last executing test programs: 1m13.472903803s ago: executing program 1 (id=369): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) syz_usbip_server_init(0x1) futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000)=0x2000000, 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000)=0x1, 0x0) 1m11.783389058s ago: executing program 1 (id=396): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x1, 0x0, 0x7ffc0001}]}) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b81000085"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) bpf$BPF_PROG_ATTACH(0x8, 0x0, 0x0) 1m11.141703102s ago: executing program 1 (id=400): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) ioperm(0x0, 0x6, 0x2da3b9f3) keyctl$KEYCTL_CAPABILITIES(0x1f, &(0x7f0000000080)=""/236, 0xec) 1m10.993855639s ago: executing program 1 (id=403): syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000000)={[{@bsdgroups}, {@grpquota}, {@init_itable}, {@user_xattr}, {@nomblk_io_submit}]}, 0x2, 0xbb8, &(0x7f00000017c0)="$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") pipe2$9p(0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_clone(0x100000, &(0x7f0000000280), 0x0, 0x0, &(0x7f0000000180), &(0x7f0000000340)) syz_open_dev$vcsa(0x0, 0x7fff, 0x2000) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) syz_open_procfs(0x0, 0x0) getcwd(0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) ioctl$BLKIOOPT(0xffffffffffffffff, 0x1279, 0x0) socket(0x200000100000011, 0x803, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000040), 0x2, 0x45c, &(0x7f0000000dc0)="$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") r1 = open(0x0, 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, 0x0) chdir(&(0x7f0000000080)='./file0\x00') r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10) io_uring_setup(0x177f, &(0x7f00000002c0)) socket$inet6_sctp(0xa, 0x1, 0x84) lsetxattr$trusted_overlay_upper(&(0x7f0000000180)='./file1\x00', &(0x7f00000001c0), &(0x7f0000000280)=ANY=[], 0xe01, 0x0) 1m10.438960313s ago: executing program 1 (id=413): syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000400)='./bus\x00', 0x800, &(0x7f00000003c0)=ANY=[@ANYRES8=0x0, @ANYRES32, @ANYRES64, @ANYRES32, @ANYRESDEC, @ANYRESHEX], 0x1, 0x36e, &(0x7f0000000c00)="$eJzs3c9rI2UYwPEnaZpMumyTgygK0ge96GVoq2c1yC6IAZfuRtwVhNntREPGpMyESERsPXkVb/4DgsseFzwsqP9AL97WixdP9iIIuog4Mr/SJJ00aTZL0/b7gTZP8r7PzPvmF88byJuD9776uFn3zLrVkayhkhEReSRSlqwkMtFFXlLsycuX/nz4/PWbt96uVKtXtlSvVm68sqmqq2s/fPJZMe72oCD75Q8OxPht/+n9Zw/+u/FRw9OGp612Ry293f61Y912bN1ueE1T9ZpjW56tjZZnu1F7O2qvO+2dnZ5are3LKzuu7XlqtXratHvaaWvH7an1odVoqWmaenklbbjnmDFDTu3u1pZVmfGEd2bMw7z94/v+Mc2uW7GWRMzikZba3Sc6LgAAsJBG6v9vkhqhLNl+QZmJ1wL5MB5eBgT1fxKH9X+wWDis/++98FPn0rv3V+P6/0E+rf5/9Zcof6j+D84+9/r/u5HrRyuiM2/3JJ0fq/7HYlgbfkX+frhijwX1f/Bq6K/ov3j/3noYUP8DAAAAAAAAAAAAAAAAAAAAAHAWPPL9ku/7peQy+Tv8CkF8Pbl23BeNceaMe/wL8Y4C/ecDzqXrN2+JEX5xL7cq4nzZrXVr0WXcnnRcl5L8Gz4fYtGGE3thowbK8qOz260txwlL4f+KiIojtmxIScpD+WF89a3qlQ2NRPnh+Xe7tUxuJcivSyPM35SSPJWev5man5eXXhzIN6UkP9+RtjiyHb+PJfmfb6i++U51JL8Y9kvz+pN9SAAAAAAAmDtT1YiXz+Xh9W+0fjdN1bT2YC0vg+vzo58P9NfX66nr81zpudzpzh0AAAAAgIvCy3/atBzHdr3e2KAok/oU4qONNOVkwpGDIDdFn6HgYRgsH9dnaWCG0x45H/+CxrTDcL2eTD3mJPirIKl3ZrKF61CTkX6vThkk85+is3HSh8D1siefu+16a8F4dKbpDATJx0bj+si1WY88Lkh2zp3U+Zmvv/17tlNk4l17B5teu29MmGkYZEZu2ZvwpP3D9yeOZzn93eL7WX5kBgAAAMCCSIr+opfc8sbpDggAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAtortukjQlOe44AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAovg/AAD//5h69bA=") socket$nl_generic(0x10, 0x3, 0x10) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) r1 = syz_io_uring_setup(0x6908, &(0x7f0000000340)={0x0, 0x0, 0x10100, 0x3}, &(0x7f0000000140), &(0x7f0000000100)) r2 = io_uring_setup(0x7058, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x10}) r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000000c0000000c00000002000000000000000000001000000007"], 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) io_uring_register$IORING_UNREGISTER_PERSONALITY(r1, 0x18, 0x20000000, r4) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) r6 = socket(0x10, 0x3, 0x0) sendmsg$kcm(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)}, 0x0) r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0xa, 0x0, 0x1, 0x6, '\x00', r5, r3, 0x2, 0x0, 0x2, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000680)={{0xffffffffffffffff, 0xffffffffffffffff}, &(0x7f0000000600), &(0x7f0000000640)='%pK \x00'}, 0x20) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000840)={'batadv0\x00', 0x0}) r10 = openat$bsg(0xffffffffffffff9c, &(0x7f00000008c0), 0x20000, 0x0) r11 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000900)={0xffffffffffffffff, 0x9, 0x8}, 0xc) r12 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000940), 0x22041, 0x0) r13 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0) write$P9_RLERRORu(r13, 0x0, 0x18) r14 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000980)={0x3, 0x4, 0x4, 0xa, 0x0, 0x1, 0x7, '\x00', r5, r3, 0x1, 0x4, 0x1, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000ac0)={0x6, 0x19, &(0x7f00000006c0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r7}}, {}, [@map_val={0x18, 0x8, 0x2, 0x0, r8, 0x0, 0x0, 0x0, 0x8}, @printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7fff}}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000007c0)='syzkaller\x00', 0x7ff, 0x4, &(0x7f0000000800)=""/4, 0x20800, 0x19, '\x00', r9, 0x25, r1, 0x8, &(0x7f0000000880)={0x5, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000a00)=[r10, 0xffffffffffffffff, r11, r12, r13, r14], &(0x7f0000000a40)=[{0x5, 0x5, 0xa}, {0x4, 0x4, 0xf, 0x3}, {0x0, 0x1, 0x0, 0x6}, {0x4, 0x3, 0x3, 0x1}, {0x4, 0x5, 0xb, 0x1}, {0x4, 0x2, 0xc, 0x9}], 0x10, 0x20e2, @void, @value}, 0x94) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000300)={0xffffffffffffffff}, 0x2, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_REJECT(r13, &(0x7f0000000440)={0x9, 0x108, 0xfa00, {r15, 0x1, "83b198", "4727475799788398f8cede41520d9cf4e144438022b8cfc20ef97ed22a23631a35ed804a6fa8e2136af2a13ac6e023d85ee39a34cdf77b6829d5c70d6a116f14f0c7626590d4e9259e729c98ab3f0c8c282a60287124b348e8133be63f0d27a3379c716ddb00c5add659622042f8796c10180ada8588fb7670487237b250ce287717006535f70eaed063394ff731dd7cd62ec006bac7bb50f9c296e2d06e952328e192d83a0514459f039d250239444dd284184c4d719cf7a80f80c541d711ecca0c4206b8068e55aeba293fedca59e1ef0da3d42d3bb82d5f3aa4154957aae9da27ba3ac8256404987803dc1bb158101d42ce48f665176c52f36f541168c1c1"}}, 0x110) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x268, 0x1c0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x480, 0xffffffff, 0xffffffff, 0x480, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0xa8, 0xc8, 0x60030000, {0x0, 0xff000000}}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x2c8) r16 = creat(&(0x7f0000000100)='./bus\x00', 0x0) r17 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0) fallocate(r16, 0x0, 0x0, 0x1000f4) io_setup(0x7, &(0x7f00000000c0)=0x0) io_submit(r18, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r17, &(0x7f0000000000)="96", 0xfe00}, &(0x7f0000000040)={0x0, 0x0, 0x41, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) 1m8.587416287s ago: executing program 1 (id=441): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x14b) stat(&(0x7f00000004c0)='./file0\x00', 0x0) lchown(&(0x7f0000000480)='./file0\x00', 0x0, 0x0) setxattr$system_posix_acl(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='system.posix_acl_access\x00', &(0x7f0000000400)={{}, {}, [{}], {0x4, 0x3}, [], {0x10, 0x6}}, 0x2c, 0x0) creat(&(0x7f0000000040)='./file0/file0\x00', 0x0) 1m8.322787637s ago: executing program 32 (id=441): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x14b) stat(&(0x7f00000004c0)='./file0\x00', 0x0) lchown(&(0x7f0000000480)='./file0\x00', 0x0, 0x0) setxattr$system_posix_acl(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='system.posix_acl_access\x00', &(0x7f0000000400)={{}, {}, [{}], {0x4, 0x3}, [], {0x10, 0x6}}, 0x2c, 0x0) creat(&(0x7f0000000040)='./file0/file0\x00', 0x0) 4.182827017s ago: executing program 0 (id=1177): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = epoll_create1(0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0) r3 = socket$can_raw(0x1d, 0x3, 0x1) bind$can_raw(r3, &(0x7f0000000000), 0x10) setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, &(0x7f0000000140)=[{{}, {0x0, 0x1}}, {{}, {0x0, 0x1}}], 0x10) setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000200)={0xa000000a}) finit_module(r2, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r5 = openat$cgroup_devices(r4, &(0x7f0000000100)='devices.allow\x00', 0x2, 0x0) write$cgroup_devices(r5, &(0x7f00000000c0)={'c', ' *:* ', 'rwm\x00'}, 0xa) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r7 = openat$cgroup_devices(r6, &(0x7f0000000240)='devices.allow\x00', 0x2, 0x0) write$cgroup_devices(r7, &(0x7f0000000280)={'b', ' *:* ', 'rm\x00'}, 0x9) write$cgroup_devices(r5, &(0x7f00000003c0)={'a', ' *:* ', 'rw\x00'}, 0x9) 4.092014968s ago: executing program 4 (id=1179): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) close(r0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x400000001, 0x4) setsockopt$inet6_tcp_int(r2, 0x6, 0x22, &(0x7f0000356000)=0x1, 0x4) connect$inet6(r2, &(0x7f0000000340)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendto$inet6(r2, 0x0, 0xffffffffffffffa4, 0x4000080, 0x0, 0x0) 3.89715945s ago: executing program 3 (id=1183): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet(0x2, 0x80001, 0x84) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4) bind$inet(r1, 0x0, 0x0) listen(r1, 0x3) r2 = socket$inet(0x2, 0x80001, 0x84) setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4) bind$inet(r2, &(0x7f0000000180)={0x2, 0xce20, @local}, 0x10) listen(r2, 0x3) close_range(r0, 0xffffffffffffffff, 0x0) 3.852673246s ago: executing program 3 (id=1184): ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x6}) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="200000006a002903ffffffff000000000a00000000000000080005"], 0x20}}, 0x0) 3.743572538s ago: executing program 3 (id=1186): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0) getsockname$packet(r1, &(0x7f0000000600)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r2, @ANYBLOB="00001000252155b21c0012000c000100626f6e64"], 0x3c}}, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@newlink={0x28, 0x10, 0x503, 0x70bd29, 0x0, {}, [@IFLA_MASTER={0x8, 0xa, r2}]}, 0x28}, 0x1, 0x0, 0x0, 0x800}, 0x4000) 3.713918631s ago: executing program 5 (id=1187): r0 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x5}) mq_getsetattr(r0, &(0x7f0000000300)={0x800, 0x0, 0x1}, 0x0) mq_timedreceive(r0, &(0x7f0000001740)=""/207, 0xcf, 0x0, 0x0) mq_timedreceive(r0, &(0x7f0000000080)=""/92, 0x5c, 0x0, 0x0) r1 = syz_io_uring_setup(0x31c7, &(0x7f0000000140)={0x0, 0x0, 0x1}, &(0x7f00000001c0), &(0x7f00000005c0)) r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2000000}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) socket$netlink(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x0, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, 0x0, 0x0) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000001400)) timer_create(0xfffffffd, 0x0, &(0x7f0000000040)=0x0) timer_settime(r7, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) unshare(0x40000000) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48) syz_io_uring_setup(0x263f, &(0x7f0000000840)={0x0, 0xb8da, 0x186a, 0x0, 0x0, 0x0, r1}, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x1}}, './file0\x00'}) 3.63479295s ago: executing program 3 (id=1188): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f00000001c0)={[{@quota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4c1, &(0x7f0000000680)="$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") rename(&(0x7f0000000000)='./file2\x00', &(0x7f0000000040)='./file1\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000500)) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)) ioctl$SIOCSIFHWADDR(r2, 0x8943, &(0x7f0000002280)={'syzkaller0\x00', @random="0100"}) preadv2(r0, &(0x7f0000000340)=[{&(0x7f0000000100)=""/65, 0x41}], 0x1, 0x0, 0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0xb, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000080)={r3, &(0x7f0000000240), 0x20000000}, 0x20) bpf$MAP_DELETE_ELEM(0x4, &(0x7f0000000040)={r3, &(0x7f0000000600)}, 0x20) r4 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r4, 0x40086602, &(0x7f0000000080)={@desc={0x4000, 0x0, @desc1}}) name_to_handle_at(r4, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000100)=@fuse={0xc, 0x81, {0x8, 0x0, 0x7f}}, &(0x7f0000000180), 0x600) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r4, 0x40086602, &(0x7f0000000080)={@desc={0x84c00, 0x0, @desc1}}) r5 = socket$inet6_sctp(0xa, 0x801, 0x84) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c) shutdown(r5, 0x1) r6 = dup(r5) setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r6, 0x84, 0x82, &(0x7f0000000040)={0x0, 0x1}, 0x8) bpf$PROG_LOAD(0x5, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000002c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 3.257095154s ago: executing program 0 (id=1189): creat(&(0x7f0000000380)='./file0\x00', 0x0) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r0, r2, 0x25, 0x2, @val=@tracing}, 0x40) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r3 = socket$inet6(0xa, 0x40000080806, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) socket$kcm(0x10, 0x2, 0x10) bind$inet6(r3, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback, 0xfffffffc}, 0x1c) listen(r3, 0x20000005) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) syz_clone(0x80108000, 0x0, 0x0, 0x0, 0x0, 0x0) r6 = socket$inet6(0xa, 0x6, 0x0) connect$inet6(r6, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @empty}, 0x1c) r7 = accept4(r3, 0x0, 0x0, 0x800) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r7, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000001380)={&(0x7f00000003c0)=ANY=[@ANYBLOB], 0x14}, 0x1, 0x0, 0x0, 0x4004}, 0x4000000) close(r6) 3.1152652s ago: executing program 4 (id=1190): r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, 0x0, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) close(r1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, r4, 0x26, 0x0, 0x0, @void, @value}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20) recvmsg$unix(r2, &(0x7f00000004c0)={&(0x7f0000000180), 0x6e, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0xfffe}], 0x1}, 0x0) sendmsg$inet(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0xfffe}], 0x1}, 0x0) 3.013118262s ago: executing program 2 (id=1192): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10) r2 = socket$inet(0x2, 0x3, 0x33) getsockopt$inet_mreqsrc(r2, 0x0, 0x53, &(0x7f0000000000)={@dev, @local, @broadcast}, &(0x7f0000000040)=0x8) 2.926438542s ago: executing program 4 (id=1193): creat(&(0x7f00000000c0)='./bus\x00', 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x1, &(0x7f0000000000)=ANY=[@ANYRES32]) unshare(0x20000400) ppoll(&(0x7f0000000000), 0x20000000000000a4, 0x0, 0x0, 0x0) 2.867585329s ago: executing program 2 (id=1194): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet(0x2, 0x80001, 0x84) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4) bind$inet(r1, 0x0, 0x0) listen(r1, 0x3) r2 = socket$inet(0x2, 0x80001, 0x84) setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4) bind$inet(r2, &(0x7f0000000180)={0x2, 0xce20, @local}, 0x10) listen(r2, 0x3) close_range(r0, 0xffffffffffffffff, 0x0) 2.797070977s ago: executing program 2 (id=1195): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0xfffffffffffffff3) r1 = openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0) ioctl$BINDER_THREAD_EXIT(r1, 0x40046208, 0x0) syz_io_uring_setup(0x239, 0x0, &(0x7f0000000180)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) r4 = socket$unix(0x1, 0x1, 0x0) connect$unix(r4, &(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$binfmt_aout(r5, 0x0, 0xff2e) ioctl$TCXONC(r5, 0x540a, 0x2) bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f00000001c0)={'veth0_vlan\x00', 0x0}) unshare(0x62040200) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x50, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1000400, &(0x7f00000000c0), 0x6, 0x588, &(0x7f0000000300)="$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") r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="2c0000003b00090000000000cd000000010000001800038034"], 0x2c}}, 0x0) sched_setscheduler(0xffffffffffffffff, 0x5, 0x0) r9 = gettid() sendmsg$nl_route(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005f00)=ANY=[@ANYBLOB="2800000010000100"/20, @ANYRES32=r7, @ANYBLOB="6d3082610000000008001300", @ANYRES32=r9], 0x28}}, 0x0) 2.749909202s ago: executing program 4 (id=1196): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002880)=@newtclass={0x87c, 0x28, 0x4, 0x70bd2c, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0x3}, {0xb, 0xe68cae220a3e3d54}, {0xfff1}}, [@tclass_kind_options=@c_taprio={0xb}, @tclass_kind_options=@c_ingress={0xc}, @tclass_kind_options=@c_htb={{0x8}, {0x80c, 0x2, [@TCA_HTB_CTAB={0x404, 0x3, [0xe, 0x1, 0x5, 0x4, 0x2, 0x2, 0x400, 0xa, 0x0, 0x7ff, 0xffffffff, 0x1, 0xfffffff6, 0x40, 0x5, 0x3, 0x4, 0x3ff, 0x7, 0x0, 0x100000, 0x10, 0x2, 0x8, 0xea0, 0x1, 0x6, 0x7, 0x100, 0x5, 0x2, 0xced, 0x4, 0x5, 0x3fe, 0x8, 0x3a3f, 0x1, 0x5, 0x696, 0x1, 0x6, 0x3, 0x7, 0xffffffff, 0x2b, 0x0, 0x8, 0x1, 0xb0, 0x800, 0x4, 0x0, 0x7, 0x2, 0x3, 0x37d0000, 0x3, 0x1d, 0x6, 0x3, 0x9, 0x7, 0x5, 0x5, 0x9, 0x1a, 0x1ff, 0x4, 0x2, 0x1ff, 0x2, 0x6, 0xffffffff, 0x5, 0x1, 0xb07, 0x4, 0xff, 0xb8, 0xf, 0x6f17, 0x4, 0x3, 0x4, 0x0, 0x1, 0x7, 0x1, 0x70, 0x5, 0x3, 0x5da, 0x809, 0xf, 0x8, 0x9, 0x63fd, 0x7fffffff, 0x9, 0x7, 0xd6, 0x8, 0x2, 0xfffffff3, 0x8, 0x8000, 0x1, 0x7fffffff, 0x8, 0x4, 0x6, 0x75e3, 0x4, 0x3, 0x1, 0xfffffffc, 0x0, 0xa34, 0x2, 0x2, 0x5, 0xffff, 0xf2, 0x800, 0x9, 0x0, 0x7, 0x3, 0x0, 0x1, 0x80000000, 0xb, 0x0, 0x10, 0x9, 0x7a1, 0x2000, 0x1, 0x3, 0x1, 0x76b, 0x0, 0x2, 0x2, 0x8da, 0x7ff, 0x3, 0x3, 0x9, 0x8000, 0x6bf6, 0xfffffffe, 0x4, 0x10001, 0x7, 0x3, 0x5, 0x1d, 0x7f, 0x4, 0x0, 0x200, 0xe54, 0x6, 0x1, 0xe, 0x10, 0x7, 0x10000, 0x8, 0xfffffeff, 0x5, 0xffff, 0x4, 0x80000001, 0x2, 0x3, 0x80, 0x5, 0x2, 0xfffffff1, 0x8, 0x7, 0xffffffff, 0x8, 0x2, 0x80, 0x2, 0x5, 0x9, 0x401, 0x4, 0x7, 0x8000, 0xffff, 0x9, 0x9, 0xfffffe00, 0x8, 0x2, 0xd, 0x9, 0x401, 0x81, 0x2, 0x6, 0x5, 0x9, 0x6c, 0x3, 0x8, 0x0, 0x5, 0x1, 0x400, 0x2, 0x400, 0x6, 0x3, 0x32, 0x6, 0x3, 0x8000, 0xfffffffa, 0x71, 0x9b, 0x1, 0x702, 0x4, 0x8, 0x0, 0x2, 0x4, 0x3ff0c21, 0x7, 0xffffffff, 0x9, 0x0, 0x2, 0x803a, 0x6, 0xa71b, 0x0, 0x8, 0x1, 0x3, 0x91, 0x0, 0xcd7, 0x82, 0xb, 0x0, 0xcad4, 0x6, 0xf8c]}, @TCA_HTB_RTAB={0x404, 0x4, [0x0, 0x80000000, 0x990, 0x8, 0x9, 0x6, 0x5, 0x2, 0x9, 0x3ff, 0xff, 0x0, 0xa1, 0x3, 0x2, 0xd24e, 0x2, 0xc, 0x200, 0x3, 0x2, 0x5, 0xf, 0x0, 0x5, 0xba, 0x8, 0xf3, 0x2, 0x4, 0x458, 0x9, 0x734, 0x1000, 0x9, 0x3, 0x1, 0x1, 0x4, 0x9, 0x8, 0x75e, 0xbf, 0x3, 0x3bcd, 0x9, 0x2fb, 0x3, 0x6, 0x7, 0xffff, 0x10000, 0x8, 0x4, 0xf7, 0x10001, 0xe, 0x4, 0xffff, 0x9, 0x0, 0xfff, 0x0, 0x4, 0xd5f, 0x0, 0x6, 0x0, 0x3, 0x6, 0x2, 0x0, 0xc0000000, 0x5, 0x200, 0x8, 0x1000, 0x0, 0xb3f, 0x7, 0x2, 0x5, 0x1000, 0x2, 0xfffffe01, 0x7fffffff, 0x3, 0x3, 0x1, 0x0, 0x5, 0x8, 0xfffffffe, 0x7, 0x8, 0x8, 0x81, 0x7, 0x8, 0x80000001, 0x5, 0x1, 0x1ff, 0x80000001, 0x2, 0x2, 0x81, 0xff, 0x13e7289a, 0x80000000, 0x0, 0x1, 0x10, 0x2, 0x100, 0x4, 0x0, 0x2, 0x3, 0x846d, 0x7, 0x9, 0x3a, 0xcb5f, 0x7ff, 0x100, 0x5, 0x7, 0x7, 0x6, 0xb4, 0x7fff, 0x3, 0x6, 0x5, 0x67e3, 0x4, 0x8e, 0x1, 0x80, 0x6, 0xbe7f, 0x4, 0x8, 0x9, 0x8, 0x2, 0x7d8, 0x5, 0x0, 0x401, 0x6, 0xd, 0x80000000, 0x9, 0xd5, 0x0, 0x3, 0x101, 0x81, 0xb82, 0xfffff995, 0x401, 0x7, 0x4, 0x9, 0x6, 0x2, 0x4, 0x9, 0x35a5, 0x9, 0x7ff, 0xc2a, 0xe6fd, 0x7, 0x2, 0x9, 0x80008, 0x1000, 0x5, 0x7fff, 0x6, 0x7c637be9, 0x1, 0x140000, 0x7, 0x0, 0x3, 0x81, 0x101, 0x1, 0x10001, 0x3, 0x8, 0xe2, 0x0, 0x5, 0xbf, 0x7, 0xb847, 0x44, 0x9, 0x2, 0x0, 0x7, 0xa, 0x4, 0x2, 0x8100, 0x1, 0x6, 0xfffffffa, 0xe0c1, 0x8000, 0x4, 0xbe4, 0x1, 0x9, 0xa48, 0x1, 0x4, 0x5, 0x9, 0x1, 0x7, 0x3, 0x0, 0x9, 0x5, 0x0, 0x2, 0xff, 0x10, 0xd3a, 0x8b, 0xf, 0xfffeffff, 0x3, 0x3b4, 0x9, 0x2, 0x8, 0x8, 0x0, 0x9bb5, 0x10, 0x9, 0xfff, 0x101, 0x81, 0x80000000, 0x8000, 0x3, 0x8, 0x9]}]}}, @tclass_kind_options=@c_sfb={0x8}, @tclass_kind_options=@c_tbf={0x8}, @tclass_kind_options=@c_fq_codel={0xd}, @tclass_kind_options=@c_mqprio={0xb}]}, 0x87c}}, 0x1) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 2.499439631s ago: executing program 5 (id=1197): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket(0x2a, 0x2, 0x0) getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x9, 0x1}}}}]}, 0x44}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000010c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0xffffffbf, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_flow={{0x9}, {0x10, 0x2, [@TCA_FLOW_ACT={0x4}, @TCA_FLOW_KEYS={0x8, 0x1, 0x8c30}]}}]}, 0x40}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0) 2.297671324s ago: executing program 0 (id=1198): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$devlink(0x0, r0) sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r0, 0x0, 0x4000802) socket$inet_udp(0x2, 0x2, 0x0) openat$snapshot(0xffffffffffffff9c, 0x0, 0x24741, 0x0) r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x74e4177c9c315e56, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = syz_io_uring_setup(0x110, &(0x7f0000000680)={0x0, 0x2a11, 0x0, 0xfffc, 0xfffffffd}, &(0x7f00000004c0)=0x0, &(0x7f0000000040)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_STATX={0x15, 0x4c, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x7ff, 0x1000}) io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0) 2.16593327s ago: executing program 0 (id=1199): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = epoll_create1(0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x0, 0x0) r3 = socket$can_raw(0x1d, 0x3, 0x1) bind$can_raw(r3, &(0x7f0000000000), 0x10) setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, &(0x7f0000000140)=[{{}, {0x0, 0x1}}, {{}, {0x0, 0x1}}], 0x10) setsockopt$CAN_RAW_FILTER(r3, 0x65, 0x1, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000200)={0xa000000a}) finit_module(r2, 0x0, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r5 = openat$cgroup_devices(r4, &(0x7f0000000100)='devices.allow\x00', 0x2, 0x0) write$cgroup_devices(r5, &(0x7f00000000c0)={'c', ' *:* ', 'rwm\x00'}, 0xa) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r7 = openat$cgroup_devices(r6, &(0x7f0000000240)='devices.allow\x00', 0x2, 0x0) write$cgroup_devices(r7, &(0x7f0000000280)={'b', ' *:* ', 'rm\x00'}, 0x9) write$cgroup_devices(r5, &(0x7f00000003c0)={'a', ' *:* ', 'rw\x00'}, 0x9) 694.538769ms ago: executing program 4 (id=1200): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x77, 0x101101) ioctl$USBDEVFS_ALLOW_SUSPEND(r1, 0x5522) ioctl$USBDEVFS_ALLOC_STREAMS(r1, 0x8008551c, &(0x7f0000000040)=ANY=[@ANYBLOB="62da00000b00000081"]) 693.896509ms ago: executing program 5 (id=1201): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_VFINFO_LIST={0x8, 0x16, 0x0, 0x1, [{0x4}]}, @IFLA_IFNAME={0x14, 0x3, 'veth0_to_bond\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x5801}, 0x0) 676.731081ms ago: executing program 3 (id=1202): r0 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00'}) r2 = socket$inet6_dccp(0xa, 0x6, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000100)=@newqdisc={0x34, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xfff2, 0xa}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x55}, 0x4000) 659.836863ms ago: executing program 0 (id=1203): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000280)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10) socketpair(0x18, 0x0, 0x2, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000c40), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000080)=0x1) 558.199705ms ago: executing program 2 (id=1204): r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) setsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, &(0x7f00000000c0)=0xdd9, 0x2) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) close(r1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r5, r4, 0x26, 0x0, 0x0, @void, @value}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r5}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20) recvmsg$unix(r2, &(0x7f00000004c0)={&(0x7f0000000180), 0x6e, &(0x7f0000000100)=[{&(0x7f00000006c0)=""/179, 0xfffe}], 0x1}, 0x0) sendmsg$inet(r3, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0xfffe}], 0x1}, 0x0) 490.650483ms ago: executing program 5 (id=1205): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet(0x2, 0x80001, 0x84) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4) bind$inet(r1, 0x0, 0x0) listen(r1, 0x3) r2 = socket$inet(0x2, 0x80001, 0x84) setsockopt$sock_int(r2, 0x1, 0xf, &(0x7f0000000280)=0x3, 0x4) bind$inet(r2, &(0x7f0000000180)={0x2, 0xce20, @local}, 0x10) listen(r2, 0x3) close_range(r0, 0xffffffffffffffff, 0x0) 490.327143ms ago: executing program 4 (id=1206): r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x22c01) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)=ANY=[@ANYRES32=r0]) unshare(0x20000400) ppoll(&(0x7f0000000000), 0x20000000000000a4, 0x0, 0x0, 0x0) 459.402196ms ago: executing program 3 (id=1207): r0 = mq_open(&(0x7f0000000180)='\r\x00elinu\xef\xe3elinux\x00\x96\xf6\x92\n#*\xac\x05\xce\xf8D\\\x9a\xe6[]L+\xf6\v\xe8\xf2\xd3\b\x15\n\xb8F!Q9o\x1f#\xbdt\r\xfb\"\x18%\xfdM\xaf_t\xd2\xdcJ\x10\a\xbab\x1a\xdf\xb1\xbdU\xd7Lo\xe7\xac\x81\x10k\xce-\xf5@\xbb\x9d;\xe8\xf6\xffQ\x04\xaai\x92k\x1b;\xddM\xa2\xe1-\x0e\xd8\xde\x00\xff\x18\xdd\bL\xfb\xa2.\xb6{\xb5\x85#\x88\xdc\xf0\x0f\x05\xf1\xc4 \xdeV\x80q\xf7\x04\xf5\x85T\x1f\xc2S]*\xc9lw\xd3J\xc5\xe8\x02\xcb\xbbAHxr\xac\xb77F\xdf\x1c\xcb\xd4\xce\x88L\xf1\xf9[\x98\xd4+pTx\x95\xb5\x1b]x\x1a\x95\xe1c6\xe7`83\xb7n#\xe0\xc1_\xec\xba\xde\a\x8b\xc5\x86woo\xbc\x1c\xa3r\x82\xf3enq-\x90/\xed\xff\xad+\x03\x10\t\xda\xfd\xa2\xd0\xef4\n%\xf1\xd8', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000040)={0x0, 0x1, 0x5}) mq_getsetattr(r0, &(0x7f0000000300)={0x800, 0x0, 0x1}, 0x0) mq_timedreceive(r0, &(0x7f0000001740)=""/207, 0xcf, 0x0, 0x0) mq_timedreceive(r0, &(0x7f0000000080)=""/92, 0x5c, 0x0, 0x0) r1 = syz_io_uring_setup(0x31c7, &(0x7f0000000140)={0x0, 0x0, 0x1}, &(0x7f00000001c0), &(0x7f00000005c0)) r2 = bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2000000}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b00000000001b000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000006ffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) socket$netlink(0x10, 0x3, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x0, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, 0x0, 0x0) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000001400)) timer_create(0xfffffffd, 0x0, &(0x7f0000000040)=0x0) timer_settime(r7, 0x0, &(0x7f0000000080)={{0x0, 0x3938700}, {0x77359400}}, 0x0) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) unshare(0x40000000) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48) syz_io_uring_setup(0x263f, &(0x7f0000000840)={0x0, 0xb8da, 0x186a, 0x0, 0x0, 0x0, r1}, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x1}}, './file0\x00'}) 399.858243ms ago: executing program 0 (id=1208): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r0, 0x0, r3, 0x0, 0x39000, 0x0) r4 = memfd_create(&(0x7f0000000080), 0x0) splice(r2, 0x0, r4, 0x0, 0x408cd, 0x0) write$binfmt_elf64(r1, &(0x7f0000000100)=ANY=[], 0xfffffe3e) 292.720875ms ago: executing program 5 (id=1209): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000003c0)='kfree\x00', r1}, 0x10) mkdir(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_read_part_table(0x5c9, &(0x7f0000000880)="$eJzs0jFoW0cYAOD/vaKoHYJFCLjQpRCTSUmKOiRQiVKMIrzYIaQhQ+dCMhQSyODBSFUyp8nULSGJDcaL6dBOhi7GMhgb5MnIq+dCvWkwr8h6XmxTCsZ13XzfoNP999/9d/wvONfS+CPLsiQisuJB7Md8JeLxF3+/+9uF+u2Jz+98c/deRBKPImLy2qPfBitJnnFw6i/5fCqfTxQr3bdr47sLpfUrm52x92lEYRC/EBGtwf7W7MjRekl8dfIn8z+yWFsZefb8SePFdO3hVmNmp5DHX918V23eH60+SIfzpfS43dkx39jJ6u+N3prbyKb+fH3xeqHT7VdW87xyctJK/Bct7mUDn2aD/n89s/PmcrvX7k9enX96o3ypt9x8ud/338/6mgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAdgsbYy8uz5k8aL6drDrcbMzpffX6t/9lP9h1c331Wb90erD9Jh3lL679Qf696a28g+jtcXrxc6F/qV1TyvnJxOfc7W4f6/udzutfuTV+ef3ihf6i03XyY/Pz7rOwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA50v99nZE3L0XkcR3ETGelmYH8awYUdo+mj9VHI4TxUr37dr47kJp/cpmZ+z9nTy+lEa04pP9/7/u/04fOuGj4dCKiPT03sU/81cAAAD//xmKiIU=") 192.618737ms ago: executing program 2 (id=1210): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000000)={0x15, 0x110, 0xfa08, {0xffffffffffffffff, 0x0, 0x10, 0x10, 0x0, @in6={0xa, 0x4e23, 0xfffffffc, @private0={0xfc, 0x0, '\x00', 0x8}, 0xfffffff1}, @in={0x2, 0x0, @remote}}}, 0x118) 82.32072ms ago: executing program 2 (id=1211): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10) creat(&(0x7f0000000140)='./file2\x00', 0x1ad) unlink(&(0x7f0000000180)='./file1\x00') 0s ago: executing program 5 (id=1212): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket(0x2a, 0x2, 0x0) getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x9, 0x1}}}}]}, 0x44}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000010c0)=@newtfilter={0x40, 0x2c, 0xd27, 0x0, 0xffffffbf, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {}, {0x1c, 0xfff1}}, [@filter_kind_options=@f_flow={{0x9}, {0x10, 0x2, [@TCA_FLOW_ACT={0x4}, @TCA_FLOW_KEYS={0x8, 0x1, 0x8c30}]}}]}, 0x40}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0) kernel console output (not intermixed with test programs): : Interface activated: batadv_slave_1 [ 76.304289][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.323318][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 76.331952][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.336406][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 76.353287][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 76.363917][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 76.374465][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 76.384498][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 76.393740][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 76.402858][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 76.413396][ T4253] device veth0_macvtap entered promiscuous mode [ 76.424658][ T4250] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.434511][ T4250] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.443305][ T4250] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.452242][ T4250] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.471188][ T4253] device veth1_macvtap entered promiscuous mode [ 76.486148][ T4255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.502117][ T4255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.512439][ T4255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.523479][ T4255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.534213][ T4255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.544722][ T4255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.560004][ T4255] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.587907][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 76.601420][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 76.616058][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 76.625390][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 76.643813][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.657481][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.667436][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.678128][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.689313][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.699777][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.709854][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 76.721330][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.733940][ T4253] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 76.759443][ T4255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.772117][ T4255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.783705][ T4255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.794282][ T4255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.804321][ T4255] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.814808][ T4255] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.826207][ T4255] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.836210][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 76.845821][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 76.854968][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 76.864711][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 76.878220][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.889256][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.899151][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.911224][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.921314][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.932246][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.942138][ T4253] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 76.952687][ T4253] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 76.965436][ T4253] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 76.977770][ T4253] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 76.987207][ T4253] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.007784][ T4253] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.026492][ T4253] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.048286][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 77.051685][ T4331] 9pnet_fd: Insufficient options for proto=fd [ 77.070926][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 77.091535][ T4331] loop1: detected capacity change from 0 to 2048 [ 77.102454][ T4255] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.113978][ T4255] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.124354][ T4255] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.135995][ T4255] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 77.174957][ T33] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.186213][ T33] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.187052][ T4331] loop1: p1 < > p4 [ 77.224052][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 77.233363][ T4331] loop1: p4 size 8388608 extends beyond EOD, truncated [ 77.343258][ T4318] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.352966][ T4318] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.373388][ T4318] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.386615][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 77.403180][ T4318] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.421686][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 77.468577][ T4312] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.508128][ T4312] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.516262][ T4318] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.516336][ T4331] loop1: detected capacity change from 0 to 4096 [ 77.569108][ T4318] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.582626][ T4331] EXT4-fs: Ignoring removed nobh option [ 77.593460][ T4331] EXT4-fs: Ignoring removed i_version option [ 77.610066][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 77.622041][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 77.629627][ T4331] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 77.656565][ T4264] Bluetooth: hci1: command tx timeout [ 77.672713][ T4318] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.681026][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.692482][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 77.704125][ T4331] EXT4-fs (loop1): unmounting filesystem. [ 77.719765][ T4318] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.727657][ T4264] Bluetooth: hci2: command tx timeout [ 77.733096][ T4264] Bluetooth: hci4: command tx timeout [ 77.740794][ T4267] Bluetooth: hci3: command tx timeout [ 77.740813][ T4254] Bluetooth: hci0: command tx timeout [ 77.752868][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.770297][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 77.779183][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 77.859537][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 77.880253][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 77.911451][ T4340] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present! [ 78.045574][ T27] audit: type=1326 audit(1730048169.720:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4339 comm="syz.0.1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd2dad756e7 code=0x7ffc0000 [ 78.172517][ T27] audit: type=1326 audit(1730048169.720:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4339 comm="syz.0.1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd2dad1a099 code=0x7ffc0000 [ 78.221627][ T27] audit: type=1326 audit(1730048169.730:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4339 comm="syz.0.1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 78.279734][ T4354] Zero length message leads to an empty skb [ 78.288120][ T27] audit: type=1326 audit(1730048169.730:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4339 comm="syz.0.1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd2dad756e7 code=0x7ffc0000 [ 78.354061][ T27] audit: type=1326 audit(1730048169.730:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4339 comm="syz.0.1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd2dad1a099 code=0x7ffc0000 [ 78.432440][ T27] audit: type=1326 audit(1730048169.740:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4339 comm="syz.0.1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 78.463650][ T27] audit: type=1326 audit(1730048169.740:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4339 comm="syz.0.1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd2dad756e7 code=0x7ffc0000 [ 78.493414][ T27] audit: type=1326 audit(1730048169.740:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4339 comm="syz.0.1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd2dad1a099 code=0x7ffc0000 [ 78.521959][ T4363] netlink: 12 bytes leftover after parsing attributes in process `syz.1.11'. [ 78.524400][ T27] audit: type=1326 audit(1730048169.750:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4339 comm="syz.0.1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 78.565301][ T27] audit: type=1326 audit(1730048169.750:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4339 comm="syz.0.1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd2dad756e7 code=0x7ffc0000 [ 78.814012][ T4379] 9pnet_fd: Insufficient options for proto=fd [ 78.864766][ T4379] loop2: detected capacity change from 0 to 2048 [ 78.868467][ T4381] loop1: detected capacity change from 0 to 2048 [ 78.879412][ T4381] EXT4-fs (loop1): unsupported inode size: 32768 [ 78.885873][ T4381] EXT4-fs (loop1): blocksize: 2048 [ 78.934990][ T4379] loop2: p1 < > p4 [ 78.944631][ T4379] loop2: p4 size 8388608 extends beyond EOD, truncated [ 79.036362][ T4379] loop2: detected capacity change from 0 to 4096 [ 79.046099][ T4379] EXT4-fs: Ignoring removed nobh option [ 79.057496][ T4379] EXT4-fs: Ignoring removed i_version option [ 79.072913][ T4379] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 79.084590][ T4379] EXT4-fs (loop2): unmounting filesystem. [ 79.536245][ T4397] netlink: 12 bytes leftover after parsing attributes in process `syz.3.25'. [ 79.785163][ T4410] 9pnet_fd: Insufficient options for proto=fd [ 79.823083][ T4410] loop4: detected capacity change from 0 to 2048 [ 79.879292][ T4410] loop4: p1 < > p4 [ 79.885631][ T4410] loop4: p4 size 8388608 extends beyond EOD, truncated [ 80.004682][ T4410] loop4: detected capacity change from 0 to 4096 [ 80.017165][ T4410] EXT4-fs: Ignoring removed nobh option [ 80.026627][ T4410] EXT4-fs: Ignoring removed i_version option [ 80.064230][ T4410] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 80.085501][ T4410] EXT4-fs (loop4): unmounting filesystem. [ 80.461172][ T4437] loop4: detected capacity change from 0 to 1024 [ 80.472348][ T4437] EXT4-fs (loop4): INFO: recovery required on readonly filesystem [ 80.482119][ T4437] EXT4-fs (loop4): write access will be enabled during recovery [ 80.491286][ T4437] JBD2: no valid journal superblock found [ 80.497462][ T4437] EXT4-fs (loop4): error loading journal [ 80.753610][ T4442] netlink: 12 bytes leftover after parsing attributes in process `syz.1.43'. [ 80.765867][ T4444] process 'syz.4.45' launched './file0' with NULL argv: empty string added [ 81.004719][ T4456] netlink: 12 bytes leftover after parsing attributes in process `syz.4.59'. [ 81.206045][ T4466] 9pnet_fd: Insufficient options for proto=fd [ 82.282174][ T4491] loop4: detected capacity change from 0 to 128 [ 82.396952][ T4500] netlink: 12 bytes leftover after parsing attributes in process `syz.1.67'. [ 82.862455][ T4513] netlink: 12 bytes leftover after parsing attributes in process `syz.0.81'. [ 82.882387][ T4518] 9pnet_fd: Insufficient options for proto=fd [ 82.959021][ T4518] loop3: detected capacity change from 0 to 2048 [ 82.989889][ T4518] loop3: p1 < > p4 [ 82.994948][ T4518] loop3: p4 size 8388608 extends beyond EOD, truncated [ 83.084166][ T4518] loop3: detected capacity change from 0 to 4096 [ 83.091434][ T4518] EXT4-fs: Ignoring removed nobh option [ 83.097527][ T4518] EXT4-fs: Ignoring removed i_version option [ 83.112948][ T4518] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 83.125135][ T4518] EXT4-fs (loop3): unmounting filesystem. [ 83.356871][ T27] kauditd_printk_skb: 155 callbacks suppressed [ 83.356887][ T27] audit: type=1326 audit(1730048175.030:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4532 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 83.402749][ T27] audit: type=1326 audit(1730048175.080:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4532 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=97 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 83.433671][ T27] audit: type=1326 audit(1730048175.080:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4532 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 83.615059][ T4543] loop2: detected capacity change from 0 to 512 [ 83.643726][ T4543] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.84: bg 0: block 393: padding at end of block bitmap is not set [ 83.666278][ T4543] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 83.684968][ T4543] EXT4-fs (loop2): 2 truncates cleaned up [ 83.716682][ T4543] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 83.780846][ T4550] syz.4.87[4550] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 83.780959][ T4550] syz.4.87[4550] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 83.806291][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 83.829596][ T27] audit: type=1326 audit(1730048175.510:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4547 comm="syz.0.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 83.902400][ T27] audit: type=1326 audit(1730048175.540:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4547 comm="syz.0.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 83.976599][ T27] audit: type=1326 audit(1730048175.540:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4547 comm="syz.0.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 84.022815][ T27] audit: type=1326 audit(1730048175.540:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4547 comm="syz.0.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 84.056202][ T27] audit: type=1326 audit(1730048175.540:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4547 comm="syz.0.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 84.080887][ T4561] loop2: detected capacity change from 0 to 512 [ 84.081184][ T27] audit: type=1326 audit(1730048175.540:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4547 comm="syz.0.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 84.154259][ T27] audit: type=1326 audit(1730048175.540:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4547 comm="syz.0.88" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 84.168669][ T4561] EXT4-fs error (device loop2): ext4_acquire_dquot:6801: comm syz.2.93: Failed to acquire dquot type 1 [ 84.273001][ T4567] loop4: detected capacity change from 0 to 512 [ 84.310683][ T4561] EXT4-fs (loop2): 1 truncate cleaned up [ 84.320439][ T4561] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 84.371389][ T4561] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 84.450871][ T4567] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 84.472082][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 84.485706][ T4567] ext4 filesystem being mounted at /18/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 84.715885][ T4585] syz.3.102[4585] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 84.716072][ T4585] syz.3.102[4585] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 84.759671][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 84.983282][ T4598] loop6: detected capacity change from 0 to 7 [ 85.009089][ T4598] Dev loop6: unable to read RDB block 7 [ 85.014736][ T4598] loop6: unable to read partition table [ 85.021846][ T4600] IPv6: NLM_F_CREATE should be specified when creating new route [ 85.031632][ T4598] loop6: partition table beyond EOD, truncated [ 85.044077][ T4598] loop_reread_partitions: partition scan of loop6 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨â·û [ 85.044077][ T4598] ) failed (rc=-5) [ 85.080390][ T4602] loop1: detected capacity change from 0 to 512 [ 85.090516][ T4602] EXT4-fs: Ignoring removed mblk_io_submit option [ 85.099995][ T4602] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 85.119381][ T4602] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002] [ 85.128097][ T4602] System zones: 1-12 [ 85.136720][ T4602] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2186: inode #15: comm syz.1.110: corrupted in-inode xattr [ 85.151254][ T4602] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.110: couldn't read orphan inode 15 (err -117) [ 85.164686][ T4602] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 86.758615][ T126] cfg80211: failed to load regulatory.db [ 86.864236][ T4645] loop2: detected capacity change from 0 to 512 [ 86.909832][ T4645] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 86.926746][ T4645] ext4 filesystem being mounted at /26/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 86.952388][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 87.035821][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 87.197344][ T4656] loop2: detected capacity change from 0 to 8192 [ 88.691123][ T4686] mmap: syz.4.143 (4686) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 88.707639][ T4685] loop3: detected capacity change from 0 to 512 [ 88.763722][ T4685] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 88.822699][ T4685] ext4 filesystem being mounted at /26/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 89.060143][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 89.244171][ T27] kauditd_printk_skb: 25 callbacks suppressed [ 89.244187][ T27] audit: type=1326 audit(1730048180.920:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4715 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 89.291032][ T27] audit: type=1326 audit(1730048180.950:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4715 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 89.346891][ T27] audit: type=1326 audit(1730048180.960:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4715 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 89.395016][ T27] audit: type=1326 audit(1730048180.960:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4715 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 89.417897][ T27] audit: type=1326 audit(1730048180.960:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4715 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 89.468574][ T27] audit: type=1326 audit(1730048180.970:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4715 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 89.577369][ T27] audit: type=1326 audit(1730048180.970:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4715 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 89.610988][ T27] audit: type=1326 audit(1730048180.970:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4715 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 89.659524][ T27] audit: type=1326 audit(1730048181.000:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4715 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 89.705138][ T27] audit: type=1326 audit(1730048181.000:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4715 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 90.542534][ T4737] loop1: detected capacity change from 0 to 256 [ 90.615454][ T4737] ======================================================= [ 90.615454][ T4737] WARNING: The mand mount option has been deprecated and [ 90.615454][ T4737] and is ignored by this kernel. Remove the mand [ 90.615454][ T4737] option from the mount to silence this warning. [ 90.615454][ T4737] ======================================================= [ 90.704641][ T4737] FAT-fs (loop1): Directory bread(block 64) failed [ 90.719285][ T4737] FAT-fs (loop1): Directory bread(block 65) failed [ 90.736248][ T4737] FAT-fs (loop1): Directory bread(block 66) failed [ 90.753507][ T4737] FAT-fs (loop1): Directory bread(block 67) failed [ 90.767500][ T4737] FAT-fs (loop1): Directory bread(block 68) failed [ 90.784417][ T4737] FAT-fs (loop1): Directory bread(block 69) failed [ 90.826691][ T4737] FAT-fs (loop1): Directory bread(block 70) failed [ 90.833295][ T4737] FAT-fs (loop1): Directory bread(block 71) failed [ 90.841971][ T4737] FAT-fs (loop1): Directory bread(block 72) failed [ 90.848620][ T4737] FAT-fs (loop1): Directory bread(block 73) failed [ 90.900919][ T4754] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 90.914842][ T4754] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 90.949662][ T4737] syz.1.172: attempt to access beyond end of device [ 90.949662][ T4737] loop1: rw=524288, sector=1736, nr_sectors = 32 limit=256 [ 90.999272][ T4737] syz.1.172: attempt to access beyond end of device [ 90.999272][ T4737] loop1: rw=0, sector=1736, nr_sectors = 8 limit=256 [ 94.394655][ T27] kauditd_printk_skb: 17 callbacks suppressed [ 94.394701][ T27] audit: type=1326 audit(1730048186.070:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4833 comm="syz.4.200" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x0 [ 95.444839][ T27] audit: type=1326 audit(1730048187.120:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4866 comm="syz.3.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 95.489372][ T27] audit: type=1326 audit(1730048187.150:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4866 comm="syz.3.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 95.571009][ T27] audit: type=1326 audit(1730048187.150:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4866 comm="syz.3.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 95.667542][ T27] audit: type=1326 audit(1730048187.150:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4866 comm="syz.3.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 95.729531][ T27] audit: type=1326 audit(1730048187.160:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4866 comm="syz.3.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 95.752613][ T27] audit: type=1326 audit(1730048187.160:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4866 comm="syz.3.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 95.805930][ T27] audit: type=1326 audit(1730048187.160:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4866 comm="syz.3.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 95.842787][ T27] audit: type=1326 audit(1730048187.170:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4866 comm="syz.3.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 95.879736][ T27] audit: type=1326 audit(1730048187.170:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4866 comm="syz.3.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 96.433110][ T4912] syz.2.239[4912] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 96.433220][ T4912] syz.2.239[4912] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 96.850493][ T4935] netlink: 16 bytes leftover after parsing attributes in process `syz.2.250'. [ 96.973077][ T4935] netlink: 16 bytes leftover after parsing attributes in process `syz.2.250'. [ 97.193854][ T4935] netlink: 16 bytes leftover after parsing attributes in process `syz.2.250'. [ 97.565021][ T4968] serio: Serial port pts0 [ 97.591587][ T4956] team0 (unregistering): Port device team_slave_0 removed [ 97.640560][ T4956] team0 (unregistering): Port device team_slave_1 removed [ 97.901816][ T4984] netlink: 16 bytes leftover after parsing attributes in process `syz.1.270'. [ 97.951935][ T4984] netlink: 16 bytes leftover after parsing attributes in process `syz.1.270'. [ 98.153449][ T4984] netlink: 16 bytes leftover after parsing attributes in process `syz.1.270'. [ 98.713818][ T5022] netlink: 16 bytes leftover after parsing attributes in process `syz.4.287'. [ 98.860159][ T5022] netlink: 16 bytes leftover after parsing attributes in process `syz.4.287'. [ 99.074962][ T5022] netlink: 16 bytes leftover after parsing attributes in process `syz.4.287'. [ 99.235020][ T5053] syz.2.299[5053] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 99.235133][ T5053] syz.2.299[5053] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 99.567663][ T5069] loop4: detected capacity change from 0 to 1764 [ 99.644407][ T27] kauditd_printk_skb: 124 callbacks suppressed [ 99.644424][ T27] audit: type=1326 audit(1730048191.320:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 99.711883][ T27] audit: type=1326 audit(1730048191.320:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 99.749234][ T27] audit: type=1326 audit(1730048191.320:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 99.776687][ T27] audit: type=1326 audit(1730048191.320:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 99.800751][ T27] audit: type=1326 audit(1730048191.340:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 99.826031][ T27] audit: type=1326 audit(1730048191.340:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 99.868192][ T27] audit: type=1326 audit(1730048191.340:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 99.930198][ T27] audit: type=1326 audit(1730048191.340:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 99.979995][ T5085] netlink: 16 bytes leftover after parsing attributes in process `syz.3.311'. [ 99.989214][ T27] audit: type=1326 audit(1730048191.340:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 100.034659][ T5086] loop4: detected capacity change from 0 to 1764 [ 100.044379][ T27] audit: type=1326 audit(1730048191.340:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5074 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 101.660659][ T5155] Process accounting resumed [ 101.801757][ T5153] syz.4.343 (5153) used greatest stack depth: 19072 bytes left [ 101.918067][ T5171] __nla_validate_parse: 3 callbacks suppressed [ 101.918087][ T5171] netlink: 28 bytes leftover after parsing attributes in process `syz.2.351'. [ 102.251378][ T5193] loop3: detected capacity change from 0 to 1024 [ 102.337235][ T5193] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 102.493126][ T5205] loop4: detected capacity change from 0 to 2048 [ 102.533126][ T5205] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 102.585025][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 102.598178][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 102.652155][ T5212] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5) [ 102.659078][ T5212] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 102.679854][ T5219] netlink: 28 bytes leftover after parsing attributes in process `syz.4.372'. [ 102.711002][ T5212] vhci_hcd vhci_hcd.0: Device attached [ 102.986565][ T26] usb 35-1: new low-speed USB device number 2 using vhci_hcd [ 103.431816][ T5213] vhci_hcd: connection reset by peer [ 103.449115][ T4318] vhci_hcd: stop threads [ 103.454312][ T4318] vhci_hcd: release socket [ 103.477518][ T4318] vhci_hcd: disconnect device [ 103.491961][ T5259] netlink: 28 bytes leftover after parsing attributes in process `syz.2.387'. [ 104.696525][ T27] kauditd_printk_skb: 103 callbacks suppressed [ 104.696542][ T27] audit: type=1326 audit(1730048196.360:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5280 comm="syz.1.396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 104.789013][ T27] audit: type=1326 audit(1730048196.370:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5280 comm="syz.1.396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 104.811594][ T27] audit: type=1326 audit(1730048196.370:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5280 comm="syz.1.396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 104.836095][ T27] audit: type=1326 audit(1730048196.370:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5280 comm="syz.1.396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 104.858676][ T27] audit: type=1326 audit(1730048196.370:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5280 comm="syz.1.396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 104.917223][ T27] audit: type=1326 audit(1730048196.370:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5280 comm="syz.1.396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 104.983788][ T27] audit: type=1326 audit(1730048196.370:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5280 comm="syz.1.396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 105.046104][ T27] audit: type=1326 audit(1730048196.370:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5280 comm="syz.1.396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 105.114584][ T27] audit: type=1326 audit(1730048196.370:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5280 comm="syz.1.396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 105.138123][ T5295] netlink: 28 bytes leftover after parsing attributes in process `syz.3.402'. [ 105.177957][ T5299] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 105.194603][ T27] audit: type=1326 audit(1730048196.370:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5280 comm="syz.1.396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f441177e719 code=0x7ffc0000 [ 105.237693][ T5299] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 105.265414][ T5297] loop1: detected capacity change from 0 to 4096 [ 105.272957][ T5297] EXT4-fs: Ignoring removed nomblk_io_submit option [ 105.294872][ T5297] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 105.381162][ T5311] loop3: detected capacity change from 0 to 128 [ 105.613085][ T4256] EXT4-fs error (device loop1): ext4_readdir:260: inode #12: block 80: comm syz-executor: path /77/file1/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 105.702427][ T4256] EXT4-fs error (device loop1): ext4_empty_dir:3154: inode #12: block 80: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 105.735141][ T4256] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz-executor: directory missing '..' [ 105.800837][ T4256] EXT4-fs error (device loop1): ext4_readdir:260: inode #12: block 80: comm syz-executor: path /77/file1/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 105.887073][ T4256] EXT4-fs error (device loop1): ext4_empty_dir:3154: inode #12: block 80: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 105.932530][ T4256] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz-executor: directory missing '..' [ 105.949439][ T4256] EXT4-fs error (device loop1): ext4_readdir:260: inode #12: block 80: comm syz-executor: path /77/file1/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 106.020509][ T4256] EXT4-fs error (device loop1): ext4_empty_dir:3154: inode #12: block 80: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 106.053502][ T5333] netlink: 28 bytes leftover after parsing attributes in process `syz.2.420'. [ 106.089723][ T4256] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz-executor: directory missing '..' [ 106.112043][ T4256] EXT4-fs error (device loop1): ext4_readdir:260: inode #12: block 80: comm syz-executor: path /77/file1/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 106.194126][ T4256] EXT4-fs error (device loop1): ext4_empty_dir:3154: inode #12: block 80: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 106.203449][ T5337] loop3: detected capacity change from 0 to 2048 [ 106.261320][ T4256] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz-executor: directory missing '..' [ 106.291426][ T4256] EXT4-fs error (device loop1): ext4_readdir:260: inode #12: block 80: comm syz-executor: path /77/file1/file0: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 106.346726][ T4256] EXT4-fs error (device loop1): ext4_empty_dir:3154: inode #12: block 80: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 106.350441][ T5337] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 106.378430][ T4256] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz-executor: directory missing '..' [ 106.393714][ T4256] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz-executor: directory missing '..' [ 106.407264][ T4256] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz-executor: directory missing '..' [ 106.422058][ T4256] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz-executor: directory missing '..' [ 106.435426][ T4256] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz-executor: directory missing '..' [ 106.473633][ T4256] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz-executor: directory missing '..' [ 106.588232][ T5349] loop2: detected capacity change from 0 to 256 [ 106.643887][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 106.985636][ T5361] loop4: detected capacity change from 0 to 512 [ 107.031913][ T5361] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.432: bg 0: block 393: padding at end of block bitmap is not set [ 107.057057][ T5361] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 107.077376][ T5361] EXT4-fs (loop4): 2 truncates cleaned up [ 107.083172][ T5361] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 107.182249][ T5371] netlink: 28 bytes leftover after parsing attributes in process `syz.3.436'. [ 107.259581][ T5373] loop2: detected capacity change from 0 to 512 [ 107.271776][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 107.285409][ T4256] EXT4-fs (loop1): unmounting filesystem. [ 107.297109][ T5373] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 107.389212][ T5373] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 107.575356][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 108.129074][ T26] vhci_hcd: vhci_device speed not set [ 108.191915][ T4254] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 108.202516][ T4254] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 108.229986][ T4788] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 108.242049][ T4254] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 108.251526][ T4254] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 108.259404][ T4254] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 108.267233][ T4254] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 108.414614][ T4788] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 108.455678][ T5421] loop4: detected capacity change from 0 to 2048 [ 108.491396][ T5421] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 108.574003][ T4788] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 108.756571][ T4788] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.168043][ T5426] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 109.245430][ T5410] chnl_net:caif_netlink_parms(): no params data found [ 109.516283][ T5410] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.534942][ T5410] bridge0: port 1(bridge_slave_0) entered disabled state [ 109.558723][ T5410] device bridge_slave_0 entered promiscuous mode [ 109.620254][ T5410] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.640445][ T5410] bridge0: port 2(bridge_slave_1) entered disabled state [ 109.657020][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 109.685065][ T5410] device bridge_slave_1 entered promiscuous mode [ 109.839908][ T27] kauditd_printk_skb: 53 callbacks suppressed [ 109.839925][ T27] audit: type=1326 audit(1730048201.520:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5451 comm="syz.0.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 109.872092][ T5410] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 109.898966][ T27] audit: type=1326 audit(1730048201.540:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5451 comm="syz.0.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 109.931116][ T27] audit: type=1326 audit(1730048201.540:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5451 comm="syz.0.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 109.968321][ T5410] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 109.985934][ T27] audit: type=1326 audit(1730048201.540:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5451 comm="syz.0.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 110.019993][ T27] audit: type=1326 audit(1730048201.540:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5451 comm="syz.0.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 110.095190][ T5455] loop3: detected capacity change from 0 to 512 [ 110.116692][ T5410] team0: Port device team_slave_0 added [ 110.127798][ T5455] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 110.134402][ T27] audit: type=1326 audit(1730048201.540:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5451 comm="syz.0.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 110.174560][ T27] audit: type=1326 audit(1730048201.540:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5451 comm="syz.0.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 110.206202][ T27] audit: type=1326 audit(1730048201.540:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5451 comm="syz.0.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 110.238104][ T5455] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 110.255186][ T5455] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 110.266228][ T5410] team0: Port device team_slave_1 added [ 110.266854][ T5455] System zones: [ 110.287834][ T4264] Bluetooth: hci4: command tx timeout [ 110.288070][ T5455] 0-2 [ 110.297686][ T27] audit: type=1326 audit(1730048201.540:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5451 comm="syz.0.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 110.376665][ T5455] , 18-18, 34-35 [ 110.385810][ T5410] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 110.398288][ T5410] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 110.429098][ T5410] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 110.444375][ T5455] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 110.455175][ T27] audit: type=1326 audit(1730048201.540:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5451 comm="syz.0.467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 110.465080][ T5455] netlink: 20 bytes leftover after parsing attributes in process `syz.3.468'. [ 110.521404][ T5410] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 110.536319][ T5410] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 110.599659][ T5410] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 110.635338][ T5467] device veth0_vlan left promiscuous mode [ 110.650871][ T5467] device veth0_vlan entered promiscuous mode [ 110.768121][ T5410] device hsr_slave_0 entered promiscuous mode [ 110.791242][ T5410] device hsr_slave_1 entered promiscuous mode [ 110.813941][ T5410] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 110.841600][ T5410] Cannot create hsr debugfs directory [ 111.333446][ T5410] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 111.362572][ T5410] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 111.392455][ T5410] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 111.431337][ T5410] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 111.494122][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 111.496802][ T5491] netlink: 40 bytes leftover after parsing attributes in process `syz.0.482'. [ 111.705238][ T5410] 8021q: adding VLAN 0 to HW filter on device bond0 [ 111.752101][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 111.773138][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 111.815942][ T5410] 8021q: adding VLAN 0 to HW filter on device team0 [ 111.856170][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 111.883177][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 111.913416][ T4787] bridge0: port 1(bridge_slave_0) entered blocking state [ 111.920604][ T4787] bridge0: port 1(bridge_slave_0) entered forwarding state [ 112.021462][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 112.036227][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 112.045914][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 112.066310][ T4787] bridge0: port 2(bridge_slave_1) entered blocking state [ 112.073488][ T4787] bridge0: port 2(bridge_slave_1) entered forwarding state [ 112.084296][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 112.112007][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 112.134307][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 112.146240][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 112.155600][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 112.164525][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 112.173647][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 112.203854][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 112.212969][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 112.227342][ T5410] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 112.238565][ T5410] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 112.263377][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 112.272149][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 112.366565][ T4254] Bluetooth: hci4: command tx timeout [ 112.469649][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 112.478155][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 112.492893][ T5410] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 112.842357][ T5526] netlink: 12 bytes leftover after parsing attributes in process `syz.0.493'. [ 113.067380][ T5536] loop3: detected capacity change from 0 to 512 [ 113.074740][ T5536] EXT4-fs: Ignoring removed orlov option [ 113.105193][ T5536] EXT4-fs: Ignoring removed oldalloc option [ 113.161937][ T5536] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm syz.3.497: Parent and EA inode have the same ino 15 [ 113.240600][ T5536] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 113.249579][ T5543] loop2: detected capacity change from 0 to 512 [ 113.309824][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 113.319689][ T5536] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm syz.3.497: Parent and EA inode have the same ino 15 [ 113.333389][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 113.343413][ T5543] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 113.359677][ T5548] netlink: 4 bytes leftover after parsing attributes in process `syz.4.502'. [ 113.361848][ T5536] EXT4-fs (loop3): 1 orphan inode deleted [ 113.392486][ T4788] device hsr_slave_0 left promiscuous mode [ 113.399671][ T5536] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 113.420042][ T4788] device hsr_slave_1 left promiscuous mode [ 113.427189][ T4788] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 113.434898][ T4788] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 113.436701][ T5543] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 113.451957][ T4788] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 113.467385][ T4788] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 113.476651][ T5543] System zones: 0-2, 18-18, 34-35 [ 113.482934][ T5543] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 113.501394][ T5543] netlink: 20 bytes leftover after parsing attributes in process `syz.2.496'. [ 113.504071][ T4788] device bridge_slave_1 left promiscuous mode [ 113.518304][ T5534] syz.3.497 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 113.554022][ T4788] bridge0: port 2(bridge_slave_1) entered disabled state [ 113.555232][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 113.581114][ T4788] device bridge_slave_0 left promiscuous mode [ 113.599544][ T4788] bridge0: port 1(bridge_slave_0) entered disabled state [ 113.659192][ T4788] device veth1_macvtap left promiscuous mode [ 113.665973][ T4788] device veth0_macvtap left promiscuous mode [ 113.810622][ T4788] bond3 (unregistering): Released all slaves [ 113.833539][ T4788] bond2 (unregistering): Released all slaves [ 113.849212][ T4788] bond1 (unregistering): Released all slaves [ 114.243770][ T4788] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 114.283353][ T4788] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 114.456580][ T4254] Bluetooth: hci4: command tx timeout [ 114.563882][ T4788] bond0 (unregistering): Released all slaves [ 114.649014][ T5543] device veth0_vlan left promiscuous mode [ 114.655433][ T5543] device veth0_vlan entered promiscuous mode [ 114.682034][ T5410] device veth0_vlan entered promiscuous mode [ 114.699053][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 114.713929][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 114.764421][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 114.776174][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 114.789030][ T5410] device veth1_vlan entered promiscuous mode [ 114.815708][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 114.825144][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 114.833720][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 114.843834][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 114.855573][ T5410] device veth0_macvtap entered promiscuous mode [ 114.880447][ T5410] device veth1_macvtap entered promiscuous mode [ 114.903345][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.914898][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.925059][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.935911][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.946060][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.958309][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.969325][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.979905][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.991093][ T5410] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 115.004793][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 115.013814][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 115.023583][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 115.032518][ T4787] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 115.043898][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.055744][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.065736][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.077515][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.088306][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.099168][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.109167][ T5410] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.119702][ T5410] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.131367][ T5410] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 115.163797][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 115.179176][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 115.196044][ T5410] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.207254][ T5410] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.216112][ T5410] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.225450][ T5410] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.354294][ T4787] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.374390][ T4787] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.386793][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.394855][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 115.406058][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 115.427004][ T4318] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 115.442760][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 115.593258][ T27] kauditd_printk_skb: 57 callbacks suppressed [ 115.593273][ T27] audit: type=1326 audit(1730048207.270:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5564 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 115.683623][ T5573] loop4: detected capacity change from 0 to 512 [ 115.717643][ T27] audit: type=1326 audit(1730048207.320:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5564 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 115.754858][ T27] audit: type=1326 audit(1730048207.320:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5564 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 115.777704][ T5573] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 115.793634][ T5573] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 115.803039][ T5573] System zones: 0-2, 18-18, 34-35 [ 115.810301][ T5573] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 115.825710][ T5573] netlink: 20 bytes leftover after parsing attributes in process `syz.4.518'. [ 115.850752][ T5573] device veth0_vlan left promiscuous mode [ 115.857527][ T5573] device veth0_vlan entered promiscuous mode [ 115.863666][ T27] audit: type=1326 audit(1730048207.320:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5564 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 115.895808][ T27] audit: type=1326 audit(1730048207.320:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5564 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 115.954685][ T5580] netlink: 12 bytes leftover after parsing attributes in process `syz.2.509'. [ 115.973674][ T27] audit: type=1326 audit(1730048207.320:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5564 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 116.035602][ T27] audit: type=1326 audit(1730048207.320:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5564 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 116.065674][ T27] audit: type=1326 audit(1730048207.320:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5564 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 116.113945][ T27] audit: type=1326 audit(1730048207.320:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5564 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 116.166221][ T27] audit: type=1326 audit(1730048207.320:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5564 comm="syz.2.517" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7def7e719 code=0x7ffc0000 [ 116.190093][ T5589] netlink: 64 bytes leftover after parsing attributes in process `syz.3.512'. [ 116.193174][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 116.323705][ T5594] loop4: detected capacity change from 0 to 512 [ 116.332392][ T5594] EXT4-fs: Ignoring removed orlov option [ 116.338861][ T5594] EXT4-fs: Ignoring removed oldalloc option [ 116.414340][ T5594] EXT4-fs error (device loop4): ext4_xattr_inode_iget:400: comm syz.4.514: Parent and EA inode have the same ino 15 [ 116.427509][ T5594] EXT4-fs error (device loop4): ext4_xattr_inode_iget:400: comm syz.4.514: Parent and EA inode have the same ino 15 [ 116.448071][ T5594] EXT4-fs (loop4): 1 orphan inode deleted [ 116.453890][ T5594] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 116.526732][ T4254] Bluetooth: hci4: command tx timeout [ 116.703991][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 116.880751][ T5612] netlink: 12 bytes leftover after parsing attributes in process `syz.3.527'. [ 117.235878][ T5628] loop5: detected capacity change from 0 to 512 [ 117.301207][ T5628] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended [ 117.329618][ T5628] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 117.343491][ T5628] System zones: 0-2, 18-18, 34-35 [ 117.376170][ T5628] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 117.456009][ T5628] netlink: 20 bytes leftover after parsing attributes in process `syz.5.529'. [ 117.554147][ T5638] loop2: detected capacity change from 0 to 512 [ 117.578186][ T5638] EXT4-fs: Ignoring removed orlov option [ 117.583933][ T5638] EXT4-fs: Ignoring removed oldalloc option [ 117.610772][ T5638] EXT4-fs error (device loop2): ext4_xattr_inode_iget:400: comm syz.2.536: Parent and EA inode have the same ino 15 [ 117.626099][ T5622] device veth0_vlan left promiscuous mode [ 117.632311][ T5638] EXT4-fs error (device loop2): ext4_xattr_inode_iget:400: comm syz.2.536: Parent and EA inode have the same ino 15 [ 117.637363][ T5622] device veth0_vlan entered promiscuous mode [ 117.645513][ T5638] EXT4-fs (loop2): 1 orphan inode deleted [ 117.662674][ T5638] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 117.766186][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 117.807389][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 117.993998][ T5653] netlink: 12 bytes leftover after parsing attributes in process `syz.2.543'. [ 118.348309][ T5670] loop2: detected capacity change from 0 to 512 [ 118.374630][ T5670] EXT4-fs: Ignoring removed orlov option [ 118.402112][ T5670] EXT4-fs: Ignoring removed oldalloc option [ 118.419432][ T5670] EXT4-fs error (device loop2): ext4_xattr_inode_iget:400: comm syz.2.551: Parent and EA inode have the same ino 15 [ 118.438186][ T5670] EXT4-fs error (device loop2): ext4_xattr_inode_iget:400: comm syz.2.551: Parent and EA inode have the same ino 15 [ 118.454287][ T5670] EXT4-fs (loop2): 1 orphan inode deleted [ 118.476323][ T5670] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 118.628642][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 118.697201][ T5686] netlink: 20 bytes leftover after parsing attributes in process `syz.0.553'. [ 118.879510][ T5696] loop4: detected capacity change from 0 to 512 [ 118.900365][ T5696] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #2: comm syz.4.560: corrupted xattr block 255 [ 118.915693][ T5696] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 118.924424][ T5696] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 118.934137][ T5696] EXT4-fs error (device loop4): ext4_xattr_block_get:546: inode #2: comm syz.4.560: corrupted xattr block 255 [ 118.981468][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 119.036995][ T5686] device veth0_vlan left promiscuous mode [ 119.061026][ T5686] device veth0_vlan entered promiscuous mode [ 119.167230][ T5703] netlink: 12 bytes leftover after parsing attributes in process `syz.3.562'. [ 119.483693][ T5715] loop3: detected capacity change from 0 to 512 [ 119.505211][ T5715] EXT4-fs: Ignoring removed orlov option [ 119.526630][ T5715] EXT4-fs: Ignoring removed oldalloc option [ 119.555900][ T5715] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm syz.3.568: Parent and EA inode have the same ino 15 [ 119.571526][ T5715] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm syz.3.568: Parent and EA inode have the same ino 15 [ 119.586123][ T5715] EXT4-fs (loop3): 1 orphan inode deleted [ 119.595582][ T5715] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 119.726083][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 120.065529][ T5743] netlink: 12 bytes leftover after parsing attributes in process `syz.3.579'. [ 120.352424][ T5758] loop5: detected capacity change from 0 to 512 [ 120.381972][ T5758] EXT4-fs: Ignoring removed orlov option [ 120.394511][ T5758] EXT4-fs: Ignoring removed oldalloc option [ 120.427355][ T5758] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.584: Parent and EA inode have the same ino 15 [ 120.463562][ T5758] EXT4-fs error (device loop5): ext4_xattr_inode_iget:400: comm syz.5.584: Parent and EA inode have the same ino 15 [ 120.514571][ T5758] EXT4-fs (loop5): 1 orphan inode deleted [ 120.542026][ T5758] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 120.548291][ T5768] netlink: 192 bytes leftover after parsing attributes in process `syz.2.590'. [ 120.685144][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 120.828627][ T5783] netlink: 4 bytes leftover after parsing attributes in process `syz.0.595'. [ 120.921677][ T5785] netlink: 12 bytes leftover after parsing attributes in process `syz.5.596'. [ 121.047109][ T5787] device veth0_vlan left promiscuous mode [ 121.053765][ T5787] device veth0_vlan entered promiscuous mode [ 121.088439][ T5789] loop5: detected capacity change from 0 to 512 [ 121.102730][ T5789] EXT4-fs: Ignoring removed mblk_io_submit option [ 121.110205][ T5789] ext2: Unknown parameter 'euid>00000000000000000000' [ 121.146195][ T5791] netlink: 32 bytes leftover after parsing attributes in process `syz.0.599'. [ 121.165009][ T27] kauditd_printk_skb: 93 callbacks suppressed [ 121.165037][ T27] audit: type=1326 audit(1730048212.840:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 121.201823][ T27] audit: type=1326 audit(1730048212.880:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 121.244740][ T27] audit: type=1326 audit(1730048212.920:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 121.292779][ T27] audit: type=1326 audit(1730048212.920:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 121.405801][ T27] audit: type=1326 audit(1730048212.920:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 121.421872][ T5801] loop4: detected capacity change from 0 to 512 [ 121.465839][ T5801] EXT4-fs: Ignoring removed orlov option [ 121.483778][ T5801] EXT4-fs: Ignoring removed oldalloc option [ 121.508288][ T27] audit: type=1326 audit(1730048212.920:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 121.565076][ T5801] EXT4-fs error (device loop4): ext4_xattr_inode_iget:400: comm syz.4.603: Parent and EA inode have the same ino 15 [ 121.600302][ T5801] EXT4-fs error (device loop4): ext4_xattr_inode_iget:400: comm syz.4.603: Parent and EA inode have the same ino 15 [ 121.615984][ T27] audit: type=1326 audit(1730048212.920:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 121.638780][ T5801] EXT4-fs (loop4): 1 orphan inode deleted [ 121.644567][ T5801] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 121.653652][ T27] audit: type=1326 audit(1730048212.920:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 121.660442][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 121.715647][ T27] audit: type=1326 audit(1730048212.920:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 121.752079][ T5814] netlink: 12 bytes leftover after parsing attributes in process `syz.2.608'. [ 121.766681][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 121.772866][ T27] audit: type=1326 audit(1730048212.920:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5792 comm="syz.4.598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 121.982570][ T5822] loop4: detected capacity change from 0 to 512 [ 122.003389][ T5822] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 122.013344][ T5822] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 122.023714][ T5822] System zones: 0-2, 18-18, 34-35 [ 122.030252][ T5822] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 122.062622][ T5822] netlink: 20 bytes leftover after parsing attributes in process `syz.4.611'. [ 122.072567][ T5827] loop2: detected capacity change from 0 to 512 [ 122.079926][ T5827] EXT4-fs: Ignoring removed mblk_io_submit option [ 122.087048][ T5827] ext2: Unknown parameter 'euid>00000000000000000000' [ 122.244223][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 122.748113][ T5850] loop5: detected capacity change from 0 to 1024 [ 122.767389][ T5850] EXT4-fs: Ignoring removed orlov option [ 122.773102][ T5850] EXT4-fs: Ignoring removed nomblk_io_submit option [ 122.831359][ T5850] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 122.877694][ T5860] loop3: detected capacity change from 0 to 512 [ 122.884803][ T5860] EXT4-fs: Ignoring removed mblk_io_submit option [ 122.892039][ T5860] ext2: Unknown parameter 'euid>00000000000000000000' [ 123.220757][ T5870] loop4: detected capacity change from 0 to 512 [ 123.358420][ T5870] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 123.374329][ T5873] capability: warning: `syz.0.630' uses deprecated v2 capabilities in a way that may be insecure [ 123.378176][ T5870] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 123.400446][ T5870] System zones: 0-2, 18-18, 34-35 [ 124.094840][ T5870] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 124.143267][ T5865] __nla_validate_parse: 1 callbacks suppressed [ 124.143288][ T5865] netlink: 20 bytes leftover after parsing attributes in process `syz.4.627'. [ 124.156907][ T5805] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set [ 124.405689][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 124.694814][ T5897] netlink: 16 bytes leftover after parsing attributes in process `syz.2.639'. [ 125.174960][ T5914] loop4: detected capacity change from 0 to 512 [ 125.316618][ T5914] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 125.338814][ T5914] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 125.347051][ T5914] System zones: 0-2, 18-18, 34-35 [ 125.353504][ T5914] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 125.371639][ T5912] netlink: 20 bytes leftover after parsing attributes in process `syz.4.646'. [ 125.472399][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 125.575004][ T5927] loop3: detected capacity change from 0 to 128 [ 125.852411][ T5935] netlink: 16 bytes leftover after parsing attributes in process `syz.3.655'. [ 126.123043][ T5942] loop4: detected capacity change from 0 to 1024 [ 126.152745][ T5942] EXT4-fs: Ignoring removed orlov option [ 126.162200][ T5942] EXT4-fs: Ignoring removed nomblk_io_submit option [ 126.194046][ T5948] loop2: detected capacity change from 0 to 512 [ 126.227723][ T5942] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 126.262258][ T5948] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 126.279850][ T5948] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 126.360564][ T5948] System zones: 0-2, 18-18, 34-35 [ 126.376612][ T5948] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 126.404714][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 126.449197][ T5946] netlink: 20 bytes leftover after parsing attributes in process `syz.2.660'. [ 126.513627][ T5958] loop4: detected capacity change from 0 to 128 [ 126.531081][ T5958] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 126.558648][ T5958] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 126.577984][ T5946] device veth0_vlan left promiscuous mode [ 126.585214][ T5946] device veth0_vlan entered promiscuous mode [ 126.701486][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 126.819688][ T5960] @ÿ: renamed from vlan0 [ 126.971381][ T27] kauditd_printk_skb: 106 callbacks suppressed [ 126.971396][ T27] audit: type=1326 audit(1730048218.650:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5965 comm="syz.4.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 127.062198][ T27] audit: type=1326 audit(1730048218.650:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5965 comm="syz.4.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 127.117824][ T5972] netlink: 16 bytes leftover after parsing attributes in process `syz.0.670'. [ 127.147251][ T27] audit: type=1326 audit(1730048218.690:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5965 comm="syz.4.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 127.215321][ T27] audit: type=1326 audit(1730048218.690:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5965 comm="syz.4.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 127.301989][ T27] audit: type=1326 audit(1730048218.690:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5965 comm="syz.4.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 127.344895][ T27] audit: type=1326 audit(1730048218.690:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5965 comm="syz.4.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 127.380953][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 127.405189][ T27] audit: type=1326 audit(1730048218.690:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5965 comm="syz.4.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 127.480187][ T27] audit: type=1326 audit(1730048218.690:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5965 comm="syz.4.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 127.543420][ T27] audit: type=1326 audit(1730048218.690:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5965 comm="syz.4.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 127.580641][ T5991] loop4: detected capacity change from 0 to 512 [ 127.592229][ T27] audit: type=1326 audit(1730048218.690:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5965 comm="syz.4.667" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee4eb7e719 code=0x7ffc0000 [ 127.624195][ T5991] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 127.645705][ T5991] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 127.666960][ T5991] System zones: 0-2, 18-18, 34-35 [ 127.688661][ T5991] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 127.717580][ T5991] netlink: 20 bytes leftover after parsing attributes in process `syz.4.676'. [ 127.808515][ T5991] device veth0_vlan left promiscuous mode [ 127.815144][ T5991] device veth0_vlan entered promiscuous mode [ 127.832393][ T4329] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 128.001174][ T6001] loop3: detected capacity change from 0 to 512 [ 128.014151][ T6001] EXT4-fs: Ignoring removed orlov option [ 128.034495][ T4329] usb 1-1: device descriptor read/64, error -71 [ 128.042921][ T6001] EXT4-fs: Ignoring removed oldalloc option [ 128.063424][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 128.103195][ T6001] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm syz.3.680: Parent and EA inode have the same ino 15 [ 128.117387][ T6001] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm syz.3.680: Parent and EA inode have the same ino 15 [ 128.146655][ T6001] EXT4-fs (loop3): 1 orphan inode deleted [ 128.153341][ T6001] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 128.280540][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 128.326859][ T4329] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 128.526738][ T4329] usb 1-1: device descriptor read/64, error -71 [ 128.646792][ T4329] usb usb1-port1: attempt power cycle [ 128.698689][ T6029] @ÿ: renamed from vlan0 [ 128.738143][ T6030] loop4: detected capacity change from 0 to 512 [ 128.794374][ T6030] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 128.811907][ T6030] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 128.820095][ T6030] System zones: 0-2, 18-18, 34-35 [ 128.826311][ T6030] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 128.842504][ T6026] netlink: 20 bytes leftover after parsing attributes in process `syz.4.692'. [ 128.969305][ T6026] device veth0_vlan left promiscuous mode [ 128.982911][ T6026] device veth0_vlan entered promiscuous mode [ 129.086562][ T4329] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 129.114004][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 129.196727][ T4329] usb 1-1: device descriptor read/8, error -71 [ 129.211178][ T6041] loop4: detected capacity change from 0 to 512 [ 129.224185][ T6041] EXT4-fs: Ignoring removed orlov option [ 129.231013][ T6041] EXT4-fs: Ignoring removed oldalloc option [ 129.310810][ T6041] EXT4-fs error (device loop4): ext4_xattr_inode_iget:400: comm syz.4.697: Parent and EA inode have the same ino 15 [ 129.348750][ T6041] EXT4-fs error (device loop4): ext4_xattr_inode_iget:400: comm syz.4.697: Parent and EA inode have the same ino 15 [ 129.423734][ T6041] EXT4-fs (loop4): 1 orphan inode deleted [ 129.453568][ T6041] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 129.487881][ T4329] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 129.597354][ T4329] usb 1-1: device descriptor read/8, error -71 [ 129.630816][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 129.726737][ T4329] usb usb1-port1: unable to enumerate USB device [ 130.315931][ T6080] loop4: detected capacity change from 0 to 512 [ 130.366321][ T6080] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 130.456566][ T126] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 130.459335][ T6080] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 130.522151][ T6080] System zones: 0-2, 18-18, 34-35 [ 130.552753][ T6080] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 130.662380][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 130.762226][ T6101] x_tables: duplicate underflow at hook 2 [ 130.996744][ T126] usb 4-1: New USB device found, idVendor=03f0, idProduct=0307, bcdDevice= 0.01 [ 131.012936][ T126] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 131.045787][ T126] usb 4-1: Product: syz [ 131.059621][ T126] usb 4-1: Manufacturer: syz [ 131.070474][ T126] usb 4-1: SerialNumber: syz [ 131.098723][ T126] usb 4-1: config 0 descriptor?? [ 131.149286][ T126] ums-usbat 4-1:0.0: USB Mass Storage device detected [ 131.360228][ T6073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 131.403541][ T6073] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 131.432339][ T6135] loop5: detected capacity change from 0 to 512 [ 131.440366][ T6073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 131.484181][ T6073] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 131.507659][ T6073] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 131.528309][ T6135] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended [ 131.548747][ T6135] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 131.558742][ T6073] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 131.592204][ T4299] usb 4-1: USB disconnect, device number 2 [ 131.596635][ T6135] System zones: 0-2, 18-18, 34-35 [ 131.624673][ T6135] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 131.779176][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 131.894415][ T6154] loop2: detected capacity change from 0 to 128 [ 132.412098][ T6183] netlink: 12 bytes leftover after parsing attributes in process `syz.5.751'. [ 132.505339][ T6188] loop4: detected capacity change from 0 to 512 [ 132.629541][ T6188] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 132.691448][ T1273] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.697858][ T1273] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.715742][ T27] kauditd_printk_skb: 42 callbacks suppressed [ 132.715758][ T27] audit: type=1326 audit(1730048224.390:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.5.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5a537e719 code=0x7ffc0000 [ 132.745442][ T27] audit: type=1326 audit(1730048224.390:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.5.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7fb5a537e719 code=0x7ffc0000 [ 132.772278][ T27] audit: type=1326 audit(1730048224.390:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.5.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5a537e719 code=0x7ffc0000 [ 132.795490][ T6188] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 132.800691][ T27] audit: type=1326 audit(1730048224.440:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.5.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5a537e719 code=0x7ffc0000 [ 132.826387][ T6188] System zones: 0-2, 18-18, 34-35 [ 132.858732][ T6188] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 133.038645][ T6204] loop5: detected capacity change from 0 to 1024 [ 133.054993][ T6204] EXT4-fs: Ignoring removed nobh option [ 133.060927][ T6204] EXT4-fs: Ignoring removed orlov option [ 133.063225][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 133.073434][ T6204] EXT4-fs: Ignoring removed nomblk_io_submit option [ 133.124757][ T6204] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 133.254016][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 133.389775][ T4334] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 133.535240][ T6228] device batadv0 entered promiscuous mode [ 133.547136][ T6228] device batadv_slave_0 entered promiscuous mode [ 133.554728][ T6228] device batadv_slave_0 left promiscuous mode [ 133.582976][ T6228] device batadv0 left promiscuous mode [ 133.916825][ T4334] usb 3-1: New USB device found, idVendor=03f0, idProduct=0307, bcdDevice= 0.01 [ 133.956469][ T4334] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 133.964502][ T4334] usb 3-1: Product: syz [ 133.989796][ T4334] usb 3-1: Manufacturer: syz [ 133.994455][ T4334] usb 3-1: SerialNumber: syz [ 134.020560][ T4334] usb 3-1: config 0 descriptor?? [ 134.058655][ T4334] ums-usbat 3-1:0.0: USB Mass Storage device detected [ 134.083249][ T6246] loop3: detected capacity change from 0 to 512 [ 134.113541][ T6246] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 134.123348][ T6246] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 134.136097][ T6246] System zones: 0-2, 18-18, 34-35 [ 134.157637][ T6246] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 134.284577][ T6210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 134.295682][ T6210] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 134.314571][ T6241] device veth0_vlan left promiscuous mode [ 134.321065][ T6241] device veth0_vlan entered promiscuous mode [ 134.331123][ T6210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 134.340181][ T6258] netlink: 28 bytes leftover after parsing attributes in process `syz.4.778'. [ 134.350996][ T6210] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 134.388801][ T6210] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 134.402483][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 134.421316][ T6210] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 134.482660][ T4334] usb 3-1: USB disconnect, device number 2 [ 134.672597][ T27] audit: type=1326 audit(1730048226.340:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6270 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 134.731183][ T27] audit: type=1326 audit(1730048226.380:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6270 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 134.784349][ T27] audit: type=1326 audit(1730048226.380:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6270 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 134.854099][ T27] audit: type=1326 audit(1730048226.380:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6270 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 134.897174][ T27] audit: type=1326 audit(1730048226.380:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6270 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 135.774479][ T4334] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 135.807091][ T27] audit: type=1326 audit(1730048226.380:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6270 comm="syz.3.784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 136.216690][ T4334] usb 1-1: config 0 has an invalid interface number: 156 but max is 1 [ 136.225088][ T6300] loop3: detected capacity change from 0 to 512 [ 136.235151][ T4334] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 136.289088][ T4334] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 136.321376][ T6300] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 136.336098][ T4334] usb 1-1: config 0 has no interface number 0 [ 136.347717][ T6300] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 136.365788][ T4334] usb 1-1: config 0 interface 156 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 136.373905][ T6300] System zones: 0-2, 18-18, 34-35 [ 136.405941][ T4334] usb 1-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 136.422219][ T6300] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 136.470393][ T4334] usb 1-1: config 0 interface 156 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 136.577048][ T4334] usb 1-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9 [ 136.596874][ T4334] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=21 [ 136.605010][ T4334] usb 1-1: SerialNumber: syz [ 136.612103][ T4334] usb 1-1: config 0 descriptor?? [ 136.637529][ T6303] netlink: 28 bytes leftover after parsing attributes in process `syz.4.792'. [ 136.661008][ T4334] gspca_main: spca561-2.14.0 probing abcd:cdee [ 136.818440][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 137.861357][ T4334] spca561: probe of 1-1:0.156 failed with error -22 [ 137.883715][ T4334] usb 1-1: MIDIStreaming interface descriptor not found [ 138.194765][ T4329] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 139.188899][ T4241] usb 1-1: USB disconnect, device number 6 [ 139.726923][ T4329] usb 6-1: New USB device found, idVendor=03f0, idProduct=0307, bcdDevice= 0.01 [ 139.745560][ T4329] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 139.760402][ T4329] usb 6-1: Product: syz [ 139.764648][ T4329] usb 6-1: Manufacturer: syz [ 139.770682][ T4329] usb 6-1: SerialNumber: syz [ 139.782259][ T4329] usb 6-1: config 0 descriptor?? [ 139.832151][ T4329] ums-usbat 6-1:0.0: USB Mass Storage device detected [ 139.910013][ T6356] loop3: detected capacity change from 0 to 512 [ 139.965390][ T6356] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 139.980598][ T6356] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 139.988840][ T6356] System zones: 0-2, 18-18, 34-35 [ 140.000626][ T6356] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 140.050230][ T6330] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 140.063057][ T6330] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 140.082845][ T6330] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 140.101138][ T6330] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 140.126776][ T6330] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 140.142528][ T6330] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 140.169354][ T4296] usb 6-1: USB disconnect, device number 2 [ 141.305226][ T6347] netlink: 28 bytes leftover after parsing attributes in process `syz.0.808'. [ 143.333489][ T6358] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set [ 143.402468][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 144.246884][ T4241] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 144.384136][ T6400] netlink: 'syz.2.823': attribute type 10 has an invalid length. [ 144.428561][ T6400] bridge0: port 2(bridge_slave_1) entered disabled state [ 144.438272][ T6400] bridge0: port 1(bridge_slave_0) entered disabled state [ 144.491391][ T6400] bridge0: port 2(bridge_slave_1) entered blocking state [ 144.498633][ T6400] bridge0: port 2(bridge_slave_1) entered forwarding state [ 144.507720][ T6400] bridge0: port 1(bridge_slave_0) entered blocking state [ 144.514898][ T6400] bridge0: port 1(bridge_slave_0) entered forwarding state [ 144.559416][ T6400] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 144.617107][ T6406] netlink: 28 bytes leftover after parsing attributes in process `syz.3.826'. [ 144.680643][ T6410] loop5: detected capacity change from 0 to 1024 [ 144.728698][ T6410] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 144.794630][ T6410] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 144.836851][ T4241] usb 5-1: New USB device found, idVendor=03f0, idProduct=0307, bcdDevice= 0.01 [ 144.848398][ T4241] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 144.857398][ T4241] usb 5-1: Product: syz [ 144.861589][ T4241] usb 5-1: Manufacturer: syz [ 144.866204][ T4241] usb 5-1: SerialNumber: syz [ 144.893113][ T4241] usb 5-1: config 0 descriptor?? [ 144.944450][ T6410] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.825: bg 0: block 416: padding at end of block bitmap is not set [ 144.967559][ T4241] ums-usbat 5-1:0.0: USB Mass Storage device detected [ 145.181002][ T27] kauditd_printk_skb: 31 callbacks suppressed [ 145.181020][ T27] audit: type=1326 audit(1730048236.860:916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.0.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 145.210581][ T6397] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 145.218075][ T27] audit: type=1326 audit(1730048236.860:917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.0.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 145.242314][ T27] audit: type=1326 audit(1730048236.930:918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.0.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 145.270496][ T6397] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 145.281901][ T6397] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 145.291050][ T27] audit: type=1326 audit(1730048236.930:919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.0.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 145.291159][ T6397] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 145.342477][ T6397] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 145.360886][ T6397] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 145.366757][ T27] audit: type=1326 audit(1730048236.930:920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.0.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 145.389558][ T4241] usb 5-1: USB disconnect, device number 2 [ 145.439943][ T27] audit: type=1326 audit(1730048236.930:921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.0.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 145.472793][ T27] audit: type=1326 audit(1730048236.930:922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.0.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 145.504953][ T27] audit: type=1326 audit(1730048236.930:923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.0.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 145.532665][ T27] audit: type=1326 audit(1730048236.930:924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.0.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 145.555323][ T27] audit: type=1326 audit(1730048236.930:925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.0.834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 145.637188][ T6446] netlink: 20 bytes leftover after parsing attributes in process `syz.3.836'. [ 145.679116][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 145.960812][ T6456] netlink: 28 bytes leftover after parsing attributes in process `syz.5.841'. [ 147.625441][ T6497] netlink: 'syz.0.856': attribute type 1 has an invalid length. [ 147.645922][ T6498] netlink: 'syz.2.857': attribute type 3 has an invalid length. [ 147.725962][ T6497] bond2 (unregistering): Released all slaves [ 147.744513][ T6508] netlink: 20 bytes leftover after parsing attributes in process `syz.4.855'. [ 147.890109][ T6512] netlink: 28 bytes leftover after parsing attributes in process `syz.3.860'. [ 147.960412][ T6514] netlink: 16 bytes leftover after parsing attributes in process `syz.2.861'. [ 148.340093][ T6530] loop3: detected capacity change from 0 to 2048 [ 148.396898][ T6530] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 148.455920][ T6530] tipc: Started in network mode [ 148.481614][ T6530] tipc: Node identity ac14140f, cluster identity 4711 [ 148.494294][ T6530] tipc: New replicast peer: 255.255.255.255 [ 148.502591][ T6530] tipc: Enabled bearer , priority 10 [ 148.634401][ T6546] netlink: 8 bytes leftover after parsing attributes in process `syz.5.876'. [ 148.694181][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 148.963272][ T6564] netlink: 20 bytes leftover after parsing attributes in process `syz.3.877'. [ 149.043956][ T6567] syz.0.882[6567] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 149.044066][ T6567] syz.0.882[6567] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 149.124792][ T6573] netlink: 8 bytes leftover after parsing attributes in process `syz.2.884'. [ 149.186371][ T6573] netlink: 84 bytes leftover after parsing attributes in process `syz.2.884'. [ 149.540726][ T6595] netlink: 8 bytes leftover after parsing attributes in process `syz.4.892'. [ 149.632882][ T4329] tipc: Node number set to 2886997007 [ 149.647282][ T6599] netlink: 8 bytes leftover after parsing attributes in process `syz.5.894'. [ 149.992231][ T6616] loop5: detected capacity change from 0 to 512 [ 150.033814][ T6616] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended [ 150.065146][ T6616] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 150.086618][ T6616] System zones: 0-2, 18-18, 34-35 [ 150.093014][ T6616] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 150.134919][ T6607] netlink: 20 bytes leftover after parsing attributes in process `syz.5.898'. [ 150.207572][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 150.566380][ T6642] 9pnet_fd: Insufficient options for proto=fd [ 150.791630][ T6649] xt_CT: You must specify a L4 protocol and not use inversions on it [ 151.159609][ T6664] loop5: detected capacity change from 0 to 512 [ 151.194105][ T6664] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended [ 151.220795][ T6664] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 151.252795][ T6664] System zones: 0-2, 18-18, 34-35 [ 151.269304][ T6664] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 151.393471][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 151.475942][ T6671] loop4: detected capacity change from 0 to 512 [ 151.501357][ T6671] EXT4-fs (loop4): external journal device major/minor numbers have changed [ 151.549806][ T6671] block device autoloading is deprecated and will be removed. [ 151.563252][ T6671] EXT4-fs (loop4): external journal has bad superblock [ 152.594330][ T6715] loop3: detected capacity change from 0 to 512 [ 152.653146][ T6715] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 152.703734][ T6715] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 152.712247][ T6715] System zones: 0-2, 18-18, 34-35 [ 152.733882][ T6715] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 152.757699][ T6705] __nla_validate_parse: 3 callbacks suppressed [ 152.757720][ T6705] netlink: 20 bytes leftover after parsing attributes in process `syz.3.931'. [ 152.840744][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 153.223025][ T27] kauditd_printk_skb: 56 callbacks suppressed [ 153.223042][ T27] audit: type=1326 audit(1730048244.900:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6732 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 153.294008][ T27] audit: type=1326 audit(1730048244.940:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6732 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 153.389058][ T27] audit: type=1326 audit(1730048244.940:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6732 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 153.473284][ T27] audit: type=1326 audit(1730048244.940:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6732 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f533297d0b0 code=0x7ffc0000 [ 153.593327][ T27] audit: type=1326 audit(1730048244.940:986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6732 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f533297ff47 code=0x7ffc0000 [ 153.651645][ T27] audit: type=1326 audit(1730048244.940:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6732 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 153.708090][ T6748] netlink: 28 bytes leftover after parsing attributes in process `syz.2.943'. [ 153.743993][ T27] audit: type=1326 audit(1730048244.940:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6732 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f533297ff47 code=0x7ffc0000 [ 153.843987][ T27] audit: type=1326 audit(1730048244.940:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6732 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f533297d3aa code=0x7ffc0000 [ 153.888615][ T27] audit: type=1326 audit(1730048244.940:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6732 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 153.956534][ T27] audit: type=1326 audit(1730048244.940:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6732 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 154.152103][ T6766] loop3: detected capacity change from 0 to 512 [ 154.193636][ T6766] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 154.231139][ T6766] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 154.297404][ T6766] System zones: 0-2, 18-18, 34-35 [ 154.303345][ T6766] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 154.341103][ T6766] netlink: 20 bytes leftover after parsing attributes in process `syz.3.949'. [ 154.430034][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 154.538470][ T6785] loop3: detected capacity change from 0 to 1024 [ 154.545758][ T6785] EXT4-fs: Ignoring removed nomblk_io_submit option [ 154.592797][ T6787] netlink: 28 bytes leftover after parsing attributes in process `syz.2.959'. [ 154.602900][ T6785] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 154.652211][ T6785] EXT4-fs (loop3): re-mounted. Quota mode: writeback. [ 154.775180][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 154.792886][ T6799] loop5: detected capacity change from 0 to 512 [ 154.842724][ T6799] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 154.872032][ T6799] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 155.016731][ T6813] loop2: detected capacity change from 0 to 512 [ 155.045817][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 155.125247][ T6813] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 155.134974][ T6813] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 155.145259][ T6813] System zones: 0-2, 18-18, 34-35 [ 155.152630][ T6813] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 155.164584][ T6813] netlink: 20 bytes leftover after parsing attributes in process `syz.2.967'. [ 155.339596][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 155.605606][ T6838] Driver unsupported XDP return value 0 on prog (id 388) dev N/A, expect packet loss! [ 155.632453][ T6841] netlink: 12 bytes leftover after parsing attributes in process `syz.0.976'. [ 155.823777][ T6854] program syz.4.983 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 155.842443][ T6855] netlink: 20 bytes leftover after parsing attributes in process `syz.0.984'. [ 155.852484][ T6855] device veth0_vlan left promiscuous mode [ 155.859273][ T6855] device veth0_vlan entered promiscuous mode [ 156.261886][ T6871] netlink: 20 bytes leftover after parsing attributes in process `syz.0.996'. [ 156.653387][ T6889] program syz.2.997 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 156.654713][ T6890] netlink: 12 bytes leftover after parsing attributes in process `syz.0.995'. [ 156.664653][ T6886] loop4: detected capacity change from 0 to 512 [ 156.685655][ T6892] netlink: 596 bytes leftover after parsing attributes in process `syz.3.998'. [ 156.690532][ T6894] syz.5.1009[6894] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.704912][ T6894] syz.5.1009[6894] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.734575][ T6886] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 156.829203][ T6886] EXT4-fs (loop4): orphan cleanup on readonly fs [ 156.873186][ T6886] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.999: bg 0: block 248: padding at end of block bitmap is not set [ 156.900310][ T6886] EXT4-fs error (device loop4): ext4_acquire_dquot:6801: comm syz.4.999: Failed to acquire dquot type 1 [ 156.924335][ T6886] EXT4-fs (loop4): 1 truncate cleaned up [ 156.952621][ T6886] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 157.030881][ T6886] random: crng reseeded on system resumption [ 157.055471][ T6910] loop3: detected capacity change from 0 to 512 [ 157.112868][ T6910] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 157.143243][ T6910] ext4 filesystem being mounted at /188/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.384921][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 157.523136][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 157.695029][ T6934] program syz.3.1014 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 158.124919][ T6948] loop3: detected capacity change from 0 to 256 [ 158.325735][ T6953] device batadv0 entered promiscuous mode [ 158.340782][ T6952] loop4: detected capacity change from 0 to 512 [ 158.373388][ T6952] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 158.385530][ T6952] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 158.394350][ T6952] System zones: 0-2, 18-18, 34-35 [ 158.400922][ T6952] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 158.412181][ T6952] __nla_validate_parse: 2 callbacks suppressed [ 158.412196][ T6952] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1022'. [ 158.455012][ T27] kauditd_printk_skb: 89 callbacks suppressed [ 158.455029][ T27] audit: type=1326 audit(1730048250.130:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.3.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 158.486190][ T27] audit: type=1326 audit(1730048250.130:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.3.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 158.509101][ T27] audit: type=1326 audit(1730048250.170:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.3.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 158.531710][ T27] audit: type=1326 audit(1730048250.170:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.3.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 158.550208][ T6953] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 158.564243][ T27] audit: type=1326 audit(1730048250.170:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.3.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 158.595943][ T27] audit: type=1326 audit(1730048250.170:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.3.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 158.595992][ T6959] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1025'. [ 158.622684][ T27] audit: type=1326 audit(1730048250.170:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.3.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 158.650476][ T27] audit: type=1326 audit(1730048250.170:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.3.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 158.673651][ T27] audit: type=1326 audit(1730048250.170:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.3.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 158.701124][ T6961] loop5: detected capacity change from 0 to 256 [ 158.716954][ T27] audit: type=1326 audit(1730048250.170:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.3.1024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 158.747613][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 159.132424][ T6981] program syz.4.1034 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 159.324920][ T6990] device batadv0 entered promiscuous mode [ 159.346827][ T6992] loop4: detected capacity change from 0 to 512 [ 159.371836][ T6992] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 159.387553][ T6992] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 159.397354][ T6992] System zones: 0-2, 18-18, 34-35 [ 159.415829][ T6992] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 159.441727][ T6992] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1037'. [ 159.459764][ T6990] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 159.540091][ T6999] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1041'. [ 159.541639][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 159.932219][ T7012] Cannot find del_set index 0 as target [ 160.007237][ T7015] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 160.172091][ T7014] loop2: detected capacity change from 0 to 2048 [ 160.627400][ T7014] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 160.728329][ T4253] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 160.793435][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 160.945169][ T7030] loop5: detected capacity change from 0 to 512 [ 160.976130][ T7032] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1053'. [ 160.999033][ T7030] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended [ 161.016883][ T7030] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 161.044194][ T7030] System zones: 0-2, 18-18, 34-35 [ 161.078941][ T7030] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 161.119937][ T7027] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1052'. [ 161.179708][ T7045] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1068'. [ 161.190472][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 161.321184][ T7051] device batadv0 entered promiscuous mode [ 161.438501][ T7056] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 161.480442][ T7057] netlink: 172 bytes leftover after parsing attributes in process `syz.0.1062'. [ 161.700935][ T7064] loop3: detected capacity change from 0 to 512 [ 161.710913][ T7064] EXT4-fs: Ignoring removed orlov option [ 161.719509][ T7064] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 161.731817][ T7064] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 161.753325][ T7064] EXT4-fs (loop3): 1 orphan inode deleted [ 161.759363][ T7064] EXT4-fs (loop3): 1 truncate cleaned up [ 161.765145][ T7064] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 161.789928][ T7064] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 161.843169][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 161.901899][ T7068] loop3: detected capacity change from 0 to 512 [ 161.952396][ T7068] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 161.976033][ T7068] ext4 filesystem being mounted at /205/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.080654][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 162.176199][ T7078] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1071'. [ 162.217410][ T7081] loop2: detected capacity change from 0 to 512 [ 162.297577][ T7081] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 162.340172][ T7081] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 162.345527][ T7086] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1073'. [ 162.348383][ T7081] System zones: 0-2, 18-18, 34-35 [ 162.372338][ T7081] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 162.408749][ T7086] loop5: detected capacity change from 0 to 7 [ 162.448104][ T7086] Dev loop5: unable to read RDB block 7 [ 162.453835][ T7086] loop5: unable to read partition table [ 162.502885][ T7086] loop5: partition table beyond EOD, truncated [ 162.520734][ T7086] loop_reread_partitions: partition scan of loop5 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨â·û [ 162.520734][ T7086] ) failed (rc=-5) [ 162.600736][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 162.884579][ T7106] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0 [ 163.169740][ T7104] Unknown options in mask 5 [ 163.582852][ T7113] program syz.0.1093 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 163.950211][ T7131] __nla_validate_parse: 1 callbacks suppressed [ 163.950235][ T7131] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1088'. [ 164.915771][ T7114] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1085'. [ 164.930451][ T7116] device batadv0 entered promiscuous mode [ 164.958242][ T7123] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 165.208224][ T7139] loop4: detected capacity change from 0 to 1024 [ 165.234417][ T7136] dccp_close: ABORT with 20 bytes unread [ 165.252967][ T7139] EXT4-fs: Ignoring removed orlov option [ 165.263450][ T7147] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1096'. [ 165.278274][ T7139] EXT4-fs: Ignoring removed nomblk_io_submit option [ 165.357770][ T7139] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 165.478386][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 165.513582][ T7156] program syz.3.1098 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 165.599567][ T7161] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1102'. [ 165.897294][ T27] kauditd_printk_skb: 10 callbacks suppressed [ 165.897311][ T27] audit: type=1326 audit(1730048257.580:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7177 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 165.934149][ T7180] loop2: detected capacity change from 0 to 512 [ 165.977838][ T27] audit: type=1326 audit(1730048257.610:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7177 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 166.025720][ T27] audit: type=1326 audit(1730048257.610:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7177 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 166.026338][ T7180] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 166.057774][ T27] audit: type=1326 audit(1730048257.640:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7177 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 166.057820][ T27] audit: type=1326 audit(1730048257.640:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f53329b0805 code=0x7ffc0000 [ 166.057858][ T27] audit: type=1326 audit(1730048257.660:1104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7177 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 166.130911][ T27] audit: type=1326 audit(1730048257.810:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7183 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 166.171318][ T27] audit: type=1326 audit(1730048257.830:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7177 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 166.199547][ T27] audit: type=1326 audit(1730048257.830:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7177 comm="syz.3.1107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f533297e719 code=0x7ffc0000 [ 166.228741][ T7180] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 166.251057][ T7180] System zones: 0-2, 18-18, 34-35 [ 166.276551][ T7180] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 166.316238][ T7171] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1104'. [ 166.374859][ T7191] loop3: detected capacity change from 0 to 512 [ 166.402597][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 166.594663][ T7200] ALSA: seq fatal error: cannot create timer (-22) [ 166.769888][ T7206] program syz.2.1116 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 166.927312][ T7212] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1119'. [ 167.304898][ T7230] loop4: detected capacity change from 0 to 164 [ 167.338229][ T7230] Unable to read rock-ridge attributes [ 167.348065][ T7230] Unable to read rock-ridge attributes [ 167.373723][ T7233] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1126'. [ 167.537571][ T7237] loop5: detected capacity change from 0 to 128 [ 167.605405][ T7241] netlink: 332 bytes leftover after parsing attributes in process `syz.0.1131'. [ 167.614789][ T7237] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 167.628694][ T7237] ext4 filesystem being mounted at /112/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 167.776279][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 168.251141][ T7258] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1139'. [ 168.553682][ T7273] loop3: detected capacity change from 0 to 512 [ 168.672824][ T7273] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 168.758133][ T7273] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 168.766261][ T7273] System zones: 0-2, 18-18, 34-35 [ 168.782063][ T7273] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 168.852614][ T7265] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1142'. [ 168.869686][ T7293] loop4: detected capacity change from 0 to 128 [ 168.915243][ T7293] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 168.937556][ T7293] ext4 filesystem being mounted at /248/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 168.959729][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 168.973805][ T27] audit: type=1326 audit(1730048260.650:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7298 comm="syz.0.1153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2dad7e719 code=0x7ffc0000 [ 169.065339][ T7301] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1155'. [ 169.169097][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 169.661495][ T7331] loop5: detected capacity change from 0 to 512 [ 169.688926][ T7331] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended [ 169.699103][ T7331] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 169.708829][ T7331] System zones: 0-2, 18-18, 34-35 [ 169.715486][ T7331] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 169.729564][ T7331] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1165'. [ 169.820583][ T7337] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1167'. [ 171.842678][ T7353] xt_connbytes: Forcing CT accounting to be enabled [ 171.852071][ T7353] Cannot find add_set index 0 as target [ 172.198829][ T5410] EXT4-fs (loop5): unmounting filesystem. [ 172.281697][ T7379] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1186'. [ 172.541543][ T7385] loop3: detected capacity change from 0 to 512 [ 172.553147][ T7385] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 172.572982][ T7385] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 172.582092][ T7385] ext4 filesystem being mounted at /226/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 172.629777][ T7385] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 173.421962][ T7413] loop2: detected capacity change from 0 to 512 [ 173.480142][ T7413] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 173.500101][ T7413] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 173.529560][ T7413] System zones: 0-2, 18-18, 34-35 [ 173.544971][ T7413] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 173.556631][ T7407] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1195'. [ 174.299093][ T7388] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 224: padding at end of block bitmap is not set [ 175.347536][ T4255] EXT4-fs (loop3): unmounting filesystem. [ 175.498267][ T4253] EXT4-fs (loop2): unmounting filesystem. [ 175.598901][ T7435] program syz.4.1206 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 175.892841][ T7449] loop5: detected capacity change from 0 to 2048 [ 175.908663][ T7452] loop2: detected capacity change from 0 to 512 [ 175.916237][ T7452] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 175.961340][ T7452] EXT4-fs (loop2): 1 truncate cleaned up [ 175.967898][ T7452] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 176.092659][ T7452] ================================================================== [ 176.100801][ T7452] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x8ca/0x1f30 [ 176.108562][ T7452] Read of size 18446744073709551572 at addr ffff888062195050 by task syz.2.1211/7452 [ 176.118063][ T7452] [ 176.120435][ T7452] CPU: 1 PID: 7452 Comm: syz.2.1211 Not tainted 6.1.114-syzkaller #0 [ 176.128632][ T7452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 176.138717][ T7452] Call Trace: [ 176.142022][ T7452] [ 176.144977][ T7452] dump_stack_lvl+0x1e3/0x2cb [ 176.149694][ T7452] ? nf_tcp_handle_invalid+0x642/0x642 [ 176.155192][ T7452] ? panic+0x764/0x764 [ 176.159302][ T7452] ? _printk+0xd1/0x111 [ 176.163499][ T7452] ? __virt_addr_valid+0x17f/0x530 [ 176.168659][ T7452] ? __virt_addr_valid+0x17f/0x530 [ 176.173814][ T7452] print_report+0x15f/0x4f0 [ 176.178331][ T7452] ? __virt_addr_valid+0x17f/0x530 [ 176.183498][ T7452] ? __virt_addr_valid+0x17f/0x530 [ 176.188627][ T7452] ? __virt_addr_valid+0x45b/0x530 [ 176.193776][ T7452] ? __phys_addr+0xb6/0x170 [ 176.198301][ T7452] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 176.203781][ T7452] kasan_report+0x136/0x160 [ 176.208309][ T7452] ? __x64_sys_unlink+0x45/0x50 [ 176.213219][ T7452] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 176.218721][ T7452] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 176.224194][ T7452] kasan_check_range+0x27f/0x290 [ 176.229150][ T7452] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 176.234619][ T7452] memmove+0x25/0x60 [ 176.238524][ T7452] ext4_xattr_set_entry+0x8ca/0x1f30 [ 176.243830][ T7452] ? ext4_xattr_inode_lookup_create+0x1ef0/0x1ef0 [ 176.250248][ T7452] ? ext4_xattr_block_set+0x884/0x3920 [ 176.255798][ T7452] ? kmemdup+0x41/0x60 [ 176.259893][ T7452] ? memcpy+0x3c/0x60 [ 176.263895][ T7452] ext4_xattr_block_set+0xa58/0x3920 [ 176.269214][ T7452] ? __getblk_gfp+0x50/0xa20 [ 176.273816][ T7452] ? _raw_spin_unlock+0x24/0x40 [ 176.278677][ T7452] ? ext4_xattr_block_find+0x510/0x510 [ 176.284164][ T7452] ? ext4_xattr_block_find+0x468/0x510 [ 176.289628][ T7452] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 176.295541][ T7452] ? ext4_xattr_set+0x3d0/0x3d0 [ 176.300399][ T7452] ? rwsem_write_trylock+0x166/0x210 [ 176.305698][ T7452] ? clear_nonspinnable+0x60/0x60 [ 176.310730][ T7452] ? ext4_reserve_inode_write+0x2b3/0x360 [ 176.316558][ T7452] ? dquot_initialize_needed+0x128/0x320 [ 176.322208][ T7452] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 176.327858][ T7452] __ext4_mark_inode_dirty+0x54f/0x920 [ 176.333327][ T7452] ? ext4_blocks_for_truncate+0x270/0x270 [ 176.339059][ T7452] ? current_time+0x1ba/0x300 [ 176.343755][ T7452] ? atime_needs_update+0x7b0/0x7b0 [ 176.348993][ T7452] __ext4_unlink+0x6ed/0xba0 [ 176.353651][ T7452] ? __ext4_read_dirblock+0x890/0x890 [ 176.359046][ T7452] ? rwsem_write_trylock+0x166/0x210 [ 176.364341][ T7452] ? inode_permission+0xf7/0x450 [ 176.369287][ T7452] ? clear_nonspinnable+0x60/0x60 [ 176.374375][ T7452] ext4_unlink+0x1d5/0x670 [ 176.378800][ T7452] vfs_unlink+0x359/0x5f0 [ 176.383226][ T7452] do_unlinkat+0x4a5/0x820 [ 176.387651][ T7452] ? fsnotify_link_count+0xf0/0xf0 [ 176.392780][ T7452] __x64_sys_unlink+0x45/0x50 [ 176.397467][ T7452] do_syscall_64+0x3b/0xb0 [ 176.401888][ T7452] ? clear_bhb_loop+0x45/0xa0 [ 176.406565][ T7452] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 176.412468][ T7452] RIP: 0033:0x7fe7def7e719 [ 176.416893][ T7452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 176.436599][ T7452] RSP: 002b:00007fe7dfd8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 176.445016][ T7452] RAX: ffffffffffffffda RBX: 00007fe7df135f80 RCX: 00007fe7def7e719 [ 176.452993][ T7452] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 176.461052][ T7452] RBP: 00007fe7deff132e R08: 0000000000000000 R09: 0000000000000000 [ 176.469025][ T7452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.476996][ T7452] R13: 0000000000000000 R14: 00007fe7df135f80 R15: 00007ffe538d0c68 [ 176.484981][ T7452] [ 176.488003][ T7452] [ 176.490324][ T7452] Allocated by task 7452: [ 176.494651][ T7452] kasan_set_track+0x4b/0x70 [ 176.499261][ T7452] __kasan_kmalloc+0x97/0xb0 [ 176.504073][ T7452] __kmalloc_node_track_caller+0xb1/0x220 [ 176.509923][ T7452] kmemdup+0x26/0x60 [ 176.513829][ T7452] ext4_xattr_block_set+0x884/0x3920 [ 176.519117][ T7452] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 176.525026][ T7452] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 176.530667][ T7452] __ext4_mark_inode_dirty+0x54f/0x920 [ 176.536135][ T7452] __ext4_unlink+0x6ed/0xba0 [ 176.540729][ T7452] ext4_unlink+0x1d5/0x670 [ 176.545156][ T7452] vfs_unlink+0x359/0x5f0 [ 176.549493][ T7452] do_unlinkat+0x4a5/0x820 [ 176.554000][ T7452] __x64_sys_unlink+0x45/0x50 [ 176.558687][ T7452] do_syscall_64+0x3b/0xb0 [ 176.563119][ T7452] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 176.569030][ T7452] [ 176.571358][ T7452] The buggy address belongs to the object at ffff888062195000 [ 176.571358][ T7452] which belongs to the cache kmalloc-1k of size 1024 [ 176.585409][ T7452] The buggy address is located 80 bytes inside of [ 176.585409][ T7452] 1024-byte region [ffff888062195000, ffff888062195400) [ 176.598771][ T7452] [ 176.601094][ T7452] The buggy address belongs to the physical page: [ 176.607528][ T7452] page:ffffea0001886400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x62190 [ 176.617678][ T7452] head:ffffea0001886400 order:3 compound_mapcount:0 compound_pincount:0 [ 176.626005][ T7452] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 176.634000][ T7452] raw: 00fff00000010200 ffffea0001edee00 dead000000000002 ffff888017c41dc0 [ 176.642586][ T7452] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000 [ 176.651250][ T7452] page dumped because: kasan: bad access detected [ 176.657707][ T7452] page_owner tracks the page as allocated [ 176.663416][ T7452] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 4250, tgid 4250 (syz-executor), ts 69708759455, free_ts 69708491657 [ 176.684782][ T7452] post_alloc_hook+0x18d/0x1b0 [ 176.689548][ T7452] get_page_from_freelist+0x322e/0x33b0 [ 176.695097][ T7452] __alloc_pages+0x28d/0x770 [ 176.699689][ T7452] alloc_slab_page+0x6a/0x150 [ 176.704373][ T7452] new_slab+0x84/0x2d0 [ 176.708474][ T7452] ___slab_alloc+0xc20/0x1270 [ 176.713153][ T7452] __kmem_cache_alloc_node+0x19f/0x260 [ 176.718616][ T7452] kmalloc_trace+0x26/0xe0 [ 176.723036][ T7452] afs_alloc_call+0x7c/0x370 [ 176.727634][ T7452] afs_charge_preallocation+0xe0/0x2b0 [ 176.733110][ T7452] afs_open_socket+0x455/0x600 [ 176.737898][ T7452] afs_net_init+0x7b5/0x990 [ 176.742405][ T7452] ops_init+0x35d/0x610 [ 176.746565][ T7452] setup_net+0x4b5/0xb90 [ 176.750813][ T7452] copy_net_ns+0x392/0x5d0 [ 176.755233][ T7452] create_new_namespaces+0x425/0x7a0 [ 176.760521][ T7452] page last free stack trace: [ 176.765187][ T7452] free_unref_page_prepare+0xf63/0x1120 [ 176.770732][ T7452] free_unref_page+0x33/0x3e0 [ 176.775430][ T7452] __unfreeze_partials+0x1b7/0x210 [ 176.780549][ T7452] put_cpu_partial+0x17b/0x250 [ 176.785321][ T7452] qlist_free_all+0x76/0xe0 [ 176.789828][ T7452] kasan_quarantine_reduce+0x156/0x170 [ 176.795289][ T7452] __kasan_slab_alloc+0x1f/0x70 [ 176.800138][ T7452] slab_post_alloc_hook+0x52/0x3a0 [ 176.805253][ T7452] kmem_cache_alloc_node+0x136/0x310 [ 176.810540][ T7452] __alloc_skb+0xde/0x670 [ 176.814881][ T7452] netlink_sendmsg+0x6f8/0xd60 [ 176.819646][ T7452] __sys_sendto+0x480/0x600 [ 176.824158][ T7452] __x64_sys_sendto+0xda/0xf0 [ 176.828931][ T7452] do_syscall_64+0x3b/0xb0 [ 176.833347][ T7452] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 176.839360][ T7452] [ 176.841680][ T7452] Memory state around the buggy address: [ 176.847307][ T7452] ffff888062194f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 176.855366][ T7452] ffff888062194f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 176.863423][ T7452] >ffff888062195000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 176.871563][ T7452] ^ [ 176.878228][ T7452] ffff888062195080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 176.886459][ T7452] ffff888062195100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 176.894513][ T7452] ================================================================== [ 176.990079][ T7452] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 176.997338][ T7452] CPU: 0 PID: 7452 Comm: syz.2.1211 Not tainted 6.1.114-syzkaller #0 [ 177.005431][ T7452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 177.015511][ T7452] Call Trace: [ 177.018899][ T7452] [ 177.021854][ T7452] dump_stack_lvl+0x1e3/0x2cb [ 177.026566][ T7452] ? nf_tcp_handle_invalid+0x642/0x642 [ 177.032047][ T7452] ? panic+0x764/0x764 [ 177.036141][ T7452] ? preempt_schedule_common+0xa6/0xd0 [ 177.041618][ T7452] ? vscnprintf+0x59/0x80 [ 177.045965][ T7452] panic+0x318/0x764 [ 177.049874][ T7452] ? check_panic_on_warn+0x1d/0xa0 [ 177.055021][ T7452] ? memcpy_page_flushcache+0xfc/0xfc [ 177.060415][ T7452] ? _raw_spin_unlock_irqrestore+0x128/0x130 [ 177.066417][ T7452] ? _raw_spin_unlock+0x40/0x40 [ 177.071290][ T7452] check_panic_on_warn+0x7e/0xa0 [ 177.076237][ T7452] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 177.081697][ T7452] end_report+0x66/0x110 [ 177.085944][ T7452] kasan_report+0x143/0x160 [ 177.090468][ T7452] ? __x64_sys_unlink+0x45/0x50 [ 177.095343][ T7452] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 177.100817][ T7452] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 177.106288][ T7452] kasan_check_range+0x27f/0x290 [ 177.111233][ T7452] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 177.116792][ T7452] memmove+0x25/0x60 [ 177.120718][ T7452] ext4_xattr_set_entry+0x8ca/0x1f30 [ 177.126107][ T7452] ? ext4_xattr_inode_lookup_create+0x1ef0/0x1ef0 [ 177.132684][ T7452] ? ext4_xattr_block_set+0x884/0x3920 [ 177.138143][ T7452] ? kmemdup+0x41/0x60 [ 177.142213][ T7452] ? memcpy+0x3c/0x60 [ 177.146199][ T7452] ext4_xattr_block_set+0xa58/0x3920 [ 177.151491][ T7452] ? __getblk_gfp+0x50/0xa20 [ 177.156084][ T7452] ? _raw_spin_unlock+0x24/0x40 [ 177.160944][ T7452] ? ext4_xattr_block_find+0x510/0x510 [ 177.166431][ T7452] ? ext4_xattr_block_find+0x468/0x510 [ 177.171896][ T7452] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 177.177826][ T7452] ? ext4_xattr_set+0x3d0/0x3d0 [ 177.182682][ T7452] ? rwsem_write_trylock+0x166/0x210 [ 177.187980][ T7452] ? clear_nonspinnable+0x60/0x60 [ 177.193011][ T7452] ? ext4_reserve_inode_write+0x2b3/0x360 [ 177.198767][ T7452] ? dquot_initialize_needed+0x128/0x320 [ 177.204409][ T7452] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 177.210054][ T7452] __ext4_mark_inode_dirty+0x54f/0x920 [ 177.215578][ T7452] ? ext4_blocks_for_truncate+0x270/0x270 [ 177.221333][ T7452] ? current_time+0x1ba/0x300 [ 177.226057][ T7452] ? atime_needs_update+0x7b0/0x7b0 [ 177.231375][ T7452] __ext4_unlink+0x6ed/0xba0 [ 177.235980][ T7452] ? __ext4_read_dirblock+0x890/0x890 [ 177.241366][ T7452] ? rwsem_write_trylock+0x166/0x210 [ 177.246662][ T7452] ? inode_permission+0xf7/0x450 [ 177.251636][ T7452] ? clear_nonspinnable+0x60/0x60 [ 177.256675][ T7452] ext4_unlink+0x1d5/0x670 [ 177.261100][ T7452] vfs_unlink+0x359/0x5f0 [ 177.265529][ T7452] do_unlinkat+0x4a5/0x820 [ 177.269962][ T7452] ? fsnotify_link_count+0xf0/0xf0 [ 177.275174][ T7452] __x64_sys_unlink+0x45/0x50 [ 177.279858][ T7452] do_syscall_64+0x3b/0xb0 [ 177.284280][ T7452] ? clear_bhb_loop+0x45/0xa0 [ 177.288959][ T7452] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 177.294868][ T7452] RIP: 0033:0x7fe7def7e719 [ 177.299287][ T7452] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 177.318911][ T7452] RSP: 002b:00007fe7dfd8c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 177.327335][ T7452] RAX: ffffffffffffffda RBX: 00007fe7df135f80 RCX: 00007fe7def7e719 [ 177.335311][ T7452] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 177.343289][ T7452] RBP: 00007fe7deff132e R08: 0000000000000000 R09: 0000000000000000 [ 177.351264][ T7452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.359324][ T7452] R13: 0000000000000000 R14: 00007fe7df135f80 R15: 00007ffe538d0c68 [ 177.367399][ T7452] [ 177.370691][ T7452] Kernel Offset: disabled [ 177.375018][ T7452] Rebooting in 86400 seconds..