last executing test programs: 5.200074361s ago: executing program 2 (id=627): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, 0x0) r1 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) readv(r1, &(0x7f00000018c0)=[{&(0x7f0000000840)=""/4096, 0x1000}], 0x1) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) 4.78286378s ago: executing program 4 (id=635): prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil) r0 = syz_open_procfs(0x0, &(0x7f0000000500)='environ\x00') r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) preadv(r0, &(0x7f0000001400)=[{0x0}], 0x1, 0x0, 0x0) 4.271942249s ago: executing program 2 (id=637): sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x14, 0x4, 0x6, 0x1000005, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) unshare(0x62040200) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, 0x0, 0x0) creat(&(0x7f0000000300)='./file0\x00', 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, 0x0, 0x0) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'}) 3.912723558s ago: executing program 3 (id=639): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) socket$l2tp(0x2, 0x2, 0x73) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0) 3.640046428s ago: executing program 4 (id=640): bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="0100000004000000e27f00000100000000000000", @ANYRES32, @ANYBLOB='\x00'/15, @ANYRES32=0x0], 0x48) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2004090, &(0x7f0000000540), 0x81, 0x7a5, &(0x7f0000000f80)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prctl$PR_GET_KEEPCAPS(0x7) socket$inet6_udp(0xa, 0x2, 0x0) sendto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_getparam(0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f00000006c0)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x14) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b0000000000000000000000000004f1f16c815c15e02f68a94e8f4384995503e45748e70b42af592b3091251470fe13f754591262f3778da48cce577bb9d2d59f04b9414f6171a927b43c47e3a10f"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70200001400f400b7030000000000008500000083000000bf09000000000000550901000000000095000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0) sendfile(r0, r0, 0x0, 0x7a680000) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000400000000000000000000850000005000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}}, 0x0) socket(0x10, 0x3, 0x0) 3.613877328s ago: executing program 3 (id=641): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10) pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) 3.563140377s ago: executing program 3 (id=642): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18) r1 = syz_usb_connect$hid(0x4, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x9da, 0x1a, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xf, 0xe0, 0x40, [{{0x9, 0x4, 0x0, 0x5a, 0x2, 0x3, 0x1, 0x2, 0x0, {0x9, 0x21, 0x2, 0xff, 0x1, {0x22, 0x5d7}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x7, 0xc4, 0x1a}}}}}]}}]}}, &(0x7f00000006c0)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x201, 0x3, 0x3, 0x13, 0x20, 0x4}, 0xed, &(0x7f00000003c0)={0x5, 0xf, 0xed, 0x4, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0xaa5b6623483a3fdb, 0xff, 0xe, 0xa17}, @generic={0xae, 0x10, 0x4, "71decab20be5d2a512ecf8aa89b3c0adc041294ffd41cb7e1d7ad80429472a59263edaf1db029c547a824854312aa716099518b383771da01c07e89a3452702b3fc455b0f48cd392267f3931e008ceed5a67d47d8db28040a2a108316697c5dad5d3a5c1123d70f92330490a0bd62ac9becd2423940f38b44fc029cc4cc722bbc560a71b786392626ba2b655321f96b64e055851ef16087f65f02579310b4d330500daba9e957480c0408f"}, @ssp_cap={0x10, 0x10, 0xa, 0x6, 0x1, 0x5, 0xf0f, 0x7, [0xff000f]}, @ssp_cap={0x20, 0x10, 0xa, 0x7, 0x5, 0xf132, 0xff0f, 0xd, [0xf, 0xf, 0x30, 0x0, 0xff3f0f]}]}, 0x4, [{0x7c, &(0x7f0000000580)=@string={0x7c, 0x3, "2d73d38bfdc6e26b186a3b77c7e4170ec367700857992c18ca7af2a38337190f41559311bb1f30916c39f138da72f340efd76d8c2de473261c6f12823e1fc522ae4f698e66799229ed61888d7ae28c186522ec8e9a545eb81ff9baea4dff4343b79f2df7a1aacdf20e2d5fb647b3a7eff19842a392569b1b78be"}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x42c}}, {0x0, 0x0}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x860}}]}) syz_usb_control_io(r1, &(0x7f0000000900)={0x2c, &(0x7f0000000740)={0x0, 0x6, 0xa8, {0xa8, 0x24, "34ccd2345adbbf730ee9bf4977bcc55f3013cc4ef6dc4451f0d581169ecd3379a79bf2a23c3f4f6b717600ade59a19a14de32ad719ebf7486cc7cb3466870d5321bfcb8df5c3f841ce00d31165b7e902325b09c6e45feabc73ec9c627145427d9bfc3dcadc066b2d075be3dd4f5820904a0a266887b8db769b1a19d3c1c6c52cd7ecf3c7a4784f6e879ea1e02ffe5d50882a70b9a9a08ca5123b5e0cfafb0e0651b31d2d4e68"}}, &(0x7f0000000800)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3009}}, 0x0, &(0x7f0000000880)={0x20, 0x29, 0xf, {0xf, 0x29, 0xff, 0x2, 0x7, 0x9, "ca2b6371", "cb3a3405"}}, 0x0}, 0x0) socket$inet6(0xa, 0x2, 0x0) r2 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x3c}}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(r2, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="000426bd7000fcdbdf250c0000003400098008ff08000100ffffff7f08000200d63c0000080001000400000008000100090000002c0101800d0001007564703a73797a3200000000380004001400010002004e23ac1e00010000000000000000200002000a004e227ffffffffc0000000000000000000000000000000100008008000300040a004e2000000009ff020000000000000000000000000001040000001400020002004e240000000000000000000000004c00028008000300ff0100000864907b1ed6f81fe0c24413a74f00040001040000080003000900000008000200f6000000080001001c000000080002"], 0x2d0}, 0x1, 0x0, 0x0, 0x2000c084}, 0x40) r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x822b01) write$char_usb(r4, &(0x7f0000000040)="e2", 0x12d8) userfaultfd(0x80001) 3.327843217s ago: executing program 2 (id=644): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000100)={'team0\x00', 0x0}) socket$nl_route(0x10, 0x3, 0x0) socket(0x2, 0x80805, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000400)='kfree\x00', r2}, 0x18) ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_raw(0xffffffffffffffff, &(0x7f0000000100)={0x1d, r3}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r1], 0x20}, 0x1, 0x0, 0x0, 0x80d5}, 0x0) 3.206250446s ago: executing program 0 (id=645): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x83}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) socket$packet(0x11, 0x3, 0x300) syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3) r2 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b7000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ustat(0x40, 0x0) pselect6(0x0, 0x0, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x8, 0x0, 0x0, 0x2, 0x7}, 0x0, 0x0) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000580)=""/67, 0x0, 0x8080000}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1ff) 2.630272095s ago: executing program 3 (id=646): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) 2.529907575s ago: executing program 4 (id=647): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r0, 0x0, 0x2}, 0x18) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/reserved_size', 0x80001, 0xd1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) io_setup(0x2, &(0x7f0000000200)=0x0) r5 = eventfd2(0x0, 0x0) io_getevents(r4, 0x2, 0x2, &(0x7f0000001340)=[{}, {}], 0x0) io_submit(r4, 0x1, &(0x7f00000009c0)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x4000, r3, 0x0, 0x0, 0x0, 0x0, 0x3, r5}]) io_submit(r4, 0x1, &(0x7f0000000200)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x268c, r2, 0x0, 0x0, 0x101, 0x0, 0x2, r2}]) 2.087346064s ago: executing program 3 (id=649): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x804, &(0x7f0000000700)={[{@shortname_win95}, {@shortname_lower}, {@utf8}, {@shortname_win95}, {@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'koi8-r'}}, {@rodir}, {@utf8no}, {@shortname_winnt}, {@fat=@codepage={'codepage', 0x3d, '775'}}, {@fat=@check_strict}, {@utf8no}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@shortname_win95}, {@shortname_winnt}]}, 0x1, 0x276, &(0x7f00000003c0)="$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") r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r3 = getpid() accept$inet(r2, 0x0, &(0x7f00000006c0)) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x2803, 0x0, 0x0, 0x0, &(0x7f0000000000)) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r6 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2) r7 = dup(r6) ioctl$USBDEVFS_CONTROL(r7, 0xc0185500, &(0x7f0000000240)={0x80, 0x6, 0x303, 0x0, 0x11, 0x0, 0x0}) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCVHANGUP(r8, 0x5437, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x14, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x6}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0x6}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x4}}, [@snprintf={{0x4, 0x0, 0x8, 0x6}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x2}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x6}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x6}, {}, {}, {0x18, 0x2, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x4}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @lirc_mode2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 1.998068934s ago: executing program 2 (id=650): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x3018012, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x3a1) rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) 1.800779374s ago: executing program 0 (id=651): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) socket$l2tp(0x2, 0x2, 0x73) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0) 1.572135873s ago: executing program 0 (id=652): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10) pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) 1.477794903s ago: executing program 2 (id=653): mkdir(0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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") syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000100)='./bus\x00', 0x2129c1b, 0x0, 0x4, 0x0, &(0x7f0000000100)) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0a000000020000000900000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095", @ANYRESDEC=r1], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = socket$kcm(0x21, 0x2, 0x2) creat(&(0x7f0000000000)='./bus\x00', 0x26) r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0) sendfile(r4, r3, 0x0, 0x3ffff) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r5}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendfile(r4, r3, 0x0, 0x7ffff000) open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x0) 1.297334522s ago: executing program 4 (id=654): sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x14, 0x4, 0x6, 0x1000005, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) unshare(0x62040200) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, 0x0, 0x0) creat(&(0x7f0000000300)='./file0\x00', 0x0) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, 0x0, 0x0) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'}) 1.171563192s ago: executing program 0 (id=656): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18) r1 = syz_usb_connect$hid(0x4, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x9da, 0x1a, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0xf, 0xe0, 0x40, [{{0x9, 0x4, 0x0, 0x5a, 0x2, 0x3, 0x1, 0x2, 0x0, {0x9, 0x21, 0x2, 0xff, 0x1, {0x22, 0x5d7}}, {{{0x9, 0x5, 0x81, 0x3, 0x8, 0x7, 0xc4, 0x1a}}}}}]}}]}}, &(0x7f00000006c0)={0xa, &(0x7f0000000240)={0xa, 0x6, 0x201, 0x3, 0x3, 0x13, 0x20, 0x4}, 0xed, &(0x7f00000003c0)={0x5, 0xf, 0xed, 0x4, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0xaa5b6623483a3fdb, 0xff, 0xe, 0xa17}, @generic={0xae, 0x10, 0x4, "71decab20be5d2a512ecf8aa89b3c0adc041294ffd41cb7e1d7ad80429472a59263edaf1db029c547a824854312aa716099518b383771da01c07e89a3452702b3fc455b0f48cd392267f3931e008ceed5a67d47d8db28040a2a108316697c5dad5d3a5c1123d70f92330490a0bd62ac9becd2423940f38b44fc029cc4cc722bbc560a71b786392626ba2b655321f96b64e055851ef16087f65f02579310b4d330500daba9e957480c0408f"}, @ssp_cap={0x10, 0x10, 0xa, 0x6, 0x1, 0x5, 0xf0f, 0x7, [0xff000f]}, @ssp_cap={0x20, 0x10, 0xa, 0x7, 0x5, 0xf132, 0xff0f, 0xd, [0xf, 0xf, 0x30, 0x0, 0xff3f0f]}]}, 0x4, [{0x7c, &(0x7f0000000580)=@string={0x7c, 0x3, "2d73d38bfdc6e26b186a3b77c7e4170ec367700857992c18ca7af2a38337190f41559311bb1f30916c39f138da72f340efd76d8c2de473261c6f12823e1fc522ae4f698e66799229ed61888d7ae28c186522ec8e9a545eb81ff9baea4dff4343b79f2df7a1aacdf20e2d5fb647b3a7eff19842a392569b1b78be"}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x42c}}, {0x0, 0x0}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x860}}]}) syz_usb_control_io(r1, &(0x7f0000000900)={0x2c, &(0x7f0000000740)={0x0, 0x6, 0xa8, {0xa8, 0x24, "34ccd2345adbbf730ee9bf4977bcc55f3013cc4ef6dc4451f0d581169ecd3379a79bf2a23c3f4f6b717600ade59a19a14de32ad719ebf7486cc7cb3466870d5321bfcb8df5c3f841ce00d31165b7e902325b09c6e45feabc73ec9c627145427d9bfc3dcadc066b2d075be3dd4f5820904a0a266887b8db769b1a19d3c1c6c52cd7ecf3c7a4784f6e879ea1e02ffe5d50882a70b9a9a08ca5123b5e0cfafb0e0651b31d2d4e68"}}, &(0x7f0000000800)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3009}}, 0x0, &(0x7f0000000880)={0x20, 0x29, 0xf, {0xf, 0x29, 0xff, 0x2, 0x7, 0x9, "ca2b6371", "cb3a3405"}}, 0x0}, 0x0) socket$inet6(0xa, 0x2, 0x0) r2 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000540)=ANY=[], 0x3c}}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(r2, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) fsetxattr$trusted_overlay_redirect(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=ANY=[@ANYBLOB="000426bd7000fcdbdf250c0000003400098008ff08000100ffffff7f08000200d63c0000080001000400000008000100090000002c0101800d0001007564703a73797a3200000000380004001400010002004e23ac1e00010000000000000000200002000a004e227ffffffffc0000000000000000000000000000000100008008000300040a004e2000000009ff020000000000000000000000000001040000001400020002004e240000000000000000000000004c00028008000300ff0100000864907b1ed6f81fe0c24413a74f00040001040000080003000900000008000200f6000000080001001c000000080002"], 0x2d0}, 0x1, 0x0, 0x0, 0x2000c084}, 0x40) r4 = syz_open_dev$evdev(&(0x7f0000000000), 0x2, 0x822b01) write$char_usb(r4, &(0x7f0000000040)="e2", 0x12d8) userfaultfd(0x80001) 1.146713842s ago: executing program 1 (id=657): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r0}, 0x10) utimes(0x0, 0x0) 896.077102ms ago: executing program 1 (id=658): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) connect$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0x4e22, 0x7ff, @dev={0xfe, 0x80, '\x00', 0x14}, 0x7}, 0x1c) setsockopt$inet6_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4) shutdown(0xffffffffffffffff, 0x2) 852.229782ms ago: executing program 1 (id=659): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_pidfd_open(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r2, &(0x7f0000002300)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x4000000}, [@NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x201, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x9}], {0x14}}, 0x7c}}, 0x0) 687.572011ms ago: executing program 1 (id=660): socket$nl_route(0x10, 0x3, 0x0) r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x101301) ioctl$USBDEVFS_DROP_PRIVILEGES(r0, 0x4004551e, &(0x7f00000000c0)) ioctl$USBDEVFS_CONNECTINFO(r0, 0x8108551b, &(0x7f0000002a40)) 664.590841ms ago: executing program 3 (id=661): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x83}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) socket$packet(0x11, 0x3, 0x300) syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3) r2 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b7000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ustat(0x40, 0x0) pselect6(0x0, 0x0, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x8, 0x0, 0x0, 0x2, 0x7}, 0x0, 0x0) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000580)=""/67, 0x0, 0x8080000}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x0, 0x0}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1ff) 620.122721ms ago: executing program 4 (id=662): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) socket$l2tp(0x2, 0x2, 0x73) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0) 543.611321ms ago: executing program 1 (id=663): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x3018012, &(0x7f0000000080), 0x1, 0x549, &(0x7f0000001800)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x3a1) rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) 490.856581ms ago: executing program 4 (id=664): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r0, 0x0, 0x2}, 0x18) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/reserved_size', 0x80001, 0xd1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) io_setup(0x2, &(0x7f0000000200)=0x0) r5 = eventfd2(0x0, 0x0) io_getevents(r4, 0x2, 0x2, &(0x7f0000001340)=[{}, {}], 0x0) io_submit(r4, 0x1, &(0x7f00000009c0)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x4000, r3, 0x0, 0x0, 0x0, 0x0, 0x3, r5}]) io_submit(r4, 0x1, &(0x7f0000000200)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x268c, r2, 0x0, 0x0, 0x101, 0x0, 0x2, r2}]) 451.70041ms ago: executing program 2 (id=665): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]}) sendmsg$AUDIT_USER_AVC(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000"], 0x14}}, 0x0) shmget$private(0x0, 0x1000, 0x800, &(0x7f0000ffc000/0x1000)=nil) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r5 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r4, &(0x7f0000000280)={@val={0x6f01, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x20}, @mpls={[], @ipv4=@tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x5, 0x5, 0x0, 0x0, 0x0, 0x18}}}}}, 0x36) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRESHEX=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000300)='kfree\x00', r7}, 0x18) r8 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r8, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newsa={0x158, 0x10, 0x713, 0x70bd28, 0x0, {{@in=@local, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x2, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x84, 0x0, 0xffffffffffffffff}, {@in6=@mcast1, 0x0, 0x32}, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {0x0, 0x0, 0x8, 0x100000001, 0x6}, {0x0, 0x0, 0x2, 0xfffffffffffffffc}, {0xc}, 0x70bd28, 0x0, 0x2}, [@algo_aead={0x68, 0x12, {{'rfc4543(gcm(aes))\x00'}, 0xe0, 0x80, "316f74eeac053deb73fc018493cc121927a9bca207141b9a451c00aa"}}]}, 0x158}, 0x1, 0x0, 0x0, 0xc0}, 0x0) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095", @ANYBLOB="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"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r9, 0x0, 0x400}, 0x18) futex_waitv(0x0, 0x0, 0x0, 0x0, 0x1) 258.50549ms ago: executing program 0 (id=666): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10) pwritev(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) 130.5916ms ago: executing program 1 (id=667): bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x258, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) setsockopt$sock_int(r1, 0x1, 0x8, 0x0, 0x0) getpid() syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), 0xffffffffffffffff) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r3) socket(0x2b, 0x1, 0x1) bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r3, 0x0) r4 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) close(r3) 0s ago: executing program 0 (id=668): bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0), 0x83, 0x4bc, &(0x7f0000000a40)="$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") sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) preadv2(0xffffffffffffffff, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x2, 0x0, 0x0, 0x0) kernel console output (not intermixed with test programs): avoid problems! [ 75.498823][ T4333] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 75.513904][ T4248] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 75.525611][ T4307] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.551730][ T4307] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.551853][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 75.574639][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 75.584035][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 75.593775][ T4333] EXT4-fs error (device loop4): ext4_quota_enable:6986: comm syz.4.5: inode #167772160: comm syz.4.5: iget: illegal inode # [ 75.599312][ T4248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 75.617256][ T4248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 75.627326][ T4248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 75.628265][ T4333] EXT4-fs error (device loop4): ext4_quota_enable:6989: comm syz.4.5: Bad quota inode: 167772160, type: 2 [ 75.638560][ T4248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 75.659389][ T4248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 75.670542][ T4248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 75.674558][ T4333] EXT4-fs warning (device loop4): ext4_enable_quotas:7030: Failed to enable quota tracking (type=2, err=-117, ino=167772160). Please run e2fsck to fix. [ 75.680671][ T4248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 75.680689][ T4248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 75.682258][ T4248] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 75.722661][ T4333] EXT4-fs (loop4): mount failed [ 75.750193][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 75.758682][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.768414][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 75.773229][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.781734][ T4248] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.800833][ T4248] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.811339][ T4248] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.823950][ T4248] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 75.842627][ T4300] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.853710][ T4300] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.884157][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 75.913125][ T4334] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 76.109898][ T4334] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.149355][ T4334] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.184985][ T4340] loop0: detected capacity change from 0 to 4096 [ 76.228512][ T4307] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 76.269127][ T4307] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 76.312374][ T4340] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 76.332775][ T4307] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 76.449866][ T4346] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT [ 76.959929][ T4348] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 76.987460][ T4266] Bluetooth: hci2: command 0x0419 tx timeout [ 77.833689][ T4333] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5'. [ 77.881316][ T4330] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 77.972510][ T4361] loop3: detected capacity change from 0 to 8192 [ 78.117390][ C0] sched: RT throttling activated [ 78.118886][ T48] Bluetooth: hci3: command 0x0419 tx timeout [ 78.130507][ T4266] Bluetooth: hci0: command 0x0419 tx timeout [ 78.136519][ T4266] Bluetooth: hci4: command 0x0419 tx timeout [ 78.143366][ T4263] Bluetooth: hci1: command 0x0419 tx timeout [ 78.149615][ T4330] usb 2-1: Using ep0 maxpacket: 8 [ 78.173579][ T4330] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 78.187427][ T4330] usb 2-1: New USB device found, idVendor=05ac, idProduct=025a, bcdDevice= 0.00 [ 78.196717][ T4330] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 78.218238][ T4330] usb 2-1: config 0 descriptor?? [ 78.370072][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 78.535771][ T4363] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 78.659359][ T4330] apple 0003:05AC:025A.0001: hidraw0: USB HID v0.00 Device [HID 05ac:025a] on usb-dummy_hcd.1-1/input0 [ 78.895543][ T4250] usb 2-1: USB disconnect, device number 2 [ 79.017010][ T4375] syz.0.12 uses obsolete (PF_INET,SOCK_PACKET) [ 79.056133][ T4363] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.267762][ T4363] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.396947][ T4363] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 79.550005][ T4363] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.752065][ T4363] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.932110][ T4392] loop0: detected capacity change from 0 to 164 [ 79.952721][ T4363] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 79.962537][ T4391] loop4: detected capacity change from 0 to 512 [ 80.019192][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 80.033145][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 80.041998][ T0] NOHZ tick-stop error: local softirq work is pending, handler #12!!! [ 80.050379][ T0] NOHZ tick-stop error: local softirq work is pending, handler #12!!! [ 80.059963][ T0] NOHZ tick-stop error: local softirq work is pending, handler #92!!! [ 80.069117][ T0] NOHZ tick-stop error: local softirq work is pending, handler #192!!! [ 80.184128][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 80.193550][ T0] NOHZ tick-stop error: local softirq work is pending, handler #212!!! [ 80.202226][ T0] NOHZ tick-stop error: local softirq work is pending, handler #292!!! [ 80.211088][ T0] NOHZ tick-stop error: local softirq work is pending, handler #292!!! [ 80.233813][ T4363] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 80.239403][ T4392] ISOFS: unable to read i-node block [ 80.245379][ T4391] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 80.268396][ T4392] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 80.287834][ T4391] EXT4-fs (loop4): couldn't mount as ext3 due to feature incompatibilities [ 80.556932][ T4404] loop3: detected capacity change from 0 to 512 [ 80.693309][ T4404] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.23: bg 0: block 248: padding at end of block bitmap is not set [ 80.839095][ T4404] Quota error (device loop3): write_blk: dquota write failed [ 80.887701][ T4404] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 80.906530][ T4404] EXT4-fs error (device loop3): ext4_acquire_dquot:6795: comm syz.3.23: Failed to acquire dquot type 1 [ 80.970034][ T4404] EXT4-fs (loop3): 1 truncate cleaned up [ 80.985166][ T4404] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 81.020857][ T4404] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 81.141698][ T4404] syz.3.23 (4404) used greatest stack depth: 19416 bytes left [ 81.178585][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 81.298608][ T14] cfg80211: failed to load regulatory.db [ 81.305281][ T4436] loop2: detected capacity change from 0 to 164 [ 81.343131][ T4436] ISOFS: unable to read i-node block [ 81.387088][ T4436] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 81.777940][ T4443] loop1: detected capacity change from 0 to 512 [ 81.797343][ T4443] EXT4-fs: Ignoring removed i_version option [ 81.812718][ T27] audit: type=1326 audit(1738888645.901:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4438 comm="syz.1.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 82.050078][ T4443] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 82.063302][ T4443] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 82.131234][ T27] audit: type=1326 audit(1738888645.901:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4438 comm="syz.1.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 82.154070][ T27] audit: type=1326 audit(1738888645.911:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4438 comm="syz.1.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 82.198589][ T4443] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2809: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 82.207527][ T27] audit: type=1326 audit(1738888645.921:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4438 comm="syz.1.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 82.211859][ T4443] EXT4-fs (loop1): 1 truncate cleaned up [ 82.239800][ T4443] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 82.270499][ T4447] loop3: detected capacity change from 0 to 512 [ 82.288041][ T4447] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 82.293892][ T27] audit: type=1326 audit(1738888645.921:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4438 comm="syz.1.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 82.326279][ T27] audit: type=1326 audit(1738888645.921:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4438 comm="syz.1.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 82.354709][ T27] audit: type=1326 audit(1738888645.921:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4438 comm="syz.1.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc18818ce23 code=0x7ffc0000 [ 82.479251][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 82.541896][ T27] audit: type=1326 audit(1738888645.941:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4438 comm="syz.1.33" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc18818b89f code=0x7ffc0000 [ 82.612238][ T4447] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 82.750575][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 82.888397][ T4473] loop0: detected capacity change from 0 to 512 [ 82.958572][ T4473] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.44: bg 0: block 248: padding at end of block bitmap is not set [ 83.037169][ T4482] loop3: detected capacity change from 0 to 2048 [ 83.044733][ T4482] EXT4-fs: Ignoring removed mblk_io_submit option [ 83.060761][ T4473] EXT4-fs error (device loop0): ext4_acquire_dquot:6795: comm syz.0.44: Failed to acquire dquot type 1 [ 83.099525][ T4482] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 83.113712][ T4473] EXT4-fs (loop0): 1 truncate cleaned up [ 83.167208][ T4473] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 83.283814][ T4473] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 84.023464][ T4473] syz.0.44 (4473) used greatest stack depth: 19352 bytes left [ 84.066320][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 84.080437][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 84.461691][ T4510] loop2: detected capacity change from 0 to 512 [ 84.472179][ T4510] EXT4-fs: Ignoring removed i_version option [ 84.657000][ T4510] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 84.762651][ T4510] EXT4-fs (loop2): 1 truncate cleaned up [ 84.768546][ T4510] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 85.043373][ T4509] loop3: detected capacity change from 0 to 512 [ 85.133291][ T4509] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 85.175805][ T4509] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 85.179141][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 85.354042][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 85.596923][ T4528] loop4: detected capacity change from 0 to 2048 [ 85.665475][ T4535] loop1: detected capacity change from 0 to 512 [ 85.735889][ T4535] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.65: bg 0: block 248: padding at end of block bitmap is not set [ 85.743114][ T4537] loop0: detected capacity change from 0 to 2048 [ 85.757326][ T4537] EXT4-fs: Ignoring removed mblk_io_submit option [ 85.818078][ T4537] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 85.835228][ T4543] loop2: detected capacity change from 0 to 2048 [ 85.843676][ T4535] EXT4-fs error (device loop1): ext4_acquire_dquot:6795: comm syz.1.65: Failed to acquire dquot type 1 [ 85.856408][ T4528] netlink: 4 bytes leftover after parsing attributes in process `syz.4.63'. [ 85.865530][ T4528] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 85.873215][ T4528] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 85.875361][ T4543] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 85.890058][ T4528] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 85.898432][ T4535] EXT4-fs (loop1): 1 truncate cleaned up [ 85.904132][ T4535] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 85.921575][ T4535] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 85.944528][ T4528] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 87.149849][ T27] kauditd_printk_skb: 70 callbacks suppressed [ 87.167660][ T27] audit: type=1326 audit(1738888650.430:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4536 comm="syz.0.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 87.476340][ T4461] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set [ 87.511881][ T4532] syz.4.63: attempt to access beyond end of device [ 87.511881][ T4532] loop4: rw=0, sector=1552, nr_sectors = 512 limit=2048 [ 87.535826][ T27] audit: type=1326 audit(1738888650.430:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4536 comm="syz.0.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 87.568506][ T4461] EXT4-fs (loop0): Remounting filesystem read-only [ 87.628978][ T27] audit: type=1326 audit(1738888650.440:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4536 comm="syz.0.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 87.660182][ T27] audit: type=1326 audit(1738888650.440:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4536 comm="syz.0.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 87.665991][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 87.689717][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 87.696600][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 87.698680][ T27] audit: type=1326 audit(1738888650.440:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4536 comm="syz.0.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 87.734446][ T27] audit: type=1326 audit(1738888650.440:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4536 comm="syz.0.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 87.764333][ T27] audit: type=1326 audit(1738888650.440:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4536 comm="syz.0.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 87.791795][ T27] audit: type=1326 audit(1738888650.440:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4536 comm="syz.0.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 87.890518][ T27] audit: type=1326 audit(1738888650.450:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4536 comm="syz.0.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 88.142195][ T27] audit: type=1326 audit(1738888651.360:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4536 comm="syz.0.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 88.166209][ T4563] loop2: detected capacity change from 0 to 4096 [ 88.204093][ T4563] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 88.337103][ T4567] loop1: detected capacity change from 0 to 512 [ 88.350870][ T4567] EXT4-fs: Ignoring removed i_version option [ 88.476357][ T4567] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 88.655557][ T4567] EXT4-fs (loop1): 1 truncate cleaned up [ 88.661706][ T4567] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 88.956351][ T4572] loop3: detected capacity change from 0 to 512 [ 88.965242][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 89.012173][ T4572] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 89.078236][ T4572] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 89.312083][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 89.339396][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 89.535623][ T4589] loop4: detected capacity change from 0 to 2048 [ 89.595952][ T4597] loop2: detected capacity change from 0 to 2048 [ 89.626163][ T4589] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 89.634573][ T4596] loop0: detected capacity change from 0 to 512 [ 89.651463][ T4597] EXT4-fs: Ignoring removed mblk_io_submit option [ 89.812198][ T4596] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.84: bg 0: block 248: padding at end of block bitmap is not set [ 89.905685][ T4597] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 89.917696][ T4596] EXT4-fs error (device loop0): ext4_acquire_dquot:6795: comm syz.0.84: Failed to acquire dquot type 1 [ 91.233592][ T4596] EXT4-fs (loop0): 1 truncate cleaned up [ 91.250049][ T4596] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 91.267667][ T4596] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 91.871484][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 91.878040][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 92.124452][ T4620] loop1: detected capacity change from 0 to 512 [ 92.135067][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 92.227478][ T4620] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 92.312691][ T4620] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 92.418678][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 92.567107][ T4627] loop4: detected capacity change from 0 to 4096 [ 92.625823][ T4627] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 92.791847][ T4640] loop3: detected capacity change from 0 to 2048 [ 92.887642][ T4640] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 92.941882][ T4644] loop1: detected capacity change from 0 to 164 [ 93.058473][ T4644] ISOFS: unable to read i-node block [ 93.071093][ T4644] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 93.220349][ T4649] loop2: detected capacity change from 0 to 2048 [ 93.319990][ T4649] EXT4-fs: Ignoring removed mblk_io_submit option [ 93.733719][ T4649] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 93.820109][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 93.827298][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 93.942830][ T4661] loop0: detected capacity change from 0 to 512 [ 94.004598][ T4661] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 94.175225][ T27] kauditd_printk_skb: 56 callbacks suppressed [ 94.175372][ T27] audit: type=1326 audit(1738888658.366:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4647 comm="syz.2.100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 94.381326][ T4661] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 94.518762][ T27] audit: type=1326 audit(1738888658.366:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4647 comm="syz.2.100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 94.586090][ T4669] loop3: detected capacity change from 0 to 2048 [ 94.622190][ T27] audit: type=1326 audit(1738888658.366:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4647 comm="syz.2.100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 94.644660][ T27] audit: type=1326 audit(1738888658.366:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4647 comm="syz.2.100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 94.648211][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 94.673381][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 94.678539][ T27] audit: type=1326 audit(1738888658.366:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4647 comm="syz.2.100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 94.701360][ T27] audit: type=1326 audit(1738888658.366:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4647 comm="syz.2.100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 94.725880][ T27] audit: type=1326 audit(1738888658.376:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4647 comm="syz.2.100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 94.753127][ T27] audit: type=1326 audit(1738888658.376:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4647 comm="syz.2.100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 94.817772][ T4669] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 94.844599][ T27] audit: type=1326 audit(1738888658.376:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4647 comm="syz.2.100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 95.042727][ T27] audit: type=1326 audit(1738888658.386:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4647 comm="syz.2.100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 95.166148][ T4684] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 95.182211][ T4684] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 95.194848][ T4684] EXT4-fs (loop3): This should not happen!! Data will be lost [ 95.194848][ T4684] [ 95.204608][ T4684] EXT4-fs (loop3): Total free blocks count 0 [ 95.210684][ T4684] EXT4-fs (loop3): Free/Dirty block details [ 95.216674][ T4684] EXT4-fs (loop3): free_blocks=2415919104 [ 95.222549][ T4684] EXT4-fs (loop3): dirty_blocks=48 [ 95.228123][ T4684] EXT4-fs (loop3): Block reservation details [ 95.234154][ T4684] EXT4-fs (loop3): i_reserved_data_blocks=3 [ 95.271026][ T4684] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 95.811912][ T4687] netlink: 'syz.1.111': attribute type 3 has an invalid length. [ 95.900516][ T4694] loop0: detected capacity change from 0 to 164 [ 95.936648][ T4694] ISOFS: unable to read i-node block [ 95.961958][ T4694] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 96.011070][ T4693] loop2: detected capacity change from 0 to 4096 [ 96.058390][ T4693] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 96.141651][ T4700] loop1: detected capacity change from 0 to 2048 [ 96.253737][ T4700] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 97.003277][ T4713] loop4: detected capacity change from 0 to 512 [ 97.056443][ T4713] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 97.173901][ T4713] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 97.232844][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 97.239480][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 97.280348][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 97.549806][ T4724] loop4: detected capacity change from 0 to 2048 [ 97.651083][ T4724] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 97.660654][ T4734] netlink: 'syz.2.127': attribute type 3 has an invalid length. [ 97.762410][ T4735] loop1: detected capacity change from 0 to 512 [ 97.773298][ T4735] EXT4-fs: Ignoring removed i_version option [ 98.477746][ T4735] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 98.632512][ T4735] EXT4-fs (loop1): 1 truncate cleaned up [ 98.638408][ T4735] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 98.713630][ T4738] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 98.728984][ T4738] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 98.741397][ T4738] EXT4-fs (loop4): This should not happen!! Data will be lost [ 98.741397][ T4738] [ 98.751098][ T4738] EXT4-fs (loop4): Total free blocks count 0 [ 98.757143][ T4738] EXT4-fs (loop4): Free/Dirty block details [ 98.763102][ T4738] EXT4-fs (loop4): free_blocks=2415919104 [ 98.768892][ T4738] EXT4-fs (loop4): dirty_blocks=48 [ 98.774048][ T4738] EXT4-fs (loop4): Block reservation details [ 98.780092][ T4738] EXT4-fs (loop4): i_reserved_data_blocks=3 [ 98.840871][ T4738] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 99.038684][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 99.992770][ T4750] process 'syz.3.133' launched './file0' with NULL argv: empty string added [ 102.214156][ T4758] loop3: detected capacity change from 0 to 512 [ 102.248160][ T4758] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 102.286715][ T4758] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 102.379148][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 102.542033][ T4777] netlink: 'syz.3.139': attribute type 3 has an invalid length. [ 102.618424][ T4775] loop4: detected capacity change from 0 to 2048 [ 102.770789][ T4775] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 102.880352][ T4786] loop0: detected capacity change from 0 to 512 [ 102.891509][ T4786] EXT4-fs: Ignoring removed i_version option [ 102.908490][ T4786] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 102.967783][ T27] kauditd_printk_skb: 26 callbacks suppressed [ 102.967881][ T27] audit: type=1326 audit(1738888667.062:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4776 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 103.251055][ T27] audit: type=1326 audit(1738888667.062:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4776 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 103.269554][ T4786] EXT4-fs (loop0): 1 truncate cleaned up [ 103.279108][ T4786] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 103.340312][ T27] audit: type=1326 audit(1738888667.072:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4776 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 103.659012][ T4791] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 103.659217][ T4791] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 103.659258][ T4791] EXT4-fs (loop4): This should not happen!! Data will be lost [ 103.659258][ T4791] [ 103.659273][ T4791] EXT4-fs (loop4): Total free blocks count 0 [ 103.659286][ T4791] EXT4-fs (loop4): Free/Dirty block details [ 103.659300][ T4791] EXT4-fs (loop4): free_blocks=2415919104 [ 103.659315][ T4791] EXT4-fs (loop4): dirty_blocks=48 [ 103.659328][ T4791] EXT4-fs (loop4): Block reservation details [ 103.659339][ T4791] EXT4-fs (loop4): i_reserved_data_blocks=3 [ 103.661951][ T4791] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 104.272786][ T27] audit: type=1326 audit(1738888667.080:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4776 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 104.272824][ T27] audit: type=1326 audit(1738888667.080:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4776 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 104.272852][ T27] audit: type=1326 audit(1738888667.080:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4776 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 104.272881][ T27] audit: type=1326 audit(1738888667.080:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4776 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f3f50b8ce23 code=0x7ffc0000 [ 104.272910][ T27] audit: type=1326 audit(1738888667.080:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4776 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f3f50b8b89f code=0x7ffc0000 [ 104.272939][ T27] audit: type=1326 audit(1738888667.090:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4776 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f3f50b8ce77 code=0x7ffc0000 [ 104.272968][ T27] audit: type=1326 audit(1738888667.100:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4776 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3f50b8b750 code=0x7ffc0000 [ 105.218421][ C1] vkms_vblank_simulate: vblank timer overrun [ 105.410107][ T4805] loop1: detected capacity change from 0 to 512 [ 105.500350][ C1] vkms_vblank_simulate: vblank timer overrun [ 105.532426][ C1] vkms_vblank_simulate: vblank timer overrun [ 105.535188][ T4805] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 105.753586][ T4805] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 106.280751][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 106.319146][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 107.648943][ T4830] netlink: 'syz.0.156': attribute type 3 has an invalid length. [ 107.877497][ T4834] loop1: detected capacity change from 0 to 512 [ 107.883537][ T4834] EXT4-fs: Ignoring removed i_version option [ 107.922142][ T4834] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 108.049836][ T4834] EXT4-fs (loop1): 1 truncate cleaned up [ 108.049909][ T4834] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 108.071223][ T27] kauditd_printk_skb: 27 callbacks suppressed [ 108.071258][ T27] audit: type=1326 audit(1738888672.278:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4828 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc18818b750 code=0x7ffc0000 [ 108.071721][ T27] audit: type=1326 audit(1738888672.278:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4828 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7fc18818bb37 code=0x7ffc0000 [ 108.072088][ T27] audit: type=1326 audit(1738888672.278:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4828 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc18818b750 code=0x7ffc0000 [ 108.072311][ T27] audit: type=1326 audit(1738888672.278:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4828 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc18818c9eb code=0x7ffc0000 [ 108.072498][ T27] audit: type=1326 audit(1738888672.278:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4828 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fc18818ba4a code=0x7ffc0000 [ 108.072625][ T27] audit: type=1326 audit(1738888672.278:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4828 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 108.072847][ T27] audit: type=1326 audit(1738888672.288:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4828 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 108.073023][ T27] audit: type=1326 audit(1738888672.298:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4828 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=316 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 108.108206][ T27] audit: type=1326 audit(1738888672.308:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4828 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 108.108374][ T27] audit: type=1326 audit(1738888672.308:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4828 comm="syz.1.155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 108.504368][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 108.577081][ T4838] loop4: detected capacity change from 0 to 2048 [ 108.731171][ C0] vkms_vblank_simulate: vblank timer overrun [ 108.749647][ T4838] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 110.505682][ T4850] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 110.507346][ T4850] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 110.737141][ T4850] EXT4-fs (loop4): This should not happen!! Data will be lost [ 110.737141][ T4850] [ 110.747229][ T4850] EXT4-fs (loop4): Total free blocks count 0 [ 110.753251][ T4850] EXT4-fs (loop4): Free/Dirty block details [ 110.759163][ T4850] EXT4-fs (loop4): free_blocks=2415919104 [ 110.764877][ T4850] EXT4-fs (loop4): dirty_blocks=48 [ 110.770030][ T4850] EXT4-fs (loop4): Block reservation details [ 110.776018][ T4850] EXT4-fs (loop4): i_reserved_data_blocks=3 [ 110.911132][ T4348] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 110.951359][ T4855] loop2: detected capacity change from 0 to 512 [ 111.025325][ T4855] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 111.134643][ T4855] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 112.060605][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 112.399941][ T4886] loop0: detected capacity change from 0 to 512 [ 112.440211][ T4886] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.172: inode #1: comm syz.0.172: iget: illegal inode # [ 112.483138][ T4886] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.172: error while reading EA inode 1 err=-117 [ 112.524523][ T4886] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.172: inode #1: comm syz.0.172: iget: illegal inode # [ 112.556499][ T4886] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.172: error while reading EA inode 1 err=-117 [ 112.573844][ T4891] loop1: detected capacity change from 0 to 2048 [ 112.576621][ T4886] EXT4-fs (loop0): 1 orphan inode deleted [ 112.586482][ T4886] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 112.640195][ T4886] EXT4-fs error (device loop0): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.0.172: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0 [ 112.688850][ T4891] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 112.730212][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 113.007240][ T4897] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 113.022487][ T4897] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 113.034909][ T4897] EXT4-fs (loop1): This should not happen!! Data will be lost [ 113.034909][ T4897] [ 113.044646][ T4897] EXT4-fs (loop1): Total free blocks count 0 [ 113.050716][ T4897] EXT4-fs (loop1): Free/Dirty block details [ 113.056658][ T4897] EXT4-fs (loop1): free_blocks=2415919104 [ 113.062447][ T4897] EXT4-fs (loop1): dirty_blocks=48 [ 113.067626][ T4897] EXT4-fs (loop1): Block reservation details [ 113.073646][ T4897] EXT4-fs (loop1): i_reserved_data_blocks=3 [ 113.105174][ T4897] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 113.786334][ T4903] loop0: detected capacity change from 0 to 512 [ 113.844682][ T4903] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 114.020341][ T4903] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 114.258349][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 114.856805][ T4932] loop1: detected capacity change from 0 to 2048 [ 114.883858][ T4940] netlink: 'syz.0.188': attribute type 3 has an invalid length. [ 115.007492][ T4932] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 115.186550][ T4951] sg_write: data in/out 808464396/120 bytes for SCSI command 0x0-- guessing data in; [ 115.186550][ T4951] program syz.0.192 not setting count and/or reply_len properly [ 115.203849][ C0] vkms_vblank_simulate: vblank timer overrun [ 115.332270][ T4953] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 115.347509][ T4953] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 115.359925][ T4953] EXT4-fs (loop1): This should not happen!! Data will be lost [ 115.359925][ T4953] [ 115.369623][ T4953] EXT4-fs (loop1): Total free blocks count 0 [ 115.375695][ T4953] EXT4-fs (loop1): Free/Dirty block details [ 115.381703][ T4953] EXT4-fs (loop1): free_blocks=2415919104 [ 115.387492][ T4953] EXT4-fs (loop1): dirty_blocks=48 [ 115.392679][ T4953] EXT4-fs (loop1): Block reservation details [ 115.399106][ T4953] EXT4-fs (loop1): i_reserved_data_blocks=3 [ 115.428375][ T4953] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 115.885558][ T4952] loop0: detected capacity change from 0 to 2048 [ 115.963865][ T4952] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 115.982054][ T4959] loop1: detected capacity change from 0 to 512 [ 116.065024][ T4959] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 116.380774][ T4971] Zero length message leads to an empty skb [ 116.405848][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 116.518515][ T4959] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 117.007979][ T4977] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5) [ 117.014764][ T4977] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 117.033521][ T4977] vhci_hcd vhci_hcd.0: Device attached [ 117.055028][ T4978] vhci_hcd: connection closed [ 117.056592][ T4513] vhci_hcd: stop threads [ 117.068445][ T4513] vhci_hcd: release socket [ 117.073378][ T4513] vhci_hcd: disconnect device [ 117.074896][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 117.166208][ T4983] loop4: detected capacity change from 0 to 128 [ 117.176289][ T4985] netlink: 'syz.0.202': attribute type 3 has an invalid length. [ 117.204087][ T4983] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 117.242782][ T4983] ext4 filesystem being mounted at /30/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 117.274621][ C0] vkms_vblank_simulate: vblank timer overrun [ 117.312534][ T27] kauditd_printk_skb: 25 callbacks suppressed [ 117.312546][ T27] audit: type=1326 audit(1738888681.538:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4987 comm="syz.1.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 117.348906][ T4992] loop0: detected capacity change from 0 to 2048 [ 117.356772][ T27] audit: type=1326 audit(1738888681.538:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4987 comm="syz.1.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 117.386886][ T27] audit: type=1326 audit(1738888681.538:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4987 comm="syz.1.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 117.414976][ T27] audit: type=1326 audit(1738888681.578:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4987 comm="syz.1.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 117.470759][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 117.471637][ T4992] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 118.469719][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 118.566584][ T5002] loop4: detected capacity change from 0 to 2048 [ 119.952854][ T5002] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 120.021858][ T5019] loop3: detected capacity change from 0 to 512 [ 120.130360][ T5019] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 120.215776][ T5028] netlink: 'syz.2.214': attribute type 3 has an invalid length. [ 120.250935][ T5019] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.211: iget: bad i_size value: -67835469387268086 [ 120.333436][ T5030] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 120.348807][ T5030] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 120.361253][ T5030] EXT4-fs (loop4): This should not happen!! Data will be lost [ 120.361253][ T5030] [ 120.370992][ T5030] EXT4-fs (loop4): Total free blocks count 0 [ 120.377064][ T5030] EXT4-fs (loop4): Free/Dirty block details [ 120.383068][ T5030] EXT4-fs (loop4): free_blocks=2415919104 [ 120.388882][ T5030] EXT4-fs (loop4): dirty_blocks=48 [ 120.394053][ T5030] EXT4-fs (loop4): Block reservation details [ 120.400208][ T5030] EXT4-fs (loop4): i_reserved_data_blocks=3 [ 120.430613][ T5030] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 120.804427][ T5039] loop1: detected capacity change from 0 to 2048 [ 120.850246][ T5040] loop0: detected capacity change from 0 to 512 [ 120.868445][ T5040] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 120.879049][ T5019] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.211: couldn't read orphan inode 15 (err -117) [ 120.896405][ T5040] EXT4-fs (loop0): 1 truncate cleaned up [ 120.903486][ T5040] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 120.912182][ T5019] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 120.923421][ T5039] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 120.948210][ T5019] ext2 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 120.964544][ T5019] EXT4-fs error (device loop3): ext4_add_entry:2486: inode #2: comm syz.3.211: Directory hole found for htree leaf block 0 [ 122.473936][ T5052] EXT4-fs error (device loop3): ext4_add_entry:2486: inode #2: comm syz.3.211: Directory hole found for htree leaf block 0 [ 122.714726][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 122.865160][ T5058] loop4: detected capacity change from 0 to 256 [ 122.892969][ T5058] exfat: Unknown parameter 'nameª}t' [ 122.945395][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 123.953809][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 125.197254][ T5074] loop1: detected capacity change from 0 to 4096 [ 125.218648][ T27] audit: type=1326 audit(1738888689.448:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5083 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 125.267494][ T27] audit: type=1326 audit(1738888689.448:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5083 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 125.305302][ T5086] device vlan2 entered promiscuous mode [ 125.337941][ T27] audit: type=1326 audit(1738888689.478:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5083 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 125.360708][ T27] audit: type=1326 audit(1738888689.478:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5083 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 125.385355][ T27] audit: type=1326 audit(1738888689.478:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5083 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 125.392740][ T5074] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 125.408563][ T27] audit: type=1326 audit(1738888689.478:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5083 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 125.439821][ T27] audit: type=1326 audit(1738888689.478:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5083 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 125.444313][ T5086] device bond0 entered promiscuous mode [ 125.462416][ T27] audit: type=1326 audit(1738888689.478:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5083 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 125.495036][ T27] audit: type=1326 audit(1738888689.478:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5083 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 125.521793][ T27] audit: type=1326 audit(1738888689.478:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5083 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 125.595551][ T5086] device bond_slave_0 entered promiscuous mode [ 125.721146][ T5086] device bond_slave_1 entered promiscuous mode [ 125.906948][ T5063] loop0: detected capacity change from 0 to 512 [ 126.055588][ T5086] device bond0 left promiscuous mode [ 126.132352][ T5063] EXT4-fs: Ignoring removed i_version option [ 126.197163][ T5086] device bond_slave_0 left promiscuous mode [ 126.203176][ T5063] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 126.233504][ T5086] device bond_slave_1 left promiscuous mode [ 126.268268][ T5063] EXT4-fs (loop0): 1 truncate cleaned up [ 126.273937][ T5063] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 126.336319][ T5095] loop3: detected capacity change from 0 to 512 [ 126.416039][ T5095] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 126.504555][ T5095] ext4 filesystem being mounted at /43/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 126.548273][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 126.637905][ T5095] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm syz.3.232: corrupted inode contents [ 126.680347][ T5095] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #2: comm syz.3.232: mark_inode_dirty error [ 126.738025][ T5095] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm syz.3.232: corrupted inode contents [ 126.760941][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 126.814392][ T5108] device syzkaller1 entered promiscuous mode [ 126.856724][ T5110] loop2: detected capacity change from 0 to 256 [ 126.882464][ T5095] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.232: mark_inode_dirty error [ 127.113367][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 127.974558][ T5125] loop4: detected capacity change from 0 to 4096 [ 128.042054][ T5130] device vlan3 entered promiscuous mode [ 128.059926][ T5130] device bond0 entered promiscuous mode [ 128.066069][ T5125] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 128.110152][ T5130] device bond_slave_0 entered promiscuous mode [ 128.123168][ T5130] device bond_slave_1 entered promiscuous mode [ 128.134662][ T5130] device bond0 left promiscuous mode [ 128.144069][ T5130] device bond_slave_0 left promiscuous mode [ 128.150600][ T5130] device bond_slave_1 left promiscuous mode [ 128.633497][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 128.902192][ T5146] loop3: detected capacity change from 0 to 512 [ 128.919168][ T5146] EXT4-fs: Ignoring removed i_version option [ 129.015525][ T5146] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 129.221114][ T5146] EXT4-fs (loop3): 1 truncate cleaned up [ 129.226903][ T5146] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 129.536181][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 129.590118][ T5156] loop0: detected capacity change from 0 to 256 [ 130.531582][ T5168] loop2: detected capacity change from 0 to 512 [ 130.558105][ T5168] EXT4-fs: Ignoring removed i_version option [ 130.576427][ T5168] EXT4-fs: Ignoring removed mblk_io_submit option [ 130.628835][ T5168] ext4: Unknown parameter 'seclabel' [ 130.651159][ T27] kauditd_printk_skb: 91 callbacks suppressed [ 130.651171][ T27] audit: type=1326 audit(1738888694.875:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5170 comm="syz.1.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 130.737503][ T27] audit: type=1326 audit(1738888694.905:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5170 comm="syz.1.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 130.748428][ T5166] loop2: detected capacity change from 0 to 1024 [ 130.787300][ T5166] journal_path: not usable as path [ 130.821118][ T5166] EXT4-fs: error: could not find journal device path [ 130.850444][ T5175] loop4: detected capacity change from 0 to 256 [ 130.859860][ T27] audit: type=1326 audit(1738888694.905:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5170 comm="syz.1.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 130.921449][ T5177] loop0: detected capacity change from 0 to 1024 [ 130.927498][ T27] audit: type=1326 audit(1738888694.905:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5170 comm="syz.1.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 130.934784][ T5175] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 130.963673][ T5177] ======================================================= [ 130.963673][ T5177] WARNING: The mand mount option has been deprecated and [ 130.963673][ T5177] and is ignored by this kernel. Remove the mand [ 130.963673][ T5177] option from the mount to silence this warning. [ 130.963673][ T5177] ======================================================= [ 131.021507][ T5175] FAT-fs (loop4): Filesystem has been set read-only [ 131.030410][ T5175] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 131.049493][ T27] audit: type=1326 audit(1738888694.905:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5170 comm="syz.1.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 131.069912][ T5175] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 131.124778][ T5177] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 131.133720][ T27] audit: type=1326 audit(1738888694.915:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5170 comm="syz.1.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 131.231637][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 131.234565][ T27] audit: type=1326 audit(1738888694.915:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5170 comm="syz.1.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 131.260408][ T27] audit: type=1326 audit(1738888694.915:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5170 comm="syz.1.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 131.283252][ T27] audit: type=1326 audit(1738888694.915:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5170 comm="syz.1.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 131.305749][ T27] audit: type=1326 audit(1738888694.915:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5170 comm="syz.1.259" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 131.675752][ T5197] netlink: 12 bytes leftover after parsing attributes in process `syz.1.270'. [ 131.756674][ T5198] loop4: detected capacity change from 0 to 512 [ 131.771699][ T5198] EXT4-fs: Ignoring removed i_version option [ 132.032243][ T5198] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 132.191131][ T5198] EXT4-fs (loop4): 1 truncate cleaned up [ 132.196905][ T5198] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 132.520757][ T1273] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.528620][ T1273] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.539894][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 132.673608][ T5208] loop0: detected capacity change from 0 to 512 [ 132.737107][ T5208] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 132.762861][ T5208] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 132.824763][ T5208] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #2: comm syz.0.275: corrupted inode contents [ 132.904599][ T5220] netlink: 4 bytes leftover after parsing attributes in process `syz.1.277'. [ 132.910854][ T5208] EXT4-fs error (device loop0): ext4_dirty_inode:6089: inode #2: comm syz.0.275: mark_inode_dirty error [ 132.929763][ T5208] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #2: comm syz.0.275: corrupted inode contents [ 132.961971][ T5208] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #2: comm syz.0.275: mark_inode_dirty error [ 133.134386][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 133.488769][ T5231] loop0: detected capacity change from 0 to 2048 [ 133.526300][ T5231] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 134.500029][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 134.563326][ T5248] loop4: detected capacity change from 0 to 256 [ 134.610236][ T5250] netlink: 12 bytes leftover after parsing attributes in process `syz.3.287'. [ 135.209570][ T5277] loop1: detected capacity change from 0 to 256 [ 135.292137][ T5280] loop4: detected capacity change from 0 to 2048 [ 135.457111][ T5280] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 135.766563][ T5289] loop0: detected capacity change from 0 to 2048 [ 136.198044][ T5289] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 136.416961][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 136.614539][ T5305] loop2: detected capacity change from 0 to 256 [ 136.731367][ T5309] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 136.746614][ T5309] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 136.759085][ T5309] EXT4-fs (loop0): This should not happen!! Data will be lost [ 136.759085][ T5309] [ 136.768827][ T5309] EXT4-fs (loop0): Total free blocks count 0 [ 136.774898][ T5309] EXT4-fs (loop0): Free/Dirty block details [ 136.780889][ T5309] EXT4-fs (loop0): free_blocks=2415919104 [ 136.786659][ T5309] EXT4-fs (loop0): dirty_blocks=48 [ 136.791847][ T5309] EXT4-fs (loop0): Block reservation details [ 136.797876][ T5309] EXT4-fs (loop0): i_reserved_data_blocks=3 [ 136.816162][ T5309] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 137.210174][ T5312] loop4: detected capacity change from 0 to 128 [ 137.442795][ T5312] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 137.552837][ T5312] ext4 filesystem being mounted at /49/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 137.558618][ T5316] loop1: detected capacity change from 0 to 2048 [ 137.664510][ T5323] netlink: 12 bytes leftover after parsing attributes in process `syz.3.312'. [ 137.676033][ T5316] EXT4-fs: Ignoring removed mblk_io_submit option [ 137.950776][ T5316] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 138.070265][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 138.481018][ T27] kauditd_printk_skb: 50 callbacks suppressed [ 138.481073][ T27] audit: type=1326 audit(1738888702.675:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5315 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 138.786795][ T27] audit: type=1326 audit(1738888702.675:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5315 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 138.990829][ T27] audit: type=1326 audit(1738888702.675:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5315 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 139.063217][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 139.077474][ T27] audit: type=1326 audit(1738888702.675:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5315 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 139.160344][ T27] audit: type=1326 audit(1738888702.675:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5315 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 139.322823][ T27] audit: type=1326 audit(1738888702.675:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5315 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 139.406387][ T27] audit: type=1326 audit(1738888702.675:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5315 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 139.433943][ T5345] program syz.3.318 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 139.470071][ T27] audit: type=1326 audit(1738888702.675:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5315 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 139.550748][ T27] audit: type=1326 audit(1738888702.675:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5315 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 139.618495][ T27] audit: type=1326 audit(1738888702.685:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5315 comm="syz.1.311" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 139.770389][ T5355] loop1: detected capacity change from 0 to 164 [ 139.792577][ T5358] loop0: detected capacity change from 0 to 128 [ 139.829277][ T5358] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 139.851441][ T5358] ext4 filesystem being mounted at /77/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 139.988363][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 140.038046][ T5355] ISOFS: unable to read i-node block [ 140.069550][ T5355] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 140.324804][ T5367] loop1: detected capacity change from 0 to 2048 [ 140.346910][ T5367] EXT4-fs: Ignoring removed mblk_io_submit option [ 140.416838][ T5367] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 141.262836][ T5373] netlink: 12 bytes leftover after parsing attributes in process `syz.4.328'. [ 141.869831][ T5380] netlink: 'syz.3.330': attribute type 3 has an invalid length. [ 141.878781][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 142.211297][ T5389] loop0: detected capacity change from 0 to 128 [ 142.231552][ T5389] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 142.247534][ T5389] ext4 filesystem being mounted at /80/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 142.282262][ T5395] loop3: detected capacity change from 0 to 256 [ 142.432581][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 142.743908][ T5407] loop0: detected capacity change from 0 to 164 [ 142.768271][ T5407] ISOFS: unable to read i-node block [ 142.774188][ T5407] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 143.125902][ T5419] loop0: detected capacity change from 0 to 2048 [ 143.154782][ T5419] EXT4-fs: Ignoring removed mblk_io_submit option [ 143.209305][ T5419] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 143.697951][ T27] kauditd_printk_skb: 28 callbacks suppressed [ 143.698050][ T27] audit: type=1326 audit(1738888707.795:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5418 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 143.698666][ T27] audit: type=1326 audit(1738888707.795:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5418 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 143.698920][ T27] audit: type=1326 audit(1738888707.795:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5418 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 143.699262][ T27] audit: type=1326 audit(1738888707.805:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5418 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 143.699662][ T27] audit: type=1326 audit(1738888707.805:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5418 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 143.699873][ T27] audit: type=1326 audit(1738888707.805:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5418 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 143.700144][ T27] audit: type=1326 audit(1738888707.805:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5418 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 143.700382][ T27] audit: type=1326 audit(1738888707.805:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5418 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 143.700623][ T27] audit: type=1326 audit(1738888707.805:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5418 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 143.701080][ T27] audit: type=1326 audit(1738888707.815:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5418 comm="syz.0.343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f50b8cde9 code=0x7ffc0000 [ 144.173644][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 144.377329][ T5429] netlink: 'syz.2.344': attribute type 3 has an invalid length. [ 144.502187][ C1] vkms_vblank_simulate: vblank timer overrun [ 144.530793][ T5431] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT [ 145.139734][ C1] vkms_vblank_simulate: vblank timer overrun [ 145.268678][ T5441] loop0: detected capacity change from 0 to 128 [ 145.321987][ T5441] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 145.322228][ T5441] ext4 filesystem being mounted at /84/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 145.594528][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 145.645724][ T5446] mmap: syz.4.352 (5446) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 145.719378][ C1] vkms_vblank_simulate: vblank timer overrun [ 146.275683][ T5459] loop3: detected capacity change from 0 to 256 [ 146.998383][ T5469] loop2: detected capacity change from 0 to 512 [ 147.010552][ T5469] EXT4-fs: Ignoring removed i_version option [ 147.050195][ T5469] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 147.287425][ T5469] EXT4-fs (loop2): 1 truncate cleaned up [ 147.293153][ T5469] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 147.651719][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 147.654060][ T5473] netlink: 'syz.1.360': attribute type 3 has an invalid length. [ 147.811993][ T5480] loop4: detected capacity change from 0 to 128 [ 148.005110][ T5479] x_tables: ip6_tables: socket match: used from hooks FORWARD, but only valid from PREROUTING/INPUT [ 148.208645][ T5480] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 148.241364][ T5480] ext4 filesystem being mounted at /60/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 148.273231][ C1] vkms_vblank_simulate: vblank timer overrun [ 150.051444][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 150.203659][ T5505] loop2: detected capacity change from 0 to 256 [ 151.134768][ T5512] loop4: detected capacity change from 0 to 512 [ 151.222261][ T5512] EXT4-fs: Ignoring removed i_version option [ 151.841584][ T27] kauditd_printk_skb: 40 callbacks suppressed [ 151.841597][ T27] audit: type=1326 audit(1738888715.008:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5506 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 152.123977][ T5512] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 152.142018][ T5512] EXT4-fs (loop4): 1 truncate cleaned up [ 152.147724][ T5512] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 152.187607][ T27] audit: type=1326 audit(1738888715.008:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5506 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 152.224928][ T27] audit: type=1326 audit(1738888715.048:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5506 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 152.282405][ T27] audit: type=1326 audit(1738888715.053:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5506 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 152.324494][ T27] audit: type=1326 audit(1738888715.053:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5506 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 152.376861][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 152.425329][ T27] audit: type=1326 audit(1738888715.053:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5506 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 152.473162][ T27] audit: type=1326 audit(1738888715.053:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5506 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f750f18ce23 code=0x7ffc0000 [ 152.520752][ T27] audit: type=1326 audit(1738888715.203:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5506 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f750f18b89f code=0x7ffc0000 [ 152.563042][ T27] audit: type=1326 audit(1738888715.293:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5506 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f750f18ce77 code=0x7ffc0000 [ 152.645310][ T27] audit: type=1326 audit(1738888715.323:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5506 comm="syz.4.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f750f18b750 code=0x7ffc0000 [ 152.663535][ T5527] loop0: detected capacity change from 0 to 256 [ 157.432481][ T27] kauditd_printk_skb: 12 callbacks suppressed [ 157.432494][ T27] audit: type=1326 audit(1738888721.653:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5561 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 157.493784][ T5571] loop1: detected capacity change from 0 to 512 [ 157.554077][ T5578] loop0: detected capacity change from 0 to 164 [ 157.556677][ T27] audit: type=1326 audit(1738888721.693:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5561 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 157.589217][ T5571] EXT4-fs: Ignoring removed i_version option [ 157.609278][ T5578] ISOFS: unable to read i-node block [ 157.620257][ T5571] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 157.634505][ T5578] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 157.663673][ T27] audit: type=1326 audit(1738888721.713:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5561 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 157.734214][ T5571] EXT4-fs (loop1): 1 truncate cleaned up [ 157.745721][ T27] audit: type=1326 audit(1738888721.713:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5561 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc18818ce23 code=0x7ffc0000 [ 157.751639][ T5571] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 157.767741][ C1] vkms_vblank_simulate: vblank timer overrun [ 157.973874][ T27] audit: type=1326 audit(1738888721.713:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5561 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc18818b89f code=0x7ffc0000 [ 158.066340][ T5591] loop4: detected capacity change from 0 to 512 [ 158.074891][ T27] audit: type=1326 audit(1738888721.713:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5561 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fc18818ce77 code=0x7ffc0000 [ 158.131485][ T27] audit: type=1326 audit(1738888721.713:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5561 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc18818b750 code=0x7ffc0000 [ 158.204968][ T27] audit: type=1326 audit(1738888721.713:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5561 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc18818c9eb code=0x7ffc0000 [ 158.209946][ T5591] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 158.243935][ T5597] loop3: detected capacity change from 0 to 256 [ 158.250380][ T5591] ext4 filesystem being mounted at /66/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 158.293251][ T27] audit: type=1326 audit(1738888721.753:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5561 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fc18818ba4a code=0x7ffc0000 [ 158.321883][ T27] audit: type=1326 audit(1738888721.753:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5561 comm="syz.1.391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fc18818ba4a code=0x7ffc0000 [ 158.474556][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 159.171570][ T5605] loop4: detected capacity change from 0 to 512 [ 159.361383][ T5605] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 159.397785][ T5605] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 159.405971][ T5607] loop2: detected capacity change from 0 to 2048 [ 159.460663][ T5605] syz.4.403[5605] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 159.460757][ T5605] syz.4.403[5605] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 159.503798][ T5607] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 159.791209][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 159.798709][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 159.932158][ T5626] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 159.948048][ T5626] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 159.960466][ T5626] EXT4-fs (loop2): This should not happen!! Data will be lost [ 159.960466][ T5626] [ 159.970194][ T5626] EXT4-fs (loop2): Total free blocks count 0 [ 159.976248][ T5626] EXT4-fs (loop2): Free/Dirty block details [ 159.982225][ T5626] EXT4-fs (loop2): free_blocks=2415919104 [ 159.988023][ T5626] EXT4-fs (loop2): dirty_blocks=48 [ 159.993189][ T5626] EXT4-fs (loop2): Block reservation details [ 159.999255][ T5626] EXT4-fs (loop2): i_reserved_data_blocks=3 [ 160.029613][ T5626] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 160.426276][ T5631] netlink: 4 bytes leftover after parsing attributes in process `syz.0.411'. [ 161.084410][ T5641] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 161.211005][ T5645] loop4: detected capacity change from 0 to 256 [ 161.223235][ T5642] loop1: detected capacity change from 0 to 512 [ 161.259895][ T5642] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 161.275248][ T5643] lo speed is unknown, defaulting to 1000 [ 161.294823][ T5643] lo speed is unknown, defaulting to 1000 [ 161.314598][ T5642] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities [ 161.354140][ T5643] lo speed is unknown, defaulting to 1000 [ 161.419183][ T5643] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 161.463790][ T5643] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 161.703998][ T5643] lo speed is unknown, defaulting to 1000 [ 162.288074][ T5643] lo speed is unknown, defaulting to 1000 [ 162.295438][ T5643] lo speed is unknown, defaulting to 1000 [ 162.328378][ T5643] lo speed is unknown, defaulting to 1000 [ 162.335030][ T5643] lo speed is unknown, defaulting to 1000 [ 162.576790][ T27] kauditd_printk_skb: 16 callbacks suppressed [ 162.576901][ T27] audit: type=1326 audit(1738888726.793:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5659 comm="syz.4.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 162.583921][ T5663] loop4: detected capacity change from 0 to 512 [ 162.613675][ T5663] EXT4-fs: Ignoring removed i_version option [ 162.621176][ T5663] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 162.679601][ T5663] EXT4-fs (loop4): 1 truncate cleaned up [ 162.685294][ T5663] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 162.692708][ T5666] loop0: detected capacity change from 0 to 2048 [ 162.702583][ T27] audit: type=1326 audit(1738888726.793:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5659 comm="syz.4.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 162.817626][ T27] audit: type=1326 audit(1738888726.793:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5659 comm="syz.4.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 162.840923][ T27] audit: type=1326 audit(1738888726.793:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5659 comm="syz.4.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f750f18ce23 code=0x7ffc0000 [ 162.842736][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 162.863171][ T27] audit: type=1326 audit(1738888726.793:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5659 comm="syz.4.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f750f18b89f code=0x7ffc0000 [ 162.895972][ T27] audit: type=1326 audit(1738888726.793:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5659 comm="syz.4.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f750f18ce77 code=0x7ffc0000 [ 162.919970][ T27] audit: type=1326 audit(1738888726.813:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5659 comm="syz.4.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f750f18b750 code=0x7ffc0000 [ 162.956637][ T5666] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 162.992216][ T27] audit: type=1326 audit(1738888726.813:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5659 comm="syz.4.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f750f18c9eb code=0x7ffc0000 [ 163.109821][ T27] audit: type=1326 audit(1738888726.833:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5659 comm="syz.4.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f750f18ba4a code=0x7ffc0000 [ 163.206417][ T27] audit: type=1326 audit(1738888726.833:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5659 comm="syz.4.420" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f750f18ba4a code=0x7ffc0000 [ 163.389098][ T5692] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 163.404386][ T5692] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 163.416794][ T5692] EXT4-fs (loop0): This should not happen!! Data will be lost [ 163.416794][ T5692] [ 163.427038][ T5692] EXT4-fs (loop0): Total free blocks count 0 [ 163.433248][ T5692] EXT4-fs (loop0): Free/Dirty block details [ 163.439219][ T5692] EXT4-fs (loop0): free_blocks=2415919104 [ 163.444999][ T5692] EXT4-fs (loop0): dirty_blocks=48 [ 163.450193][ T5692] EXT4-fs (loop0): Block reservation details [ 163.456224][ T5692] EXT4-fs (loop0): i_reserved_data_blocks=3 [ 163.487220][ T5692] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 163.707208][ T5691] loop2: detected capacity change from 0 to 256 [ 163.967670][ T5696] loop4: detected capacity change from 0 to 512 [ 164.178542][ T5696] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 164.245445][ T5696] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.432: iget: bad i_size value: -67835469387268086 [ 164.296749][ T5696] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.432: couldn't read orphan inode 15 (err -117) [ 164.330361][ T5696] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 164.336600][ T5709] can0: slcan on pts0. [ 164.369375][ T5696] ext2 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 164.548185][ T5705] can0 (unregistered): slcan off pts0. [ 164.556185][ T5719] loop1: detected capacity change from 0 to 2048 [ 164.675277][ T5719] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 164.863519][ T5726] EXT4-fs error (device loop4): ext4_add_entry:2486: inode #2: comm syz.4.432: Directory hole found for htree leaf block 0 [ 165.412241][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 165.441646][ T5731] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 165.456716][ T5731] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 165.469082][ T5731] EXT4-fs (loop1): This should not happen!! Data will be lost [ 165.469082][ T5731] [ 165.479050][ T5731] EXT4-fs (loop1): Total free blocks count 0 [ 165.485024][ T5731] EXT4-fs (loop1): Free/Dirty block details [ 165.490950][ T5731] EXT4-fs (loop1): free_blocks=2415919104 [ 165.496687][ T5731] EXT4-fs (loop1): dirty_blocks=48 [ 165.501830][ T5731] EXT4-fs (loop1): Block reservation details [ 165.507864][ T5731] EXT4-fs (loop1): i_reserved_data_blocks=3 [ 165.515835][ T5735] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 165.756752][ T5737] loop3: detected capacity change from 0 to 512 [ 165.816205][ T5737] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 165.868399][ T5737] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002] [ 165.883739][ T5737] EXT4-fs (loop3): orphan cleanup on readonly fs [ 165.904670][ T5737] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #11: comm syz.3.439: attempt to clear invalid blocks 1024 len 1 [ 165.922477][ T5737] EXT4-fs (loop3): Remounting filesystem read-only [ 165.935016][ T5737] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.439: bg 0: block 361: padding at end of block bitmap is not set [ 165.952031][ T5737] EXT4-fs (loop3): Remounting filesystem read-only [ 165.959649][ T5737] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 165.969335][ T5737] EXT4-fs (loop3): Remounting filesystem read-only [ 165.977324][ T5737] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.439: invalid indirect mapped block 1811939328 (level 0) [ 165.996963][ T5737] EXT4-fs (loop3): Remounting filesystem read-only [ 166.003767][ T5737] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.439: invalid indirect mapped block 2185560079 (level 1) [ 166.019161][ T5737] EXT4-fs (loop3): Remounting filesystem read-only [ 166.026296][ T5737] EXT4-fs (loop3): 1 truncate cleaned up [ 166.032342][ T5737] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 166.165461][ T5748] device bridge0 entered promiscuous mode [ 166.196443][ T5748] netlink: 4 bytes leftover after parsing attributes in process `syz.4.442'. [ 166.227321][ T5748] device bridge_slave_1 left promiscuous mode [ 166.294978][ T5748] bridge0: port 2(bridge_slave_1) entered disabled state [ 166.336892][ T5748] device bridge_slave_0 left promiscuous mode [ 166.366543][ T5748] bridge0: port 1(bridge_slave_0) entered disabled state [ 166.487306][ T5759] netlink: 20 bytes leftover after parsing attributes in process `syz.0.443'. [ 166.531743][ T5748] device bridge0 left promiscuous mode [ 166.550609][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 166.602287][ T5750] netlink: 12 bytes leftover after parsing attributes in process `syz.4.442'. [ 166.689033][ T5762] hub 9-0:1.0: USB hub found [ 166.739416][ T5762] hub 9-0:1.0: 1 port detected [ 167.169817][ T5780] netlink: 8 bytes leftover after parsing attributes in process `syz.4.450'. [ 167.438784][ T5791] netlink: 12 bytes leftover after parsing attributes in process `syz.4.454'. [ 167.489634][ T5791] netlink: 8 bytes leftover after parsing attributes in process `syz.4.454'. [ 167.504723][ T5791] netlink: 'syz.4.454': attribute type 1 has an invalid length. [ 167.757195][ T5803] loop0: detected capacity change from 0 to 256 [ 168.243238][ T5820] netlink: 8 bytes leftover after parsing attributes in process `syz.1.464'. [ 168.272850][ T5816] loop3: detected capacity change from 0 to 2048 [ 168.331472][ T5816] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 168.515924][ T5825] netlink: 'syz.2.465': attribute type 10 has an invalid length. [ 168.565333][ T5825] device veth0_macvtap left promiscuous mode [ 168.587656][ T5825] device veth0_macvtap entered promiscuous mode [ 168.629297][ T5825] team0: Device macvtap0 failed to register rx_handler [ 168.684252][ T5829] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 168.699557][ T5829] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 168.711968][ T5829] EXT4-fs (loop3): This should not happen!! Data will be lost [ 168.711968][ T5829] [ 168.721671][ T5829] EXT4-fs (loop3): Total free blocks count 0 [ 168.727736][ T5829] EXT4-fs (loop3): Free/Dirty block details [ 168.733674][ T5829] EXT4-fs (loop3): free_blocks=2415919104 [ 168.739472][ T5829] EXT4-fs (loop3): dirty_blocks=48 [ 168.744630][ T5829] EXT4-fs (loop3): Block reservation details [ 168.750680][ T5829] EXT4-fs (loop3): i_reserved_data_blocks=3 [ 168.779289][ T5829] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 168.822702][ T5825] device veth0_macvtap left promiscuous mode [ 169.315868][ T5831] netlink: 'syz.1.467': attribute type 10 has an invalid length. [ 169.327558][ T5825] syz.2.465 (5825) used greatest stack depth: 19216 bytes left [ 169.475375][ T5833] loop3: detected capacity change from 0 to 2048 [ 169.630118][ T5833] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 169.888101][ T5845] loop4: detected capacity change from 0 to 512 [ 169.895435][ T5845] EXT4-fs: Ignoring removed i_version option [ 169.908157][ T27] kauditd_printk_skb: 40 callbacks suppressed [ 169.908170][ T27] audit: type=1326 audit(1738888734.103:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5835 comm="syz.4.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 169.999111][ T5847] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 170.013992][ T5847] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 170.026444][ T5847] EXT4-fs (loop3): This should not happen!! Data will be lost [ 170.026444][ T5847] [ 170.036152][ T5847] EXT4-fs (loop3): Total free blocks count 0 [ 170.042205][ T5847] EXT4-fs (loop3): Free/Dirty block details [ 170.048148][ T5847] EXT4-fs (loop3): free_blocks=2415919104 [ 170.053963][ T5847] EXT4-fs (loop3): dirty_blocks=48 [ 170.059192][ T5847] EXT4-fs (loop3): Block reservation details [ 170.065231][ T5847] EXT4-fs (loop3): i_reserved_data_blocks=3 [ 170.075686][ T5847] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 170.114638][ T5845] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 170.327612][ T5845] EXT4-fs (loop4): 1 truncate cleaned up [ 170.333332][ T5845] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 170.450980][ T5844] loop1: detected capacity change from 0 to 1024 [ 170.559032][ T27] audit: type=1326 audit(1738888734.103:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5835 comm="syz.4.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 170.602863][ T27] audit: type=1326 audit(1738888734.103:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5835 comm="syz.4.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 170.631518][ T5844] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 170.653930][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 170.678161][ T27] audit: type=1326 audit(1738888734.103:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5835 comm="syz.4.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f750f18ce23 code=0x7ffc0000 [ 170.685416][ T5844] EXT4-fs (loop1): orphan cleanup on readonly fs [ 170.796249][ T27] audit: type=1326 audit(1738888734.103:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5835 comm="syz.4.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f750f18b89f code=0x7ffc0000 [ 170.819189][ T5844] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 170.851909][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 170.878779][ T5844] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #3: comm syz.1.471: mark_inode_dirty error [ 170.903203][ T27] audit: type=1326 audit(1738888734.103:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5835 comm="syz.4.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f750f18ce77 code=0x7ffc0000 [ 170.937028][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 171.011569][ T5844] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.471: Invalid block bitmap block 3 in block_group 0 [ 171.056035][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 171.078140][ T5844] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 171.101503][ T27] audit: type=1326 audit(1738888734.113:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5835 comm="syz.4.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f750f18b750 code=0x7ffc0000 [ 171.124966][ T27] audit: type=1326 audit(1738888734.113:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5835 comm="syz.4.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f750f18c9eb code=0x7ffc0000 [ 171.148440][ T27] audit: type=1326 audit(1738888734.113:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5835 comm="syz.4.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f750f18ba4a code=0x7ffc0000 [ 171.173625][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 171.181111][ T5844] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #3: comm syz.1.471: mark_inode_dirty error [ 171.302203][ T27] audit: type=1326 audit(1738888734.113:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5835 comm="syz.4.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f750f18ba4a code=0x7ffc0000 [ 171.609147][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 171.709762][ T5844] EXT4-fs error (device loop1): ext4_map_blocks:634: inode #3: block 1: comm syz.1.471: lblock 6 mapped to illegal pblock 1 (length 1) [ 171.848067][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 171.854694][ T5844] EXT4-fs error (device loop1): ext4_map_blocks:634: inode #3: block 48: comm syz.1.471: lblock 0 mapped to illegal pblock 48 (length 1) [ 171.889755][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 171.896294][ T5844] EXT4-fs error (device loop1): ext4_acquire_dquot:6795: comm syz.1.471: Failed to acquire dquot type 0 [ 171.913094][ T5862] netlink: 8 bytes leftover after parsing attributes in process `syz.3.476'. [ 171.964938][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 171.979724][ T5844] EXT4-fs error (device loop1): ext4_map_blocks:634: inode #3: block 49: comm syz.1.471: lblock 1 mapped to illegal pblock 49 (length 1) [ 172.033170][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 172.047462][ T5844] EXT4-fs error (device loop1): ext4_acquire_dquot:6795: comm syz.1.471: Failed to acquire dquot type 0 [ 172.087432][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 172.197401][ T5844] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 172.256387][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 172.263506][ T5844] EXT4-fs error (device loop1): ext4_evict_inode:279: inode #15: comm syz.1.471: mark_inode_dirty error [ 172.279984][ T5844] EXT4-fs (loop1): Remounting filesystem read-only [ 172.286594][ T5844] EXT4-fs warning (device loop1): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 172.301612][ T5844] EXT4-fs (loop1): 1 orphan inode deleted [ 172.308095][ T5844] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 173.192933][ T5880] loop0: detected capacity change from 0 to 512 [ 173.200254][ T5880] EXT4-fs: Ignoring removed i_version option [ 173.258723][ T5880] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 173.434781][ T5880] EXT4-fs (loop0): 1 truncate cleaned up [ 173.440591][ T5880] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 173.582547][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 173.807680][ T5895] loop1: detected capacity change from 0 to 256 [ 173.861212][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 173.932131][ T5899] netlink: 8 bytes leftover after parsing attributes in process `syz.3.492'. [ 175.971181][ T5936] device ipip0 entered promiscuous mode [ 176.023201][ T27] kauditd_printk_skb: 34 callbacks suppressed [ 176.023215][ T27] audit: type=1326 audit(1738888740.243:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.4.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 176.057069][ T5943] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5) [ 176.063603][ T5943] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 176.103417][ T5919] loop4: detected capacity change from 0 to 512 [ 176.104849][ T5943] vhci_hcd vhci_hcd.0: Device attached [ 176.129813][ T27] audit: type=1326 audit(1738888740.293:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.4.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 176.162601][ T5919] EXT4-fs: Ignoring removed i_version option [ 176.170663][ T5944] vhci_hcd: connection closed [ 176.170869][ T4512] vhci_hcd: stop threads [ 176.185501][ T4512] vhci_hcd: release socket [ 176.195484][ T4512] vhci_hcd: disconnect device [ 176.205323][ T5919] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 176.219394][ T27] audit: type=1326 audit(1738888740.293:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.4.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 176.253769][ T27] audit: type=1326 audit(1738888740.305:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.4.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 176.282763][ T5919] EXT4-fs (loop4): 1 truncate cleaned up [ 176.288529][ T5919] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 176.377451][ T27] audit: type=1326 audit(1738888740.305:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.4.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 176.407710][ T27] audit: type=1326 audit(1738888740.305:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.4.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f750f18cde9 code=0x7ffc0000 [ 176.431203][ T27] audit: type=1326 audit(1738888740.305:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.4.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f750f18ce23 code=0x7ffc0000 [ 176.487430][ T27] audit: type=1326 audit(1738888740.305:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.4.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f750f18b89f code=0x7ffc0000 [ 176.551088][ T27] audit: type=1326 audit(1738888740.315:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.4.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f750f18ce77 code=0x7ffc0000 [ 176.617848][ T27] audit: type=1326 audit(1738888740.325:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5915 comm="syz.4.498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f750f18b750 code=0x7ffc0000 [ 176.883155][ T5959] netlink: 4 bytes leftover after parsing attributes in process `syz.0.511'. [ 177.131058][ T5961] netlink: 'syz.3.510': attribute type 9 has an invalid length. [ 177.169624][ T5961] netlink: 'syz.3.510': attribute type 7 has an invalid length. [ 177.235069][ T5961] netlink: 'syz.3.510': attribute type 8 has an invalid length. [ 177.264343][ T5975] netlink: 'syz.2.517': attribute type 3 has an invalid length. [ 177.371107][ T5978] loop2: detected capacity change from 0 to 256 [ 177.996927][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 178.679302][ T6006] netlink: 'syz.0.528': attribute type 3 has an invalid length. [ 179.455279][ T6019] loop0: detected capacity change from 0 to 512 [ 179.463354][ T6019] EXT4-fs: Ignoring removed i_version option [ 180.687969][ T6019] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 180.723181][ T6019] EXT4-fs (loop0): 1 truncate cleaned up [ 180.729684][ T6019] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 180.851833][ T6028] loop3: detected capacity change from 0 to 128 [ 181.009499][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 181.032528][ T6028] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 181.059095][ T6028] ext4 filesystem being mounted at /106/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 181.247161][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 181.501395][ T6042] loop3: detected capacity change from 0 to 512 [ 181.542683][ T6042] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 181.574490][ T6042] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 181.640629][ T27] kauditd_printk_skb: 93 callbacks suppressed [ 181.640644][ T27] audit: type=1800 audit(1738888745.860:740): pid=6042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.542" name="file0" dev="loop3" ino=13 res=0 errno=0 [ 181.693724][ T6042] syz.3.542[6042] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 181.693820][ T6042] syz.3.542[6042] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 181.706167][ T6055] netlink: 4 bytes leftover after parsing attributes in process `syz.4.544'. [ 181.795473][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 182.136276][ T6069] loop3: detected capacity change from 0 to 128 [ 182.167012][ T6069] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 182.177200][ T6069] ext4 filesystem being mounted at /110/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 182.209188][ C0] vkms_vblank_simulate: vblank timer overrun [ 182.380552][ T6074] loop2: detected capacity change from 0 to 512 [ 182.391770][ T6074] EXT4-fs: Ignoring removed i_version option [ 182.400197][ T27] audit: type=1326 audit(1738888746.560:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6063 comm="syz.2.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 182.442163][ T6074] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 182.499397][ T6074] EXT4-fs (loop2): 1 truncate cleaned up [ 182.505147][ T6074] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 183.002013][ T6073] device syzkaller1 entered promiscuous mode [ 183.045262][ T27] audit: type=1326 audit(1738888746.560:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6063 comm="syz.2.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 183.070246][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 183.074229][ T27] audit: type=1326 audit(1738888746.560:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6063 comm="syz.2.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 183.102390][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 183.141970][ T27] audit: type=1326 audit(1738888746.574:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6063 comm="syz.2.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 183.173755][ T6079] loop0: detected capacity change from 0 to 1024 [ 183.183270][ T6079] EXT4-fs: Ignoring removed orlov option [ 183.192221][ T27] audit: type=1326 audit(1738888746.574:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6063 comm="syz.2.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 183.230411][ T27] audit: type=1326 audit(1738888746.574:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6063 comm="syz.2.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 183.266276][ T6079] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 183.307498][ T27] audit: type=1326 audit(1738888746.574:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6063 comm="syz.2.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fe179b8ce23 code=0x7ffc0000 [ 183.330844][ T27] audit: type=1326 audit(1738888746.584:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6063 comm="syz.2.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fe179b8b89f code=0x7ffc0000 [ 183.353387][ T27] audit: type=1326 audit(1738888746.594:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6063 comm="syz.2.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fe179b8ce77 code=0x7ffc0000 [ 183.375443][ C0] vkms_vblank_simulate: vblank timer overrun [ 183.386329][ T6084] loop2: detected capacity change from 0 to 256 [ 183.503468][ T6087] loop3: detected capacity change from 0 to 512 [ 183.599614][ T6087] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 183.642097][ T6087] ext4 filesystem being mounted at /112/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 183.925567][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 184.752486][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 185.240781][ T6113] loop2: detected capacity change from 0 to 512 [ 185.252069][ T6113] EXT4-fs: Ignoring removed i_version option [ 185.914380][ T6112] loop1: detected capacity change from 0 to 128 [ 185.938883][ T6113] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 185.965963][ T6113] EXT4-fs (loop2): 1 truncate cleaned up [ 185.971736][ T6113] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 185.995126][ T6112] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 186.229717][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 186.233894][ T6112] ext4 filesystem being mounted at /108/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 186.392217][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 186.416965][ T6121] IPv6: Can't replace route, no match found [ 186.455438][ T6124] device syzkaller1 entered promiscuous mode [ 186.675282][ T6137] loop3: detected capacity change from 0 to 512 [ 186.751316][ T6137] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 186.764302][ T6144] netlink: 20 bytes leftover after parsing attributes in process `syz.4.572'. [ 186.795206][ T6137] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 186.852409][ T27] kauditd_printk_skb: 51 callbacks suppressed [ 186.852422][ T27] audit: type=1800 audit(1738888751.076:801): pid=6137 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.571" name="file0" dev="loop3" ino=13 res=0 errno=0 [ 187.031918][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 187.571070][ T27] audit: type=1326 audit(1738888751.796:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6145 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 187.594098][ T6146] loop1: detected capacity change from 0 to 512 [ 187.601527][ T6146] EXT4-fs: Ignoring removed i_version option [ 187.611130][ T6146] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 187.621155][ T27] audit: type=1326 audit(1738888751.796:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6145 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 187.644665][ T27] audit: type=1326 audit(1738888751.796:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6145 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 187.667005][ T27] audit: type=1326 audit(1738888751.802:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6145 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 187.689297][ T27] audit: type=1326 audit(1738888751.802:806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6145 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 187.714055][ T6146] EXT4-fs (loop1): 1 truncate cleaned up [ 187.719894][ T6146] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 187.732907][ T27] audit: type=1326 audit(1738888751.802:807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6145 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fc18818cde9 code=0x7ffc0000 [ 187.755968][ T27] audit: type=1326 audit(1738888751.802:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6145 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc18818ce23 code=0x7ffc0000 [ 187.785547][ T27] audit: type=1326 audit(1738888751.802:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6145 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc18818b89f code=0x7ffc0000 [ 187.902353][ T27] audit: type=1326 audit(1738888751.802:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6145 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fc18818ce77 code=0x7ffc0000 [ 187.927126][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 188.220804][ T6168] device syzkaller1 entered promiscuous mode [ 189.179182][ T6187] loop1: detected capacity change from 0 to 512 [ 189.331470][ T6187] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.588: casefold flag without casefold feature [ 189.409830][ T6200] loop0: detected capacity change from 0 to 2048 [ 189.426436][ T6187] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.588: couldn't read orphan inode 15 (err -117) [ 189.462624][ T6187] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 189.521117][ T6200] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 189.573109][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 189.892879][ T6206] loop4: detected capacity change from 0 to 512 [ 189.900126][ T6206] EXT4-fs: Ignoring removed i_version option [ 190.793246][ T6208] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 190.808461][ T6208] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 190.820873][ T6208] EXT4-fs (loop0): This should not happen!! Data will be lost [ 190.820873][ T6208] [ 190.830580][ T6208] EXT4-fs (loop0): Total free blocks count 0 [ 190.836648][ T6208] EXT4-fs (loop0): Free/Dirty block details [ 190.842663][ T6208] EXT4-fs (loop0): free_blocks=2415919104 [ 190.848472][ T6208] EXT4-fs (loop0): dirty_blocks=48 [ 190.853641][ T6208] EXT4-fs (loop0): Block reservation details [ 190.859698][ T6208] EXT4-fs (loop0): i_reserved_data_blocks=3 [ 190.884237][ T6208] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 190.928409][ T6206] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 190.990388][ T6206] EXT4-fs (loop4): 1 truncate cleaned up [ 190.996138][ T6206] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 191.330425][ T4266] Bluetooth: hci0: command 0x0406 tx timeout [ 191.336953][ T4266] Bluetooth: hci2: command 0x0406 tx timeout [ 191.343065][ T48] Bluetooth: hci3: command 0x0406 tx timeout [ 191.349143][ T4258] Bluetooth: hci1: command 0x0406 tx timeout [ 191.355178][ T4258] Bluetooth: hci4: command 0x0406 tx timeout [ 191.407135][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 191.813926][ T6227] netlink: 8 bytes leftover after parsing attributes in process `syz.4.601'. [ 191.894811][ T6227] device team_slave_0 entered promiscuous mode [ 191.901329][ T6227] device team_slave_1 entered promiscuous mode [ 191.984040][ T6227] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 192.022249][ T6232] netlink: 132 bytes leftover after parsing attributes in process `syz.3.603'. [ 192.571418][ T6238] loop1: detected capacity change from 0 to 256 [ 192.807155][ T27] kauditd_printk_skb: 78 callbacks suppressed [ 192.807171][ T27] audit: type=1326 audit(1738888757.029:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.3.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 192.894359][ T27] audit: type=1326 audit(1738888757.089:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.3.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe94d783da7 code=0x7ffc0000 [ 192.998844][ T27] audit: type=1326 audit(1738888757.089:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.3.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe94d728fb9 code=0x7ffc0000 [ 193.042554][ T6249] loop2: detected capacity change from 0 to 2048 [ 193.067399][ T27] audit: type=1326 audit(1738888757.089:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.3.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 193.101514][ T27] audit: type=1326 audit(1738888757.089:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.3.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 193.127045][ T6232] loop3: detected capacity change from 0 to 8192 [ 193.135386][ T27] audit: type=1326 audit(1738888757.099:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.3.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 193.157788][ T27] audit: type=1326 audit(1738888757.099:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.3.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe94d783da7 code=0x7ffc0000 [ 193.186374][ T27] audit: type=1326 audit(1738888757.099:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.3.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe94d728fb9 code=0x7ffc0000 [ 193.188758][ T6249] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 193.212573][ T27] audit: type=1326 audit(1738888757.099:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.3.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 193.241861][ T27] audit: type=1326 audit(1738888757.099:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6231 comm="syz.3.603" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7fe94d78cde9 code=0x7ffc0000 [ 193.275557][ T4558] I/O error, dev loop3, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 193.513812][ T6262] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 193.529570][ T6262] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 193.542012][ T6262] EXT4-fs (loop2): This should not happen!! Data will be lost [ 193.542012][ T6262] [ 193.551674][ T6262] EXT4-fs (loop2): Total free blocks count 0 [ 193.557684][ T6262] EXT4-fs (loop2): Free/Dirty block details [ 193.563615][ T6262] EXT4-fs (loop2): free_blocks=2415919104 [ 193.569385][ T6262] EXT4-fs (loop2): dirty_blocks=48 [ 193.574501][ T6262] EXT4-fs (loop2): Block reservation details [ 193.580509][ T6262] EXT4-fs (loop2): i_reserved_data_blocks=3 [ 193.589654][ T6262] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 193.761592][ T6232] loop3: detected capacity change from 0 to 128 [ 193.795259][ T6232] FAT-fs (loop3): bogus number of reserved sectors [ 193.823874][ T6232] FAT-fs (loop3): This doesn't look like a DOS 1.x volume; no bootstrapping code [ 193.873659][ T6232] FAT-fs (loop3): Can't find a valid FAT filesystem [ 193.944493][ T1273] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.951546][ T1273] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.181103][ T6268] loop4: detected capacity change from 0 to 512 [ 194.234896][ T6268] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 194.257540][ T6268] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 194.778786][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 195.176253][ T6284] blktrace: Concurrent blktraces are not allowed on loop9 [ 195.763054][ T6302] loop0: detected capacity change from 0 to 4096 [ 195.792117][ T6302] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 195.936324][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 196.210255][ T6322] 9pnet_fd: p9_fd_create_tcp (6322): problem connecting socket to 127.0.0.1 [ 196.266039][ T6324] loop3: detected capacity change from 0 to 256 [ 197.351614][ T6340] lo speed is unknown, defaulting to 1000 [ 197.395372][ T6343] loop1: detected capacity change from 0 to 4096 [ 197.498499][ T6349] loop4: detected capacity change from 0 to 2048 [ 197.505834][ T6343] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 197.587748][ T6349] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 197.918710][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 198.015291][ T6360] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 198.030587][ T6360] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 23 with error 28 [ 198.043417][ T6360] EXT4-fs (loop4): This should not happen!! Data will be lost [ 198.043417][ T6360] [ 198.053251][ T6360] EXT4-fs (loop4): Total free blocks count 0 [ 198.059330][ T6360] EXT4-fs (loop4): Free/Dirty block details [ 198.065315][ T6360] EXT4-fs (loop4): free_blocks=2415919104 [ 198.071170][ T6360] EXT4-fs (loop4): dirty_blocks=48 [ 198.076335][ T6360] EXT4-fs (loop4): Block reservation details [ 198.082399][ T6360] EXT4-fs (loop4): i_reserved_data_blocks=3 [ 198.109212][ T6360] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 198.931472][ T6359] team0 (unregistering): Port device team_slave_0 removed [ 198.953353][ T6359] team0 (unregistering): Port device team_slave_1 removed [ 199.127245][ T6378] loop3: detected capacity change from 0 to 256 [ 199.182692][ T6380] loop2: detected capacity change from 0 to 512 [ 199.211302][ T6380] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 199.227585][ T6380] ext4 filesystem being mounted at /127/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 199.265667][ T6380] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #2: comm syz.2.650: corrupted inode contents [ 199.378853][ T6380] EXT4-fs error (device loop2): ext4_dirty_inode:6089: inode #2: comm syz.2.650: mark_inode_dirty error [ 199.420784][ T6380] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #2: comm syz.2.650: corrupted inode contents [ 199.466129][ T6380] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.650: mark_inode_dirty error [ 199.704309][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 199.918032][ T6391] lo speed is unknown, defaulting to 1000 [ 200.360339][ T6400] loop2: detected capacity change from 0 to 4096 [ 200.432313][ T6400] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 200.622142][ T6416] loop1: detected capacity change from 0 to 512 [ 200.682161][ T6416] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 200.690090][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 200.698967][ T6416] ext4 filesystem being mounted at /136/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 200.738036][ T6416] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #2: comm syz.1.663: corrupted inode contents [ 200.759879][ T6416] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #2: comm syz.1.663: mark_inode_dirty error [ 200.778360][ T6416] EXT4-fs error (device loop1): ext4_do_update_inode:5224: inode #2: comm syz.1.663: corrupted inode contents [ 200.806434][ T6416] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz.1.663: mark_inode_dirty error [ 200.863281][ T27] kauditd_printk_skb: 134 callbacks suppressed [ 200.863296][ T27] audit: type=1326 audit(1738888765.059:1033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 200.892871][ T27] audit: type=1326 audit(1738888765.069:1034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 200.923205][ T27] audit: type=1326 audit(1738888765.069:1035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 200.945602][ T27] audit: type=1326 audit(1738888765.069:1036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 200.997885][ T27] audit: type=1326 audit(1738888765.069:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 201.026313][ T4248] EXT4-fs (loop1): unmounting filesystem. [ 201.051209][ T27] audit: type=1326 audit(1738888765.079:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 201.131056][ T27] audit: type=1326 audit(1738888765.079:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 201.174653][ T6432] loop0: detected capacity change from 0 to 512 [ 201.214146][ T27] audit: type=1326 audit(1738888765.079:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 201.238289][ T6433] [ 201.239326][ T27] audit: type=1326 audit(1738888765.079:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000 [ 201.240623][ T6433] ====================================================== [ 201.240631][ T6433] WARNING: possible circular locking dependency detected [ 201.240638][ T6433] 6.1.128-syzkaller #0 Not tainted [ 201.281934][ T6433] ------------------------------------------------------ [ 201.288937][ T6433] syz.1.667/6433 is trying to acquire lock: [ 201.294813][ T6433] ffff888078c59450 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}, at: __flush_work+0xe5/0xad0 [ 201.306242][ T6433] [ 201.306242][ T6433] but task is already holding lock: [ 201.313611][ T6433] ffff888078c58130 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x22d/0x530 [ 201.322578][ T6433] [ 201.322578][ T6433] which lock already depends on the new lock. [ 201.322578][ T6433] [ 201.332966][ T6433] [ 201.332966][ T6433] the existing dependency chain (in reverse order) is: [ 201.341969][ T6433] [ 201.341969][ T6433] -> #1 (sk_lock-AF_SMC/1){+.+.}-{0:0}: [ 201.349702][ T6433] lock_acquire+0x1f8/0x5a0 [ 201.354726][ T6433] lock_sock_nested+0x44/0x100 [ 201.360006][ T6433] smc_listen_out+0x11b/0x3d0 [ 201.365208][ T6433] process_one_work+0x8a9/0x11d0 [ 201.370665][ T6433] worker_thread+0xa47/0x1200 [ 201.375858][ T6433] kthread+0x28d/0x320 [ 201.380449][ T6433] ret_from_fork+0x1f/0x30 [ 201.385389][ T6433] [ 201.385389][ T6433] -> #0 ((work_completion)(&new_smc->smc_listen_work)){+.+.}-{0:0}: [ 201.395566][ T6433] validate_chain+0x1661/0x5950 [ 201.400936][ T6433] __lock_acquire+0x125b/0x1f80 [ 201.406301][ T6433] lock_acquire+0x1f8/0x5a0 [ 201.411318][ T6433] __flush_work+0xfe/0xad0 [ 201.416243][ T6433] __cancel_work_timer+0x519/0x6a0 [ 201.421862][ T6433] smc_clcsock_release+0x5e/0xe0 [ 201.427321][ T6433] __smc_release+0x678/0x7f0 [ 201.432424][ T6433] smc_close_non_accepted+0xd4/0x1e0 [ 201.438222][ T6433] smc_close_active+0xa75/0xe20 [ 201.443587][ T6433] __smc_release+0xa0/0x7f0 [ 201.448600][ T6433] smc_release+0x2d5/0x530 [ 201.453524][ T6433] sock_close+0xcd/0x230 [ 201.458277][ T6433] __fput+0x3f6/0x8d0 [ 201.462773][ T6433] task_work_run+0x246/0x300 [ 201.467880][ T6433] exit_to_user_mode_loop+0xde/0x100 [ 201.473674][ T6433] exit_to_user_mode_prepare+0xb1/0x140 [ 201.479728][ T6433] syscall_exit_to_user_mode+0x60/0x270 [ 201.485789][ T6433] do_syscall_64+0x47/0xb0 [ 201.490721][ T6433] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 201.497133][ T6433] [ 201.497133][ T6433] other info that might help us debug this: [ 201.497133][ T6433] [ 201.507372][ T6433] Possible unsafe locking scenario: [ 201.507372][ T6433] [ 201.514811][ T6433] CPU0 CPU1 [ 201.520182][ T6433] ---- ---- [ 201.525538][ T6433] lock(sk_lock-AF_SMC/1); [ 201.530080][ T6433] lock((work_completion)(&new_smc->smc_listen_work)); [ 201.539570][ T6433] lock(sk_lock-AF_SMC/1); [ 201.546610][ T6433] lock((work_completion)(&new_smc->smc_listen_work)); [ 201.553533][ T6433] [ 201.553533][ T6433] *** DEADLOCK *** [ 201.553533][ T6433] [ 201.561665][ T6433] 2 locks held by syz.1.667/6433: [ 201.566672][ T6433] #0: ffff8880710d1410 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x98/0x230 [ 201.576847][ T6433] #1: ffff888078c58130 (sk_lock-AF_SMC/1){+.+.}-{0:0}, at: smc_release+0x22d/0x530 [ 201.586240][ T6433] [ 201.586240][ T6433] stack backtrace: [ 201.592137][ T6433] CPU: 1 PID: 6433 Comm: syz.1.667 Not tainted 6.1.128-syzkaller #0 [ 201.600107][ T6433] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 201.610157][ T6433] Call Trace: [ 201.613433][ T6433] [ 201.616367][ T6433] dump_stack_lvl+0x1e3/0x2cb [ 201.621036][ T6433] ? nf_tcp_handle_invalid+0x642/0x642 [ 201.626486][ T6433] ? print_circular_bug+0x12b/0x1a0 [ 201.631677][ T6433] check_noncircular+0x2fa/0x3b0 [ 201.636608][ T6433] ? add_chain_block+0x850/0x850 [ 201.641534][ T6433] ? lockdep_lock+0x11f/0x2a0 [ 201.646209][ T6433] ? rcu_is_watching+0x11/0xb0 [ 201.650962][ T6433] ? _find_first_zero_bit+0xd0/0x100 [ 201.656244][ T6433] validate_chain+0x1661/0x5950 [ 201.661083][ T6433] ? deref_stack_reg+0x17c/0x210 [ 201.666014][ T6433] ? is_bpf_text_address+0x22/0x2a0 [ 201.671259][ T6433] ? __bfs+0x359/0x6e0 [ 201.675330][ T6433] ? reacquire_held_locks+0x660/0x660 [ 201.680698][ T6433] ? check_path+0x40/0x40 [ 201.685020][ T6433] ? noop_count+0x30/0x30 [ 201.689356][ T6433] ? __bfs+0x359/0x6e0 [ 201.693427][ T6433] ? look_up_lock_class+0x77/0x140 [ 201.698532][ T6433] ? register_lock_class+0x100/0x990 [ 201.703812][ T6433] ? check_path+0x21/0x40 [ 201.708142][ T6433] ? check_noncircular+0x1e3/0x3b0 [ 201.713249][ T6433] ? is_dynamic_key+0x260/0x260 [ 201.718097][ T6433] ? mark_lock+0x9a/0x340 [ 201.722429][ T6433] __lock_acquire+0x125b/0x1f80 [ 201.727283][ T6433] lock_acquire+0x1f8/0x5a0 [ 201.731785][ T6433] ? __flush_work+0xe5/0xad0 [ 201.736367][ T6433] ? read_lock_is_recursive+0x10/0x10 [ 201.741744][ T6433] ? reacquire_held_locks+0x660/0x660 [ 201.747107][ T6433] ? reacquire_held_locks+0x660/0x660 [ 201.752468][ T6433] ? reacquire_held_locks+0x660/0x660 [ 201.757830][ T6433] ? __flush_work+0xe5/0xad0 [ 201.762411][ T6433] __flush_work+0xfe/0xad0 [ 201.766814][ T6433] ? __flush_work+0xe5/0xad0 [ 201.771395][ T6433] ? flush_work+0x20/0x20 [ 201.775729][ T6433] ? print_irqtrace_events+0x210/0x210 [ 201.781195][ T6433] ? __cancel_work_timer+0x467/0x6a0 [ 201.786469][ T6433] __cancel_work_timer+0x519/0x6a0 [ 201.791568][ T6433] ? mark_lock+0x9a/0x340 [ 201.795903][ T6433] ? cancel_work_sync+0x20/0x20 [ 201.800749][ T6433] ? __smc_release+0x670/0x7f0 [ 201.805508][ T6433] ? __local_bh_enable_ip+0x164/0x1f0 [ 201.810884][ T6433] ? lockdep_hardirqs_on+0x94/0x130 [ 201.816117][ T6433] ? __local_bh_enable_ip+0x164/0x1f0 [ 201.821487][ T6433] ? __smc_release+0x670/0x7f0 [ 201.826241][ T6433] ? _local_bh_enable+0xa0/0xa0 [ 201.831088][ T6433] ? do_raw_spin_unlock+0x137/0x8a0 [ 201.836278][ T6433] smc_clcsock_release+0x5e/0xe0 [ 201.841211][ T6433] __smc_release+0x678/0x7f0 [ 201.845816][ T6433] smc_close_non_accepted+0xd4/0x1e0 [ 201.851107][ T6433] smc_close_active+0xa75/0xe20 [ 201.855975][ T6433] ? sock_no_sendpage_locked+0x1e0/0x1e0 [ 201.861627][ T6433] __smc_release+0xa0/0x7f0 [ 201.866138][ T6433] smc_release+0x2d5/0x530 [ 201.870546][ T6433] sock_close+0xcd/0x230 [ 201.874790][ T6433] ? sock_mmap+0x90/0x90 [ 201.879048][ T6433] __fput+0x3f6/0x8d0 [ 201.883029][ T6433] task_work_run+0x246/0x300 [ 201.887618][ T6433] ? task_work_cancel+0x2e0/0x2e0 [ 201.892639][ T6433] ? exit_to_user_mode_loop+0x39/0x100 [ 201.898092][ T6433] exit_to_user_mode_loop+0xde/0x100 [ 201.903378][ T6433] exit_to_user_mode_prepare+0xb1/0x140 [ 201.908921][ T6433] syscall_exit_to_user_mode+0x60/0x270 [ 201.914476][ T6433] do_syscall_64+0x47/0xb0 [ 201.918888][ T6433] ? clear_bhb_loop+0x45/0xa0 [ 201.923557][ T6433] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 201.929470][ T6433] RIP: 0033:0x7fc18818cde9 [ 201.933887][ T6433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 201.953491][ T6433] RSP: 002b:00007fc187fff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 201.961900][ T6433] RAX: 0000000000000000 RBX: 00007fc1883a5fa0 RCX: 00007fc18818cde9 [ 201.969865][ T6433] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006 [ 201.977832][ T6433] RBP: 00007fc18820e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 201.985804][ T6433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.993773][ T6433] R13: 0000000000000000 R14: 00007fc1883a5fa0 R15: 00007ffc10196918 [ 202.001761][ T6433] [ 202.036496][ T6432] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 202.048043][ T6432] ext4 filesystem being mounted at /150/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 202.086356][ T4247] EXT4-fs (loop0): unmounting filesystem. [ 202.097485][ T27] audit: type=1326 audit(1738888765.079:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.2.665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe179b8cde9 code=0x7ffc0000