last executing test programs: 39.455850704s ago: executing program 4 (id=1863): r0 = syz_open_dev$evdev(0x0, 0x1, 0x400002) syz_usb_disconnect(r0) fchdir(r0) ioctl$EVIOCRMFF(r0, 0x4004550e, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$ENABLE_STATS(0x20, 0x0, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000004c0)=r2, 0x4) r3 = syz_io_uring_setup(0x504, &(0x7f0000000480)={0x0, 0xb114, 0x0, 0x3}, &(0x7f00000002c0)=0x0, &(0x7f0000000040)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) io_uring_enter(r3, 0x0, 0x464f, 0x1, 0x0, 0x0) io_uring_enter(r3, 0x47fa, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r3, 0x1815, 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000001580)=ANY=[@ANYBLOB="1800002001000000000000000000000019110000", @ANYRES16, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000", @ANYBLOB="3bff04b92fb8bef446a7b57810c3e77ae6ce4719e40e7b3b57c990ee6705956a5cab82305b05485b263c7bbb2ac11c16b68d3aec07f52f2a8c6f9cc699c3b93df5f53c44df845296561f8394f5206b9acb2bbf229c3a8b2b862234b2169768615a8086fb7fcf092e1d34b3e598838bf7d888d80cc239e62390a94203380adab9621ddd701c658687ef5e574e635370b92870ad8b0ef71f425470482bb02ea41dd485cedf2aa4970cd23536866189e3a2ca1c6754a8afcf7ad4f585622452317808e0", @ANYRESHEX=r1, @ANYRESHEX], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) clock_nanosleep(0x2, 0x1, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe) fcntl$setsig(0xffffffffffffffff, 0xa, 0x13) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) 37.708737701s ago: executing program 4 (id=1866): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x31, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040), 0x4) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f0000001780)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@nodiscard}, {@auto_da_alloc}]}, 0x1, 0x558, &(0x7f0000000680)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000180)='./bus\x00', 0x1004030, 0x0, 0xfb, 0x0, &(0x7f0000000000)) 36.44242024s ago: executing program 4 (id=1870): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0xc) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x1, 0x0, 0x0, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f0000000300)=""/87, &(0x7f0000000480)=""/74}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000c40)) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='sched_switch\x00'}, 0x10) write$binfmt_script(r3, 0x0, 0x0) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1) 36.297163792s ago: executing program 4 (id=1872): socket(0x10, 0x3, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000000000)={0x2, {0xc, 0xa00, 0x0, 0x101, 0x100}}) r1 = gettid() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00'}) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x8001}, 0x4000c8c4) r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) sendmsg$tipc(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="fb6bba8839fe8bc048c0cdafd1f8a9918bc4055eaaeb6db4ee9bcb25b1811dbf40b3a7da5a8a64db04ed6dd26eea2e37229c339b1f91201c2796173864", 0x3d}], 0x1, 0x0, 0x0, 0x48040}, 0x20000000) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e0000008500"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x9) recvmsg(r5, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)=""/60, 0x3c}], 0x1}, 0x40fd) read$ptp(r4, 0x0, 0x0) timer_create(0x0, &(0x7f00000002c0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=0x0) timer_settime(r7, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r8 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r8}, 0x0, 0x0}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r9, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x40002002) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f000000000000000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0) fstat(r10, &(0x7f0000007f80)) 34.863139274s ago: executing program 4 (id=1876): r0 = syz_open_dev$evdev(0x0, 0x1, 0x400002) syz_usb_disconnect(r0) fchdir(r0) ioctl$EVIOCRMFF(r0, 0x4004550e, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$ENABLE_STATS(0x20, 0x0, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, 0x0, 0x0) r2 = syz_io_uring_setup(0x504, &(0x7f0000000480)={0x0, 0xb114, 0x0, 0x3}, &(0x7f00000002c0)=0x0, &(0x7f0000000040)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) io_uring_enter(r2, 0x0, 0x464f, 0x1, 0x0, 0x0) io_uring_enter(r2, 0x47fa, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r2, 0x1815, 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000001580)=ANY=[@ANYBLOB="1800002001000000000000000000000019110000", @ANYRES16, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000", @ANYBLOB="3bff04b92fb8bef446a7b57810c3e77ae6ce4719e40e7b3b57c990ee6705956a5cab82305b05485b263c7bbb2ac11c16b68d3aec07f52f2a8c6f9cc699c3b93df5f53c44df845296561f8394f5206b9acb2bbf229c3a8b2b862234b2169768615a8086fb7fcf092e1d34b3e598838bf7d888d80cc239e62390a94203380adab9621ddd701c658687ef5e574e635370b92870ad8b0ef71f425470482bb02ea41dd485cedf2aa4970cd23536866189e3a2ca1c6754a8afcf7ad4f585622452317808e0", @ANYRESHEX=r1, @ANYRESHEX], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) clock_nanosleep(0x2, 0x1, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe) fcntl$setsig(0xffffffffffffffff, 0xa, 0x13) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) 32.895030973s ago: executing program 4 (id=1886): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, 0x0}) geteuid() r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0xea85bb7784dbfd65, 0x0) io_uring_enter(r2, 0x2563, 0x1b4b, 0x74, &(0x7f00000000c0)={[0x40]}, 0x8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100d0000000fbdbdf252100000018000180140002007665746831"], 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x4008800) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', 0xffffffffffffffff, 0x0, 0x6}, 0x18) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) shutdown(r4, 0x2000000) fchdir(r1) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000003"], 0x48) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020002f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0xffffe305, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r6, &(0x7f0000000100)={0x1f, 0xffff}, 0x6) r7 = socket$inet(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r7, 0x8918, &(0x7f0000000040)={'veth1\x00', {0x2, 0x4e23, @empty=0xfdfdffff}}) setsockopt$bt_hci_HCI_FILTER(r6, 0x0, 0x2, &(0x7f0000000180)={0xfffc, [0x5, 0xffffffff], 0x5}, 0x10) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r8, 0x400455c8, 0x0) syz_read_part_table(0x1065, &(0x7f0000002100)="$eJzsz7FNxEAQhtF/vV5pndKA2yAkQCIhBFEOIFECFRASkdMBXdCCGzCSse46uLvgvXDm00gTzmoa+tVXcv1W39OTvCR5aklq6rGak++f+5KkfSw9tdTcjNumJ3PZq5qMd8tD2vpcftdhm5Xb6b9qezS8zofD9fHzhK8CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMX6CwAA//9BDg4U") 14.958582304s ago: executing program 32 (id=1886): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, 0x0}) geteuid() r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000040), 0xea85bb7784dbfd65, 0x0) io_uring_enter(r2, 0x2563, 0x1b4b, 0x74, &(0x7f00000000c0)={[0x40]}, 0x8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100d0000000fbdbdf252100000018000180140002007665746831"], 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x4008800) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', 0xffffffffffffffff, 0x0, 0x6}, 0x18) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) shutdown(r4, 0x2000000) fchdir(r1) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000003"], 0x48) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020002f8ffffffb703000008000000b70400000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x35, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0xffffe305, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r6, &(0x7f0000000100)={0x1f, 0xffff}, 0x6) r7 = socket$inet(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSIFDSTADDR(r7, 0x8918, &(0x7f0000000040)={'veth1\x00', {0x2, 0x4e23, @empty=0xfdfdffff}}) setsockopt$bt_hci_HCI_FILTER(r6, 0x0, 0x2, &(0x7f0000000180)={0xfffc, [0x5, 0xffffffff], 0x5}, 0x10) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$TIOCSETD(r8, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r8, 0x400455c8, 0x0) syz_read_part_table(0x1065, &(0x7f0000002100)="$eJzsz7FNxEAQhtF/vV5pndKA2yAkQCIhBFEOIFECFRASkdMBXdCCGzCSse46uLvgvXDm00gTzmoa+tVXcv1W39OTvCR5aklq6rGak++f+5KkfSw9tdTcjNumJ3PZq5qMd8tD2vpcftdhm5Xb6b9qezS8zofD9fHzhK8CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwMX6CwAA//9BDg4U") 10.337742334s ago: executing program 0 (id=1925): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x408, 0xcd, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$SO_TIMESTAMP(r2, 0x1, 0x3f, &(0x7f0000000080)=0x1, 0x4) bind$inet(r2, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10) sendmsg$inet(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000180)='/', 0x1}], 0x1}, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) syz_mount_image$vfat(&(0x7f0000000540), &(0x7f0000000000)='./file1\x00', 0xa18c14, &(0x7f0000000340)=ANY=[@ANYBLOB="756e695f786c6174653d312c696f636861727365743d69736f383835392d392c73686f72746e616d653d77696e6e742c636f6465706167653d3836312c757466383d302c756e695f786c6174653d302c726f6469722c6e6f6e756d7461696c3d302c73686f72746e616d653d6c6f7765722c757466383d312c756e695f786c6174653d312c726f6469722c757466383d302c00531b17042f7ca50e22895c2b5d4e569f5eaf155190d8f66862a6e25caf6e3347919a6ebd4864113ab7083ee0c1019f"], 0x81, 0x2ab, &(0x7f0000000840)="$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") sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="fc01000019000100000000000000000000000000000000000000000000000000fe8000000000000000000000000000bb00000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000000000000000000000000004401050020010000000000000000000000000000000000022b0000000a000000fc010000000000000000000000000000000000000400000000000000000000fe5c00000000000000000000000000000000000001000000006c0000000a000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff00000000000000000000000000000000320000000a0000002001000000000000000000000000000100000000000000000300000000000000000000000000000000000000000000000000000000000000320000000a000000ff0100000000000000000000000000010000000000020000000000000000000000000000ac1414aa000000000000000000000000000000003200000000000000ac1414bb0000000000000000000000000000000004"], 0x1fc}}, 0x0) recvmmsg(r2, &(0x7f00000005c0), 0x40000000000026c, 0x0, 0x0) 9.743285683s ago: executing program 3 (id=1929): r0 = syz_open_dev$evdev(0x0, 0x1, 0x400002) syz_usb_disconnect(r0) fchdir(r0) ioctl$EVIOCRMFF(r0, 0x4004550e, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$ENABLE_STATS(0x20, 0x0, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000004c0)=r2, 0x4) r3 = syz_io_uring_setup(0x504, 0x0, &(0x7f00000002c0)=0x0, &(0x7f0000000040)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) io_uring_enter(r3, 0x0, 0x464f, 0x1, 0x0, 0x0) io_uring_enter(r3, 0x47fa, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r3, 0x1815, 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000001580)=ANY=[@ANYBLOB="1800002001000000000000000000000019110000", @ANYRES16, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000", @ANYBLOB="3bff04b92fb8bef446a7b57810c3e77ae6ce4719e40e7b3b57c990ee6705956a5cab82305b05485b263c7bbb2ac11c16b68d3aec07f52f2a8c6f9cc699c3b93df5f53c44df845296561f8394f5206b9acb2bbf229c3a8b2b862234b2169768615a8086fb7fcf092e1d34b3e598838bf7d888d80cc239e62390a94203380adab9621ddd701c658687ef5e574e635370b92870ad8b0ef71f425470482bb02ea41dd485cedf2aa4970cd23536866189e3a2ca1c6754a8afcf7ad4f585622452317808e0", @ANYRESHEX=r1, @ANYRESHEX], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) clock_nanosleep(0x2, 0x1, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe) fcntl$setsig(0xffffffffffffffff, 0xa, 0x13) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) 9.655759504s ago: executing program 5 (id=1911): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002400)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket(0x10, 0x2, 0x0) r5 = socket$inet6(0xa, 0x2, 0x3a) connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e24, 0x7, @dev={0xfe, 0x80, '\x00', 0x3d}, 0xa}, 0x1c) sendto$inet6(r5, &(0x7f0000000080)="800037bbfa9b", 0x6, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000009c0)={r1, 0xf, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 9.236516251s ago: executing program 1 (id=1930): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000000000f6000000006debff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10) io_setup(0x3ff, &(0x7f0000000500)=0x0) io_destroy(r1) 9.231988431s ago: executing program 0 (id=1931): openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$TOKEN_CREATE(0x24, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) open_tree(0xffffffffffffffff, &(0x7f00000000c0)='.\x00', 0x9101) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="0300"/19, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000001a00000000000000000000000000000000080200"], 0x50) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000680)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRESHEX=r3, @ANYRES64=r1], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$eJzs3c9rHFUcAPDvbJL+1qZQinqQQA9WajdN4o8KQutRtFjQe12SaSjZdEt2U5pYaHuwFy9SBBEL4h/g3WPxH/CvKGihSAl68BKZzWy7TbL5uXW3zucD0743M5s3b998335nZ5cNoLBGsn9KEa9GxDdJxOG2bYORbxxZ2W/p8Y3JbEliefmzP5NI8nWt/ZP8/4N55ZWI+PWriJOlte3WFxZnKtVqOpfXRxuzV0frC4unLs9WptPp9Mr4xMSZdybG33/v3a719c0Lf3//6f2Pznx9fOm7nx8euZvEuTiUb2vvxy7caq+MxEj+nAzFuVU7jnWhsX6S9PoA2JGBPM6HIpsDDsdAHvXA/9/NiFgGCioR/1BQrTygdW3fpevgF8ajD1cugNb2f3DlvZHY17w2OrCUPHNllF3vDneh/ayNX/64dzdbYpP3IW52oT2Allu3I+L04ODa+S/J57+dO91883hjq9so2usP9NL9LP95a738p/Qk/4l18p+D68TuTmwe/6WHXWimoyz/+2Dd/PfJ1DU8kNdeauZ8Q8mly9X0dES8HBEnYmhvVt/ofs6ZpQfLnba153/ZkrXfygXz43g4uPfZx0xVGpXd9Lndo9sRrz3Nf5NYM//va+a6q8c/ez4ubLGNY+m91ztt27z/7bqfAS//FPHGuuP/9I5WsvH9ydHm+TDaOivW+uvOsd86tb+9/ndfNv4HNu7/cNJ+v7a+/TZ+3PdP2mnbTs//PcnnzfKefN31SqMxNxaxJ/lk7frxp49t1Vv7Z/0/cXzj+W+9839/RHyxxf7fOXqn4679MP5T2xr/7RcefPzlD53a39r4v90sncjXbGX+2+oB7ua5AwAAAAAAgH5TiohDkZTKT8qlUrm88vmOo3GgVK3VGycv1eavTEXzu7LDMVRq3ek+3PZ5iLH887Ct+viq+kREHImIbwf2N+vlyVp1qtedBwAAAAAAAAAAAAAAAAAAgD5xsMP3/zO/D/T66IDnzk9+Q3FtGv/d+KUnoC95/YfiEv9QXOIfikv8Q3GJfygu8Q/FJf6huMQ/AAAAAAAAAAAAAAAAAAAAAAAAAAAAdNWF8+ezZXnp8Y3JrD51bWF+pnbt1FRanynPzk+WJ2tzV8vTtdp0NS1P1mY3+3vVWu3q2HjMXx9tpPXGaH1h8eJsbf5K4+Ll2cp0ejEd+k96BQAAAAAAAAAAAAAAAAAAAC+W+sLiTKVaTecUOhbORl8cxo4LyWajfDY/GXbUxGDvO6jwHAo9npgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoM2/AQAA///fKTPH") setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r5 = syz_open_procfs(0x0, &(0x7f00000005c0)='smaps_rollup\x00') madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) lseek(r5, 0x2000, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="0000000000000000b708"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x17, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000200000000000000001809"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) lsetxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100), &(0x7f0000000240)=ANY=[@ANYBLOB="00fb390208d3fbc22774f5c1839f8454631b342adc2bcc2dfe7f0069c93d01d29fb4292ae72e6a1d0180000000000000c13eb069ae9377edaa3db687478d6b6d8025eaa9a16c251603ea9746058f0bc479bd9baa8f84cbd6e9740190e762417c9c22bbc2283662637698e725a0bb84bcdf413297590c78e72c57a969440927fd733826e4468fe95ec526ca83a60ffb7d7451e42d3f000000000000000000"], 0x39, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10) sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) connect$bt_rfcomm(r7, &(0x7f0000000000)={0x1f, @any, 0x8}, 0xa) setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x7}, {0x1}}, {{@in=@dev={0xac, 0x14, 0x14, 0x1d}, 0x0, 0x6c}, 0x0, @in6=@dev}}, 0xe8) syz_emit_ethernet(0x3e, &(0x7f00000003c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaf368656e065b0800450000300000000000019078ac1e0001e00000010400907803000000450000000000000000000000ac141400ac141400732958c7308bf61649b2efca4fe8bc31a77bc7412784e87fddb0e7b177efc23869f577075a82635d05fe0031116f3e24849bf073cd3ffdc844f8f729b68237"], 0x0) r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000040), 0x81, r8}, 0x38) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r9}, 0x10) 8.916028095s ago: executing program 2 (id=1932): r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x8) close(r0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0e000000040000000800006da500000000000000a6de0043e766b1007200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) read$FUSE(r0, &(0x7f000000c400)={0x2020}, 0x2020) creat(&(0x7f0000000600)='./file0\x00', 0xca) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) pipe2$9p(0x0, 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15) r6 = dup(0xffffffffffffffff) write$P9_RLERRORu(r6, &(0x7f0000000300)=ANY=[@ANYBLOB='S\x00\x00\x00\a'], 0x53) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r6]) 8.360480444s ago: executing program 5 (id=1933): r0 = syz_clone(0x8000, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_pidfd_open(r0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x759, &(0x7f0000000780)={[{@noload}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}, 0x0}, {@data_journal}, {@journal_dev={'journal_dev', 0x3d, 0xf}}, {@jqfmt_vfsv1}, {@dax_always}, {@debug}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0xb6a}}, {@data_err_ignore}], [], 0x2c}, 0x2, 0x4f9, &(0x7f0000000200)="$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") process_madvise(r1, 0x0, 0x0, 0x16, 0x0) (async) process_madvise(r1, 0x0, 0x0, 0x16, 0x0) fsetxattr$security_ima(r1, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x5, 0x0, 0x6, 0x10000, 0x42, "e44bf6fa4f4cb2766e15b9e489bb2b3cb1928393d00c66c156c0aef21db8ef62857339f885b947c9af6c8bc877d2b80cab3b21e332fec41884f6ac973b24df01f2e2"}, 0x4b, 0x0) 7.893621331s ago: executing program 3 (id=1934): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f0000001780)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@nodiscard}, {@auto_da_alloc}]}, 0x1, 0x558, &(0x7f0000000680)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000180)='./bus\x00', 0x1004030, 0x0, 0xfb, 0x0, &(0x7f0000000000)) 7.881369881s ago: executing program 1 (id=1935): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002400)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000080000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) socket(0x10, 0x2, 0x0) r4 = socket$inet6(0xa, 0x2, 0x3a) connect$inet6(r4, &(0x7f00000001c0)={0xa, 0x4e24, 0x7, @dev={0xfe, 0x80, '\x00', 0x3d}, 0xa}, 0x1c) sendto$inet6(r4, &(0x7f0000000080)="800037bbfa9ba1ce", 0xffd8, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={0x0}, 0x18) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 7.796027993s ago: executing program 0 (id=1936): openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x8000, 0x0) r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x8) close(r0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="00000000000000000000e2b39393e01cbc21c4c6", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0e000000040000000800006da500000000000000a6de0043e766b1007200000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/21], 0x48) read$FUSE(r0, &(0x7f000000c400)={0x2020}, 0x2020) creat(&(0x7f0000000600)='./file0\x00', 0xca) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) pipe2$9p(0x0, 0x0) write$P9_RVERSION(0xffffffffffffffff, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15) r6 = dup(0xffffffffffffffff) write$P9_RLERRORu(r6, &(0x7f0000000300)=ANY=[@ANYBLOB='S\x00\x00\x00\a'], 0x53) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r6]) 6.900547775s ago: executing program 2 (id=1937): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002400)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000080000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) socket(0x10, 0x2, 0x0) r5 = socket$inet6(0xa, 0x2, 0x3a) connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e24, 0x7, @dev={0xfe, 0x80, '\x00', 0x3d}, 0xa}, 0x1c) sendto$inet6(r5, &(0x7f0000000080)="800037bbfa9ba1ce", 0xffd8, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000009c0)={r1, 0xf, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 6.742413408s ago: executing program 1 (id=1938): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) socket$xdp(0x2c, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xe, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000e07b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) mount$tmpfs(0x0, &(0x7f0000000400)='./file0/../file0\x00', &(0x7f0000000080), 0x0, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') ppoll(&(0x7f0000000000)=[{r3, 0x17014}], 0x1, 0x0, 0x0, 0x0) umount2(&(0x7f0000000100)='./file0/../file0\x00', 0xa) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f00000004c0)={'gretap0\x00', &(0x7f0000000380)={'syztnl2\x00', 0x0, 0x7, 0x20, 0x3, 0x4, {{0x17, 0x4, 0x0, 0x2, 0xfffffffffffffd09, 0x66, 0x0, 0x7, 0x4, 0x0, @remote, @private=0xa010102, {[@timestamp={0x44, 0x81, 0xf0, 0x0, 0x9, [0x6, 0x1, 0x5d0, 0x5, 0xfe65, 0x1, 0x8, 0x0, 0x9, 0x710]}, @timestamp_prespec={0x44, 0x1c, 0x1f, 0x3, 0x1, [{@broadcast, 0x8000}, {@dev={0xac, 0x14, 0x14, 0x43}, 0x1}, {@multicast2, 0x7fff}]}]}}}}}) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x7, &(0x7f0000000180)=@raw=[@func={0x85, 0x0, 0x1, 0x0, 0xfffffffffffffff9}, @exit, @initr0={0x18, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x4}, @call={0x85, 0x0, 0x0, 0x7e}, @btf_id={0x18, 0x9, 0x3, 0x0, 0x3}], &(0x7f00000001c0)='syzkaller\x00', 0x6, 0xfd, &(0x7f0000000240)=""/253, 0x41000, 0x0, '\x00', r4, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000000580)={0x0, 0x5}, 0x8, 0x10, &(0x7f00000005c0)={0x0, 0xa, 0x98b5, 0x2}, 0x10, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000600)=[{0xfffffff9, 0x3, 0x0, 0x7}, {0x1, 0x1, 0x0, 0x4}, {0x0, 0x4, 0x8, 0x2}, {0x3, 0x3, 0x5, 0xb}, {0x0, 0x5, 0xe, 0x9}, {0x5, 0x1, 0x9, 0x5}, {0x4, 0x2, 0xf, 0x9}, {0x3, 0x9, 0xf}], 0x10, 0xfffffc01, @void, @value}, 0x94) mremap(&(0x7f0000186000/0x1000)=nil, 0x1000, 0x3000, 0x3, &(0x7f00000ad000/0x3000)=nil) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200)=0x4000000000000, 0x12) syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000001700)=ANY=[@ANYBLOB="18000000000000000000000000000000850000001500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ioctl$KVM_SET_NESTED_STATE(r6, 0x4080aebf, 0x0) 5.648021445s ago: executing program 2 (id=1939): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) ftruncate(r1, 0x2000009) sendfile(r0, r1, 0x0, 0x7ffff004) (fail_nth: 1) 5.102309283s ago: executing program 5 (id=1940): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) statx(r0, &(0x7f0000000000)='./file0\x00', 0x800, 0x400, &(0x7f0000000240)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f0000000a00)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x1}}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@grpid}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@noload}]}, 0xf5, 0x47a, &(0x7f0000000ac0)="$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") syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x41, &(0x7f0000000880)={[{@bsdgroups}, {@nodiscard}, {@usrjquota}, {@grpjquota}, {@grpjquota}, {@minixdf}, {@prjquota}, {@noload}, {@block_validity}]}, 0x64, 0x50a, &(0x7f0000000200)="$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") syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000)) 5.039241274s ago: executing program 2 (id=1941): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10) io_setup(0x3ff, &(0x7f0000000500)=0x0) io_destroy(r1) 4.985355165s ago: executing program 1 (id=1942): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x31, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) bind$unix(0xffffffffffffffff, &(0x7f0000000380)=@file={0x0, './bus\x00'}, 0x6e) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040), 0x4) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f0000001780)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@nodiscard}, {@auto_da_alloc}]}, 0x1, 0x558, &(0x7f0000000680)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000180)='./bus\x00', 0x1004030, 0x0, 0xfb, 0x0, &(0x7f0000000000)) 4.974627965s ago: executing program 3 (id=1943): bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYRES64], 0x48) ioctl$sock_inet_SIOCSIFPFLAGS(0xffffffffffffffff, 0x8934, &(0x7f0000000040)={'bridge0\x00'}) ioctl(0xffffffffffffffff, 0x8b22, &(0x7f0000000040)) setsockopt$MRT6_DEL_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd3, &(0x7f0000000180)={{0xa, 0x4e21, 0x16fe, @private0, 0x3}, {0xa, 0x4e24, 0x5, @dev={0xfe, 0x80, '\x00', 0x38}, 0x5}, 0xffffffffffffffff, {[0x64, 0xe, 0x6, 0x4, 0x7f, 0x2, 0xe9, 0x6]}}, 0x5c) bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b0000000000"], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000680)='kmem_cache_free\x00'}, 0x18) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r6, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054) 4.865866217s ago: executing program 0 (id=1944): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x31, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r4}, 0x4) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f0000001780)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@nodiscard}, {@auto_da_alloc}]}, 0x1, 0x558, &(0x7f0000000680)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000180)='./bus\x00', 0x1004030, 0x0, 0xfb, 0x0, &(0x7f0000000000)) 3.215548582s ago: executing program 2 (id=1945): r0 = syz_open_dev$evdev(0x0, 0x1, 0x400002) syz_usb_disconnect(r0) fchdir(r0) ioctl$EVIOCRMFF(r0, 0x4004550e, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$ENABLE_STATS(0x20, 0x0, 0x0) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f00000004c0)=r2, 0x4) r3 = syz_io_uring_setup(0x504, 0x0, &(0x7f00000002c0)=0x0, &(0x7f0000000040)) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) io_uring_enter(r3, 0x0, 0x464f, 0x1, 0x0, 0x0) io_uring_enter(r3, 0x47fa, 0x0, 0x0, 0x0, 0x0) io_uring_enter(r3, 0x1815, 0x0, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000001580)=ANY=[@ANYBLOB="1800002001000000000000000000000019110000", @ANYRES16, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000009500000000000000", @ANYBLOB="3bff04b92fb8bef446a7b57810c3e77ae6ce4719e40e7b3b57c990ee6705956a5cab82305b05485b263c7bbb2ac11c16b68d3aec07f52f2a8c6f9cc699c3b93df5f53c44df845296561f8394f5206b9acb2bbf229c3a8b2b862234b2169768615a8086fb7fcf092e1d34b3e598838bf7d888d80cc239e62390a94203380adab9621ddd701c658687ef5e574e635370b92870ad8b0ef71f425470482bb02ea41dd485cedf2aa4970cd23536866189e3a2ca1c6754a8afcf7ad4f585622452317808e0", @ANYRESHEX=r1, @ANYRESHEX], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) clock_nanosleep(0x2, 0x1, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe) fcntl$setsig(0xffffffffffffffff, 0xa, 0x13) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) 2.468750543s ago: executing program 1 (id=1946): openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$TOKEN_CREATE(0x24, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000840)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) open_tree(0xffffffffffffffff, &(0x7f00000000c0)='.\x00', 0x9101) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYBLOB="0300"/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000001a00000000000000000000000000000000080200"], 0x50) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000680)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRESHEX=r3, @ANYRES64=r1], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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") setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r5 = syz_open_procfs(0x0, &(0x7f00000005c0)='smaps_rollup\x00') madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) lseek(r5, 0x2000, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="0000000000000000b708"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x17, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000000000200000000000000001809"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) lsetxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000100), &(0x7f0000000240)=ANY=[@ANYBLOB="00fb390208d3fbc22774f5c1839f8454631b342adc2bcc2dfe7f0069c93d01d29fb4292ae72e6a1d0180000000000000c13eb069ae9377edaa3db687478d6b6d8025eaa9a16c251603ea9746058f0bc479bd9baa8f84cbd6e9740190e762417c9c22bbc2283662637698e725a0bb84bcdf413297590c78e72c57a969440927fd733826e4468fe95ec526ca83a60ffb7d7451e42d3f000000000000000000"], 0x39, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10) sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0) r6 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r7 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) connect$bt_rfcomm(r7, &(0x7f0000000000)={0x1f, @any, 0x8}, 0xa) setsockopt$inet_IP_XFRM_POLICY(r6, 0x0, 0x11, &(0x7f0000005b80)={{{@in6=@remote, @in6=@rand_addr=' \x01\x00', 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x7}, {0x1}}, {{@in=@dev={0xac, 0x14, 0x14, 0x1d}, 0x0, 0x6c}, 0x0, @in6=@dev}}, 0xe8) syz_emit_ethernet(0x3e, &(0x7f00000003c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaf368656e065b0800450000300000000000019078ac1e0001e00000010400907803000000450000000000000000000000ac141400ac141400732958c7308bf61649b2efca4fe8bc31a77bc7412784e87fddb0e7b177efc23869f577075a82635d05fe0031116f3e24849bf073cd3ffdc844f8f729b68237"], 0x0) r8 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000040), 0x81, r8}, 0x38) r9 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r9}, 0x10) 2.467054083s ago: executing program 3 (id=1947): socket$nl_route(0x10, 0x3, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/crypto\x00', 0x0, 0x0) r0 = socket(0x1e, 0x805, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r1}, 0x10) r2 = socket$netlink(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r6, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x18) r8 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r8}, 0x10) socket$inet6(0xa, 0x3, 0xff) sendmsg$nl_route_sched(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=@gettaction={0x24, 0x32, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@action_gd=@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x1, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x3}}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0) connect$tipc(r0, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x0, 0x1}, 0x2}}, 0x10) r9 = bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000010700000000000000002600181100", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 2.415243624s ago: executing program 0 (id=1948): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x31, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) bind$unix(r1, &(0x7f0000000380)=@file={0x0, './bus\x00'}, 0x6e) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f0000000480), 0x400034f, 0x2, 0x0) r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r5}, 0x4) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r6}, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f0000001780)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@nodiscard}, {@auto_da_alloc}]}, 0x1, 0x558, &(0x7f0000000680)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000180)='./bus\x00', 0x1004030, 0x0, 0xfb, 0x0, &(0x7f0000000000)) openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x161642, 0x0) 2.366132685s ago: executing program 5 (id=1949): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x31, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) bind$unix(r1, &(0x7f0000000380)=@file={0x0, './bus\x00'}, 0x6e) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r4}, 0x4) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f0000001780)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@nodiscard}, {@auto_da_alloc}]}, 0x1, 0x558, &(0x7f0000000680)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000180)='./bus\x00', 0x1004030, 0x0, 0xfb, 0x0, &(0x7f0000000000)) 1.468635688s ago: executing program 3 (id=1950): socket$nl_route(0x10, 0x3, 0x0) open(&(0x7f0000000040)='./bus\x00', 0x1612c2, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/crypto\x00', 0x0, 0x0) socket(0x1e, 0x805, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10) socket$netlink(0x10, 0x3, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x242, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18) r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sched_switch\x00', r6}, 0x10) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000004f00)=[{{&(0x7f0000000080)={0xa, 0x0, 0x0, @private1}, 0x1c, 0x0}}], 0x1, 0x0) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000d00)=ANY=[@ANYBLOB="02000000040000000600000005000000"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 157.317438ms ago: executing program 3 (id=1951): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002400)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020000008500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffc000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket(0x10, 0x2, 0x0) r5 = socket$inet6(0xa, 0x2, 0x3a) connect$inet6(r5, &(0x7f00000001c0)={0xa, 0x4e24, 0x7, @dev={0xfe, 0x80, '\x00', 0x3d}, 0xa}, 0x1c) sendto$inet6(r5, &(0x7f0000000080)="800037bbfa9ba1ce", 0xffd8, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000009c0)={r1, 0xf, 0x0, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 49.061749ms ago: executing program 0 (id=1952): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x7e, 0x5, 0x7ffc0002}]}) lseek(0xffffffffffffffff, 0x5, 0x4) 48.849179ms ago: executing program 2 (id=1953): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x7e, 0x5, 0x7ffc0002}]}) lseek(0xffffffffffffffff, 0x5, 0x4) (fail_nth: 1) 0s ago: executing program 1 (id=1954): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x31, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) openat$selinux_avc_hash_stats(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0) r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r4}, 0x4) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f0000001780)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@nodiscard}, {@auto_da_alloc}]}, 0x1, 0x558, &(0x7f0000000680)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000180)='./bus\x00', 0x1004030, 0x0, 0xfb, 0x0, &(0x7f0000000000)) kernel console output (not intermixed with test programs): error [ 397.169397][ T5961] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1634: corrupted inode contents [ 397.182553][ T5961] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.1634: mark_inode_dirty error [ 397.515642][ T5976] loop4: detected capacity change from 0 to 512 [ 397.576819][ T5979] loop0: detected capacity change from 0 to 512 [ 397.632944][ T5976] EXT4-fs error (device loop4): ext4_orphan_get:1427: comm syz.4.1636: bad orphan inode 15 [ 397.644801][ T5979] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 397.662025][ T5979] ext4 filesystem being mounted at /324/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 397.674767][ T5979] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1635: corrupted inode contents [ 397.687910][ T5979] EXT4-fs error (device loop0): ext4_dirty_inode:6070: inode #2: comm syz.0.1635: mark_inode_dirty error [ 397.699661][ T5979] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1635: corrupted inode contents [ 397.755359][ T5979] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.1635: mark_inode_dirty error [ 397.770493][ T5976] ext4_test_bit(bit=14, block=5) = 0 [ 397.920561][ T5976] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 398.008337][ T5988] FAULT_INJECTION: forcing a failure. [ 398.008337][ T5988] name failslab, interval 1, probability 0, space 0, times 0 [ 398.056133][ T5988] CPU: 1 PID: 5988 Comm: syz.3.1639 Not tainted 5.15.185-syzkaller-00339-ge678c93d43cc #0 [ 398.066123][ T5988] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 398.076197][ T5988] Call Trace: [ 398.079478][ T5988] [ 398.082405][ T5988] __dump_stack+0x21/0x30 [ 398.086746][ T5988] dump_stack_lvl+0xee/0x150 [ 398.091332][ T5988] ? show_regs_print_info+0x20/0x20 [ 398.096531][ T5988] dump_stack+0x15/0x20 [ 398.100681][ T5988] should_fail+0x3c1/0x510 [ 398.105095][ T5988] __should_failslab+0xa4/0xe0 [ 398.109858][ T5988] should_failslab+0x9/0x20 [ 398.114351][ T5988] slab_pre_alloc_hook+0x3b/0xe0 [ 398.119289][ T5988] ? kvm_mmu_topup_memory_cache+0xe4/0x220 [ 398.125093][ T5988] kmem_cache_alloc+0x44/0x260 [ 398.129850][ T5988] kvm_mmu_topup_memory_cache+0xe4/0x220 [ 398.135481][ T5988] kvm_mmu_load+0x88/0x1fd0 [ 398.139976][ T5988] ? kvm_apic_accept_events+0x121/0x550 [ 398.145511][ T5988] ? __kasan_check_read+0x11/0x20 [ 398.150530][ T5988] ? kvm_apic_has_interrupt+0x4fb/0x7a0 [ 398.156167][ T5988] vcpu_enter_guest+0x4fcb/0x6780 [ 398.161196][ T5988] ? local_bh_enable+0x30/0x30 [ 398.165961][ T5988] ? avc_has_perm+0x158/0x240 [ 398.170637][ T5988] ? 0xffffffffa0018da8 [ 398.174787][ T5988] ? is_bpf_text_address+0x177/0x190 [ 398.180071][ T5988] ? __kernel_text_address+0xa0/0x100 [ 398.185438][ T5988] ? unwind_get_return_address+0x4d/0x90 [ 398.191068][ T5988] ? stack_trace_save+0xe0/0xe0 [ 398.195916][ T5988] ? arch_stack_walk+0xee/0x140 [ 398.200770][ T5988] ? stack_trace_save+0x98/0xe0 [ 398.205619][ T5988] ? __stack_depot_save+0x34/0x480 [ 398.210728][ T5988] ? __kasan_check_read+0x11/0x20 [ 398.215759][ T5988] ? vmx_vcpu_pi_load+0xab/0x390 [ 398.220689][ T5988] ? do_vfs_ioctl+0xc1a/0x1d00 [ 398.225451][ T5988] ? __kasan_check_write+0x14/0x20 [ 398.230554][ T5988] ? kvm_arch_vcpu_load+0x55a/0x740 [ 398.235749][ T5988] ? __local_bh_enable_ip+0x58/0x80 [ 398.240946][ T5988] ? local_bh_enable+0x1f/0x30 [ 398.245704][ T5988] ? kvm_load_guest_fpu+0x12a/0x240 [ 398.250896][ T5988] kvm_arch_vcpu_ioctl_run+0xfab/0x2010 [ 398.256442][ T5988] kvm_vcpu_ioctl+0x882/0xb80 [ 398.261121][ T5988] ? kvm_clear_stat_per_vcpu+0x200/0x200 [ 398.266755][ T5988] ? selinux_file_ioctl+0x377/0x480 [ 398.271950][ T5988] ? selinux_file_alloc_security+0x120/0x120 [ 398.277923][ T5988] ? mutex_unlock+0x89/0x220 [ 398.282507][ T5988] ? __mutex_lock_slowpath+0x10/0x10 [ 398.287785][ T5988] ? __fget_files+0x2c4/0x320 [ 398.292455][ T5988] ? security_file_ioctl+0x84/0xa0 [ 398.297563][ T5988] ? kvm_clear_stat_per_vcpu+0x200/0x200 [ 398.303192][ T5988] __se_sys_ioctl+0x121/0x1a0 [ 398.307863][ T5988] __x64_sys_ioctl+0x7b/0x90 [ 398.312454][ T5988] x64_sys_call+0x2f/0x9a0 [ 398.316953][ T5988] do_syscall_64+0x4c/0xa0 [ 398.321369][ T5988] ? clear_bhb_loop+0x50/0xa0 [ 398.326042][ T5988] ? clear_bhb_loop+0x50/0xa0 [ 398.330713][ T5988] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 398.336615][ T5988] RIP: 0033:0x7faf0daef929 [ 398.341024][ T5988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 398.360623][ T5988] RSP: 002b:00007faf0c158038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 398.369030][ T5988] RAX: ffffffffffffffda RBX: 00007faf0dd16fa0 RCX: 00007faf0daef929 [ 398.376997][ T5988] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 398.384965][ T5988] RBP: 00007faf0c158090 R08: 0000000000000000 R09: 0000000000000000 [ 398.392932][ T5988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 398.400901][ T5988] R13: 0000000000000000 R14: 00007faf0dd16fa0 R15: 00007fffb39c5898 [ 398.408969][ T5988] [ 398.471647][ T5986] 9pnet: Insufficient options for proto=fd [ 398.631648][ T6004] tipc: Enabling of bearer rejected, already enabled [ 398.640479][ T30] kauditd_printk_skb: 15 callbacks suppressed [ 398.640494][ T30] audit: type=1326 audit(1749254043.402:2175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6003 comm="syz.4.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dcb9cb929 code=0x7ffc0000 [ 398.676901][ T30] audit: type=1326 audit(1749254043.402:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6003 comm="syz.4.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5dcb9cb929 code=0x7ffc0000 [ 398.701221][ T30] audit: type=1326 audit(1749254043.432:2177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6003 comm="syz.4.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dcb9cb929 code=0x7ffc0000 [ 398.725312][ T30] audit: type=1326 audit(1749254043.432:2178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6003 comm="syz.4.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5dcb9cb929 code=0x7ffc0000 [ 398.749278][ T30] audit: type=1326 audit(1749254043.432:2179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6003 comm="syz.4.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dcb9cb929 code=0x7ffc0000 [ 398.778329][ T30] audit: type=1326 audit(1749254043.432:2180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6003 comm="syz.4.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7f5dcb9cb929 code=0x7ffc0000 [ 398.802408][ T30] audit: type=1326 audit(1749254043.432:2181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6003 comm="syz.4.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dcb9cb929 code=0x7ffc0000 [ 398.826481][ T30] audit: type=1326 audit(1749254043.432:2182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6003 comm="syz.4.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dcb9cb929 code=0x7ffc0000 [ 398.859639][ T30] audit: type=1326 audit(1749254043.432:2183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6003 comm="syz.4.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f5dcb9cb929 code=0x7ffc0000 [ 398.883576][ T30] audit: type=1326 audit(1749254043.432:2184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6003 comm="syz.4.1644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dcb9cb929 code=0x7ffc0000 [ 399.017874][ T6014] 9pnet: Insufficient options for proto=fd [ 399.586530][ T6017] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1647'. [ 400.980812][ T3306] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 401.090179][ T6039] 9pnet: Insufficient options for proto=fd [ 401.848188][ T6043] loop2: detected capacity change from 0 to 512 [ 401.978895][ T6043] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 402.050800][ T6043] ext4 filesystem being mounted at /338/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 402.118013][ T6043] EXT4-fs error (device loop2): ext4_do_update_inode:5234: inode #2: comm syz.2.1651: corrupted inode contents [ 402.160317][ T6043] EXT4-fs error (device loop2): ext4_dirty_inode:6070: inode #2: comm syz.2.1651: mark_inode_dirty error [ 402.179729][ T3306] usb 1-1: Using ep0 maxpacket: 16 [ 402.225406][ T6043] EXT4-fs error (device loop2): ext4_do_update_inode:5234: inode #2: comm syz.2.1651: corrupted inode contents [ 402.260105][ T6043] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.1651: mark_inode_dirty error [ 402.299813][ T3306] usb 1-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 402.331083][ T3306] usb 1-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid wMaxPacketSize 0 [ 402.333780][ T6051] loop3: detected capacity change from 0 to 512 [ 402.377599][ T3306] usb 1-1: config 0 interface 0 has no altsetting 0 [ 402.397783][ T3306] usb 1-1: New USB device found, idVendor=04f2, idProduct=0418, bcdDevice= 0.00 [ 402.427751][ T3306] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 402.457164][ T3306] usb 1-1: config 0 descriptor?? [ 402.487627][ T6051] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 402.561443][ T6051] ext4 filesystem being mounted at /323/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 402.580787][ T6051] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1656: corrupted inode contents [ 402.644741][ T6051] EXT4-fs error (device loop3): ext4_dirty_inode:6070: inode #2: comm syz.3.1656: mark_inode_dirty error [ 402.678226][ T6051] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1656: corrupted inode contents [ 402.740281][ T6051] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.1656: mark_inode_dirty error [ 402.951330][ T3306] chicony 0003:04F2:0418.0002: unknown main item tag 0x0 [ 402.962886][ T3306] chicony 0003:04F2:0418.0002: hidraw0: USB HID v0.00 Device [HID 04f2:0418] on usb-dummy_hcd.0-1/input0 [ 403.161815][ T3287] usb 1-1: USB disconnect, device number 8 [ 403.523205][ T8] Bluetooth: hci0: Frame reassembly failed (-84) [ 403.758700][ T6073] 9pnet: Insufficient options for proto=fd [ 405.217133][ T6085] tipc: Enabling of bearer rejected, already enabled [ 405.249278][ T30] kauditd_printk_skb: 29 callbacks suppressed [ 405.249302][ T30] audit: type=1326 audit(1749254050.002:2214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.1.1666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 405.287602][ T6089] 9pnet: Insufficient options for proto=fd [ 405.560134][ T30] audit: type=1326 audit(1749254050.062:2215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.1.1666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 405.731978][ T30] audit: type=1326 audit(1749254050.062:2216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.1.1666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 405.816568][ T30] audit: type=1326 audit(1749254050.072:2217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.1.1666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 405.918551][ T6097] loop0: detected capacity change from 0 to 512 [ 405.939748][ T30] audit: type=1326 audit(1749254050.072:2218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.1.1666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 405.990414][ T3306] Bluetooth: hci0: command 0x1003 tx timeout [ 405.996495][ T668] Bluetooth: hci0: sending frame failed (-49) [ 405.996894][ T30] audit: type=1326 audit(1749254050.072:2219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.1.1666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 406.052217][ T6099] loop2: detected capacity change from 0 to 128 [ 406.117204][ T30] audit: type=1326 audit(1749254050.072:2220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.1.1666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 406.143909][ T6097] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 406.160306][ T6099] device wireguard0 entered promiscuous mode [ 406.192438][ T30] audit: type=1326 audit(1749254050.082:2221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.1.1666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 406.223743][ T6097] ext4 filesystem being mounted at /330/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 406.241749][ T30] audit: type=1326 audit(1749254050.082:2222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.1.1666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 406.272638][ T30] audit: type=1326 audit(1749254050.082:2223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6083 comm="syz.1.1666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 406.312403][ T6097] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1667: corrupted inode contents [ 406.338751][ T8] handle_bad_sector: 58 callbacks suppressed [ 406.338772][ T8] attempt to access beyond end of device [ 406.338772][ T8] loop2: rw=1, want=1041, limit=128 [ 406.408163][ T6097] EXT4-fs error (device loop0): ext4_dirty_inode:6070: inode #2: comm syz.0.1667: mark_inode_dirty error [ 406.438160][ T6097] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1667: corrupted inode contents [ 406.472082][ T6108] loop2: detected capacity change from 0 to 512 [ 406.487824][ T6097] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.1667: mark_inode_dirty error [ 406.522087][ T6108] EXT4-fs error (device loop2): ext4_orphan_get:1427: comm syz.2.1670: bad orphan inode 15 [ 406.544525][ T6108] ext4_test_bit(bit=14, block=5) = 0 [ 406.561272][ T6108] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 406.631073][ T6108] EXT4-fs (loop2): re-mounted. Opts: . Quota mode: none. [ 406.895137][ T6116] loop4: detected capacity change from 0 to 512 [ 406.986721][ T6116] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 407.003640][ T6116] ext4 filesystem being mounted at /334/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 407.019101][ T6116] EXT4-fs error (device loop4): ext4_do_update_inode:5234: inode #2: comm syz.4.1672: corrupted inode contents [ 407.032675][ T6116] EXT4-fs error (device loop4): ext4_dirty_inode:6070: inode #2: comm syz.4.1672: mark_inode_dirty error [ 407.045226][ T6116] EXT4-fs error (device loop4): ext4_do_update_inode:5234: inode #2: comm syz.4.1672: corrupted inode contents [ 407.058050][ T6116] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.1672: mark_inode_dirty error [ 408.576233][ T610] Bluetooth: hci0: command 0x1001 tx timeout [ 408.582341][ T668] Bluetooth: hci0: sending frame failed (-49) [ 409.487974][ T6138] loop2: detected capacity change from 0 to 512 [ 409.491576][ T6140] tipc: Enabling of bearer rejected, already enabled [ 409.500569][ T6136] loop1: detected capacity change from 0 to 128 [ 409.569900][ T6138] EXT4-fs error (device loop2): ext4_orphan_get:1427: comm syz.2.1680: bad orphan inode 15 [ 409.600707][ T6138] ext4_test_bit(bit=14, block=5) = 0 [ 409.606050][ T6138] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 409.655145][ T6136] device wireguard0 entered promiscuous mode [ 409.817547][ T10] attempt to access beyond end of device [ 409.817547][ T10] loop1: rw=1, want=1041, limit=128 [ 411.091196][ T610] Bluetooth: hci0: command 0x1009 tx timeout [ 411.232991][ T6160] loop1: detected capacity change from 0 to 1024 [ 411.639639][ T6163] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1686'. [ 411.652905][ T6160] EXT4-fs (loop1): Ignoring removed orlov option [ 411.677010][ T6160] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 411.713207][ T6165] loop4: detected capacity change from 0 to 512 [ 411.721978][ T6160] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 411.767812][ T6165] EXT4-fs error (device loop4): ext4_orphan_get:1427: comm syz.4.1687: bad orphan inode 15 [ 411.778945][ T6165] ext4_test_bit(bit=14, block=5) = 0 [ 411.803057][ T6165] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 411.947697][ T30] kauditd_printk_skb: 71 callbacks suppressed [ 411.947712][ T30] audit: type=1326 audit(1749254056.702:2295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6170 comm="syz.2.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 411.984978][ T30] audit: type=1326 audit(1749254056.702:2296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6170 comm="syz.2.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 412.008740][ T30] audit: type=1326 audit(1749254056.702:2297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6170 comm="syz.2.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 412.038528][ T30] audit: type=1326 audit(1749254056.712:2298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6170 comm="syz.2.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 412.062159][ T30] audit: type=1326 audit(1749254056.712:2299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6170 comm="syz.2.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 412.096524][ T30] audit: type=1326 audit(1749254056.732:2300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6170 comm="syz.2.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 412.124641][ T30] audit: type=1326 audit(1749254056.742:2301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6170 comm="syz.2.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 412.162023][ T6177] loop2: detected capacity change from 0 to 128 [ 412.173364][ T30] audit: type=1326 audit(1749254056.742:2302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6170 comm="syz.2.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 412.275914][ T6177] EXT4-fs (loop2): Ignoring removed nobh option [ 412.430270][ T6186] loop1: detected capacity change from 0 to 512 [ 414.470648][ T6186] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 414.487176][ T6186] ext4 filesystem being mounted at /342/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 414.500604][ T6186] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1688: corrupted inode contents [ 414.513713][ T6186] EXT4-fs error (device loop1): ext4_dirty_inode:6070: inode #2: comm syz.1.1688: mark_inode_dirty error [ 414.525293][ T6177] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue. Quota mode: none. [ 414.525413][ T6186] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1688: corrupted inode contents [ 414.550037][ T6177] ext4 filesystem being mounted at /348/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 414.560501][ T6186] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.1688: mark_inode_dirty error [ 414.635319][ T6194] loop4: detected capacity change from 0 to 16 [ 414.693335][ T6196] tipc: Enabling of bearer rejected, failed to enable media [ 414.703167][ T30] audit: type=1326 audit(1749254059.462:2303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6195 comm="syz.3.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 414.730313][ T6194] erofs: (device loop4): erofs_read_inode: unsupported chunk format 7fff of nid 36 [ 414.798364][ T30] audit: type=1326 audit(1749254059.512:2304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6195 comm="syz.3.1696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 414.903207][ T6173] loop0: detected capacity change from 0 to 40427 [ 414.965766][ T6173] F2FS-fs (loop0): Found nat_bits in checkpoint [ 414.979991][ T8] Bluetooth: hci0: Frame reassembly failed (-84) [ 415.080180][ T6173] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 415.220129][ T6207] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1698'. [ 415.328089][ T6213] loop0: detected capacity change from 0 to 256 [ 415.520113][ T6214] 9pnet: Insufficient options for proto=fd [ 416.140530][ T6223] 9pnet: Insufficient options for proto=fd [ 416.530355][ T6227] loop0: detected capacity change from 0 to 128 [ 416.680248][ T6231] loop1: detected capacity change from 0 to 512 [ 416.723974][ T6227] device wireguard0 entered promiscuous mode [ 416.740689][ T6231] EXT4-fs error (device loop1): ext4_orphan_get:1427: comm syz.1.1707: bad orphan inode 15 [ 416.770147][ T6231] ext4_test_bit(bit=14, block=5) = 0 [ 416.780065][ T6231] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 416.901286][ T55] attempt to access beyond end of device [ 416.901286][ T55] loop0: rw=1, want=1041, limit=128 [ 416.993549][ T30] kauditd_printk_skb: 41 callbacks suppressed [ 416.993565][ T30] audit: type=1400 audit(1749254061.752:2346): avc: denied { unlink } for pid=6240 comm="syz.0.1708" name="#5" dev="tmpfs" ino=1881 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 416.999803][ T3310] Bluetooth: hci0: command 0x1003 tx timeout [ 417.006071][ T6194] loop4: detected capacity change from 0 to 131072 [ 417.034925][ T668] Bluetooth: hci0: sending frame failed (-49) [ 417.080274][ T6194] F2FS-fs (loop4): Wrong SSA boundary, start(3584) end(4096) blocks(1024) [ 417.088849][ T6194] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 417.106448][ T6246] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1711'. [ 417.119924][ T6194] F2FS-fs (loop4): Unrecognized mount option "½!®`äíR¤ì" or missing value [ 417.130421][ T6249] FAULT_INJECTION: forcing a failure. [ 417.130421][ T6249] name failslab, interval 1, probability 0, space 0, times 0 [ 417.151321][ T6249] CPU: 1 PID: 6249 Comm: syz.0.1712 Not tainted 5.15.185-syzkaller-00339-ge678c93d43cc #0 [ 417.161269][ T6249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 417.165330][ T6251] tipc: Enabling of bearer rejected, failed to enable media [ 417.171336][ T6249] Call Trace: [ 417.171344][ T6249] [ 417.171351][ T6249] __dump_stack+0x21/0x30 [ 417.190107][ T6249] dump_stack_lvl+0xee/0x150 [ 417.194703][ T6249] ? show_regs_print_info+0x20/0x20 [ 417.199903][ T6249] ? file_end_write+0x1b0/0x1b0 [ 417.204751][ T6249] ? __secure_computing+0x290/0x290 [ 417.209951][ T6249] dump_stack+0x15/0x20 [ 417.214101][ T6249] should_fail+0x3c1/0x510 [ 417.218513][ T6249] __should_failslab+0xa4/0xe0 [ 417.223278][ T6249] should_failslab+0x9/0x20 [ 417.227780][ T6249] slab_pre_alloc_hook+0x3b/0xe0 [ 417.232720][ T6249] ? getname_flags+0xb9/0x500 [ 417.237397][ T6249] kmem_cache_alloc+0x44/0x260 [ 417.242156][ T6249] getname_flags+0xb9/0x500 [ 417.246657][ T6249] __x64_sys_link+0x5f/0x90 [ 417.251162][ T6249] x64_sys_call+0x34d/0x9a0 [ 417.255658][ T6249] do_syscall_64+0x4c/0xa0 [ 417.260066][ T6249] ? clear_bhb_loop+0x50/0xa0 [ 417.264733][ T6249] ? clear_bhb_loop+0x50/0xa0 [ 417.269402][ T6249] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 417.275294][ T6249] RIP: 0033:0x7f2e743f6929 [ 417.279702][ T6249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 417.299302][ T6249] RSP: 002b:00007f2e72a5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000056 [ 417.307720][ T6249] RAX: ffffffffffffffda RBX: 00007f2e7461dfa0 RCX: 00007f2e743f6929 [ 417.315702][ T6249] RDX: 0000000000000000 RSI: 0000200000000300 RDI: 0000200000000200 [ 417.323670][ T6249] RBP: 00007f2e72a5f090 R08: 0000000000000000 R09: 0000000000000000 [ 417.331664][ T6249] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 417.339632][ T6249] R13: 0000000000000000 R14: 00007f2e7461dfa0 R15: 00007ffe303e8578 [ 417.347628][ T6249] [ 417.352952][ T30] audit: type=1326 audit(1749254062.112:2347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.3.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 417.353873][ T6252] loop1: detected capacity change from 0 to 512 [ 417.378184][ T30] audit: type=1326 audit(1749254062.132:2348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.3.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 417.413861][ T30] audit: type=1326 audit(1749254062.172:2349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.3.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 417.455634][ T6257] loop4: detected capacity change from 0 to 128 [ 417.473437][ T6252] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 417.489918][ T6252] ext4 filesystem being mounted at /347/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 417.501886][ T6247] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1709: corrupted inode contents [ 417.513822][ T6247] EXT4-fs error (device loop1): ext4_dirty_inode:6070: inode #2: comm syz.1.1709: mark_inode_dirty error [ 417.526407][ T6247] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1709: corrupted inode contents [ 417.538401][ T6247] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.1709: mark_inode_dirty error [ 417.578084][ T30] audit: type=1326 audit(1749254062.192:2350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.3.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 417.604736][ T6257] device wireguard0 entered promiscuous mode [ 417.620266][ T30] audit: type=1326 audit(1749254062.202:2351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.3.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 417.681100][ T30] audit: type=1326 audit(1749254062.202:2352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.3.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 417.731761][ T2248] attempt to access beyond end of device [ 417.731761][ T2248] loop4: rw=1, want=1041, limit=128 [ 417.738614][ T30] audit: type=1326 audit(1749254062.202:2353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.3.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 417.810943][ T30] audit: type=1326 audit(1749254062.202:2354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.3.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 417.860075][ T30] audit: type=1326 audit(1749254062.202:2355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6250 comm="syz.3.1713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 417.984131][ T6274] FAULT_INJECTION: forcing a failure. [ 417.984131][ T6274] name failslab, interval 1, probability 0, space 0, times 0 [ 418.020636][ T6274] CPU: 1 PID: 6274 Comm: syz.1.1719 Not tainted 5.15.185-syzkaller-00339-ge678c93d43cc #0 [ 418.030665][ T6274] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 418.040740][ T6274] Call Trace: [ 418.044032][ T6274] [ 418.046973][ T6274] __dump_stack+0x21/0x30 [ 418.051314][ T6274] dump_stack_lvl+0xee/0x150 [ 418.055913][ T6274] ? show_regs_print_info+0x20/0x20 [ 418.061125][ T6274] ? memset+0x35/0x40 [ 418.065126][ T6274] dump_stack+0x15/0x20 [ 418.069301][ T6274] should_fail+0x3c1/0x510 [ 418.073727][ T6274] __should_failslab+0xa4/0xe0 [ 418.078500][ T6274] should_failslab+0x9/0x20 [ 418.083019][ T6274] slab_pre_alloc_hook+0x3b/0xe0 [ 418.087978][ T6274] ? getname_flags+0xb9/0x500 [ 418.092690][ T6274] kmem_cache_alloc+0x44/0x260 [ 418.097469][ T6274] getname_flags+0xb9/0x500 [ 418.101990][ T6274] user_path_at_empty+0x30/0x1c0 [ 418.106941][ T6274] do_utimes+0x138/0x2a0 [ 418.111203][ T6274] ? vfs_utimes+0x570/0x570 [ 418.115711][ T6274] __x64_sys_utime+0x12a/0x1d0 [ 418.120477][ T6274] ? __ia32_sys_utimes+0x220/0x220 [ 418.125595][ T6274] ? __bpf_trace_sys_enter+0x62/0x70 [ 418.130891][ T6274] ? trace_sys_enter+0x3d/0x50 [ 418.135680][ T6274] x64_sys_call+0x8a2/0x9a0 [ 418.140196][ T6274] do_syscall_64+0x4c/0xa0 [ 418.144638][ T6274] ? clear_bhb_loop+0x50/0xa0 [ 418.149327][ T6274] ? clear_bhb_loop+0x50/0xa0 [ 418.154014][ T6274] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 418.159938][ T6274] RIP: 0033:0x7fba488ee929 [ 418.164358][ T6274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 418.183972][ T6274] RSP: 002b:00007fba46f57038 EFLAGS: 00000246 ORIG_RAX: 0000000000000084 [ 418.192406][ T6274] RAX: ffffffffffffffda RBX: 00007fba48b15fa0 RCX: 00007fba488ee929 [ 418.200391][ T6274] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 418.208364][ T6274] RBP: 00007fba46f57090 R08: 0000000000000000 R09: 0000000000000000 [ 418.216339][ T6274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 418.224318][ T6274] R13: 0000000000000000 R14: 00007fba48b15fa0 R15: 00007ffff153cc88 [ 418.232305][ T6274] [ 418.381604][ T6300] loop3: detected capacity change from 0 to 128 [ 418.457666][ T6300] device wireguard0 entered promiscuous mode [ 419.306389][ T397] attempt to access beyond end of device [ 419.306389][ T397] loop3: rw=1, want=1041, limit=128 [ 419.325442][ T6311] loop0: detected capacity change from 0 to 512 [ 419.399327][ T6313] loop3: detected capacity change from 0 to 512 [ 419.452627][ T6311] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 419.504733][ T6313] EXT4-fs error (device loop3): ext4_orphan_get:1427: comm syz.3.1731: bad orphan inode 15 [ 419.521609][ T6311] ext4 filesystem being mounted at /348/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 419.533128][ T6313] ext4_test_bit(bit=14, block=5) = 0 [ 419.538480][ T6313] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 419.597704][ T3310] Bluetooth: hci0: command 0x1001 tx timeout [ 419.603828][ T668] Bluetooth: hci0: sending frame failed (-49) [ 419.672421][ T6311] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1730: corrupted inode contents [ 419.694851][ T6318] loop4: detected capacity change from 0 to 1024 [ 419.708163][ T6311] EXT4-fs error (device loop0): ext4_dirty_inode:6070: inode #2: comm syz.0.1730: mark_inode_dirty error [ 419.728650][ T6311] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1730: corrupted inode contents [ 419.742083][ T6311] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.1730: mark_inode_dirty error [ 419.769792][ T6318] EXT4-fs (loop4): Ignoring removed orlov option [ 419.776208][ T6318] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option [ 419.825111][ T6318] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 419.952998][ T6324] loop3: detected capacity change from 0 to 512 [ 420.144448][ T6324] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 420.254248][ T6329] 9pnet: Insufficient options for proto=fd [ 420.871342][ T6324] EXT4-fs (loop3): 1 truncate cleaned up [ 420.877346][ T6324] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 421.825472][ T6332] loop1: detected capacity change from 0 to 1024 [ 421.849967][ T6332] EXT4-fs (loop1): Ignoring removed orlov option [ 421.866504][ T6332] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 421.874660][ T3310] Bluetooth: hci0: command 0x1009 tx timeout [ 421.926656][ T6332] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 421.978055][ T6341] FAULT_INJECTION: forcing a failure. [ 421.978055][ T6341] name failslab, interval 1, probability 0, space 0, times 0 [ 422.014239][ T6341] CPU: 0 PID: 6341 Comm: syz.4.1739 Not tainted 5.15.185-syzkaller-00339-ge678c93d43cc #0 [ 422.024185][ T6341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 422.034340][ T6341] Call Trace: [ 422.037676][ T6341] [ 422.040614][ T6341] __dump_stack+0x21/0x30 [ 422.044952][ T6341] dump_stack_lvl+0xee/0x150 [ 422.049895][ T6341] ? show_regs_print_info+0x20/0x20 [ 422.055101][ T6341] dump_stack+0x15/0x20 [ 422.059265][ T6341] should_fail+0x3c1/0x510 [ 422.063693][ T6341] __should_failslab+0xa4/0xe0 [ 422.068473][ T6341] should_failslab+0x9/0x20 [ 422.072995][ T6341] slab_pre_alloc_hook+0x3b/0xe0 [ 422.077948][ T6341] ? getname_flags+0xb9/0x500 [ 422.082622][ T6341] kmem_cache_alloc+0x44/0x260 [ 422.087394][ T6341] getname_flags+0xb9/0x500 [ 422.091905][ T6341] user_path_at_empty+0x30/0x1c0 [ 422.096858][ T6341] do_utimes+0x138/0x2a0 [ 422.101117][ T6341] ? vfs_utimes+0x570/0x570 [ 422.105888][ T6341] __x64_sys_utime+0x12a/0x1d0 [ 422.110678][ T6341] ? __ia32_sys_utimes+0x220/0x220 [ 422.115791][ T6341] ? __bpf_trace_sys_enter+0x62/0x70 [ 422.121076][ T6341] ? trace_sys_enter+0x3d/0x50 [ 422.125848][ T6341] x64_sys_call+0x8a2/0x9a0 [ 422.130380][ T6341] do_syscall_64+0x4c/0xa0 [ 422.134802][ T6341] ? clear_bhb_loop+0x50/0xa0 [ 422.139491][ T6341] ? clear_bhb_loop+0x50/0xa0 [ 422.144173][ T6341] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 422.150076][ T6341] RIP: 0033:0x7f5dcb9cb929 [ 422.154500][ T6341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 422.174113][ T6341] RSP: 002b:00007f5dca034038 EFLAGS: 00000246 ORIG_RAX: 0000000000000084 [ 422.182535][ T6341] RAX: ffffffffffffffda RBX: 00007f5dcbbf2fa0 RCX: 00007f5dcb9cb929 [ 422.190511][ T6341] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 422.198488][ T6341] RBP: 00007f5dca034090 R08: 0000000000000000 R09: 0000000000000000 [ 422.206466][ T6341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 422.214455][ T6341] R13: 0000000000000000 R14: 00007f5dcbbf2fa0 R15: 00007fff8170a908 [ 422.222476][ T6341] [ 422.974419][ T6354] loop4: detected capacity change from 0 to 512 [ 423.078976][ T6354] EXT4-fs (loop4): Ignoring removed mblk_io_submit option [ 423.300069][ T6354] EXT4-fs (loop4): Test dummy encryption mode enabled [ 423.306891][ T6354] EXT4-fs (loop4): Ignoring removed mblk_io_submit option [ 423.350174][ T6354] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 423.400827][ T6354] EXT4-fs (loop4): 1 truncate cleaned up [ 423.408016][ T6354] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,mblk_io_submit,inlinecrypt,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,. Quota mode: none. [ 423.450861][ T6365] loop1: detected capacity change from 0 to 1024 [ 423.516591][ T30] kauditd_printk_skb: 45 callbacks suppressed [ 423.516608][ T30] audit: type=1400 audit(1749254068.272:2401): avc: denied { ioctl } for pid=6353 comm="syz.4.1744" path="/352/bus/memory.stat" dev="loop4" ino=18 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 423.551260][ T6365] EXT4-fs (loop1): Ignoring removed orlov option [ 423.557636][ T6365] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 423.581388][ T6365] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 423.635290][ T30] audit: type=1326 audit(1749254068.392:2402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6372 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 423.658905][ T30] audit: type=1326 audit(1749254068.392:2403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6372 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 423.688919][ T30] audit: type=1326 audit(1749254068.432:2404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6372 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 423.722272][ T30] audit: type=1326 audit(1749254068.432:2405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6372 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 423.746752][ T30] audit: type=1326 audit(1749254068.432:2406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6372 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 423.772845][ T6378] device pim6reg1 entered promiscuous mode [ 423.780648][ T30] audit: type=1326 audit(1749254068.472:2407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6372 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 423.804900][ T30] audit: type=1326 audit(1749254068.472:2408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6372 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 423.828454][ T30] audit: type=1326 audit(1749254068.472:2409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6372 comm="syz.3.1750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 423.912614][ T6382] 9pnet: Insufficient options for proto=fd [ 424.790463][ T6394] loop3: detected capacity change from 0 to 128 [ 425.045269][ T6402] loop4: detected capacity change from 0 to 512 [ 425.056832][ T6404] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1759'. [ 425.066001][ T6399] device wireguard0 entered promiscuous mode [ 425.098718][ T6402] EXT4-fs error (device loop4): ext4_orphan_get:1427: comm syz.4.1758: bad orphan inode 15 [ 425.120708][ T6402] ext4_test_bit(bit=14, block=5) = 0 [ 425.126228][ T6402] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 425.151814][ T55] Bluetooth: hci0: Frame reassembly failed (-84) [ 425.170213][ T6412] loop1: detected capacity change from 0 to 512 [ 425.183371][ T8] attempt to access beyond end of device [ 425.183371][ T8] loop3: rw=1, want=1041, limit=128 [ 425.228778][ T6412] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 425.262575][ T6412] ext4 filesystem being mounted at /357/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 425.305193][ T6412] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1757: corrupted inode contents [ 425.317650][ T6412] EXT4-fs error (device loop1): ext4_dirty_inode:6070: inode #2: comm syz.1.1757: mark_inode_dirty error [ 425.329438][ T6412] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1757: corrupted inode contents [ 425.342274][ T6412] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.1757: mark_inode_dirty error [ 425.354270][ T610] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 425.446419][ T6420] device pim6reg1 entered promiscuous mode [ 425.471405][ T8] Bluetooth: hci1: Frame reassembly failed (-84) [ 425.506066][ T6422] loop3: detected capacity change from 0 to 8192 [ 425.561353][ T6422] loop3: p1 p2[DM] p4 [ 425.578297][ T6422] loop3: p1 size 196608 extends beyond EOD, truncated [ 425.597486][ T6422] loop3: p2 start 4292936063 is beyond EOD, truncated [ 425.609827][ T610] usb 1-1: Using ep0 maxpacket: 16 [ 425.612301][ T6422] loop3: p4 size 50331648 extends beyond EOD, [ 425.615313][ T8] Bluetooth: hci2: Frame reassembly failed (-84) [ 425.617142][ T6422] truncated [ 425.660985][ T6428] loop4: detected capacity change from 0 to 8192 [ 425.712408][ T6428] loop4: p1 p2[DM] p4 [ 425.716582][ T6428] loop4: p1 size 196608 extends beyond EOD, truncated [ 425.733656][ T6428] loop4: p2 start 4292936063 is beyond EOD, truncated [ 425.743622][ T6428] loop4: p4 size 50331648 extends beyond EOD, truncated [ 425.759847][ T610] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 425.773832][ T610] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 425.784058][ T610] usb 1-1: New USB device found, idVendor=1b96, idProduct=0008, bcdDevice= 0.00 [ 425.793403][ T610] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 425.832268][ T610] usb 1-1: config 0 descriptor?? [ 425.890619][ T610] usbhid 1-1:0.0: can't add hid device: -22 [ 425.896650][ T610] usbhid: probe of 1-1:0.0 failed with error -22 [ 426.106465][ T610] usb 1-1: USB disconnect, device number 9 [ 427.506663][ T6437] 9pnet: Insufficient options for proto=fd [ 427.559865][ T304] Bluetooth: hci1: command 0x1003 tx timeout [ 427.590039][ T695] Bluetooth: hci1: sending frame failed (-49) [ 427.640178][ T304] Bluetooth: hci2: command 0x1003 tx timeout [ 427.658746][ T695] Bluetooth: hci2: sending frame failed (-49) [ 427.759818][ T3301] Bluetooth: hci0: command 0x1003 tx timeout [ 427.765879][ T695] Bluetooth: hci0: sending frame failed (-49) [ 427.768127][ T8] Bluetooth: hci3: Frame reassembly failed (-84) [ 428.417768][ T6450] loop0: detected capacity change from 0 to 512 [ 428.538486][ T6450] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 428.557002][ T6450] ext4 filesystem being mounted at /354/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 428.598362][ T6450] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1773: corrupted inode contents [ 428.610680][ T6450] EXT4-fs error (device loop0): ext4_dirty_inode:6070: inode #2: comm syz.0.1773: mark_inode_dirty error [ 428.622897][ T6450] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1773: corrupted inode contents [ 428.635249][ T6450] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.1773: mark_inode_dirty error [ 429.544372][ T6454] device pim6reg1 entered promiscuous mode [ 429.629819][ T287] Bluetooth: hci1: command 0x1001 tx timeout [ 429.636537][ T695] Bluetooth: hci1: sending frame failed (-49) [ 429.658309][ T6460] device pim6reg1 entered promiscuous mode [ 429.710086][ T287] Bluetooth: hci2: command 0x1001 tx timeout [ 429.716437][ T695] Bluetooth: hci2: sending frame failed (-49) [ 429.789783][ T287] Bluetooth: hci0: command 0x1001 tx timeout [ 429.795823][ T695] Bluetooth: hci0: sending frame failed (-49) [ 429.799853][ T3301] Bluetooth: hci3: command 0x1003 tx timeout [ 429.808031][ T695] Bluetooth: hci3: sending frame failed (-49) [ 431.725620][ T304] Bluetooth: hci1: command 0x1009 tx timeout [ 431.789863][ T304] Bluetooth: hci2: command 0x1009 tx timeout [ 431.842528][ T6470] netlink: 'syz.0.1780': attribute type 4 has an invalid length. [ 431.851238][ T30] audit: type=1400 audit(1749254076.612:2410): avc: denied { mount } for pid=6469 comm="syz.0.1780" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 431.879799][ T304] Bluetooth: hci3: command 0x1001 tx timeout [ 431.885849][ T695] Bluetooth: hci3: sending frame failed (-49) [ 431.891983][ T304] Bluetooth: hci0: command 0x1009 tx timeout [ 432.189890][ T3301] usb 1-1: new full-speed USB device number 10 using dummy_hcd [ 432.549897][ T3301] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 432.560867][ T3301] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 432.573738][ T3301] usb 1-1: New USB device found, idVendor=05ac, idProduct=0264, bcdDevice= 0.00 [ 432.582785][ T3301] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 432.591517][ T3301] usb 1-1: config 0 descriptor?? [ 432.609836][ T6470] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 433.050663][ T6470] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8 sclass=netlink_route_socket pid=6470 comm=syz.0.1780 [ 433.139958][ T3301] usbhid 1-1:0.0: can't add hid device: -71 [ 433.145984][ T3301] usbhid: probe of 1-1:0.0 failed with error -71 [ 433.153843][ T3301] usb 1-1: USB disconnect, device number 10 [ 433.584366][ T30] audit: type=1400 audit(1749254078.342:2411): avc: denied { unmount } for pid=282 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 433.949765][ T304] Bluetooth: hci3: command 0x1009 tx timeout [ 435.340918][ T6483] FAULT_INJECTION: forcing a failure. [ 435.340918][ T6483] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 435.354179][ T6483] CPU: 1 PID: 6483 Comm: syz.2.1785 Not tainted 5.15.185-syzkaller-00339-ge678c93d43cc #0 [ 435.364059][ T6483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 435.374105][ T6483] Call Trace: [ 435.377411][ T6483] [ 435.380331][ T6483] __dump_stack+0x21/0x30 [ 435.384650][ T6483] dump_stack_lvl+0xee/0x150 [ 435.389229][ T6483] ? show_regs_print_info+0x20/0x20 [ 435.394411][ T6483] dump_stack+0x15/0x20 [ 435.398548][ T6483] should_fail+0x3c1/0x510 [ 435.402951][ T6483] should_fail_usercopy+0x1a/0x20 [ 435.407959][ T6483] _copy_to_user+0x20/0x90 [ 435.412364][ T6483] simple_read_from_buffer+0xe9/0x160 [ 435.417721][ T6483] proc_fail_nth_read+0x19a/0x210 [ 435.422730][ T6483] ? proc_fault_inject_write+0x2f0/0x2f0 [ 435.428346][ T6483] ? security_file_permission+0x83/0xa0 [ 435.433883][ T6483] ? proc_fault_inject_write+0x2f0/0x2f0 [ 435.439508][ T6483] vfs_read+0x282/0xbe0 [ 435.443671][ T6483] ? kernel_read+0x1f0/0x1f0 [ 435.448245][ T6483] ? __kasan_check_write+0x14/0x20 [ 435.453342][ T6483] ? mutex_lock+0x95/0x1a0 [ 435.457746][ T6483] ? wait_for_completion_killable_timeout+0x10/0x10 [ 435.464319][ T6483] ? __fget_files+0x2c4/0x320 [ 435.468987][ T6483] ? __fdget_pos+0x2d2/0x380 [ 435.473561][ T6483] ? ksys_read+0x71/0x240 [ 435.477873][ T6483] ksys_read+0x140/0x240 [ 435.482120][ T6483] ? vfs_write+0xf70/0xf70 [ 435.486526][ T6483] ? __bpf_trace_sys_enter+0x62/0x70 [ 435.491802][ T6483] __x64_sys_read+0x7b/0x90 [ 435.496293][ T6483] x64_sys_call+0x96d/0x9a0 [ 435.500790][ T6483] do_syscall_64+0x4c/0xa0 [ 435.505191][ T6483] ? clear_bhb_loop+0x50/0xa0 [ 435.509853][ T6483] ? clear_bhb_loop+0x50/0xa0 [ 435.514516][ T6483] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 435.520398][ T6483] RIP: 0033:0x7feeb18aa33c [ 435.524804][ T6483] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48 [ 435.544394][ T6483] RSP: 002b:00007feeaff14030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 435.552800][ T6483] RAX: ffffffffffffffda RBX: 00007feeb1ad2fa0 RCX: 00007feeb18aa33c [ 435.560777][ T6483] RDX: 000000000000000f RSI: 00007feeaff140a0 RDI: 0000000000000006 [ 435.568764][ T6483] RBP: 00007feeaff14090 R08: 0000000000000000 R09: 0000000000000000 [ 435.576749][ T6483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 435.584734][ T6483] R13: 0000000000000000 R14: 00007feeb1ad2fa0 R15: 00007ffc1fd0a9e8 [ 435.592727][ T6483] [ 435.617273][ T6491] device pim6reg1 entered promiscuous mode [ 435.692966][ T6496] loop2: detected capacity change from 0 to 128 [ 435.812072][ T6496] device wireguard0 entered promiscuous mode [ 435.956546][ T397] attempt to access beyond end of device [ 435.956546][ T397] loop2: rw=1, want=1041, limit=128 [ 436.012953][ T6502] loop3: detected capacity change from 0 to 512 [ 436.105275][ T6502] EXT4-fs error (device loop3): ext4_orphan_get:1427: comm syz.3.1792: bad orphan inode 15 [ 436.116253][ T6506] loop4: detected capacity change from 0 to 1024 [ 436.122439][ T6502] ext4_test_bit(bit=14, block=5) = 0 [ 436.127956][ T6502] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 436.139637][ T6506] EXT4-fs (loop4): Ignoring removed orlov option [ 436.160333][ T6506] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option [ 436.171448][ T6506] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 436.240004][ T6514] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1794'. [ 436.265009][ T6516] loop4: detected capacity change from 0 to 256 [ 436.361067][ T397] Bluetooth: hci0: Frame reassembly failed (-84) [ 436.949782][ T8] Bluetooth: hci1: Frame reassembly failed (-84) [ 437.504802][ T6531] device pim6reg1 entered promiscuous mode [ 437.672385][ T6537] loop3: detected capacity change from 0 to 256 [ 438.477538][ T6540] loop1: detected capacity change from 0 to 8192 [ 438.523298][ T6542] tipc: Enabling of bearer rejected, failed to enable media [ 438.539402][ T30] audit: type=1326 audit(1749254083.292:2412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.3.1804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 438.594459][ T30] audit: type=1326 audit(1749254083.322:2413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.3.1804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 438.666603][ T30] audit: type=1326 audit(1749254083.322:2414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.3.1804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 438.738709][ T30] audit: type=1326 audit(1749254083.322:2415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.3.1804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 438.760072][ T3310] Bluetooth: hci0: command 0x1003 tx timeout [ 438.768296][ T47] Bluetooth: hci0: sending frame failed (-49) [ 438.769901][ T30] audit: type=1326 audit(1749254083.322:2416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.3.1804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 438.775282][ T6540] loop1: p1 p2[DM] p4 [ 438.799351][ T30] audit: type=1326 audit(1749254083.322:2417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.3.1804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 438.802625][ T6540] loop1: p1 size 196608 extends beyond EOD, truncated [ 438.832879][ T30] audit: type=1326 audit(1749254083.322:2418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.3.1804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 438.856676][ T30] audit: type=1326 audit(1749254083.322:2419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.3.1804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 438.880315][ T6540] loop1: p2 start 4292936063 is beyond EOD, truncated [ 438.902002][ T6540] loop1: p4 size 50331648 extends beyond EOD, truncated [ 438.964557][ T30] audit: type=1326 audit(1749254083.322:2420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.3.1804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 438.997873][ T30] audit: type=1326 audit(1749254083.322:2421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6541 comm="syz.3.1804" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf0daef929 code=0x7ffc0000 [ 439.021475][ T1956] Bluetooth: hci1: command 0x1003 tx timeout [ 439.027658][ T47] Bluetooth: hci1: sending frame failed (-49) [ 439.219418][ T6550] loop2: detected capacity change from 0 to 512 [ 439.262017][ T6550] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 439.420236][ T6550] EXT4-fs (loop2): 1 truncate cleaned up [ 439.425967][ T6550] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 440.300148][ T1956] Bluetooth: hci2: command 0x1003 tx timeout [ 440.306525][ T47] Bluetooth: hci2: sending frame failed (-49) [ 440.346566][ T6554] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1807'. [ 440.576263][ T6562] loop3: detected capacity change from 0 to 512 [ 440.651393][ T6562] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 440.668088][ T6562] ext4 filesystem being mounted at /350/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 440.689989][ T6562] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1810: corrupted inode contents [ 440.702719][ T6562] EXT4-fs error (device loop3): ext4_dirty_inode:6070: inode #2: comm syz.3.1810: mark_inode_dirty error [ 440.715046][ T6562] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1810: corrupted inode contents [ 440.727205][ T6562] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.1810: mark_inode_dirty error [ 440.829724][ T1956] Bluetooth: hci0: command 0x1001 tx timeout [ 440.836077][ T47] Bluetooth: hci0: sending frame failed (-49) [ 441.069738][ T1956] Bluetooth: hci1: command 0x1001 tx timeout [ 441.076275][ T47] Bluetooth: hci1: sending frame failed (-49) [ 441.356005][ T6572] device pim6reg1 entered promiscuous mode [ 441.426358][ T6574] loop2: detected capacity change from 0 to 128 [ 441.490397][ T6574] EXT4-fs (loop2): Ignoring removed nobh option [ 441.498063][ T6574] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue. Quota mode: none. [ 441.510264][ T6574] ext4 filesystem being mounted at /367/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 441.573805][ T6579] loop2: detected capacity change from 0 to 128 [ 441.641822][ T6579] device wireguard0 entered promiscuous mode [ 441.748980][ T6583] 9pnet: Insufficient options for proto=fd [ 441.840690][ T397] attempt to access beyond end of device [ 441.840690][ T397] loop2: rw=1, want=1041, limit=128 [ 442.944242][ T581] Bluetooth: hci2: command 0x1001 tx timeout [ 442.950448][ T47] Bluetooth: hci2: sending frame failed (-49) [ 442.957974][ T1956] Bluetooth: hci0: command 0x1009 tx timeout [ 443.149784][ T1956] Bluetooth: hci1: command 0x1009 tx timeout [ 443.184698][ T6592] loop3: detected capacity change from 0 to 512 [ 443.322217][ T6592] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 443.358697][ T6592] ext4 filesystem being mounted at /352/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 443.407823][ T6592] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1818: corrupted inode contents [ 443.442922][ T6592] EXT4-fs error (device loop3): ext4_dirty_inode:6070: inode #2: comm syz.3.1818: mark_inode_dirty error [ 443.479802][ T6592] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1818: corrupted inode contents [ 443.509975][ T6592] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.1818: mark_inode_dirty error [ 443.699436][ T6598] loop2: detected capacity change from 0 to 512 [ 443.740252][ T6598] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 443.757060][ T6598] EXT4-fs (loop2): 1 truncate cleaned up [ 443.763014][ T6598] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 444.082135][ T6603] loop2: detected capacity change from 0 to 512 [ 444.279844][ T6603] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 444.296502][ T6603] ext4 filesystem being mounted at /372/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 444.356240][ T6603] EXT4-fs error (device loop2): ext4_do_update_inode:5234: inode #2: comm syz.2.1821: corrupted inode contents [ 444.369438][ T6603] EXT4-fs error (device loop2): ext4_dirty_inode:6070: inode #2: comm syz.2.1821: mark_inode_dirty error [ 444.381842][ T6603] EXT4-fs error (device loop2): ext4_do_update_inode:5234: inode #2: comm syz.2.1821: corrupted inode contents [ 444.394422][ T6603] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.1821: mark_inode_dirty error [ 445.039353][ T1956] Bluetooth: hci2: command 0x1009 tx timeout [ 446.635669][ T6621] loop3: detected capacity change from 0 to 128 [ 446.680817][ T6621] EXT4-fs (loop3): Ignoring removed nobh option [ 446.869049][ T6621] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue. Quota mode: none. [ 446.900984][ T6621] ext4 filesystem being mounted at /356/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 447.583332][ T6626] loop2: detected capacity change from 0 to 1024 [ 447.701251][ T6626] EXT4-fs (loop2): Ignoring removed orlov option [ 447.707711][ T6626] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option [ 447.970096][ T6637] 9pnet: Insufficient options for proto=fd [ 448.046525][ T6626] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 448.787992][ T6643] loop4: detected capacity change from 0 to 512 [ 448.983608][ T6643] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 449.000269][ T6643] ext4 filesystem being mounted at /365/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 449.063022][ T6643] EXT4-fs error (device loop4): ext4_do_update_inode:5234: inode #2: comm syz.4.1832: corrupted inode contents [ 449.075834][ T6643] EXT4-fs error (device loop4): ext4_dirty_inode:6070: inode #2: comm syz.4.1832: mark_inode_dirty error [ 449.088239][ T6643] EXT4-fs error (device loop4): ext4_do_update_inode:5234: inode #2: comm syz.4.1832: corrupted inode contents [ 449.101128][ T6643] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.1832: mark_inode_dirty error [ 449.786622][ T6654] loop1: detected capacity change from 0 to 256 [ 452.530957][ T6668] loop3: detected capacity change from 0 to 512 [ 452.538957][ T6670] loop2: detected capacity change from 0 to 512 [ 453.427497][ T6668] EXT4-fs warning (device loop3): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop3. [ 453.442840][ T6670] EXT4-fs warning (device loop2): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop2. [ 453.730976][ T6682] 9pnet: Insufficient options for proto=fd [ 453.920214][ T10] Bluetooth: hci0: Frame reassembly failed (-84) [ 454.957988][ T6691] 9pnet: Insufficient options for proto=fd [ 455.234154][ T6698] netlink: 'syz.1.1848': attribute type 4 has an invalid length. [ 455.579714][ T304] usb 2-1: new full-speed USB device number 5 using dummy_hcd [ 455.939779][ T304] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 455.950770][ T304] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 455.963687][ T304] usb 2-1: New USB device found, idVendor=05ac, idProduct=0264, bcdDevice= 0.00 [ 455.972739][ T304] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 455.981320][ T304] usb 2-1: config 0 descriptor?? [ 455.986344][ T1956] Bluetooth: hci0: command 0x1003 tx timeout [ 455.992404][ T668] Bluetooth: hci0: sending frame failed (-49) [ 455.999819][ T6698] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 457.191355][ T6712] loop0: detected capacity change from 0 to 512 [ 457.200218][ T6715] loop2: detected capacity change from 0 to 512 [ 457.342520][ T6715] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 457.359220][ T6715] ext4 filesystem being mounted at /379/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 457.424554][ T6712] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 457.441286][ T6712] ext4 filesystem being mounted at /377/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 457.525987][ T6712] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1850: corrupted inode contents [ 457.540060][ T6712] EXT4-fs error (device loop0): ext4_dirty_inode:6070: inode #2: comm syz.0.1850: mark_inode_dirty error [ 457.552977][ T6712] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1850: corrupted inode contents [ 457.567303][ T6712] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.1850: mark_inode_dirty error [ 457.580765][ T6715] EXT4-fs error (device loop2): ext4_do_update_inode:5234: inode #2: comm syz.2.1851: corrupted inode contents [ 457.654621][ T6715] EXT4-fs error (device loop2): ext4_dirty_inode:6070: inode #2: comm syz.2.1851: mark_inode_dirty error [ 457.667689][ T6715] EXT4-fs error (device loop2): ext4_do_update_inode:5234: inode #2: comm syz.2.1851: corrupted inode contents [ 457.680627][ T6715] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.1851: mark_inode_dirty error [ 457.776123][ T6698] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8 sclass=netlink_route_socket pid=6698 comm=syz.1.1848 [ 458.073754][ T6721] loop4: detected capacity change from 0 to 128 [ 458.107596][ T1956] Bluetooth: hci0: command 0x1001 tx timeout [ 458.144392][ T6725] loop0: detected capacity change from 0 to 1024 [ 458.151996][ T668] Bluetooth: hci0: sending frame failed (-49) [ 458.164645][ T6721] EXT4-fs (loop4): Ignoring removed nobh option [ 458.171000][ T6725] EXT4-fs (loop0): Ignoring removed orlov option [ 458.171028][ T6725] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 458.186602][ T6721] EXT4-fs (loop4): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue. Quota mode: none. [ 458.198773][ T6721] ext4 filesystem being mounted at /369/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 458.199937][ T304] usbhid 2-1:0.0: can't add hid device: -71 [ 458.218908][ T6725] EXT4-fs (loop0): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 458.248640][ T6731] loop2: detected capacity change from 0 to 256 [ 458.262046][ T304] usbhid: probe of 2-1:0.0 failed with error -71 [ 458.269370][ T304] usb 2-1: USB disconnect, device number 5 [ 458.308446][ T6733] tipc: Enabling of bearer rejected, already enabled [ 458.317220][ T30] kauditd_printk_skb: 28 callbacks suppressed [ 458.317235][ T30] audit: type=1326 audit(1749254103.072:2450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 458.355533][ T30] audit: type=1326 audit(1749254103.072:2451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 458.407064][ T30] audit: type=1326 audit(1749254103.102:2452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 458.450373][ T6742] loop0: detected capacity change from 0 to 512 [ 458.503849][ T30] audit: type=1326 audit(1749254103.112:2453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 458.521004][ T6742] EXT4-fs error (device loop0): ext4_orphan_get:1427: comm syz.0.1859: bad orphan inode 15 [ 458.528394][ T30] audit: type=1326 audit(1749254103.112:2454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 458.567890][ T6742] ext4_test_bit(bit=14, block=5) = 0 [ 458.573756][ T6742] EXT4-fs (loop0): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 458.598845][ T30] audit: type=1326 audit(1749254103.112:2455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 459.193536][ T30] audit: type=1326 audit(1749254103.112:2456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 459.380197][ T30] audit: type=1326 audit(1749254103.112:2457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 459.489276][ T30] audit: type=1326 audit(1749254103.112:2458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 459.532763][ T30] audit: type=1326 audit(1749254103.112:2459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6732 comm="syz.2.1857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7feeb18ab929 code=0x7ffc0000 [ 459.569550][ T6753] loop0: detected capacity change from 0 to 256 [ 459.721281][ T6755] tipc: Enabling of bearer rejected, already enabled [ 460.189893][ T581] Bluetooth: hci0: command 0x1009 tx timeout [ 460.323201][ T6761] loop1: detected capacity change from 0 to 512 [ 460.579270][ T6761] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 460.596022][ T6761] ext4 filesystem being mounted at /367/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 460.663974][ T6761] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1865: corrupted inode contents [ 460.676999][ T6761] EXT4-fs error (device loop1): ext4_dirty_inode:6070: inode #2: comm syz.1.1865: mark_inode_dirty error [ 460.689530][ T6761] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1865: corrupted inode contents [ 460.702641][ T6761] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.1865: mark_inode_dirty error [ 461.411197][ T6770] loop1: detected capacity change from 0 to 128 [ 461.483618][ T6773] loop2: detected capacity change from 0 to 128 [ 461.570014][ T6774] loop4: detected capacity change from 0 to 512 [ 461.632790][ T6773] EXT4-fs (loop2): Ignoring removed nobh option [ 461.732493][ T6773] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue. Quota mode: none. [ 461.889161][ T6774] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 461.905894][ T6774] ext4 filesystem being mounted at /373/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 461.961401][ T6774] EXT4-fs error (device loop4): ext4_do_update_inode:5234: inode #2: comm syz.4.1866: corrupted inode contents [ 461.974412][ T6774] EXT4-fs error (device loop4): ext4_dirty_inode:6070: inode #2: comm syz.4.1866: mark_inode_dirty error [ 461.986673][ T6774] EXT4-fs error (device loop4): ext4_do_update_inode:5234: inode #2: comm syz.4.1866: corrupted inode contents [ 461.999493][ T6774] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.1866: mark_inode_dirty error [ 462.539875][ T6773] ext4 filesystem being mounted at /383/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 462.580114][ T6766] device wireguard0 entered promiscuous mode [ 462.745643][ T2248] attempt to access beyond end of device [ 462.745643][ T2248] loop1: rw=1, want=1041, limit=128 [ 462.834875][ T6788] loop2: detected capacity change from 0 to 512 [ 463.053414][ T6788] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 463.070176][ T6788] ext4 filesystem being mounted at /384/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 464.161969][ T6799] loop2: detected capacity change from 0 to 512 [ 464.398731][ T6807] loop3: detected capacity change from 0 to 1024 [ 464.432273][ T6807] EXT4-fs (loop3): Mount option "delalloc" incompatible with ext3 [ 464.505552][ T6799] EXT4-fs error (device loop2): ext4_orphan_get:1427: comm syz.2.1874: bad orphan inode 15 [ 464.619081][ T6799] ext4_test_bit(bit=14, block=5) = 0 [ 464.772978][ T6799] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 465.665499][ T6821] loop2: detected capacity change from 0 to 128 [ 465.740586][ T6821] EXT4-fs (loop2): Ignoring removed nobh option [ 465.752201][ T6829] loop1: detected capacity change from 0 to 512 [ 465.762056][ T6821] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue. Quota mode: none. [ 465.775404][ T6821] ext4 filesystem being mounted at /386/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 465.794155][ T6829] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 465.810940][ T6829] ext4 filesystem being mounted at /373/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 465.825497][ T6829] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1883: corrupted inode contents [ 465.916136][ T6836] loop0: detected capacity change from 0 to 512 [ 465.924621][ T30] kauditd_printk_skb: 83 callbacks suppressed [ 465.924728][ T30] audit: type=1107 audit(1749254110.652:2543): pid=6831 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='' [ 466.081763][ T6836] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 466.100315][ T6829] EXT4-fs error (device loop1): ext4_dirty_inode:6070: inode #2: comm syz.1.1883: mark_inode_dirty error [ 466.210988][ T6841] loop2: detected capacity change from 0 to 512 [ 466.565190][ T6836] EXT4-fs (loop0): 1 truncate cleaned up [ 466.570997][ T6836] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 469.920128][ T6841] EXT4-fs warning (device loop2): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop2. [ 470.263157][ T6829] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1883: corrupted inode contents [ 470.288336][ T10] Bluetooth: hci0: Frame reassembly failed (-84) [ 470.295928][ T10] Bluetooth: hci0: Frame reassembly failed (-84) [ 470.323746][ T6829] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.1883: mark_inode_dirty error [ 470.428602][ T6844] loop4: detected capacity change from 0 to 8192 [ 470.533527][ T6848] 9pnet: Insufficient options for proto=fd [ 470.853474][ T6844] loop4: p1 p2[DM] p4 [ 470.859394][ T6844] loop4: p1 size 196608 extends beyond EOD, truncated [ 470.938763][ T6853] tipc: Enabling of bearer rejected, already enabled [ 471.769921][ T30] audit: type=1326 audit(1749254116.522:2544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6849 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 471.800361][ T6844] loop4: p2 start 4292936063 is beyond EOD, truncated [ 471.876219][ T30] audit: type=1326 audit(1749254116.522:2545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6849 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 471.899979][ T30] audit: type=1326 audit(1749254116.522:2546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6849 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 471.923594][ T6844] loop4: p4 size 50331648 extends beyond EOD, truncated [ 471.947937][ T30] audit: type=1326 audit(1749254116.522:2547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6849 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 472.002605][ T6860] tipc: Enabling of bearer rejected, already enabled [ 472.032894][ T30] audit: type=1326 audit(1749254116.522:2548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6849 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 472.033390][ T6862] loop3: detected capacity change from 0 to 1024 [ 472.063077][ T30] audit: type=1326 audit(1749254116.522:2549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6849 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 472.087459][ T30] audit: type=1326 audit(1749254116.522:2550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6849 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 472.111323][ T30] audit: type=1326 audit(1749254116.522:2551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6849 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 472.134896][ T30] audit: type=1326 audit(1749254116.522:2552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6849 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 472.173227][ T6862] EXT4-fs (loop3): Ignoring removed orlov option [ 472.190034][ T6862] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option [ 472.226521][ T30] audit: type=1326 audit(1749254116.522:2553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6849 comm="syz.1.1888" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fba488ee929 code=0x7ffc0000 [ 472.271720][ T6862] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 472.349871][ T1956] Bluetooth: hci0: command 0x1003 tx timeout [ 472.356031][ T668] Bluetooth: hci0: sending frame failed (-49) [ 472.542699][ T6872] loop3: detected capacity change from 0 to 512 [ 472.650892][ T6872] EXT4-fs error (device loop3): ext4_orphan_get:1427: comm syz.3.1893: bad orphan inode 15 [ 472.661281][ T6872] ext4_test_bit(bit=14, block=5) = 0 [ 472.666585][ T6872] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 472.917073][ T6879] loop3: detected capacity change from 0 to 128 [ 472.970862][ T6879] EXT4-fs (loop3): Ignoring removed nobh option [ 472.998352][ T6879] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,usrjquota=,,errors=continue. Quota mode: none. [ 473.029883][ T6879] ext4 filesystem being mounted at /367/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 473.402880][ T6887] loop3: detected capacity change from 0 to 512 [ 473.586733][ T6887] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 473.603534][ T6887] ext4 filesystem being mounted at /368/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 473.664124][ T6887] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1897: corrupted inode contents [ 473.677542][ T6887] EXT4-fs error (device loop3): ext4_dirty_inode:6070: inode #2: comm syz.3.1897: mark_inode_dirty error [ 473.690266][ T6887] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1897: corrupted inode contents [ 473.703170][ T6887] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.1897: mark_inode_dirty error [ 474.554216][ T6893] loop1: detected capacity change from 0 to 512 [ 474.601550][ T610] Bluetooth: hci0: command 0x1001 tx timeout [ 474.607714][ T668] Bluetooth: hci0: sending frame failed (-49) [ 474.767848][ T6893] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 474.784126][ T6893] ext4 filesystem being mounted at /375/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 474.801375][ T6893] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1899: corrupted inode contents [ 474.813811][ T6893] EXT4-fs error (device loop1): ext4_dirty_inode:6070: inode #2: comm syz.1.1899: mark_inode_dirty error [ 474.826048][ T6893] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1899: corrupted inode contents [ 474.839481][ T6893] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.1899: mark_inode_dirty error [ 476.310766][ T6907] loop0: detected capacity change from 0 to 512 [ 476.530011][ T6907] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 476.546748][ T6907] ext4 filesystem being mounted at /386/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 476.670265][ T610] Bluetooth: hci0: command 0x1009 tx timeout [ 477.038717][ T6915] loop3: detected capacity change from 0 to 1024 [ 477.038757][ T6916] loop1: detected capacity change from 0 to 1024 [ 477.097545][ T6916] EXT4-fs (loop1): Ignoring removed orlov option [ 477.187374][ T6916] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 477.252398][ T6915] EXT4-fs (loop3): Ignoring removed orlov option [ 477.291762][ T6916] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 477.314241][ T6915] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option [ 477.351318][ T6915] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 479.866996][ T6930] loop1: detected capacity change from 0 to 1024 [ 480.091926][ T6932] 9pnet: Insufficient options for proto=fd [ 480.296043][ T6930] EXT4-fs (loop1): Ignoring removed orlov option [ 484.029932][ T6930] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 484.057679][ T6930] EXT4-fs warning (device loop1): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop1. [ 484.269253][ T6949] loop3: detected capacity change from 0 to 512 [ 484.283580][ T30] kauditd_printk_skb: 61 callbacks suppressed [ 484.283624][ T30] audit: type=1400 audit(1749254129.042:2615): avc: denied { mounton } for pid=6951 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 484.362226][ T6949] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 484.392219][ T6949] ext4 filesystem being mounted at /372/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 484.604603][ T6949] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1914: corrupted inode contents [ 484.617660][ T6949] EXT4-fs error (device loop3): ext4_dirty_inode:6070: inode #2: comm syz.3.1914: mark_inode_dirty error [ 484.629563][ T6949] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1914: corrupted inode contents [ 484.642225][ T6949] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.1914: mark_inode_dirty error [ 484.642986][ T6951] bridge0: port 1(bridge_slave_0) entered blocking state [ 484.990065][ C1] ------------[ cut here ]------------ [ 484.995604][ C1] refcount_t: addition on 0; use-after-free. [ 485.001875][ C1] WARNING: CPU: 1 PID: 6961 at lib/refcount.c:25 refcount_warn_saturate+0x104/0x1a0 [ 485.011335][ C1] Modules linked in: [ 485.015277][ C1] CPU: 1 PID: 6961 Comm: syz.1.1915 Not tainted 5.15.185-syzkaller-00339-ge678c93d43cc #0 [ 485.025218][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 485.035365][ C1] RIP: 0010:refcount_warn_saturate+0x104/0x1a0 [ 485.041614][ C1] Code: 04 01 48 c7 c7 60 ef 62 85 e8 08 9d 50 02 0f 0b eb df e8 5f d6 1c ff c6 05 ba f8 99 04 01 48 c7 c7 a0 ee 62 85 e8 ec 9c 50 02 <0f> 0b eb c3 e8 43 d6 1c ff c6 05 9f f8 99 04 01 48 c7 c7 00 ef 62 [ 485.061296][ C1] RSP: 0018:ffffc900001d0820 EFLAGS: 00010246 [ 485.067445][ C1] RAX: e093279ce37d8600 RBX: 0000000000000002 RCX: ffff888128728000 [ 485.075485][ C1] RDX: 0000000000000100 RSI: 0000000000000101 RDI: 0000000000000000 [ 485.083543][ C1] RBP: ffffc900001d0830 R08: dffffc0000000000 R09: fffff5200003a051 [ 485.091577][ C1] R10: fffff5200003a051 R11: 1ffff9200003a050 R12: ffff888119e20c08 [ 485.099596][ C1] R13: dffffc0000000000 R14: 0000000000000002 R15: ffffc900001d09b8 [ 485.107634][ C1] FS: 00007fba46f366c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 485.116635][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 485.123282][ C1] CR2: 00007fba46f15d58 CR3: 000000012773f000 CR4: 00000000003506a0 [ 485.131331][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 485.139331][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 485.147374][ C1] Call Trace: [ 485.149725][ C0] ------------[ cut here ]------------ [ 485.150707][ C1] [ 485.156142][ C0] refcount_t: saturated; leaking memory. [ 485.158970][ C1] tipc_crypto_xmit+0x1938/0x2400 [ 485.164691][ C0] WARNING: CPU: 0 PID: 6946 at lib/refcount.c:22 refcount_warn_saturate+0x158/0x1a0 [ 485.169592][ C1] ? tipc_crypto_do_cmd+0xcf0/0xcf0 [ 485.178941][ C0] Modules linked in: [ 485.184122][ C1] ? skb_clone+0x202/0x360 [ 485.187991][ C0] CPU: 0 PID: 6946 Comm: syz.0.1912 Not tainted 5.15.185-syzkaller-00339-ge678c93d43cc #0 [ 485.192391][ C1] tipc_crypto_clone_msg+0x9b/0x150 [ 485.202263][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 485.207439][ C1] tipc_crypto_xmit+0x1ab9/0x2400 [ 485.217483][ C0] RIP: 0010:refcount_warn_saturate+0x158/0x1a0 [ 485.222505][ C1] ? get_nohz_timer_target+0x74/0x550 [ 485.228635][ C0] Code: 04 01 48 c7 c7 40 ee 62 85 e8 b4 9c 50 02 0f 0b eb 8b e8 0b d6 1c ff c6 05 65 f8 99 04 01 48 c7 c7 40 ee 62 85 e8 98 9c 50 02 <0f> 0b e9 6c ff ff ff e8 ec d5 1c ff c6 05 4a f8 99 04 01 48 c7 c7 [ 485.233988][ C1] ? __kasan_check_write+0x14/0x20 [ 485.253592][ C0] RSP: 0018:ffffc90000007820 EFLAGS: 00010246 [ 485.258679][ C1] ? tipc_crypto_do_cmd+0xcf0/0xcf0 [ 485.264741][ C0] RAX: bb236fd3fcb07800 RBX: 0000000000000001 RCX: ffff888128d52780 [ 485.269924][ C1] ? memcpy+0x56/0x70 [ 485.277874][ C0] RDX: 0000000000000100 RSI: 0000000080000101 RDI: 0000000000000000 [ 485.281843][ C1] ? __copy_skb_header+0x437/0x600 [ 485.289806][ C0] RBP: ffffc90000007830 R08: 0000000000000004 R09: 0000000000000003 [ 485.294890][ C1] tipc_bearer_xmit_skb+0x226/0x360 [ 485.302865][ C0] R10: fffff52000000e64 R11: 1ffff92000000e64 R12: ffff888119e20c08 [ 485.308039][ C1] ? __skb_clone+0x47a/0x790 [ 485.316005][ C0] R13: dffffc0000000000 R14: 0000000000000001 R15: ffffc900000079b8 [ 485.320583][ C1] ? tipc_bearer_mtu+0x160/0x160 [ 485.328537][ C0] FS: 00007f2e72a5f6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 485.333462][ C1] ? skb_clone+0x202/0x360 [ 485.342384][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 485.346784][ C1] tipc_disc_timeout+0x6a2/0x830 [ 485.353360][ C0] CR2: 0000200000001580 CR3: 000000012775f000 CR4: 00000000003506b0 [ 485.358272][ C1] ? tipc_disc_init_msg+0x600/0x600 [ 485.366239][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 485.371422][ C1] ? _find_next_bit+0x106/0x200 [ 485.379373][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 485.384208][ C1] ? __kasan_check_write+0x14/0x20 [ 485.392171][ C0] Call Trace: [ 485.392179][ C0] [ 485.397265][ C1] ? _raw_spin_lock_irq+0x8f/0xe0 [ 485.400550][ C0] tipc_crypto_xmit+0x1938/0x2400 [ 485.403390][ C1] ? _raw_spin_lock_irqsave+0x110/0x110 [ 485.408396][ C0] ? tipc_crypto_do_cmd+0xcf0/0xcf0 [ 485.413405][ C1] ? tipc_disc_init_msg+0x600/0x600 [ 485.418928][ C0] ? skb_clone+0x202/0x360 [ 485.424116][ C1] call_timer_fn+0x38/0x290 [ 485.429290][ C0] tipc_crypto_clone_msg+0x9b/0x150 [ 485.433692][ C1] ? tipc_disc_init_msg+0x600/0x600 [ 485.438187][ C0] tipc_crypto_xmit+0x1ab9/0x2400 [ 485.443372][ C1] __run_timers+0x639/0x9a0 [ 485.448548][ C0] ? __irq_exit_rcu+0x52/0xf0 [ 485.453567][ C1] ? calc_index+0x200/0x200 [ 485.458053][ C0] ? get_nohz_timer_target+0x74/0x550 [ 485.462742][ C1] ? sched_clock_cpu+0x18/0x3c0 [ 485.467230][ C0] ? tipc_crypto_do_cmd+0xcf0/0xcf0 [ 485.472597][ C1] run_timer_softirq+0x6a/0xf0 [ 485.477431][ C0] ? memcpy+0x56/0x70 [ 485.482619][ C1] handle_softirqs+0x250/0x560 [ 485.487374][ C0] ? __copy_skb_header+0x437/0x600 [ 485.491375][ C1] __irq_exit_rcu+0x52/0xf0 [ 485.496113][ C0] tipc_bearer_xmit_skb+0x226/0x360 [ 485.501214][ C1] irq_exit_rcu+0x9/0x10 [ 485.505697][ C0] ? __skb_clone+0x47a/0x790 [ 485.510888][ C1] sysvec_apic_timer_interrupt+0xa9/0xc0 [ 485.515106][ C0] ? tipc_bearer_mtu+0x160/0x160 [ 485.519682][ C1] [ 485.525293][ C0] ? skb_clone+0x202/0x360 [ 485.530220][ C1] [ 485.530230][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 485.533153][ C0] tipc_disc_timeout+0x6a2/0x830 [ 485.537552][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x56/0x80 [ 485.540485][ C0] ? tipc_disc_init_msg+0x600/0x600 [ 485.546438][ C1] Code: 39 6d 86 e8 1c 74 01 fd 4c 89 f7 48 83 3d 69 95 c7 01 00 74 31 e8 3e 77 a9 fc 66 90 f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 35 5f a1 fc 65 8b 05 16 c9 5c 7b 85 c0 74 05 5b 41 5e 5d c3 e8 [ 485.551373][ C0] ? __kasan_check_write+0x14/0x20 [ 485.557758][ C1] RSP: 0018:ffffc90000a675c0 EFLAGS: 00000206 [ 485.562939][ C0] ? _raw_spin_lock+0x8e/0xe0 [ 485.582528][ C1] [ 485.582533][ C1] RAX: 0000000000000001 RBX: 0000000000000a02 RCX: dffffc0000000000 [ 485.587616][ C0] ? _raw_spin_trylock_bh+0x130/0x130 [ 485.593664][ C1] RDX: ffffc900012ff6d8 RSI: 0000000000000a02 RDI: 0000000000000001 [ 485.598343][ C0] ? tipc_disc_init_msg+0x600/0x600 [ 485.600661][ C1] RBP: ffffc90000a675d0 R08: dffffc0000000000 R09: ffffed10250e5001 [ 485.600674][ C1] R10: ffffed10250e5001 R11: 1ffff110250e5000 R12: ffff88811c389e80 [ 485.608626][ C0] call_timer_fn+0x38/0x290 [ 485.613983][ C1] R13: 0000000000000010 R14: 0000000000000001 R15: 0000000000000000 [ 485.621949][ C0] ? tipc_disc_init_msg+0x600/0x600 [ 485.627127][ C1] __wake_up_sync_key+0x166/0x280 [ 485.635089][ C0] __run_timers+0x639/0x9a0 [ 485.643049][ C1] ? __wake_up_locked_key_bookmark+0x20/0x20 [ 485.647565][ C0] ? calc_index+0x200/0x200 [ 485.655544][ C1] ? __skb_try_recv_datagram+0x3da/0x4d0 [ 485.660743][ C0] ? sched_clock_cpu+0x18/0x3c0 [ 485.665832][ C1] ? sock_load_diag_module+0x140/0x140 [ 485.670330][ C0] run_timer_softirq+0x6a/0xf0 [ 485.676291][ C1] __unix_dgram_recvmsg+0x495/0xd50 [ 485.680786][ C0] handle_softirqs+0x250/0x560 [ 485.686394][ C1] ? debug_smp_processor_id+0x17/0x20 [ 485.691239][ C0] __irq_exit_rcu+0x52/0xf0 [ 485.696675][ C1] ? unix_unhash+0x10/0x10 [ 485.701425][ C0] irq_exit_rcu+0x9/0x10 [ 485.706604][ C1] ? sysvec_irq_work+0x61/0xc0 [ 485.711362][ C0] sysvec_apic_timer_interrupt+0xa9/0xc0 [ 485.716720][ C1] ? unix_dgram_recvmsg+0xb1/0xe0 [ 485.721212][ C0] [ 485.725605][ C1] unix_dgram_recvmsg+0xc2/0xe0 [ 485.729834][ C0] [ 485.734575][ C1] ? unix_dgram_sendmsg+0x1880/0x1880 [ 485.740195][ C0] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 485.745199][ C1] ____sys_recvmsg+0x291/0x580 [ 485.748117][ C0] RIP: 0010:security_unix_may_send+0x6/0xa0 [ 485.752952][ C1] ? __sys_recvmsg_sock+0x50/0x50 [ 485.755866][ C0] Code: ff eb af e8 9c ed 47 ff 31 c0 eb 09 89 c3 e8 91 ed 47 ff 89 d8 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 55 48 89 e5 41 57 <41> 56 41 55 41 54 53 48 89 f3 49 89 fe 49 bd 00 00 00 00 00 fc ff [ 485.761228][ C1] ? memset+0x35/0x40 [ 485.767195][ C0] RSP: 0018:ffffc900012bf768 EFLAGS: 00000246 [ 485.771954][ C1] ? import_iovec+0x7c/0xb0 [ 485.777821][ C0] [ 485.777828][ C0] RAX: 1ffff1102387163c RBX: 1ffff1102387163a RCX: ffff88811c38b1e0 [ 485.782851][ C1] ___sys_recvmsg+0x1af/0x4f0 [ 485.802441][ C0] RDX: 0000000000000002 RSI: ffff88812975bc00 RDI: ffff888129759800 [ 485.806408][ C1] ? memcpy+0x56/0x70 [ 485.812478][ C0] RBP: ffffc900012bf770 R08: dffffc0000000000 R09: ffffed10238715f5 [ 485.816962][ C1] ? __sys_recvmsg+0x250/0x250 [ 485.819271][ C0] R10: ffffed10238715f5 R11: 1ffff110238715f4 R12: 1ffff92000257f0c [ 485.827239][ C1] ? asm_sysvec_irq_work+0x1b/0x20 [ 485.831909][ C0] R13: ffff88811c38ae00 R14: ffff888129759800 R15: dffffc0000000000 [ 485.840001][ C1] ? do_recvmmsg+0x317/0x780 [ 485.843985][ C0] unix_dgram_sendmsg+0xc90/0x1880 [ 485.851962][ C1] do_recvmmsg+0x344/0x780 [ 485.856711][ C0] ? unix_dgram_poll+0x6b0/0x6b0 [ 485.864683][ C1] ? do_user_addr_fault+0xa64/0x1180 [ 485.869795][ C0] ? security_socket_sendmsg+0x82/0xa0 [ 485.877755][ C1] ? __sys_recvmmsg+0x280/0x280 [ 485.882327][ C0] ? unix_dgram_poll+0x6b0/0x6b0 [ 485.887429][ C1] ? asm_sysvec_irq_work+0x1b/0x20 [ 485.891836][ C0] ____sys_sendmsg+0x5a2/0x8c0 [ 485.896750][ C1] ? __x64_sys_recvmmsg+0x175/0x240 [ 485.902027][ C0] ? __sys_sendmsg_sock+0x40/0x40 [ 485.907461][ C1] __x64_sys_recvmmsg+0x18d/0x240 [ 485.912300][ C0] ? import_iovec+0x7c/0xb0 [ 485.917213][ C1] ? do_recvmmsg+0x780/0x780 [ 485.922313][ C0] ___sys_sendmsg+0x1f0/0x260 [ 485.927052][ C1] ? fpregs_assert_state_consistent+0xb1/0xe0 [ 485.932241][ C0] ? __sys_sendmsg+0x250/0x250 [ 485.937244][ C1] x64_sys_call+0x297/0x9a0 [ 485.942267][ C0] ? __fdget+0x1a1/0x230 [ 485.946742][ C1] do_syscall_64+0x4c/0xa0 [ 485.951328][ C0] __sys_sendmmsg+0x278/0x480 [ 485.955982][ C1] ? clear_bhb_loop+0x50/0xa0 [ 485.962039][ C0] ? __ia32_sys_sendmsg+0x2a0/0x2a0 [ 485.966776][ C1] ? clear_bhb_loop+0x50/0xa0 [ 485.971272][ C0] ? unix_dgram_connect+0xb1c/0xd10 [ 485.975497][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 485.979905][ C0] ? __kasan_check_write+0x14/0x20 [ 485.984548][ C1] RIP: 0033:0x7fba488ee929 [ 485.989212][ C0] ? switch_fpu_return+0x15d/0x2c0 [ 485.994407][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 485.999066][ C0] __x64_sys_sendmmsg+0xa0/0xb0 [ 486.004249][ C1] RSP: 002b:00007fba46f36038 EFLAGS: 00000246 [ 486.010132][ C0] x64_sys_call+0x6c6/0x9a0 [ 486.015218][ C1] ORIG_RAX: 000000000000012b [ 486.019609][ C0] do_syscall_64+0x4c/0xa0 [ 486.024703][ C1] RAX: ffffffffffffffda RBX: 00007fba48b16080 RCX: 00007fba488ee929 [ 486.044297][ C0] ? clear_bhb_loop+0x50/0xa0 [ 486.049121][ C1] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 000000000000000b [ 486.055175][ C0] ? clear_bhb_loop+0x50/0xa0 [ 486.059664][ C1] RBP: 00007fba48970b39 R08: 0000000000000000 R09: 0000000000000000 [ 486.064332][ C0] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 486.068727][ C1] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 486.076700][ C0] RIP: 0033:0x7f2e743f6929 [ 486.081364][ C1] R13: 0000000000000001 R14: 00007fba48b16080 R15: 00007ffff153cc88 [ 486.089330][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 486.093998][ C1] [ 486.101963][ C0] RSP: 002b:00007f2e72a5f038 EFLAGS: 00000246 [ 486.107834][ C1] ---[ end trace 595af4f9f01272ee ]--- [ 486.115799][ C0] ORIG_RAX: 0000000000000133 [ 486.120221][ C1] ------------[ cut here ]------------ [ 486.128161][ C0] RAX: ffffffffffffffda RBX: 00007f2e7461dfa0 RCX: 00007f2e743f6929 [ 486.147754][ C1] refcount_t: underflow; use-after-free. [ 486.147880][ C1] WARNING: CPU: 1 PID: 6961 at lib/refcount.c:28 refcount_warn_saturate+0x120/0x1a0 [ 486.150777][ C0] RDX: 0000000000000651 RSI: 0000200000000000 RDI: 0000000000000004 [ 486.156822][ C1] Modules linked in: [ 486.162273][ C0] RBP: 00007f2e74478b39 R08: 0000000000000000 R09: 0000000000000000 [ 486.166934][ C1] CPU: 1 PID: 6961 Comm: syz.1.1915 Tainted: G W 5.15.185-syzkaller-00339-ge678c93d43cc #0 [ 486.172383][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 486.180352][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 486.185962][ C0] R13: 0000000000000000 R14: 00007f2e7461dfa0 R15: 00007ffe303e8578 [ 486.195309][ C1] RIP: 0010:refcount_warn_saturate+0x120/0x1a0 [ 486.203280][ C0] [ 486.207151][ C1] Code: 04 01 48 c7 c7 a0 ee 62 85 e8 ec 9c 50 02 0f 0b eb c3 e8 43 d6 1c ff c6 05 9f f8 99 04 01 48 c7 c7 00 ef 62 85 e8 d0 9c 50 02 <0f> 0b eb a7 e8 27 d6 1c ff c6 05 80 f8 99 04 01 48 c7 c7 40 ee 62 [ 486.215120][ C0] ---[ end trace 595af4f9f01272ef ]--- [ 486.226384][ C1] RSP: 0018:ffffc900001d0820 EFLAGS: 00010246 [ 486.292991][ C1] RAX: e093279ce37d8600 RBX: 0000000000000003 RCX: ffff888128728000 [ 486.301024][ C1] RDX: 0000000000000100 RSI: 0000000000000101 RDI: 0000000000000000 [ 486.309032][ C1] RBP: ffffc900001d0830 R08: 0000000000000004 R09: 0000000000000003 [ 486.317074][ C1] R10: fffff5200003a0b4 R11: 1ffff9200003a0b4 R12: ffff888119e20c08 [ 486.325125][ C1] R13: dffffc0000000000 R14: 0000000000000003 R15: 00000000c0000000 [ 486.333164][ C1] FS: 00007fba46f366c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 486.342178][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 486.348804][ C1] CR2: 00007fba46f15d58 CR3: 000000012773f000 CR4: 00000000003506a0 [ 486.356855][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 486.364894][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 486.372940][ C1] Call Trace: [ 486.376291][ C1] [ 486.379181][ C1] tipc_crypto_xmit+0x1a82/0x2400 [ 486.384298][ C1] ? tipc_crypto_do_cmd+0xcf0/0xcf0 [ 486.389550][ C1] ? skb_clone+0x202/0x360 [ 486.394058][ C1] tipc_crypto_clone_msg+0x9b/0x150 [ 486.399309][ C1] tipc_crypto_xmit+0x1ab9/0x2400 [ 486.404459][ C1] ? get_nohz_timer_target+0x74/0x550 [ 486.409898][ C1] ? __kasan_check_write+0x14/0x20 [ 486.415088][ C1] ? tipc_crypto_do_cmd+0xcf0/0xcf0 [ 486.420371][ C1] ? memcpy+0x56/0x70 [ 486.424397][ C1] ? __copy_skb_header+0x437/0x600 [ 486.429544][ C1] tipc_bearer_xmit_skb+0x226/0x360 [ 486.434810][ C1] ? __skb_clone+0x47a/0x790 [ 486.439443][ C1] ? tipc_bearer_mtu+0x160/0x160 [ 486.444461][ C1] ? skb_clone+0x202/0x360 [ 486.448918][ C1] tipc_disc_timeout+0x6a2/0x830 [ 486.453931][ C1] ? tipc_disc_init_msg+0x600/0x600 [ 486.459172][ C1] ? _find_next_bit+0x106/0x200 [ 486.464101][ C1] ? __kasan_check_write+0x14/0x20 [ 486.466957][ T6951] bridge0: port 1(bridge_slave_0) entered disabled state [ 486.469264][ C1] ? _raw_spin_lock_irq+0x8f/0xe0 [ 486.481334][ C1] ? _raw_spin_lock_irqsave+0x110/0x110 [ 486.486915][ C1] ? tipc_disc_init_msg+0x600/0x600 [ 486.492147][ C1] call_timer_fn+0x38/0x290 [ 486.496686][ C1] ? tipc_disc_init_msg+0x600/0x600 [ 486.501905][ C1] __run_timers+0x639/0x9a0 [ 486.506424][ C1] ? calc_index+0x200/0x200 [ 486.510969][ C1] ? sched_clock_cpu+0x18/0x3c0 [ 486.515827][ C1] run_timer_softirq+0x6a/0xf0 [ 486.520604][ C1] handle_softirqs+0x250/0x560 [ 486.525375][ C1] __irq_exit_rcu+0x52/0xf0 [ 486.529919][ C1] irq_exit_rcu+0x9/0x10 [ 486.534179][ C1] sysvec_apic_timer_interrupt+0xa9/0xc0 [ 486.539855][ C1] [ 486.542786][ C1] [ 486.545716][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20 [ 486.551712][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x56/0x80 [ 486.558139][ C1] Code: 39 6d 86 e8 1c 74 01 fd 4c 89 f7 48 83 3d 69 95 c7 01 00 74 31 e8 3e 77 a9 fc 66 90 f7 c3 00 02 00 00 74 01 fb bf 01 00 00 00 35 5f a1 fc 65 8b 05 16 c9 5c 7b 85 c0 74 05 5b 41 5e 5d c3 e8 [ 486.577797][ C1] RSP: 0018:ffffc90000a675c0 EFLAGS: 00000206 [ 486.583906][ C1] RAX: 0000000000000001 RBX: 0000000000000a02 RCX: dffffc0000000000 [ 486.591920][ C1] RDX: ffffc900012ff6d8 RSI: 0000000000000a02 RDI: 0000000000000001 [ 486.599936][ C1] RBP: ffffc90000a675d0 R08: dffffc0000000000 R09: ffffed10250e5001 [ 486.607922][ C1] R10: ffffed10250e5001 R11: 1ffff110250e5000 R12: ffff88811c389e80 [ 486.615931][ C1] R13: 0000000000000010 R14: 0000000000000001 R15: 0000000000000000 [ 486.623927][ C1] __wake_up_sync_key+0x166/0x280 [ 486.628967][ C1] ? __wake_up_locked_key_bookmark+0x20/0x20 [ 486.634973][ C1] ? __skb_try_recv_datagram+0x3da/0x4d0 [ 486.640669][ C1] ? sock_load_diag_module+0x140/0x140 [ 486.646132][ C1] __unix_dgram_recvmsg+0x495/0xd50 [ 486.651362][ C1] ? debug_smp_processor_id+0x17/0x20 [ 486.656738][ C1] ? unix_unhash+0x10/0x10 [ 486.661174][ C1] ? sysvec_irq_work+0x61/0xc0 [ 486.665958][ C1] ? unix_dgram_recvmsg+0xb1/0xe0 [ 486.671004][ C1] unix_dgram_recvmsg+0xc2/0xe0 [ 486.675966][ C1] ? unix_dgram_sendmsg+0x1880/0x1880 [ 486.681362][ C1] ____sys_recvmsg+0x291/0x580 [ 486.686142][ C1] ? __sys_recvmsg_sock+0x50/0x50 [ 486.691200][ C1] ? memset+0x35/0x40 [ 486.695202][ C1] ? import_iovec+0x7c/0xb0 [ 486.699738][ C1] ___sys_recvmsg+0x1af/0x4f0 [ 486.704440][ C1] ? memcpy+0x56/0x70 [ 486.708447][ C1] ? __sys_recvmsg+0x250/0x250 [ 486.713252][ C1] ? asm_sysvec_irq_work+0x1b/0x20 [ 486.718371][ C1] ? do_recvmmsg+0x317/0x780 [ 486.722983][ C1] do_recvmmsg+0x344/0x780 [ 486.727410][ C1] ? do_user_addr_fault+0xa64/0x1180 [ 486.732932][ C1] ? __sys_recvmmsg+0x280/0x280 [ 486.737798][ C1] ? asm_sysvec_irq_work+0x1b/0x20 [ 486.742930][ C1] ? __x64_sys_recvmmsg+0x175/0x240 [ 486.748133][ C1] __x64_sys_recvmmsg+0x18d/0x240 [ 486.753174][ C1] ? do_recvmmsg+0x780/0x780 [ 486.757770][ C1] ? fpregs_assert_state_consistent+0xb1/0xe0 [ 486.763851][ C1] x64_sys_call+0x297/0x9a0 [ 486.768388][ C1] do_syscall_64+0x4c/0xa0 [ 486.772830][ C1] ? clear_bhb_loop+0x50/0xa0 [ 486.777525][ C1] ? clear_bhb_loop+0x50/0xa0 [ 486.782252][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 486.788162][ C1] RIP: 0033:0x7fba488ee929 [ 486.792607][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 486.793841][ T6951] device bridge_slave_0 entered promiscuous mode [ 486.812342][ C1] RSP: 002b:00007fba46f36038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b [ 486.812365][ C1] RAX: ffffffffffffffda RBX: 00007fba48b16080 RCX: 00007fba488ee929 [ 486.812377][ C1] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 000000000000000b [ 486.812388][ C1] RBP: 00007fba48970b39 R08: 0000000000000000 R09: 0000000000000000 [ 486.812399][ C1] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 486.812409][ C1] R13: 0000000000000001 R14: 00007fba48b16080 R15: 00007ffff153cc88 [ 486.812424][ C1] [ 486.812430][ C1] ---[ end trace 595af4f9f01272f0 ]--- [ 487.180473][ T6951] bridge0: port 2(bridge_slave_1) entered blocking state [ 487.187632][ T6951] bridge0: port 2(bridge_slave_1) entered disabled state [ 487.201083][ T6951] device bridge_slave_1 entered promiscuous mode [ 487.208440][ T397] tipc: Disabling bearer [ 487.214938][ T397] tipc: Disabling bearer [ 487.251214][ T397] tipc: Disabling bearer [ 487.252247][ T6968] loop1: detected capacity change from 0 to 256 [ 487.282232][ T397] tipc: Left network mode [ 487.348954][ T397] ------------[ cut here ]------------ [ 487.354801][ T397] refcount_t: saturated; leaking memory. [ 487.361838][ T397] WARNING: CPU: 1 PID: 397 at lib/refcount.c:19 refcount_warn_saturate+0x13c/0x1a0 [ 487.379957][ T397] Modules linked in: [ 487.388373][ T397] CPU: 0 PID: 397 Comm: kworker/u4:4 Tainted: G W 5.15.185-syzkaller-00339-ge678c93d43cc #0 [ 487.400721][ T397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 487.411672][ T397] Workqueue: netns cleanup_net [ 487.418871][ T397] RIP: 0010:refcount_warn_saturate+0x13c/0x1a0 [ 487.433042][ T6977] loop2: detected capacity change from 0 to 1024 [ 487.442709][ T397] Code: 04 01 48 c7 c7 00 ef 62 85 e8 d0 9c 50 02 0f 0b eb a7 e8 27 d6 1c ff c6 05 80 f8 99 04 01 48 c7 c7 40 ee 62 85 e8 b4 9c 50 02 <0f> 0b eb 8b e8 0b d6 1c ff c6 05 65 f8 99 04 01 48 c7 c7 40 ee 62 [ 487.464010][ T397] RSP: 0018:ffffc90000b977c0 EFLAGS: 00010246 [ 487.470298][ T397] RAX: 5c7c9c783cf87e00 RBX: 0000000000000000 RCX: ffff8881151293c0 [ 487.478380][ T397] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 487.486737][ T397] RBP: ffffc90000b977d0 R08: dffffc0000000000 R09: fffff52000172e45 [ 487.496812][ T6977] EXT4-fs (loop2): Ignoring removed orlov option [ 487.507958][ T397] R10: fffff52000172e45 R11: 1ffff92000172e44 R12: 1ffff92000172f04 [ 487.516236][ T6977] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option [ 487.523941][ T397] R13: ffff88811eabb08c R14: 0000000000000000 R15: 0000000000000cc0 [ 487.532435][ T397] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 487.541917][ T397] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 487.548604][ T397] CR2: 00007fb8d08d1000 CR3: 0000000113c56000 CR4: 00000000003526b0 [ 487.556928][ T397] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 487.565577][ T397] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 487.573813][ T397] Call Trace: [ 487.577187][ T397] [ 487.587178][ T397] nf_nat_masq_schedule+0x439/0x4c0 [ 487.606235][ T397] ? __kasan_check_write+0x14/0x20 [ 487.607111][ T6977] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 487.639467][ T397] ? nf_nat_masq_schedule+0x4c0/0x4c0 [ 487.648974][ T397] ? masq_device_event+0xd0/0xd0 [ 487.656431][ T397] ? nfqnl_rcv_dev_event+0x441/0x470 [ 487.664536][ T397] ? __kasan_check_read+0x11/0x20 [ 487.692095][ T397] masq_device_event+0x9b/0xd0 [ 487.699959][ T397] raw_notifier_call_chain+0x90/0x100 [ 487.705439][ T397] dev_close_many+0x32d/0x4d0 [ 487.710168][ T397] ? __dev_open+0x4c0/0x4c0 [ 487.714680][ T397] ? release_firmware_map_entry+0x190/0x190 [ 487.720787][ T397] ? generic_exec_single+0x22d/0x390 [ 487.726091][ T397] ? __kasan_check_read+0x11/0x20 [ 487.731172][ T397] unregister_netdevice_many+0x44c/0x1990 [ 487.736911][ T397] ? __cond_resched+0xb0/0xb0 [ 487.741808][ T397] ? __cond_resched+0xb0/0xb0 [ 487.746504][ T397] ? alloc_netdev_mqs+0xc90/0xc90 [ 487.751619][ T397] ? irqentry_exit+0x37/0x40 [ 487.756899][ T397] ? sysvec_reschedule_ipi+0x78/0x80 [ 487.762464][ T397] ? asm_sysvec_reschedule_ipi+0x1b/0x20 [ 487.768225][ T397] ip6gre_exit_batch_net+0x5a5/0x5f0 [ 487.773594][ T397] ? ip6gre_init_net+0x340/0x340 [ 487.778655][ T397] ? ip6gre_init_net+0x340/0x340 [ 487.783872][ T397] cleanup_net+0x602/0xad0 [ 487.783981][ T6984] 9pnet: Insufficient options for proto=fd [ 487.788294][ T397] ? ops_init+0x4a0/0x4a0 [ 487.788318][ T397] process_one_work+0x6be/0xba0 [ 487.805532][ T397] worker_thread+0xa59/0x1200 [ 487.810380][ T397] ? _raw_spin_lock_irqsave+0xb0/0x110 [ 487.815973][ T397] kthread+0x411/0x500 [ 487.822614][ T397] ? worker_clr_flags+0x190/0x190 [ 487.827745][ T397] ? kthread_blkcg+0xd0/0xd0 [ 487.832405][ T397] ret_from_fork+0x1f/0x30 [ 487.836894][ T397] [ 487.840194][ T397] ---[ end trace 595af4f9f01272f1 ]--- [ 487.854450][ T6973] netlink: 'syz.1.1919': attribute type 4 has an invalid length. [ 487.991225][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 487.999534][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 488.007891][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 488.015508][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 488.023178][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 488.031815][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 488.040198][ T55] bridge0: port 1(bridge_slave_0) entered blocking state [ 488.047292][ T55] bridge0: port 1(bridge_slave_0) entered forwarding state [ 488.054925][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 488.063481][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 488.071739][ T55] bridge0: port 2(bridge_slave_1) entered blocking state [ 488.078787][ T55] bridge0: port 2(bridge_slave_1) entered forwarding state [ 488.110671][ T6993] 9pnet: Insufficient options for proto=fd [ 488.122182][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 488.123284][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 488.175616][ T6994] loop1: detected capacity change from 0 to 512 [ 488.297108][ T6994] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 488.297523][ T6994] ext4 filesystem being mounted at /382/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 488.348582][ T6994] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1924: corrupted inode contents [ 488.349629][ T6994] EXT4-fs error (device loop1): ext4_dirty_inode:6070: inode #2: comm syz.1.1924: mark_inode_dirty error [ 488.350736][ T6994] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1924: corrupted inode contents [ 488.351269][ T6994] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.1924: mark_inode_dirty error [ 489.154829][ T6951] device veth0_vlan entered promiscuous mode [ 489.162902][ T427] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 489.163160][ T427] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 489.163481][ T427] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 489.163661][ T427] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 489.163842][ T427] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 489.164038][ T427] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 489.168424][ T6951] device veth1_macvtap entered promiscuous mode [ 489.172523][ T427] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 489.172762][ T427] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 489.172953][ T427] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 489.174192][ T427] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 489.174455][ T427] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 489.203379][ T6998] loop0: detected capacity change from 0 to 256 [ 489.388630][ T30] audit: type=1400 audit(1749254134.102:2616): avc: denied { mounton } for pid=6951 comm="syz-executor" path="/root/syzkaller.kSAcUQ/syz-tmp" dev="sda1" ino=2047 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 489.415932][ T30] audit: type=1400 audit(1749254134.102:2617): avc: denied { mount } for pid=6951 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 489.453977][ T30] audit: type=1400 audit(1749254134.102:2618): avc: denied { mounton } for pid=6951 comm="syz-executor" path="/root/syzkaller.kSAcUQ/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 489.481532][ T30] audit: type=1400 audit(1749254134.102:2619): avc: denied { mounton } for pid=6951 comm="syz-executor" path="/root/syzkaller.kSAcUQ/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=43204 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 489.509824][ T30] audit: type=1400 audit(1749254134.102:2620): avc: denied { mounton } for pid=6951 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=556 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 489.594654][ T30] audit: type=1400 audit(1749254134.102:2621): avc: denied { mounton } for pid=6951 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 489.640460][ T30] audit: type=1400 audit(1749254134.102:2622): avc: denied { mount } for pid=6951 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 489.847697][ T397] device bridge_slave_1 left promiscuous mode [ 489.869139][ T397] bridge0: port 2(bridge_slave_1) entered disabled state [ 489.953192][ T397] device bridge_slave_0 left promiscuous mode [ 489.999189][ T397] bridge0: port 1(bridge_slave_0) entered disabled state [ 490.150384][ T397] device veth1_macvtap left promiscuous mode [ 490.184534][ T7018] loop0: detected capacity change from 0 to 1024 [ 490.553332][ T397] device veth0_vlan left promiscuous mode [ 490.653881][ T7018] EXT4-fs (loop0): Ignoring removed orlov option [ 490.662358][ T7022] loop5: detected capacity change from 0 to 512 [ 490.669093][ T7018] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 490.681278][ T7018] EXT4-fs (loop0): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 490.762421][ T7028] 9pnet: Insufficient options for proto=fd [ 491.107565][ T7022] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 491.153247][ T7032] loop3: detected capacity change from 0 to 512 [ 491.240995][ T7022] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e12c, mo2=0002] [ 491.260825][ T7022] System zones: 1-12 [ 491.275957][ T7022] EXT4-fs (loop5): orphan cleanup on readonly fs [ 491.760426][ T7022] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1933: bg 0: block 361: padding at end of block bitmap is not set [ 491.783134][ T7022] EXT4-fs (loop5): Remounting filesystem read-only [ 491.790048][ T7022] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6183: Corrupt filesystem [ 491.798956][ T7022] EXT4-fs (loop5): Remounting filesystem read-only [ 491.805869][ T7022] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.1933: invalid indirect mapped block 12 (level 1) [ 492.204005][ T7022] EXT4-fs (loop5): Remounting filesystem read-only [ 492.212040][ T7022] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.1933: invalid indirect mapped block 2 (level 2) [ 492.226094][ T7032] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 492.242454][ T7032] ext4 filesystem being mounted at /376/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 492.591339][ T7022] EXT4-fs (loop5): Remounting filesystem read-only [ 492.773261][ T7022] EXT4-fs (loop5): 1 truncate cleaned up [ 492.781173][ T7022] EXT4-fs (loop5): mounted filesystem without journal. Opts: noload,max_batch_time=0x0000000000000007,inode_readahead_blks=0x0000000000000040,errors=remount-ro,debug_want_extra_isize=0x0000000000000008. Quota mode: none. [ 492.803544][ T7032] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1934: corrupted inode contents [ 493.345398][ T7050] 9pnet: Insufficient options for proto=fd [ 493.388564][ T7032] EXT4-fs error (device loop3): ext4_dirty_inode:6070: inode #2: comm syz.3.1934: mark_inode_dirty error [ 493.573247][ T7055] FAULT_INJECTION: forcing a failure. [ 493.573247][ T7055] name failslab, interval 1, probability 0, space 0, times 0 [ 493.595487][ T7032] EXT4-fs error (device loop3): ext4_do_update_inode:5234: inode #2: comm syz.3.1934: corrupted inode contents [ 493.617559][ T7055] CPU: 1 PID: 7055 Comm: syz.2.1939 Tainted: G W 5.15.185-syzkaller-00339-ge678c93d43cc #0 [ 493.628878][ T7055] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 493.638934][ T7055] Call Trace: [ 493.642206][ T7055] [ 493.645134][ T7055] __dump_stack+0x21/0x30 [ 493.649472][ T7055] dump_stack_lvl+0xee/0x150 [ 493.654072][ T7055] ? show_regs_print_info+0x20/0x20 [ 493.659379][ T7055] ? unwind_get_return_address+0x4d/0x90 [ 493.665012][ T7055] ? stack_trace_save+0xe0/0xe0 [ 493.669868][ T7055] dump_stack+0x15/0x20 [ 493.674027][ T7055] should_fail+0x3c1/0x510 [ 493.678444][ T7055] __should_failslab+0xa4/0xe0 [ 493.683221][ T7055] should_failslab+0x9/0x20 [ 493.687728][ T7055] slab_pre_alloc_hook+0x3b/0xe0 [ 493.692675][ T7055] kmem_cache_alloc_trace+0x48/0x270 [ 493.697968][ T7055] ? alloc_pipe_info+0xe7/0x4b0 [ 493.702827][ T7055] alloc_pipe_info+0xe7/0x4b0 [ 493.707638][ T7055] splice_direct_to_actor+0x970/0xb30 [ 493.713026][ T7055] ? avc_has_perm_noaudit+0x460/0x460 [ 493.718398][ T7055] ? do_splice_direct+0x2c0/0x2c0 [ 493.723425][ T7055] ? selinux_file_permission+0x3f4/0x510 [ 493.729055][ T7055] ? fsnotify_perm+0x67/0x5b0 [ 493.733726][ T7055] ? security_file_permission+0x79/0xa0 [ 493.739275][ T7055] ? pipe_to_sendpage+0x310/0x310 [ 493.744301][ T7055] ? security_file_permission+0x83/0xa0 [ 493.749855][ T7055] ? rw_verify_area+0xa7/0x1c0 [ 493.754618][ T7055] do_splice_direct+0x1b3/0x2c0 [ 493.759467][ T7055] ? splice_direct_to_actor+0xb30/0xb30 [ 493.765030][ T7055] ? security_file_permission+0x83/0xa0 [ 493.770575][ T7055] do_sendfile+0x5c6/0xeb0 [ 493.775009][ T7055] ? do_preadv+0x330/0x330 [ 493.779427][ T7055] ? fput_many+0x15a/0x1a0 [ 493.783835][ T7055] ? fput+0x1a/0x20 [ 493.787635][ T7055] __x64_sys_sendfile64+0x18f/0x1f0 [ 493.792822][ T7055] ? __ia32_sys_read+0x90/0x90 [ 493.797577][ T7055] ? __ia32_sys_sendfile+0x190/0x190 [ 493.802854][ T7055] ? fpregs_assert_state_consistent+0xb1/0xe0 [ 493.808911][ T7055] x64_sys_call+0x88d/0x9a0 [ 493.813505][ T7055] do_syscall_64+0x4c/0xa0 [ 493.817914][ T7055] ? clear_bhb_loop+0x50/0xa0 [ 493.822578][ T7055] ? clear_bhb_loop+0x50/0xa0 [ 493.827249][ T7055] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 493.833151][ T7055] RIP: 0033:0x7feeb18ab929 [ 493.837552][ T7055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 493.857157][ T7055] RSP: 002b:00007feeaff14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 493.865565][ T7055] RAX: ffffffffffffffda RBX: 00007feeb1ad2fa0 RCX: 00007feeb18ab929 [ 493.873612][ T7055] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000003 [ 493.881575][ T7055] RBP: 00007feeaff14090 R08: 0000000000000000 R09: 0000000000000000 [ 493.889539][ T7055] R10: 000000007ffff004 R11: 0000000000000246 R12: 0000000000000001 [ 493.897499][ T7055] R13: 0000000000000000 R14: 00007feeb1ad2fa0 R15: 00007ffc1fd0a9e8 [ 493.905596][ T7055] [ 493.954369][ T7032] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.1934: mark_inode_dirty error [ 494.045409][ T7059] loop5: detected capacity change from 0 to 512 [ 494.266636][ T7066] loop1: detected capacity change from 0 to 512 [ 495.140667][ T7068] loop0: detected capacity change from 0 to 512 [ 495.327335][ T7066] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 495.344119][ T7066] ext4 filesystem being mounted at /387/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 495.701131][ T7068] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 495.717734][ T7068] ext4 filesystem being mounted at /394/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 495.748422][ T7065] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1942: corrupted inode contents [ 495.761323][ T7068] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1944: corrupted inode contents [ 495.773743][ T7059] EXT4-fs error (device loop5): ext4_orphan_get:1427: comm syz.5.1940: bad orphan inode 15 [ 495.783844][ T7065] EXT4-fs error (device loop1): ext4_dirty_inode:6070: inode #2: comm syz.1.1942: mark_inode_dirty error [ 495.795529][ T7068] EXT4-fs error (device loop0): ext4_dirty_inode:6070: inode #2: comm syz.0.1944: mark_inode_dirty error [ 495.808482][ T7065] EXT4-fs error (device loop1): ext4_do_update_inode:5234: inode #2: comm syz.1.1942: corrupted inode contents [ 495.889670][ T7068] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1944: corrupted inode contents [ 495.902271][ T7065] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.1942: mark_inode_dirty error [ 495.913853][ T7068] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.1944: mark_inode_dirty error [ 496.397361][ T7059] ext4_test_bit(bit=14, block=5) = 0 [ 496.423463][ T7059] EXT4-fs (loop5): mounted filesystem without journal. Opts: noblock_validity,stripe=0x0000000000000001,journal_dev=0x0000000000000003,grpid,journal_ioprio=0x0000000000000002,journal_ioprio=0x0000000000000003,nolazytime,noload,,errors=continue. Quota mode: none. [ 496.652783][ T7087] loop1: detected capacity change from 0 to 1024 [ 496.665105][ T7087] EXT4-fs (loop1): Ignoring removed orlov option [ 496.671623][ T7087] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 497.469593][ T7087] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none. [ 497.581499][ T7097] loop0: detected capacity change from 0 to 512 [ 497.839406][ T7097] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000007,nodiscard,auto_da_alloc,,errors=continue. Quota mode: writeback. [ 497.856243][ T7097] ext4 filesystem being mounted at /395/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 497.919827][ T7097] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1948: corrupted inode contents [ 497.933261][ T7097] EXT4-fs error (device loop0): ext4_dirty_inode:6070: inode #2: comm syz.0.1948: mark_inode_dirty error [ 497.946008][ T7097] EXT4-fs error (device loop0): ext4_do_update_inode:5234: inode #2: comm syz.0.1948: corrupted inode contents [ 497.959056][ T7097] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.1948: mark_inode_dirty error [ 498.965115][ T397] ================================================================== [ 498.973213][ T397] BUG: KASAN: use-after-free in tcp_metrics_flush_all+0xd3/0x210 [ 498.980932][ T397] Read of size 4 at addr ffff88811eabb08c by task kworker/u4:4/397 [ 498.988806][ T397] [ 498.991120][ T397] CPU: 0 PID: 397 Comm: kworker/u4:4 Tainted: G W 5.15.185-syzkaller-00339-ge678c93d43cc #0 [ 499.002470][ T397] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 499.012511][ T397] Workqueue: netns cleanup_net [ 499.017275][ T397] Call Trace: [ 499.020592][ T397] [ 499.023533][ T397] __dump_stack+0x21/0x30 [ 499.027850][ T397] dump_stack_lvl+0xee/0x150 [ 499.032430][ T397] ? show_regs_print_info+0x20/0x20 [ 499.037616][ T397] ? load_image+0x3a0/0x3a0 [ 499.042105][ T397] ? ____kasan_slab_free+0x130/0x160 [ 499.047394][ T397] ? __kasan_slab_free+0x11/0x20 [ 499.052325][ T397] print_address_description+0x7f/0x2c0 [ 499.057857][ T397] ? tcp_metrics_flush_all+0xd3/0x210 [ 499.063217][ T397] kasan_report+0xf1/0x140 [ 499.067620][ T397] ? _raw_spin_lock_bh+0x8e/0xe0 [ 499.072546][ T397] ? tcp_metrics_flush_all+0xd3/0x210 [ 499.077906][ T397] kasan_check_range+0x280/0x290 [ 499.082835][ T397] __kasan_check_read+0x11/0x20 [ 499.087680][ T397] tcp_metrics_flush_all+0xd3/0x210 [ 499.092866][ T397] ? tcp_net_metrics_init+0x150/0x150 [ 499.098223][ T397] tcp_net_metrics_exit_batch+0x10/0x20 [ 499.103757][ T397] cleanup_net+0x602/0xad0 [ 499.108166][ T397] ? ops_init+0x4a0/0x4a0 [ 499.112483][ T397] ? pwq_dec_nr_in_flight+0x18c/0x3c0 [ 499.117845][ T397] process_one_work+0x6be/0xba0 [ 499.122683][ T397] worker_thread+0xa59/0x1200 [ 499.127354][ T397] ? _raw_spin_lock_irqsave+0xb0/0x110 [ 499.132815][ T397] kthread+0x411/0x500 [ 499.136873][ T397] ? worker_clr_flags+0x190/0x190 [ 499.141895][ T397] ? kthread_blkcg+0xd0/0xd0 [ 499.146478][ T397] ret_from_fork+0x1f/0x30 [ 499.150893][ T397] [ 499.153898][ T397] [ 499.156213][ T397] Allocated by task 284: [ 499.160444][ T397] __kasan_slab_alloc+0xbd/0xf0 [ 499.165284][ T397] slab_post_alloc_hook+0x4f/0x2b0 [ 499.170385][ T397] kmem_cache_alloc+0xf7/0x260 [ 499.175137][ T397] copy_net_ns+0x145/0x5c0 [ 499.179545][ T397] create_new_namespaces+0x3a2/0x660 [ 499.184832][ T397] unshare_nsproxy_namespaces+0x120/0x170 [ 499.190544][ T397] ksys_unshare+0x4ac/0x7b0 [ 499.195041][ T397] __x64_sys_unshare+0x38/0x40 [ 499.199793][ T397] x64_sys_call+0x442/0x9a0 [ 499.204290][ T397] do_syscall_64+0x4c/0xa0 [ 499.208697][ T397] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 499.214578][ T397] [ 499.216887][ T397] Freed by task 397: [ 499.220769][ T397] kasan_set_track+0x4a/0x70 [ 499.225351][ T397] kasan_set_free_info+0x23/0x40 [ 499.230272][ T397] ____kasan_slab_free+0x125/0x160 [ 499.235370][ T397] __kasan_slab_free+0x11/0x20 [ 499.240124][ T397] slab_free_freelist_hook+0xc2/0x190 [ 499.245484][ T397] kmem_cache_free+0x100/0x320 [ 499.250239][ T397] cleanup_net+0xa2d/0xad0 [ 499.254649][ T397] process_one_work+0x6be/0xba0 [ 499.259493][ T397] worker_thread+0xa59/0x1200 [ 499.264159][ T397] kthread+0x411/0x500 [ 499.268219][ T397] ret_from_fork+0x1f/0x30 [ 499.272630][ T397] [ 499.274944][ T397] The buggy address belongs to the object at ffff88811eabb000 [ 499.274944][ T397] which belongs to the cache net_namespace of size 3968 [ 499.289244][ T397] The buggy address is located 140 bytes inside of [ 499.289244][ T397] 3968-byte region [ffff88811eabb000, ffff88811eabbf80) [ 499.302598][ T397] The buggy address belongs to the page: [ 499.308213][ T397] page:ffffea00047aae00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11eab8 [ 499.318452][ T397] head:ffffea00047aae00 order:3 compound_mapcount:0 compound_pincount:0 [ 499.326763][ T397] flags: 0x4000000000010200(slab|head|zone=1) [ 499.332847][ T397] raw: 4000000000010200 0000000000000000 dead000000000122 ffff8881001c4180 [ 499.341433][ T397] raw: 0000000000000000 0000000080080008 00000001ffffffff 0000000000000000 [ 499.349998][ T397] page dumped because: kasan: bad access detected [ 499.356393][ T397] page_owner tracks the page as allocated [ 499.362095][ T397] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 286, ts 24872104194, free_ts 24749992912 [ 499.381104][ T397] post_alloc_hook+0x192/0x1b0 [ 499.385860][ T397] prep_new_page+0x1c/0x110 [ 499.390346][ T397] get_page_from_freelist+0x2cc5/0x2d50 [ 499.395876][ T397] __alloc_pages+0x18f/0x440 [ 499.400453][ T397] new_slab+0xa1/0x4d0 [ 499.404509][ T397] ___slab_alloc+0x381/0x810 [ 499.409086][ T397] __slab_alloc+0x49/0x90 [ 499.413405][ T397] kmem_cache_alloc+0x138/0x260 [ 499.418242][ T397] copy_net_ns+0x145/0x5c0 [ 499.422647][ T397] create_new_namespaces+0x3a2/0x660 [ 499.427920][ T397] unshare_nsproxy_namespaces+0x120/0x170 [ 499.433630][ T397] ksys_unshare+0x4ac/0x7b0 [ 499.438119][ T397] __x64_sys_unshare+0x38/0x40 [ 499.442867][ T397] x64_sys_call+0x442/0x9a0 [ 499.447360][ T397] do_syscall_64+0x4c/0xa0 [ 499.451776][ T397] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 499.457668][ T397] page last free stack trace: [ 499.462320][ T397] free_unref_page_prepare+0x542/0x550 [ 499.467766][ T397] free_unref_page+0xa2/0x550 [ 499.472426][ T397] free_compound_page+0x78/0xa0 [ 499.477263][ T397] __put_compound_page+0x77/0xb0 [ 499.482191][ T397] __put_page+0xbc/0xe0 [ 499.486337][ T397] skb_release_data+0x3d3/0xa10 [ 499.491181][ T397] __kfree_skb+0x50/0x70 [ 499.495412][ T397] tcp_recvmsg_locked+0x14ac/0x2640 [ 499.500596][ T397] tcp_recvmsg+0x21b/0x720 [ 499.505001][ T397] inet_recvmsg+0x134/0x470 [ 499.509494][ T397] sock_read_iter+0x2a2/0x340 [ 499.514160][ T397] vfs_read+0x68b/0xbe0 [ 499.518305][ T397] ksys_read+0x140/0x240 [ 499.522537][ T397] __x64_sys_read+0x7b/0x90 [ 499.527049][ T397] x64_sys_call+0x96d/0x9a0 [ 499.531542][ T397] do_syscall_64+0x4c/0xa0 [ 499.535943][ T397] [ 499.538252][ T397] Memory state around the buggy address: [ 499.543874][ T397] ffff88811eabaf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 499.551922][ T397] ffff88811eabb000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 499.559971][ T397] >ffff88811eabb080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 499.568021][ T397] ^ [ 499.572335][ T397] ffff88811eabb100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 499.580383][ T397] ffff88811eabb180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 499.588427][ T397] ================================================================== [ 499.596473][ T397] Disabling lock debugging due to kernel taint [ 499.738264][ T30] audit: type=1400 audit(1749254144.492:2623): avc: denied { read } for pid=84 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 500.070550][ T30] audit: type=1400 audit(1749254144.522:2624): avc: denied { search } for pid=84 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 500.169772][ T30] audit: type=1400 audit(1749254144.522:2625): avc: denied { write } for pid=84 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 500.219703][ T30] audit: type=1400 audit(1749254144.522:2626): avc: denied { add_name } for pid=84 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 500.259810][ T30] audit: type=1400 audit(1749254144.522:2627): avc: denied { create } for pid=84 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 500.304750][ T30] audit: type=1400 audit(1749254144.522:2628): avc: denied { append open } for pid=84 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 500.327959][ T30] audit: type=1400 audit(1749254144.522:2629): avc: denied { getattr } for pid=84 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 500.350994][ T30] audit: type=1400 audit(1749254144.572:2630): avc: denied { write } for pid=274 comm="syz-executor" path="pipe:[14952]" dev="pipefs" ino=14952 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 500.385207][ T397] tipc: Disabling bearer [ 500.399817][ T397] tipc: Left network mode [ 500.991458][ T397] device bridge_slave_1 left promiscuous mode [ 500.997668][ T397] bridge0: port 2(bridge_slave_1) entered disabled state [ 501.005150][ T397] device bridge_slave_0 left promiscuous mode [ 501.011288][ T397] bridge0: port 1(bridge_slave_0) entered disabled state [ 501.019336][ T397] device veth1_macvtap left promiscuous mode [ 501.025452][ T397] device veth0_vlan left promiscuous mode [ 501.862367][ T397] tipc: Disabling bearer [ 501.867770][ T397] tipc: Left network mode [ 501.872611][ T397] tipc: Disabling bearer [ 501.877860][ T397] tipc: Left network mode [ 501.882591][ T397] tipc: Disabling bearer [ 501.887835][ T397] tipc: Left network mode [ 502.740820][ T397] device bridge_slave_1 left promiscuous mode [ 502.747027][ T397] bridge0: port 2(bridge_slave_1) entered disabled state [ 502.754490][ T397] device bridge_slave_0 left promiscuous mode [ 502.760693][ T397] bridge0: port 1(bridge_slave_0) entered disabled state [ 502.769306][ T397] device bridge_slave_1 left promiscuous mode [ 502.775540][ T397] bridge0: port 2(bridge_slave_1) entered disabled state [ 502.782983][ T397] device bridge_slave_0 left promiscuous mode [ 502.789065][ T397] bridge0: port 1(bridge_slave_0) entered disabled state [ 502.797280][ T397] device bridge_slave_1 left promiscuous mode [ 502.803425][ T397] bridge0: port 2(bridge_slave_1) entered disabled state [ 502.810945][ T397] device bridge_slave_0 left promiscuous mode [ 502.817047][ T397] bridge0: port 1(bridge_slave_0) entered disabled state [ 502.825652][ T397] device bridge_slave_1 left promiscuous mode [ 502.831764][ T397] bridge0: port 2(bridge_slave_1) entered disabled state [ 502.839035][ T397] device bridge_slave_0 left promiscuous mode [ 502.845178][ T397] bridge0: port 1(bridge_slave_0) entered disabled state [ 502.853280][ T397] device veth1_macvtap left promiscuous mode [ 502.859266][ T397] device veth0_vlan left promiscuous mode [ 502.865182][ T397] device veth1_macvtap left promiscuous mode [ 502.871236][ T397] device veth0_vlan left promiscuous mode [ 502.877070][ T397] device veth1_macvtap left promiscuous mode [ 502.883085][ T397] device veth0_vlan left promiscuous mode