last executing test programs: 8.42097702s ago: executing program 4 (id=1247): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='sched_switch\x00', r3}, 0x10) socket(0x10, 0x3, 0x0) syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff) timerfd_create(0x0, 0x0) 5.864817303s ago: executing program 4 (id=1259): r0 = socket(0x10, 0x803, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x20000000) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000700)={0x0, 0x1e5, &(0x7f00000006c0)={&(0x7f0000000440)=@deltaction={0x28, 0x31, 0x101, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}]}, 0x28}}, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) r5 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a00)=@newtfilter={0x5c, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x8, 0x2}, {}, {0x7, 0xe}}, [@filter_kind_options=@f_flower={{0xb}, {0x2c, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @private2={0xfc, 0x2, '\x00', 0x1}}, @TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0xffffffff, 0x0, 0x0, 0xffffffff]}]}}]}, 0x5c}}, 0x400c084) 5.330458542s ago: executing program 1 (id=1269): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r1, 0x0) r2 = syz_io_uring_setup(0x233d, &(0x7f00000002c0)={0x0, 0x0, 0x10100}, &(0x7f0000000240)=0x0, &(0x7f0000000200)=0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f00000001c0)=ANY=[@ANYBLOB='2'], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READ_FIXED) io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 4.83026058s ago: executing program 1 (id=1273): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0xf8f56710cc0ba817) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x0, 0x0, 0x0, 'queue0\x00'}) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f00000001c0)={0x80, 0x2, 'client1\x00', 0x80000001, "842f31c3efc8d6bd", "20e48560999fd10000ad156db195e49e04100000050000108f00000f00", 0xc9, 0x2}) write$sndseq(r0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) socket$kcm(0xa, 0x1, 0x106) r1 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r1, 0x0, 0x0) syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8003}, &(0x7f0000000240)=0x0, &(0x7f0000000200)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, 0x0, 0x0, 0x4) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x14) setsockopt$sock_int(r1, 0x1, 0x8, 0x0, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x5, 0x6, 0x8, 0xae, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000580)='sched_switch\x00', r4}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=@base={0xd, 0x2, 0x4, 0x4002, 0x5, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x8000000, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_RELOAD(r5, &(0x7f0000000100)={0x0, 0xffffffffffffff57, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, 0x0, 0x1, 0x3, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_ID={0x0, 0x8c, 0x4}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x0) 1.737712431s ago: executing program 1 (id=1287): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) 1.548289424s ago: executing program 4 (id=1289): r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="540000001200010000000000000000000a00000000004e2200000000ffffffff000000000000000000000000fcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="010000000300000000000000f700000008"], 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x20004010) 1.451018876s ago: executing program 2 (id=1290): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000fa540000850000008200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4001, 0x0, @loopback}, 0x1c) 1.398259416s ago: executing program 1 (id=1291): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x100000001}, 0x18) syz_open_dev$tty1(0xc, 0x4, 0x3) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000006c0)=ANY=[@ANYBLOB="380000000314010000000000000008000900020073797a310000000008004100736977001400330073797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x20008000}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18) 1.350370367s ago: executing program 4 (id=1293): bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) getpid() bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) io_submit(0x0, 0x0, &(0x7f0000000240)) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r0}, 0x10) unshare(0x42000000) bpf$BPF_PROG_QUERY(0x10, 0x0, 0x0) r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000009c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x6}}, './file0\x00'}) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000980)={@fallback=r1, 0xffffffffffffffff, 0x18, 0x400c, 0x0, @void, @value=r2}, 0x20) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x21, &(0x7f0000000000)={&(0x7f00000007c0)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x0, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, 0x0, 0x0) lseek(0xffffffffffffffff, 0x1ff, 0x3) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0) socket$packet(0x11, 0x2, 0x300) 1.22819267s ago: executing program 0 (id=1294): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) sendmmsg$inet(r0, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000011c0)="93bffce623851797a8dc79018d7716840ffc6941c667f6d345b18bc896d8f016f5f206bb2b0eb2fe32d2f0048678cd35ef833c35225ff95a94770a6845b091e69f243dea0d601c54e9c93ee3568b89a3427c84262ff67b679ccac305b5cea1dcd151d7bb5754603b6b0e362d8041bdc61529260e6c4046d55927c96dcce1609b9c4f8424b9da760270a470f95b99ebb6", 0x90}, {&(0x7f00000007c0)="02999344565d9c61d3bb8cf353fd63c588ffa39f0ff0fced20927ea4b2a247d082247558bef6b2b2cd6a0dffece1b36526e9388c344fb7ac429e432bcb0330483c0604aaf296d8218e240055cb92f17b1b47fd7b1b178ca0d1c470154ed985a179f87c9bc402189195e92dc1d73fce0d96439a53073df328509806e960c2", 0x7e}, {&(0x7f00000002c0)="ec75d081fcb7e79634ec1a1abfdebb6a38b0c57cc77b83d2eea81aad8f73b36abc2019cb08fcaaec9647a07d0a0965f0f1e39afd84e7e2523aaded5e09aa1e36fcc90c269ad6d38d57619127cee4253655c33b71054226c3b00b9ee6ae29f0b07bc6fe7981126ca804c1f64e6c19ba36b2778c5f4a1c58625fe19516af43c9870c5b8191e23778abe7df2280d459b1651686a53ca52dce9570444c153f9c2903ae4c868074e89477bf6ed2ab648b0498ac8c0f90844ed9a26675199d5ff9b391c1dec0", 0xc3}, {&(0x7f0000000f00)="397d5f2e855cb2b0b1e61d3fe47dc3e798cf47cfebf169e77257f308b498e5b417227094d569a4456954e58ea1850000000000000000355c5f42d9f2aa5f1b", 0x3f}, {&(0x7f00000003c0)="9059c5aee5eca0529f3f9109a29885942349a08c6be8241fb9050c7491a49f89ee4aa8a1f1daa6663945ed017834c6afaab141dfb71370", 0x37}, {&(0x7f0000000480)="3b98c053d6287182fb77fa2573c0175eac0342191cae67c6aab799113bf6df72d6bae38ad4d70cf4923614c77b93f41a8de623711dbfe9124532ef0a290a9801ffac63d114b63603306210bd0ee6922a71edb08dc4d93aab9c40b4839e5cbaf0c4d28a016f64b1f07bdfba8f695191bd5d838b4395e9bbc0cab1184676af212a79208290e0a4e5de06f7ae089f225831692ec6b873fd77d10d2dad93fe6c91c512642975ee56e49f55095952b3f13d13c8fccc2410378f6469a8e1e04d3a9642f5ee714672c9de817233992c0ad8234921cc929670b81833cc694046c8121c16872b4b6474893f3ec6e9457f81f43c48214fbe7ebe31", 0xf6}], 0x6}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000a00)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d76770122635aea1dc48755381c71590cd542e796cc2669e2af442a03760c5cdfc691b3da35ad6a8d2ef9c2baa53a8dec36a2e434d46e643a1277b1dd932f3ef2cf46c257d6a19523b8b789ef34b46e461725b5e437323385b88c368f8bb5b933aa", 0x7d}, {&(0x7f0000000180)="5be3b011e12323e4ab88c0472f0700000000000000e71ba62334303d2db97401439932cfd4855c4cc243dae723789d8a9a16be3135c5f82691837c90ab19545f7a1dcf1449fd59eecae5f52fba1e89d6d34b39297bbbc2580600000000000000d6e36e737691a1c6bd2a64b2a85cbaaf648c9100000000000000006a8f4f5405596e72f8fe08c33a33b275787892f61fbb621794716f96031931b55af30fa01d72aa5a53ee4c07ab7c96", 0xaa}], 0x2}}], 0x2, 0xc0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4) sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27) 1.126364991s ago: executing program 2 (id=1295): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS \x00'}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10) syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x1, 0x0, 0x0, 0x32, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0x0, 0x0, 0x0, 0x1000}}}}}, 0x0) 1.113788541s ago: executing program 1 (id=1296): r0 = io_uring_setup(0x218a, &(0x7f0000000240)={0x0, 0x3ffffffc, 0x100, 0x4, 0x84}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r1) r2 = socket(0x2b, 0x1, 0x1) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) sendmsg$AUDIT_USER_AVC(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x800c001}, 0x20048080) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) close_range(r0, 0xffffffffffffffff, 0x0) 1.089709362s ago: executing program 0 (id=1297): r0 = socket$kcm(0x21, 0x2, 0x2) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0xa3500, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10) sendmsg$kcm(r0, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0) 902.369225ms ago: executing program 2 (id=1298): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x35) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x7d}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) 891.486225ms ago: executing program 3 (id=1299): r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10) getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000300)=0x8) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000040)={0xffff, 0x5, 0x4, 0x6, 0x7ff, 0x3, 0x5, 0x5, r1}, 0x20) 870.767245ms ago: executing program 0 (id=1300): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) r1 = socket$rds(0x15, 0x5, 0x0) bind$rds(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r1, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0}}], 0x48}, 0x0) 825.147496ms ago: executing program 1 (id=1301): r0 = socket(0x10, 0x803, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x20000000) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0xcc, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0xb8, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10000, 0x0, 0x0, 0x0, 0x0, {0x0, 0x2, 0x0, 0x0, 0xfffe}, {0x0, 0x0, 0x0, 0x0, 0xfffd}}}]]}, {0x4}, {0xc}, {0xc}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x0, 0x0, 0x1}}]}, {0x4}, {0xc, 0x3}, {0xc}}}]}]}, 0xcc}}, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000700)={0x0, 0x1e5, &(0x7f00000006c0)={&(0x7f0000000440)=@deltaction={0x28, 0x31, 0x101, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0x9, 0x1, 'gact\x00'}}]}]}, 0x28}}, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) r5 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a00)=@newtfilter={0x5c, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x8, 0x2}, {}, {0x7, 0xe}}, [@filter_kind_options=@f_flower={{0xb}, {0x2c, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST={0x14, 0x21, @private2={0xfc, 0x2, '\x00', 0x1}}, @TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0xffffffff, 0x0, 0x0, 0xffffffff]}]}}]}, 0x5c}}, 0x400c084) 682.484649ms ago: executing program 3 (id=1302): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) 682.190589ms ago: executing program 2 (id=1303): r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="540000001200010000000000000000000a00000000004e2200000000ffffffff000000000000000000000000fcffffff0000000000000000", @ANYRES32=0x0, @ANYBLOB="010000000300000000000000f700000008"], 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x20004010) 677.792009ms ago: executing program 0 (id=1304): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)) r0 = io_uring_setup(0x2e34, &(0x7f0000000180)={0x0, 0x0, 0x1, 0x2}) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$kcm(0x2, 0x200000000000001, 0x0) sendmsg$inet(r1, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x4001, @dev={0xac, 0x14, 0x14, 0x1}}, 0x10, 0x0}, 0x3000c085) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f0000000100)=r2, 0x4) sendmsg$inet(r1, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc) close_range(r0, 0xffffffffffffffff, 0x0) 573.70662ms ago: executing program 3 (id=1305): r0 = socket$kcm(0x10, 0x2, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r2}, 0x10) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000140)="d800000018007b29e00212ba0d8105040a601800fe0f040b067c55a1bc000900b80006990600000015000500fe800000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ccd40dd601edef3d93452a92307ff0ff0e97031e9f05e9f16e9cb500"/216, 0xd8}], 0x1, 0x0, 0x0, 0x2663}, 0x0) 525.542271ms ago: executing program 2 (id=1306): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r3}, 0x10) r4 = dup(r2) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[], [], 0x6b}}) 438.247153ms ago: executing program 3 (id=1307): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a34000000000a4f1c0000000000000000020000000900010073797a300000000008000240000000020900010073797a310000000014000000110001"], 0x5c}}, 0x0) sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x20, 0x7, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x6}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000100}, 0x400c000) 356.023464ms ago: executing program 0 (id=1308): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000c80)=@raw={'raw\x00', 0x3c1, 0x3, 0x4c0, 0x2e0, 0x940c, 0x3002, 0x2e0, 0x2c0, 0x3f0, 0x3d8, 0x3d8, 0x4c0, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0x298, 0x2e0, 0x4001, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x4001, 0x1, 0x3, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x2, 0x0, 'syz0\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xd0, 0x110, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x565) 352.379944ms ago: executing program 4 (id=1309): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10) move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 172.014417ms ago: executing program 2 (id=1310): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x9}}}, 0x24}}, 0x0) r1 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$SG_IO(r2, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0}) 171.513267ms ago: executing program 4 (id=1311): r0 = io_uring_setup(0x218a, &(0x7f0000000240)={0x0, 0x3ffffffc, 0x100, 0x4, 0x84}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r1) socket(0x2b, 0x1, 0x1) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r1, 0x0) r2 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) close_range(r0, 0xffffffffffffffff, 0x0) 171.230127ms ago: executing program 3 (id=1312): r0 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}]}, &(0x7f00000002c0)=0x10) getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000300)=0x8) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000040)={0xffff, 0x5, 0x4, 0x6, 0x7ff, 0x3, 0x5, 0x5, r1}, 0x20) 94.272738ms ago: executing program 0 (id=1313): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) io_cancel(0x0, 0x0, 0x0) 0s ago: executing program 3 (id=1314): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) r1 = socket$rds(0x15, 0x5, 0x0) bind$rds(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r1, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0}}], 0x48}, 0x0) kernel console output (not intermixed with test programs): x80700 phys_seg 1 prio class 2 [ 85.906375][ T4456] loop3: detected capacity change from 0 to 2048 [ 86.186360][ T4463] syz.3.48: attempt to access beyond end of device [ 86.186360][ T4463] loop3: rw=0, sector=1936, nr_sectors = 128 limit=2048 [ 86.254983][ T4467] loop0: detected capacity change from 0 to 512 [ 86.496828][ T4467] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 86.530520][ T4467] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 87.355784][ T4467] EXT4-fs (loop0): 1 truncate cleaned up [ 87.373249][ T4467] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 87.405465][ T3519] cfg80211: failed to load regulatory.db [ 87.699538][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 87.822258][ T4485] siw: device registration error -23 [ 87.836194][ T27] kauditd_printk_skb: 14 callbacks suppressed [ 87.836209][ T27] audit: type=1326 audit(1743846461.867:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4484 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 87.916052][ T27] audit: type=1326 audit(1743846461.897:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4484 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 88.010233][ T27] audit: type=1326 audit(1743846461.897:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4484 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 88.143414][ T27] audit: type=1326 audit(1743846461.897:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4484 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5e8098bad0 code=0x7ffc0000 [ 88.239453][ T27] audit: type=1326 audit(1743846461.897:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4484 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 88.324447][ T27] audit: type=1326 audit(1743846461.897:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4484 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 88.409589][ T4500] loop2: detected capacity change from 0 to 2048 [ 88.421837][ T27] audit: type=1326 audit(1743846461.897:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4484 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 88.536182][ T27] audit: type=1326 audit(1743846461.897:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4484 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 88.612729][ T27] audit: type=1326 audit(1743846461.897:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4484 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 88.683190][ T4506] loop0: detected capacity change from 0 to 128 [ 88.755495][ T27] audit: type=1326 audit(1743846461.907:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4484 comm="syz.1.56" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 89.524564][ T4509] syz.3.65 uses obsolete (PF_INET,SOCK_PACKET) [ 89.996384][ T4522] siw: device registration error -23 [ 90.421356][ T4536] loop2: detected capacity change from 0 to 2048 [ 92.076736][ T4568] netlink: 20 bytes leftover after parsing attributes in process `syz.2.87'. [ 92.201806][ T4573] loop3: detected capacity change from 0 to 128 [ 92.555173][ T4577] loop2: detected capacity change from 0 to 2048 [ 94.311546][ T4603] loop3: detected capacity change from 0 to 256 [ 94.529468][ T4603] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 95.116960][ T4608] loop0: detected capacity change from 0 to 2048 [ 95.207392][ T4611] sd 0:0:1:0: device reset [ 95.227291][ T4614] loop1: detected capacity change from 0 to 128 [ 95.314274][ T4616] loop4: detected capacity change from 0 to 512 [ 95.338622][ T4355] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 95.544369][ T4616] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 95.574238][ T4616] ext4 filesystem being mounted at /15/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 96.546251][ T4255] EXT4-fs (loop4): unmounting filesystem. [ 96.791243][ T27] kauditd_printk_skb: 78 callbacks suppressed [ 96.791261][ T27] audit: type=1326 audit(1743846470.827:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4629 comm="syz.4.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 96.870507][ T27] audit: type=1326 audit(1743846470.877:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4629 comm="syz.4.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 96.901319][ T27] audit: type=1326 audit(1743846470.877:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4629 comm="syz.4.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 96.949037][ T27] audit: type=1326 audit(1743846470.877:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4629 comm="syz.4.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 97.034822][ T27] audit: type=1326 audit(1743846470.877:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4629 comm="syz.4.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 97.132343][ T27] audit: type=1326 audit(1743846470.877:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4629 comm="syz.4.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 97.270284][ T27] audit: type=1326 audit(1743846470.877:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4629 comm="syz.4.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 97.376513][ T27] audit: type=1326 audit(1743846470.877:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4629 comm="syz.4.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 97.444267][ T27] audit: type=1326 audit(1743846470.887:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4629 comm="syz.4.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 97.512343][ T4645] siw: device registration error -23 [ 97.567274][ T27] audit: type=1326 audit(1743846470.887:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4629 comm="syz.4.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 97.700776][ T4649] loop0: detected capacity change from 0 to 256 [ 98.011660][ T4649] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 98.468632][ T4652] loop4: detected capacity change from 0 to 2048 [ 98.492266][ T4652] FAT-fs (loop4): Unrecognized mount option "ÿÿÿÿÿÿÿÿ184467440737095516150xffffffffffffffff" or missing value [ 98.550111][ T4640] netlink: 4 bytes leftover after parsing attributes in process `syz.2.113'. [ 98.823814][ T4659] IPv6: Can't replace route, no match found [ 99.248044][ T4672] loop2: detected capacity change from 0 to 128 [ 99.303234][ T4257] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 99.607950][ T4678] loop3: detected capacity change from 0 to 2048 [ 100.752731][ T4688] netlink: 24 bytes leftover after parsing attributes in process `syz.4.131'. [ 101.039283][ T4698] loop1: detected capacity change from 0 to 512 [ 101.184480][ T4698] EXT4-fs (loop1): too many log groups per flexible block group [ 101.253527][ T4698] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 101.289856][ T4698] EXT4-fs (loop1): mount failed [ 101.649633][ T4714] siw: device registration error -23 [ 101.699249][ T4716] loop2: detected capacity change from 0 to 2048 [ 101.803954][ T27] kauditd_printk_skb: 64 callbacks suppressed [ 101.803969][ T27] audit: type=1800 audit(1743846475.837:197): pid=4721 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.143" name="file1" dev="loop2" ino=1048602 res=0 errno=0 [ 101.857011][ T4703] loop0: detected capacity change from 0 to 512 [ 101.991223][ T4703] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 102.013764][ T4703] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 103.864087][ T4738] loop2: detected capacity change from 0 to 164 [ 104.155323][ T27] audit: type=1326 audit(1743846478.187:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4741 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 104.249106][ T27] audit: type=1326 audit(1743846478.187:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4741 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 104.306903][ T4748] loop2: detected capacity change from 0 to 128 [ 104.320312][ T27] audit: type=1326 audit(1743846478.187:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4741 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 104.373408][ T27] audit: type=1326 audit(1743846478.187:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4741 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 104.436683][ T27] audit: type=1326 audit(1743846478.207:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4741 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 104.499592][ T27] audit: type=1326 audit(1743846478.217:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4741 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 104.547640][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 104.553657][ T27] audit: type=1326 audit(1743846478.217:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4741 comm="syz.4.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 104.754561][ T4755] netlink: 'syz.0.155': attribute type 1 has an invalid length. [ 104.800793][ T4755] netlink: 'syz.0.155': attribute type 2 has an invalid length. [ 104.849871][ T4759] device dummy0 entered promiscuous mode [ 104.872408][ T4759] device dummy0 left promiscuous mode [ 105.284163][ T27] audit: type=1326 audit(1743846479.317:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4765 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 105.323318][ T4771] loop4: detected capacity change from 0 to 512 [ 105.339089][ T4769] atomic_op ffff88807e3ed198 conn xmit_atomic 0000000000000000 [ 105.348141][ T27] audit: type=1326 audit(1743846479.337:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4765 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 105.439949][ T4771] EXT4-fs (loop4): too many log groups per flexible block group [ 105.455429][ T4771] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 105.480422][ T4771] EXT4-fs (loop4): mount failed [ 105.841879][ T4785] siw: device registration error -23 [ 106.126799][ T4796] usb usb1: usbfs: process 4796 (syz.0.172) did not claim interface 0 before use [ 106.238116][ T4798] loop4: detected capacity change from 0 to 128 [ 106.343552][ T4799] loop1: detected capacity change from 0 to 256 [ 106.420544][ T4799] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 106.952793][ T4801] loop0: detected capacity change from 0 to 128 [ 107.107468][ T4798] syz.4.161: attempt to access beyond end of device [ 107.107468][ T4798] loop4: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 107.198241][ T4798] syz.4.161: attempt to access beyond end of device [ 107.198241][ T4798] loop4: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 107.260565][ T4798] syz.4.161: attempt to access beyond end of device [ 107.260565][ T4798] loop4: rw=0, sector=145, nr_sectors = 8 limit=128 [ 107.333737][ T4798] syz.4.161: attempt to access beyond end of device [ 107.333737][ T4798] loop4: rw=0, sector=145, nr_sectors = 8 limit=128 [ 107.402395][ T4798] syz.4.161: attempt to access beyond end of device [ 107.402395][ T4798] loop4: rw=0, sector=145, nr_sectors = 8 limit=128 [ 107.686976][ T4811] loop1: detected capacity change from 0 to 128 [ 108.631776][ T4818] syz.1.177: attempt to access beyond end of device [ 108.631776][ T4818] loop1: rw=2049, sector=145, nr_sectors = 744 limit=128 [ 108.898073][ T9] kworker/u4:0: attempt to access beyond end of device [ 108.898073][ T9] loop1: rw=1, sector=889, nr_sectors = 152 limit=128 [ 109.297678][ T4841] loop4: detected capacity change from 0 to 256 [ 109.365673][ T4841] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 110.290171][ C1] sched: RT throttling activated [ 110.540519][ T4852] loop4: detected capacity change from 0 to 512 [ 110.677241][ T4852] EXT4-fs (loop4): too many log groups per flexible block group [ 110.685715][ T4859] loop0: detected capacity change from 0 to 128 [ 110.696689][ T4852] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 110.704042][ T4852] EXT4-fs (loop4): mount failed [ 110.819235][ T4866] siw: device registration error -23 [ 110.911746][ T27] kauditd_printk_skb: 42 callbacks suppressed [ 110.911761][ T27] audit: type=1326 audit(1743846484.947:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4865 comm="syz.1.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 111.819186][ T27] audit: type=1326 audit(1743846484.987:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4865 comm="syz.1.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 111.930337][ T27] audit: type=1326 audit(1743846484.987:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4865 comm="syz.1.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 112.000278][ T27] audit: type=1326 audit(1743846484.987:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4865 comm="syz.1.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5e8098bad0 code=0x7ffc0000 [ 112.050316][ T27] audit: type=1326 audit(1743846484.987:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4865 comm="syz.1.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 112.132421][ T4853] loop4: detected capacity change from 0 to 128 [ 112.140969][ T27] audit: type=1326 audit(1743846484.987:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4865 comm="syz.1.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 112.154442][ T4878] loop2: detected capacity change from 0 to 128 [ 112.216973][ T27] audit: type=1326 audit(1743846484.987:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4865 comm="syz.1.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 112.270375][ T27] audit: type=1326 audit(1743846484.997:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4865 comm="syz.1.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 112.305398][ T4882] syz.2.197: attempt to access beyond end of device [ 112.305398][ T4882] loop2: rw=2049, sector=145, nr_sectors = 312 limit=128 [ 112.322326][ T27] audit: type=1326 audit(1743846484.997:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4865 comm="syz.1.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 112.372700][ T27] audit: type=1326 audit(1743846484.997:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4865 comm="syz.1.194" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 112.417867][ T4886] syz.4.189: attempt to access beyond end of device [ 112.417867][ T4886] loop4: rw=2049, sector=145, nr_sectors = 616 limit=128 [ 112.526700][ T4852] syz.4.189: attempt to access beyond end of device [ 112.526700][ T4852] loop4: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 112.601002][ T4852] syz.4.189: attempt to access beyond end of device [ 112.601002][ T4852] loop4: rw=0, sector=145, nr_sectors = 8 limit=128 [ 113.046664][ T4900] loop0: detected capacity change from 0 to 256 [ 113.809350][ T4900] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 114.426190][ T4915] loop0: detected capacity change from 0 to 128 [ 114.568362][ T4915] syz.0.211: attempt to access beyond end of device [ 114.568362][ T4915] loop0: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 115.031953][ T4922] loop4: detected capacity change from 0 to 128 [ 115.492056][ T4926] usb usb1: usbfs: process 4926 (syz.1.214) did not claim interface 0 before use [ 115.582883][ T4929] loop2: detected capacity change from 0 to 512 [ 115.646711][ T4929] EXT4-fs (loop2): too many log groups per flexible block group [ 115.665211][ T4935] siw: device registration error -23 [ 115.666344][ T4929] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 115.690573][ T4929] EXT4-fs (loop2): mount failed [ 116.409442][ T4949] loop3: detected capacity change from 0 to 256 [ 117.150016][ T4949] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 117.598152][ T4957] loop2: detected capacity change from 0 to 128 [ 117.827044][ T4929] syz.2.215: attempt to access beyond end of device [ 117.827044][ T4929] loop2: rw=2049, sector=145, nr_sectors = 472 limit=128 [ 117.854617][ T4965] loop4: detected capacity change from 0 to 128 [ 118.032732][ T4965] syz.4.225: attempt to access beyond end of device [ 118.032732][ T4965] loop4: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 119.130131][ T4985] usb usb1: usbfs: process 4985 (syz.0.232) did not claim interface 0 before use [ 119.147495][ T4986] loop1: detected capacity change from 0 to 128 [ 120.053842][ T4999] loop3: detected capacity change from 0 to 256 [ 121.442207][ T4999] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 121.986480][ T5013] siw: device registration error -23 [ 122.001082][ T5012] loop2: detected capacity change from 0 to 128 [ 122.027296][ T27] kauditd_printk_skb: 33 callbacks suppressed [ 122.027312][ T27] audit: type=1326 audit(1743846496.057:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5011 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 122.134430][ T5017] syz.2.242: attempt to access beyond end of device [ 122.134430][ T5017] loop2: rw=2049, sector=145, nr_sectors = 440 limit=128 [ 122.140324][ T27] audit: type=1326 audit(1743846496.097:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5011 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 122.229919][ T27] audit: type=1326 audit(1743846496.097:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5011 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 122.365905][ T27] audit: type=1326 audit(1743846496.097:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5011 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7faaf1f8bad0 code=0x7ffc0000 [ 122.453059][ T27] audit: type=1326 audit(1743846496.097:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5011 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 122.480282][ T27] audit: type=1326 audit(1743846496.097:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5011 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 122.509845][ T27] audit: type=1326 audit(1743846496.097:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5011 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 122.541750][ T27] audit: type=1326 audit(1743846496.097:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5011 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 122.584238][ T5028] usb usb1: usbfs: process 5028 (syz.1.248) did not claim interface 0 before use [ 122.650324][ T27] audit: type=1326 audit(1743846496.097:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5011 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 122.707475][ T5031] loop4: detected capacity change from 0 to 128 [ 122.713956][ T27] audit: type=1326 audit(1743846496.097:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5011 comm="syz.0.243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 122.858239][ T5031] syz.4.241: attempt to access beyond end of device [ 122.858239][ T5031] loop4: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 124.209700][ T5050] loop3: detected capacity change from 0 to 256 [ 124.327649][ T5050] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 124.851665][ T5055] loop2: detected capacity change from 0 to 128 [ 125.025863][ T5059] loop3: detected capacity change from 0 to 128 [ 125.077154][ T5062] siw: device registration error -23 [ 125.687002][ T5081] usb usb1: usbfs: process 5081 (syz.4.266) did not claim interface 0 before use [ 126.864848][ T5097] loop3: detected capacity change from 0 to 128 [ 126.964789][ T5101] loop0: detected capacity change from 0 to 256 [ 127.042725][ T5101] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 127.717434][ T27] kauditd_printk_skb: 42 callbacks suppressed [ 127.717451][ T27] audit: type=1326 audit(1743846501.747:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5102 comm="syz.4.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 127.802874][ T27] audit: type=1326 audit(1743846501.787:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5102 comm="syz.4.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 127.886135][ T27] audit: type=1326 audit(1743846501.787:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5102 comm="syz.4.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 127.953057][ T27] audit: type=1326 audit(1743846501.787:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5102 comm="syz.4.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 128.042366][ T27] audit: type=1326 audit(1743846501.787:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5102 comm="syz.4.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f24daf8bad0 code=0x7ffc0000 [ 128.051660][ T5115] usb usb1: usbfs: process 5115 (syz.4.279) did not claim interface 0 before use [ 128.066285][ T27] audit: type=1326 audit(1743846501.787:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5102 comm="syz.4.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 128.096952][ T27] audit: type=1326 audit(1743846501.787:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5102 comm="syz.4.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 128.119758][ T27] audit: type=1326 audit(1743846501.787:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5102 comm="syz.4.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 128.162355][ T27] audit: type=1326 audit(1743846501.787:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5102 comm="syz.4.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 128.188017][ T5119] loop1: detected capacity change from 0 to 128 [ 128.199587][ T27] audit: type=1326 audit(1743846501.787:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5102 comm="syz.4.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 128.407498][ T5119] syz.1.267: attempt to access beyond end of device [ 128.407498][ T5119] loop1: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 128.434301][ T5122] loop4: detected capacity change from 0 to 128 [ 128.579146][ T5119] syz.1.267: attempt to access beyond end of device [ 128.579146][ T5119] loop1: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 128.676883][ T5119] syz.1.267: attempt to access beyond end of device [ 128.676883][ T5119] loop1: rw=0, sector=145, nr_sectors = 8 limit=128 [ 129.895306][ T5145] siw: device registration error -23 [ 129.927061][ T5146] loop3: detected capacity change from 0 to 128 [ 130.074307][ T5148] loop0: detected capacity change from 0 to 256 [ 130.092545][ T5148] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 130.973492][ T5166] loop0: detected capacity change from 0 to 2048 [ 131.062242][ T5169] atomic_op ffff8880299dc198 conn xmit_atomic 0000000000000000 [ 131.644202][ T5187] loop3: detected capacity change from 0 to 128 [ 131.672960][ T5189] loop0: detected capacity change from 0 to 128 [ 131.865007][ T5180] syz.3.302: attempt to access beyond end of device [ 131.865007][ T5180] loop3: rw=2049, sector=145, nr_sectors = 272 limit=128 [ 131.916888][ T5187] syz.3.302: attempt to access beyond end of device [ 131.916888][ T5187] loop3: rw=524288, sector=145, nr_sectors = 144 limit=128 [ 131.987119][ T5180] syz.3.302: attempt to access beyond end of device [ 131.987119][ T5180] loop3: rw=0, sector=145, nr_sectors = 8 limit=128 [ 131.987700][ T5187] syz.3.302: attempt to access beyond end of device [ 131.987700][ T5187] loop3: rw=524288, sector=297, nr_sectors = 72 limit=128 [ 132.036956][ T5193] loop0: detected capacity change from 0 to 128 [ 132.077486][ T5180] syz.3.302: attempt to access beyond end of device [ 132.077486][ T5180] loop3: rw=0, sector=145, nr_sectors = 8 limit=128 [ 132.140575][ T5187] syz.3.302: attempt to access beyond end of device [ 132.140575][ T5187] loop3: rw=0, sector=241, nr_sectors = 8 limit=128 [ 132.803584][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.809985][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.523524][ T27] kauditd_printk_skb: 50 callbacks suppressed [ 133.523541][ T27] audit: type=1326 audit(1743846507.557:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5206 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 133.647984][ T27] audit: type=1326 audit(1743846507.597:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5206 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 133.683009][ T27] audit: type=1326 audit(1743846507.597:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5206 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 133.705707][ T27] audit: type=1326 audit(1743846507.597:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5206 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 133.728433][ T27] audit: type=1326 audit(1743846507.597:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5206 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 133.750701][ T27] audit: type=1326 audit(1743846507.597:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5206 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f24daf8bad0 code=0x7ffc0000 [ 133.781019][ T27] audit: type=1326 audit(1743846507.597:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5206 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 133.805241][ T27] audit: type=1326 audit(1743846507.607:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5206 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 133.827515][ T27] audit: type=1326 audit(1743846507.607:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5206 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 133.858342][ T27] audit: type=1326 audit(1743846507.617:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5206 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 134.139532][ T5219] atomic_op ffff888056740998 conn xmit_atomic 0000000000000000 [ 134.204476][ T5221] loop0: detected capacity change from 0 to 128 [ 134.639025][ T5229] loop1: detected capacity change from 0 to 512 [ 134.707053][ T5235] loop3: detected capacity change from 0 to 128 [ 134.781774][ T5229] EXT4-fs (loop1): too many log groups per flexible block group [ 134.799906][ T5229] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 134.828433][ T5229] EXT4-fs (loop1): mount failed [ 134.877070][ T5240] capability: warning: `syz.4.323' uses 32-bit capabilities (legacy support in use) [ 136.019465][ T5250] loop1: detected capacity change from 0 to 128 [ 136.239889][ T5252] syz.1.319: attempt to access beyond end of device [ 136.239889][ T5252] loop1: rw=2049, sector=145, nr_sectors = 808 limit=128 [ 137.022395][ T5262] loop4: detected capacity change from 0 to 128 [ 137.105915][ T5265] atomic_op ffff888055b6c998 conn xmit_atomic 0000000000000000 [ 137.423659][ T5271] loop4: detected capacity change from 0 to 2048 [ 137.750806][ T5280] loop4: detected capacity change from 0 to 128 [ 138.165727][ T5282] loop3: detected capacity change from 0 to 512 [ 138.469256][ T5282] EXT4-fs (loop3): too many log groups per flexible block group [ 138.490441][ T5282] EXT4-fs (loop3): failed to initialize mballoc (-12) [ 138.529986][ T5282] EXT4-fs (loop3): mount failed [ 138.666567][ T5290] siw: device registration error -23 [ 138.691800][ T27] kauditd_printk_skb: 95 callbacks suppressed [ 138.691815][ T27] audit: type=1326 audit(1743846512.727:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5289 comm="syz.1.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 138.750230][ T27] audit: type=1326 audit(1743846512.757:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5289 comm="syz.1.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 138.830241][ T27] audit: type=1326 audit(1743846512.757:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5289 comm="syz.1.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 138.900549][ T27] audit: type=1326 audit(1743846512.757:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5289 comm="syz.1.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5e8098bad0 code=0x7ffc0000 [ 138.966127][ T27] audit: type=1326 audit(1743846512.757:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5289 comm="syz.1.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 139.016000][ T27] audit: type=1326 audit(1743846512.757:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5289 comm="syz.1.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 139.061839][ T27] audit: type=1326 audit(1743846512.757:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5289 comm="syz.1.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 139.150257][ T27] audit: type=1326 audit(1743846512.757:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5289 comm="syz.1.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 139.213215][ T27] audit: type=1326 audit(1743846512.757:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5289 comm="syz.1.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 139.229229][ T5302] loop3: detected capacity change from 0 to 128 [ 139.253054][ T5303] loop2: detected capacity change from 0 to 128 [ 139.291847][ T27] audit: type=1326 audit(1743846512.757:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5289 comm="syz.1.340" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 139.391856][ T5305] syz.2.344: attempt to access beyond end of device [ 139.391856][ T5305] loop2: rw=2049, sector=145, nr_sectors = 720 limit=128 [ 139.461431][ T5308] syz.3.339: attempt to access beyond end of device [ 139.461431][ T5308] loop3: rw=2049, sector=145, nr_sectors = 432 limit=128 [ 139.874610][ T5316] atomic_op ffff888053d58998 conn xmit_atomic 0000000000000000 [ 140.978986][ T5331] loop3: detected capacity change from 0 to 2048 [ 140.998079][ T5332] siw: device registration error -23 [ 141.014858][ T5331] FAT-fs (loop3): Unrecognized mount option "ÿÿÿÿÿÿÿÿ184467440737095516150xffffffffffffffff" or missing value [ 141.149941][ T5340] loop2: detected capacity change from 0 to 128 [ 141.236764][ T5340] syz.2.357: attempt to access beyond end of device [ 141.236764][ T5340] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 141.630071][ T5351] loop2: detected capacity change from 0 to 512 [ 141.686237][ T5351] EXT4-fs (loop2): too many log groups per flexible block group [ 141.703089][ T5351] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 141.709998][ T5351] EXT4-fs (loop2): mount failed [ 142.197325][ T5368] siw: device registration error -23 [ 142.228403][ T5364] atomic_op ffff88804fc6d198 conn xmit_atomic 0000000000000000 [ 143.059810][ T5374] loop4: detected capacity change from 0 to 128 [ 143.202718][ T5382] syz.4.369: attempt to access beyond end of device [ 143.202718][ T5382] loop4: rw=2049, sector=145, nr_sectors = 536 limit=128 [ 143.339394][ T5385] loop2: detected capacity change from 0 to 128 [ 143.609392][ T5392] syz.2.362: attempt to access beyond end of device [ 143.609392][ T5392] loop2: rw=2049, sector=145, nr_sectors = 600 limit=128 [ 143.758219][ T27] kauditd_printk_skb: 82 callbacks suppressed [ 143.758236][ T27] audit: type=1326 audit(1743846517.787:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 143.790875][ T5392] syz.2.362: attempt to access beyond end of device [ 143.790875][ T5392] loop2: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 143.855558][ T5392] syz.2.362: attempt to access beyond end of device [ 143.855558][ T5392] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 143.865872][ T27] audit: type=1326 audit(1743846517.827:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 143.984004][ T27] audit: type=1326 audit(1743846517.847:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 144.077634][ T27] audit: type=1326 audit(1743846517.847:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 144.305234][ T27] audit: type=1326 audit(1743846517.847:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 144.363692][ T5407] atomic_op ffff888079c34198 conn xmit_atomic 0000000000000000 [ 144.371434][ T27] audit: type=1326 audit(1743846517.857:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 144.485380][ T27] audit: type=1326 audit(1743846517.857:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 144.508306][ T27] audit: type=1326 audit(1743846517.857:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5393 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 144.531035][ T27] audit: type=1326 audit(1743846518.287:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5401 comm="syz.3.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 144.579264][ T27] audit: type=1326 audit(1743846518.307:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5401 comm="syz.3.381" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 145.558854][ T5422] loop3: detected capacity change from 0 to 128 [ 145.730953][ T5422] syz.3.385: attempt to access beyond end of device [ 145.730953][ T5422] loop3: rw=2049, sector=145, nr_sectors = 232 limit=128 [ 146.073240][ T5436] Zero length message leads to an empty skb [ 146.149911][ T5438] loop4: detected capacity change from 0 to 512 [ 146.191555][ T5440] siw: device registration error -23 [ 146.207432][ T5438] EXT4-fs (loop4): too many log groups per flexible block group [ 146.253340][ T5438] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 146.260459][ T5438] EXT4-fs (loop4): mount failed [ 146.336990][ T5448] atomic_op ffff88807a70a998 conn xmit_atomic 0000000000000000 [ 147.039892][ T5461] loop4: detected capacity change from 0 to 128 [ 147.649555][ T5438] syz.4.393: attempt to access beyond end of device [ 147.649555][ T5438] loop4: rw=2049, sector=145, nr_sectors = 216 limit=128 [ 147.760118][ T5438] syz.4.393: attempt to access beyond end of device [ 147.760118][ T5438] loop4: rw=524288, sector=145, nr_sectors = 216 limit=128 [ 147.812658][ T5438] syz.4.393: attempt to access beyond end of device [ 147.812658][ T5438] loop4: rw=0, sector=145, nr_sectors = 8 limit=128 [ 148.422957][ T5490] atomic_op ffff88807c07a998 conn xmit_atomic 0000000000000000 [ 149.551406][ T27] kauditd_printk_skb: 64 callbacks suppressed [ 149.551420][ T27] audit: type=1326 audit(1743846523.587:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5514 comm="syz.4.419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 149.594454][ T5513] loop1: detected capacity change from 0 to 512 [ 149.631563][ T27] audit: type=1326 audit(1743846523.637:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5514 comm="syz.4.419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 149.672291][ T5513] EXT4-fs (loop1): too many log groups per flexible block group [ 149.690256][ T27] audit: type=1326 audit(1743846523.637:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5514 comm="syz.4.419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 149.712617][ T27] audit: type=1326 audit(1743846523.637:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5514 comm="syz.4.419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 149.730532][ T5513] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 149.741051][ T27] audit: type=1326 audit(1743846523.637:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5514 comm="syz.4.419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 149.764266][ T27] audit: type=1326 audit(1743846523.637:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5514 comm="syz.4.419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 149.786947][ T27] audit: type=1326 audit(1743846523.637:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5514 comm="syz.4.419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 149.809625][ T5513] EXT4-fs (loop1): mount failed [ 149.986976][ T5526] siw: device registration error -23 [ 150.004065][ T27] audit: type=1326 audit(1743846524.037:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5525 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 150.046549][ T27] audit: type=1326 audit(1743846524.057:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5525 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 150.111082][ T27] audit: type=1326 audit(1743846524.057:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5525 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 150.429776][ T5535] loop1: detected capacity change from 0 to 128 [ 150.657260][ T5535] syz.1.421: attempt to access beyond end of device [ 150.657260][ T5535] loop1: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 150.696986][ T5536] atomic_op ffff888072f27198 conn xmit_atomic 0000000000000000 [ 152.506271][ T5576] loop2: detected capacity change from 0 to 512 [ 152.558662][ T5576] EXT4-fs (loop2): too many log groups per flexible block group [ 152.579990][ T5576] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 152.590404][ T5576] EXT4-fs (loop2): mount failed [ 152.843057][ T5586] atomic_op ffff88802be08198 conn xmit_atomic 0000000000000000 [ 153.058195][ T5593] loop2: detected capacity change from 0 to 128 [ 154.820487][ T27] kauditd_printk_skb: 82 callbacks suppressed [ 154.820503][ T27] audit: type=1326 audit(1743846528.857:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.4.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 154.853625][ T27] audit: type=1326 audit(1743846528.887:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.4.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 154.906535][ T27] audit: type=1326 audit(1743846528.887:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.4.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 154.979714][ T27] audit: type=1326 audit(1743846528.887:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.4.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 155.040310][ T27] audit: type=1326 audit(1743846528.907:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.4.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 155.114798][ T27] audit: type=1326 audit(1743846528.907:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.4.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 155.192543][ T27] audit: type=1326 audit(1743846528.907:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.4.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 155.259480][ T27] audit: type=1326 audit(1743846528.937:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.4.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 155.326568][ T27] audit: type=1326 audit(1743846528.937:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.4.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 155.359468][ T5629] atomic_op ffff88807540e998 conn xmit_atomic 0000000000000000 [ 155.400530][ T27] audit: type=1326 audit(1743846528.937:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5610 comm="syz.4.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 155.738574][ T5640] loop2: detected capacity change from 0 to 512 [ 155.868727][ T5640] EXT4-fs (loop2): too many log groups per flexible block group [ 155.882842][ T5640] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 155.890308][ T5640] EXT4-fs (loop2): mount failed [ 157.479559][ T5676] atomic_op ffff88807bccb998 conn xmit_atomic 0000000000000000 [ 157.566389][ T5652] loop2: detected capacity change from 0 to 128 [ 157.801096][ T5652] syz.2.464: attempt to access beyond end of device [ 157.801096][ T5652] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 157.968373][ T5686] netlink: 16 bytes leftover after parsing attributes in process `syz.3.479'. [ 158.748931][ T5712] atomic_op ffff88807a6e8198 conn xmit_atomic 0000000000000000 [ 159.351410][ T5723] loop1: detected capacity change from 0 to 512 [ 159.405091][ T5723] EXT4-fs (loop1): too many log groups per flexible block group [ 159.427921][ T5725] netlink: 16 bytes leftover after parsing attributes in process `syz.0.493'. [ 159.449496][ T5723] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 159.479952][ T5723] EXT4-fs (loop1): mount failed [ 160.093499][ T5740] loop1: detected capacity change from 0 to 128 [ 160.144316][ T27] kauditd_printk_skb: 110 callbacks suppressed [ 160.144333][ T27] audit: type=1326 audit(1743846534.177:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5741 comm="syz.4.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 160.207677][ T27] audit: type=1326 audit(1743846534.207:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5741 comm="syz.4.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 160.266707][ T27] audit: type=1326 audit(1743846534.207:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5741 comm="syz.4.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 160.368654][ T27] audit: type=1326 audit(1743846534.207:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5741 comm="syz.4.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 160.391937][ T5750] syz.1.492: attempt to access beyond end of device [ 160.391937][ T5750] loop1: rw=2049, sector=145, nr_sectors = 224 limit=128 [ 160.646954][ T27] audit: type=1326 audit(1743846534.207:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5741 comm="syz.4.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 161.493989][ T5757] loop4: detected capacity change from 0 to 256 [ 161.579674][ T5757] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 161.921499][ T27] audit: type=1326 audit(1743846534.207:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5741 comm="syz.4.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 162.008918][ T5762] atomic_op ffff88804fcbc198 conn xmit_atomic 0000000000000000 [ 162.059311][ T27] audit: type=1326 audit(1743846534.207:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5741 comm="syz.4.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 162.140310][ T5767] netlink: 16 bytes leftover after parsing attributes in process `syz.0.507'. [ 162.168608][ T27] audit: type=1326 audit(1743846534.207:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5741 comm="syz.4.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 162.227547][ T27] audit: type=1326 audit(1743846534.207:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5741 comm="syz.4.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 162.317891][ T27] audit: type=1326 audit(1743846534.207:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5741 comm="syz.4.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 163.811457][ T5801] loop1: detected capacity change from 0 to 512 [ 164.081951][ T5807] loop3: detected capacity change from 0 to 256 [ 164.112920][ T5801] EXT4-fs (loop1): too many log groups per flexible block group [ 164.166339][ T5807] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 164.249371][ T5801] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 164.348170][ T5801] EXT4-fs (loop1): mount failed [ 164.923660][ T5812] netlink: 8 bytes leftover after parsing attributes in process `syz.3.521'. [ 165.177283][ T27] kauditd_printk_skb: 37 callbacks suppressed [ 165.177298][ T27] audit: type=1326 audit(1743846539.207:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5814 comm="syz.3.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 165.208264][ T5818] atomic_op ffff88807a231198 conn xmit_atomic 0000000000000000 [ 165.255830][ T27] audit: type=1326 audit(1743846539.207:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5814 comm="syz.3.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 165.330225][ T27] audit: type=1326 audit(1743846539.207:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5814 comm="syz.3.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 165.382946][ T5821] loop1: detected capacity change from 0 to 128 [ 165.390031][ T27] audit: type=1326 audit(1743846539.207:937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5814 comm="syz.3.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 165.467174][ T27] audit: type=1326 audit(1743846539.207:938): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5814 comm="syz.3.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 165.561160][ T27] audit: type=1326 audit(1743846539.207:939): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5814 comm="syz.3.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 165.608517][ T27] audit: type=1326 audit(1743846539.207:940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5814 comm="syz.3.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 165.620421][ T5801] syz.1.519: attempt to access beyond end of device [ 165.620421][ T5801] loop1: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 165.674483][ T27] audit: type=1326 audit(1743846539.207:941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5814 comm="syz.3.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 165.737763][ T27] audit: type=1326 audit(1743846539.207:942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5814 comm="syz.3.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 165.882327][ T27] audit: type=1326 audit(1743846539.207:943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5814 comm="syz.3.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 166.877063][ T5842] netlink: 4 bytes leftover after parsing attributes in process `syz.3.534'. [ 166.989923][ T5844] loop2: detected capacity change from 0 to 256 [ 167.099217][ T5844] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 167.622318][ T5850] netlink: 8 bytes leftover after parsing attributes in process `syz.0.533'. [ 168.057629][ T5870] loop2: detected capacity change from 0 to 512 [ 168.115349][ T5870] EXT4-fs (loop2): too many log groups per flexible block group [ 168.152137][ T5870] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 168.159034][ T5870] EXT4-fs (loop2): mount failed [ 168.406010][ T5883] netlink: 8 bytes leftover after parsing attributes in process `syz.1.547'. [ 169.986216][ T5900] loop4: detected capacity change from 0 to 256 [ 170.084514][ T5900] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 170.600976][ T27] kauditd_printk_skb: 31 callbacks suppressed [ 170.600992][ T27] audit: type=1326 audit(1743846544.637:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5898 comm="syz.1.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 170.709909][ T27] audit: type=1326 audit(1743846544.667:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5898 comm="syz.1.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 170.732310][ T27] audit: type=1326 audit(1743846544.667:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5898 comm="syz.1.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 170.738657][ T5899] atomic_op ffff888072c25998 conn xmit_atomic 0000000000000000 [ 170.755389][ T27] audit: type=1326 audit(1743846544.677:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5898 comm="syz.1.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 170.788051][ T5905] loop2: detected capacity change from 0 to 128 [ 170.794474][ T27] audit: type=1326 audit(1743846544.677:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5898 comm="syz.1.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 170.818449][ T27] audit: type=1326 audit(1743846544.677:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5898 comm="syz.1.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 170.840865][ T27] audit: type=1326 audit(1743846544.677:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5898 comm="syz.1.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 170.883565][ T27] audit: type=1326 audit(1743846544.677:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5898 comm="syz.1.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 170.920371][ T27] audit: type=1326 audit(1743846544.677:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5898 comm="syz.1.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 171.000233][ T27] audit: type=1326 audit(1743846544.677:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5898 comm="syz.1.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 171.052648][ T5870] syz.2.543: attempt to access beyond end of device [ 171.052648][ T5870] loop2: rw=2049, sector=145, nr_sectors = 488 limit=128 [ 171.257424][ T5913] netlink: 'syz.4.556': attribute type 10 has an invalid length. [ 171.346245][ T5913] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 172.672308][ T5941] atomic_op ffff88807d0ab198 conn xmit_atomic 0000000000000000 [ 172.857337][ T5947] loop3: detected capacity change from 0 to 512 [ 172.934256][ T5947] EXT4-fs (loop3): too many log groups per flexible block group [ 172.967864][ T5947] EXT4-fs (loop3): failed to initialize mballoc (-12) [ 172.994641][ T5947] EXT4-fs (loop3): mount failed [ 173.543841][ T5973] loop3: detected capacity change from 0 to 128 [ 174.544911][ T5947] syz.3.570: attempt to access beyond end of device [ 174.544911][ T5947] loop3: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 174.779597][ T5987] syz.4.584[5987] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 174.779708][ T5987] syz.4.584[5987] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 175.188517][ T6002] netlink: 'syz.3.590': attribute type 13 has an invalid length. [ 177.020514][ T6025] loop2: detected capacity change from 0 to 512 [ 177.053977][ T6025] EXT4-fs (loop2): too many log groups per flexible block group [ 177.065099][ T6025] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 177.072116][ T6025] EXT4-fs (loop2): mount failed [ 177.113596][ T6002] bridge0: port 2(bridge_slave_1) entered disabled state [ 177.122129][ T6002] bridge0: port 1(bridge_slave_0) entered disabled state [ 177.416783][ T6029] loop2: detected capacity change from 0 to 128 [ 177.546735][ T6029] syz.2.597: attempt to access beyond end of device [ 177.546735][ T6029] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 177.633870][ T6025] syz.2.597: attempt to access beyond end of device [ 177.633870][ T6025] loop2: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 177.649170][ T6025] syz.2.597: attempt to access beyond end of device [ 177.649170][ T6025] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 177.662610][ T6025] syz.2.597: attempt to access beyond end of device [ 177.662610][ T6025] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 177.676034][ T6025] syz.2.597: attempt to access beyond end of device [ 177.676034][ T6025] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 177.689365][ T6025] syz.2.597: attempt to access beyond end of device [ 177.689365][ T6025] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 177.978990][ T6002] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 178.032869][ T6002] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 178.511802][ T6002] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.521153][ T6002] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.530043][ T6002] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.539291][ T6002] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 179.062484][ T6045] device lo entered promiscuous mode [ 179.086860][ T6045] device lo left promiscuous mode [ 179.139609][ T27] kauditd_printk_skb: 29 callbacks suppressed [ 179.139626][ T27] audit: type=1326 audit(1743846553.167:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.2.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 179.202374][ T27] audit: type=1326 audit(1743846553.167:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.2.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 179.258520][ T27] audit: type=1326 audit(1743846553.167:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.2.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 179.305627][ T6050] atomic_op ffff88814d3e7198 conn xmit_atomic 0000000000000000 [ 179.336516][ T27] audit: type=1326 audit(1743846553.237:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.2.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 179.409475][ T27] audit: type=1326 audit(1743846553.277:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.2.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 179.506029][ T27] audit: type=1326 audit(1743846553.277:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.2.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 179.514274][ T6059] loop1: detected capacity change from 0 to 512 [ 179.537631][ T27] audit: type=1326 audit(1743846553.287:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.2.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 179.610039][ T6059] EXT4-fs (loop1): too many log groups per flexible block group [ 179.637967][ T6059] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 179.658966][ T27] audit: type=1326 audit(1743846553.287:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.2.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 179.675776][ T6059] EXT4-fs (loop1): mount failed [ 179.690782][ T27] audit: type=1326 audit(1743846553.287:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.2.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 179.730189][ T27] audit: type=1326 audit(1743846553.337:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6042 comm="syz.2.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 179.884400][ T6068] netlink: 96 bytes leftover after parsing attributes in process `syz.2.611'. [ 180.106757][ T6072] capability: warning: `syz.2.613' uses deprecated v2 capabilities in a way that may be insecure [ 180.376490][ T6082] loop1: detected capacity change from 0 to 128 [ 180.486090][ T6080] bond0: (slave netdevsim0): Error: Slave device does not support XDP [ 180.753243][ T6088] syz.1.609: attempt to access beyond end of device [ 180.753243][ T6088] loop1: rw=2049, sector=145, nr_sectors = 624 limit=128 [ 181.312240][ T6098] atomic_op ffff88805468e198 conn xmit_atomic 0000000000000000 [ 182.848533][ T6125] loop4: detected capacity change from 0 to 512 [ 182.946632][ T6125] EXT4-fs (loop4): too many log groups per flexible block group [ 182.990601][ T6125] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 183.054422][ T6125] EXT4-fs (loop4): mount failed [ 183.454475][ T6140] atomic_op ffff888075c78998 conn xmit_atomic 0000000000000000 [ 183.619244][ T6148] loop4: detected capacity change from 0 to 128 [ 183.784728][ T6125] syz.4.634: attempt to access beyond end of device [ 183.784728][ T6125] loop4: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 184.991184][ T6160] loop4: detected capacity change from 0 to 128 [ 185.033005][ T6160] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 185.045841][ T6160] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 185.078165][ T27] kauditd_printk_skb: 93 callbacks suppressed [ 185.078181][ T27] audit: type=1800 audit(1743846559.107:1117): pid=6160 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.646" name="file0" dev="loop4" ino=12 res=0 errno=0 [ 185.248466][ T4255] EXT4-fs (loop4): unmounting filesystem. [ 185.366866][ T6175] loop1: detected capacity change from 0 to 512 [ 185.427753][ T6175] EXT4-fs (loop1): orphan cleanup on readonly fs [ 185.569285][ T6175] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.653: bg 0: block 248: padding at end of block bitmap is not set [ 185.598789][ T6175] Quota error (device loop1): write_blk: dquota write failed [ 185.629701][ T6175] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 185.661301][ T6175] EXT4-fs error (device loop1): ext4_acquire_dquot:6795: comm syz.1.653: Failed to acquire dquot type 1 [ 185.718425][ T6175] EXT4-fs (loop1): 1 truncate cleaned up [ 185.742162][ T6175] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 185.796762][ T27] audit: type=1326 audit(1743846559.827:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 185.874362][ T6185] atomic_op ffff88807e4e0998 conn xmit_atomic 0000000000000000 [ 185.898925][ T27] audit: type=1326 audit(1743846559.857:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 185.931182][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 185.962691][ T27] audit: type=1326 audit(1743846559.857:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 186.037110][ T27] audit: type=1326 audit(1743846559.857:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 186.086954][ T6192] loop1: detected capacity change from 0 to 512 [ 186.094738][ T27] audit: type=1326 audit(1743846559.867:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 186.129211][ T27] audit: type=1326 audit(1743846559.867:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 186.186628][ T27] audit: type=1326 audit(1743846559.867:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6181 comm="syz.3.654" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 186.209462][ T6192] EXT4-fs (loop1): too many log groups per flexible block group [ 186.236906][ T6192] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 186.250779][ T6192] EXT4-fs (loop1): mount failed [ 186.843043][ T6211] loop1: detected capacity change from 0 to 128 [ 187.745217][ T6217] syz.1.656: attempt to access beyond end of device [ 187.745217][ T6217] loop1: rw=2049, sector=145, nr_sectors = 56 limit=128 [ 188.252300][ T6234] atomic_op ffff888054e0e198 conn xmit_atomic 0000000000000000 [ 188.316850][ T6236] netlink: 'syz.4.674': attribute type 1 has an invalid length. [ 188.350322][ T6236] netlink: 'syz.4.674': attribute type 2 has an invalid length. [ 188.449083][ T6242] loop3: detected capacity change from 0 to 2048 [ 188.523836][ T6242] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 188.651331][ T6242] EXT4-fs (loop3): unmounting filesystem. [ 189.998378][ T6276] netlink: 'syz.1.690': attribute type 1 has an invalid length. [ 190.026778][ T6276] netlink: 'syz.1.690': attribute type 2 has an invalid length. [ 190.217983][ T6253] loop2: detected capacity change from 0 to 1764 [ 190.305154][ T6253] loop2: detected capacity change from 0 to 512 [ 190.329094][ T6253] EXT4-fs (loop2): orphan cleanup on readonly fs [ 190.382975][ T6253] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.681: bg 0: block 248: padding at end of block bitmap is not set [ 190.427379][ T6253] __quota_error: 66 callbacks suppressed [ 190.427400][ T6253] Quota error (device loop2): write_blk: dquota write failed [ 190.496891][ T6253] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 190.524234][ T6253] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.681: Failed to acquire dquot type 1 [ 190.548379][ T6253] EXT4-fs (loop2): 1 truncate cleaned up [ 190.563493][ T6253] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 190.796574][ T27] audit: type=1326 audit(1743846564.827:1191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6295 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 191.022534][ T27] audit: type=1326 audit(1743846564.867:1192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6295 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 191.238834][ T6253] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 191.268246][ T27] audit: type=1326 audit(1743846564.877:1193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6295 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 191.303178][ T6253] Quota error (device loop2): write_blk: dquota write failed [ 191.322612][ T6253] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota [ 191.358381][ T27] audit: type=1326 audit(1743846564.877:1194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6295 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 191.380299][ T6253] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.681: Failed to acquire dquot type 1 [ 191.380804][ T27] audit: type=1326 audit(1743846564.887:1195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6295 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 191.415652][ T27] audit: type=1326 audit(1743846564.897:1196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6295 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 191.486731][ T6253] EXT4-fs warning (device loop2): ext4_enable_quotas:7030: Failed to enable quota tracking (type=1, err=-28, ino=4). Please run e2fsck to fix. [ 191.692758][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 193.299163][ T6352] atomic_op ffff88807c311198 conn xmit_atomic 0000000000000000 [ 193.627889][ T6362] loop2: detected capacity change from 0 to 164 [ 193.905423][ T6369] loop4: detected capacity change from 0 to 256 [ 195.458218][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.668241][ T6362] ISOFS: unable to read i-node block [ 195.690846][ T6362] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 195.866894][ T6374] process 'syz.3.729' launched './file0' with NULL argv: empty string added [ 197.107583][ T27] kauditd_printk_skb: 24 callbacks suppressed [ 197.107600][ T27] audit: type=1326 audit(1743846571.137:1221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6392 comm="syz.0.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 197.168382][ T6394] atomic_op ffff88805281d998 conn xmit_atomic 0000000000000000 [ 197.217551][ T27] audit: type=1326 audit(1743846571.177:1222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6392 comm="syz.0.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 197.279357][ T27] audit: type=1326 audit(1743846571.177:1223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6392 comm="syz.0.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 197.303952][ T27] audit: type=1326 audit(1743846571.177:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6392 comm="syz.0.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 197.326413][ T27] audit: type=1326 audit(1743846571.177:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6392 comm="syz.0.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 197.348811][ T27] audit: type=1326 audit(1743846571.177:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6392 comm="syz.0.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 197.410240][ T27] audit: type=1326 audit(1743846571.177:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6392 comm="syz.0.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 197.477835][ T27] audit: type=1326 audit(1743846571.177:1228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6392 comm="syz.0.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 197.533481][ T27] audit: type=1326 audit(1743846571.177:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6392 comm="syz.0.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 197.610850][ T4265] Bluetooth: hci4: command 0x0406 tx timeout [ 197.616940][ T4265] Bluetooth: hci2: command 0x0406 tx timeout [ 197.623071][ T4265] Bluetooth: hci1: command 0x0406 tx timeout [ 197.629090][ T4265] Bluetooth: hci0: command 0x0406 tx timeout [ 197.660217][ T27] audit: type=1326 audit(1743846571.177:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6392 comm="syz.0.737" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 197.682458][ T4270] Bluetooth: hci3: command 0x0406 tx timeout [ 197.781567][ T6407] netlink: 16 bytes leftover after parsing attributes in process `syz.3.741'. [ 198.967697][ T6425] loop0: detected capacity change from 0 to 512 [ 199.050070][ T6425] EXT4-fs (loop0): too many log groups per flexible block group [ 199.058070][ T6425] EXT4-fs (loop0): failed to initialize mballoc (-12) [ 199.116853][ T6425] EXT4-fs (loop0): mount failed [ 199.295251][ T6429] netlink: 'syz.4.750': attribute type 1 has an invalid length. [ 199.326537][ T6429] netlink: 'syz.4.750': attribute type 2 has an invalid length. [ 199.720395][ T6441] loop0: detected capacity change from 0 to 128 [ 199.872822][ T6441] syz.0.749: attempt to access beyond end of device [ 199.872822][ T6441] loop0: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 199.957648][ T6441] syz.0.749: attempt to access beyond end of device [ 199.957648][ T6441] loop0: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 200.044080][ T6441] syz.0.749: attempt to access beyond end of device [ 200.044080][ T6441] loop0: rw=0, sector=145, nr_sectors = 8 limit=128 [ 200.076405][ T6451] IPv6: Can't replace route, no match found [ 200.197250][ T6456] device veth0 entered promiscuous mode [ 200.208425][ T6456] netlink: 4 bytes leftover after parsing attributes in process `syz.4.763'. [ 201.513978][ T6478] netlink: 28 bytes leftover after parsing attributes in process `syz.2.769'. [ 201.545667][ T6478] netlink: 108 bytes leftover after parsing attributes in process `syz.2.769'. [ 201.569542][ T6478] netlink: 28 bytes leftover after parsing attributes in process `syz.2.769'. [ 201.582691][ T6482] loop4: detected capacity change from 0 to 512 [ 201.589769][ T6482] EXT4-fs: Ignoring removed nobh option [ 201.632575][ T6478] netlink: 108 bytes leftover after parsing attributes in process `syz.2.769'. [ 201.652197][ T6478] netlink: 84 bytes leftover after parsing attributes in process `syz.2.769'. [ 201.656444][ T6487] loop1: detected capacity change from 0 to 512 [ 201.675579][ T6482] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #3: comm syz.4.771: corrupted inode contents [ 201.693104][ T6482] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #3: comm syz.4.771: mark_inode_dirty error [ 201.716520][ T6487] EXT4-fs (loop1): too many log groups per flexible block group [ 201.716789][ T6482] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #3: comm syz.4.771: corrupted inode contents [ 201.738865][ T6487] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 201.745828][ T6487] EXT4-fs (loop1): mount failed [ 201.757499][ T6482] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #3: comm syz.4.771: mark_inode_dirty error [ 201.774012][ T6493] IPv6: Can't replace route, no match found [ 201.790647][ T6482] EXT4-fs error (device loop4): ext4_acquire_dquot:6795: comm syz.4.771: Failed to acquire dquot type 0 [ 201.821143][ T6482] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #16: comm syz.4.771: corrupted inode contents [ 201.854705][ T6482] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #16: comm syz.4.771: mark_inode_dirty error [ 201.888150][ T6482] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #16: comm syz.4.771: corrupted inode contents [ 201.926835][ T6482] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #16: comm syz.4.771: mark_inode_dirty error [ 201.959051][ T6482] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #16: comm syz.4.771: corrupted inode contents [ 202.044504][ T6482] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 202.063776][ T6482] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #16: comm syz.4.771: corrupted inode contents [ 202.112778][ T6482] EXT4-fs error (device loop4): ext4_truncate:4311: inode #16: comm syz.4.771: mark_inode_dirty error [ 202.163309][ T6482] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 202.187988][ T6482] EXT4-fs (loop4): 1 truncate cleaned up [ 202.193893][ T6482] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 202.210310][ T6482] ext4 filesystem being mounted at /163/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 202.294731][ T6482] syz.4.771 (6482) used greatest stack depth: 19456 bytes left [ 202.882059][ T6504] loop1: detected capacity change from 0 to 128 [ 202.910594][ T4255] EXT4-fs (loop4): unmounting filesystem. [ 203.089795][ T6510] loop0: detected capacity change from 0 to 512 [ 203.092460][ T6511] syz.1.773: attempt to access beyond end of device [ 203.092460][ T6511] loop1: rw=2049, sector=145, nr_sectors = 832 limit=128 [ 203.128297][ T6510] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 203.187565][ T6510] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 203.199327][ T6514] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 203.242575][ T6510] ext4 filesystem being mounted at /183/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 203.282899][ T6519] Falling back ldisc for ptm0. [ 203.453960][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 203.602021][ T6531] loop1: detected capacity change from 0 to 512 [ 203.632714][ T6531] EXT4-fs: Ignoring removed nobh option [ 203.679265][ T6531] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.790: invalid indirect mapped block 256 (level 2) [ 203.697323][ T6531] EXT4-fs (loop1): 2 truncates cleaned up [ 203.703398][ T6531] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 203.788308][ T27] kauditd_printk_skb: 74 callbacks suppressed [ 203.788326][ T27] audit: type=1326 audit(1743846577.817:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 203.889833][ T6538] atomic_op ffff8880539d2998 conn xmit_atomic 0000000000000000 [ 203.963305][ T27] audit: type=1326 audit(1743846577.867:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 204.182146][ T27] audit: type=1326 audit(1743846577.867:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 204.407694][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 204.610190][ T27] audit: type=1326 audit(1743846577.867:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 204.766504][ T27] audit: type=1326 audit(1743846577.867:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 204.833143][ T27] audit: type=1326 audit(1743846577.867:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 204.915516][ T27] audit: type=1326 audit(1743846577.867:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 205.008890][ T27] audit: type=1326 audit(1743846577.867:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 205.080922][ T27] audit: type=1326 audit(1743846577.887:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 205.142020][ T6558] loop2: detected capacity change from 0 to 512 [ 205.170783][ T27] audit: type=1326 audit(1743846577.887:1312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6536 comm="syz.4.793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f24daf8d169 code=0x7ffc0000 [ 205.226902][ T6558] EXT4-fs (loop2): too many log groups per flexible block group [ 205.256720][ T6567] netlink: 132 bytes leftover after parsing attributes in process `syz.1.805'. [ 205.292331][ T6558] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 205.299255][ T6558] EXT4-fs (loop2): mount failed [ 205.317085][ T6567] openvswitch: netlink: Message has 8 unknown bytes. [ 205.366255][ T6567] tipc: Started in network mode [ 205.371637][ T6567] tipc: Node identity ac14140f, cluster identity 4711 [ 205.379014][ T6567] tipc: New replicast peer: 255.255.255.255 [ 205.388026][ T6567] tipc: Enabled bearer , priority 10 [ 205.397724][ T6567] netlink: 12 bytes leftover after parsing attributes in process `syz.1.805'. [ 205.417140][ T6567] tipc: Disabling bearer [ 206.652805][ T6588] loop2: detected capacity change from 0 to 128 [ 206.774855][ T6592] device veth0 entered promiscuous mode [ 206.790888][ T6592] netlink: 4 bytes leftover after parsing attributes in process `syz.3.816'. [ 206.851550][ T6558] syz.2.801: attempt to access beyond end of device [ 206.851550][ T6558] loop2: rw=2049, sector=145, nr_sectors = 488 limit=128 [ 206.868035][ T6592] device veth0 left promiscuous mode [ 206.953220][ T6558] syz.2.801: attempt to access beyond end of device [ 206.953220][ T6558] loop2: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 206.978776][ T6558] syz.2.801: attempt to access beyond end of device [ 206.978776][ T6558] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 207.033391][ T6600] loop1: detected capacity change from 0 to 512 [ 207.080366][ T6600] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 207.090641][ T6600] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 207.154973][ T6600] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 207.188771][ T6600] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 207.206126][ T6600] System zones: 0-2, 18-18, 34-34 [ 207.226578][ T6600] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 207.253612][ T6608] loop2: detected capacity change from 0 to 512 [ 207.264323][ T6608] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 207.277801][ T6608] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 207.291735][ T6608] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 207.322999][ T6608] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 207.356041][ T6608] System zones: 0-2, 18-18, 34-34 [ 207.377521][ T6608] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 207.392939][ T6600] EXT4-fs (loop1): 1 truncate cleaned up [ 207.398621][ T6600] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 207.449204][ T6608] EXT4-fs (loop2): 1 truncate cleaned up [ 207.471904][ T6608] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 208.217146][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 208.423306][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 208.557244][ T6633] loop1: detected capacity change from 0 to 512 [ 208.607019][ T6635] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22 [ 208.626871][ T6635] netdevsim netdevsim3: Direct firmware load for . failed with error -22 [ 208.636495][ T6635] netdevsim netdevsim3: Falling back to sysfs fallback for: . [ 208.646251][ T6633] EXT4-fs (loop1): too many log groups per flexible block group [ 208.657345][ T6633] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 208.664369][ T6633] EXT4-fs (loop1): mount failed [ 208.799570][ T6645] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 208.823251][ T6645] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 208.838941][ T6645] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 208.867509][ T6645] device bridge_slave_0 left promiscuous mode [ 208.884648][ T6645] bridge0: port 1(bridge_slave_0) entered disabled state [ 208.927510][ T6645] device bridge_slave_1 left promiscuous mode [ 208.939792][ T6645] bridge0: port 2(bridge_slave_1) entered disabled state [ 208.964563][ T6645] bond0: (slave bond_slave_0): Releasing backup interface [ 209.060640][ T6645] bond0: (slave bond_slave_1): Releasing backup interface [ 209.206734][ T6645] team0: Port device team_slave_0 removed [ 209.873784][ T6645] team0: Port device team_slave_1 removed [ 209.940070][ T6657] loop1: detected capacity change from 0 to 128 [ 209.964229][ T6645] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 210.042742][ T6645] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 210.093491][ T6645] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 210.103974][ T6645] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 210.195359][ T6645] bond0: (slave netdevsim0): Releasing backup interface [ 210.286434][ T6663] syz.1.832: attempt to access beyond end of device [ 210.286434][ T6663] loop1: rw=2049, sector=145, nr_sectors = 376 limit=128 [ 211.306009][ T27] kauditd_printk_skb: 43 callbacks suppressed [ 211.306027][ T27] audit: type=1326 audit(1743846585.337:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.3.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 211.398994][ T27] audit: type=1326 audit(1743846585.377:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.3.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 211.465873][ T27] audit: type=1326 audit(1743846585.377:1358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.3.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 211.529041][ T27] audit: type=1326 audit(1743846585.377:1359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.3.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 211.595407][ T27] audit: type=1326 audit(1743846585.377:1360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6690 comm="syz.3.856" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 211.620851][ T6706] netlink: 156 bytes leftover after parsing attributes in process `syz.0.860'. [ 211.660988][ T6706] netlink: 24 bytes leftover after parsing attributes in process `syz.0.860'. [ 211.739282][ T6715] netlink: 4 bytes leftover after parsing attributes in process `syz.4.864'. [ 211.928407][ T6722] IPVS: Error connecting to the multicast addr [ 211.939659][ T27] audit: type=1326 audit(1743846585.967:1361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.0.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 212.003024][ T27] audit: type=1326 audit(1743846585.967:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.0.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 212.089909][ T6726] atomic_op ffff888079b58998 conn xmit_atomic 0000000000000000 [ 212.119258][ T27] audit: type=1326 audit(1743846585.967:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.0.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 212.269376][ T27] audit: type=1326 audit(1743846585.967:1364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.0.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 212.864386][ T27] audit: type=1326 audit(1743846585.967:1365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6716 comm="syz.0.865" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 213.374901][ T6752] IPv6: NLM_F_CREATE should be specified when creating new route [ 213.503664][ T6759] loop4: detected capacity change from 0 to 512 [ 213.546425][ T6759] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 213.571074][ T6759] EXT4-fs (loop4): orphan cleanup on readonly fs [ 213.587808][ T6759] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.881: bg 0: block 248: padding at end of block bitmap is not set [ 213.634264][ T6759] EXT4-fs error (device loop4): ext4_acquire_dquot:6795: comm syz.4.881: Failed to acquire dquot type 1 [ 213.678348][ T6759] EXT4-fs (loop4): 1 truncate cleaned up [ 213.881654][ T6759] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 214.233110][ T4255] EXT4-fs (loop4): unmounting filesystem. [ 214.624543][ T6780] netlink: 8 bytes leftover after parsing attributes in process `syz.3.891'. [ 214.640516][ T6780] IPVS: Error joining to the multicast group [ 216.144480][ T6813] device batadv1 entered promiscuous mode [ 218.148115][ T6840] loop1: detected capacity change from 0 to 1024 [ 218.227076][ T6843] loop0: detected capacity change from 0 to 256 [ 218.293679][ T6843] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 218.688370][ T6840] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 219.027403][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 220.135621][ T6863] IPv6: Can't replace route, no match found [ 220.449804][ T6874] loop2: detected capacity change from 0 to 512 [ 220.456625][ T6876] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 220.456625][ T6876] The task syz.0.926 (6876) triggered the difference, watch for misbehavior. [ 220.787048][ T6874] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 220.888042][ T6874] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 221.177541][ T6874] __quota_error: 25 callbacks suppressed [ 221.177562][ T6874] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 221.257671][ T6874] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 221.267297][ T6874] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.929: Failed to acquire dquot type 0 [ 221.503371][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 221.637739][ T6893] netlink: 8 bytes leftover after parsing attributes in process `syz.1.933'. [ 221.717938][ T6893] netlink: 4 bytes leftover after parsing attributes in process `syz.1.933'. [ 222.038291][ T6897] loop4: detected capacity change from 0 to 256 [ 222.056372][ T6897] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 222.409991][ T6891] infiniband syz0: set active [ 222.509966][ T6891] infiniband syz0: added bond0 [ 222.555990][ T6904] IPv6: Can't replace route, no match found [ 222.689574][ T6891] RDS/IB: syz0: added [ 222.694953][ T6891] smc: adding ib device syz0 with port count 1 [ 222.706861][ T6891] smc: ib device syz0 port 1 has pnetid [ 222.733035][ T6900] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 222.849310][ T6919] netlink: 36 bytes leftover after parsing attributes in process `syz.2.943'. [ 222.937857][ T6921] loop4: detected capacity change from 0 to 2048 [ 223.187854][ T6929] loop0: detected capacity change from 0 to 512 [ 223.235101][ T6929] EXT4-fs (loop0): too many log groups per flexible block group [ 223.249792][ T6929] EXT4-fs (loop0): failed to initialize mballoc (-12) [ 223.284227][ T6929] EXT4-fs (loop0): mount failed [ 223.628837][ T6937] loop4: detected capacity change from 0 to 256 [ 223.732852][ T6937] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 224.509322][ T6943] IPv6: Can't replace route, no match found [ 224.597972][ T6944] loop0: detected capacity change from 0 to 128 [ 224.764314][ T27] audit: type=1326 audit(1743846598.797:1389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6947 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 224.812609][ T27] audit: type=1326 audit(1743846598.837:1390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6947 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 224.869651][ T6950] atomic_op ffff8880548d3198 conn xmit_atomic 0000000000000000 [ 224.877505][ T27] audit: type=1326 audit(1743846598.877:1391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6947 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 224.933262][ T6928] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 224.940535][ T27] audit: type=1326 audit(1743846598.877:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6947 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 225.010318][ T27] audit: type=1326 audit(1743846598.877:1393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6947 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 225.070245][ T27] audit: type=1326 audit(1743846598.877:1394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6947 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 225.158617][ T27] audit: type=1326 audit(1743846598.877:1395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6947 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 225.260449][ T27] audit: type=1326 audit(1743846598.877:1396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6947 comm="syz.2.955" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 225.541661][ T6970] IPv6: Can't replace route, no match found [ 225.734627][ T6978] loop4: detected capacity change from 0 to 256 [ 225.776486][ T6978] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 226.469036][ T6980] netlink: 344 bytes leftover after parsing attributes in process `syz.2.969'. [ 226.581475][ T6980] loop2: detected capacity change from 0 to 512 [ 226.673843][ T6980] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 226.699957][ T6980] ext4 filesystem being mounted at /168/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 226.798815][ C1] hrtimer: interrupt took 7215100 ns [ 226.994633][ T7002] IPv6: Can't replace route, no match found [ 227.023282][ T7007] netlink: 'syz.0.978': attribute type 1 has an invalid length. [ 227.041797][ T7007] netlink: 'syz.0.978': attribute type 2 has an invalid length. [ 227.118033][ T6980] EXT4-fs error (device loop2): ext4_get_first_dir_block:3591: inode #12: block 32: comm syz.2.969: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 227.170647][ T6980] EXT4-fs error (device loop2): ext4_get_first_dir_block:3594: inode #12: comm syz.2.969: directory missing '.' [ 228.276018][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 228.444626][ T7021] syz.4.986[7021] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 228.444738][ T7021] syz.4.986[7021] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 228.526912][ T27] kauditd_printk_skb: 27 callbacks suppressed [ 228.526930][ T27] audit: type=1326 audit(1743846602.557:1424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7022 comm="syz.1.987" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x0 [ 228.573709][ T27] audit: type=1326 audit(1743846602.557:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7025 comm="syz.2.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 228.602234][ T27] audit: type=1326 audit(1743846602.557:1426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7025 comm="syz.2.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 228.654937][ T27] audit: type=1326 audit(1743846602.557:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7025 comm="syz.2.985" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 228.895056][ T7040] loop4: detected capacity change from 0 to 512 [ 228.938490][ T7040] EXT4-fs (loop4): too many log groups per flexible block group [ 228.950007][ T7040] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 228.962802][ T7040] EXT4-fs (loop4): mount failed [ 229.060608][ T7052] device wireguard0 entered promiscuous mode [ 229.368012][ T7059] loop4: detected capacity change from 0 to 128 [ 229.555803][ T7067] IPv6: Can't replace route, no match found [ 229.716298][ T7074] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1003'. [ 230.381260][ T7074] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 230.697202][ T27] audit: type=1326 audit(1743846604.727:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.3.1008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 230.731300][ T7085] loop4: detected capacity change from 0 to 164 [ 230.745892][ T27] audit: type=1326 audit(1743846604.727:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.3.1008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 230.803152][ T27] audit: type=1326 audit(1743846604.727:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.3.1008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 230.859684][ T7083] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98 [ 230.979942][ T27] audit: type=1326 audit(1743846604.727:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.3.1008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 231.013259][ T27] audit: type=1326 audit(1743846604.727:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7081 comm="syz.3.1008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 231.046376][ T7088] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1010'. [ 231.067373][ T27] audit: type=1326 audit(1743846605.097:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7089 comm="syz.0.1012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 231.082442][ T7088] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1010'. [ 231.150331][ T7074] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.328904][ T7074] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.567303][ T7074] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.605210][ T7107] loop2: detected capacity change from 0 to 1024 [ 231.613829][ T7107] EXT4-fs: Ignoring removed oldalloc option [ 231.619902][ T7107] EXT4-fs: Ignoring removed orlov option [ 231.694422][ T7107] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 231.856167][ T7074] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.894098][ T7074] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.937764][ T7074] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 231.961567][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 232.040917][ T7074] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 232.259021][ T7126] loop4: detected capacity change from 0 to 256 [ 232.268678][ T7126] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 232.340808][ T7133] IPv6: Can't replace route, no match found [ 232.619391][ T7139] loop0: detected capacity change from 0 to 256 [ 233.278389][ T7159] IPv6: Can't replace route, no match found [ 233.302129][ T7161] loop2: detected capacity change from 0 to 128 [ 234.510772][ T7167] syz.2.1039: attempt to access beyond end of device [ 234.510772][ T7167] loop2: rw=0, sector=121, nr_sectors = 120 limit=128 [ 234.828488][ T27] kauditd_printk_skb: 39 callbacks suppressed [ 234.828504][ T27] audit: type=1326 audit(1743846608.857:1473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7184 comm="syz.0.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 234.876971][ T4325] kworker/u4:6: attempt to access beyond end of device [ 234.876971][ T4325] loop2: rw=1, sector=241, nr_sectors = 800 limit=128 [ 234.952572][ T27] audit: type=1326 audit(1743846608.897:1474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7184 comm="syz.0.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 234.986069][ T27] audit: type=1326 audit(1743846608.897:1475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7184 comm="syz.0.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 235.040868][ T7187] loop4: detected capacity change from 0 to 256 [ 235.050402][ T7187] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 235.075845][ T27] audit: type=1326 audit(1743846608.897:1476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7184 comm="syz.0.1047" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 236.409613][ T7202] device syzkaller0 entered promiscuous mode [ 236.437924][ T7205] loop4: detected capacity change from 0 to 512 [ 236.470625][ T7209] device bond_slave_1 entered promiscuous mode [ 236.487786][ T7209] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1055'. [ 236.521328][ T7205] EXT4-fs (loop4): too many log groups per flexible block group [ 236.529165][ T7205] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 236.551098][ T7205] EXT4-fs (loop4): mount failed [ 236.688627][ T7209] bond0: (slave bond_slave_1): Releasing backup interface [ 236.709598][ T7209] device bond_slave_1 left promiscuous mode [ 237.068666][ T7223] loop4: detected capacity change from 0 to 128 [ 237.235148][ T7205] syz.4.1054: attempt to access beyond end of device [ 237.235148][ T7205] loop4: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 237.369701][ T7205] syz.4.1054: attempt to access beyond end of device [ 237.369701][ T7205] loop4: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 237.455627][ T7205] syz.4.1054: attempt to access beyond end of device [ 237.455627][ T7205] loop4: rw=0, sector=145, nr_sectors = 8 limit=128 [ 238.380068][ T7233] loop4: detected capacity change from 0 to 256 [ 238.390985][ T7233] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 240.410839][ T7249] IPv6: Can't replace route, no match found [ 240.432453][ T7254] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 240.460642][ T7254] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 240.885134][ T7258] netlink: 'syz.4.1072': attribute type 3 has an invalid length. [ 240.902759][ T7258] netlink: 'syz.4.1072': attribute type 3 has an invalid length. [ 241.406096][ T7273] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1078'. [ 241.556754][ T7278] loop0: detected capacity change from 0 to 128 [ 241.601270][ T7278] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 241.620420][ T7278] ext4 filesystem being mounted at /246/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 241.648941][ T7282] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1080'. [ 241.673194][ T7283] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 241.729550][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 241.877948][ T7289] loop0: detected capacity change from 0 to 256 [ 241.906537][ T7291] loop4: detected capacity change from 0 to 128 [ 241.921041][ T7291] EXT4-fs: Ignoring removed nobh option [ 241.939621][ T7291] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 241.957951][ T7294] loop1: detected capacity change from 0 to 512 [ 241.966155][ T7291] ext4 filesystem being mounted at /234/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 241.990178][ T7291] EXT4-fs warning (device loop4): ext4_dirblock_csum_verify:406: inode #2: comm syz.4.1085: No space for directory leaf checksum. Please run e2fsck -D. [ 242.012254][ T7291] EXT4-fs error (device loop4): __ext4_find_entry:1696: inode #2: comm syz.4.1085: checksumming directory block 0 [ 242.013635][ T7294] EXT4-fs (loop1): orphan cleanup on readonly fs [ 242.043965][ T7294] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1086: bg 0: block 248: padding at end of block bitmap is not set [ 242.064731][ T7294] Quota error (device loop1): write_blk: dquota write failed [ 242.075053][ T7294] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 242.090039][ T7294] EXT4-fs error (device loop1): ext4_acquire_dquot:6795: comm syz.1.1086: Failed to acquire dquot type 1 [ 242.111437][ T4255] EXT4-fs (loop4): unmounting filesystem. [ 242.118877][ T7294] EXT4-fs (loop1): 1 truncate cleaned up [ 242.147572][ T7294] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 242.203193][ T7294] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 242.270986][ T7294] EXT4-fs (loop1): re-mounted. Quota mode: writeback. [ 242.377174][ T7294] EXT4-fs (loop1): unmounting filesystem. [ 243.240532][ T7311] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1091'. [ 243.826118][ T7330] IPv6: Can't replace route, no match found [ 243.862418][ T7332] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1101'. [ 243.935793][ T7336] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 244.119016][ T7341] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1105'. [ 244.935211][ T27] audit: type=1326 audit(1743846618.967:1477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.3.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 244.955089][ T7363] atomic_op ffff88807de50998 conn xmit_atomic 0000000000000000 [ 245.067357][ T27] audit: type=1326 audit(1743846618.967:1478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.3.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 245.294704][ T27] audit: type=1326 audit(1743846618.967:1479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.3.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 245.487693][ T27] audit: type=1326 audit(1743846618.967:1480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.3.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 245.623500][ T27] audit: type=1326 audit(1743846618.967:1481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.3.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 245.715064][ T27] audit: type=1326 audit(1743846618.967:1482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.3.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 245.899183][ T27] audit: type=1326 audit(1743846618.967:1483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.3.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 246.036897][ T27] audit: type=1326 audit(1743846618.967:1484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="syz.3.1114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 246.200658][ T7376] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1118'. [ 246.796997][ T7398] mmap: syz.0.1126 (7398) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 248.099948][ T7418] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1134'. [ 248.468405][ T7432] IPVS: set_ctl: invalid protocol: 50 172.20.20.170:0 [ 249.076739][ T7448] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1146'. [ 249.292048][ T7457] IPv6: Can't replace route, no match found [ 249.422686][ T27] kauditd_printk_skb: 21 callbacks suppressed [ 249.422702][ T27] audit: type=1326 audit(1743846623.457:1506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.0.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 249.485969][ T27] audit: type=1326 audit(1743846623.487:1507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.0.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 249.539252][ T27] audit: type=1326 audit(1743846623.487:1508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.0.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 249.600211][ T27] audit: type=1326 audit(1743846623.487:1509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.0.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 249.688163][ T27] audit: type=1326 audit(1743846623.487:1510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7459 comm="syz.0.1151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 249.759827][ T7475] loop1: detected capacity change from 0 to 512 [ 249.768206][ T27] audit: type=1326 audit(1743846623.777:1511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.2.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 249.810449][ T7479] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1160'. [ 249.825405][ T7475] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -13 [ 249.850040][ T27] audit: type=1326 audit(1743846623.777:1512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.2.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 249.884635][ T7475] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279945729 > max in inode 13 [ 249.914735][ T7475] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279945730 > max in inode 13 [ 249.918221][ T27] audit: type=1326 audit(1743846623.797:1513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.2.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 249.942108][ T7475] EXT4-fs (loop1): 1 truncate cleaned up [ 249.953692][ T27] audit: type=1326 audit(1743846623.797:1514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.2.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 249.976244][ T27] audit: type=1326 audit(1743846623.797:1515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7476 comm="syz.2.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d73d8d169 code=0x7ffc0000 [ 250.009174][ T7475] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 250.039052][ T7475] fscrypt (loop1, inode 2): Error -61 getting encryption context [ 250.073773][ T7489] loop2: detected capacity change from 0 to 164 [ 250.152742][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 250.444597][ T7489] syz.2.1164: attempt to access beyond end of device [ 250.444597][ T7489] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 250.479868][ T7489] syz.2.1164: attempt to access beyond end of device [ 250.479868][ T7489] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 250.509280][ T7506] IPv6: Can't replace route, no match found [ 250.766042][ T7514] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1175'. [ 251.011547][ T7520] device syzkaller0 entered promiscuous mode [ 251.620566][ T7537] loop2: detected capacity change from 0 to 512 [ 251.627646][ T7537] EXT4-fs: Ignoring removed bh option [ 251.690653][ T7537] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c018, mo2=0002] [ 251.700723][ T7537] System zones: 0-2, 18-18, 34-34 [ 251.718753][ T7537] EXT4-fs warning (device loop2): ext4_enable_quotas:7030: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 251.769084][ T7537] EXT4-fs (loop2): mount failed [ 254.816817][ T27] kauditd_printk_skb: 52 callbacks suppressed [ 254.816833][ T27] audit: type=1326 audit(1743846628.847:1567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.1.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 254.861167][ T7593] atomic_op ffff888057e46198 conn xmit_atomic 0000000000000000 [ 254.884755][ T27] audit: type=1326 audit(1743846628.877:1568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.1.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 254.915165][ T27] audit: type=1326 audit(1743846628.877:1569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.1.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 254.960391][ T27] audit: type=1326 audit(1743846628.877:1570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.1.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 255.013214][ T27] audit: type=1326 audit(1743846628.877:1571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.1.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 255.045752][ T27] audit: type=1326 audit(1743846628.877:1572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.1.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 255.103167][ T27] audit: type=1326 audit(1743846628.877:1573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.1.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 255.137894][ T27] audit: type=1326 audit(1743846628.877:1574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.1.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 255.183368][ T27] audit: type=1326 audit(1743846628.877:1575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.1.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 255.214369][ T27] audit: type=1326 audit(1743846628.877:1576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.1.1209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f5e8098d169 code=0x7ffc0000 [ 255.456413][ T7586] IPv6: Can't replace route, no match found [ 255.522300][ T7606] loop1: detected capacity change from 0 to 256 [ 255.538897][ T7606] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 255.683008][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.085790][ T7620] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1223'. [ 261.413359][ T7651] loop2: detected capacity change from 0 to 512 [ 261.438266][ T7651] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 261.482547][ T7651] EXT4-fs (loop2): orphan cleanup on readonly fs [ 261.489118][ T7651] EXT4-fs error (device loop2): ext4_quota_enable:6982: comm syz.2.1234: Bad quota inum: 64, type: 0 [ 261.558187][ T7661] smc: net device bond0 applied user defined pnetid SYZ2 [ 261.588253][ T7661] smc: net device bond0 erased user defined pnetid SYZ2 [ 261.596237][ T7651] EXT4-fs (loop2): Remounting filesystem read-only [ 261.602973][ T7651] EXT4-fs warning (device loop2): ext4_enable_quotas:7030: Failed to enable quota tracking (type=0, err=-117, ino=64). Please run e2fsck to fix. [ 261.617785][ T7651] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 261.625494][ T7651] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 263.054909][ T7683] IPVS: Error connecting to the multicast addr [ 264.609865][ T4251] EXT4-fs (loop2): unmounting filesystem. [ 264.870174][ T27] kauditd_printk_skb: 39 callbacks suppressed [ 264.870190][ T27] audit: type=1326 audit(1743846638.847:1616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 264.997752][ T27] audit: type=1326 audit(1743846638.847:1617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 265.095642][ T27] audit: type=1326 audit(1743846638.847:1618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 265.160768][ T27] audit: type=1326 audit(1743846638.847:1619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 265.249308][ T27] audit: type=1326 audit(1743846638.847:1620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 265.318343][ T27] audit: type=1326 audit(1743846638.847:1621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 265.377870][ T27] audit: type=1326 audit(1743846638.847:1622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 265.412950][ T27] audit: type=1326 audit(1743846638.847:1623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7701 comm="syz.0.1254" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 266.141729][ T27] audit: type=1326 audit(1743846640.177:1624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7735 comm="syz.3.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 266.210205][ T27] audit: type=1326 audit(1743846640.197:1625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7735 comm="syz.3.1268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 266.450664][ T7720] netlink: 'syz.4.1259': attribute type 3 has an invalid length. [ 266.487707][ T7720] netlink: 'syz.4.1259': attribute type 3 has an invalid length. [ 268.441467][ T7761] IPVS: Error connecting to the multicast addr [ 269.886649][ T27] kauditd_printk_skb: 23 callbacks suppressed [ 269.886666][ T27] audit: type=1326 audit(1743846643.917:1649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.3.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 270.086502][ T7794] siw: device registration error -23 [ 270.097413][ T27] audit: type=1326 audit(1743846644.127:1650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 270.159833][ T27] audit: type=1326 audit(1743846644.127:1651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 270.235938][ T7802] netlink: 'syz.4.1293': attribute type 13 has an invalid length. [ 270.254266][ T27] audit: type=1326 audit(1743846644.127:1652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 270.347872][ T27] audit: type=1326 audit(1743846644.127:1653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7796 comm="syz.0.1292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 270.399018][ T27] audit: type=1326 audit(1743846644.417:1654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.3.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 270.483040][ T27] audit: type=1326 audit(1743846644.417:1655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.3.1286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94f178d169 code=0x7ffc0000 [ 270.552947][ T7802] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 270.659237][ T7802] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 271.162414][ T7834] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 271.289593][ T7819] netlink: 'syz.1.1301': attribute type 3 has an invalid length. [ 271.307460][ T7819] netlink: 'syz.1.1301': attribute type 3 has an invalid length. [ 271.375294][ T7843] [ 271.377677][ T7843] ====================================================== [ 271.384707][ T7843] WARNING: possible circular locking dependency detected [ 271.391740][ T7843] 6.1.132-syzkaller #0 Not tainted [ 271.396860][ T7843] ------------------------------------------------------ [ 271.403891][ T7843] syz.4.1311/7843 is trying to acquire lock: [ 271.409881][ T7843] ffff888078e31450 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}, at: __flush_work+0xe5/0xad0 [ 271.421354][ T7843] [ 271.421354][ T7843] but task is already holding lock: [ 271.428742][ T7843] ffff888078e30130 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x22d/0x530 [ 271.437779][ T7843] [ 271.437779][ T7843] which lock already depends on the new lock. [ 271.437779][ T7843] [ 271.448214][ T7843] [ 271.448214][ T7843] the existing dependency chain (in reverse order) is: [ 271.457234][ T7843] [ 271.457234][ T7843] -> #1 (sk_lock-AF_SMC/1){+.+.}-{0:0}: [ 271.465020][ T7843] lock_acquire+0x1f8/0x5a0 [ 271.470068][ T7843] lock_sock_nested+0x44/0x100 [ 271.475358][ T7843] smc_listen_out+0x11b/0x3d0 [ 271.480556][ T7843] process_one_work+0x917/0x1260 [ 271.486015][ T7843] worker_thread+0xa47/0x1200 [ 271.491215][ T7843] kthread+0x28d/0x320 [ 271.495827][ T7843] ret_from_fork+0x1f/0x30 [ 271.500770][ T7843] [ 271.500770][ T7843] -> #0 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}: [ 271.510937][ T7843] validate_chain+0x1661/0x5950 [ 271.516306][ T7843] __lock_acquire+0x125b/0x1f80 [ 271.521691][ T7843] lock_acquire+0x1f8/0x5a0 [ 271.526728][ T7843] __flush_work+0xfe/0xad0 [ 271.531667][ T7843] __cancel_work_timer+0x519/0x6a0 [ 271.537297][ T7843] smc_clcsock_release+0x5e/0xe0 [ 271.542753][ T7843] __smc_release+0x678/0x7f0 [ 271.547860][ T7843] smc_close_non_accepted+0xd4/0x1e0 [ 271.553664][ T7843] smc_close_active+0xa75/0xe20 [ 271.559036][ T7843] __smc_release+0xa0/0x7f0 [ 271.564056][ T7843] smc_release+0x2d5/0x530 [ 271.568989][ T7843] sock_close+0xcd/0x230 [ 271.573757][ T7843] __fput+0x3f6/0x8d0 [ 271.578271][ T7843] task_work_run+0x246/0x300 [ 271.583419][ T7843] exit_to_user_mode_loop+0xde/0x100 [ 271.589228][ T7843] exit_to_user_mode_prepare+0xb1/0x140 [ 271.595294][ T7843] syscall_exit_to_user_mode+0x60/0x270 [ 271.601378][ T7843] do_syscall_64+0x47/0xb0 [ 271.606342][ T7843] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 271.612756][ T7843] [ 271.612756][ T7843] other info that might help us debug this: [ 271.612756][ T7843] [ 271.622975][ T7843] Possible unsafe locking scenario: [ 271.622975][ T7843] [ 271.630413][ T7843] CPU0 CPU1 [ 271.635769][ T7843] ---- ---- [ 271.641124][ T7843] lock(sk_lock-AF_SMC/1); [ 271.645632][ T7843] lock((work_completion)(&new_smc->smc_listen_work)); [ 271.655086][ T7843] lock(sk_lock-AF_SMC/1); [ 271.662114][ T7843] lock((work_completion)(&new_smc->smc_listen_work)); [ 271.669037][ T7843] [ 271.669037][ T7843] *** DEADLOCK *** [ 271.669037][ T7843] [ 271.677166][ T7843] 2 locks held by syz.4.1311/7843: [ 271.682264][ T7843] #0: ffff8880709f7410 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x98/0x230 [ 271.692458][ T7843] #1: ffff888078e30130 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x22d/0x530 [ 271.701860][ T7843] [ 271.701860][ T7843] stack backtrace: [ 271.707758][ T7843] CPU: 1 PID: 7843 Comm: syz.4.1311 Not tainted 6.1.132-syzkaller #0 [ 271.715817][ T7843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 271.725869][ T7843] Call Trace: [ 271.729145][ T7843] [ 271.732098][ T7843] dump_stack_lvl+0x1e3/0x2cb [ 271.736778][ T7843] ? nf_tcp_handle_invalid+0x647/0x647 [ 271.742243][ T7843] ? print_circular_bug+0x12b/0x1a0 [ 271.747449][ T7843] check_noncircular+0x2fa/0x3b0 [ 271.752398][ T7843] ? add_chain_block+0x850/0x850 [ 271.757334][ T7843] ? lockdep_lock+0x11f/0x2a0 [ 271.762019][ T7843] ? rcu_is_watching+0x11/0xb0 [ 271.766781][ T7843] ? _find_first_zero_bit+0xd0/0x100 [ 271.772066][ T7843] validate_chain+0x1661/0x5950 [ 271.776918][ T7843] ? deref_stack_reg+0x17c/0x210 [ 271.781873][ T7843] ? is_bpf_text_address+0x22/0x2a0 [ 271.787076][ T7843] ? __bfs+0x359/0x6e0 [ 271.791162][ T7843] ? reacquire_held_locks+0x660/0x660 [ 271.796533][ T7843] ? check_path+0x40/0x40 [ 271.800856][ T7843] ? noop_count+0x30/0x30 [ 271.805190][ T7843] ? __bfs+0x359/0x6e0 [ 271.809296][ T7843] ? look_up_lock_class+0x77/0x140 [ 271.814407][ T7843] ? register_lock_class+0x100/0x990 [ 271.819710][ T7843] ? check_path+0x21/0x40 [ 271.824038][ T7843] ? check_noncircular+0x1e3/0x3b0 [ 271.829149][ T7843] ? is_dynamic_key+0x260/0x260 [ 271.834008][ T7843] ? mark_lock+0x9a/0x340 [ 271.838337][ T7843] __lock_acquire+0x125b/0x1f80 [ 271.843218][ T7843] lock_acquire+0x1f8/0x5a0 [ 271.847732][ T7843] ? __flush_work+0xe5/0xad0 [ 271.852326][ T7843] ? read_lock_is_recursive+0x10/0x10 [ 271.857708][ T7843] ? reacquire_held_locks+0x660/0x660 [ 271.863088][ T7843] ? reacquire_held_locks+0x660/0x660 [ 271.868462][ T7843] ? reacquire_held_locks+0x660/0x660 [ 271.873856][ T7843] ? __flush_work+0xe5/0xad0 [ 271.878447][ T7843] __flush_work+0xfe/0xad0 [ 271.882866][ T7843] ? __flush_work+0xe5/0xad0 [ 271.887461][ T7843] ? flush_work+0x20/0x20 [ 271.891805][ T7843] ? print_irqtrace_events+0x210/0x210 [ 271.897274][ T7843] ? __cancel_work_timer+0x467/0x6a0 [ 271.902559][ T7843] __cancel_work_timer+0x519/0x6a0 [ 271.907670][ T7843] ? mark_lock+0x9a/0x340 [ 271.912033][ T7843] ? cancel_work_sync+0x20/0x20 [ 271.916884][ T7843] ? __smc_release+0x670/0x7f0 [ 271.921647][ T7843] ? __local_bh_enable_ip+0x164/0x1f0 [ 271.927059][ T7843] ? lockdep_hardirqs_on+0x94/0x130 [ 271.932274][ T7843] ? __local_bh_enable_ip+0x164/0x1f0 [ 271.937653][ T7843] ? __smc_release+0x670/0x7f0 [ 271.942411][ T7843] ? _local_bh_enable+0xa0/0xa0 [ 271.947264][ T7843] ? do_raw_spin_unlock+0x137/0x8a0 [ 271.952462][ T7843] smc_clcsock_release+0x5e/0xe0 [ 271.957399][ T7843] __smc_release+0x678/0x7f0 [ 271.962001][ T7843] smc_close_non_accepted+0xd4/0x1e0 [ 271.967293][ T7843] smc_close_active+0xa75/0xe20 [ 271.972142][ T7843] ? sock_no_sendpage_locked+0x1e0/0x1e0 [ 271.977792][ T7843] __smc_release+0xa0/0x7f0 [ 271.982299][ T7843] smc_release+0x2d5/0x530 [ 271.986728][ T7843] sock_close+0xcd/0x230 [ 271.990989][ T7843] ? sock_mmap+0x90/0x90 [ 271.995236][ T7843] __fput+0x3f6/0x8d0 [ 271.999228][ T7843] task_work_run+0x246/0x300 [ 272.003822][ T7843] ? task_work_cancel+0x2e0/0x2e0 [ 272.008858][ T7843] ? exit_to_user_mode_loop+0x39/0x100 [ 272.014316][ T7843] exit_to_user_mode_loop+0xde/0x100 [ 272.019615][ T7843] exit_to_user_mode_prepare+0xb1/0x140 [ 272.025159][ T7843] syscall_exit_to_user_mode+0x60/0x270 [ 272.030725][ T7843] do_syscall_64+0x47/0xb0 [ 272.035138][ T7843] ? clear_bhb_loop+0x45/0xa0 [ 272.039823][ T7843] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 272.045720][ T7843] RIP: 0033:0x7f24daf8d169 [ 272.050168][ T7843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 272.069781][ T7843] RSP: 002b:00007f24dbead038 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4 [ 272.078248][ T7843] RAX: 0000000000000000 RBX: 00007f24db1a5fa0 RCX: 00007f24daf8d169 [ 272.086219][ T7843] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: 0000000000000003 [ 272.094191][ T7843] RBP: 00007f24db00e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 272.102160][ T7843] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 272.110136][ T7843] R13: 0000000000000000 R14: 00007f24db1a5fa0 R15: 00007ffe36b8cc28 [ 272.118116][ T7843] [ 272.164345][ T27] audit: type=1326 audit(1743846646.197:1656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7844 comm="syz.0.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 272.215790][ T27] audit: type=1326 audit(1743846646.197:1657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7844 comm="syz.0.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000 [ 272.252264][ T27] audit: type=1326 audit(1743846646.197:1658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7844 comm="syz.0.1313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7faaf1f8d169 code=0x7ffc0000