last executing test programs: 6.627507525s ago: executing program 1 (id=1298): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) writev(r0, &(0x7f0000000800)=[{&(0x7f0000000c00)="89e7e60400c90d00000000000000", 0xe}, {&(0x7f00000005c0)="c2c16558", 0x4}], 0x2) 4.617352692s ago: executing program 1 (id=1310): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000480)='kfree\x00', r0, 0x0, 0x4000000}, 0x9) r1 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @my=0x0}, 0x10) connect$vsock_stream(r1, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10) 4.589327212s ago: executing program 2 (id=1311): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000040000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) syz_emit_ethernet(0x32, &(0x7f0000000000)={@random="b7f2a1448f32", @empty, @void, {@ipv4={0x800, @dccp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x2f, 0x0, @dev, @multicast1}, {{0x0, 0x6558, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "f85100", 0x0, "2c17a9"}}}}}}, 0x0) 4.500803842s ago: executing program 0 (id=1312): syz_init_net_socket$x25(0x9, 0x5, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_SIOCBRADDBR(r1, 0x89a0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) syz_emit_ethernet(0x66, 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, 0x0, 0x0) r2 = fsopen(&(0x7f0000000240)='9p\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000080)='nomand\x00', &(0x7f00000000c0)=':', 0x1) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r4 = add_key$keyring(0x0, &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) r5 = add_key$user(&(0x7f0000000200), &(0x7f0000000240)={'syz', 0x0}, &(0x7f0000000280)="d2207ec8", 0x4, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000380)='asymmetric\x00', &(0x7f0000000500)=@keyring={'key_or_keyring:', r5}) r6 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000340)=@keyring={'key_or_keyring:', r4}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r3}, 0x18) r7 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102) r8 = dup(r7) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x7, 0x7, 0x7f, 0x9, 0x5}) ioctl$USBDEVFS_SUBMITURB(r8, 0x8038550a, &(0x7f0000000100)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f00000001c0)={0x4, 0x0, 0x0, 0xffff}, 0x8, 0x7, 0x0, 0x0, 0x0, 0x7f, 0x0}) r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]}) chdir(0x0) close_range(r9, 0xffffffffffffffff, 0x0) sendto$inet(r0, &(0x7f0000000000)="220f749bd0a5c96c6991e3b1eebe2f86fc5907ca919ef1bb6ab5c934770e", 0x1e, 0x40, 0x0, 0x0) 4.415611013s ago: executing program 2 (id=1313): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x444, &(0x7f0000000ac0)=ANY=[@ANYBLOB="75746638006d61703d6f983c756661703d6e6f726d616c2c6909000000f2ff00003dda5de4d586f0df206d65656b416d6f64653d3078303030303010303071303030303030302c73657373696f6e3d307830faffffff30303030303030f4e4b4f82c6d61736b3d4d4159574b50be30c8486470722677b93165cfe6f62127553b2017754598752d977369672c7063723d303030303030303030303030303030303030332c64566e745f6d6561737572652c00000000000000006bbf4d6406b59dbc529c00000000000000fada265ab14119997600a2299d2c35a2efc1bf037787a0d801f26d335ef2ba9ac2423a358ccbb776b21e1d3b", @ANYRESDEC=0x0, @ANYRESHEX], 0xfe, 0x667, &(0x7f00000002c0)="$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") getdents64(0xffffffffffffffff, &(0x7f0000002ec0)=""/4092, 0x691) 4.415476413s ago: executing program 3 (id=1314): truncate(&(0x7f0000000140)='./file0\x00', 0x7fffffff) 4.329311134s ago: executing program 3 (id=1315): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_BEARER_GET(r0, 0x0, 0x20000000) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000080000000500000000000000", @ANYRES32, @ANYBLOB="00000004000000000e00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000007f00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r2}, 0x18) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000040), &(0x7f0000000080)=r2}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) capset(&(0x7f00000004c0)={0x20080522}, &(0x7f0000000500)={0x80002}) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000380)='sched_switch\x00', r3}, 0x18) r4 = syz_open_dev$evdev(&(0x7f0000000180), 0x3, 0x88000) ioctl$EVIOCGRAB(r4, 0x40044590, &(0x7f00000001c0)) epoll_create(0x40) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed7f0000000000000000000018010000", @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r5}, 0x10) r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCPKT(r6, 0x5420, 0x0) ioctl$TIOCSSOFTCAR(r6, 0x541a, 0x0) r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r7}, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000dc0)={0xffffffffffffffff, 0x2000000, 0x0, 0xf0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) 4.259441695s ago: executing program 2 (id=1317): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)=@newtfilter={0x34, 0x2c, 0x1, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0xfffa, 0x2}, {}, {0x10, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}}, 0x4) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x190, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x48, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0x0, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_UDP_SRC_MASK={0x6}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}, @TCA_FLOWER_KEY_ICMPV6_TYPE_MASK={0x5}, @TCA_FLOWER_KEY_SCTP_DST_MASK={0x6}]}}, @filter_kind_options=@f_route={{0xa}, {0xf4, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0xe0, 0x6, [@m_connmark={0x40, 0x0, 0x0, 0x0, {{0xd}, {0x4}, {0xd, 0x6, "66396e732cf67237ec"}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_bpf={0x9c, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x71, 0x6, "ca8fd735f4c425bd44291fa86781920ab90ff95c64e3d33704248d0546950f6c3113358c2551981c52f5a6dd8a3891697d8ab8d8f56d15025dc3c339c95c2c879249dbbfa3c3f7576ea41a624c8db9b4a2896e26ced3361e33c793332fc709bb25bcdfc387325cb1fac53056bf"}, {0xc}, {0xc}}}]}]}}]}, 0x190}, 0x1, 0x0, 0x0, 0x81}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 4.217245605s ago: executing program 3 (id=1318): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) writev(r0, &(0x7f0000000800)=[{&(0x7f0000000c00)="89e7e60400c90d000000000000", 0xd}, {&(0x7f00000005c0)="c2c165", 0x3}], 0x2) 4.201979765s ago: executing program 2 (id=1319): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x10) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r2) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000500)) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x36) 3.65705595s ago: executing program 1 (id=1320): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) writev(r0, &(0x7f0000000800)=[{&(0x7f0000000c00)="89e7e60400c90d00000000000000", 0xe}, {&(0x7f00000005c0)="c2c16558", 0x4}], 0x2) 3.574648561s ago: executing program 0 (id=1321): syz_genetlink_get_family_id$nfc(0x0, 0xffffffffffffffff) r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0xe, 0x141341) ioctl$USBDEVFS_IOCTL(r0, 0xc00c5512, &(0x7f0000000200)) ioctl$USBDEVFS_BULK(r0, 0xc0185502, &(0x7f0000000140)={{{0x1, 0x1}}, 0x4, 0x7b12d845, &(0x7f0000000040)="8277f4c7"}) ioctl$USBDEVFS_BULK(r0, 0xc0185502, &(0x7f0000000240)={{{0x1, 0x1}}, 0x28, 0xfffffffc, 0x0}) bpf$TOKEN_CREATE(0x24, &(0x7f00000006c0)={0x0, r0}, 0x8) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180100802020702500000000002020207b1af8ff00000000bfa10000000013ae366c8e9f000007019d3c2dd765d4a6ca23000000b70300000600000085000000710000009500fff3591632bdc62bf1efb826c0728eb1917eb42614660db083b92c00"/129], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kmem_cache_free\x00'}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) open$dir(0x0, 0x4000, 0x1) io_destroy(0x0) r2 = getpid() setreuid(0xee00, 0x0) r3 = syz_pidfd_open(r2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xf, 0x4, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r5}, &(0x7f0000000180), &(0x7f0000000100)=r4}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r5, &(0x7f0000000300), 0x0}, 0x20) setns(r3, 0x24020000) syz_clone3(&(0x7f00000008c0)={0x15340180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r2], 0x1}, 0x58) 2.822993797s ago: executing program 4 (id=1327): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents64(r2, &(0x7f0000002ec0)=""/4092, 0x691) 2.752886377s ago: executing program 4 (id=1328): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) r1 = io_uring_setup(0x1e4c, &(0x7f0000000440)={0x0, 0x7fe5, 0x0, 0x8000000, 0xfffffffe}) io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000740)={&(0x7f0000002000)={[{0x0, 0x0, 0x2}, {0x0, 0x0, 0x1}, {0x0, 0x0, 0x10}, {0x0}, {0x0, 0x0, 0x1}, {0x0, 0x0, 0x3}, {0x0, 0x0, 0x3}, {0x0, 0x0, 0x3}]}, 0x8}, 0x1) 2.675740908s ago: executing program 0 (id=1329): bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={0x0}, 0x18) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000500)='page_pool_state_release\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r2, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r3}, 0x18) open(0x0, 0x147842, 0x1) sendmsg$tipc(0xffffffffffffffff, &(0x7f0000003a00)={0x0, 0x0, 0x0}, 0x4000004) 2.587505689s ago: executing program 4 (id=1330): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r3, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c000200080001"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000600)=@newlink={0x50, 0x10, 0xffffff1f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x1020}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e23}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x1}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0xa, r3}]}, 0x50}}, 0x0) 2.587048649s ago: executing program 0 (id=1331): syz_init_net_socket$x25(0x9, 0x5, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x81}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_SIOCBRADDBR(r1, 0x89a0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) syz_emit_ethernet(0x66, 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, 0x0, 0x0) r2 = fsopen(&(0x7f0000000240)='9p\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r2, 0x2, &(0x7f0000000080)='nomand\x00', &(0x7f00000000c0)=':', 0x1) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r4 = add_key$keyring(0x0, &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) r5 = add_key$user(&(0x7f0000000200), &(0x7f0000000240)={'syz', 0x0}, &(0x7f0000000280)="d2207ec8", 0x4, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000380)='asymmetric\x00', &(0x7f0000000500)=@keyring={'key_or_keyring:', r5}) r6 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r6, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000340)=@keyring={'key_or_keyring:', r4}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r3}, 0x18) r7 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102) r8 = dup(r7) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x7, 0x7, 0x7f, 0x9, 0x5}) ioctl$USBDEVFS_SUBMITURB(r8, 0x8038550a, &(0x7f0000000100)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f00000001c0)={0x4, 0x0, 0x0, 0xffff}, 0x8, 0x7, 0x0, 0x0, 0x0, 0x7f, 0x0}) r9 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]}) chdir(0x0) close_range(r9, 0xffffffffffffffff, 0x0) sendto$inet(r0, &(0x7f0000000000)="220f749bd0a5c96c6991e3b1eebe2f86fc5907ca919ef1bb6ab5c934770e", 0x1e, 0x40, 0x0, 0x0) 2.149251072s ago: executing program 3 (id=1332): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x7, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) socketpair(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={r0, &(0x7f0000000140), &(0x7f0000000000)=@tcp6=r1}, 0x20) r2 = socket$inet6_udp(0xa, 0x2, 0x0) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000380)={r0, &(0x7f0000000600), &(0x7f0000000340)=@udp6=r2, 0x1}, 0x20) 2.055003573s ago: executing program 1 (id=1333): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x5, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000010000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r2}, 0x10) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f00005fd000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x3) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) 2.054671083s ago: executing program 3 (id=1334): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000080000000600000000100000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000009cad0dfd65487100"/28], 0x48) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYRESDEC=r0, @ANYRES32=r0, @ANYRESDEC], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffc90, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x5}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) rt_sigprocmask(0x0, &(0x7f0000000480)={[0xfffffffffffffffd]}, 0x0, 0x8) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$TOKEN_CREATE(0x24, &(0x7f0000000340)={0x0, r2}, 0x8) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x18, 0x4, &(0x7f0000000240)=ANY=[@ANYRES8=r3, @ANYRES8=0x0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r4}, 0x10) r5 = socket$kcm(0x10, 0x400000002, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r7}, 0x10) r8 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r8, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000000f8c0000000c0a01080000000000000000010000000900020073797a3200000000600003805c000080080003400000000250000b80200001800a00010071756f7461000000100002800c0001400000000000000000140001800c000100636f756e74657200000000000000058011e70000666c6f775f6f66666c6f6164000000000900010073797a30"], 0x110}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0) r9 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff) openat$cgroup_ro(r6, &(0x7f0000000300)='cgroup.freeze\x00', 0x0, 0x0) ioctl$sock_ifreq(r9, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7}) ioctl$sock_netdev_private(r9, 0x8943, &(0x7f0000000000)) write$cgroup_subtree(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000760091"], 0xfe33) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x7, 0xd, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000c958dac842fb5f51f0227bc5ed7a00001811000000000000000000", @ANYRES32, @ANYRESDEC=r4], &(0x7f0000001b80)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='kmem_cache_free\x00', r10, 0x0, 0x40000000000004}, 0x18) 1.932230084s ago: executing program 1 (id=1335): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7d2}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000140)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000850000000800000095"], &(0x7f00000002c0)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10) r3 = socket$unix(0x1, 0x1, 0x0) r4 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000300)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) r6 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0xd1af, 0xf09}}}]}, 0x38}}, 0x810) 377.351427ms ago: executing program 2 (id=1336): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000006"], 0x48) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='task\x00') fcntl$notify(r1, 0x402, 0x80000004) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@newlink={0x3c, 0x10, 0x609, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffad}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_PEER_NOTIF_DELAY={0x8, 0x1c, 0x48c}]}}}]}, 0x3c}}, 0x0) getdents(r1, 0x0, 0x0) r3 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_REG(r1, &(0x7f00000004c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000380)={&(0x7f00000005c0)={0xac, r3, 0x8, 0x70bd2d, 0x25dfdbff, {}, [@NL80211_ATTR_REG_RULES={0x98, 0x22, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x1}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x23}, @NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x1}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x9}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x80000000}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7}, @NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x101}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x3}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0xfffffffe}]}, {0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x4}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x7}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x80000001}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x81}]}]}]}, 0xac}, 0x1, 0x0, 0x0, 0x20000084}, 0x20000000) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x26, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10) socket$tipc(0x1e, 0x5, 0x0) r6 = socket(0x10, 0x3, 0x5) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) connect$netlink(r6, &(0x7f0000000240)=@proc={0x10, 0x0, 0x25dfdbff, 0x2000000}, 0xc) sendmsg$nl_route_sched(r6, &(0x7f0000000080)={&(0x7f0000000800)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000a00)=@newtaction={0x18, 0x31, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a30000000000800034000"], 0x64}}, 0x0) close_range(r4, 0xffffffffffffffff, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000e00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kfree\x00', r8}, 0x10) ioctl$FIBMAP(r8, 0x1, &(0x7f0000000080)=0x8da) r9 = open$dir(&(0x7f0000000500)='./file0\x00', 0x1898c3, 0x2) mknodat$loop(r9, &(0x7f0000000540)='./file0\x00', 0x80, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r10 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000680)=ANY=[@ANYBLOB="3c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000006373656300000c0002800500030004000000e8397ae4431f37fde4e600"/44], 0x3c}}, 0x0) 376.814197ms ago: executing program 3 (id=1337): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000340)='kfree\x00', r2, 0x0, 0x59f8}, 0xd) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00'}) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r3}, 0x4) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10) r5 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x1a9a81) r6 = socket$inet(0xa, 0x801, 0x0) setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x44, 0x6, 0x468, 0x308, 0x0, 0x308, 0x308, 0x220, 0x3d0, 0x3d0, 0x3d0, 0x3d0, 0x3d0, 0x6, 0x0, {[{{@ip={@broadcast, @dev, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0x308}}, {{@ip={@remote, @local, 0x0, 0x0, 'vcan0\x00', 'veth0_virt_wifi\x00', {}, {}, 0x6, 0x0, 0x48}, 0x0, 0x98, 0xc8, 0x0, {}, [@common=@unspec=@state={{0x28}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @multicast2}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@common=@ttl={{0x28}}]}, @ECN={0x28}}, {{@ip={@rand_addr, @multicast2, 0x0, 0x0, 'syzkaller0\x00', 'bond0\x00'}, 0x0, 0xc0, 0xe8, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}}]}, @unspec=@CHECKSUM={0x28}}, {{@ip={@broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0xa0, 0xc8, 0x0, {}, [@common=@ah={{0x30}}]}, @common=@unspec=@NFQUEUE1={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4c8) ioctl$USBDEVFS_FREE_STREAMS(r5, 0x802c550a, 0x0) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r6, 0x89f8, 0x0) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) ioctl$USBDEVFS_CONTROL(r5, 0x4004550c, 0x0) sendmsg$nl_route_sched(r0, 0x0, 0x0) 291.967088ms ago: executing program 0 (id=1338): r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200102f00fe80000000000000875a65059ff57b00000000000000000000000000ac1414aa35f022eb"], 0xcfa4) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 291.232958ms ago: executing program 4 (id=1339): r0 = socket(0x2a, 0x2, 0x0) getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) 196.092639ms ago: executing program 0 (id=1340): syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f0000000140)='2', 0x1, 0x8000c61) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) 195.901649ms ago: executing program 1 (id=1341): openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) ioctl$LOOP_CTL_GET_FREE(0xffffffffffffffff, 0x4c82) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0xc, 0xc, &(0x7f0000001040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socket$nl_netfilter(0x10, 0x3, 0xc) openat(0xffffffffffffffff, 0x0, 0x141240, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000003000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000400)={0x0, &(0x7f00000000c0)}) socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r4, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0xff0f}], 0x1}, 0x0) recvmsg(r3, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0) 132.128329ms ago: executing program 4 (id=1342): r0 = socket$l2tp6(0xa, 0x2, 0x73) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x2b0, 0x0, 0x130, 0x26010000, 0x158, 0x130, 0x248, 0x220, 0x220, 0x248, 0x220, 0x3, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0, 0x0, {0x0, 0x25e}}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0xfff, 0xcfe8, 0x7, 'snmp\x00', {0xea}}}}, {{@ipv6={@dev, @local, [0xff], [], 'bridge_slave_0\x00', 'dummy0\x00', {}, {}, 0x3c, 0x0, 0x0, 0x78}, 0x0, 0xa8, 0xf0}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x402, 0x0, 0x0, 0x0, 'syz1\x00', {0xfffffffffffffffc}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310) 63.66494ms ago: executing program 2 (id=1343): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r4}, 0x10) r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_IOC_FAIL(r5, 0x4c80, 0xffffffffffffffb6) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00'}, 0x10) 0s ago: executing program 4 (id=1344): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) writev(r0, &(0x7f0000000800)=[{&(0x7f0000000c00)="89e7e60400c90d000000000000", 0xd}, {&(0x7f00000005c0)="c2c165", 0x3}], 0x2) kernel console output (not intermixed with test programs): =1326 audit(1733586998.533:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4656 comm="syz.1.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 82.219038][ T4674] 9pnet_fd: Insufficient options for proto=fd [ 82.397730][ T4677] netlink: 28 bytes leftover after parsing attributes in process `syz.0.108'. [ 82.581444][ T4665] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 82.688489][ T22] libceph: connect (1)[c::]:6789 error -101 [ 82.704324][ T22] libceph: mon0 (1)[c::]:6789 connect error [ 82.789531][ T4674] ceph: No mds server is up or the cluster is laggy [ 82.794045][ T26] audit: type=1326 audit(1733586998.533:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4656 comm="syz.1.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 82.818833][ T4665] EXT4-fs (loop3): 1 truncate cleaned up [ 82.854798][ T4665] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 82.954412][ T26] audit: type=1326 audit(1733586998.533:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4656 comm="syz.1.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 82.960228][ T4681] syz.1.111[4681] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 82.985715][ T26] audit: type=1326 audit(1733586998.533:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4656 comm="syz.1.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 83.059547][ T26] audit: type=1326 audit(1733586998.533:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4656 comm="syz.1.103" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 83.075778][ T4681] syz.1.111[4681] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 83.135878][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 83.603512][ T4692] loop4: detected capacity change from 0 to 512 [ 83.667607][ T4692] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 83.692003][ T4692] ext4 filesystem being mounted at /21/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 83.878747][ T4698] loop3: detected capacity change from 0 to 2048 [ 83.952864][ T4698] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 84.074690][ T4692] netlink: 104 bytes leftover after parsing attributes in process `syz.4.116'. [ 84.405227][ T4698] syz.3.118 (4698) used greatest stack depth: 19168 bytes left [ 84.747649][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 85.042301][ T4718] RDS: rds_bind could not find a transport for 0:0:900:0:9500::, load rds_tcp or rds_rdma? [ 85.053371][ T4720] capability: warning: `syz.1.127' uses 32-bit capabilities (legacy support in use) [ 85.390837][ T4734] Zero length message leads to an empty skb [ 85.417075][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 85.618763][ T4740] loop2: detected capacity change from 0 to 512 [ 85.663200][ T4740] ======================================================= [ 85.663200][ T4740] WARNING: The mand mount option has been deprecated and [ 85.663200][ T4740] and is ignored by this kernel. Remove the mand [ 85.663200][ T4740] option from the mount to silence this warning. [ 85.663200][ T4740] ======================================================= [ 85.764152][ T4737] loop1: detected capacity change from 0 to 8192 [ 85.846518][ T4740] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 85.961456][ T4747] loop3: detected capacity change from 0 to 512 [ 85.976000][ T4740] EXT4-fs (loop2): orphan cleanup on readonly fs [ 85.988238][ T4747] EXT4-fs: quotafile must be on filesystem root [ 86.131920][ T4740] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.137: bg 0: block 248: padding at end of block bitmap is not set [ 86.469943][ T4740] EXT4-fs error (device loop2): ext4_acquire_dquot:6801: comm syz.2.137: Failed to acquire dquot type 1 [ 86.563796][ T4740] EXT4-fs (loop2): 1 truncate cleaned up [ 86.642751][ T4740] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 86.662341][ T26] kauditd_printk_skb: 254 callbacks suppressed [ 86.662357][ T26] audit: type=1326 audit(1733587003.503:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4729 comm="syz.0.133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd9a491c0e9 code=0x7ffc0000 [ 86.710556][ T4752] loop1: detected capacity change from 0 to 764 [ 86.816137][ T4752] Symlink component flag not implemented [ 86.825848][ T26] audit: type=1326 audit(1733587003.503:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4729 comm="syz.0.133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd9a4976ea7 code=0x7ffc0000 [ 86.854191][ T4752] Symlink component flag not implemented (101) [ 86.875251][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 86.960947][ T26] audit: type=1326 audit(1733587003.503:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4729 comm="syz.0.133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd9a491c0e9 code=0x7ffc0000 [ 87.065391][ T26] audit: type=1326 audit(1733587003.503:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4729 comm="syz.0.133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 87.162139][ T26] audit: type=1326 audit(1733587003.543:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4729 comm="syz.0.133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd9a4976ea7 code=0x7ffc0000 [ 87.254593][ T26] audit: type=1326 audit(1733587003.543:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4729 comm="syz.0.133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd9a491c0e9 code=0x7ffc0000 [ 87.331039][ T26] audit: type=1326 audit(1733587003.543:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4729 comm="syz.0.133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 87.435310][ T26] audit: type=1326 audit(1733587003.593:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4729 comm="syz.0.133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd9a4976ea7 code=0x7ffc0000 [ 87.513374][ T26] audit: type=1326 audit(1733587003.593:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4729 comm="syz.0.133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd9a491c0e9 code=0x7ffc0000 [ 88.205600][ T26] audit: type=1326 audit(1733587003.593:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4729 comm="syz.0.133" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 88.529486][ T4782] syz.4.152[4782] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 88.529584][ T4782] syz.4.152[4782] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 88.840152][ T4784] loop4: detected capacity change from 0 to 512 [ 89.865386][ T4784] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 89.985734][ T4784] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.681808][ T4804] netlink: 20 bytes leftover after parsing attributes in process `syz.0.158'. [ 91.035577][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 93.574538][ T26] kauditd_printk_skb: 43 callbacks suppressed [ 93.574553][ T26] audit: type=1326 audit(1733587010.413:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4821 comm="syz.4.162" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f693397fed9 code=0x0 [ 95.335635][ T26] audit: type=1326 audit(1733587012.093:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4864 comm="syz.1.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 95.471349][ T26] audit: type=1326 audit(1733587012.093:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4864 comm="syz.1.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 95.727231][ T26] audit: type=1326 audit(1733587012.103:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4864 comm="syz.1.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 95.749540][ T26] audit: type=1326 audit(1733587012.103:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4864 comm="syz.1.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 95.786147][ T26] audit: type=1326 audit(1733587012.103:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4864 comm="syz.1.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 95.815961][ T26] audit: type=1326 audit(1733587012.103:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4864 comm="syz.1.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 95.894060][ T26] audit: type=1326 audit(1733587012.103:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4864 comm="syz.1.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 95.917232][ T26] audit: type=1326 audit(1733587012.103:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4864 comm="syz.1.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 95.943925][ T26] audit: type=1326 audit(1733587012.103:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4864 comm="syz.1.179" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 97.344781][ T4919] netlink: 12 bytes leftover after parsing attributes in process `syz.3.201'. [ 97.654102][ T4925] netlink: 12 bytes leftover after parsing attributes in process `syz.0.202'. [ 98.029733][ T4935] loop4: detected capacity change from 0 to 128 [ 98.250120][ T4942] loop0: detected capacity change from 0 to 764 [ 98.325939][ T4942] Symlink component flag not implemented [ 98.331754][ T4942] Symlink component flag not implemented (101) [ 98.346595][ T4946] device macvtap0 entered promiscuous mode [ 98.384541][ T4946] device macvtap0 left promiscuous mode [ 98.629677][ T4954] netlink: 'syz.0.214': attribute type 1 has an invalid length. [ 98.804414][ T4954] 8021q: adding VLAN 0 to HW filter on device bond1 [ 98.849732][ T4962] bond1: (slave gretap1): making interface the new active one [ 98.891871][ T4962] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 98.912527][ T26] kauditd_printk_skb: 10 callbacks suppressed [ 98.912542][ T26] audit: type=1326 audit(1733587015.753:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4956 comm="syz.2.216" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f623397fed9 code=0x0 [ 98.987727][ T4466] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 99.308315][ T26] audit: type=1326 audit(1733587016.153:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4974 comm="syz.1.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 99.383287][ T26] audit: type=1326 audit(1733587016.153:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4974 comm="syz.1.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 99.414116][ T26] audit: type=1326 audit(1733587016.153:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4974 comm="syz.1.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 99.546290][ T26] audit: type=1326 audit(1733587016.153:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4974 comm="syz.1.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 99.725566][ T26] audit: type=1326 audit(1733587016.153:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4974 comm="syz.1.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 99.798894][ T26] audit: type=1326 audit(1733587016.153:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4974 comm="syz.1.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 99.897359][ T26] audit: type=1326 audit(1733587016.153:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4974 comm="syz.1.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 99.921964][ T26] audit: type=1326 audit(1733587016.153:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4974 comm="syz.1.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 99.958793][ T26] audit: type=1326 audit(1733587016.203:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4974 comm="syz.1.223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 100.141751][ T5011] loop4: detected capacity change from 0 to 16 [ 100.164249][ T5011] erofs: (device loop4): mounted with root inode @ nid 36. [ 100.833641][ T5017] syz.4.237: attempt to access beyond end of device [ 100.833641][ T5017] loop4: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 100.847984][ T5017] syz.4.237: attempt to access beyond end of device [ 100.847984][ T5017] loop4: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 100.864712][ T5017] syz.4.237: attempt to access beyond end of device [ 100.864712][ T5017] loop4: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 100.880551][ T5017] syz.4.237: attempt to access beyond end of device [ 100.880551][ T5017] loop4: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 102.061539][ T5027] loop1: detected capacity change from 0 to 256 [ 102.327708][ T5035] bridge0: port 3(vlan2) entered blocking state [ 102.361409][ T5035] bridge0: port 3(vlan2) entered disabled state [ 102.609967][ T5047] syz.3.251[5047] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 102.610077][ T5047] syz.3.251[5047] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 102.663688][ T5049] netlink: 'syz.2.252': attribute type 1 has an invalid length. [ 102.753205][ T5049] 8021q: adding VLAN 0 to HW filter on device bond1 [ 102.803272][ T5053] bond1: (slave gretap1): making interface the new active one [ 102.840638][ T5053] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 102.865890][ T4370] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 103.302341][ T5072] loop2: detected capacity change from 0 to 764 [ 103.486436][ T5076] serio: Serial port ptm0 [ 104.669120][ T26] kauditd_printk_skb: 55 callbacks suppressed [ 104.669135][ T26] audit: type=1326 audit(1733587021.513:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5094 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 104.763311][ T26] audit: type=1326 audit(1733587021.543:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5094 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 104.875561][ T26] audit: type=1326 audit(1733587021.543:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5094 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 104.931401][ T26] audit: type=1326 audit(1733587021.543:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5094 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 105.014369][ T26] audit: type=1326 audit(1733587021.543:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5094 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 105.071574][ T26] audit: type=1326 audit(1733587021.543:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5094 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 105.169372][ T26] audit: type=1326 audit(1733587021.543:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5094 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 105.200771][ T26] audit: type=1326 audit(1733587021.543:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5094 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 105.231092][ T26] audit: type=1326 audit(1733587021.543:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5094 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 105.283527][ T26] audit: type=1326 audit(1733587021.543:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5094 comm="syz.3.272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 105.340944][ T5121] loop4: detected capacity change from 0 to 512 [ 105.356172][ T5121] EXT4-fs: Ignoring removed orlov option [ 105.363037][ T5121] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 105.463072][ T5121] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 105.463962][ T5128] Illegal XDP return value 4294967274 on prog (id 133) dev N/A, expect packet loss! [ 105.475174][ T5121] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 105.653338][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 106.106061][ T5143] loop0: detected capacity change from 0 to 512 [ 106.113077][ T5143] EXT4-fs: inline encryption not supported [ 106.128851][ T5143] EXT4-fs warning (device loop0): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 106.140479][ T5143] EXT4-fs warning (device loop0): dx_probe:881: Enable large directory feature to access it [ 106.150709][ T5143] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.292: Corrupt directory, running e2fsck is recommended [ 106.165871][ T5143] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117 [ 106.184025][ T5143] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2186: inode #15: comm syz.0.292: corrupted in-inode xattr [ 106.199416][ T5143] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.292: couldn't read orphan inode 15 (err -117) [ 106.212589][ T5143] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 106.364098][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 106.752933][ T5149] loop3: detected capacity change from 0 to 1024 [ 106.816556][ T5149] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 106.851829][ T5149] EXT4-fs warning (device loop3): ext4_enable_quotas:7036: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 106.875200][ T5149] EXT4-fs (loop3): mount failed [ 107.025739][ T4294] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 107.205876][ T4294] usb 3-1: device descriptor read/64, error -71 [ 107.365104][ T5186] syz.3.310 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 107.485586][ T4294] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 107.637406][ T5196] IPVS: set_ctl: invalid protocol: 0 172.30.1.5:20003 [ 107.661194][ T5192] loop3: detected capacity change from 0 to 8192 [ 107.665720][ T4294] usb 3-1: device descriptor read/64, error -71 [ 107.696682][ T5192] syz.3.314: attempt to access beyond end of device [ 107.696682][ T5192] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 107.735014][ T5192] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1) [ 107.772570][ T5192] FAT-fs (loop3): Filesystem has been set read-only [ 107.802195][ T4294] usb usb3-port1: attempt power cycle [ 107.823180][ T5192] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1) [ 107.835857][ T5192] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1) [ 107.931352][ T5204] tmpfs: Bad value for 'mpol' [ 108.216284][ T4294] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 108.256262][ T4294] usb 3-1: device descriptor read/8, error -71 [ 108.655738][ T4294] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 108.691178][ T5225] 9pnet_fd: Insufficient options for proto=fd [ 108.709366][ T4294] usb 3-1: device descriptor read/8, error -71 [ 108.879260][ T4294] usb usb3-port1: unable to enumerate USB device [ 109.076130][ T4294] libceph: connect (1)[c::]:6789 error -101 [ 109.192625][ T4294] libceph: mon0 (1)[c::]:6789 connect error [ 109.283649][ T5225] ceph: No mds server is up or the cluster is laggy [ 109.746938][ T26] kauditd_printk_skb: 171 callbacks suppressed [ 109.746953][ T26] audit: type=1326 audit(1733587026.593:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5237 comm="syz.3.327" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f125d37fed9 code=0x0 [ 110.283789][ T26] audit: type=1326 audit(1733587027.123:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5251 comm="syz.1.335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 110.324882][ T5252] netlink: 4 bytes leftover after parsing attributes in process `syz.1.335'. [ 110.361971][ T26] audit: type=1326 audit(1733587027.123:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5251 comm="syz.1.335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 110.388873][ T5254] loop4: detected capacity change from 0 to 16 [ 110.393106][ T26] audit: type=1326 audit(1733587027.123:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5251 comm="syz.1.335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 110.429040][ T5254] erofs: (device loop4): mounted with root inode @ nid 36. [ 110.468465][ T26] audit: type=1326 audit(1733587027.123:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5251 comm="syz.1.335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 110.697132][ T26] audit: type=1326 audit(1733587027.123:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5251 comm="syz.1.335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 110.720668][ T26] audit: type=1326 audit(1733587027.123:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5251 comm="syz.1.335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 110.745415][ T26] audit: type=1326 audit(1733587027.123:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5251 comm="syz.1.335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 110.768555][ T26] audit: type=1326 audit(1733587027.123:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5251 comm="syz.1.335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 110.951639][ T5266] syz.4.336: attempt to access beyond end of device [ 110.951639][ T5266] loop4: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 110.965787][ T5266] syz.4.336: attempt to access beyond end of device [ 110.965787][ T5266] loop4: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 110.988237][ T5266] syz.4.336: attempt to access beyond end of device [ 110.988237][ T5266] loop4: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 111.002352][ T5266] syz.4.336: attempt to access beyond end of device [ 111.002352][ T5266] loop4: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 111.480794][ T26] audit: type=1326 audit(1733587027.123:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5251 comm="syz.1.335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 111.722998][ T5276] loop4: detected capacity change from 0 to 1024 [ 112.295292][ T5276] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 112.630556][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 113.541140][ T5300] loop2: detected capacity change from 0 to 512 [ 113.588295][ T5300] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 113.628448][ T5300] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 113.668934][ T5312] loop4: detected capacity change from 0 to 16 [ 113.710638][ T5312] erofs: (device loop4): mounted with root inode @ nid 36. [ 113.809351][ T5300] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 3: comm syz.2.351: path /59/file0: bad entry in directory: rec_len % 4 != 0 - offset=12, inode=2197815810, rec_len=21, size=2048 fake=0 [ 113.929523][ T5300] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 12: comm syz.2.351: path /59/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0 [ 114.071793][ T5317] syz.4.353: attempt to access beyond end of device [ 114.071793][ T5317] loop4: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 114.086043][ T5317] syz.4.353: attempt to access beyond end of device [ 114.086043][ T5317] loop4: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 114.105591][ T5317] syz.4.353: attempt to access beyond end of device [ 114.105591][ T5317] loop4: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 114.119708][ T5317] syz.4.353: attempt to access beyond end of device [ 114.119708][ T5317] loop4: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 115.148590][ T5328] loop0: detected capacity change from 0 to 128 [ 115.222015][ T5328] EXT4-fs warning (device loop0): ext4_init_metadata_csum:4563: metadata_csum and uninit_bg are redundant flags; please run fsck. [ 115.308333][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 115.455345][ T5328] EXT4-fs (loop0): filesystem is read-only [ 115.502320][ T4294] kernel write not supported for file /snd/seq (pid: 4294 comm: kworker/1:4) [ 115.530342][ T5328] EXT4-fs (loop0): bad geometry: first data block is 0 with a 1k block and cluster size [ 115.575286][ T5335] loop4: detected capacity change from 0 to 1764 [ 116.331163][ T26] kauditd_printk_skb: 51 callbacks suppressed [ 116.331182][ T26] audit: type=1326 audit(1733587032.833:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5340 comm="syz.1.363" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0e9517fed9 code=0x0 [ 116.402958][ T4399] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 116.731289][ T5350] loop2: detected capacity change from 0 to 512 [ 116.758717][ T5350] EXT4-fs: inline encryption not supported [ 116.862478][ T5350] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 116.918299][ T5350] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it [ 116.947455][ T26] audit: type=1326 audit(1733587033.793:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5359 comm="syz.4.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 116.977678][ T5350] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.367: Corrupt directory, running e2fsck is recommended [ 117.003175][ T5350] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117 [ 117.010303][ T5325] syz.0.357 uses obsolete (PF_INET,SOCK_PACKET) [ 117.032947][ T5350] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2186: inode #15: comm syz.2.367: corrupted in-inode xattr [ 117.073932][ T26] audit: type=1326 audit(1733587033.843:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5359 comm="syz.4.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 117.085770][ T5362] loop3: detected capacity change from 0 to 16 [ 117.113660][ T5350] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.367: couldn't read orphan inode 15 (err -117) [ 117.118699][ T5363] loop4: detected capacity change from 0 to 512 [ 117.141470][ T5350] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 117.156378][ T5363] EXT4-fs: Ignoring removed nomblk_io_submit option [ 117.165897][ T26] audit: type=1326 audit(1733587033.843:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5359 comm="syz.4.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 117.179722][ T5362] erofs: (device loop3): mounted with root inode @ nid 36. [ 117.196818][ T5363] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 117.206336][ T26] audit: type=1326 audit(1733587033.843:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5359 comm="syz.4.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 117.256899][ T26] audit: type=1326 audit(1733587033.863:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5359 comm="syz.4.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 117.276632][ T5363] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a85ec028, mo2=0002] [ 117.287152][ T26] audit: type=1326 audit(1733587033.863:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5359 comm="syz.4.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 117.287189][ T26] audit: type=1326 audit(1733587033.863:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5359 comm="syz.4.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 117.287216][ T26] audit: type=1326 audit(1733587033.863:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5359 comm="syz.4.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 117.287243][ T26] audit: type=1326 audit(1733587033.863:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5359 comm="syz.4.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 117.552098][ T5363] System zones: 0-2, 18-18, 34-34 [ 117.586584][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 117.775953][ T5370] syz.3.370: attempt to access beyond end of device [ 117.775953][ T5370] loop3: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 117.790235][ T5370] syz.3.370: attempt to access beyond end of device [ 117.790235][ T5370] loop3: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 117.811077][ T5370] syz.3.370: attempt to access beyond end of device [ 117.811077][ T5370] loop3: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 117.826106][ T5370] syz.3.370: attempt to access beyond end of device [ 117.826106][ T5370] loop3: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 118.421175][ T5363] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 118.846542][ T5363] EXT4-fs (loop4): 1 truncate cleaned up [ 118.852241][ T5363] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 118.995576][ T5360] EXT4-fs error (device loop4): ext4_xattr_block_find:1828: inode #15: comm syz.4.369: corrupted xattr block 19 [ 119.083606][ T5360] EXT4-fs (loop4): Remounting filesystem read-only [ 119.136782][ T5363] syz.4.369[5363] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 119.136880][ T5363] syz.4.369[5363] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 119.740296][ T5391] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 119.766810][ T5391] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 119.898714][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 120.277688][ T5403] loop0: detected capacity change from 0 to 16 [ 120.324217][ T5403] erofs: (device loop0): mounted with root inode @ nid 36. [ 120.444360][ T5405] loop6: detected capacity change from 0 to 7 [ 120.495758][ T5405] Dev loop6: unable to read RDB block 7 [ 120.529080][ T5405] loop6: unable to read partition table [ 120.597752][ T5405] loop6: partition table beyond EOD, truncated [ 120.604325][ T5405] loop_reread_partitions: partition scan of loop6 (被xڬdƤݡ [ 120.604325][ T5405] ) failed (rc=-5) [ 120.711089][ T5411] syz.0.383: attempt to access beyond end of device [ 120.711089][ T5411] loop0: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 120.725134][ T5411] syz.0.383: attempt to access beyond end of device [ 120.725134][ T5411] loop0: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 120.744488][ T5411] syz.0.383: attempt to access beyond end of device [ 120.744488][ T5411] loop0: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 120.758480][ T5411] syz.0.383: attempt to access beyond end of device [ 120.758480][ T5411] loop0: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 121.596815][ T5424] loop2: detected capacity change from 0 to 512 [ 121.729694][ T5424] EXT4-fs (loop2): too many log groups per flexible block group [ 121.805789][ T5433] infiniband sy{0: RDMA CMA: cma_listen_on_dev, error -98 [ 122.163248][ T5424] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 122.391906][ T5424] EXT4-fs (loop2): mount failed [ 122.665005][ T5440] program syz.3.396 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 122.890179][ T5449] loop0: detected capacity change from 0 to 16 [ 122.946228][ T5449] erofs: (device loop0): mounted with root inode @ nid 36. [ 122.972699][ T26] kauditd_printk_skb: 44 callbacks suppressed [ 122.972714][ T26] audit: type=1326 audit(1733587039.813:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5450 comm="syz.4.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 123.099097][ T5455] loop3: detected capacity change from 0 to 1024 [ 123.128624][ T5455] ext4: Unknown parameter 'context' [ 123.183582][ T26] audit: type=1326 audit(1733587040.023:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5450 comm="syz.4.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 123.379568][ T5459] syz.0.399: attempt to access beyond end of device [ 123.379568][ T5459] loop0: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 123.393734][ T5459] syz.0.399: attempt to access beyond end of device [ 123.393734][ T5459] loop0: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 123.412817][ T5459] syz.0.399: attempt to access beyond end of device [ 123.412817][ T5459] loop0: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 123.427139][ T5459] syz.0.399: attempt to access beyond end of device [ 123.427139][ T5459] loop0: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 123.986207][ T26] audit: type=1326 audit(1733587040.023:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5450 comm="syz.4.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 124.021797][ T26] audit: type=1326 audit(1733587040.023:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5450 comm="syz.4.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 124.226398][ T26] audit: type=1326 audit(1733587041.073:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5468 comm="syz.0.407" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x0 [ 124.520706][ T5482] loop1: detected capacity change from 0 to 164 [ 125.123721][ T26] audit: type=1326 audit(1733587041.963:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5487 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 125.209066][ T26] audit: type=1326 audit(1733587041.963:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5487 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 125.293752][ T26] audit: type=1326 audit(1733587041.963:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5487 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=160 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 125.460821][ T26] audit: type=1326 audit(1733587041.963:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5487 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 125.584994][ T26] audit: type=1326 audit(1733587041.963:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5487 comm="syz.0.416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 125.629860][ T5494] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 126.852743][ T5514] loop1: detected capacity change from 0 to 256 [ 127.682919][ T5528] sd 0:0:1:0: device reset [ 127.799401][ T5532] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 128.237895][ T5533] IPv6: NLM_F_CREATE should be specified when creating new route [ 128.439100][ T5537] loop4: detected capacity change from 0 to 16 [ 128.455068][ T5537] erofs: (device loop4): mounted with root inode @ nid 36. [ 128.657325][ T26] kauditd_printk_skb: 4 callbacks suppressed [ 128.657339][ T26] audit: type=1326 audit(1733587045.503:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5539 comm="syz.0.438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 128.772952][ T26] audit: type=1326 audit(1733587045.553:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5539 comm="syz.0.438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 128.800475][ T26] audit: type=1326 audit(1733587045.553:778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5539 comm="syz.0.438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 128.850933][ T5545] loop3: detected capacity change from 0 to 256 [ 128.892576][ T26] audit: type=1326 audit(1733587045.553:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5539 comm="syz.0.438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 128.990022][ T5546] syz.4.437: attempt to access beyond end of device [ 128.990022][ T5546] loop4: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 129.004075][ T5546] syz.4.437: attempt to access beyond end of device [ 129.004075][ T5546] loop4: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 129.514496][ T26] audit: type=1326 audit(1733587045.553:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5539 comm="syz.0.438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 129.557541][ T26] audit: type=1326 audit(1733587045.553:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5539 comm="syz.0.438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 129.658024][ T26] audit: type=1326 audit(1733587045.553:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5539 comm="syz.0.438" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 129.725556][ T26] audit: type=1326 audit(1733587046.353:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5549 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 129.818685][ T26] audit: type=1326 audit(1733587046.383:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5549 comm="syz.1.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 129.894046][ T26] audit: type=1326 audit(1733587046.393:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5549 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 130.988729][ T5572] loop3: detected capacity change from 0 to 1024 [ 131.176137][ T5572] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 131.301296][ T5582] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.449'. [ 131.334528][ T5579] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.449'. [ 131.466266][ T5586] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 132.241285][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 132.315545][ T5590] loop0: detected capacity change from 0 to 16 [ 132.341794][ T5590] erofs: (device loop0): mounted with root inode @ nid 36. [ 132.913787][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.972096][ T5596] syz.0.452: attempt to access beyond end of device [ 132.972096][ T5596] loop0: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 132.986223][ T5596] syz.0.452: attempt to access beyond end of device [ 132.986223][ T5596] loop0: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 133.070836][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 134.139306][ T5619] netlink: 12 bytes leftover after parsing attributes in process `syz.3.461'. [ 134.159846][ T5621] loop4: detected capacity change from 0 to 512 [ 134.216296][ T5621] EXT4-fs: inline encryption not supported [ 134.421142][ T5629] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 134.557989][ T5621] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 134.789675][ T5628] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 134.809047][ T5621] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it [ 135.001802][ T5628] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 135.025920][ T5628] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 135.071569][ T5631] loop3: detected capacity change from 0 to 16 [ 135.098259][ T5621] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.463: Corrupt directory, running e2fsck is recommended [ 135.113100][ T5621] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 135.121824][ T5628] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 135.123494][ T5631] erofs: (device loop3): mounted with root inode @ nid 36. [ 135.146234][ T5621] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2186: inode #15: comm syz.4.463: corrupted in-inode xattr [ 135.169075][ T5628] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 135.196866][ T5621] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.463: couldn't read orphan inode 15 (err -117) [ 135.261157][ T5621] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 135.431654][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 135.552324][ T5640] syz.3.466: attempt to access beyond end of device [ 135.552324][ T5640] loop3: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 135.566470][ T5640] syz.3.466: attempt to access beyond end of device [ 135.566470][ T5640] loop3: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 136.519352][ T5662] syz.2.477[5662] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 136.519449][ T5662] syz.2.477[5662] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 136.826286][ T5675] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 137.608957][ T129] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 137.649146][ T5683] netlink: 'syz.1.485': attribute type 1 has an invalid length. [ 137.750020][ T5683] 8021q: adding VLAN 0 to HW filter on device bond1 [ 137.810491][ T129] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 137.832356][ T129] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 137.861525][ T129] usb 5-1: New USB device found, idVendor=1949, idProduct=85a5, bcdDevice=a3.3a [ 137.882082][ T129] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 137.894230][ T5693] netlink: 8 bytes leftover after parsing attributes in process `syz.3.490'. [ 137.904428][ T129] usb 5-1: Product: syz [ 137.912000][ T5693] netlink: 12 bytes leftover after parsing attributes in process `syz.3.490'. [ 137.922452][ T129] usb 5-1: Manufacturer: syz [ 137.930545][ T129] usb 5-1: SerialNumber: syz [ 137.958796][ T129] usb 5-1: config 0 descriptor?? [ 138.000168][ T5696] loop0: detected capacity change from 0 to 128 [ 138.553334][ T5704] syz.0.491: attempt to access beyond end of device [ 138.553334][ T5704] loop0: rw=2049, sector=145, nr_sectors = 104 limit=128 [ 138.815065][ T5718] netlink: 8 bytes leftover after parsing attributes in process `+}[@'. [ 138.848288][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 138.870294][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 138.893284][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 138.898980][ T5722] netlink: 'syz.2.502': attribute type 1 has an invalid length. [ 138.910245][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 138.933819][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 138.982385][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 138.990316][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.002123][ T5722] 8021q: adding VLAN 0 to HW filter on device bond2 [ 139.002869][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.016340][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.023749][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.035729][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.043147][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.055644][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.063050][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.075584][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.081331][ T26] kauditd_printk_skb: 26 callbacks suppressed [ 139.081342][ T26] audit: type=1326 audit(1733587055.923:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5717 comm="syz.1.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 139.083111][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.126024][ T26] audit: type=1326 audit(1733587055.943:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5717 comm="syz.1.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 139.173218][ T26] audit: type=1326 audit(1733587055.943:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5717 comm="syz.1.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 139.201871][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x2 [ 139.209827][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.222467][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.232203][ T26] audit: type=1326 audit(1733587055.963:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5717 comm="syz.1.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 139.260221][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.269644][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.292258][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.306398][ T26] audit: type=1326 audit(1733587055.963:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5717 comm="syz.1.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 139.333825][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.344592][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.357963][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.365442][ T26] audit: type=1326 audit(1733587055.963:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5717 comm="syz.1.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 139.390846][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.407751][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.418180][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.430271][ T26] audit: type=1326 audit(1733587055.973:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5717 comm="syz.1.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 139.455306][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.463635][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.473643][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.484900][ T26] audit: type=1326 audit(1733587055.973:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5717 comm="syz.1.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 139.512190][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.520133][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.532241][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.541105][ T26] audit: type=1326 audit(1733587055.973:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5717 comm="syz.1.499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 139.573933][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.582803][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.594754][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.602553][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.605342][ T5738] loop3: detected capacity change from 0 to 512 [ 139.614913][ T4303] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 139.630650][ T5738] EXT4-fs: inline encryption not supported [ 139.634206][ T4303] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz0] on syz0 [ 139.669475][ T5738] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 139.686218][ T5738] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it [ 139.735917][ T5738] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.506: Corrupt directory, running e2fsck is recommended [ 139.792837][ T5742] loop2: detected capacity change from 0 to 512 [ 139.803124][ T5738] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117 [ 139.830528][ T5742] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 139.842320][ T5738] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2186: inode #15: comm syz.3.506: corrupted in-inode xattr [ 139.855752][ T5742] ext4 filesystem being mounted at /76/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 139.884957][ T5746] device vlan2 entered promiscuous mode [ 139.916066][ T5738] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.506: couldn't read orphan inode 15 (err -117) [ 139.931946][ T5746] device syz_tun entered promiscuous mode [ 139.954307][ T5746] team0: Port device vlan2 added [ 139.959441][ T5738] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 140.151018][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 140.223317][ T7] usb 5-1: USB disconnect, device number 2 [ 140.269972][ T5758] netlink: 4 bytes leftover after parsing attributes in process `syz.0.513'. [ 140.405372][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 140.692567][ T5773] netlink: 'syz.0.518': attribute type 1 has an invalid length. [ 140.768019][ T5773] 8021q: adding VLAN 0 to HW filter on device bond2 [ 140.960643][ T5792] netlink: 64 bytes leftover after parsing attributes in process `syz.3.523'. [ 140.986883][ T5793] loop1: detected capacity change from 0 to 16 [ 141.004263][ T5793] erofs: (device loop1): mounted with root inode @ nid 36. [ 141.350379][ T5799] syz.1.524: attempt to access beyond end of device [ 141.350379][ T5799] loop1: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 141.364439][ T5799] syz.1.524: attempt to access beyond end of device [ 141.364439][ T5799] loop1: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 141.383384][ T5799] syz.1.524: attempt to access beyond end of device [ 141.383384][ T5799] loop1: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 141.397692][ T5799] syz.1.524: attempt to access beyond end of device [ 141.397692][ T5799] loop1: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 141.978256][ T5803] loop3: detected capacity change from 0 to 512 [ 142.027779][ T5803] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 142.083146][ T26] audit: type=1326 audit(1733587058.923:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5808 comm="syz.1.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 142.151435][ T5803] EXT4-fs warning (device loop3): ext4_enable_quotas:7036: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 142.370914][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 142.388843][ T5819] 9pnet: Could not find request transport: f [ 142.466653][ T5822] loop1: detected capacity change from 0 to 1764 [ 144.145141][ T5841] loop3: detected capacity change from 0 to 16 [ 144.221486][ T5841] erofs: (device loop3): mounted with root inode @ nid 36. [ 144.296859][ T5849] loop2: detected capacity change from 0 to 512 [ 144.508752][ T5849] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.541: inode #1: comm syz.2.541: iget: illegal inode # [ 144.547194][ T5849] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.541: error while reading EA inode 1 err=-117 [ 144.597504][ T5849] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.541: inode #1: comm syz.2.541: iget: illegal inode # [ 144.674348][ T5861] syz.3.538: attempt to access beyond end of device [ 144.674348][ T5861] loop3: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 144.688470][ T5861] syz.3.538: attempt to access beyond end of device [ 144.688470][ T5861] loop3: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 144.709093][ T5861] syz.3.538: attempt to access beyond end of device [ 144.709093][ T5861] loop3: rw=0, sector=14552337256, nr_sectors = 8 limit=16 [ 144.723148][ T5861] syz.3.538: attempt to access beyond end of device [ 144.723148][ T5861] loop3: rw=0, sector=14546590680, nr_sectors = 8 limit=16 [ 144.971877][ T5849] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.541: error while reading EA inode 1 err=-117 [ 145.142765][ T5849] EXT4-fs (loop2): 1 orphan inode deleted [ 145.184348][ T5849] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 145.324890][ T26] kauditd_printk_skb: 5 callbacks suppressed [ 145.324905][ T26] audit: type=1326 audit(1733587062.163:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5869 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 145.378696][ T5872] netlink: 4 bytes leftover after parsing attributes in process `syz.3.548'. [ 145.396111][ T26] audit: type=1326 audit(1733587062.193:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5869 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 145.508741][ T26] audit: type=1326 audit(1733587062.193:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5869 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 145.509561][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 145.556553][ T26] audit: type=1326 audit(1733587062.193:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5869 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 145.574076][ T5876] loop0: detected capacity change from 0 to 4096 [ 145.610260][ T26] audit: type=1326 audit(1733587062.193:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5869 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 145.691733][ T5876] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 145.769944][ T26] audit: type=1326 audit(1733587062.193:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5869 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 145.880150][ T26] audit: type=1326 audit(1733587062.193:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5869 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 145.991166][ T26] audit: type=1326 audit(1733587062.193:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5869 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 145.991199][ T26] audit: type=1326 audit(1733587062.193:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5869 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 145.991222][ T26] audit: type=1326 audit(1733587062.193:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5869 comm="syz.3.548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 146.269084][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 146.277881][ T5902] netlink: '+}[@': attribute type 29 has an invalid length. [ 146.930021][ T5916] netlink: 4 bytes leftover after parsing attributes in process `syz.4.562'. [ 148.027238][ T5925] netlink: 4 bytes leftover after parsing attributes in process `syz.3.564'. [ 148.318325][ T5942] loop0: detected capacity change from 0 to 128 [ 148.327797][ T5932] loop1: detected capacity change from 0 to 512 [ 148.354789][ T5932] ext4: Unknown parameter 'seclabel' [ 148.928130][ T5961] loop3: detected capacity change from 0 to 512 [ 148.935070][ T5961] EXT4-fs: Ignoring removed orlov option [ 148.950458][ T5959] netlink: 4 bytes leftover after parsing attributes in process `syz.1.576'. [ 148.984824][ T5961] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 149.045052][ T5961] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 149.132990][ T5961] EXT4-fs (loop3): 1 orphan inode deleted [ 149.136044][ T5971] loop2: detected capacity change from 0 to 128 [ 149.191144][ T5961] EXT4-fs (loop3): 1 truncate cleaned up [ 149.192067][ T5971] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 149.206262][ T5961] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 149.216081][ T5971] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 149.426253][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 149.461675][ T5980] netlink: 4 bytes leftover after parsing attributes in process `syz.1.582'. [ 149.760064][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 149.980260][ T6000] netlink: 4 bytes leftover after parsing attributes in process `syz.0.592'. [ 150.343390][ T6014] netlink: 40 bytes leftover after parsing attributes in process `syz.3.596'. [ 150.583597][ T6025] loop0: detected capacity change from 0 to 1024 [ 150.722596][ T26] kauditd_printk_skb: 275 callbacks suppressed [ 150.722610][ T26] audit: type=1326 audit(1733587067.563:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6029 comm="syz.3.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 150.770939][ T6025] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 150.791332][ T26] audit: type=1326 audit(1733587067.563:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6029 comm="syz.3.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 150.814310][ T26] audit: type=1326 audit(1733587067.563:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6029 comm="syz.3.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 150.836958][ T6025] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 150.837455][ T26] audit: type=1326 audit(1733587067.563:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6029 comm="syz.3.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 150.905605][ T6031] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 393: padding at end of block bitmap is not set [ 150.959511][ T26] audit: type=1326 audit(1733587067.563:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6029 comm="syz.3.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 151.026933][ T6039] loop3: detected capacity change from 0 to 2048 [ 151.033783][ T26] audit: type=1326 audit(1733587067.563:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6029 comm="syz.3.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=75 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 151.056617][ T6037] netlink: 4 bytes leftover after parsing attributes in process `syz.4.607'. [ 151.075866][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 151.089794][ T6041] netlink: 'syz.1.609': attribute type 4 has an invalid length. [ 151.101685][ T26] audit: type=1326 audit(1733587067.563:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6029 comm="syz.3.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 151.127797][ T26] audit: type=1326 audit(1733587067.723:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6032 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 151.186014][ T26] audit: type=1326 audit(1733587067.723:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6032 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 151.244300][ T26] audit: type=1326 audit(1733587067.723:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6032 comm="syz.1.604" exe="/root/syz-executor" sig=0 arch=c000003e syscall=91 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 151.251801][ T6039] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 151.456250][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 151.598001][ T6060] loop4: detected capacity change from 0 to 256 [ 151.643618][ T6060] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 152.550254][ T6099] loop1: detected capacity change from 0 to 1024 [ 152.573249][ T6099] EXT4-fs: Ignoring removed orlov option [ 152.656439][ T6099] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 152.733675][ T6099] EXT4-fs (loop1): shut down requested (0) [ 152.914544][ T4246] EXT4-fs (loop1): unmounting filesystem. [ 153.521452][ T6145] loop0: detected capacity change from 0 to 512 [ 153.536637][ T6145] EXT4-fs: Ignoring removed oldalloc option [ 153.560544][ T6145] EXT4-fs: inline encryption not supported [ 153.577624][ T6145] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 153.685045][ T6145] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.655: bg 0: block 64: padding at end of block bitmap is not set [ 153.709261][ T6145] EXT4-fs error (device loop0): ext4_acquire_dquot:6801: comm syz.0.655: Failed to acquire dquot type 0 [ 153.726677][ T6145] EXT4-fs (loop0): 1 truncate cleaned up [ 153.732422][ T6145] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 153.836311][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 153.868391][ T6162] ieee802154 phy0 wpan0: encryption failed: -22 [ 155.570723][ T6205] loop4: detected capacity change from 0 to 512 [ 155.716750][ T6205] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 155.765735][ T6205] ext4 filesystem being mounted at /116/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 155.903608][ T26] kauditd_printk_skb: 86 callbacks suppressed [ 155.903622][ T26] audit: type=1326 audit(1733587072.743:1205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6217 comm="syz.1.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 156.073764][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 156.100953][ T26] audit: type=1326 audit(1733587072.773:1206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6217 comm="syz.1.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 156.172962][ T26] audit: type=1326 audit(1733587072.773:1207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6217 comm="syz.1.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 156.253675][ T26] audit: type=1326 audit(1733587072.773:1208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6217 comm="syz.1.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 156.299163][ T26] audit: type=1326 audit(1733587072.793:1209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6217 comm="syz.1.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 156.331818][ T26] audit: type=1326 audit(1733587072.793:1210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6217 comm="syz.1.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 156.415324][ T26] audit: type=1326 audit(1733587072.793:1211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6217 comm="syz.1.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 156.507338][ T26] audit: type=1326 audit(1733587072.903:1212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6217 comm="syz.1.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 156.563579][ T26] audit: type=1326 audit(1733587072.903:1213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6217 comm="syz.1.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 156.660351][ T26] audit: type=1326 audit(1733587072.903:1214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6217 comm="syz.1.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 156.703563][ T6236] loop4: detected capacity change from 0 to 1024 [ 156.775793][ T6236] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 156.970130][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 157.946985][ T6286] netlink: 'syz.4.714': attribute type 4 has an invalid length. [ 158.217497][ T6300] loop3: detected capacity change from 0 to 4096 [ 158.260471][ T6300] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 158.383542][ T6306] device bond3 entered promiscuous mode [ 158.407231][ T6313] loop0: detected capacity change from 0 to 256 [ 158.409582][ T6306] 8021q: adding VLAN 0 to HW filter on device bond3 [ 158.549681][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 158.662626][ T6306] bond3 (unregistering): Released all slaves [ 158.946467][ T6334] loop3: detected capacity change from 0 to 512 [ 158.960847][ T6334] EXT4-fs: Ignoring removed nobh option [ 158.974420][ T6334] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 159.010418][ T6334] EXT4-fs (loop3): too many log groups per flexible block group [ 159.019650][ T6334] EXT4-fs (loop3): failed to initialize mballoc (-12) [ 159.027875][ T6334] EXT4-fs (loop3): mount failed [ 159.085186][ T6334] loop3: detected capacity change from 0 to 256 [ 159.095341][ T6345] process 'syz.4.739' launched '/dev/fd/3' with NULL argv: empty string added [ 159.103135][ T6334] FAT-fs (loop3): Unrecognized mount option "nnonumtail=1" or missing value [ 159.134005][ T6347] loop1: detected capacity change from 0 to 512 [ 159.143268][ T6347] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 159.163663][ T6347] EXT4-fs (loop1): 1 truncate cleaned up [ 159.170578][ T6347] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 160.715303][ T6397] loop2: detected capacity change from 0 to 128 [ 160.757003][ T6397] syz.2.756: attempt to access beyond end of device [ 160.757003][ T6397] loop2: rw=2049, sector=145, nr_sectors = 3 limit=128 [ 161.242330][ T4246] EXT4-fs (loop1): unmounting filesystem. [ 161.730254][ T26] kauditd_printk_skb: 87 callbacks suppressed [ 161.730272][ T26] audit: type=1326 audit(1733587078.563:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.4.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 161.782733][ T26] audit: type=1326 audit(1733587078.563:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.4.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=270 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 161.807478][ T26] audit: type=1326 audit(1733587078.563:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6434 comm="syz.4.761" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 162.245744][ T26] audit: type=1326 audit(1733587079.083:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6446 comm="syz.4.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 162.283840][ T26] audit: type=1326 audit(1733587079.083:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6446 comm="syz.4.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 162.322589][ T26] audit: type=1326 audit(1733587079.083:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6446 comm="syz.4.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 162.345960][ T26] audit: type=1326 audit(1733587079.083:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6446 comm="syz.4.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 162.378022][ T26] audit: type=1326 audit(1733587079.083:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6446 comm="syz.4.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 162.435718][ T26] audit: type=1326 audit(1733587079.083:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6446 comm="syz.4.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 162.475550][ T26] audit: type=1326 audit(1733587079.083:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6446 comm="syz.4.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 163.599177][ T6433] tipc: Started in network mode [ 163.604076][ T6433] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 163.614415][ T6433] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 163.625270][ T6433] tipc: Enabled bearer , priority 10 [ 163.963424][ T6477] device syzkaller1 entered promiscuous mode [ 164.206280][ T6479] loop4: detected capacity change from 0 to 512 [ 164.209211][ T6494] loop2: detected capacity change from 0 to 128 [ 164.226949][ T6479] EXT4-fs: Ignoring removed oldalloc option [ 164.272794][ T6479] EXT4-fs error (device loop4): ext4_xattr_inode_iget:400: comm syz.4.782: Parent and EA inode have the same ino 15 [ 164.290853][ T6501] netem: unknown loss type 5 [ 164.295367][ T6479] EXT4-fs (loop4): Remounting filesystem read-only [ 164.315392][ T6501] netem: change failed [ 164.315728][ T6479] EXT4-fs error (device loop4): ext4_xattr_inode_iget:400: comm syz.4.782: Parent and EA inode have the same ino 15 [ 164.333014][ T6479] EXT4-fs (loop4): Remounting filesystem read-only [ 164.340767][ T6479] EXT4-fs (loop4): 1 orphan inode deleted [ 164.347445][ T6479] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 164.403909][ T6503] sch_tbf: burst 4398 is lower than device lo mtu (65550) ! [ 164.418892][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 164.715582][ T7] tipc: Node number set to 1 [ 164.776187][ T6514] 9pnet_fd: Insufficient options for proto=fd [ 164.963223][ T6517] netlink: 28 bytes leftover after parsing attributes in process `syz.4.792'. [ 165.121223][ T4328] libceph: connect (1)[c::]:6789 error -101 [ 165.139844][ T4328] libceph: mon0 (1)[c::]:6789 connect error [ 165.484970][ T6514] ceph: No mds server is up or the cluster is laggy [ 165.781912][ T6537] ip6t_rpfilter: unknown options [ 166.203791][ T6557] 9pnet_fd: Insufficient options for proto=fd [ 166.382793][ T6561] netlink: 28 bytes leftover after parsing attributes in process `syz.2.809'. [ 166.445237][ T4324] libceph: connect (1)[c::]:6789 error -101 [ 166.463977][ T4324] libceph: mon0 (1)[c::]:6789 connect error [ 166.866091][ T6557] ceph: No mds server is up or the cluster is laggy [ 167.048223][ T6568] IPv6: NLM_F_CREATE should be specified when creating new route [ 167.193338][ T6577] loop3: detected capacity change from 0 to 512 [ 167.269376][ T26] kauditd_printk_skb: 72 callbacks suppressed [ 167.269391][ T26] audit: type=1326 audit(1733587084.113:1384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.2.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 167.288309][ T6577] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e01c, mo2=0002] [ 167.331028][ T6577] System zones: 1-12 [ 167.346123][ T6577] EXT4-fs (loop3): orphan cleanup on readonly fs [ 167.358481][ T6577] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.817: bg 0: block 328: padding at end of block bitmap is not set [ 167.368889][ T26] audit: type=1326 audit(1733587084.153:1385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.2.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 167.395702][ T26] audit: type=1326 audit(1733587084.153:1386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.2.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 167.415753][ T6577] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 167.419271][ T26] audit: type=1326 audit(1733587084.153:1387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.2.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 167.451681][ T26] audit: type=1326 audit(1733587084.153:1388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.2.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 167.471198][ T6577] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.817: invalid indirect mapped block 65280 (level 0) [ 167.482437][ T26] audit: type=1326 audit(1733587084.153:1389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.2.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 167.521656][ T6577] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.817: attempt to clear invalid blocks 33619980 len 1 [ 167.537417][ T6577] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.817: invalid indirect mapped block 1819239214 (level 0) [ 167.559083][ T6577] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.817: invalid indirect mapped block 1819239214 (level 1) [ 167.573576][ T6593] random: crng reseeded on system resumption [ 167.577245][ T6577] EXT4-fs (loop3): 1 orphan inode deleted [ 167.582067][ T26] audit: type=1326 audit(1733587084.153:1390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6582 comm="syz.2.819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 167.612748][ T6577] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 167.634514][ T6577] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 167.646431][ T6577] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e01c, mo2=0002] [ 167.660991][ T6577] EXT4-fs (loop3): re-mounted. Quota mode: none. [ 167.662729][ T26] audit: type=1326 audit(1733587084.503:1391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6592 comm="syz.2.823" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x0 [ 167.707689][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 167.795741][ T6602] IPv6: NLM_F_CREATE should be specified when creating new route [ 168.494780][ T26] audit: type=1326 audit(1733587085.333:1392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.0.835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 168.538802][ T26] audit: type=1326 audit(1733587085.333:1393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.0.835" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 168.662410][ T6629] loop0: detected capacity change from 0 to 512 [ 168.701569][ T6626] loop3: detected capacity change from 0 to 1764 [ 168.721375][ T6629] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 168.730582][ T6629] ext4 filesystem being mounted at /179/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 169.112854][ T6645] device syz_tun left promiscuous mode [ 169.179278][ T6648] loop3: detected capacity change from 0 to 164 [ 169.214314][ T6648] Unable to read rock-ridge attributes [ 169.245293][ T6648] Unable to read rock-ridge attributes [ 169.262540][ T6648] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 169.294800][ T6645] team0: Port device vlan2 removed [ 169.451103][ T6656] loop4: detected capacity change from 0 to 1024 [ 169.493455][ T6660] loop3: detected capacity change from 0 to 128 [ 169.530709][ T6660] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 169.542662][ T6656] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 169.563531][ T6660] ext4 filesystem being mounted at /184/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 169.599378][ T6656] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 169.641991][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 169.674012][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 170.012203][ T6678] IPv6: NLM_F_CREATE should be specified when creating new route [ 170.167379][ T6684] netlink: 16 bytes leftover after parsing attributes in process `syz.1.859'. [ 170.248560][ T6688] loop2: detected capacity change from 0 to 2048 [ 170.299240][ T6688] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 170.370856][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 170.885721][ T6706] 9pnet_fd: Insufficient options for proto=fd [ 171.030400][ T4303] libceph: connect (1)[c::]:6789 error -101 [ 171.072077][ T6711] netlink: 28 bytes leftover after parsing attributes in process `syz.1.865'. [ 171.137106][ T4303] libceph: mon0 (1)[c::]:6789 connect error [ 171.498296][ T6706] ceph: No mds server is up or the cluster is laggy [ 171.693367][ T6721] netlink: 8 bytes leftover after parsing attributes in process `syz.1.872'. [ 171.947825][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 172.410764][ T6757] 9pnet_fd: Insufficient options for proto=fd [ 172.591400][ T6761] netlink: 28 bytes leftover after parsing attributes in process `syz.0.883'. [ 173.331591][ T6775] IPv6: NLM_F_CREATE should be specified when creating new route [ 173.883350][ T26] kauditd_printk_skb: 114 callbacks suppressed [ 173.883384][ T26] audit: type=1326 audit(1733587090.723:1508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="syz.0.899" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x0 [ 173.920677][ T6787] loop1: detected capacity change from 0 to 512 [ 174.464070][ T6787] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 174.499089][ T6787] ext4 filesystem being mounted at /206/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 174.629631][ T6803] 9pnet_fd: Insufficient options for proto=fd [ 174.805046][ T6807] netlink: 28 bytes leftover after parsing attributes in process `syz.4.901'. [ 174.998999][ T4294] libceph: connect (1)[c::]:6789 error -101 [ 175.017588][ T4294] libceph: mon0 (1)[c::]:6789 connect error [ 175.211268][ T6803] ceph: No mds server is up or the cluster is laggy [ 175.374831][ T4246] EXT4-fs (loop1): unmounting filesystem. [ 175.714594][ T26] audit: type=1326 audit(1733587092.553:1509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6827 comm="syz.4.912" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x0 [ 175.841889][ T6837] loop3: detected capacity change from 0 to 256 [ 175.853404][ T6837] FAT-fs (loop3): Unrecognized mount option "qy0M=0x0000000000000000" or missing value [ 176.704624][ T6837] device hsr_slave_0 left promiscuous mode [ 176.781202][ T6837] device hsr_slave_1 left promiscuous mode [ 176.935692][ T6857] 9pnet_fd: Insufficient options for proto=fd [ 177.112618][ T6861] netlink: 28 bytes leftover after parsing attributes in process `syz.2.918'. [ 177.576971][ T129] libceph: connect (1)[c::]:6789 error -101 [ 177.585187][ T6857] ceph: No mds server is up or the cluster is laggy [ 177.607003][ T129] libceph: mon0 (1)[c::]:6789 connect error [ 177.891218][ T6878] loop0: detected capacity change from 0 to 128 [ 178.077810][ T26] audit: type=1326 audit(1733587094.923:1510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6883 comm="syz.1.931" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x0 [ 178.101273][ T6878] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 178.118968][ T6878] ext4 filesystem being mounted at /196/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 179.421688][ T6904] loop2: detected capacity change from 0 to 512 [ 179.436742][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 179.467376][ T6904] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 179.477045][ T6904] ext4 filesystem being mounted at /152/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 179.505105][ T6904] Quota error (device loop2): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8 [ 179.518316][ T6904] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 179.528780][ T6904] EXT4-fs error (device loop2): ext4_acquire_dquot:6801: comm syz.2.936: Failed to acquire dquot type 0 [ 179.577457][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 179.875191][ T6923] 9pnet_fd: Insufficient options for proto=fd [ 180.056263][ T6926] netlink: 28 bytes leftover after parsing attributes in process `syz.1.938'. [ 180.481457][ T6923] ceph: No mds server is up or the cluster is laggy [ 180.503128][ T129] libceph: connect (1)[c::]:6789 error -101 [ 180.530877][ T129] libceph: mon0 (1)[c::]:6789 connect error [ 180.915913][ T4260] Bluetooth: hci3: command 0x0406 tx timeout [ 180.923333][ T4263] Bluetooth: hci1: command 0x0406 tx timeout [ 180.923358][ T4256] Bluetooth: hci4: command 0x0406 tx timeout [ 180.929377][ T4260] Bluetooth: hci2: command 0x0406 tx timeout [ 180.929407][ T4260] Bluetooth: hci0: command 0x0406 tx timeout [ 181.888053][ T6955] usb usb4: usbfs: process 6955 (syz.4.953) did not claim interface 0 before use [ 181.941749][ T26] audit: type=1326 audit(1733587098.783:1511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.4.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 182.022190][ T26] audit: type=1326 audit(1733587098.813:1512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.4.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 182.077598][ T26] audit: type=1326 audit(1733587098.813:1513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.4.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 182.140351][ T26] audit: type=1326 audit(1733587098.813:1514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.4.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=207 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 182.194183][ T26] audit: type=1326 audit(1733587098.813:1515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.4.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 182.226070][ T26] audit: type=1326 audit(1733587098.813:1516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.4.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 182.253326][ T26] audit: type=1326 audit(1733587098.813:1517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.4.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 182.276928][ T26] audit: type=1326 audit(1733587098.813:1518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6954 comm="syz.4.953" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 182.659440][ T6974] 9pnet_fd: Insufficient options for proto=fd [ 182.833976][ T6977] netlink: 28 bytes leftover after parsing attributes in process `syz.3.958'. [ 182.997019][ T4324] libceph: connect (1)[c::]:6789 error -101 [ 183.067396][ T4324] libceph: mon0 (1)[c::]:6789 connect error [ 183.222854][ T6974] ceph: No mds server is up or the cluster is laggy [ 185.393404][ T6983] netlink: 20 bytes leftover after parsing attributes in process `syz.4.961'. [ 185.462959][ T6995] device veth0_to_team entered promiscuous mode [ 185.638444][ T26] kauditd_printk_skb: 18 callbacks suppressed [ 185.638459][ T26] audit: type=1326 audit(1733587102.483:1537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.1.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 185.712037][ T26] audit: type=1326 audit(1733587102.513:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.1.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 185.780516][ T26] audit: type=1326 audit(1733587102.513:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.1.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 185.886940][ T26] audit: type=1326 audit(1733587102.513:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.1.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 185.918283][ T26] audit: type=1326 audit(1733587102.513:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.1.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 185.941127][ T26] audit: type=1326 audit(1733587102.543:1542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.1.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 185.964312][ T26] audit: type=1326 audit(1733587102.543:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.1.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 185.987416][ T26] audit: type=1326 audit(1733587102.543:1544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.1.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 186.010019][ T26] audit: type=1326 audit(1733587102.543:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.1.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 186.032777][ T26] audit: type=1326 audit(1733587102.543:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.1.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 186.073193][ T7013] 9pnet_fd: Insufficient options for proto=fd [ 186.130289][ T4328] libceph: connect (1)[c::]:6789 error -101 [ 186.170463][ T4328] libceph: mon0 (1)[c::]:6789 connect error [ 186.253571][ T7017] netlink: 28 bytes leftover after parsing attributes in process `syz.0.972'. [ 186.443510][ T4328] libceph: connect (1)[c::]:6789 error -101 [ 186.509453][ T4328] libceph: mon0 (1)[c::]:6789 connect error [ 186.843670][ T7013] ceph: No mds server is up or the cluster is laggy [ 187.832298][ T7036] sg_write: data in/out 231/14 bytes for SCSI command 0x0-- guessing data in; [ 187.832298][ T7036] program syz.0.980 not setting count and/or reply_len properly [ 187.860740][ T7036] netlink: 56 bytes leftover after parsing attributes in process `syz.0.980'. [ 187.880010][ T7036] netlink: 8 bytes leftover after parsing attributes in process `syz.0.980'. [ 188.215855][ T7052] loop0: detected capacity change from 0 to 4096 [ 188.304277][ T7052] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 189.529894][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 189.552138][ T7086] loop1: detected capacity change from 0 to 256 [ 189.560812][ T7086] FAT-fs (loop1): Directory bread(block 1285) failed [ 189.592211][ T7089] loop4: detected capacity change from 0 to 256 [ 189.607928][ T7086] FAT-fs (loop1): FAT read failed (blocknr 1281) [ 189.638336][ T7089] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 189.667475][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.681155][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.694389][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.703321][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.724735][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.746643][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.755294][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.765949][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.779566][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.791277][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.804603][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.842449][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.875649][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.884276][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.941454][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.963032][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 189.992273][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 190.140161][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 190.171547][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 190.181798][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 190.375638][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 190.617397][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 190.999552][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 191.030378][ T7089] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 191.050038][ T26] kauditd_printk_skb: 83 callbacks suppressed [ 191.050056][ T26] audit: type=1326 audit(1733587107.893:1630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 191.115159][ T26] audit: type=1326 audit(1733587107.893:1631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 191.138686][ T7089] syz.4.999 (7089) used greatest stack depth: 19072 bytes left [ 191.309862][ T7132] loop3: detected capacity change from 0 to 512 [ 191.359043][ T7132] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 191.384158][ T26] audit: type=1326 audit(1733587107.893:1632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 191.479493][ T7126] 9pnet_fd: Insufficient options for proto=fd [ 191.488681][ T26] audit: type=1326 audit(1733587107.893:1633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 191.512683][ T26] audit: type=1326 audit(1733587107.903:1634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 191.537124][ T129] libceph: connect (1)[c::]:6789 error -101 [ 191.544224][ T129] libceph: mon0 (1)[c::]:6789 connect error [ 191.647839][ T7142] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1012'. [ 191.786501][ T26] audit: type=1800 audit(1733587107.913:1635): pid=7089 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.999" name="file1" dev="loop4" ino=1048608 res=0 errno=0 [ 191.870262][ T129] libceph: connect (1)[c::]:6789 error -101 [ 192.017767][ T7132] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 192.059480][ T129] libceph: mon0 (1)[c::]:6789 connect error [ 192.215751][ T7132] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 192.256462][ T7126] ceph: No mds server is up or the cluster is laggy [ 192.267387][ T26] audit: type=1326 audit(1733587107.923:1636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 192.472768][ T26] audit: type=1326 audit(1733587107.923:1637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 192.495245][ T26] audit: type=1326 audit(1733587107.923:1638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 192.517947][ T26] audit: type=1326 audit(1733587107.923:1639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7121 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 192.587301][ T7153] loop2: detected capacity change from 0 to 512 [ 192.617237][ T7153] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 192.690030][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 192.860189][ T7153] EXT4-fs warning (device loop2): ext4_enable_quotas:7036: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 193.797445][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 194.009974][ T7187] IPv4: Oversized IP packet from 127.202.26.0 [ 194.206167][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.212619][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.267911][ T7223] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 195.279129][ T7223] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 195.288261][ T7223] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 195.297119][ T7223] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 195.306740][ T7223] device vxlan0 entered promiscuous mode [ 197.473284][ T26] kauditd_printk_skb: 176 callbacks suppressed [ 197.473299][ T26] audit: type=1326 audit(1733587114.313:1815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.2.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 197.507090][ T26] audit: type=1326 audit(1733587114.313:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.2.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 197.536410][ T26] audit: type=1326 audit(1733587114.363:1817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.2.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 197.564504][ T26] audit: type=1326 audit(1733587114.363:1818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.2.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 197.587614][ T26] audit: type=1326 audit(1733587114.363:1819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.2.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 197.623444][ T26] audit: type=1326 audit(1733587114.373:1820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.2.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 197.647903][ T26] audit: type=1326 audit(1733587114.373:1821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.2.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 197.680074][ T26] audit: type=1326 audit(1733587114.373:1822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.2.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 197.707616][ T26] audit: type=1326 audit(1733587114.383:1823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.2.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 197.737213][ T26] audit: type=1326 audit(1733587114.383:1824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7260 comm="syz.2.1052" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 199.911245][ T7286] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1059'. [ 200.643593][ T7303] lo speed is unknown, defaulting to 1000 [ 200.650099][ T7303] lo speed is unknown, defaulting to 1000 [ 200.656512][ T7303] lo speed is unknown, defaulting to 1000 [ 200.669453][ T7303] infiniband syzD: RDMA CMA: cma_listen_on_dev, error -98 [ 200.686251][ T7303] lo speed is unknown, defaulting to 1000 [ 200.693570][ T7303] lo speed is unknown, defaulting to 1000 [ 200.724114][ T7303] lo speed is unknown, defaulting to 1000 [ 200.731045][ T7303] lo speed is unknown, defaulting to 1000 [ 200.749444][ T7303] lo speed is unknown, defaulting to 1000 [ 201.759795][ T7319] loop2: detected capacity change from 0 to 128 [ 201.843152][ T7319] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 201.859935][ T7319] ext4 filesystem being mounted at /178/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 202.104151][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 202.569206][ T7356] loop6: detected capacity change from 0 to 7 [ 202.583308][ T7356] Dev loop6: unable to read RDB block 7 [ 202.589969][ T7356] loop6: unable to read partition table [ 202.600459][ T7356] loop6: partition table beyond EOD, truncated [ 202.607113][ T7356] loop_reread_partitions: partition scan of loop6 (被xڬdƤݡ [ 202.607113][ T7356] ) failed (rc=-5) [ 202.708424][ T7358] loop3: detected capacity change from 0 to 128 [ 202.848544][ T26] kauditd_printk_skb: 96 callbacks suppressed [ 202.848558][ T26] audit: type=1326 audit(1733587119.693:1921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7355 comm="syz.3.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 202.911935][ T26] audit: type=1326 audit(1733587119.693:1922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7355 comm="syz.3.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 202.939383][ T26] audit: type=1326 audit(1733587119.713:1923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7355 comm="syz.3.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 202.966763][ T26] audit: type=1326 audit(1733587119.713:1924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7355 comm="syz.3.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 203.031645][ T26] audit: type=1326 audit(1733587119.713:1925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7355 comm="syz.3.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 203.058524][ T26] audit: type=1326 audit(1733587119.713:1926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7355 comm="syz.3.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 203.086782][ T26] audit: type=1326 audit(1733587119.713:1927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7355 comm="syz.3.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 203.127902][ T26] audit: type=1326 audit(1733587119.713:1928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7355 comm="syz.3.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 203.157124][ T26] audit: type=1326 audit(1733587119.713:1929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7355 comm="syz.3.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 203.180619][ T26] audit: type=1326 audit(1733587119.713:1930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7355 comm="syz.3.1083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 204.478699][ T7382] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled [ 204.864428][ T7397] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1100'. [ 205.746015][ T7417] loop2: detected capacity change from 0 to 164 [ 205.991019][ T7427] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1112'. [ 207.082937][ T7431] loop1: detected capacity change from 0 to 512 [ 207.138324][ T7431] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 207.151810][ T7431] ext4 filesystem being mounted at /263/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 207.222792][ T7431] Process accounting resumed [ 207.259979][ T7431] EXT4-fs (loop1): re-mounted. Quota mode: writeback. [ 207.323321][ T4246] EXT4-fs (loop1): unmounting filesystem. [ 207.478462][ T7448] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1122'. [ 207.833650][ T7460] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1126'. [ 207.859115][ T26] kauditd_printk_skb: 605 callbacks suppressed [ 207.859129][ T26] audit: type=1326 audit(1733587124.703:2536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.2.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6233976ea7 code=0x7ffc0000 [ 207.911494][ T26] audit: type=1326 audit(1733587124.703:2537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.2.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f623391c0e9 code=0x7ffc0000 [ 207.969126][ T26] audit: type=1326 audit(1733587124.703:2538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.2.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 208.018873][ T26] audit: type=1326 audit(1733587124.733:2539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.2.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6233976ea7 code=0x7ffc0000 [ 208.071302][ T26] audit: type=1326 audit(1733587124.733:2540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.2.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f623391c0e9 code=0x7ffc0000 [ 208.192231][ T26] audit: type=1326 audit(1733587124.733:2541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.2.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 208.289632][ T26] audit: type=1326 audit(1733587124.743:2542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.2.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6233976ea7 code=0x7ffc0000 [ 208.312367][ T26] audit: type=1326 audit(1733587124.743:2543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.2.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f623391c0e9 code=0x7ffc0000 [ 208.334971][ T26] audit: type=1326 audit(1733587124.743:2544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.2.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f623397fed9 code=0x7ffc0000 [ 208.359306][ T26] audit: type=1326 audit(1733587124.753:2545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7432 comm="syz.2.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f6233976ea7 code=0x7ffc0000 [ 209.143043][ T7490] loop2: detected capacity change from 0 to 2048 [ 209.227543][ T7490] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 211.191778][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 211.343788][ T7510] loop0: detected capacity change from 0 to 1024 [ 211.356302][ T7510] EXT4-fs: Ignoring removed orlov option [ 211.370771][ T7510] EXT4-fs: Ignoring removed nomblk_io_submit option [ 211.525081][ T7521] loop3: detected capacity change from 0 to 512 [ 211.532284][ T7510] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 211.549293][ T7521] EXT4-fs (loop3): orphan cleanup on readonly fs [ 211.566026][ T7521] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1149: bg 0: block 248: padding at end of block bitmap is not set [ 211.596875][ T7521] EXT4-fs error (device loop3): ext4_acquire_dquot:6801: comm syz.3.1149: Failed to acquire dquot type 1 [ 211.641268][ T7521] EXT4-fs (loop3): 1 truncate cleaned up [ 211.652138][ T7510] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present! [ 211.675857][ T7521] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 211.745061][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 212.250834][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 212.294680][ T7535] x_tables: ip6_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT [ 213.638075][ T7570] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1166'. [ 214.744875][ T7553] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1162'. [ 214.758488][ T7553] device batadv1 entered promiscuous mode [ 214.843302][ T26] kauditd_printk_skb: 102 callbacks suppressed [ 214.843316][ T26] audit: type=1326 audit(1733587131.683:2646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7587 comm="syz.3.1175" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x0 [ 215.144066][ T7597] Cannot find del_set index 0 as target [ 216.363204][ T7624] loop0: detected capacity change from 0 to 128 [ 216.495071][ T7624] syz.0.1188: attempt to access beyond end of device [ 216.495071][ T7624] loop0: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 216.623815][ T7624] syz.0.1188: attempt to access beyond end of device [ 216.623815][ T7624] loop0: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 218.722723][ T26] audit: type=1326 audit(1733587135.573:2647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.4.1194" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x0 [ 218.813303][ T26] audit: type=1326 audit(1733587135.653:2648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz.1.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 218.856593][ T26] audit: type=1326 audit(1733587135.673:2649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz.1.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 218.884976][ T26] audit: type=1326 audit(1733587135.683:2650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz.1.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 218.913216][ T26] audit: type=1326 audit(1733587135.683:2651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz.1.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 218.940723][ T26] audit: type=1326 audit(1733587135.683:2652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz.1.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 218.964714][ T26] audit: type=1326 audit(1733587135.683:2653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz.1.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 218.989182][ T26] audit: type=1326 audit(1733587135.683:2654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz.1.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 219.016566][ T26] audit: type=1326 audit(1733587135.683:2655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7658 comm="syz.1.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 219.655823][ T7672] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1203'. [ 220.862753][ T26] kauditd_printk_skb: 6 callbacks suppressed [ 220.862768][ T26] audit: type=1326 audit(1733587137.713:2662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7681 comm="syz.1.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 220.896723][ T26] audit: type=1326 audit(1733587137.723:2663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7681 comm="syz.1.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 220.915704][ T7683] loop1: detected capacity change from 0 to 1764 [ 220.934249][ T26] audit: type=1326 audit(1733587137.723:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7681 comm="syz.1.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 220.957399][ T26] audit: type=1326 audit(1733587137.723:2665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7681 comm="syz.1.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 220.980376][ T26] audit: type=1326 audit(1733587137.723:2666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7681 comm="syz.1.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 221.004225][ T26] audit: type=1326 audit(1733587137.723:2667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7681 comm="syz.1.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 221.027850][ T26] audit: type=1326 audit(1733587137.723:2668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7681 comm="syz.1.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 221.050601][ T26] audit: type=1326 audit(1733587137.723:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7681 comm="syz.1.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 221.095310][ T26] audit: type=1326 audit(1733587137.723:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7681 comm="syz.1.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 221.121894][ T26] audit: type=1326 audit(1733587137.723:2671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7681 comm="syz.1.1205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e9517fed9 code=0x7ffc0000 [ 221.688557][ T7693] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1209'. [ 221.834859][ T7701] loop2: detected capacity change from 0 to 1024 [ 221.866283][ T7689] loop3: detected capacity change from 0 to 512 [ 221.884933][ T7689] EXT4-fs: Ignoring removed oldalloc option [ 221.905387][ T7689] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm syz.3.1208: Parent and EA inode have the same ino 15 [ 221.922834][ T7701] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=f002c01c, mo2=0002] [ 221.937994][ T7689] EXT4-fs (loop3): Remounting filesystem read-only [ 221.944870][ T7689] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm syz.3.1208: Parent and EA inode have the same ino 15 [ 221.958334][ T7689] EXT4-fs (loop3): Remounting filesystem read-only [ 221.965261][ T7689] EXT4-fs (loop3): 1 orphan inode deleted [ 221.971667][ T7701] System zones: 0-1, 3-36 [ 221.975569][ T7689] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 221.986650][ T7701] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 222.014734][ T7701] EXT4-fs (loop2): re-mounted. Quota mode: writeback. [ 222.041072][ T7709] sch_tbf: burst 19869 is lower than device lo mtu (65550) ! [ 222.078626][ T7701] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=f002c01c, mo2=0002] [ 222.135044][ T7701] EXT4-fs (loop2): re-mounted. Quota mode: writeback. [ 222.199524][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 222.279850][ T4255] EXT4-fs (loop2): unmounting filesystem. [ 224.695765][ T7754] syz.4.1232[7754] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 224.695864][ T7754] syz.4.1232[7754] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 224.726235][ T7758] loop3: detected capacity change from 0 to 2048 [ 224.791551][ T7758] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 224.921609][ T7776] IPv6: Can't replace route, no match found [ 226.154617][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 226.700328][ T26] kauditd_printk_skb: 128 callbacks suppressed [ 226.700343][ T26] audit: type=1326 audit(1733587143.543:2800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7818 comm="syz.2.1255" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x0 [ 228.740292][ T7856] sch_tbf: burst 19869 is lower than device lo mtu (65550) ! [ 229.751190][ T26] audit: type=1326 audit(1733587146.593:2801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.0.1270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 229.832437][ T26] audit: type=1326 audit(1733587146.623:2802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.0.1270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 229.898999][ T26] audit: type=1326 audit(1733587146.623:2803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.0.1270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 229.905790][ T7873] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1273'. [ 229.961789][ T26] audit: type=1326 audit(1733587146.623:2804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.0.1270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 229.998213][ T7877] bridge0: port 1(vlan2) entered blocking state [ 230.005951][ T7877] bridge0: port 1(vlan2) entered disabled state [ 230.012417][ T26] audit: type=1326 audit(1733587146.623:2805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.0.1270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 230.041254][ T26] audit: type=1326 audit(1733587146.653:2806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7865 comm="syz.0.1270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 230.063850][ T26] audit: type=1326 audit(1733587146.653:2807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 230.086663][ T26] audit: type=1326 audit(1733587146.653:2808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 230.111602][ T26] audit: type=1326 audit(1733587146.653:2809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.4.1272" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f693397fed9 code=0x7ffc0000 [ 230.606995][ T7900] loop3: detected capacity change from 0 to 128 [ 230.653464][ T7900] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 230.675756][ T7900] ext4 filesystem being mounted at /263/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 230.944146][ T4247] EXT4-fs (loop3): unmounting filesystem. [ 232.277160][ T7905] device vlan2 entered promiscuous mode [ 232.282725][ T7905] device ip6gre0 entered promiscuous mode [ 232.290404][ T7905] device ip6gre0 left promiscuous mode [ 233.447179][ T26] kauditd_printk_skb: 28 callbacks suppressed [ 233.447194][ T26] audit: type=1326 audit(1733587150.293:2838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7935 comm="syz.2.1297" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f623397fed9 code=0x0 [ 233.469098][ T7932] usb usb2: usbfs: interface 0 claimed by hub while 'syz.0.1295' sets config #-1 [ 235.417610][ T7963] loop4: detected capacity change from 0 to 128 [ 235.511212][ T7963] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 235.521573][ T26] audit: type=1326 audit(1733587152.363:2839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7968 comm="syz.3.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 235.531899][ T7963] ext4 filesystem being mounted at /235/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 235.566318][ T26] audit: type=1326 audit(1733587152.393:2840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7968 comm="syz.3.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 235.596217][ T26] audit: type=1326 audit(1733587152.393:2841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7968 comm="syz.3.1309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f125d37fed9 code=0x7ffc0000 [ 235.674332][ T7976] loop2: detected capacity change from 0 to 164 [ 235.697772][ T26] audit: type=1326 audit(1733587152.543:2842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7974 comm="syz.0.1312" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x0 [ 235.723703][ T7976] Unable to read rock-ridge attributes [ 235.773043][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 236.547044][ T7999] usb usb4: usbfs: process 7999 (syz.0.1321) did not claim interface 0 before use [ 236.643815][ T26] audit: type=1326 audit(1733587153.483:2843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7998 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 236.676036][ T26] audit: type=1326 audit(1733587153.513:2844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7998 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 236.718598][ T26] audit: type=1326 audit(1733587153.513:2845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7998 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 236.746603][ T26] audit: type=1326 audit(1733587153.513:2846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7998 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 236.781540][ T26] audit: type=1326 audit(1733587153.513:2847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7998 comm="syz.0.1321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a497fed9 code=0x7ffc0000 [ 237.898138][ T7992] device syzkaller0 entered promiscuous mode [ 238.074659][ T8028] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1334'. [ 239.643987][ T8018] netlink: 'syz.4.1330': attribute type 1 has an invalid length. [ 239.764500][ T8044] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled [ 239.783690][ T8046] xt_TPROXY: Can be used only with -p tcp or -p udp [ 239.914041][ T8054] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1336'. [ 239.982176][ T8058] loop0: detected capacity change from 0 to 512 [ 240.023126][ T8058] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 240.056732][ T8058] ext4 filesystem being mounted at /268/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 240.243901][ T8058] [ 240.246272][ T8058] ====================================================== [ 240.253304][ T8058] WARNING: possible circular locking dependency detected [ 240.260331][ T8058] 6.1.119-syzkaller #0 Not tainted [ 240.265440][ T8058] ------------------------------------------------------ [ 240.272455][ T8058] syz.0.1340/8058 is trying to acquire lock: [ 240.278436][ T8058] ffff88805de8b4b0 (&ei->i_data_sem/1){+.+.}-{3:3}, at: ext4_ioctl+0x460f/0x5f60 [ 240.287624][ T8058] [ 240.287624][ T8058] but task is already holding lock: [ 240.294988][ T8058] ffff888056601698 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_double_down_write_data_sem+0x28/0x40 [ 240.305639][ T8058] [ 240.305639][ T8058] which lock already depends on the new lock. [ 240.305639][ T8058] [ 240.316041][ T8058] [ 240.316041][ T8058] the existing dependency chain (in reverse order) is: [ 240.325052][ T8058] [ 240.325052][ T8058] -> #3 (&ei->i_data_sem/2){++++}-{3:3}: [ 240.332889][ T8058] lock_acquire+0x1f8/0x5a0 [ 240.337903][ T8058] down_write+0x36/0x60 [ 240.342565][ T8058] ext4_map_blocks+0x955/0x1cb0 [ 240.347924][ T8058] ext4_getblk+0x1eb/0x7c0 [ 240.352854][ T8058] ext4_bread+0x2a/0x170 [ 240.357610][ T8058] ext4_quota_write+0x21e/0x570 [ 240.362984][ T8058] find_free_dqentry+0x6b2/0xc80 [ 240.368439][ T8058] do_insert_tree+0x88b/0x1440 [ 240.373715][ T8058] do_insert_tree+0xb51/0x1440 [ 240.378995][ T8058] do_insert_tree+0xb51/0x1440 [ 240.384286][ T8058] do_insert_tree+0xb51/0x1440 [ 240.385479][ T26] kauditd_printk_skb: 79 callbacks suppressed [ 240.385496][ T26] audit: type=1326 audit(1733587157.203:2927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8055 comm="syz.1.1341" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f0e9517fed9 code=0x0 [ 240.389549][ T8058] qtree_write_dquot+0x483/0x5a0 [ 240.389575][ T8058] v2_write_dquot+0x11c/0x190 [ 240.389598][ T8058] dquot_acquire+0x34d/0x680 [ 240.433056][ T8058] ext4_acquire_dquot+0x2eb/0x4a0 [ 240.438596][ T8058] dqget+0x762/0xe90 [ 240.443025][ T8058] __dquot_initialize+0x45e/0xea0 [ 240.448563][ T8058] ext4_create+0xb1/0x550 [ 240.453403][ T8058] path_openat+0x12f1/0x2e60 [ 240.458530][ T8058] do_filp_open+0x230/0x480 [ 240.463556][ T8058] do_sys_openat2+0x13b/0x4f0 [ 240.468747][ T8058] __x64_sys_openat+0x243/0x290 [ 240.474109][ T8058] do_syscall_64+0x3b/0xb0 [ 240.479033][ T8058] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 240.485448][ T8058] [ 240.485448][ T8058] -> #2 (&s->s_dquot.dqio_sem){++++}-{3:3}: [ 240.493531][ T8058] lock_acquire+0x1f8/0x5a0 [ 240.498548][ T8058] down_read+0xad/0xa30 [ 240.503224][ T8058] v2_read_dquot+0x4a/0x100 [ 240.508235][ T8058] dquot_acquire+0x188/0x680 [ 240.513331][ T8058] ext4_acquire_dquot+0x2eb/0x4a0 [ 240.518861][ T8058] dqget+0x762/0xe90 [ 240.523266][ T8058] __dquot_initialize+0x45e/0xea0 [ 240.528795][ T8058] ext4_create+0xb1/0x550 [ 240.533637][ T8058] path_openat+0x12f1/0x2e60 [ 240.538752][ T8058] do_filp_open+0x230/0x480 [ 240.543790][ T8058] do_sys_openat2+0x13b/0x4f0 [ 240.548981][ T8058] __x64_sys_openat+0x243/0x290 [ 240.554363][ T8058] do_syscall_64+0x3b/0xb0 [ 240.559285][ T8058] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 240.565683][ T8058] [ 240.565683][ T8058] -> #1 (&dquot->dq_lock){+.+.}-{3:3}: [ 240.573328][ T8058] lock_acquire+0x1f8/0x5a0 [ 240.578349][ T8058] __mutex_lock+0x132/0xd80 [ 240.583359][ T8058] dquot_commit+0x57/0x510 [ 240.588285][ T8058] ext4_write_dquot+0x1fd/0x360 [ 240.593658][ T8058] mark_all_dquot_dirty+0xf7/0x400 [ 240.599285][ T8058] __dquot_free_space+0x956/0xe70 [ 240.604828][ T8058] ext4_free_blocks+0x1fb4/0x3020 [ 240.610360][ T8058] ext4_swap_extents+0x18c0/0x2280 [ 240.615987][ T8058] move_extent_per_page+0x24cb/0x4c30 [ 240.621867][ T8058] ext4_move_extents+0x9ab/0xe10 [ 240.627313][ T8058] ext4_ioctl+0x3a8d/0x5f60 [ 240.632329][ T8058] __se_sys_ioctl+0xf1/0x160 [ 240.637424][ T8058] do_syscall_64+0x3b/0xb0 [ 240.642351][ T8058] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 240.648756][ T8058] [ 240.648756][ T8058] -> #0 (&ei->i_data_sem/1){+.+.}-{3:3}: [ 240.656568][ T8058] validate_chain+0x1661/0x5950 [ 240.661928][ T8058] __lock_acquire+0x125b/0x1f80 [ 240.667291][ T8058] lock_acquire+0x1f8/0x5a0 [ 240.672302][ T8058] down_write_nested+0x39/0x60 [ 240.677576][ T8058] ext4_ioctl+0x460f/0x5f60 [ 240.682589][ T8058] __se_sys_ioctl+0xf1/0x160 [ 240.687681][ T8058] do_syscall_64+0x3b/0xb0 [ 240.692607][ T8058] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 240.699011][ T8058] [ 240.699011][ T8058] other info that might help us debug this: [ 240.699011][ T8058] [ 240.709223][ T8058] Chain exists of: [ 240.709223][ T8058] &ei->i_data_sem/1 --> &s->s_dquot.dqio_sem --> &ei->i_data_sem/2 [ 240.709223][ T8058] [ 240.723038][ T8058] Possible unsafe locking scenario: [ 240.723038][ T8058] [ 240.730486][ T8058] CPU0 CPU1 [ 240.735842][ T8058] ---- ---- [ 240.741202][ T8058] lock(&ei->i_data_sem/2); [ 240.745803][ T8058] lock(&s->s_dquot.dqio_sem); [ 240.753172][ T8058] lock(&ei->i_data_sem/2); [ 240.760281][ T8058] lock(&ei->i_data_sem/1); [ 240.764878][ T8058] [ 240.764878][ T8058] *** DEADLOCK *** [ 240.764878][ T8058] [ 240.773021][ T8058] 5 locks held by syz.0.1340/8058: [ 240.778116][ T8058] #0: ffff88807e202460 (sb_writers#4){++++}-{0:0}, at: mnt_want_write_file+0x5a/0x1f0 [ 240.787793][ T8058] #1: ffff888056601810 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: lock_two_nondirectories+0xde/0x130 [ 240.799036][ T8058] #2: ffff88805de8b628 (&sb->s_type->i_mutex_key#8/4){+.+.}-{3:3}, at: ext4_ioctl+0x25ff/0x5f60 [ 240.809572][ T8058] #3: ffff88805de8b7c8 (mapping.invalidate_lock){++++}-{3:3}, at: ext4_ioctl+0x42d7/0x5f60 [ 240.819661][ T8058] #4: ffff888056601698 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_double_down_write_data_sem+0x28/0x40 [ 240.830705][ T8058] [ 240.830705][ T8058] stack backtrace: [ 240.836589][ T8058] CPU: 1 PID: 8058 Comm: syz.0.1340 Not tainted 6.1.119-syzkaller #0 [ 240.844665][ T8058] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 240.854822][ T8058] Call Trace: [ 240.858123][ T8058] [ 240.861069][ T8058] dump_stack_lvl+0x1e3/0x2cb [ 240.865756][ T8058] ? nf_tcp_handle_invalid+0x642/0x642 [ 240.871220][ T8058] ? print_circular_bug+0x12b/0x1a0 [ 240.876415][ T8058] check_noncircular+0x2fa/0x3b0 [ 240.881350][ T8058] ? add_chain_block+0x850/0x850 [ 240.886289][ T8058] ? lockdep_lock+0x11f/0x2a0 [ 240.890962][ T8058] ? add_lock_to_list+0x1de/0x2e0 [ 240.895975][ T8058] ? _find_first_zero_bit+0xd0/0x100 [ 240.901251][ T8058] validate_chain+0x1661/0x5950 [ 240.906099][ T8058] ? reacquire_held_locks+0x660/0x660 [ 240.911461][ T8058] ? find_get_entries+0x675/0x710 [ 240.916473][ T8058] ? look_up_lock_class+0x77/0x140 [ 240.921587][ T8058] ? register_lock_class+0x100/0x990 [ 240.926872][ T8058] ? folio_contains+0x580/0x580 [ 240.931710][ T8058] ? is_dynamic_key+0x260/0x260 [ 240.936559][ T8058] ? mark_lock+0x9a/0x340 [ 240.940887][ T8058] __lock_acquire+0x125b/0x1f80 [ 240.945742][ T8058] lock_acquire+0x1f8/0x5a0 [ 240.950243][ T8058] ? ext4_ioctl+0x460f/0x5f60 [ 240.954919][ T8058] ? read_lock_is_recursive+0x10/0x10 [ 240.960288][ T8058] ? __might_sleep+0xb0/0xb0 [ 240.964865][ T8058] ? rwsem_write_trylock+0x166/0x210 [ 240.970170][ T8058] ? clear_nonspinnable+0x60/0x60 [ 240.975188][ T8058] down_write_nested+0x39/0x60 [ 240.979938][ T8058] ? ext4_ioctl+0x460f/0x5f60 [ 240.984607][ T8058] ext4_ioctl+0x460f/0x5f60 [ 240.989104][ T8058] ? kasan_set_track+0x4b/0x70 [ 240.993871][ T8058] ? ext4_fileattr_set+0x1770/0x1770 [ 240.999157][ T8058] ? do_vfs_ioctl+0x1ab2/0x2a90 [ 241.003995][ T8058] ? __x64_compat_sys_ioctl+0x80/0x80 [ 241.009353][ T8058] ? __lock_acquire+0x1f80/0x1f80 [ 241.014370][ T8058] ? lockdep_hardirqs_on+0x94/0x130 [ 241.019570][ T8058] ? __kmem_cache_free+0x25c/0x3c0 [ 241.024688][ T8058] ? tomoyo_path_number_perm+0x61b/0x7f0 [ 241.030325][ T8058] ? tomoyo_path_number_perm+0x68a/0x7f0 [ 241.035962][ T8058] ? tomoyo_path_number_perm+0x1f2/0x7f0 [ 241.041591][ T8058] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 241.047053][ T8058] ? __fget_files+0x28/0x4a0 [ 241.051636][ T8058] ? __fget_files+0x28/0x4a0 [ 241.056213][ T8058] ? __fget_files+0x435/0x4a0 [ 241.060879][ T8058] ? __fget_files+0x28/0x4a0 [ 241.065460][ T8058] ? bpf_lsm_file_ioctl+0x5/0x10 [ 241.070383][ T8058] ? security_file_ioctl+0x7d/0xa0 [ 241.075569][ T8058] ? ext4_fileattr_set+0x1770/0x1770 [ 241.080853][ T8058] __se_sys_ioctl+0xf1/0x160 [ 241.085434][ T8058] do_syscall_64+0x3b/0xb0 [ 241.089840][ T8058] ? clear_bhb_loop+0x45/0xa0 [ 241.094508][ T8058] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 241.100389][ T8058] RIP: 0033:0x7fd9a497fed9 [ 241.104802][ T8058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 241.124404][ T8058] RSP: 002b:00007fd9a57fb058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 241.132803][ T8058] RAX: ffffffffffffffda RBX: 00007fd9a4b45fa0 RCX: 00007fd9a497fed9 [ 241.140779][ T8058] RDX: 0000000000000000 RSI: 0000000000006611 RDI: 0000000000000004 [ 241.148736][ T8058] RBP: 00007fd9a49f3cc8 R08: 0000000000000000 R09: 0000000000000000 [ 241.156695][ T8058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 241.164652][ T8058] R13: 0000000000000000 R14: 00007fd9a4b45fa0 R15: 00007ffdecaeda78 [ 241.172618][ T8058] [ 241.265725][ T4248] EXT4-fs (loop0): unmounting filesystem.