21814] bridge0: port 4(vlan2) entered blocking state [ 634.342056][T21814] bridge0: port 4(vlan2) entered disabled state [ 634.348783][T21814] vlan2: entered allmulticast mode [ 634.356462][T21814] vlan2: left allmulticast mode [ 634.916791][T21830] program syz.0.6098 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 634.935418][T21832] __nla_validate_parse: 1 callbacks suppressed [ 634.935437][T21832] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6099'. [ 634.974585][T21831] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 635.022498][T21831] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6100'. [ 635.237867][T21841] netlink: 40 bytes leftover after parsing attributes in process `syz.3.6102'. [ 635.248594][ T29] kauditd_printk_skb: 5 callbacks suppressed [ 635.248607][ T29] audit: type=1326 audit(1719910704.974:14721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21839 comm="syz.3.6102" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f835caf3b99 code=0x0 [ 635.367998][T21845] loop3: detected capacity change from 0 to 2048 [ 635.409834][T21845] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 635.422542][T21845] ext4 filesystem being mounted at /root/syzkaller.8yxvaZ/1011/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 635.438729][T21845] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6102'. [ 635.617488][ T29] audit: type=1326 audit(1719910705.306:14722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21850 comm="syz.0.6107" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x0 [ 635.703918][T21859] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6108'. [ 635.723723][T21859] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6108'. [ 636.172194][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 636.823536][T21872] loop2: detected capacity change from 0 to 2048 [ 636.879450][T21872] loop2: p1 < > p3 [ 636.885913][T21872] loop2: p3 size 134217728 extends beyond EOD, truncated [ 636.935947][ T29] audit: type=1400 audit(1719910706.534:14723): avc: denied { map } for pid=21869 comm="syz.2.6114" path="/root/syzkaller.M92TMC/306/bus" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 636.962037][ T29] audit: type=1400 audit(1719910706.534:14724): avc: denied { execute } for pid=21869 comm="syz.2.6114" path="/root/syzkaller.M92TMC/306/bus" dev="devtmpfs" ino=102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 637.381429][T21884] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6120'. [ 637.428144][T21884] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6120'. [ 637.529255][ T29] audit: type=1326 audit(1719910707.078:14725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21885 comm="syz.3.6122" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f835caf3b99 code=0x0 [ 637.582790][ T29] audit: type=1326 audit(1719910707.115:14726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21886 comm="syz.4.6121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70df912b99 code=0x7ffc0000 [ 637.606470][ T29] audit: type=1326 audit(1719910707.115:14727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21886 comm="syz.4.6121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70df912b99 code=0x7ffc0000 [ 637.630247][ T29] audit: type=1326 audit(1719910707.115:14728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21886 comm="syz.4.6121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f70df912b99 code=0x7ffc0000 [ 637.653955][ T29] audit: type=1326 audit(1719910707.115:14729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21886 comm="syz.4.6121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70df912b99 code=0x7ffc0000 [ 637.677787][ T29] audit: type=1326 audit(1719910707.115:14730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21886 comm="syz.4.6121" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f70df912b99 code=0x7ffc0000 [ 637.861865][T21894] netlink: 'syz.1.6123': attribute type 19 has an invalid length. [ 638.158120][T21907] loop2: detected capacity change from 0 to 512 [ 638.187913][T21907] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 638.210947][T21907] EXT4-fs error (device loop2): ext4_orphan_get:1394: inode #15: comm syz.2.6127: iget: bad i_size value: -67835469387268086 [ 638.226523][T21907] EXT4-fs error (device loop2): ext4_orphan_get:1399: comm syz.2.6127: couldn't read orphan inode 15 (err -117) [ 638.245633][T21907] EXT4-fs (loop2): mounted filesystem f7ff0000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 638.292889][T21907] ext2 filesystem being mounted at /root/syzkaller.M92TMC/309/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 638.424613][T17062] EXT4-fs (loop2): unmounting filesystem f7ff0000-0000-0000-0000-000000000000. [ 638.433956][T21913] netlink: 32 bytes leftover after parsing attributes in process `syz.4.6129'. [ 639.188032][T21929] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6133'. [ 639.220436][T21929] loop2: detected capacity change from 0 to 2048 [ 639.266036][T21929] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 639.279110][T21929] ext4 filesystem being mounted at /root/syzkaller.M92TMC/311/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 639.379154][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 639.502735][T21938] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 639.857005][T21949] syzkaller1: entered promiscuous mode [ 639.857019][T21950] PF_CAN: dropped non conform CAN XL skbuff: dev type 65534, len 64993 [ 639.862885][T21949] syzkaller1: entered allmulticast mode [ 640.297672][T21966] loop4: detected capacity change from 0 to 2048 [ 640.307975][T21968] loop3: detected capacity change from 0 to 1024 [ 640.329608][T21966] EXT4-fs: Ignoring removed bh option [ 640.335210][T21966] EXT4-fs: Ignoring removed nomblk_io_submit option [ 640.359815][T21966] EXT4-fs: Ignoring removed nobh option [ 640.374096][T21968] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 640.402852][T21966] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 640.462162][T21966] EXT4-fs error (device loop4): __ext4_remount:6503: comm syz.4.6146: Abort forced by user [ 640.496792][T21966] EXT4-fs (loop4): Remounting filesystem read-only [ 640.510756][T21966] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=16 [ 640.533427][T21966] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=16 [ 640.566463][T21966] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=16 [ 640.589596][T21966] raw_sendmsg: syz.4.6146 forgot to set AF_INET. Fix it! [ 640.656522][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 640.727161][T21976] __nla_validate_parse: 2 callbacks suppressed [ 640.727184][T21976] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6148'. [ 640.778976][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 640.850100][T21976] loop2: detected capacity change from 0 to 2048 [ 640.904612][T21976] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 640.920163][T21976] ext4 filesystem being mounted at /root/syzkaller.M92TMC/314/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 640.941010][T21976] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6148'. [ 641.057702][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 641.599723][ T29] kauditd_printk_skb: 12 callbacks suppressed [ 641.599737][ T29] audit: type=1326 audit(1719910710.825:14743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21999 comm="syz.1.6159" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8418d79b99 code=0x0 [ 641.882502][T22009] loop4: detected capacity change from 0 to 8192 [ 641.904072][T22009] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 641.928883][ T29] audit: type=1326 audit(1719910711.139:14744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22008 comm="syz.2.6161" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2863f94b99 code=0x0 [ 642.920211][T22030] loop4: detected capacity change from 0 to 512 [ 642.941606][T22030] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 642.950741][T22030] EXT4-fs (loop4): Couldn't mount because of unsupported optional features (fffc1829) [ 642.960489][T22030] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities [ 643.014817][T22026] netlink: 'syz.1.6169': attribute type 13 has an invalid length. [ 643.024753][T22030] loop4: detected capacity change from 0 to 512 [ 643.040995][T22030] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 643.050216][T22030] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 643.063531][T22030] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 643.066028][T22026] IPVS: Error joining to the multicast group [ 643.074492][T22030] System zones: 0-2, 18-18, 34-34 [ 643.083893][T22030] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 643.106549][T22030] EXT4-fs (loop4): 1 truncate cleaned up [ 643.115197][T22030] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 643.129244][T22030] EXT4-fs error (device loop4): ext4_find_dest_de:2111: inode #12: block 13: comm syz.4.6170: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=1 [ 643.222255][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 643.471398][T22049] loop4: detected capacity change from 0 to 512 [ 643.490471][T22049] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 643.502740][T22049] EXT4-fs (loop4): invalid journal inode [ 643.508511][T22049] EXT4-fs (loop4): can't get journal size [ 643.516865][T22049] EXT4-fs (loop4): 1 truncate cleaned up [ 643.523043][T22049] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 643.543642][ T29] audit: type=1400 audit(1719910712.625:14745): avc: denied { mounton } for pid=22047 comm="syz.4.6176" path="/root/syzkaller.1tkfIB/358/file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop4" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 643.655249][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 643.732340][ T29] audit: type=1326 audit(1719910712.801:14746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22054 comm="syz.2.6179" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2863f94b99 code=0x0 [ 644.162096][ T29] audit: type=1326 audit(1719910713.198:14747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22064 comm="syz.4.6183" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f70df912b99 code=0x0 [ 644.393190][T22070] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6185'. [ 644.917195][T22084] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6191'. [ 644.943262][ T29] audit: type=1326 audit(1719910713.918:14748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22081 comm="syz.1.6191" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8418d79b99 code=0x0 [ 645.091248][T22088] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6191'. [ 645.346660][ T29] audit: type=1326 audit(1719910714.287:14749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22094 comm="syz.3.6195" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f835caf3b99 code=0x0 [ 645.404619][T22098] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6196'. [ 645.841626][T22110] loop3: detected capacity change from 0 to 512 [ 645.860005][T22110] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 645.869428][T22110] EXT4-fs (loop3): Couldn't mount because of unsupported optional features (fffc1829) [ 645.879278][T22110] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities [ 645.940944][T22110] loop3: detected capacity change from 0 to 512 [ 645.947905][T22110] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 645.957062][T22110] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 645.967195][T22110] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 645.975269][T22110] System zones: 0-2, 18-18, 34-34 [ 645.980761][T22110] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 646.001003][T22110] EXT4-fs (loop3): 1 truncate cleaned up [ 646.009940][T22110] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 646.026581][T22110] EXT4-fs error (device loop3): ext4_find_dest_de:2111: inode #12: block 13: comm syz.3.6200: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=1 [ 646.115965][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 646.324870][T22123] loop2: detected capacity change from 0 to 256 [ 646.401371][ T29] audit: type=1326 audit(1719910715.256:14750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22121 comm="syz.3.6204" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f835caf3b99 code=0x0 [ 646.617420][T22131] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6208'. [ 646.820990][T22139] netlink: 40 bytes leftover after parsing attributes in process `syz.4.6213'. [ 646.831415][ T29] audit: type=1326 audit(1719910715.662:14751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22136 comm="syz.4.6213" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f70df912b99 code=0x0 [ 646.870998][T22135] netlink: 52 bytes leftover after parsing attributes in process `syz.0.6211'. [ 646.937681][T22143] wireguard0: entered promiscuous mode [ 646.943275][T22143] wireguard0: entered allmulticast mode [ 646.952577][T22145] loop2: detected capacity change from 0 to 512 [ 646.986661][T22146] loop4: detected capacity change from 0 to 2048 [ 647.006989][T22145] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 647.016100][T22145] EXT4-fs (loop2): Couldn't mount because of unsupported optional features (fffc1829) [ 647.025771][T22145] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities [ 647.081115][T22146] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 647.111257][T22146] ext4 filesystem being mounted at /root/syzkaller.1tkfIB/367/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 647.156561][T22146] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6213'. [ 647.170989][T22145] loop2: detected capacity change from 0 to 512 [ 647.198159][T22145] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 647.207404][T22145] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 647.275201][T22145] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 647.299346][T22145] System zones: 0-2, 18-18, 34-34 [ 647.324782][T22145] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 647.349306][T22145] EXT4-fs (loop2): 1 truncate cleaned up [ 647.371954][T22145] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 647.386275][ T29] audit: type=1326 audit(1719910716.170:14752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22153 comm="syz.0.6216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 647.434865][ T29] audit: type=1326 audit(1719910716.170:14753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22153 comm="syz.0.6216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 647.458599][ T29] audit: type=1326 audit(1719910716.170:14754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22153 comm="syz.0.6216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 647.482415][ T29] audit: type=1326 audit(1719910716.170:14755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22153 comm="syz.0.6216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 647.506004][ T29] audit: type=1326 audit(1719910716.170:14756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22153 comm="syz.0.6216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 647.529766][ T29] audit: type=1326 audit(1719910716.170:14757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22153 comm="syz.0.6216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 647.553423][ T29] audit: type=1326 audit(1719910716.170:14758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22153 comm="syz.0.6216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 647.577145][ T29] audit: type=1326 audit(1719910716.170:14759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22153 comm="syz.0.6216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8ffed3d5d0 code=0x7ffc0000 [ 647.586884][T22145] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #12: block 13: comm syz.2.6214: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=1 [ 647.600799][ T29] audit: type=1326 audit(1719910716.170:14760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22153 comm="syz.0.6216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f8ffed40327 code=0x7ffc0000 [ 647.643984][ T29] audit: type=1326 audit(1719910716.170:14761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22153 comm="syz.0.6216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8ffed3eb99 code=0x7ffc0000 [ 647.673393][T22154] program syz.0.6216 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 647.788729][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 647.803625][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 648.288295][T22173] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6223'. [ 648.781771][T22197] loop2: detected capacity change from 0 to 1024 [ 648.805961][T22197] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 648.816198][T22197] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 648.827180][T22197] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869) [ 648.840428][T22197] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 648.853816][T22197] journal_load_superblock: Cannot read journal superblock [ 648.860987][T22197] EXT4-fs (loop2): Could not load journal inode [ 649.074863][T22205] openvswitch: netlink: ufid size 17 bytes exceeds the range (1, 16) [ 649.083069][T22205] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 649.339475][T22212] loop2: detected capacity change from 0 to 512 [ 649.355314][T22216] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6237'. [ 649.587152][T22226] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6239'. [ 649.775521][T22233] loop2: detected capacity change from 0 to 512 [ 649.811587][T22233] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 649.820729][T22233] EXT4-fs (loop2): Couldn't mount because of unsupported optional features (fffc1829) [ 649.830452][T22233] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities [ 649.936837][T22233] loop2: detected capacity change from 0 to 512 [ 649.952670][T22233] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 649.961808][T22233] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 650.008969][T22233] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 650.032722][T22233] System zones: 0-2, 18-18, 34-34 [ 650.041651][T22233] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 650.081755][T22233] EXT4-fs (loop2): 1 truncate cleaned up [ 650.106213][T22233] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 650.168567][T22233] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #12: block 13: comm syz.2.6242: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=1 [ 650.307764][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 650.366122][T22248] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6247'. [ 650.586892][T22254] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6250'. [ 650.685106][T22256] loop3: detected capacity change from 0 to 512 [ 650.692470][T22256] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 650.704107][T22256] EXT4-fs (loop3): 1 truncate cleaned up [ 650.710233][T22256] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 650.868959][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 651.089352][T22274] loop3: detected capacity change from 0 to 512 [ 651.110980][T22274] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 651.122720][T22274] EXT4-fs (loop3): 1 truncate cleaned up [ 651.131440][T22274] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 651.158761][T22277] loop4: detected capacity change from 0 to 512 [ 651.177000][T22277] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 651.186112][T22277] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 651.196181][T22277] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 651.204428][T22277] System zones: 0-2, 18-18, 34-34 [ 651.210163][T22277] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 651.228668][T22277] EXT4-fs (loop4): 1 truncate cleaned up [ 651.234924][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 651.235337][T22277] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 651.262369][T22277] EXT4-fs error (device loop4): ext4_find_dest_de:2111: inode #12: block 13: comm syz.4.6258: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=1 [ 651.347698][T16457] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 651.540967][T22288] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6261'. [ 652.325870][T22311] netlink: 24 bytes leftover after parsing attributes in process `syz.0.6269'. [ 652.608114][T22318] loop2: detected capacity change from 0 to 512 [ 652.633987][T22318] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 652.643430][T22318] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 652.666866][T22318] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 652.678662][T22318] System zones: 0-2, 18-18, 34-34 [ 652.684727][T22318] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 652.721994][T22318] EXT4-fs (loop2): 1 truncate cleaned up [ 652.728455][T22318] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 652.749103][T22318] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #12: block 13: comm syz.2.6272: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=1 [ 652.842733][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 653.161255][ T29] kauditd_printk_skb: 53 callbacks suppressed [ 653.161271][ T29] audit: type=1326 audit(1719910721.495:14815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22332 comm="syz.2.6278" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2863f94b99 code=0x0 [ 653.750709][T22341] chnl_net:caif_netlink_parms(): no params data found [ 653.886506][T22341] bridge0: port 1(bridge_slave_0) entered blocking state [ 653.893729][T22341] bridge0: port 1(bridge_slave_0) entered disabled state [ 653.924322][T22341] bridge_slave_0: entered allmulticast mode [ 653.944026][T22341] bridge_slave_0: entered promiscuous mode [ 653.961344][T22341] bridge0: port 2(bridge_slave_1) entered blocking state [ 653.968772][T22341] bridge0: port 2(bridge_slave_1) entered disabled state [ 653.996298][T22341] bridge_slave_1: entered allmulticast mode [ 654.015499][T22341] bridge_slave_1: entered promiscuous mode [ 654.070964][T22341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 654.085494][T22341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 654.110771][T22341] team0: Port device team_slave_0 added [ 654.120588][T22341] team0: Port device team_slave_1 added [ 654.127992][T22360] loop3: detected capacity change from 0 to 512 [ 654.134751][T22360] EXT4-fs: Ignoring removed oldalloc option [ 654.147086][T22341] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 654.154239][T22341] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 654.180312][T22341] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 654.194560][T22360] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b842e02d, mo2=0002] [ 654.202937][T22360] System zones: 1-12 [ 654.207264][T22360] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.6283: invalid indirect mapped block 1 (level 1) [ 654.224756][T22341] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 654.231751][T22341] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 654.257724][T22341] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 654.274447][T22360] EXT4-fs (loop3): Remounting filesystem read-only [ 654.281158][T22360] EXT4-fs (loop3): 1 truncate cleaned up [ 654.293951][T22360] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 654.310806][T22360] SELinux: (dev loop3, type ext4) getxattr errno 5 [ 654.342528][T22341] hsr_slave_0: entered promiscuous mode [ 654.348712][T22360] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 654.362010][T22341] hsr_slave_1: entered promiscuous mode [ 654.370737][T22341] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 654.386162][T22341] Cannot create hsr debugfs directory [ 654.532703][T22341] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0 [ 654.613527][T22341] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0 [ 654.672501][T22341] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0 [ 654.721879][T22381] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6287'. [ 654.737557][T22341] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0 [ 654.820992][T22341] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 654.834745][T22341] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 654.845309][T22341] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 654.856112][T22341] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 654.919171][T22341] 8021q: adding VLAN 0 to HW filter on device bond0 [ 654.939163][T22341] 8021q: adding VLAN 0 to HW filter on device team0 [ 654.951521][ T3794] bridge0: port 1(bridge_slave_0) entered blocking state [ 654.958724][ T3794] bridge0: port 1(bridge_slave_0) entered forwarding state [ 654.971226][T17936] bridge0: port 2(bridge_slave_1) entered blocking state [ 654.978503][T17936] bridge0: port 2(bridge_slave_1) entered forwarding state [ 655.083763][T22341] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 655.089304][T22389] loop2: detected capacity change from 0 to 512 [ 655.105821][ T29] audit: type=1326 audit(1719910723.295:14816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22386 comm="syz.0.6291" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x0 [ 655.175470][T22389] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 655.197444][T22389] ext4 filesystem being mounted at /root/syzkaller.M92TMC/341/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 655.220000][T22389] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 655.331732][T22341] veth0_vlan: entered promiscuous mode [ 655.342147][T22341] veth1_vlan: entered promiscuous mode [ 655.368082][T22341] veth0_macvtap: entered promiscuous mode [ 655.377324][T22341] veth1_macvtap: entered promiscuous mode [ 655.393704][T22341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 655.404222][T22341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 655.419048][T22341] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 655.431633][T22341] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 655.442154][T22341] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 655.456542][T22341] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 655.468690][T22341] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 655.477462][T22341] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 655.487154][T22341] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 655.495972][T22341] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 655.566971][T22417] netlink: 188 bytes leftover after parsing attributes in process `syz.3.6294'. [ 655.605523][T22419] loop4: detected capacity change from 0 to 164 [ 655.629441][T22419] Unable to read rock-ridge attributes [ 655.652214][T22419] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 656.063442][T22432] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6300'. [ 656.375994][T22442] wireguard0: entered promiscuous mode [ 656.381863][T22442] wireguard0: entered allmulticast mode [ 656.632324][T22451] tipc: Started in network mode [ 656.637238][T22451] tipc: Node identity , cluster identity 4711 [ 656.643833][T22451] tipc: Failed to obtain node identity [ 656.649411][T22451] tipc: Enabling of bearer rejected, failed to enable media [ 656.996142][T22464] loop3: detected capacity change from 0 to 512 [ 657.055375][T22464] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 657.093818][T22464] ext4 filesystem being mounted at /root/syzkaller.8yxvaZ/1057/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 657.199044][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 657.317611][T22472] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6314'. [ 657.406499][T22475] loop4: detected capacity change from 0 to 512 [ 657.424848][T22475] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 657.434230][T22475] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 657.444323][T22475] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 657.452494][T22475] System zones: 0-2, 18-18, 34-34 [ 657.459589][T22475] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 657.479031][T22475] EXT4-fs (loop4): 1 truncate cleaned up [ 657.485961][T22475] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 657.506207][T22475] EXT4-fs error (device loop4): ext4_find_dest_de:2111: inode #12: block 13: comm syz.4.6316: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=1 [ 657.559462][T22479] loop3: detected capacity change from 0 to 128 [ 657.691529][T22341] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 658.073308][T22485] vlan2: entered promiscuous mode [ 658.536047][T22497] netlink: 188 bytes leftover after parsing attributes in process `syz.4.6323'. [ 658.583718][T22498] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6322'. [ 659.128049][T22520] loop3: detected capacity change from 0 to 512 [ 659.147389][T22521] loop2: detected capacity change from 0 to 512 [ 659.158614][T22520] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 659.167712][T22520] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 659.180990][T22520] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 659.189166][T22520] System zones: 0-2, 18-18, 34-34 [ 659.195191][T22521] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 659.195204][T22520] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 659.214881][T22521] EXT4-fs (loop2): orphan cleanup on readonly fs [ 659.220265][T22520] EXT4-fs (loop3): 1 truncate cleaned up [ 659.240681][T22521] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.6330: bg 0: block 248: padding at end of block bitmap is not set [ 659.248476][T22520] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 659.270891][T22521] Quota error (device loop2): write_blk: dquota write failed [ 659.278538][T22521] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 659.288500][T22521] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.6330: Failed to acquire dquot type 1 [ 659.306236][T22521] EXT4-fs (loop2): 1 truncate cleaned up [ 659.313719][T22521] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 659.332202][T22520] EXT4-fs error (device loop3): ext4_find_dest_de:2111: inode #12: block 13: comm syz.3.6329: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=1 [ 659.363413][T22521] netlink: 'syz.2.6330': attribute type 4 has an invalid length. [ 659.419475][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 659.439255][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 659.705938][T22541] loop3: detected capacity change from 0 to 512 [ 659.743953][T22542] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6337'. [ 659.758665][T22541] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c01c, mo2=0002] [ 659.769195][T22541] System zones: 0-2, 18-18, 34-35 [ 659.777460][T22541] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 659.792718][T22541] ext4 filesystem being mounted at /root/syzkaller.8yxvaZ/1061/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 659.870983][T22547] netlink: 188 bytes leftover after parsing attributes in process `syz.4.6338'. [ 659.910160][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 660.003621][T22550] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6340'. [ 660.187915][T22556] 9pnet_fd: Insufficient options for proto=fd [ 660.192183][T22557] tmpfs: Unknown parameter 'mpoŠ' [ 660.198063][T22561] loop4: detected capacity change from 0 to 2048 [ 660.269840][T22561] Alternate GPT is invalid, using primary GPT. [ 660.276248][T22561] loop4: p2 p3 p7 [ 660.494823][T22572] netlink: 'syz.1.6347': attribute type 4 has an invalid length. [ 660.674347][T22579] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6351'. [ 660.981821][T22591] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6355'. [ 661.115189][ T29] audit: type=1326 audit(1719910728.842:14817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22585 comm="syz.0.6354" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x0 [ 661.182169][T22600] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6357'. [ 661.242745][T22604] loop2: detected capacity change from 0 to 512 [ 661.291668][T22604] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 661.301134][T22604] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 661.324335][T22604] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 661.342575][T22604] System zones: 0-2, 18-18, 34-34 [ 661.370968][T22604] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 661.389927][T22604] EXT4-fs (loop2): 1 truncate cleaned up [ 661.396452][T22604] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 661.416076][T22604] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #12: block 13: comm syz.2.6359: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=1 [ 661.520158][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 661.589867][T22618] loop4: detected capacity change from 0 to 512 [ 661.623715][T22618] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 661.645520][T22618] EXT4-fs (loop4): orphan cleanup on readonly fs [ 661.666216][T22618] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6362: bg 0: block 248: padding at end of block bitmap is not set [ 661.702917][T22618] Quota error (device loop4): write_blk: dquota write failed [ 661.710547][T22618] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 661.720631][T22618] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz.4.6362: Failed to acquire dquot type 1 [ 661.763276][T22618] EXT4-fs (loop4): 1 truncate cleaned up [ 661.773942][T22618] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 661.810388][T22618] netlink: 'syz.4.6362': attribute type 4 has an invalid length. [ 661.853187][T22623] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 661.913213][T22341] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 662.068522][T22630] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6365'. [ 662.929052][T22647] loop2: detected capacity change from 0 to 512 [ 662.952575][T22647] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 662.961708][T22647] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 662.993594][T22647] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 663.010969][T22647] System zones: 0-2, 18-18, 34-34 [ 663.027535][T22647] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 663.057633][T22647] EXT4-fs (loop2): 1 truncate cleaned up [ 663.069845][T22647] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 663.115766][T22647] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #2: block 3: comm syz.2.6373: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 663.281704][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 663.355676][T22664] loop4: detected capacity change from 0 to 512 [ 663.375302][T22664] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 663.385095][T22664] EXT4-fs (loop4): orphan cleanup on readonly fs [ 663.394581][T22664] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6376: bg 0: block 248: padding at end of block bitmap is not set [ 663.409647][T22664] Quota error (device loop4): write_blk: dquota write failed [ 663.417086][T22664] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 663.427211][T22664] EXT4-fs error (device loop4): ext4_acquire_dquot:6860: comm syz.4.6376: Failed to acquire dquot type 1 [ 663.439118][T22664] EXT4-fs (loop4): 1 truncate cleaned up [ 663.448286][T22664] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 663.467524][T22664] netlink: 'syz.4.6376': attribute type 4 has an invalid length. [ 663.548569][T22341] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 663.588403][T22674] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6378'. [ 663.924644][ T29] audit: type=1400 audit(1719910731.436:14818): avc: denied { create } for pid=22681 comm="syz.3.6384" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=irda_socket permissive=1 [ 664.088059][T22687] team0: entered promiscuous mode [ 664.093146][T22687] team_slave_0: entered promiscuous mode [ 664.099046][T22687] team_slave_1: entered promiscuous mode [ 664.109351][T22687] dummy0: entered promiscuous mode [ 664.115373][T22687] hsr1: Slave A (team0) is not up; please bring it up to get a fully working HSR network [ 664.125284][T22687] hsr1: Slave B (dummy0) is not up; please bring it up to get a fully working HSR network [ 664.162718][T22692] loop2: detected capacity change from 0 to 512 [ 664.188699][T22692] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 664.197843][T22692] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 664.262574][T22692] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 664.288194][T22692] System zones: 0-2, 18-18, 34-34 [ 664.316548][T22692] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 664.369702][T22692] EXT4-fs (loop2): 1 truncate cleaned up [ 664.419619][T22692] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 664.481666][T22692] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #2: block 3: comm syz.2.6388: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 664.653688][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 665.268006][T22717] __nla_validate_parse: 1 callbacks suppressed [ 665.268021][T22717] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6395'. [ 665.982560][T22736] loop2: detected capacity change from 0 to 512 [ 666.001837][T22736] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 666.010971][T22736] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 666.020221][T22736] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 666.029910][T22736] System zones: 0-2, 18-18, 34-34 [ 666.039643][T22736] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 666.060617][T22736] EXT4-fs (loop2): 1 truncate cleaned up [ 666.070273][T22736] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 666.084048][T22739] loop4: detected capacity change from 0 to 512 [ 666.120037][T22736] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #2: block 3: comm syz.2.6403: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 666.219454][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 666.410811][T22747] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6408'. [ 666.570934][ T29] audit: type=1326 audit(1719910733.882:14819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22749 comm="syz.1.6410" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8418d79b99 code=0x0 [ 667.488466][T22777] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6421'. [ 668.213763][T22791] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6426'. [ 668.469907][T22800] wireguard0: entered promiscuous mode [ 668.475545][T22800] wireguard0: entered allmulticast mode [ 668.855718][T22811] loop2: detected capacity change from 0 to 512 [ 668.901825][T22811] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 668.910983][T22811] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 668.949591][T22811] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 668.973668][T22814] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6434'. [ 668.993418][T22811] System zones: 0-2, 18-18, 34-34 [ 669.018302][T22811] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 669.069549][T22811] EXT4-fs (loop2): 1 truncate cleaned up [ 669.098011][T22811] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 669.226032][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 669.510302][T22827] syzkaller0: tun_chr_ioctl cmd 1074025677 [ 669.516978][T22827] syzkaller0: linktype set to 65535 [ 670.203645][T22846] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6447'. [ 671.327047][T22896] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6462'. [ 671.461444][T22899] loop2: detected capacity change from 0 to 2048 [ 671.508501][T22899] EXT4-fs: Ignoring removed bh option [ 671.513964][T22899] EXT4-fs: Ignoring removed nomblk_io_submit option [ 671.532485][T22899] EXT4-fs: Ignoring removed nobh option [ 671.560912][T22899] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 671.602669][T22899] EXT4-fs error (device loop2): __ext4_remount:6503: comm syz.2.6463: Abort forced by user [ 671.634147][T22899] EXT4-fs (loop2): Remounting filesystem read-only [ 671.649405][T22899] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=16 [ 671.687407][T22899] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop2 ino=16 [ 671.732028][T22909] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6466'. [ 671.773830][ T29] audit: type=1326 audit(1719910738.682:14820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22908 comm="syz.4.6466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc965e66b99 code=0x7ffc0000 [ 671.797825][ T29] audit: type=1326 audit(1719910738.682:14821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22908 comm="syz.4.6466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc965e66b99 code=0x7ffc0000 [ 671.821443][ T29] audit: type=1326 audit(1719910738.682:14822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22908 comm="syz.4.6466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc965e66b99 code=0x7ffc0000 [ 671.845304][ T29] audit: type=1326 audit(1719910738.682:14823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22908 comm="syz.4.6466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc965e66b99 code=0x7ffc0000 [ 671.869080][ T29] audit: type=1326 audit(1719910738.682:14824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22908 comm="syz.4.6466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc965e66b99 code=0x7ffc0000 [ 671.892780][ T29] audit: type=1326 audit(1719910738.682:14825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22908 comm="syz.4.6466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7fc965e66b99 code=0x7ffc0000 [ 671.916352][ T29] audit: type=1326 audit(1719910738.682:14826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22908 comm="syz.4.6466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc965e66b99 code=0x7ffc0000 [ 671.940266][ T29] audit: type=1326 audit(1719910738.682:14827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22908 comm="syz.4.6466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc965e66b99 code=0x7ffc0000 [ 671.964122][ T29] audit: type=1326 audit(1719910738.682:14828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22908 comm="syz.4.6466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc965e66b99 code=0x7ffc0000 [ 671.988538][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 672.138559][T22914] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=7952 sclass=netlink_route_socket pid=22914 comm=syz.0.6468 [ 672.462475][T22923] netlink: 188 bytes leftover after parsing attributes in process `syz.0.6472'. [ 672.644719][T22928] loop2: detected capacity change from 0 to 1024 [ 672.666136][T22928] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 672.695580][T22928] vhci_hcd: invalid port number 97 [ 672.700775][T22928] vhci_hcd: default hub control req: d364 v6665 i0061 l29804 [ 672.752823][T22932] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6475'. [ 672.786032][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 673.004677][T22942] wireguard0: entered promiscuous mode [ 673.010195][T22942] wireguard0: entered allmulticast mode [ 673.716143][T22971] netlink: 188 bytes leftover after parsing attributes in process `syz.2.6486'. [ 674.071914][T22978] ipt_REJECT: TCP_RESET invalid for non-tcp [ 674.079225][ T29] audit: type=1326 audit(1719910740.814:14829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22975 comm="syz.3.6490" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f835caf3b99 code=0x0 [ 674.145692][T22986] loop2: detected capacity change from 0 to 256 [ 674.154823][ T29] audit: type=1326 audit(1719910740.878:14830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22976 comm="syz.0.6491" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x0 [ 674.249001][T22992] sg_write: data in/out 4059/14 bytes for SCSI command 0x0-- guessing data in; [ 674.249001][T22992] program syz.4.6492 not setting count and/or reply_len properly [ 674.474195][T22996] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 674.512306][T22996] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 674.910714][T23007] netlink: 188 bytes leftover after parsing attributes in process `syz.4.6499'. [ 675.487625][T23031] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=4104 sclass=netlink_route_socket pid=23031 comm=syz.1.6506 [ 675.729107][T23031] Cannot find set identified by id 0 to match [ 676.409061][T23052] 9pnet: Could not find request transport: fd$rfdn=0x0000000000000007 [ 676.709702][T23065] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6518'. [ 676.894177][T23069] bond0: entered promiscuous mode [ 676.899259][T23069] bond_slave_0: entered promiscuous mode [ 676.904988][T23069] bond_slave_1: entered promiscuous mode [ 676.935768][T23069] 8021q: adding VLAN 0 to HW filter on device macvlan3 [ 676.945665][T23069] bond0: left promiscuous mode [ 676.950532][T23069] bond_slave_0: left promiscuous mode [ 676.956094][T23069] bond_slave_1: left promiscuous mode [ 677.385731][T23082] loop3: detected capacity change from 0 to 1024 [ 677.423945][T23082] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=2843c118, mo2=0002] [ 677.432505][T23082] System zones: 0-1, 3-12 [ 677.438018][T23082] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 677.456034][T23082] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none. [ 677.469476][T23082] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none. [ 677.484440][T23082] EXT4-fs error (device loop3): ext4_find_dest_de:2111: inode #2: block 16: comm syz.3.6526: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=21519, rec_len=0, size=1024 fake=0 [ 677.599684][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 678.050714][T23111] bond0: entered promiscuous mode [ 678.055993][T23111] bond_slave_0: entered promiscuous mode [ 678.061765][T23111] bond_slave_1: entered promiscuous mode [ 678.070969][T23111] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 678.090942][T23111] bond0: left promiscuous mode [ 678.095792][T23111] bond_slave_0: left promiscuous mode [ 678.101365][T23111] bond_slave_1: left promiscuous mode [ 678.122025][T23113] loop2: detected capacity change from 0 to 512 [ 678.162582][T23113] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 678.175636][T23113] EXT4-fs (loop2): orphan cleanup on readonly fs [ 678.201508][T23113] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.6535: bg 0: block 248: padding at end of block bitmap is not set [ 678.218704][T23113] Quota error (device loop2): write_blk: dquota write failed [ 678.226147][T23113] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 678.236136][T23113] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.6535: Failed to acquire dquot type 1 [ 678.248360][T23113] EXT4-fs (loop2): 1 truncate cleaned up [ 678.258887][T23113] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 678.324885][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 679.066157][T23142] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 679.077265][T23142] bridge0: port 3(gretap1) entered blocking state [ 679.084645][T23142] bridge0: port 3(gretap1) entered disabled state [ 679.093583][T23142] gretap1: entered allmulticast mode [ 679.099740][T23142] gretap1: entered promiscuous mode [ 679.564819][T23157] loop2: detected capacity change from 0 to 1024 [ 679.588484][T23157] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=2843c118, mo2=0002] [ 679.596954][T23157] System zones: 0-1, 3-12 [ 679.607961][T23157] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 679.636109][T23157] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none. [ 679.651532][T23157] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: none. [ 679.670146][T23157] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #2: block 16: comm syz.2.6551: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=21519, rec_len=0, size=1024 fake=0 [ 679.820191][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 680.796361][T23192] loop2: detected capacity change from 0 to 512 [ 680.941645][T23192] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 680.977411][T23192] EXT4-fs (loop2): orphan cleanup on readonly fs [ 681.004447][T23192] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.6564: bg 0: block 248: padding at end of block bitmap is not set [ 681.051902][T23192] Quota error (device loop2): write_blk: dquota write failed [ 681.059393][T23192] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 681.069486][T23192] EXT4-fs error (device loop2): ext4_acquire_dquot:6860: comm syz.2.6564: Failed to acquire dquot type 1 [ 681.140039][T23192] EXT4-fs (loop2): 1 truncate cleaned up [ 681.186636][T23192] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 681.309701][T23200] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6568'. [ 681.376505][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 681.918513][T23208] bridge_slave_0: left allmulticast mode [ 681.924213][T23208] bridge_slave_0: left promiscuous mode [ 681.929965][T23208] bridge0: port 1(bridge_slave_0) entered disabled state [ 681.940873][T23208] bridge_slave_1: left allmulticast mode [ 681.946686][T23208] bridge_slave_1: left promiscuous mode [ 681.952575][T23208] bridge0: port 2(bridge_slave_1) entered disabled state [ 681.965480][T23208] bond0: (slave bond_slave_0): Releasing backup interface [ 681.987832][T23208] bond0: (slave bond_slave_1): Releasing backup interface [ 682.008937][T23208] team0: Port device team_slave_0 removed [ 682.041497][T23208] team0: Port device team_slave_1 removed [ 682.083206][T23208] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 682.090878][T23208] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 682.124051][T23208] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 682.131563][T23208] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 682.273826][T23214] wireguard0: entered promiscuous mode [ 682.279478][T23214] wireguard0: entered allmulticast mode [ 683.059490][ T29] audit: type=1400 audit(1719910749.102:14831): avc: denied { name_bind } for pid=23230 comm="syz.1.6577" src=255 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=sctp_socket permissive=1 [ 683.093616][T23233] netlink: 'syz.4.6578': attribute type 27 has an invalid length. [ 683.398348][ T29] audit: type=1326 audit(1719910749.407:14832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23237 comm="syz.0.6580" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8ffed3eb99 code=0x0 [ 683.447344][T23233] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 683.456868][T23233] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 683.465928][T23233] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 683.475130][T23233] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 683.709105][T23245] loop2: detected capacity change from 0 to 1024 [ 683.744493][T23245] EXT4-fs: Ignoring removed nomblk_io_submit option [ 683.752568][T23245] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 683.769017][T23245] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e814c01c, mo2=0003] [ 683.778394][T23245] System zones: 0-1, 3-36 [ 683.787887][T23245] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 683.993648][T17062] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 684.434517][T23258] chnl_net:caif_netlink_parms(): no params data found [ 684.531869][T23258] bridge0: port 1(bridge_slave_0) entered blocking state [ 684.539227][T23258] bridge0: port 1(bridge_slave_0) entered disabled state [ 684.546687][T23258] bridge_slave_0: entered allmulticast mode [ 684.557226][T23258] bridge_slave_0: entered promiscuous mode [ 684.574895][T23258] bridge0: port 2(bridge_slave_1) entered blocking state [ 684.582069][T23258] bridge0: port 2(bridge_slave_1) entered disabled state [ 684.590114][T23258] bridge_slave_1: entered allmulticast mode [ 684.599316][T23258] bridge_slave_1: entered promiscuous mode [ 684.625404][T23258] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 684.637129][T23258] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 684.671026][T23258] team0: Port device team_slave_0 added [ 684.678786][T23258] team0: Port device team_slave_1 added [ 684.711009][T23258] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 684.718116][T23258] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 684.744137][T23258] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 684.760396][T23258] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 684.767405][T23258] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 684.793460][T23258] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 684.828603][T23258] hsr_slave_0: entered promiscuous mode [ 684.838074][T23258] hsr_slave_1: entered promiscuous mode [ 684.844769][T23258] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 684.852462][T23258] Cannot create hsr debugfs directory [ 685.162916][T23258] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 685.171924][T23258] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 685.182649][T23258] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 685.194259][T23258] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 685.258336][T23258] 8021q: adding VLAN 0 to HW filter on device bond0 [ 685.274149][T23258] 8021q: adding VLAN 0 to HW filter on device team0 [ 685.286559][ T3132] bridge0: port 1(bridge_slave_0) entered blocking state [ 685.294189][ T3132] bridge0: port 1(bridge_slave_0) entered forwarding state [ 685.308149][ T3794] bridge0: port 2(bridge_slave_1) entered blocking state [ 685.315503][ T3794] bridge0: port 2(bridge_slave_1) entered forwarding state [ 685.411928][T23258] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 685.534474][T23258] veth0_vlan: entered promiscuous mode [ 685.548803][T23258] veth1_vlan: entered promiscuous mode [ 685.576000][T23258] veth0_macvtap: entered promiscuous mode [ 685.586588][T23258] veth1_macvtap: entered promiscuous mode [ 685.604617][T23258] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 685.615426][T23258] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 685.629828][T23258] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 685.653302][T23258] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 685.663985][T23258] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 685.676870][T23258] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 685.687603][T23258] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 685.696455][T23258] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 685.705407][T23258] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 685.714310][T23258] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 686.296169][T23326] xt_CT: No such helper "pptp" [ 686.303381][T23326] xt_CT: You must specify a L4 protocol and not use inversions on it [ 686.345446][T23329] netlink: 'syz.3.6606': attribute type 5 has an invalid length. [ 687.296341][T23356] siw: device registration error -23 [ 687.341592][T23356] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=63 sclass=netlink_route_socket pid=23356 comm=syz.4.6617 [ 687.354379][T23356] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65 sclass=netlink_route_socket pid=23356 comm=syz.4.6617 [ 687.369166][T23358] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6621'. [ 688.401225][T23380] loop2: detected capacity change from 0 to 512 [ 688.606545][T23380] loop2: detected capacity change from 0 to 512 [ 689.335126][T23408] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6637'. [ 690.110966][T23430] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6646'. [ 690.984360][T23450] loop3: detected capacity change from 0 to 2048 [ 691.024811][T23450] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 691.675763][T23469] netlink: 'syz.0.6660': attribute type 27 has an invalid length. [ 692.006693][ T6252] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 692.060646][T23481] loop2: detected capacity change from 0 to 512 [ 692.081375][T23481] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 692.094300][T23481] ext4 filesystem being mounted at /root/syzkaller.g4IDO8/15/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 692.126691][T23481] netlink: 'syz.2.6666': attribute type 1 has an invalid length. [ 692.134621][T23481] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6666'. [ 692.148059][ T29] audit: type=1400 audit(1719910757.492:14833): avc: denied { setattr } for pid=23479 comm="syz.2.6666" path="socket:[78764]" dev="sockfs" ino=78764 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 692.213037][T23485] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6667'. [ 692.254672][T23258] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 692.662475][T23504] wireguard0: entered promiscuous mode [ 692.668125][T23504] wireguard0: entered allmulticast mode [ 692.724589][T23507] netlink: 'syz.4.6674': attribute type 27 has an invalid length. [ 692.812662][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x7 [ 692.820224][ T3155] hid-generic 0000:0000:0000.0002: ignoring exceeding usage max [ 692.832464][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.840226][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.847639][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.855194][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.862652][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.870298][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.877886][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.885325][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.892801][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.900232][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.907772][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.915251][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.922654][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.930281][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.930667][T23512] x_tables: duplicate underflow at hook 2 [ 692.937731][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.950985][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.956098][T23511] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6675'. [ 692.958491][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.975150][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.982713][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.988114][ T29] audit: type=1400 audit(1719910758.268:14834): avc: denied { getopt } for pid=23508 comm="syz.3.6675" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 692.990122][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 692.990151][ T3155] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 693.014791][T23512] loop4: detected capacity change from 0 to 256 [ 693.042192][ T3155] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz0 [ 693.614979][T23525] loop4: detected capacity change from 0 to 512 [ 693.644617][T23525] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 693.658794][T23525] ext4 filesystem being mounted at /root/syzkaller.6RaCRL/72/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 693.688533][ T29] audit: type=1400 audit(1719910758.914:14835): avc: denied { write } for pid=23524 comm="syz.4.6682" name=E91F7189591E9233614B dev="loop4" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1 [ 693.751372][ T29] audit: type=1400 audit(1719910758.960:14836): avc: denied { listen } for pid=23524 comm="syz.4.6682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 693.819034][T23538] netlink: 'syz.1.6686': attribute type 27 has an invalid length. [ 693.991500][T23542] loop2: detected capacity change from 0 to 128 [ 694.069255][T23544] loop3: detected capacity change from 0 to 736 [ 694.076092][T23544] iso9660: Unknown parameter '' [ 694.142295][T23544] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6688'. [ 694.156554][T23544] netlink: 68 bytes leftover after parsing attributes in process `syz.3.6688'. [ 694.614361][T22341] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 694.629574][T23554] netlink: 'syz.2.6693': attribute type 4 has an invalid length. [ 694.673612][ T29] audit: type=1326 audit(1719910759.818:14837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23552 comm="syz.2.6693" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f41b6354b99 code=0x0 [ 694.782819][ T29] audit: type=1400 audit(1719910759.920:14838): avc: denied { setattr } for pid=23552 comm="syz.2.6693" name="ptmx" dev="devtmpfs" ino=92 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ptmx_t tclass=chr_file permissive=1 [ 694.892272][T23559] bridge0: entered promiscuous mode [ 694.900736][T23559] bond0: entered promiscuous mode [ 694.905999][T23559] bond_slave_0: entered promiscuous mode [ 694.911785][T23559] bond_slave_1: entered promiscuous mode [ 694.921269][T23559] debugfs: Directory 'hsr1' with parent 'hsr' already present! [ 694.929498][T23559] Cannot create hsr debugfs directory [ 694.945368][T23559] hsr1: Slave A (bridge0) is not up; please bring it up to get a fully working HSR network [ 694.955642][T23559] hsr1: Slave B (bond0) is not up; please bring it up to get a fully working HSR network [ 694.969721][ T29] audit: type=1400 audit(1719910760.095:14839): avc: denied { mounton } for pid=23558 comm="syz.4.6695" path="/root/syzkaller.6RaCRL/73/file0" dev="configfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 695.006780][T23561] loop4: detected capacity change from 0 to 136 [ 695.431436][T23579] loop3: detected capacity change from 0 to 1024 [ 695.497264][T23579] loop3: detected capacity change from 0 to 512 [ 695.507144][T19862] bond0 (unregistering): Released all slaves [ 695.535368][ T29] audit: type=1326 audit(1719910760.612:14840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23552 comm="syz.2.6693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41b6354b99 code=0x7fc00000 [ 695.559057][ T29] audit: type=1326 audit(1719910760.612:14841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23552 comm="syz.2.6693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7f41b6354b99 code=0x7fc00000 [ 695.583377][ T29] audit: type=1326 audit(1719910760.612:14842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23552 comm="syz.2.6693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41b6354b99 code=0x7fc00000 [ 695.611664][T23579] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 695.624145][T23579] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #16: comm syz.3.6701: invalid indirect mapped block 512 (level 0) [ 695.637937][T23579] EXT4-fs (loop3): Remounting filesystem read-only [ 695.644586][T23579] EXT4-fs (loop3): 1 orphan inode deleted [ 695.650352][T23579] EXT4-fs (loop3): 1 truncate cleaned up [ 695.664449][T23579] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 695.677059][T23579] SELinux: (dev loop3, type ext4) getxattr errno 5 [ 695.684321][T23579] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 695.756300][T19862] hsr_slave_0: left promiscuous mode [ 695.762229][T19862] hsr_slave_1: left promiscuous mode [ 695.931722][T23567] chnl_net:caif_netlink_parms(): no params data found [ 696.004728][T23567] bridge0: port 1(bridge_slave_0) entered blocking state [ 696.011926][T23567] bridge0: port 1(bridge_slave_0) entered disabled state [ 696.021457][T23567] bridge_slave_0: entered allmulticast mode [ 696.031441][T23567] bridge_slave_0: entered promiscuous mode [ 696.040206][T23567] bridge0: port 2(bridge_slave_1) entered blocking state [ 696.047569][T23567] bridge0: port 2(bridge_slave_1) entered disabled state [ 696.064895][T23567] bridge_slave_1: entered allmulticast mode [ 696.071996][T23567] bridge_slave_1: entered promiscuous mode [ 696.099221][T23567] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 696.117047][T23567] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 696.145386][T23567] team0: Port device team_slave_0 added [ 696.152423][T23567] team0: Port device team_slave_1 added [ 696.176950][T23567] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 696.184141][T23567] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 696.210461][T23567] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 696.222438][T23567] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 696.229607][T23567] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 696.255643][T23567] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 696.342100][T23567] hsr_slave_0: entered promiscuous mode [ 696.355810][T23567] hsr_slave_1: entered promiscuous mode [ 696.371057][T23567] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 696.378655][T23567] Cannot create hsr debugfs directory [ 696.762787][T23567] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 696.786240][T23567] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 696.801913][T23567] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 696.821616][T23567] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 696.859492][T23567] bridge0: port 2(bridge_slave_1) entered blocking state [ 696.866713][T23567] bridge0: port 2(bridge_slave_1) entered forwarding state [ 696.874063][T23567] bridge0: port 1(bridge_slave_0) entered blocking state [ 696.881226][T23567] bridge0: port 1(bridge_slave_0) entered forwarding state [ 696.902904][T17936] bridge0: port 1(bridge_slave_0) entered disabled state [ 696.911114][T17936] bridge0: port 2(bridge_slave_1) entered disabled state [ 696.987736][T23567] 8021q: adding VLAN 0 to HW filter on device bond0 [ 697.011029][T23567] 8021q: adding VLAN 0 to HW filter on device team0 [ 697.032879][ T3794] bridge0: port 1(bridge_slave_0) entered blocking state [ 697.040007][ T3794] bridge0: port 1(bridge_slave_0) entered forwarding state [ 697.049931][ T3794] bridge0: port 2(bridge_slave_1) entered blocking state [ 697.057142][ T3794] bridge0: port 2(bridge_slave_1) entered forwarding state [ 697.089498][T23567] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 697.167388][T23567] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 697.507949][T23567] veth0_vlan: entered promiscuous mode [ 697.516967][T23567] veth1_vlan: entered promiscuous mode [ 697.517589][T23646] loop2: detected capacity change from 0 to 2048 [ 697.545127][T23567] veth0_macvtap: entered promiscuous mode [ 697.561067][T23567] veth1_macvtap: entered promiscuous mode [ 697.589243][T23567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 697.589330][T23646] Alternate GPT is invalid, using primary GPT. [ 697.599766][T23567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 697.606240][T23646] loop2: p1 p2 p3 [ 697.615933][T23567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 697.630213][T23567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 697.646569][T23567] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 697.659554][T23567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 697.670256][T23567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 697.680275][T23567] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 697.690872][T23567] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 697.702938][T23567] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 697.714722][T23567] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 697.723561][T23567] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 697.732383][T23567] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 697.741152][T23567] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 697.890953][ T29] kauditd_printk_skb: 52 callbacks suppressed [ 697.890970][ T29] audit: type=1400 audit(1719910762.790:14895): avc: denied { ioctl } for pid=23651 comm="syz.0.6720" path="socket:[80929]" dev="sockfs" ino=80929 ioctlcmd=0x941e scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 698.065286][T23657] tipc: Enabled bearer , priority 0 [ 698.200603][T23661] netlink: 'syz.1.6723': attribute type 2 has an invalid length. [ 698.208454][T23661] netlink: 172 bytes leftover after parsing attributes in process `syz.1.6723'. [ 698.251255][ T29] audit: type=1326 audit(1719910763.123:14896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.6723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8418d79b99 code=0x7ffc0000 [ 698.274956][ T29] audit: type=1326 audit(1719910763.123:14897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.6723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8418d79b99 code=0x7ffc0000 [ 698.400483][T23669] loop4: detected capacity change from 0 to 2048 [ 698.410073][T23671] netlink: 'syz.3.6726': attribute type 27 has an invalid length. [ 698.494936][T23673] sctp: [Deprecated]: syz.0.6727 (pid 23673) Use of int in max_burst socket option. [ 698.494936][T23673] Use struct sctp_assoc_value instead [ 699.099894][T23681] ================================================================== [ 699.108118][T23681] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64 [ 699.118026][T23681] [ 699.120355][T23681] read-write to 0xffffffff860079c0 of 8 bytes by interrupt on cpu 0: [ 699.128439][T23681] tick_do_update_jiffies64+0x112/0x1b0 [ 699.134093][T23681] tick_nohz_handler+0x7c/0x2d0 [ 699.138976][T23681] __hrtimer_run_queues+0x20d/0x5e0 [ 699.144201][T23681] hrtimer_interrupt+0x210/0x7b0 [ 699.149165][T23681] __sysvec_apic_timer_interrupt+0x5c/0x1a0 [ 699.155363][T23681] sysvec_apic_timer_interrupt+0x32/0x80 [ 699.161023][T23681] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 699.167028][T23681] [ 699.169361][T23681] read to 0xffffffff860079c0 of 8 bytes by task 23681 on cpu 1: [ 699.177001][T23681] mem_cgroup_flush_stats_ratelimited+0x29/0x100 [ 699.183361][T23681] workingset_test_recent+0x114/0x410 [ 699.188767][T23681] workingset_refault+0x1e9/0x460 [ 699.193816][T23681] filemap_add_folio+0x116/0x1b0 [ 699.198760][T23681] page_cache_ra_unbounded+0x148/0x2e0 [ 699.204237][T23681] ondemand_readahead+0x542/0x6b0 [ 699.209290][T23681] page_cache_async_ra+0x94/0xa0 [ 699.214246][T23681] filemap_get_pages+0x398/0xfb0 [ 699.219207][T23681] filemap_read+0x21c/0x690 [ 699.223735][T23681] generic_file_read_iter+0x78/0x340 [ 699.229043][T23681] ext4_file_read_iter+0x1d8/0x2a0 [ 699.234628][T23681] do_iter_readv_writev+0x339/0x3e0 [ 699.240266][T23681] vfs_readv+0x1e5/0x660 [ 699.244552][T23681] __x64_sys_preadv+0x100/0x1c0 [ 699.249427][T23681] x64_sys_call+0x1d82/0x2d70 [ 699.254130][T23681] do_syscall_64+0xc9/0x1c0 [ 699.258662][T23681] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 699.264591][T23681] [ 699.267361][T23681] value changed: 0x0000000100008a83 -> 0x0000000100008a84 [ 699.274578][T23681] [ 699.276920][T23681] Reported by Kernel Concurrency Sanitizer on: [ 699.283167][T23681] CPU: 1 PID: 23681 Comm: syz.3.6730 Tainted: G W 6.10.0-rc6-syzkaller-00051-g1dfe225e9af5 #0 [ 699.294987][T23681] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 699.305059][T23681] ==================================================================