last executing test programs: 3.705278732s ago: executing program 1 (id=3629): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000007d000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffa4, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x1800403, &(0x7f0000000940), 0xff, 0x5ad, &(0x7f0000000180)="$eJzs3c1vVFUbAPDnzkwLpe9rKzEqLkyjIZAoLS1g8GMBe0LwY+fGSgtBho/QGi2aWBLcmBg3LkhcuRD/CyW6dWXiwoUbV4akGsNGY3TMnbkzDO1MOy0dbu39/ZLbOeeeOz3nQp85Z+49ZyaAwhpLf5Qi9kTE5SRipK2sElnhWOO4O7+/fzrdkqjVXv0tiSTb1zw+yR6Hsyf/PRLx/TdJ7C6vrHdu4er56Wp19kqWn5i/cHlibuHqgXMXps/Onp29OPXc1NEjh48cnTx4X+dXakufuP7WOyMfnXz9i8/+Sia//OlkEsfi1zONsvbz2CxjMRZ/1GofLN+f/rse3ezKclJu/Z3clSzfwZZVyWJkMCIei5Eot/1vjsSHL+faOKCvaklEDSioRPxDQTXHAc339r29Dy71eVQCPAhLx9OfAx3iv9K4NhijMRARe5c9r8MlvQ1J6/ju25PX0y36dB0O6Gzx2o4stTz+k3psjsbOem7XndI913nTEcCp7DHd/8oG6x9blhf/8OAsXouIxzuN/9eO/zfa4v/NDdYv/gEAAAAAAGDz3DoeEc92uv9Xyu7N7Yyn6vf/ksb9vx/urhA8tgn1r33/r3R7E6oBOlg6HvFSx/m/rTm+o+Us9//GbMDkzLnq7MGIeCgi9sfAjjQ/uUodBz7efaNbWfv8v3RL62/OBczacbuy497nzEzPT9/POQMNS9cinqh0n/+T9v9Je/+fSV8PLvdYx+69N091K1s7/oF+qX0esa9j/5+0jklW/3yOifp4YKI5Kljpyfc++apb/eIf8pP2/7tWj//RpP3zeubW9/sHI+LQQqXWrXyj4//B5LVy8/en3p2en78yGTGYnFi5f2p9bYbtqhkPzXhJ43//06tf/2uN/9vicCgiFnus89F/hn/uVqb/h/yk8T+zrv5//Ympm6Nfd6u/t/7/cL1P35/tcf0PVtdrgObdTgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4LypFxP8iKY230qXS+HjEcEQ8ErtK1Utz88+cufT2xZm0rP79/6XmN/2ONPJJ8/v/R9vyU8vyhyLi4Yj4tDxUz4+fvlSdyfvkAQAAAAAAAAAAAAAAAAAAYIsY7rL+P/VLOe/WAX1XyR7FOxRPJe8GALkR/1Bc4h+KS/xDcYl/KK4Nxr/bBbAN6P+hqAZ6O2xnv9sB5EH/DwAAAAAA28qtF5+/kUTE4gtD9S01mJW1bgwO5dU6oJ9KeTcAyI05vFBcpv5AcfU4+RfYxpJW6s9ap/Lus/+T/jQIAAAAAAAAAAAAAFhh355bP665/h/Ylqz/h+Ky/h+Ky/p/KC7v8YG1VvFb/w8AAAAAAAAAAAAA+ZtbuHp+ulqdvSIhsdUSAxGxBZqRQ2Iw//DM+YUJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo+TcAAP//Swsk/Q==") 3.404255683s ago: executing program 1 (id=3631): r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000000)={r2, 0x6, 0x4, 0x2}, &(0x7f0000000140)=0x10) 3.282258693s ago: executing program 1 (id=3633): r0 = socket(0x840000000002, 0x3, 0x100) sendmmsg$inet(r0, &(0x7f0000000d80)=[{{&(0x7f0000000040)={0x2, 0x4e23, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000740)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x9}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @multicast1}}}], 0x38}}, {{&(0x7f00000007c0)={0x2, 0x4e22, @local}, 0x10, 0x0, 0x0, &(0x7f0000000d00)=[@ip_tos_int={{0x14, 0x0, 0x1, 0x7ff}}], 0x18}}], 0x2, 0xff88) 3.004205264s ago: executing program 1 (id=3638): r0 = io_uring_setup(0x4166, &(0x7f00000002c0)={0x0, 0x4, 0x2, 0x3, 0x4000000}) io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0xa, 0x2000000, 0x0) 2.820120604s ago: executing program 1 (id=3643): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101804bc9555e1affd5020000000900010001797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a300000000009000300737975320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x480d5}, 0x0) 2.587674504s ago: executing program 1 (id=3647): r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r0, &(0x7f0000001880), 0x0, 0x0, 0x0) r1 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x2710, @host}, 0x10) listen(r1, 0x0) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10) r3 = accept4(r1, 0x0, 0x0, 0x0) sendmmsg$sock(r3, &(0x7f0000000400)=[{{0x0, 0x0, &(0x7f0000004b00)=[{&(0x7f00000000c0)="0f", 0x1}], 0x1}}], 0x1, 0x0) recvmmsg(r2, &(0x7f0000000bc0)=[{{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000240)=""/177, 0xb1}], 0x1}}], 0xffffff1f, 0x0, 0x0) 1.818571416s ago: executing program 0 (id=3652): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000410, &(0x7f0000000080), 0x81, 0x7a5, &(0x7f0000000f80)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file3\x00', 0x143042, 0x0) pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0) write$RDMA_USER_CM_CMD_NOTIFY(r0, &(0x7f0000000480)={0xf, 0x8, 0xfa00, {0xffffffffffffffff, 0x5}}, 0x10) 1.636184416s ago: executing program 2 (id=3653): fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x5b, &(0x7f0000000040)=ANY=[@ANYRES64], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x100, @void, @value}, 0x94) r1 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'netdevsim0\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0200000004000000008001400200000000000000", @ANYRES32, @ANYBLOB="0001000000000000000000000000000004000000", @ANYRES32=r2], 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000000000"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) 1.614015607s ago: executing program 0 (id=3654): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000340)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') acct(&(0x7f0000000200)='./file0\x00') 1.391898007s ago: executing program 0 (id=3657): socketpair$unix(0x1, 0x4, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'geneve1\x00'}) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x44080) r1 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'ipvlan0\x00'}) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000001}, 0x800) socket$nl_generic(0x10, 0x3, 0x10) r2 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r3 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) readv(r3, &(0x7f0000000340)=[{&(0x7f0000000080)=""/140, 0x8c}, {&(0x7f00000002c0)=""/99, 0x63}], 0x2) ioctl$IMADDTIMER(r3, 0x80044940, &(0x7f0000000000)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x60000000000, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) 1.391677187s ago: executing program 2 (id=3658): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_GET_NEXT_KEY(0x4, 0x0, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socket$netlink(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf7cf39e3100c8acaa47684f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d7559f3b14820ed58b15627c95aa0b784625704f07372c29184ff7f4a7c0000070015006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e000000000000041201baa80b0b8ed8fb1ec577c377f627daaf787a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bdeda7be586602d985430cea080000000000fb1a26abfb0767192361448279b05d96a703a660587a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aab926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb155481ef836eb0f8c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaed2b25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec0271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761036eafed1fb2b98b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe514283707c70600000000000000b7561301bb997316db01ee601f2c9659db9bc04f7089a660d8dcc3ae83169cf331efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a515d83129cd857c775f9e7d6101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbe3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562e00e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb2214209ed2d5d776e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b55ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f608ce27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e30400000000000000000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a95d32f46ed9bd1f00fb8191bbab2dc599dda61ee2010000294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bfe2777e808fcba821a00e8c5c39609ff854256cb490000000000c1fee30a3f7a85d1b2b458c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd210819203828b202779d386ed295f023c67d867014d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff00004043060000005dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df40600000000000000e9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b0600b805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1202000000b59fed817072a0da60160761fd3dffda0f7c742eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7000000000000000542954c167dd9b4acd946ffffffffffffffff1389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c9e281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b630500163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f700400fa0c61d5fe6d8ff353f631080405547d65375ae04f44f0c2543c772c5ccb137be7dc87746e1785a8214454d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b036e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e010000005a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb3985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1428c0805b4031a667e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a9cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab9100781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c1227c8bed10591958c906321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b863af34bac64c247672a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f27080ece2a94c360b002c77f82662675a7713c7067081cac1599a998c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc215a18ca0265400abf38e90000000000000000008faf2cddffbfa66bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942ce18e57bb7f337df5435bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de286553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c03f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c872a4882d21db2046a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265441d513a1294b8439276394945d94a589708e32a1cb30a8b07b391201385e0b92ecbb7b13d7a87284164018ace6ce58a82c5de321452461089cdd69259f5390f5f508646a524490583c30630bedb47e158ad41c0a653e86a4f4f255cd2a6e95f33b586823aef5564d9de1f5bdd8c80e193f0597b8003860302cd243c00bc5a82c52afb115d16258d507937966bb89409d6d47b8b652d0761d7c72875ae1efb9bc7c6807c2d783e31fd9cd7e84d3d50d8fc44ab8ac9ccd2c0d42e3bd4c029241320446bbf47e23d1320de30fbdf7ed13f80c28fb5c13fccc2e3f73509bdcddad8a2fe48cdd61f2f43611704af64eed8b0cbbd08754f93b8f3d6347aad5cde1ccc5cbd5eaa87e52cea257c856a4af5243eeb5e89f0000000000000000f420df5e4c6d856b3d55e455c08110b2ef4255a38f81555e8e1f22d59c0bc3c9013e66a1f5bda1b695e1602c0afb5c35b2f68f3b151b1e869f40ff4d1bef5e926e1ff95f6321131e4cb797f53455a093a95e67605222d6acc29c46e5db1ef3b8b07e2169fb24ced4b3ae87ebeca06df93212e465bbd1a7e41df2e1a0d508f86cfc7a469ac682685c44692877d03c34c23a65d2677acc73b5d276fdebd685c9b7a079eae228d8426188cb19b083548f5f29e493ab079f33d1965dcbb165015c46998ad410d60cc65fcfa73bd65a43fc024455c4bf530d663976cf71490577251780ab6b1cf8d397444b5be575229f687a3d95ea6b2aa62fce8acb3d4a6a130b4fefa55d0c1d6f3fa448ee24e588e2965c9a442f0baf90923dda91a6850fb7b9c7f432b63001423fedcf053fa28024cc9a178a07042dabc07176fc524032c2edb340c9c18a83565c431aeb0c869683507255254430f90f61e4eca9c8fa98c000b35fec357ee1ebd08439bd95c1ab0753dfd2603d1608bd8c589a1e160000a6ee0ad13346e08738c2d7b00b5d121d918f1dc8bceded939fa8605b54b37cdfcea0bf2bc63e655dc04a2e50212ff89d6587d49896ce18916cf3adc12839c345ca91bb232b891fae2fdd68aaa38281c0feb2c107af3e080d6cdd1c6646ec6804d7e9960c02aa0db9eda24bbcb287fd2a890fa7f9d6ae0c0b1f8dd1603c9ea2f66b572276f96a28b5b6dd9f9bf6ad4bdaa2139b90faf1f40b0f141258578bd825daaaf718d21b7ac05fe5d1b699e5422ca341fe1c944f68fe3a6d783dcf30b0e09d7688f696883b61cb64464b04d351a0a69b0733c348049b0430ed40e200f4ff0000000000000000000000996bcc1b721b152c892fab887e7d20466d90c049c0fdf51dcc16d226a2619c6f47bc25b7f5df5c09fed638922ed127ab36aa7b0c58a2ce5894b1b0f5375d340d96b69b966b05daaf585121a9c7605ed8e9964eef1f14b74cbb2ccdadc6d0b77cf0492b75e1cd11bfdcfddde91b20366715ba0cbe1041be2a65c25d7ca15ef8b71bd2ab9a4294899a1964b0152518fc2ac15a728bcb9e2bc4b551dfdf9011a2a607bc39ad2c4d7c64dcf967724e9b63c397d5265ad3f1da4395a5a800d8845257dcbf210d4f00fe0bd3deed05e506736e6bb6d40ee6cb960bcdb33633ee87f82beb665a9a4c2d4d2b06479ade3a4cd6bba765c9f52b52a0bdd0849ab92baae3775570accb5a57ee9f0035fc6d3df4eebec2e7eb4ff863d3979a20f4428ddca471037b49d4fd130743a97faa02c293b721e52bf53d64c6585e138162331ef98792e1e9b21a6a084fb7b42c64062ef1323a8a65a8ed6038f274f28ff4f78136a1ef108efbe8c4f4e347d50dcdbc33bf3ade4c3a39d316061930d7dd39b8acdecc3f27830e3eda40e648328d95a9aee65a9dd09fd4e96d5b852025dc53ec3f30cc753e6a796084b4e34f521dbb230ae0f3b79142073d437e1fd22d3b7503ffa95b1d5c7740b0ecbfd35dc0f8af895583dfcc2689f6e02c2dd4b57f3dcac54f40da013eb221fa3d65de760576031052c25a96ed4b20230b36d46d3d3fd6bb1d77cc8a48a6b10fa0149e55ccde4a2b26cca2d1ca9191c74ab006a602543fc24d1283e353cfb917620000000024bf3eed258c02a591ec4cd295212d9a98d38745f6f6c4530900000000000000f184f239098bf32551c7cf454e2865974f6520112743f73c619c3cab5609e00178f7393e53462f31559220c026bbde09837bf1b3ffe748a3247c9569f0c5e99f4494f93e0fa1badca90c888616eca97bddabd8003fc12a084d4b11d841979e161b998ddda92f194c4ec7947b7b303be11e0962d429a2c542a28c4932e14c123dfe2b8ec47a11cce134fd6e42a9f4e00ab6de6b45"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x0, &(0x7f0000000080), 0x64, 0x52a, &(0x7f0000000a40)="$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") llistxattr(&(0x7f0000000140)='./file1\x00', 0x0, 0x0) 1.109604677s ago: executing program 3 (id=3660): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000040000000c"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = fsopen(&(0x7f0000000400)='autofs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000240)=',-\x10*\x00', &(0x7f0000000380)='$\x00', 0x0) fsconfig$FSCONFIG_SET_FD(r2, 0x5, &(0x7f00000005c0)='dE\x00', 0x0, r2) fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000580)='\xa3\x04\x00', &(0x7f00000003c0)="c5", 0x1) fsconfig$FSCONFIG_SET_STRING(r2, 0x1, &(0x7f0000000000)='}.&,[\'.\x00', &(0x7f0000000200)='\xb8\x8b\xadTd\xdcJ\x03\xf7\n\x11x\xf5\x93Q#\xfe\xb4\xeb\xd9/\x90\xad\xc5\xd0\a\xef\x06$*\xf0\v7>\xa8`\xf1)\xec\xba\xb7\x85\a\x92I\xbb\xfe2\xa0\xc1\xb3\x13p\xa2l', 0x0) close(r2) 891.265698ms ago: executing program 4 (id=3661): r0 = socket(0x1e, 0x2, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10) sendmmsg(0xffffffffffffffff, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000) dup3(r0, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48) connect$inet6(0xffffffffffffffff, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) inotify_add_watch(0xffffffffffffffff, 0x0, 0x4300086c) msgsnd(0x0, 0x0, 0x839, 0x0) setresuid(0xee01, 0xee00, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00'}, 0x10) request_key(&(0x7f0000000b80)='rxrpc_s\x00', &(0x7f0000000bc0)={'syz', 0x0}, &(0x7f0000000c00)=']!\'\x00', 0xfffffffffffffffe) 891.140778ms ago: executing program 2 (id=3662): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x21885e, &(0x7f0000000440)={[{@grpquota}, {@min_batch_time={'min_batch_time', 0x3d, 0x2f}}, {@dioread_lock}]}, 0x5, 0x504, &(0x7f0000001480)="$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") acct(&(0x7f0000000200)='./file1\x00') setxattr$incfs_metadata(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380), 0x0, 0x0, 0x0) r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 891.036178ms ago: executing program 3 (id=3663): ioctl$VT_ACTIVATE(0xffffffffffffffff, 0x5606, 0x9c) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001380)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) syz_emit_ethernet(0x1f, &(0x7f0000000180)=ANY=[@ANYBLOB="ffffffffffff000000e8ff0000"], 0x0) bpf$TOKEN_CREATE(0x24, &(0x7f0000000240), 0x8) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r1, &(0x7f0000000480)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, &(0x7f0000000500)=[{&(0x7f0000000140)="03", 0x1}], 0x1}}], 0x1, 0x34000811) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYRES32=0x0, @ANYRES32=r1], 0x1000f) 796.905369ms ago: executing program 3 (id=3664): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000004280)={0x0, 0x0, &(0x7f0000004240)={&(0x7f0000003d80)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x28}, 0x1, 0x0, 0x0, 0x10}, 0x4000000) 704.728428ms ago: executing program 3 (id=3665): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}}, 0x0) 604.282749ms ago: executing program 4 (id=3666): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0xe0c81) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000180)={0x0, 0x0, 0x0, 'queue1\x00'}) write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32}], 0xffc8) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r0, 0x4040534e, &(0x7f00000000c0)={0x3a2}) 570.235508ms ago: executing program 4 (id=3667): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x32, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0x0, 0x0, 0x0, 0xea}}}}}, 0x0) 503.335649ms ago: executing program 4 (id=3668): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) symlink(0x0, 0x0) 415.972139ms ago: executing program 3 (id=3669): r0 = io_uring_setup(0x177f, &(0x7f0000000140)={0x0, 0x21b0, 0x0, 0x0, 0xfffffffd}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000580)={@in6={{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, 0x0, 0x0, 0x42, 0x0, "bd1c790806ed6dcd18899f9ea77ca9fb5184ff0ba54b7dfe784d2f6b7dcd9474d9b295588ac0b991d5c66461eca3f1ff5543acc6c970d0ad22d692e84d692972368e64c272da633a217b45fcc8b1ff3b"}, 0xd8) setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000340)=0x2, 0xa2) setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f0000000540), 0x3c) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f000000e0c0), 0x10010) setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f0000000200)=@gcm_256={{0x304}, "00e0f07600", "832b4d2434b35bca8c0b78d2afff6d70d2025c7f53123828322d5af0d5c6c3a5", '`\a-N', "298f0e6df9ae9b3d"}, 0x38) sendfile(r1, r2, &(0x7f0000000100)=0x8dff, 0x100000000010001) close_range(r0, 0xffffffffffffffff, 0x0) 415.771669ms ago: executing program 0 (id=3670): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000001c000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="4000a2000a000200ffffffffffff000008000f"], 0x34}}, 0x0) 415.126599ms ago: executing program 2 (id=3671): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) mkdir(0x0, 0x0) epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) 281.226269ms ago: executing program 4 (id=3672): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="6c010000170001000000000000000000fc00000000ecff000000000000dfffffffffffffff000000fe5f00000000000000000000000000bbac1414069f0000000000000000000000fc000000000000000000000000000000000000000000000000000000233f6f35", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fc020000000000000000000000000000ffffffff00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000440005"], 0x16c}}, 0x0) 280.717149ms ago: executing program 3 (id=3673): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149) setsockopt$inet_group_source_req(r0, 0x0, 0x2e, 0x0, 0x0) 192.10388ms ago: executing program 2 (id=3674): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0xb, 0x8400, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='kfree\x00', r1}, 0x18) bpf$MAP_LOOKUP_ELEM(0x15, &(0x7f00000017c0)={r0, &(0x7f0000001680), 0x0}, 0x20) 164.88226ms ago: executing program 0 (id=3675): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={{0x14}, [@NFT_MSG_NEWSET={0x30, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x58}}, 0x0) 78.38649ms ago: executing program 4 (id=3676): bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') r1 = openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00'}) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000002c0)={[{@mb_optimize_scan}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@auto_da_alloc}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0) creat(&(0x7f0000000140)='./file2\x00', 0x1ad) unlink(&(0x7f0000000180)='./file1\x00') 201.15µs ago: executing program 2 (id=3677): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r2}, 0x10) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001840)=@newtaction={0xe6c, 0x30, 0x25, 0x0, 0x0, {}, [{0xe58, 0x1, [@m_pedit={0xe54, 0x1, 0x0, 0x0, {{0xa}, {0xe28, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x0, 0x0, 0xffffffffffffffff}, 0x3}, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x9, 0xad1}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffd, 0xfffffffe}, {0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x10000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}]}}, @TCA_PEDIT_KEYS_EX={0x4}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe6c}}, 0x0) 0s ago: executing program 0 (id=3678): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b6fffec850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x6}, 0x18) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x756, &(0x7f00000002c0)="$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") mount$9p_tcp(0x0, &(0x7f0000000540)='./file0\x00', &(0x7f0000000580), 0x9e, &(0x7f0000000700)) kernel console output (not intermixed with test programs): [ 414.144906][ T26] audit: type=1326 audit(1733746177.467:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12301 comm="syz.0.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 414.187950][ T38] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 414.230139][ T26] audit: type=1326 audit(1733746177.467:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12301 comm="syz.0.2994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 414.287136][ T38] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 414.300954][T12254] netlink: 'syz.3.2971': attribute type 6 has an invalid length. [ 414.355004][ T38] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 414.661896][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 414.822269][T12298] chnl_net:caif_netlink_parms(): no params data found [ 415.090650][T12326] Cannot find set identified by id 0 to match [ 415.328074][T12337] xt_hashlimit: size too large, truncated to 1048576 [ 415.349670][ T26] audit: type=1326 audit(1733746178.867:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12338 comm="syz.2.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 415.377524][ T26] audit: type=1326 audit(1733746178.887:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12338 comm="syz.2.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 415.409842][T12298] bridge0: port 1(bridge_slave_0) entered blocking state [ 415.425972][ T26] audit: type=1326 audit(1733746178.897:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12338 comm="syz.2.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 415.448935][T12298] bridge0: port 1(bridge_slave_0) entered disabled state [ 415.478954][ T26] audit: type=1326 audit(1733746178.997:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12338 comm="syz.2.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 415.505540][T12298] device bridge_slave_0 entered promiscuous mode [ 415.546238][T12298] bridge0: port 2(bridge_slave_1) entered blocking state [ 415.565683][T12298] bridge0: port 2(bridge_slave_1) entered disabled state [ 415.594587][T12298] device bridge_slave_1 entered promiscuous mode [ 415.672479][ T26] audit: type=1326 audit(1733746178.997:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12338 comm="syz.2.3006" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 415.955707][T12298] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 416.144411][ T4256] Bluetooth: hci0: command 0x0409 tx timeout [ 416.334937][T12369] loop2: detected capacity change from 0 to 512 [ 416.388586][T12369] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 416.401272][T12369] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it [ 416.412604][T12369] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.3012: Corrupt directory, running e2fsck is recommended [ 416.430322][T12369] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117 [ 416.446677][T12369] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2186: inode #15: comm syz.2.3012: corrupted in-inode xattr [ 416.473511][T12369] EXT4-fs (loop2): Remounting filesystem read-only [ 416.485450][T12369] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.3012: couldn't read orphan inode 15 (err -117) [ 416.498096][T12369] EXT4-fs (loop2): Remounting filesystem read-only [ 416.505010][T12369] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 416.522421][T12369] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 416.536284][T12369] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it [ 416.546871][T12369] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.3012: Corrupt directory, running e2fsck is recommended [ 416.625475][T12376] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 416.644309][T12376] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it [ 416.655702][T12376] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.3012: Corrupt directory, running e2fsck is recommended [ 417.568320][T12298] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 417.588652][T12360] tipc: Started in network mode [ 417.593667][T12360] tipc: Node identity ac14140f, cluster identity 4711 [ 417.602490][T12360] tipc: New replicast peer: 255.255.255.255 [ 417.609902][T12360] tipc: Enabled bearer , priority 10 [ 417.623292][T12374] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3013'. [ 417.664309][T12374] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 417.671829][T12374] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 417.720131][T12374] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 417.738111][T12374] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 417.760405][T12380] Cannot find set identified by id 0 to match [ 417.976993][T12298] team0: Port device team_slave_0 added [ 417.985539][ T4258] EXT4-fs (loop2): unmounting filesystem. [ 418.006736][T12298] team0: Port device team_slave_1 added [ 418.224323][ T4256] Bluetooth: hci0: command 0x041b tx timeout [ 418.377449][T12298] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 418.471484][T12298] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 418.604286][ T125] tipc: Node number set to 2886997007 [ 418.686212][T12298] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 419.041928][T12298] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 419.069416][T12298] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 419.154589][T12298] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 419.274347][ T38] device hsr_slave_0 left promiscuous mode [ 419.324495][ T38] device hsr_slave_1 left promiscuous mode [ 419.337506][ T38] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 419.361477][ T38] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 419.380625][ T26] kauditd_printk_skb: 57 callbacks suppressed [ 419.380652][ T26] audit: type=1326 audit(1733746182.897:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12409 comm="syz.3.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 419.410475][ T38] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 419.440505][ T38] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 419.493199][ T38] device dummy0 left promiscuous mode [ 419.502129][ T26] audit: type=1326 audit(1733746182.947:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12409 comm="syz.3.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 419.509910][ T38] bridge0: port 3(dummy0) entered disabled state [ 419.549564][T12414] Cannot find set identified by id 0 to match [ 419.561963][ T38] device bridge_slave_1 left promiscuous mode [ 419.604215][ T26] audit: type=1326 audit(1733746182.947:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12409 comm="syz.3.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 419.640003][ T38] bridge0: port 2(bridge_slave_1) entered disabled state [ 419.657220][ T38] device bridge_slave_0 left promiscuous mode [ 419.673684][ T38] bridge0: port 1(bridge_slave_0) entered disabled state [ 419.687925][ T26] audit: type=1326 audit(1733746182.947:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12409 comm="syz.3.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 419.766752][ T26] audit: type=1326 audit(1733746182.947:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12409 comm="syz.3.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 419.853786][ T38] device veth1_macvtap left promiscuous mode [ 419.856521][ T26] audit: type=1326 audit(1733746182.947:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12409 comm="syz.3.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 419.870287][ T38] device veth0_macvtap left promiscuous mode [ 419.960013][ T38] device veth1_vlan left promiscuous mode [ 419.976054][ T38] device veth0_vlan left promiscuous mode [ 419.993923][ T26] audit: type=1326 audit(1733746182.967:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12409 comm="syz.3.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 420.099609][ T26] audit: type=1326 audit(1733746182.967:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12409 comm="syz.3.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 420.195633][ T26] audit: type=1326 audit(1733746182.967:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12409 comm="syz.3.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 420.304335][ T4256] Bluetooth: hci0: command 0x040f tx timeout [ 420.316085][ T26] audit: type=1326 audit(1733746182.967:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12409 comm="syz.3.3024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 421.292667][T12448] 9p: Unknown Cache mode l [ 421.971751][ T38] team0 (unregistering): Port device team_slave_1 removed [ 422.184692][ T38] team0 (unregistering): Port device team_slave_0 removed [ 422.357130][ T38] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 422.384303][ T4256] Bluetooth: hci0: command 0x0419 tx timeout [ 422.448381][T12471] loop2: detected capacity change from 0 to 512 [ 422.539185][ T38] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 422.705061][T12471] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 422.734507][T12471] ext4 filesystem being mounted at /618/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 422.887112][ T4258] EXT4-fs (loop2): unmounting filesystem. [ 423.506449][ T38] bond0 (unregistering): Released all slaves [ 423.615650][T12298] device hsr_slave_0 entered promiscuous mode [ 423.622538][T12298] device hsr_slave_1 entered promiscuous mode [ 423.629840][T12298] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 423.638136][T12298] Cannot create hsr debugfs directory [ 423.651570][T12420] device pim6reg1 entered promiscuous mode [ 423.681411][T12482] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3047'. [ 423.927827][T12489] loop3: detected capacity change from 0 to 512 [ 424.055982][T12489] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 424.117319][T12489] ext4 filesystem being mounted at /604/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 424.385877][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 425.755143][ T26] kauditd_printk_skb: 16 callbacks suppressed [ 425.755159][ T26] audit: type=1326 audit(1733746189.277:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12541 comm="syz.2.3064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 425.839914][ T26] audit: type=1326 audit(1733746189.307:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12541 comm="syz.2.3064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 425.849645][T12298] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 425.933857][ T26] audit: type=1326 audit(1733746189.307:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12541 comm="syz.2.3064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 425.959909][T12298] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 426.021124][ T26] audit: type=1326 audit(1733746189.307:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12541 comm="syz.2.3064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 426.021926][T12298] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 426.117868][T12551] loop0: detected capacity change from 0 to 512 [ 426.134375][ T26] audit: type=1326 audit(1733746189.307:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12541 comm="syz.2.3064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 426.139333][T12551] ======================================================= [ 426.139333][T12551] WARNING: The mand mount option has been deprecated and [ 426.139333][T12551] and is ignored by this kernel. Remove the mand [ 426.139333][T12551] option from the mount to silence this warning. [ 426.139333][T12551] ======================================================= [ 426.198318][T12298] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 426.209242][ T26] audit: type=1326 audit(1733746189.307:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12541 comm="syz.2.3064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 426.324297][ T26] audit: type=1326 audit(1733746189.307:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12541 comm="syz.2.3064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 426.360121][T12561] program syz.4.3070 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 426.388756][ T26] audit: type=1326 audit(1733746189.307:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12541 comm="syz.2.3064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 426.470078][ T26] audit: type=1326 audit(1733746189.307:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12541 comm="syz.2.3064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 426.498950][T12551] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.3068: bg 0: block 5: invalid block bitmap [ 426.524719][ T26] audit: type=1326 audit(1733746189.307:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12541 comm="syz.2.3064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbe5117fed9 code=0x7ffc0000 [ 426.547331][T12551] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 426.571418][T12560] rdma_op ffff8880764b29f0 conn xmit_rdma 0000000000000000 [ 426.611258][T12551] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.3068: invalid indirect mapped block 3 (level 2) [ 426.650661][T12551] EXT4-fs (loop0): 1 orphan inode deleted [ 426.679388][T12551] EXT4-fs (loop0): 1 truncate cleaned up [ 426.700813][T12551] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 426.714488][T12298] 8021q: adding VLAN 0 to HW filter on device bond0 [ 426.850984][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 426.877432][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 427.038154][T11861] EXT4-fs (loop0): unmounting filesystem. [ 427.096018][T12298] 8021q: adding VLAN 0 to HW filter on device team0 [ 427.670496][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 427.709034][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 427.732972][ T4526] bridge0: port 1(bridge_slave_0) entered blocking state [ 427.741398][ T4526] bridge0: port 1(bridge_slave_0) entered forwarding state [ 427.900777][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 427.971079][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 427.991306][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 428.031980][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 428.039136][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 428.128713][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 428.179737][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 428.193304][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 428.223032][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 428.241974][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 428.307214][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 428.339854][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 428.372859][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 428.419310][T12587] netlink: 8 bytes leftover after parsing attributes in process `+}[@'. [ 428.459580][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 428.534828][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 428.693320][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 428.736368][T12298] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 429.604900][T12620] device hsr_slave_0 left promiscuous mode [ 429.625069][T12620] device hsr_slave_1 left promiscuous mode [ 429.761085][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 429.774003][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 429.797097][T12298] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 429.812906][T12625] netlink: 'syz.4.3088': attribute type 10 has an invalid length. [ 429.828420][T12625] bridge0: port 2(bridge_slave_1) entered disabled state [ 429.836275][T12625] bridge0: port 1(bridge_slave_0) entered disabled state [ 429.877131][T12625] bridge0: port 2(bridge_slave_1) entered blocking state [ 429.884352][T12625] bridge0: port 2(bridge_slave_1) entered forwarding state [ 429.894059][T12625] bridge0: port 1(bridge_slave_0) entered blocking state [ 429.901282][T12625] bridge0: port 1(bridge_slave_0) entered forwarding state [ 429.967148][T12625] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 430.038708][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 430.056203][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 430.138899][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 430.162195][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 430.193801][T12298] device veth0_vlan entered promiscuous mode [ 430.216798][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 430.233277][T12632] loop2: detected capacity change from 0 to 512 [ 430.248998][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 430.281431][T12298] device veth1_vlan entered promiscuous mode [ 430.362417][T12632] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 430.378127][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 430.391339][T12632] ext4 filesystem being mounted at /633/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 430.444442][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 430.465604][T12632] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #2: comm syz.2.3090: corrupted inode contents [ 430.476538][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 430.487475][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 430.500738][T12298] device veth0_macvtap entered promiscuous mode [ 430.512069][T12298] device veth1_macvtap entered promiscuous mode [ 430.523649][T12632] EXT4-fs error (device loop2): ext4_dirty_inode:6089: inode #2: comm syz.2.3090: mark_inode_dirty error [ 430.570370][T12632] EXT4-fs error (device loop2): ext4_do_update_inode:5224: inode #2: comm syz.2.3090: corrupted inode contents [ 430.595608][T12298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 430.614308][T12298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 430.624923][T12298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 430.635561][T12632] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.3090: mark_inode_dirty error [ 430.647413][T12298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 430.674325][T12298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 430.714464][T12298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 430.735742][T12298] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 430.777580][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 430.799587][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 430.825483][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 430.850743][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 430.902106][T12298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 430.925104][T12298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 430.960496][ T4258] EXT4-fs (loop2): unmounting filesystem. [ 430.998389][T12298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 431.094841][T12653] loop2: detected capacity change from 0 to 1024 [ 431.111916][T12298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 431.152955][T12298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 431.165268][T12653] journal_path: not usable as path [ 431.180615][T12653] EXT4-fs: error: could not find journal device path [ 431.200802][T12298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 431.247185][T12298] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 431.307246][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 431.326974][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 431.375675][T12298] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 431.441081][T12298] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 431.474232][T12298] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 431.514270][T12298] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 431.655953][T12664] xt_hashlimit: max too large, truncated to 1048576 [ 431.807768][ T38] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 431.832186][ T38] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 431.901186][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 431.986367][ T4299] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 432.014336][ T4299] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 432.046150][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 432.923801][ T26] kauditd_printk_skb: 40 callbacks suppressed [ 432.923819][ T26] audit: type=1326 audit(1733746196.437:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12692 comm="syz.0.3105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 433.049320][ T26] audit: type=1326 audit(1733746196.487:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12692 comm="syz.0.3105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 433.149941][ T26] audit: type=1326 audit(1733746196.487:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12692 comm="syz.0.3105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 433.244623][ T26] audit: type=1326 audit(1733746196.487:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12692 comm="syz.0.3105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 433.370192][ T4250] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 433.382429][ T4250] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 433.391004][ T4250] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 433.403455][ T4250] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 433.414551][ T26] audit: type=1326 audit(1733746196.487:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12692 comm="syz.0.3105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 433.437709][ T26] audit: type=1326 audit(1733746196.487:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12692 comm="syz.0.3105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 433.460188][ T4250] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 433.467854][ T26] audit: type=1326 audit(1733746196.487:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12692 comm="syz.0.3105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 433.492346][ T4250] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 433.722144][ T58] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.113477][ T58] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.324490][T12717] loop1: detected capacity change from 0 to 256 [ 434.393456][T12717] FAT-fs (loop1): Directory bread(block 64) failed [ 434.440351][ T58] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.450831][T12717] FAT-fs (loop1): Directory bread(block 65) failed [ 434.478627][T12717] FAT-fs (loop1): Directory bread(block 66) failed [ 434.524465][T12717] FAT-fs (loop1): Directory bread(block 67) failed [ 434.570472][T12717] FAT-fs (loop1): Directory bread(block 68) failed [ 434.598923][T12717] FAT-fs (loop1): Directory bread(block 69) failed [ 434.616386][ T58] bond0: (slave netdevsim0): Releasing backup interface [ 434.633658][T12717] FAT-fs (loop1): Directory bread(block 70) failed [ 434.650927][T12717] FAT-fs (loop1): Directory bread(block 71) failed [ 434.659906][ T58] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 434.678147][T12717] FAT-fs (loop1): Directory bread(block 72) failed [ 434.699341][T12717] FAT-fs (loop1): Directory bread(block 73) failed [ 435.481987][T12702] chnl_net:caif_netlink_parms(): no params data found [ 435.584447][ T4256] Bluetooth: hci4: command 0x0409 tx timeout [ 436.228041][T12775] loop0: detected capacity change from 0 to 128 [ 436.477019][T12702] bridge0: port 1(bridge_slave_0) entered blocking state [ 436.488747][T12702] bridge0: port 1(bridge_slave_0) entered disabled state [ 436.521322][T12702] device bridge_slave_0 entered promiscuous mode [ 436.619581][T12702] bridge0: port 2(bridge_slave_1) entered blocking state [ 436.636602][T12774] loop3: detected capacity change from 0 to 8192 [ 436.653811][T12702] bridge0: port 2(bridge_slave_1) entered disabled state [ 436.688885][T12702] device bridge_slave_1 entered promiscuous mode [ 436.698212][T12774] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 436.832250][T12774] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 436.909487][T12774] FAT-fs (loop3): Filesystem has been set read-only [ 436.925431][T12774] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 436.930055][T12702] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 436.936310][T12787] loop4: detected capacity change from 0 to 512 [ 436.984450][T12774] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 437.003364][T12787] EXT4-fs: Ignoring removed bh option [ 437.028953][T12702] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 437.058132][T12787] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 437.233090][T12787] EXT4-fs (loop4): 1 truncate cleaned up [ 437.254420][T12787] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 437.304006][T12702] team0: Port device team_slave_0 added [ 437.331774][T12702] team0: Port device team_slave_1 added [ 437.564854][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 437.665163][ T4256] Bluetooth: hci4: command 0x041b tx timeout [ 437.713184][ T26] audit: type=1326 audit(1733746201.227:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12806 comm="syz.3.3139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 437.761077][ T26] audit: type=1326 audit(1733746201.227:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12806 comm="syz.3.3139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 437.800268][T12702] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 437.824374][T12702] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 437.844205][ T26] audit: type=1326 audit(1733746201.227:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12806 comm="syz.3.3139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc3c437fed9 code=0x7ffc0000 [ 437.907827][T12702] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 438.023962][T12702] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 438.040095][T12702] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 438.081614][T12702] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 438.099557][ T58] device hsr_slave_0 left promiscuous mode [ 438.106412][ T58] device hsr_slave_1 left promiscuous mode [ 438.113031][ T58] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 438.121931][ T58] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 438.131551][ T58] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 438.148563][ T58] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 438.159620][ T58] device bridge_slave_1 left promiscuous mode [ 438.166899][ T58] bridge0: port 2(bridge_slave_1) entered disabled state [ 438.181021][ T58] device bridge_slave_0 left promiscuous mode [ 438.188871][ T58] bridge0: port 1(bridge_slave_0) entered disabled state [ 438.283962][ T58] device veth1_macvtap left promiscuous mode [ 438.311230][ T58] device veth0_macvtap left promiscuous mode [ 438.333963][ T58] device veth1_vlan left promiscuous mode [ 438.354545][ T58] device veth0_vlan left promiscuous mode [ 439.744286][ T4256] Bluetooth: hci4: command 0x040f tx timeout [ 439.906947][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 439.913560][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.815872][ T58] team0 (unregistering): Port device team_slave_1 removed [ 440.921254][ T58] team0 (unregistering): Port device team_slave_0 removed [ 441.012866][ T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 441.126314][ T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 441.219534][T12847] IPVS: wlc: UDP 224.0.0.2:0 - no destination available [ 441.390485][T12851] loop3: detected capacity change from 0 to 512 [ 441.463540][T12851] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 441.490752][T12851] ext4 filesystem being mounted at /625/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 441.592003][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 441.607390][ T26] kauditd_printk_skb: 3 callbacks suppressed [ 441.607405][ T26] audit: type=1326 audit(1733746205.127:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12855 comm="syz.1.3155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 441.643953][ T26] audit: type=1326 audit(1733746205.137:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12855 comm="syz.1.3155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 441.708983][ T26] audit: type=1326 audit(1733746205.157:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12855 comm="syz.1.3155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 441.741324][ T26] audit: type=1326 audit(1733746205.157:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12855 comm="syz.1.3155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 441.770670][ T26] audit: type=1326 audit(1733746205.157:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12855 comm="syz.1.3155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 441.794036][ T26] audit: type=1326 audit(1733746205.157:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12855 comm="syz.1.3155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 441.822937][ T26] audit: type=1326 audit(1733746205.157:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12855 comm="syz.1.3155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 441.848158][ T4256] Bluetooth: hci4: command 0x0419 tx timeout [ 441.883786][ T26] audit: type=1326 audit(1733746205.157:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12855 comm="syz.1.3155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 441.906768][ T26] audit: type=1326 audit(1733746205.157:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12855 comm="syz.1.3155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 441.929237][ T26] audit: type=1326 audit(1733746205.157:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12855 comm="syz.1.3155" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 442.269098][ T41] hid-generic 0000:0000:0000.000F: unknown main item tag 0x0 [ 442.325160][ T41] hid-generic 0000:0000:0000.000F: hidraw0: HID v0.00 Device [syz1] on syz0 [ 442.480271][ T58] bond0 (unregistering): Released all slaves [ 442.760227][T12702] device hsr_slave_0 entered promiscuous mode [ 442.783243][T12702] device hsr_slave_1 entered promiscuous mode [ 442.804078][T12702] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 442.839730][T12702] Cannot create hsr debugfs directory [ 443.093144][T12886] syz.4.3166[12886] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 443.093271][T12886] syz.4.3166[12886] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 443.715402][T12702] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 443.738107][T12901] loop4: detected capacity change from 0 to 2048 [ 443.782342][T12702] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 443.810706][T12702] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 443.836339][T12702] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 443.846805][T12901] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 444.037531][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 444.040530][T12702] 8021q: adding VLAN 0 to HW filter on device bond0 [ 444.093085][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 444.118775][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 444.154392][T12702] 8021q: adding VLAN 0 to HW filter on device team0 [ 444.181704][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 444.203417][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 444.208769][T12912] loop4: detected capacity change from 0 to 512 [ 444.229637][ T4406] bridge0: port 1(bridge_slave_0) entered blocking state [ 444.236851][ T4406] bridge0: port 1(bridge_slave_0) entered forwarding state [ 444.290680][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 444.302914][T12912] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 444.317204][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 444.334634][T12912] ext4 filesystem being mounted at /624/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 444.374712][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 444.440992][T12912] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #2: comm syz.4.3171: corrupted inode contents [ 444.469563][ T4406] bridge0: port 2(bridge_slave_1) entered blocking state [ 444.476769][ T4406] bridge0: port 2(bridge_slave_1) entered forwarding state [ 444.496466][T12912] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #2: comm syz.4.3171: mark_inode_dirty error [ 444.518870][T12912] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #2: comm syz.4.3171: corrupted inode contents [ 444.524638][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 444.544850][T12912] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz.4.3171: mark_inode_dirty error [ 444.591729][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 444.617999][T12912] EXT4-fs error (device loop4): ext4_get_first_dir_block:3594: inode #18: comm syz.4.3171: directory missing '.' [ 444.637735][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 444.675563][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 444.704870][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 444.752287][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 444.765234][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 444.771444][ T4257] EXT4-fs (loop4): unmounting filesystem. [ 444.785713][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 444.814764][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 444.858192][T12702] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 444.889791][T12702] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 444.912121][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 444.931455][ T58] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 445.929645][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 445.960633][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 446.003288][T12702] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 446.118272][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 446.137837][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 446.592503][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 446.603598][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 446.614870][T12702] device veth0_vlan entered promiscuous mode [ 446.632666][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 446.656649][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 446.672842][T12702] device veth1_vlan entered promiscuous mode [ 446.713918][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 446.725698][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 446.734046][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 446.755837][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 446.781249][T12702] device veth0_macvtap entered promiscuous mode [ 446.795031][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 446.806542][T12702] device veth1_macvtap entered promiscuous mode [ 446.836500][T12702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 446.852685][T12702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 446.863926][T12702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 446.883087][T12702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 446.894737][T12702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 446.909944][T12702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 446.921680][T12702] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 446.934501][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 446.946028][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 446.963684][T12702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 446.994252][T12702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.014556][T12702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 447.054553][T12702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.074307][T12702] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 447.094312][T12702] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 447.129219][T12702] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 447.153240][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 447.175467][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 447.208241][T12702] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 447.237191][T12702] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 447.249524][T12702] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 447.260803][T12702] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 447.330763][T12976] loop3: detected capacity change from 0 to 1024 [ 447.432317][ T4299] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 447.512667][ T4299] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 447.549134][T12976] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 447.630343][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 447.666075][T12976] EXT4-fs (loop3): orphan cleanup on readonly fs [ 447.698666][ T4299] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 447.740732][ T4299] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 447.797016][T12976] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 447.823429][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 447.899355][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 447.918489][T12976] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #3: comm syz.3.3189: mark_inode_dirty error [ 448.003317][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 448.032095][T12976] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:477: comm syz.3.3189: Invalid block bitmap block 3 in block_group 0 [ 448.057886][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 448.092174][T12976] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 448.108552][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 448.130298][T12976] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #3: comm syz.3.3189: mark_inode_dirty error [ 448.182789][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 448.220200][T12976] __quota_error: 19 callbacks suppressed [ 448.220219][T12976] Quota error (device loop3): write_blk: dquota write failed [ 448.260401][T12976] EXT4-fs error (device loop3): ext4_map_blocks:634: inode #3: block 1: comm syz.3.3189: lblock 6 mapped to illegal pblock 1 (length 1) [ 448.322819][T12987] loop0: detected capacity change from 0 to 512 [ 448.327166][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 448.354236][T12976] Quota error (device loop3): write_blk: dquota write failed [ 448.362073][T12976] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 448.404227][T12976] EXT4-fs error (device loop3): ext4_map_blocks:634: inode #3: block 48: comm syz.3.3189: lblock 0 mapped to illegal pblock 48 (length 1) [ 448.448787][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 448.459820][T12987] EXT4-fs error (device loop0): ext4_xattr_block_get:546: inode #2: comm syz.0.3193: corrupted xattr block 255 [ 448.489105][T12976] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 448.528906][T12976] EXT4-fs error (device loop3): ext4_acquire_dquot:6801: comm syz.3.3189: Failed to acquire dquot type 0 [ 448.531919][T12992] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3195'. [ 448.564389][T12987] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117 [ 448.572625][T12987] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 448.587635][T12987] EXT4-fs error (device loop0): ext4_xattr_block_get:546: inode #2: comm syz.0.3193: corrupted xattr block 255 [ 448.602619][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 448.624482][T12976] EXT4-fs error (device loop3): ext4_map_blocks:634: inode #3: block 49: comm syz.3.3189: lblock 1 mapped to illegal pblock 49 (length 1) [ 448.712090][ T4250] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 448.722246][ T4250] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 448.731639][ T4250] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 448.742268][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 448.749150][T12976] Quota error (device loop3): do_insert_tree: Can't read tree quota block 1 [ 448.758310][ T4250] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 448.774659][ T4262] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 448.783764][ T4262] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 448.804382][T12976] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 448.874392][T12976] EXT4-fs error (device loop3): ext4_acquire_dquot:6801: comm syz.3.3189: Failed to acquire dquot type 0 [ 448.934002][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 448.952275][T12998] loop2: detected capacity change from 0 to 512 [ 448.976647][T12976] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 448.987296][T12998] EXT4-fs: Ignoring removed oldalloc option [ 448.998095][T12998] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 449.013422][T11861] EXT4-fs (loop0): unmounting filesystem. [ 449.073089][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 449.079891][T12998] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 449.096222][T12976] EXT4-fs error (device loop3): ext4_evict_inode:279: inode #15: comm syz.3.3189: mark_inode_dirty error [ 449.138488][T12998] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2809: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 449.159472][T12998] EXT4-fs (loop2): 1 truncate cleaned up [ 449.166242][T12998] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 449.226353][T12976] EXT4-fs (loop3): Remounting filesystem read-only [ 449.232920][T12976] EXT4-fs warning (device loop3): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 449.291952][T12976] EXT4-fs (loop3): 1 orphan inode deleted [ 449.299855][T12976] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 449.303189][T12702] EXT4-fs (loop2): unmounting filesystem. [ 449.393411][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 449.616548][T13015] loop3: detected capacity change from 0 to 512 [ 449.788273][T13015] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002] [ 449.811246][T13015] System zones: 0-2, 18-18, 34-34 [ 449.892480][T13015] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.3202: bg 0: block 248: padding at end of block bitmap is not set [ 449.945944][T12993] chnl_net:caif_netlink_parms(): no params data found [ 450.023671][T13015] Quota error (device loop3): write_blk: dquota write failed [ 450.074475][T13015] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 450.095032][T13015] EXT4-fs error (device loop3): ext4_acquire_dquot:6801: comm syz.3.3202: Failed to acquire dquot type 1 [ 450.161882][T13015] EXT4-fs (loop3): 1 truncate cleaned up [ 450.190385][T13015] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 450.255612][T13015] ext4 filesystem being mounted at /635/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 450.368879][T12993] bridge0: port 1(bridge_slave_0) entered blocking state [ 450.462746][T12993] bridge0: port 1(bridge_slave_0) entered disabled state [ 450.499186][T12993] device bridge_slave_0 entered promiscuous mode [ 450.590168][T12993] bridge0: port 2(bridge_slave_1) entered blocking state [ 450.624930][T12993] bridge0: port 2(bridge_slave_1) entered disabled state [ 450.633230][T12993] device bridge_slave_1 entered promiscuous mode [ 450.647963][T13036] loop1: detected capacity change from 0 to 512 [ 450.684434][T13015] syz.3.3202 (13015) used greatest stack depth: 19808 bytes left [ 450.728564][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 450.775360][T13036] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 450.802214][T12993] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 450.827115][T12993] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 450.839563][T13036] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 450.864324][ T4256] Bluetooth: hci5: command 0x0409 tx timeout [ 450.955612][T13036] EXT4-fs (loop1): unmounting filesystem. [ 451.054268][T12993] team0: Port device team_slave_0 added [ 451.069618][T12993] team0: Port device team_slave_1 added [ 451.179850][T12993] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 451.207566][T12993] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 451.212323][T13045] syz.0.3211 (13045): /proc/13044/oom_adj is deprecated, please use /proc/13044/oom_score_adj instead. [ 451.293148][T12993] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 451.362536][T12993] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 451.380300][T12993] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 451.417951][T13049] loop3: detected capacity change from 0 to 1024 [ 451.469476][T13049] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 451.490812][T13049] ext4 filesystem being mounted at /637/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 451.507805][T12993] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 451.651186][ T46] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 451.697469][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 451.891810][ T46] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 451.973076][T12993] device hsr_slave_0 entered promiscuous mode [ 451.990817][T12993] device hsr_slave_1 entered promiscuous mode [ 451.998390][T12993] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 452.008686][T12993] Cannot create hsr debugfs directory [ 452.096892][ T46] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 452.208720][ T46] bond0: (slave netdevsim0): Releasing backup interface [ 452.263985][ T46] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 452.944241][ T4256] Bluetooth: hci5: command 0x041b tx timeout [ 453.100422][ T26] audit: type=1326 audit(1733746216.617:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13075 comm="syz.1.3222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 453.210176][ T26] audit: type=1326 audit(1733746216.617:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13075 comm="syz.1.3222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 453.273891][ T26] audit: type=1326 audit(1733746216.617:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13075 comm="syz.1.3222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 453.370548][ T26] audit: type=1326 audit(1733746216.617:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13075 comm="syz.1.3222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 453.494447][ T26] audit: type=1326 audit(1733746216.617:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13075 comm="syz.1.3222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 454.362328][ T26] audit: type=1326 audit(1733746217.877:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13104 comm="syz.0.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 454.421127][T12993] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 454.453133][ T26] audit: type=1326 audit(1733746217.907:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13104 comm="syz.0.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 454.517573][ T26] audit: type=1326 audit(1733746217.907:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13104 comm="syz.0.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 454.551108][T12993] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 454.559397][ T26] audit: type=1326 audit(1733746217.907:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13104 comm="syz.0.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 454.585886][T12993] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 454.593414][ T26] audit: type=1326 audit(1733746217.907:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13104 comm="syz.0.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 454.620327][T12993] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 454.636859][ T26] audit: type=1326 audit(1733746217.907:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13104 comm="syz.0.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 454.676192][ T26] audit: type=1326 audit(1733746217.907:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13104 comm="syz.0.3230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 455.030163][ T4256] Bluetooth: hci5: command 0x040f tx timeout [ 455.698616][ T46] device hsr_slave_0 left promiscuous mode [ 455.713120][ T46] device bridge_slave_1 left promiscuous mode [ 455.786224][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 455.854777][ T46] device bridge_slave_0 left promiscuous mode [ 455.880398][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 456.042749][ T46] device hsr_slave_1 left promiscuous mode [ 456.066049][ T46] device veth1_macvtap left promiscuous mode [ 456.087430][ T46] device veth0_macvtap left promiscuous mode [ 456.113271][ T46] device veth1_vlan left promiscuous mode [ 456.136807][ T46] device veth0_vlan left promiscuous mode [ 457.104375][ T4256] Bluetooth: hci5: command 0x0419 tx timeout [ 457.648224][T13147] netlink: 100 bytes leftover after parsing attributes in process `syz.3.3238'. [ 457.865815][ T46] team0 (unregistering): Port device team_slave_1 removed [ 458.031843][ T46] team0 (unregistering): Port device team_slave_0 removed [ 458.117366][ T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 458.149657][T13157] loop3: detected capacity change from 0 to 2048 [ 458.186972][ T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 458.202321][T13157] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 458.348868][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 458.714699][ T46] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 458.723758][ T46] bond0 (unregistering): Released all slaves [ 458.900602][T12993] 8021q: adding VLAN 0 to HW filter on device bond0 [ 458.979129][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 459.010661][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 459.043346][T12993] 8021q: adding VLAN 0 to HW filter on device team0 [ 459.080478][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 459.091566][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 459.108415][ T4299] bridge0: port 1(bridge_slave_0) entered blocking state [ 459.115636][ T4299] bridge0: port 1(bridge_slave_0) entered forwarding state [ 459.199595][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 459.222303][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 459.232944][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 459.258956][ T4299] bridge0: port 2(bridge_slave_1) entered blocking state [ 459.266155][ T4299] bridge0: port 2(bridge_slave_1) entered forwarding state [ 459.292223][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 459.307989][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 459.370056][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 459.435808][ T26] kauditd_printk_skb: 12 callbacks suppressed [ 459.435824][ T26] audit: type=1326 audit(1733746222.947:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13174 comm="syz.1.3250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 459.442801][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 459.490619][ T26] audit: type=1326 audit(1733746222.987:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13174 comm="syz.1.3250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 459.582133][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 459.601095][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 459.640047][ T26] audit: type=1326 audit(1733746222.987:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13174 comm="syz.1.3250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 459.670786][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 459.691763][T13177] syz.1.3251[13177] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 459.691869][T13177] syz.1.3251[13177] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 459.695373][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 459.734293][ T26] audit: type=1326 audit(1733746222.987:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13174 comm="syz.1.3250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 459.775101][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 459.785658][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 459.804944][ T4406] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 459.816153][T12993] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 459.823510][ T26] audit: type=1326 audit(1733746222.987:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13174 comm="syz.1.3250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 459.912127][ T26] audit: type=1326 audit(1733746222.987:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13174 comm="syz.1.3250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 459.920764][T13180] loop2: detected capacity change from 0 to 512 [ 460.024419][ T26] audit: type=1326 audit(1733746222.987:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13174 comm="syz.1.3250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 460.118719][ T26] audit: type=1326 audit(1733746222.997:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13174 comm="syz.1.3250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 460.151759][T13180] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 460.194352][T13180] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 460.206326][ T26] audit: type=1326 audit(1733746222.997:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13174 comm="syz.1.3250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 460.229651][ T26] audit: type=1326 audit(1733746222.997:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13174 comm="syz.1.3250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 460.668274][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 460.707122][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 460.720631][T12702] EXT4-fs (loop2): unmounting filesystem. [ 460.852126][T12993] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 461.637701][T13212] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2 [ 461.943551][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 461.953505][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 462.016499][T12993] device veth0_vlan entered promiscuous mode [ 462.045504][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 462.067005][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 462.092339][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 462.119650][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 462.140177][T12993] device veth1_vlan entered promiscuous mode [ 462.151618][T13222] loop1: detected capacity change from 0 to 2048 [ 462.176749][T13222] EXT4-fs: Ignoring removed mblk_io_submit option [ 462.272662][T13222] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 462.283565][T13230] loop0: detected capacity change from 0 to 128 [ 462.296149][T13230] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1) [ 462.334588][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 462.351709][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 462.369182][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 462.395949][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 462.411244][T12993] device veth0_macvtap entered promiscuous mode [ 462.433427][T13230] Process accounting resumed [ 462.433830][T12298] EXT4-fs (loop1): unmounting filesystem. [ 462.442237][T13230] FAT-fs (loop0): error, corrupted file size (i_pos 548, 512) [ 462.475760][T12993] device veth1_macvtap entered promiscuous mode [ 462.502501][T13230] FAT-fs (loop0): Filesystem has been set read-only [ 462.519129][T12993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 462.565012][T12993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.594253][T12993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 462.640078][T12993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.656049][T12993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 462.694184][T12993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.714228][T12993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 462.724883][T12993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.746824][T11861] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1) [ 462.759174][T12993] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 462.777651][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 462.789445][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 462.835370][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 462.875966][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 462.887402][T12993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 462.904021][T12993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.921364][T12993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 462.933828][T12993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.955534][T12993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 462.966766][T12993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 462.984839][T12993] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 463.007051][T12993] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 463.043977][T12993] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 463.087339][T13240] loop2: detected capacity change from 0 to 512 [ 463.110215][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 463.119744][T13240] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 463.131126][ T4526] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 463.159109][T12993] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 463.171035][T13240] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002] [ 463.217822][T13240] System zones: 1-12 [ 463.222782][T12993] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 463.240764][T13240] EXT4-fs (loop2): 1 truncate cleaned up [ 463.248343][T12993] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 463.282131][T13240] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 463.302547][T12993] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 463.603206][ T4505] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 463.679545][ T4505] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 463.743027][T12702] EXT4-fs (loop2): unmounting filesystem. [ 463.770231][T12378] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 463.838765][ T4505] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 463.864742][ T4505] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 463.959546][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 464.100217][T13255] IPVS: stopping master sync thread 13256 ... [ 464.108862][T13256] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0 [ 464.613412][ T26] kauditd_printk_skb: 13 callbacks suppressed [ 464.613429][ T26] audit: type=1326 audit(1733746228.127:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13270 comm="syz.1.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 464.689266][ T26] audit: type=1326 audit(1733746228.167:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13270 comm="syz.1.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 464.767219][T13274] netlink: 'syz.4.3283': attribute type 1 has an invalid length. [ 464.804266][ T26] audit: type=1326 audit(1733746228.167:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13270 comm="syz.1.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 464.847255][T13274] netlink: 83992 bytes leftover after parsing attributes in process `syz.4.3283'. [ 464.901319][ T26] audit: type=1326 audit(1733746228.167:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13270 comm="syz.1.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 464.956204][ T26] audit: type=1326 audit(1733746228.167:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13270 comm="syz.1.3282" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 464.988505][T13279] loop1: detected capacity change from 0 to 2048 [ 464.991102][T13280] loop0: detected capacity change from 0 to 1024 [ 465.073372][T13280] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 465.194508][T13280] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 465.314769][T13280] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 257 with error 28 [ 465.364243][T13280] EXT4-fs (loop0): This should not happen!! Data will be lost [ 465.364243][T13280] [ 465.399619][T13280] EXT4-fs (loop0): Total free blocks count 0 [ 465.439730][T13280] EXT4-fs (loop0): Free/Dirty block details [ 465.473671][T13280] EXT4-fs (loop0): free_blocks=68451041280 [ 465.514914][T13280] EXT4-fs (loop0): dirty_blocks=272 [ 465.555012][T13280] EXT4-fs (loop0): Block reservation details [ 465.601936][T13280] EXT4-fs (loop0): i_reserved_data_blocks=17 [ 465.729604][ T26] audit: type=1326 audit(1733746229.247:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13290 comm="syz.1.3290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 465.903956][ T26] audit: type=1326 audit(1733746229.287:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13290 comm="syz.1.3290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 465.909215][T11861] EXT4-fs (loop0): unmounting filesystem. [ 465.977755][T13292] loop1: detected capacity change from 0 to 1024 [ 465.996216][ T26] audit: type=1326 audit(1733746229.287:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13290 comm="syz.1.3290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 466.043477][T13294] loop2: detected capacity change from 0 to 512 [ 466.075064][ T26] audit: type=1326 audit(1733746229.287:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13290 comm="syz.1.3290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 466.129519][T13294] EXT4-fs: Ignoring removed mblk_io_submit option [ 466.159517][T13292] EXT4-fs: Ignoring removed mblk_io_submit option [ 466.164305][T13294] EXT4-fs: Ignoring removed bh option [ 466.322317][ T26] audit: type=1326 audit(1733746229.297:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13290 comm="syz.1.3290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 466.347218][T13292] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement. [ 466.385886][T13294] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 466.593162][T13300] xt_hashlimit: max too large, truncated to 1048576 [ 466.610338][T13300] Cannot find set identified by id 0 to match [ 467.092317][ T4262] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 467.110249][ T4262] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 467.119307][ T4262] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 467.127955][ T4262] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 467.135587][ T4262] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 467.142882][ T4262] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 467.295878][T13294] EXT4-fs (loop2): 1 truncate cleaned up [ 467.301612][T13294] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 467.338171][ T4249] syz-executor (4249) used greatest stack depth: 19640 bytes left [ 467.446126][T13294] netlink: 'syz.2.3291': attribute type 1 has an invalid length. [ 467.474676][T13294] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3291'. [ 467.597680][ T4505] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 467.917400][T12702] EXT4-fs (loop2): unmounting filesystem. [ 467.993225][ T4505] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 468.120301][ T4505] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 468.867114][ T4505] bond0: (slave netdevsim0): Releasing backup interface [ 469.006480][ T4505] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 469.047859][T13297] chnl_net:caif_netlink_parms(): no params data found [ 469.119055][T13328] device veth1_macvtap left promiscuous mode [ 469.264280][ T4256] Bluetooth: hci1: command 0x0409 tx timeout [ 469.332934][T13325] loop4: detected capacity change from 0 to 8192 [ 469.389500][T13325] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 469.473998][T13297] bridge0: port 1(bridge_slave_0) entered blocking state [ 469.494420][T13297] bridge0: port 1(bridge_slave_0) entered disabled state [ 469.526420][T13297] device bridge_slave_0 entered promiscuous mode [ 469.560758][T13297] bridge0: port 2(bridge_slave_1) entered blocking state [ 469.585351][T13325] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 469.604337][T13297] bridge0: port 2(bridge_slave_1) entered disabled state [ 469.622967][T13297] device bridge_slave_1 entered promiscuous mode [ 469.629975][T13325] FAT-fs (loop4): Filesystem has been set read-only [ 469.658703][ T4505] tipc: Disabling bearer [ 469.659040][T13325] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 469.674767][T13325] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 469.704479][ T4505] tipc: Left network mode [ 469.731631][T13335] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF [ 469.773555][T13297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 469.806190][T13297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 470.600260][ T4297] hid-generic 0000:0000:0000.0010: unknown main item tag 0x7 [ 470.639755][ T4297] hid-generic 0000:0000:0000.0010: ignoring exceeding usage max [ 470.695781][ T4297] hid-generic 0000:0000:0000.0010: unknown main item tag 0x0 [ 470.730679][ T4297] hid-generic 0000:0000:0000.0010: unknown main item tag 0x6 [ 470.761284][ T4297] hid-generic 0000:0000:0000.0010: unknown main item tag 0xd [ 470.829092][ T26] kauditd_printk_skb: 14 callbacks suppressed [ 470.829112][ T26] audit: type=1326 audit(1733746234.347:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.4.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f9b7fed9 code=0x7ffc0000 [ 470.872848][ T4297] hid-generic 0000:0000:0000.0010: hidraw0: HID v0.00 Device [syz0] on syz0 [ 470.932782][T13297] team0: Port device team_slave_0 added [ 471.014388][T13297] team0: Port device team_slave_1 added [ 471.044858][ T26] audit: type=1326 audit(1733746234.347:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.4.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f9b7fed9 code=0x7ffc0000 [ 471.179222][T13297] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 471.211651][ T26] audit: type=1326 audit(1733746234.347:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.4.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc8f9b7fed9 code=0x7ffc0000 [ 471.225600][T13297] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 471.330250][ T26] audit: type=1326 audit(1733746234.347:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.4.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f9b7fed9 code=0x7ffc0000 [ 471.353095][ T4256] Bluetooth: hci1: command 0x041b tx timeout [ 471.542184][ T26] audit: type=1326 audit(1733746234.387:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.4.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc8f9b7fed9 code=0x7ffc0000 [ 471.607203][ T26] audit: type=1326 audit(1733746234.387:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.4.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f9b7fed9 code=0x7ffc0000 [ 471.638643][T13297] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 471.670677][ T26] audit: type=1326 audit(1733746234.387:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.4.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fc8f9b7fed9 code=0x7ffc0000 [ 471.703866][T13297] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 471.711956][T13297] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 471.746308][ T26] audit: type=1326 audit(1733746234.427:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.4.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f9b7fed9 code=0x7ffc0000 [ 471.784184][T13297] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 471.822459][ T26] audit: type=1326 audit(1733746234.427:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.4.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fc8f9b7fed9 code=0x7ffc0000 [ 471.896602][ T26] audit: type=1326 audit(1733746234.447:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.4.3305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f9b7fed9 code=0x7ffc0000 [ 471.992668][T13297] device hsr_slave_0 entered promiscuous mode [ 472.000639][T13297] device hsr_slave_1 entered promiscuous mode [ 472.014923][T13297] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 472.022659][T13297] Cannot create hsr debugfs directory [ 472.635180][ T4505] device hsr_slave_0 left promiscuous mode [ 472.641718][ T4505] device hsr_slave_1 left promiscuous mode [ 472.661475][ T4505] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 472.686540][ T4505] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 472.702903][ T4505] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 472.724288][ T4505] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 472.733460][ T4505] device bridge_slave_1 left promiscuous mode [ 472.755559][ T4505] bridge0: port 2(bridge_slave_1) entered disabled state [ 472.775551][ T4505] device bridge_slave_0 left promiscuous mode [ 472.781914][ T4505] bridge0: port 1(bridge_slave_0) entered disabled state [ 472.848112][ T4505] device veth1_vlan left promiscuous mode [ 472.854065][ T4505] device veth0_vlan left promiscuous mode [ 473.434981][ T4256] Bluetooth: hci1: command 0x040f tx timeout [ 473.583810][ T4505] team0 (unregistering): Port device team_slave_1 removed [ 473.698123][T13389] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3312'. [ 473.728216][ T4505] team0 (unregistering): Port device team_slave_0 removed [ 473.975522][ T4505] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 474.178845][ T4505] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 475.505299][ T4256] Bluetooth: hci1: command 0x0419 tx timeout [ 475.829210][ T4505] bond0 (unregistering): Released all slaves [ 476.016104][T13415] netlink: 'syz.1.3321': attribute type 13 has an invalid length. [ 476.048803][T13415] gretap0: refused to change device tx_queue_len [ 476.066359][T13415] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 476.334927][T13419] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 476.391361][T13419] device batadv_slave_0 entered promiscuous mode [ 476.671471][T13297] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 476.720083][T13297] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 476.733332][T13297] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 476.793419][T13432] dccp_close: ABORT with 52 bytes unread [ 476.794288][T13297] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 476.798339][ T26] kauditd_printk_skb: 1 callbacks suppressed [ 476.798353][ T26] audit: type=1326 audit(1733746240.317:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13431 comm="syz.2.3328" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f55c4d7fed9 code=0x0 [ 476.884415][T13437] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3329'. [ 477.083062][T13297] 8021q: adding VLAN 0 to HW filter on device bond0 [ 477.127411][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 477.148898][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 477.184062][T13297] 8021q: adding VLAN 0 to HW filter on device team0 [ 477.240725][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 477.254473][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 477.276480][ T4505] bridge0: port 1(bridge_slave_0) entered blocking state [ 477.283873][ T4505] bridge0: port 1(bridge_slave_0) entered forwarding state [ 477.311360][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 477.330951][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 477.352454][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 477.362332][ T4505] bridge0: port 2(bridge_slave_1) entered blocking state [ 477.369591][ T4505] bridge0: port 2(bridge_slave_1) entered forwarding state [ 477.397955][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 477.440241][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 477.462033][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 477.512146][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 477.548517][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 477.601528][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 477.642448][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 477.763160][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 477.785883][ T26] audit: type=1326 audit(1733746241.307:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13457 comm="syz.1.3333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 477.810554][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 477.843950][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 477.860826][ T26] audit: type=1326 audit(1733746241.307:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13457 comm="syz.1.3333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 477.889756][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 477.939575][T13297] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 477.988097][ T26] audit: type=1326 audit(1733746241.417:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13457 comm="syz.1.3333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 478.099493][T13464] usb usb4: usbfs: process 13464 (syz.1.3336) did not claim interface 0 before use [ 478.111861][ T26] audit: type=1326 audit(1733746241.417:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13457 comm="syz.1.3333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 478.231055][ T26] audit: type=1326 audit(1733746241.417:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13457 comm="syz.1.3333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 478.303667][ T26] audit: type=1326 audit(1733746241.417:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13457 comm="syz.1.3333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 478.420346][ T26] audit: type=1326 audit(1733746241.417:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13457 comm="syz.1.3333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 478.543490][ T26] audit: type=1326 audit(1733746241.417:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13457 comm="syz.1.3333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 478.619768][ T26] audit: type=1326 audit(1733746241.417:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13457 comm="syz.1.3333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 478.802775][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 478.827637][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 478.852778][T13297] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 478.897713][T13322] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 478.930748][T13322] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 479.037764][T13297] device veth0_vlan entered promiscuous mode [ 479.055714][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 479.071576][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 479.099125][T13297] device veth1_vlan entered promiscuous mode [ 479.120010][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 479.128803][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 479.158145][T13485] loop1: detected capacity change from 0 to 512 [ 479.189847][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 479.199714][T13485] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 479.216103][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 479.235579][T13485] EXT4-fs (loop1): orphan cleanup on readonly fs [ 479.263753][T13485] EXT4-fs warning (device loop1): ext4_enable_quotas:7036: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 479.264013][T13297] device veth0_macvtap entered promiscuous mode [ 479.289594][T13297] device veth1_macvtap entered promiscuous mode [ 479.304333][T13485] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 479.332421][T13297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 479.373206][T13297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.389751][T13485] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2925: inode #16: comm syz.1.3344: corrupted xattr block 31 [ 479.422371][T13297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 479.443603][T13297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.465876][T13297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 479.495585][T13485] EXT4-fs warning (device loop1): ext4_evict_inode:299: xattr delete (err -117) [ 479.509347][T13297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.519496][T13485] EXT4-fs (loop1): 1 orphan inode deleted [ 479.527504][T13297] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 479.535267][T13485] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 479.552605][T13322] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 479.571107][T13322] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 479.595119][T13322] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 479.614762][T13322] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 479.649108][T13297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 479.694963][T13297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.725537][T13297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 479.754623][T13297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.782532][T13297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 479.801177][T13297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.812845][T13297] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 479.823639][T13297] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 479.835393][T12298] EXT4-fs (loop1): unmounting filesystem. [ 479.861348][T13297] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 479.889800][T13322] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 479.917659][T13322] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 479.942132][T13297] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 479.965542][T13297] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 480.000037][T13297] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 480.035097][T13297] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 480.072503][T13510] loop2: detected capacity change from 0 to 128 [ 480.205553][T13323] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 480.230473][T13323] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 480.271691][T13322] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 480.308593][T13322] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 480.324672][T13322] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 480.352093][ T4505] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 480.397714][ T951] usb 2-1: new high-speed USB device number 61 using dummy_hcd [ 480.567681][ T951] usb 2-1: device descriptor read/64, error -71 [ 480.682210][T13529] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3363'. [ 480.708578][T13529] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3363'. [ 480.844248][ T951] usb 2-1: new high-speed USB device number 62 using dummy_hcd [ 480.982777][T13541] xt_hashlimit: max too large, truncated to 1048576 [ 481.001120][T13541] Cannot find set identified by id 0 to match [ 481.014306][ T951] usb 2-1: device descriptor read/64, error -71 [ 481.142638][ T951] usb usb2-port1: attempt power cycle [ 481.564265][ T951] usb 2-1: new high-speed USB device number 63 using dummy_hcd [ 481.604946][ T951] usb 2-1: device descriptor read/8, error -71 [ 482.004397][ T951] usb 2-1: new high-speed USB device number 64 using dummy_hcd [ 482.048100][ T951] usb 2-1: device descriptor read/8, error -71 [ 482.174479][ T951] usb usb2-port1: unable to enumerate USB device [ 482.557810][T13585] loop3: detected capacity change from 0 to 1024 [ 482.605161][T13585] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 482.730828][T13297] EXT4-fs (loop3): unmounting filesystem. [ 482.737180][T13590] loop0: detected capacity change from 0 to 128 [ 482.749959][T13590] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1) [ 482.783734][T13590] Process accounting resumed [ 482.815221][T13590] FAT-fs (loop0): error, corrupted file size (i_pos 548, 512) [ 482.844899][T13590] FAT-fs (loop0): Filesystem has been set read-only [ 482.868999][ T26] kauditd_printk_skb: 17 callbacks suppressed [ 482.869016][ T26] audit: type=1326 audit(1733746246.387:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13591 comm="syz.3.3389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2057fed9 code=0x7ffc0000 [ 482.906320][ T26] audit: type=1326 audit(1733746246.387:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13591 comm="syz.3.3389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2d2057e840 code=0x7ffc0000 [ 482.936868][ T26] audit: type=1326 audit(1733746246.387:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13591 comm="syz.3.3389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2d2057e840 code=0x7ffc0000 [ 482.969484][ T26] audit: type=1326 audit(1733746246.387:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13591 comm="syz.3.3389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2057fed9 code=0x7ffc0000 [ 482.995035][T11861] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1) [ 483.023282][ T26] audit: type=1326 audit(1733746246.387:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13591 comm="syz.3.3389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=8 compat=0 ip=0x7f2d2057fed9 code=0x7ffc0000 [ 483.085618][ T26] audit: type=1326 audit(1733746246.387:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13591 comm="syz.3.3389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2057fed9 code=0x7ffc0000 [ 483.118057][ T26] audit: type=1326 audit(1733746246.417:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13591 comm="syz.3.3389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d2057fed9 code=0x7ffc0000 [ 483.243230][T13599] loop1: detected capacity change from 0 to 2048 [ 483.262693][T13599] EXT4-fs: Ignoring removed mblk_io_submit option [ 483.317355][T13599] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 483.360652][ T26] audit: type=1326 audit(1733746246.877:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13601 comm="syz.0.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 483.425215][ T26] audit: type=1326 audit(1733746246.907:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13601 comm="syz.0.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 483.451133][ T26] audit: type=1326 audit(1733746246.907:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13601 comm="syz.0.3393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 483.624929][T12298] EXT4-fs (loop1): unmounting filesystem. [ 483.878876][T13615] loop2: detected capacity change from 0 to 1024 [ 483.927683][T13619] Cannot find set identified by id 0 to match [ 483.935422][T13615] EXT4-fs: Ignoring removed orlov option [ 483.941124][T13615] EXT4-fs: Ignoring removed orlov option [ 484.018190][T13615] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 484.331445][T13615] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2739: inode #12: comm syz.2.3399: corrupted in-inode xattr [ 484.366833][T13615] EXT4-fs (loop2): Remounting filesystem read-only [ 484.470830][T12702] EXT4-fs (loop2): unmounting filesystem. [ 484.546941][T13625] team0 (unregistering): Port device team_slave_0 removed [ 484.610454][T13625] team0 (unregistering): Port device team_slave_1 removed [ 485.267802][T13661] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.3416' sets config #573 [ 485.380921][T13665] IPv6: Can't replace route, no match found [ 486.013780][T13694] loop1: detected capacity change from 0 to 512 [ 486.050072][T13694] journal_path: Lookup failure for './bus' [ 486.050604][T13696] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3432'. [ 486.073103][T13694] EXT4-fs: error: could not find journal device path [ 486.098449][T13698] loop2: detected capacity change from 0 to 512 [ 486.121706][T13698] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 486.164107][T13698] EXT4-fs (loop2): 1 truncate cleaned up [ 486.175069][T13698] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 486.303304][T13704] IPv6: Can't replace route, no match found [ 486.315977][T12702] EXT4-fs (loop2): unmounting filesystem. [ 486.591366][T13710] loop2: detected capacity change from 0 to 1024 [ 486.633209][T13710] EXT4-fs: Ignoring removed mblk_io_submit option [ 486.699620][T13710] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 486.749046][T13710] EXT4-fs (loop2): orphan cleanup on readonly fs [ 486.775861][T13710] EXT4-fs error (device loop2): __ext4_get_inode_loc:4506: comm syz.2.3437: Invalid inode table block 0 in block_group 0 [ 486.840316][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 486.888880][T13710] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 486.936741][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 486.943419][T13710] EXT4-fs error (device loop2): ext4_quota_write:7196: inode #3: comm syz.2.3437: mark_inode_dirty error [ 486.995055][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.002383][T13710] EXT4-fs error (device loop2): ext4_acquire_dquot:6801: comm syz.2.3437: Failed to acquire dquot type 0 [ 487.039895][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.054470][T13710] EXT4-fs error (device loop2): __ext4_get_inode_loc:4506: comm syz.2.3437: Invalid inode table block 0 in block_group 0 [ 487.089736][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.123274][T13710] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 487.159749][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.174267][T13710] EXT4-fs error (device loop2): ext4_ext_truncate:4453: inode #15: comm syz.2.3437: mark_inode_dirty error [ 487.196571][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.203158][T13710] EXT4-fs error (device loop2): __ext4_get_inode_loc:4506: comm syz.2.3437: Invalid inode table block 0 in block_group 0 [ 487.238465][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.260456][T13710] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 487.290239][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.304398][T13710] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 487.363801][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.374225][T13710] EXT4-fs error (device loop2): __ext4_get_inode_loc:4506: comm syz.2.3437: Invalid inode table block 0 in block_group 0 [ 487.404070][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.417642][T13710] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 487.453704][T13734] IPv6: Can't replace route, no match found [ 487.464375][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.473484][T13710] EXT4-fs error (device loop2): ext4_truncate:4311: inode #15: comm syz.2.3437: mark_inode_dirty error [ 487.504837][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.519940][T13710] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 487.531838][T13736] xt_hashlimit: size too large, truncated to 1048576 [ 487.543715][T13710] EXT4-fs (loop2): Remounting filesystem read-only [ 487.555814][T13710] EXT4-fs (loop2): 1 truncate cleaned up [ 487.568930][T13710] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 487.682451][T12702] EXT4-fs (loop2): unmounting filesystem. [ 488.317493][T13747] loop1: detected capacity change from 0 to 512 [ 488.342427][T13747] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 488.391828][T13747] EXT4-fs (loop1): orphan cleanup on readonly fs [ 488.416389][T13747] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.3453: bg 0: block 248: padding at end of block bitmap is not set [ 488.526880][T13747] __quota_error: 97 callbacks suppressed [ 488.526902][T13747] Quota error (device loop1): write_blk: dquota write failed [ 488.594313][T13747] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 488.614696][T13747] EXT4-fs error (device loop1): ext4_acquire_dquot:6801: comm syz.1.3453: Failed to acquire dquot type 1 [ 488.646766][T13747] EXT4-fs (loop1): 1 truncate cleaned up [ 490.218106][T13747] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 490.391835][T12298] EXT4-fs (loop1): unmounting filesystem. [ 492.575049][T13778] loop3: detected capacity change from 0 to 512 [ 492.582355][T13778] EXT4-fs: Ignoring removed oldalloc option [ 492.589474][T13778] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 492.651511][T13778] EXT4-fs (loop3): 1 truncate cleaned up [ 492.673343][T13778] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 492.695056][ T26] audit: type=1800 audit(1733746256.207:467): pid=13778 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3466" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 492.733393][T13297] EXT4-fs (loop3): unmounting filesystem. [ 493.885032][T13771] IPv6: Can't replace route, no match found [ 493.973932][T13788] loop1: detected capacity change from 0 to 764 [ 494.122676][T13793] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 494.152110][T13793] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 494.182689][T13793] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 494.221227][T13793] device bridge_slave_0 left promiscuous mode [ 494.250772][T13793] bridge0: port 1(bridge_slave_0) entered disabled state [ 494.288205][ T26] audit: type=1326 audit(1733746257.807:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.0.3471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 494.336969][T13793] device bridge_slave_1 left promiscuous mode [ 494.355798][T13793] bridge0: port 2(bridge_slave_1) entered disabled state [ 494.371839][ T26] audit: type=1326 audit(1733746257.847:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.0.3471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 494.415175][T13793] bond0: (slave bond_slave_0): Releasing backup interface [ 494.444629][ T26] audit: type=1326 audit(1733746257.847:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.0.3471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 494.527814][ T26] audit: type=1326 audit(1733746257.847:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.0.3471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 494.551601][T13793] bond0: (slave bond_slave_1): Releasing backup interface [ 494.576414][T13809] loop2: detected capacity change from 0 to 512 [ 494.583417][ T26] audit: type=1326 audit(1733746257.847:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.0.3471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 494.607973][ T26] audit: type=1326 audit(1733746257.847:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13791 comm="syz.0.3471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 494.631226][T13809] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 494.687083][ T26] audit: type=1326 audit(1733746257.867:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13801 comm="syz.1.3474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 494.724063][T13809] EXT4-fs (loop2): 1 truncate cleaned up [ 494.755023][T13809] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 494.790609][ T26] audit: type=1326 audit(1733746257.877:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13801 comm="syz.1.3474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 494.824915][T13793] team0: Port device team_slave_0 removed [ 494.897913][T13793] team0: Port device team_slave_1 removed [ 494.931292][ T26] audit: type=1326 audit(1733746257.877:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13801 comm="syz.1.3474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 494.975899][T12702] EXT4-fs (loop2): unmounting filesystem. [ 495.000084][T13793] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 495.062555][T13793] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 495.091020][ T26] audit: type=1326 audit(1733746257.877:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13801 comm="syz.1.3474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55df57fed9 code=0x7ffc0000 [ 495.129866][T13793] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 495.167271][T13793] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 495.531086][T13823] syz.4.3482[13823] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 495.531160][T13823] syz.4.3482[13823] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 495.553086][T13821] netlink: 'syz.2.3480': attribute type 21 has an invalid length. [ 495.603221][T13821] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3480'. [ 495.634475][T13821] netlink: 'syz.2.3480': attribute type 1 has an invalid length. [ 495.693321][T13826] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3483'. [ 496.202067][T13845] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 497.295848][T13862] loop4: detected capacity change from 0 to 128 [ 497.781395][T13885] syz.2.3509[13885] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 497.781504][T13885] syz.2.3509[13885] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 498.032751][T13893] loop4: detected capacity change from 0 to 1024 [ 498.089371][T13893] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 498.292440][T12993] EXT4-fs (loop4): unmounting filesystem. [ 498.981685][T13922] loop2: detected capacity change from 0 to 512 [ 498.999803][T13922] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 499.039816][T13922] EXT4-fs (loop2): 1 orphan inode deleted [ 499.054195][T13922] EXT4-fs (loop2): 1 truncate cleaned up [ 499.059998][T13922] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 499.096398][T13926] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 499.115882][T13926] syz.2.3523 (13926) used greatest stack depth: 19072 bytes left [ 499.247324][T12702] EXT4-fs (loop2): unmounting filesystem. [ 499.526157][T13933] loop1: detected capacity change from 0 to 128 [ 499.660250][ T26] kauditd_printk_skb: 80 callbacks suppressed [ 499.660266][ T26] audit: type=1326 audit(1733746263.167:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13934 comm="syz.2.3527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55c4d7fed9 code=0x7ffc0000 [ 499.746918][ T26] audit: type=1326 audit(1733746263.217:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13934 comm="syz.2.3527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55c4d7fed9 code=0x7ffc0000 [ 499.820428][ T26] audit: type=1326 audit(1733746263.217:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13934 comm="syz.2.3527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55c4d7fed9 code=0x7ffc0000 [ 499.892908][ T26] audit: type=1326 audit(1733746263.217:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13934 comm="syz.2.3527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55c4d7fed9 code=0x7ffc0000 [ 499.979893][ T26] audit: type=1326 audit(1733746263.217:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13934 comm="syz.2.3527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55c4d7fed9 code=0x7ffc0000 [ 500.063293][ T26] audit: type=1326 audit(1733746263.217:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13934 comm="syz.2.3527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55c4d7fed9 code=0x7ffc0000 [ 500.563682][ T26] audit: type=1326 audit(1733746263.217:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13934 comm="syz.2.3527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55c4d7fed9 code=0x7ffc0000 [ 500.828303][ T26] audit: type=1326 audit(1733746263.217:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13934 comm="syz.2.3527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55c4d7fed9 code=0x7ffc0000 [ 500.901714][ T26] audit: type=1326 audit(1733746263.217:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13934 comm="syz.2.3527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55c4d7fed9 code=0x7ffc0000 [ 500.924319][ T26] audit: type=1326 audit(1733746263.217:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13934 comm="syz.2.3527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55c4d7fed9 code=0x7ffc0000 [ 501.116837][T13958] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 501.358055][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.364484][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 502.527208][T13978] netlink: 'syz.3.3545': attribute type 7 has an invalid length. [ 502.823568][T13987] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3544'. [ 504.543064][T14019] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3560'. [ 504.669894][ T26] kauditd_printk_skb: 226 callbacks suppressed [ 504.669911][ T26] audit: type=1326 audit(1733746268.187:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.3.3555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2d20576ea7 code=0x7ffc0000 [ 504.776793][ T26] audit: type=1326 audit(1733746268.187:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.3.3555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2d2051c0e9 code=0x7ffc0000 [ 504.872320][ T26] audit: type=1326 audit(1733746268.187:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.3.3555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f2d2057fed9 code=0x7ffc0000 [ 504.901159][T14023] syz.2.3562[14023] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 504.901265][T14023] syz.2.3562[14023] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 504.989773][ T26] audit: type=1326 audit(1733746268.217:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.3.3555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2d20576ea7 code=0x7ffc0000 [ 505.054347][ T26] audit: type=1326 audit(1733746268.217:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.3.3555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2d2051c0e9 code=0x7ffc0000 [ 505.120189][ T26] audit: type=1326 audit(1733746268.217:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.3.3555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f2d2057fed9 code=0x7ffc0000 [ 505.150241][ T26] audit: type=1326 audit(1733746268.217:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.3.3555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2d20576ea7 code=0x7ffc0000 [ 505.178792][ T26] audit: type=1326 audit(1733746268.217:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.3.3555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2d2051c0e9 code=0x7ffc0000 [ 505.211361][ T26] audit: type=1326 audit(1733746268.217:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.3.3555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f2d2057fed9 code=0x7ffc0000 [ 505.242533][ T26] audit: type=1326 audit(1733746268.227:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14002 comm="syz.3.3555" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2d20576ea7 code=0x7ffc0000 [ 505.455232][T14032] device syzkaller1 entered promiscuous mode [ 506.012860][T14057] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3576'. [ 506.060469][T14057] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3576'. [ 506.796448][T14067] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 506.840571][T14067] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 506.956780][T14075] loop4: detected capacity change from 0 to 512 [ 506.963921][T14075] EXT4-fs: Ignoring removed mblk_io_submit option [ 506.983353][T14075] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 507.173370][T12993] EXT4-fs (loop4): unmounting filesystem. [ 507.668211][T14092] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 507.706659][T14092] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 507.735862][T14092] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 507.768058][T14092] device bridge_slave_0 left promiscuous mode [ 507.804464][T14092] bridge0: port 1(bridge_slave_0) entered disabled state [ 507.816061][T14096] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3590'. [ 507.836809][T14092] device bridge_slave_1 left promiscuous mode [ 507.843064][T14092] bridge0: port 2(bridge_slave_1) entered disabled state [ 507.892851][T14092] bond0: (slave bond_slave_0): Releasing backup interface [ 507.930304][T14092] bond0: (slave bond_slave_1): Releasing backup interface [ 507.982401][T14092] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 508.003658][T14092] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 508.023497][T14092] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 508.032968][T14092] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 508.292634][T14111] loop3: detected capacity change from 0 to 512 [ 508.363698][T14111] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 508.394471][T14111] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 508.471734][T14111] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm +}[@: corrupted inode contents [ 508.572538][T14111] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #2: comm +}[@: mark_inode_dirty error [ 508.610124][T14111] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm +}[@: corrupted inode contents [ 508.659930][T14111] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm +}[@: mark_inode_dirty error [ 508.769604][T13297] EXT4-fs (loop3): unmounting filesystem. [ 509.533761][T14143] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3609'. [ 509.647775][T14147] loop3: detected capacity change from 0 to 512 [ 509.677773][T14149] netlink: 68 bytes leftover after parsing attributes in process `syz.4.3612'. [ 509.816312][ T26] kauditd_printk_skb: 123 callbacks suppressed [ 509.816331][ T26] audit: type=1326 audit(1733746273.337:927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14150 comm="syz.0.3613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 509.898918][ T26] audit: type=1326 audit(1733746273.337:928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14150 comm="syz.0.3613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 509.964188][ T26] audit: type=1326 audit(1733746273.367:929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14150 comm="syz.0.3613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 510.033667][ T26] audit: type=1326 audit(1733746273.367:930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14150 comm="syz.0.3613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 510.104648][ T26] audit: type=1326 audit(1733746273.367:931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14150 comm="syz.0.3613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 510.190426][ T26] audit: type=1326 audit(1733746273.367:932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14150 comm="syz.0.3613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 510.262705][ T26] audit: type=1326 audit(1733746273.367:933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14150 comm="syz.0.3613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 510.330274][ T26] audit: type=1326 audit(1733746273.367:934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14150 comm="syz.0.3613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 510.414197][ T26] audit: type=1326 audit(1733746273.367:935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14150 comm="syz.0.3613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 510.478006][ T26] audit: type=1326 audit(1733746273.367:936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14150 comm="syz.0.3613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa615f7fed9 code=0x7ffc0000 [ 510.612932][T14179] netlink: 96 bytes leftover after parsing attributes in process `syz.4.3626'. [ 510.800094][T14182] loop3: detected capacity change from 0 to 512 [ 510.834312][T14185] loop1: detected capacity change from 0 to 1024 [ 510.852480][T14182] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 510.862378][T14182] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 510.881002][T14185] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 510.897933][T14185] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 510.912207][T14185] JBD2: no valid journal superblock found [ 510.918131][T14185] EXT4-fs (loop1): error loading journal [ 511.012389][T14182] Process accounting resumed [ 511.135218][T14182] EXT4-fs (loop3): re-mounted. Quota mode: writeback. [ 511.255400][T13297] EXT4-fs (loop3): unmounting filesystem. [ 511.676653][T14216] syz.3.3642[14216] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 511.676779][T14216] syz.3.3642[14216] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 511.694488][T14217] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3641'. [ 511.986182][T14226] loop4: detected capacity change from 0 to 512 [ 512.098185][T14226] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 512.114518][T14226] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 512.221343][T14226] Process accounting resumed [ 512.338625][T14226] EXT4-fs (loop4): re-mounted. Quota mode: writeback. [ 512.491837][T14240] loop3: detected capacity change from 0 to 512 [ 512.543068][T12993] EXT4-fs (loop4): unmounting filesystem. [ 512.557918][T14240] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 512.707419][T14240] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 512.743664][T14240] ext4 filesystem being mounted at /60/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 513.062735][T13297] EXT4-fs (loop3): unmounting filesystem. [ 513.198405][T14257] loop2: detected capacity change from 0 to 512 [ 513.261692][T14257] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm +}[@: bg 0: block 248: padding at end of block bitmap is not set [ 513.302171][T14257] EXT4-fs error (device loop2): ext4_acquire_dquot:6801: comm +}[@: Failed to acquire dquot type 1 [ 513.325326][T14257] EXT4-fs (loop2): 1 truncate cleaned up [ 513.332908][T14257] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 513.367099][T14257] ext4 filesystem being mounted at /104/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 513.541597][T12702] EXT4-fs (loop2): unmounting filesystem. [ 513.660363][T14272] loop2: detected capacity change from 0 to 512 [ 513.674316][ T4262] Bluetooth: hci2: command 0x0406 tx timeout [ 513.749460][T14272] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 513.774454][T14272] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 513.891421][T14272] Process accounting resumed [ 513.938675][T14272] EXT4-fs (loop2): re-mounted. Quota mode: writeback. [ 514.057293][T12702] EXT4-fs (loop2): unmounting filesystem. [ 514.162211][T14288] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3670'. [ 514.204259][T14288] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 514.531635][T14301] loop4: detected capacity change from 0 to 512 [ 514.573271][T14301] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 514.607772][T14301] EXT4-fs (loop4): 1 truncate cleaned up [ 514.613500][T14301] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 514.752275][T14301] ================================================================== [ 514.761171][T14301] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x8ca/0x1f30 [ 514.768917][T14301] Read of size 18446744073709551572 at addr ffff88802f680050 by task +}[@/14301 [ 514.778053][T14301] [ 514.780406][T14301] CPU: 0 PID: 14301 Comm: +}[@ Not tainted 6.1.119-syzkaller #0 [ 514.788061][T14301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 514.798133][T14301] Call Trace: [ 514.801436][T14301] [ 514.804383][T14301] dump_stack_lvl+0x1e3/0x2cb [ 514.809197][T14301] ? nf_tcp_handle_invalid+0x642/0x642 [ 514.814691][T14301] ? panic+0x764/0x764 [ 514.818779][T14301] ? _printk+0xd1/0x111 [ 514.822954][T14301] ? __virt_addr_valid+0x17f/0x530 [ 514.828092][T14301] ? __virt_addr_valid+0x17f/0x530 [ 514.833259][T14301] print_report+0x15f/0x4f0 [ 514.837792][T14301] ? __virt_addr_valid+0x17f/0x530 [ 514.842939][T14301] ? __virt_addr_valid+0x17f/0x530 [ 514.848089][T14301] ? __virt_addr_valid+0x45b/0x530 [ 514.853234][T14301] ? __phys_addr+0xb6/0x170 [ 514.857781][T14301] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 514.863269][T14301] kasan_report+0x136/0x160 [ 514.867805][T14301] ? __x64_sys_unlink+0x45/0x50 [ 514.872694][T14301] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 514.878181][T14301] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 514.883667][T14301] kasan_check_range+0x27f/0x290 [ 514.888639][T14301] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 514.894122][T14301] memmove+0x25/0x60 [ 514.898047][T14301] ext4_xattr_set_entry+0x8ca/0x1f30 [ 514.903371][T14301] ? ext4_xattr_inode_lookup_create+0x1ef0/0x1ef0 [ 514.910156][T14301] ? ext4_xattr_block_set+0x884/0x3920 [ 514.915636][T14301] ? kmemdup+0x41/0x60 [ 514.919731][T14301] ? memcpy+0x3c/0x60 [ 514.923748][T14301] ext4_xattr_block_set+0xa58/0x3920 [ 514.929067][T14301] ? __getblk_gfp+0x50/0xa20 [ 514.933681][T14301] ? _raw_spin_unlock+0x24/0x40 [ 514.938567][T14301] ? ext4_xattr_block_find+0x510/0x510 [ 514.944065][T14301] ? ext4_xattr_block_find+0x468/0x510 [ 514.949555][T14301] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 514.955617][T14301] ? ext4_xattr_set+0x3d0/0x3d0 [ 514.960499][T14301] ? rwsem_write_trylock+0x166/0x210 [ 514.965821][T14301] ? clear_nonspinnable+0x60/0x60 [ 514.970881][T14301] ? ext4_reserve_inode_write+0x2b3/0x360 [ 514.976649][T14301] ? dquot_initialize_needed+0x128/0x320 [ 514.982406][T14301] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 514.988080][T14301] __ext4_mark_inode_dirty+0x54f/0x920 [ 514.993588][T14301] ? ext4_blocks_for_truncate+0x270/0x270 [ 514.999344][T14301] ? current_time+0x1ba/0x300 [ 515.004059][T14301] ? atime_needs_update+0x7b0/0x7b0 [ 515.009472][T14301] __ext4_unlink+0x6ed/0xba0 [ 515.014278][T14301] ? __ext4_read_dirblock+0x890/0x890 [ 515.019686][T14301] ? rwsem_write_trylock+0x166/0x210 [ 515.025010][T14301] ? inode_permission+0xf7/0x450 [ 515.029974][T14301] ? clear_nonspinnable+0x60/0x60 [ 515.035036][T14301] ext4_unlink+0x1d5/0x670 [ 515.039482][T14301] vfs_unlink+0x359/0x5f0 [ 515.043849][T14301] do_unlinkat+0x4a5/0x820 [ 515.048297][T14301] ? fsnotify_link_count+0xf0/0xf0 [ 515.053532][T14301] __x64_sys_unlink+0x45/0x50 [ 515.058242][T14301] do_syscall_64+0x3b/0xb0 [ 515.062687][T14301] ? clear_bhb_loop+0x45/0xa0 [ 515.067400][T14301] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 515.073414][T14301] RIP: 0033:0x7fc8f9b7fed9 [ 515.077857][T14301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 515.097488][T14301] RSP: 002b:00007fc8faa3e058 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 515.106017][T14301] RAX: ffffffffffffffda RBX: 00007fc8f9d45fa0 RCX: 00007fc8f9b7fed9 [ 515.114019][T14301] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 515.122346][T14301] RBP: 00007fc8f9bf3cc8 R08: 0000000000000000 R09: 0000000000000000 [ 515.130430][T14301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 515.138426][T14301] R13: 0000000000000000 R14: 00007fc8f9d45fa0 R15: 00007fff2df1adb8 [ 515.146432][T14301] [ 515.149466][T14301] [ 515.151801][T14301] Allocated by task 14301: [ 515.156239][T14301] kasan_set_track+0x4b/0x70 [ 515.160862][T14301] __kasan_kmalloc+0x97/0xb0 [ 515.165470][T14301] __kmalloc_node_track_caller+0xb1/0x220 [ 515.171230][T14301] kmemdup+0x26/0x60 [ 515.175145][T14301] ext4_xattr_block_set+0x884/0x3920 [ 515.180539][T14301] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 515.186456][T14301] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 515.192115][T14301] __ext4_mark_inode_dirty+0x54f/0x920 [ 515.197686][T14301] __ext4_unlink+0x6ed/0xba0 [ 515.202300][T14301] ext4_unlink+0x1d5/0x670 [ 515.206740][T14301] vfs_unlink+0x359/0x5f0 [ 515.211096][T14301] do_unlinkat+0x4a5/0x820 [ 515.215535][T14301] __x64_sys_unlink+0x45/0x50 [ 515.220242][T14301] do_syscall_64+0x3b/0xb0 [ 515.224687][T14301] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 515.230610][T14301] [ 515.232953][T14301] Last potentially related work creation: [ 515.238686][T14301] kasan_save_stack+0x3b/0x60 [ 515.243414][T14301] __kasan_record_aux_stack+0xb0/0xc0 [ 515.248827][T14301] kvfree_call_rcu+0x116/0x8c0 [ 515.253621][T14301] cgroup_migrate_finish+0x1b7/0x380 [ 515.258938][T14301] cgroup_attach_task+0x61e/0x970 [ 515.264076][T14301] cgroup_attach_task_all+0x9a/0xe0 [ 515.269311][T14301] kvm_vm_worker_thread+0xd0/0x540 [ 515.274455][T14301] kthread+0x28d/0x320 [ 515.278543][T14301] ret_from_fork+0x1f/0x30 [ 515.283006][T14301] [ 515.285350][T14301] Second to last potentially related work creation: [ 515.291947][T14301] kasan_save_stack+0x3b/0x60 [ 515.296661][T14301] __kasan_record_aux_stack+0xb0/0xc0 [ 515.302055][T14301] call_rcu+0x163/0xa10 [ 515.306229][T14301] process_one_work+0x8a9/0x11d0 [ 515.311188][T14301] worker_thread+0xa47/0x1200 [ 515.315978][T14301] kthread+0x28d/0x320 [ 515.320064][T14301] ret_from_fork+0x1f/0x30 [ 515.324594][T14301] [ 515.326930][T14301] The buggy address belongs to the object at ffff88802f680000 [ 515.326930][T14301] which belongs to the cache kmalloc-1k of size 1024 [ 515.341001][T14301] The buggy address is located 80 bytes inside of [ 515.341001][T14301] 1024-byte region [ffff88802f680000, ffff88802f680400) [ 515.354297][T14301] [ 515.356638][T14301] The buggy address belongs to the physical page: [ 515.363068][T14301] page:ffffea0000bda000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2f680 [ 515.373248][T14301] head:ffffea0000bda000 order:3 compound_mapcount:0 compound_pincount:0 [ 515.381602][T14301] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 515.389624][T14301] raw: 00fff00000010200 0000000000000000 dead000000000001 ffff888017c41dc0 [ 515.398232][T14301] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000 [ 515.406829][T14301] page dumped because: kasan: bad access detected [ 515.413264][T14301] page_owner tracks the page as allocated [ 515.418988][T14301] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 0, tgid 0 (swapper/0), ts 71266344350, free_ts 69524975349 [ 515.439078][T14301] post_alloc_hook+0x18d/0x1b0 [ 515.443874][T14301] get_page_from_freelist+0x3731/0x38d0 [ 515.449468][T14301] __alloc_pages+0x28d/0x770 [ 515.454085][T14301] alloc_slab_page+0x6a/0x150 [ 515.458801][T14301] new_slab+0x84/0x2d0 [ 515.462900][T14301] ___slab_alloc+0xc20/0x1270 [ 515.467599][T14301] __kmem_cache_alloc_node+0x19f/0x260 [ 515.473087][T14301] __kmalloc_node_track_caller+0xa0/0x220 [ 515.478835][T14301] __alloc_skb+0x135/0x670 [ 515.483283][T14301] aoecmd_cfg+0x2cc/0xa20 [ 515.487644][T14301] call_timer_fn+0x1ad/0x6b0 [ 515.492260][T14301] __run_timers+0x67c/0x890 [ 515.496790][T14301] run_timer_softirq+0x63/0xf0 [ 515.501573][T14301] handle_softirqs+0x2ee/0xa40 [ 515.506368][T14301] __irq_exit_rcu+0x157/0x240 [ 515.511169][T14301] irq_exit_rcu+0x5/0x20 [ 515.515455][T14301] page last free stack trace: [ 515.520139][T14301] free_unref_page_prepare+0xf63/0x1120 [ 515.525751][T14301] free_unref_page+0x33/0x3e0 [ 515.530807][T14301] __unfreeze_partials+0x1b7/0x210 [ 515.535953][T14301] put_cpu_partial+0x17b/0x250 [ 515.540772][T14301] qlist_free_all+0x76/0xe0 [ 515.545300][T14301] kasan_quarantine_reduce+0x156/0x170 [ 515.550795][T14301] __kasan_slab_alloc+0x1f/0x70 [ 515.555663][T14301] slab_post_alloc_hook+0x52/0x3a0 [ 515.560801][T14301] kmem_cache_alloc+0x10c/0x2d0 [ 515.565675][T14301] mas_alloc_nodes+0x276/0x800 [ 515.570658][T14301] mas_preallocate+0x12d/0x350 [ 515.575452][T14301] do_mas_align_munmap+0x2e1/0x15a0 [ 515.580670][T14301] do_mas_munmap+0x246/0x2b0 [ 515.585275][T14301] mmap_region+0x8d4/0x2660 [ 515.589805][T14301] do_mmap+0x8c5/0xf60 [ 515.593910][T14301] vm_mmap_pgoff+0x1ca/0x2d0 [ 515.598614][T14301] [ 515.600953][T14301] Memory state around the buggy address: [ 515.606866][T14301] ffff88802f67ff00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 515.614948][T14301] ffff88802f67ff80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 515.623028][T14301] >ffff88802f680000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 515.631121][T14301] ^ [ 515.637814][T14301] ffff88802f680080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 515.645893][T14301] ffff88802f680100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 515.653962][T14301] ================================================================== [ 515.667109][T14301] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 515.674332][T14301] CPU: 1 PID: 14301 Comm: +}[@ Not tainted 6.1.119-syzkaller #0 [ 515.681989][T14301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 515.692062][T14301] Call Trace: [ 515.695350][T14301] [ 515.698373][T14301] dump_stack_lvl+0x1e3/0x2cb [ 515.703063][T14301] ? nf_tcp_handle_invalid+0x642/0x642 [ 515.708534][T14301] ? panic+0x764/0x764 [ 515.712605][T14301] ? preempt_schedule_common+0xa6/0xd0 [ 515.718066][T14301] ? vscnprintf+0x59/0x80 [ 515.722417][T14301] panic+0x318/0x764 [ 515.726333][T14301] ? check_panic_on_warn+0x1d/0xa0 [ 515.731448][T14301] ? memcpy_page_flushcache+0xfc/0xfc [ 515.736830][T14301] ? _raw_spin_unlock_irqrestore+0x128/0x130 [ 515.742814][T14301] ? _raw_spin_unlock+0x40/0x40 [ 515.747674][T14301] check_panic_on_warn+0x7e/0xa0 [ 515.752615][T14301] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 515.758075][T14301] end_report+0x66/0x110 [ 515.762318][T14301] kasan_report+0x143/0x160 [ 515.766830][T14301] ? __x64_sys_unlink+0x45/0x50 [ 515.771689][T14301] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 515.777161][T14301] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 515.782619][T14301] kasan_check_range+0x27f/0x290 [ 515.787557][T14301] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 515.793015][T14301] memmove+0x25/0x60 [ 515.796916][T14301] ext4_xattr_set_entry+0x8ca/0x1f30 [ 515.802211][T14301] ? ext4_xattr_inode_lookup_create+0x1ef0/0x1ef0 [ 515.808623][T14301] ? ext4_xattr_block_set+0x884/0x3920 [ 515.814106][T14301] ? kmemdup+0x41/0x60 [ 515.818175][T14301] ? memcpy+0x3c/0x60 [ 515.822160][T14301] ext4_xattr_block_set+0xa58/0x3920 [ 515.827451][T14301] ? __getblk_gfp+0x50/0xa20 [ 515.832065][T14301] ? _raw_spin_unlock+0x24/0x40 [ 515.836920][T14301] ? ext4_xattr_block_find+0x510/0x510 [ 515.842382][T14301] ? ext4_xattr_block_find+0x468/0x510 [ 515.847844][T14301] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 515.853749][T14301] ? ext4_xattr_set+0x3d0/0x3d0 [ 515.858601][T14301] ? rwsem_write_trylock+0x166/0x210 [ 515.863895][T14301] ? clear_nonspinnable+0x60/0x60 [ 515.868922][T14301] ? ext4_reserve_inode_write+0x2b3/0x360 [ 515.874648][T14301] ? dquot_initialize_needed+0x128/0x320 [ 515.880299][T14301] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 515.885956][T14301] __ext4_mark_inode_dirty+0x54f/0x920 [ 515.891420][T14301] ? ext4_blocks_for_truncate+0x270/0x270 [ 515.897147][T14301] ? current_time+0x1ba/0x300 [ 515.901832][T14301] ? atime_needs_update+0x7b0/0x7b0 [ 515.907042][T14301] __ext4_unlink+0x6ed/0xba0 [ 515.911634][T14301] ? __ext4_read_dirblock+0x890/0x890 [ 515.917009][T14301] ? rwsem_write_trylock+0x166/0x210 [ 515.922296][T14301] ? inode_permission+0xf7/0x450 [ 515.927232][T14301] ? clear_nonspinnable+0x60/0x60 [ 515.932261][T14301] ext4_unlink+0x1d5/0x670 [ 515.936681][T14301] vfs_unlink+0x359/0x5f0 [ 515.941035][T14301] do_unlinkat+0x4a5/0x820 [ 515.945546][T14301] ? fsnotify_link_count+0xf0/0xf0 [ 515.950679][T14301] __x64_sys_unlink+0x45/0x50 [ 515.955364][T14301] do_syscall_64+0x3b/0xb0 [ 515.959785][T14301] ? clear_bhb_loop+0x45/0xa0 [ 515.964469][T14301] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 515.970373][T14301] RIP: 0033:0x7fc8f9b7fed9 [ 515.974788][T14301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 515.994393][T14301] RSP: 002b:00007fc8faa3e058 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 516.002807][T14301] RAX: ffffffffffffffda RBX: 00007fc8f9d45fa0 RCX: 00007fc8f9b7fed9 [ 516.010777][T14301] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 516.018744][T14301] RBP: 00007fc8f9bf3cc8 R08: 0000000000000000 R09: 0000000000000000 [ 516.026713][T14301] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 516.034686][T14301] R13: 0000000000000000 R14: 00007fc8f9d45fa0 R15: 00007fff2df1adb8 [ 516.042663][T14301] [ 516.045990][T14301] Kernel Offset: disabled [ 516.050312][T14301] Rebooting in 86400 seconds..