last executing test programs: 5.804451467s ago: executing program 4 (id=894): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000400)='kfree\x00', r0}, 0x18) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001880), 0xffffffffffffffff) sendmsg$NL80211_CMD_START_AP(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=ANY=[@ANYBLOB="24010000", @ANYRES16=r3, @ANYBLOB="a18300000000000000000500000008000300", @ANYRES32=0x0, @ANYBLOB="08010e8004"], 0x124}}, 0x0) 5.077571237s ago: executing program 4 (id=899): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000180), 0x10) sendmsg$can_bcm(r0, 0x0, 0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r1, 0xffffffffffffffff, 0x0) 4.922641511s ago: executing program 1 (id=900): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), r0) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)={0x58, r1, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy2\x00'}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}]}, 0x58}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 4.397146379s ago: executing program 4 (id=903): sendmsg$AUDIT_LIST_RULES(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x804) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c) sendto$inet6(r0, &(0x7f0000000240)='\x00', 0x1, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040)={0x8, 0x6, 0x5, 0x2, 0xe2, 0xc1, 0x8, 0xd1, 0x4, 0xf, 0x2, 0xd2, 0x53, 0xf}, 0xe) recvmmsg(r0, &(0x7f0000000740)=[{{0x0, 0x4a, &(0x7f00000000c0), 0x1, &(0x7f00000003c0)=""/21, 0x21}, 0x1ff}], 0x73d, 0x40000040, 0x0) 4.311298311s ago: executing program 2 (id=904): bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB='\v\x00'], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000200)='rpc_socket_nospace\x00', 0xffffffffffffffff, 0x0, 0x8000006}, 0x18) mkdirat(0xffffffffffffff9c, 0x0, 0x80) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0, 0xffffffffffffffff}, &(0x7f0000000300), &(0x7f00000002c0)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) mount$9p_rdma(&(0x7f0000000380), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x16, &(0x7f0000000680)={'trans=rdma,', {'port', 0x3d, 0x4e21}}) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) r4 = socket$netlink(0x10, 0x3, 0x14) r5 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x2082) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a500000005000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94) r6 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r7 = fcntl$dupfd(r5, 0x0, r6) ioctl$SCSI_IOCTL_START_UNIT(r7, 0x5) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844) getsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f00000001c0)={@dev, @loopback, 0x0}, &(0x7f0000000200)=0xc) socket$nl_route(0x10, 0x3, 0x0) r9 = socket(0x1, 0x803, 0x0) getsockname$packet(r9, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$ETHTOOL_MSG_TSINFO_GET(r4, &(0x7f00000003c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)={0x98, 0x0, 0x400, 0x70bd2d, 0x25dfdbfb, {}, [@HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r10}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_vlan\x00'}]}]}, 0x98}, 0x1, 0x0, 0x0, 0x20000050}, 0x8001) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00'}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000040000ec0000000000"], 0x50) sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="500000000206050000000000000000000000000005000400800000dc59a586045040ea8f000900020073797a3100000000050001000730b800050005000a00000015000300686173683a69702c706f72742c6e657400000000"], 0x50}}, 0x0) 4.161177331s ago: executing program 1 (id=905): r0 = socket(0x10, 0x3, 0x9) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000013c0)=ANY=[@ANYBLOB="14000000f403010000000000000000000500000a"], 0x28}, 0x1, 0x0, 0x0, 0x20064841}, 0x40000) 3.930290266s ago: executing program 4 (id=907): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) unshare(0x28000600) fcntl$getownex(r1, 0x10, &(0x7f0000000800)) 3.901011192s ago: executing program 3 (id=908): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='kfree\x00', r0}, 0x18) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='cgroup\x00') preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000480)=""/128, 0x80}], 0x1, 0x12e, 0x0) 3.719394163s ago: executing program 2 (id=909): creat(&(0x7f0000000080)='./file0\x00', 0x6a) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r2, &(0x7f0000000100)={0xa, 0x0, 0x7, @ipv4={'\x00', '\xff\xff', @local}, 0x1}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r2, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) statx(0xffffffffffffff9c, 0x0, 0x2000, 0x20, 0x0) recvfrom(r2, &(0x7f0000001300)=""/4096, 0x1000, 0x2, 0x0, 0x0) setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000080)=@gcm_128={{0x304}, "bb28ced7b820ec2d", "ca08bd91171e6405c84cdc6e52f57229", "f5ce6f37", "fe017c9f4e95f742"}, 0x28) syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r2) 3.584055261s ago: executing program 1 (id=910): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000dfff75390000000000000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) pipe(&(0x7f00000014c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r2, 0x0, r4, 0x0, 0x8000f28, 0x0) splice(r3, 0x0, r2, 0x0, 0x7f, 0xe) write(r1, 0x0, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x1000002, 0x4012831, 0xffffffffffffffff, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000580)='smaps_rollup\x00') socket$nl_route(0x10, 0x3, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) lseek(r5, 0x2004, 0x0) 3.334652744s ago: executing program 4 (id=911): bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r0, 0x0, 0x7}, 0x18) r1 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000340)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000240)='asymmetric\x00', &(0x7f00000000c0)=@chain) keyctl$restrict_keyring(0x1d, r1, 0x0, 0x0) 3.334326515s ago: executing program 3 (id=912): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$restrict_keyring(0xa, r2, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000400)='\xa5]\xadf\x99}\xd1\xbf6#\xc8\x85\x8c\x8f\xab\xd4\xd5\xd919b\xe7\xb3\xce\xc4\x00\xb0\xc329<\xeb\"\x89Kn\xd2#[\xd3\x03\xd3\x16.~Z:\xd9\xbb14\xdf\xa0\xd86\x0f*\xcf\xd5\xd8\xc7\xda\xb193\x99/\xac{\xe2L\xd1U\f\xbc\xcd\x11\xc6\x9e\xda\xe7\x1f\xffL+\xab\xae\xd9y\xe2R\x18\xbb\xfaAgy\xb6L\xa5\x12\xdc') 3.282981495s ago: executing program 0 (id=913): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000180), 0x10) sendmsg$can_bcm(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x50}, 0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r1, 0xffffffffffffffff, 0x0) 2.846891414s ago: executing program 4 (id=914): unshare(0x6a040000) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000740)=ANY=[@ANYRES8], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x14, 0x0, 0x0, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0xa, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, 0x0) r2 = request_key(&(0x7f0000000440)='encrypted\x00', &(0x7f0000000600)={'syz', 0x0}, &(0x7f00000004c0)='\x01', 0xfffffffffffffffa) keyctl$setperm(0x5, r2, 0x10040a) r3 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) flock(r3, 0x5) r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) flock(r4, 0x1) flock(r4, 0x2) r5 = dup3(r4, r3, 0x0) getsockname$packet(r3, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000780)=0x14) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x5, &(0x7f0000000ac0)=ANY=[@ANYRESHEX=r1], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x2d, '\x00', r6, 0x2, r3, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000007c0)='kfree\x00', r7, 0x0, 0xfffffffffffffffd}, 0x18) unshare(0x2040400) r8 = fsopen(&(0x7f0000000400)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0) unshare(0x2000400) fsmount(r8, 0x0, 0x0) r9 = socket$nl_route(0x10, 0x3, 0x0) arch_prctl$ARCH_SHSTK_ENABLE(0x5001, 0x1) r10 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x200000) ioctl$USBDEVFS_GETDRIVER(r10, 0x41045508, &(0x7f0000000140)={0x39, "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"}) sendmsg$nl_route(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@newlink={0x38, 0x10, 0x437, 0x10, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x54583, 0x1}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x38}}, 0x10) getsockopt$bt_hci(r5, 0x0, 0x2, &(0x7f0000000640)=""/213, &(0x7f0000000480)=0xd5) openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0) 2.701361338s ago: executing program 3 (id=915): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000005c0), r0) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)={0x4c, r1, 0x1, 0x70bd25, 0x25dfdbfd, {}, [@IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 2.681253452s ago: executing program 0 (id=916): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000280)={0x30000010}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000800)={&(0x7f0000000840)='ext4_discard_preallocations\x00', r0, 0x0, 0x100000000000fe53}, 0x18) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$eJzs3c1vVFUbAPDnzkwLpe9rKzEqLkyjIZAoLS1g8GMBe0LwY+fGSgtBho/QGi2aWBLcmBg3LkhcuRD/CyW6dWXiwoUbV4akGsNGY3TMnbkzDO1MOy0dbu39/ZLbOeeeOz3nQp85Z+49ZyaAwhpLf5Qi9kTE5SRipK2sElnhWOO4O7+/fzrdkqjVXv0tiSTb1zw+yR6Hsyf/PRLx/TdJ7C6vrHdu4er56Wp19kqWn5i/cHlibuHqgXMXps/Onp29OPXc1NEjh48cnTx4X+dXakufuP7WOyMfnXz9i8/+Sia//OlkEsfi1zONsvbz2CxjMRZ/1GofLN+f/rse3ezKclJu/Z3clSzfwZZVyWJkMCIei5Eot/1vjsSHL+faOKCvaklEDSioRPxDQTXHAc339r29Dy71eVQCPAhLx9OfAx3iv9K4NhijMRARe5c9r8MlvQ1J6/ju25PX0y36dB0O6Gzx2o4stTz+k3psjsbOem7XndI913nTEcCp7DHd/8oG6x9blhf/8OAsXouIxzuN/9eO/zfa4v/NDdYv/gEAAAAAAGDz3DoeEc92uv9Xyu7N7Yyn6vf/ksb9vx/urhA8tgn1r33/r3R7E6oBOlg6HvFSx/m/rTm+o+Us9//GbMDkzLnq7MGIeCgi9sfAjjQ/uUodBz7efaNbWfv8v3RL62/OBczacbuy497nzEzPT9/POQMNS9cinqh0n/+T9v9Je/+fSV8PLvdYx+69N091K1s7/oF+qX0esa9j/5+0jklW/3yOifp4YKI5Kljpyfc++apb/eIf8pP2/7tWj//RpP3zeubW9/sHI+LQQqXWrXyj4//B5LVy8/en3p2en78yGTGYnFi5f2p9bYbtqhkPzXhJ43//06tf/2uN/9vicCgiFnus89F/hn/uVqb/h/yk8T+zrv5//Ympm6Nfd6u/t/7/cL1P35/tcf0PVtdrgObdTgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4LypFxP8iKY230qXS+HjEcEQ8ErtK1Utz88+cufT2xZm0rP79/6XmN/2ONPJJ8/v/R9vyU8vyhyLi4Yj4tDxUz4+fvlSdyfvkAQAAAAAAAAAAAAAAAAAAYIsY7rL+P/VLOe/WAX1XyR7FOxRPJe8GALkR/1Bc4h+KS/xDcYl/KK4Nxr/bBbAN6P+hqAZ6O2xnv9sB5EH/DwAAAAAA28qtF5+/kUTE4gtD9S01mJW1bgwO5dU6oJ9KeTcAyI05vFBcpv5AcfU4+RfYxpJW6s9ap/Lus/+T/jQIAAAAAAAAAAAAAFhh355bP665/h/Ylqz/h+Ky/h+Ky/p/KC7v8YG1VvFb/w8AAAAAAAAAAAAA+ZtbuHp+ulqdvSIhsdUSAxGxBZqRQ2Iw//DM+YUJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo+TcAAP//Swsk/Q==") 2.450360943s ago: executing program 2 (id=917): sendmsg$AUDIT_LIST_RULES(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x804) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c) sendto$inet6(r0, &(0x7f0000000240)='\x00', 0x1, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040)={0x8, 0x6, 0x5, 0x2, 0xe2, 0xc1, 0x8, 0xd1, 0x4, 0xf, 0x2, 0xd2, 0x53, 0xf}, 0xe) recvmmsg(r0, &(0x7f0000000740)=[{{0x0, 0x4a, &(0x7f00000000c0), 0x1, &(0x7f00000003c0)=""/21, 0x21}, 0x1ff}], 0x73d, 0x40000040, 0x0) 1.686822434s ago: executing program 0 (id=918): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x47, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) unshare(0xc040400) getsockopt(0xffffffffffffffff, 0x114, 0x2717, 0x0, &(0x7f00000000c0)) 1.684117481s ago: executing program 2 (id=919): r0 = syz_open_dev$sg(&(0x7f0000000280), 0x0, 0x0) setreuid(0x0, 0xee00) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, 0x0, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}}, 0x24}}, 0x24040014) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r0]) 1.678294455s ago: executing program 3 (id=920): r0 = socket(0x10, 0x3, 0x9) sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000013c0)=ANY=[@ANYBLOB="14000000f403010000000000000000000500000a14"], 0x28}, 0x1, 0x0, 0x0, 0x20064841}, 0x40000) 1.502593263s ago: executing program 1 (id=921): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge0\x00', 0x0}) bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='br_fdb_add\x00', r2}, 0x10) sendmsg$nl_route(r0, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@bridge_newneigh={0x28, 0x1c, 0x1, 0x70bd28, 0x25dfdbfc, {0x7, 0x0, 0x0, r1, 0x80, 0x26, 0xb}, [@NDA_LLADDR={0xa, 0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xc}}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x20040010) 1.153225318s ago: executing program 0 (id=922): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000071000000850000000800000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4e, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10) move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 1.03796968s ago: executing program 3 (id=923): r0 = creat(&(0x7f0000000100)='./file0\x00', 0x0) close(r0) syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000001c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) mount$9p_fd(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) 999.526675ms ago: executing program 2 (id=924): r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108) close(r0) 806.771461ms ago: executing program 1 (id=925): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x90f}, 0x18) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r2 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x170) fgetxattr(r2, &(0x7f00000003c0)=@known='security.selinux\x00', 0x0, 0x0) 525.803062ms ago: executing program 0 (id=926): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000180), 0x10) sendmsg$can_bcm(r0, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x50}, 0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r1, 0xffffffffffffffff, 0x0) 350.960022ms ago: executing program 2 (id=927): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) r2 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r3 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) readv(r3, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}], 0x1) 153.399283ms ago: executing program 1 (id=928): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000280)={0x30000010}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000800)={&(0x7f0000000840)='ext4_discard_preallocations\x00', r0, 0x0, 0x100000000000fe53}, 0x18) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$eJzs3c1vVFUbAPDnzkwLpe9rKzEqLkyjIZAoLS1g8GMBe0LwY+fGSgtBho/QGi2aWBLcmBg3LkhcuRD/CyW6dWXiwoUbV4akGsNGY3TMnbkzDO1MOy0dbu39/ZLbOeeeOz3nQp85Z+49ZyaAwhpLf5Qi9kTE5SRipK2sElnhWOO4O7+/fzrdkqjVXv0tiSTb1zw+yR6Hsyf/PRLx/TdJ7C6vrHdu4er56Wp19kqWn5i/cHlibuHqgXMXps/Onp29OPXc1NEjh48cnTx4X+dXakufuP7WOyMfnXz9i8/+Sia//OlkEsfi1zONsvbz2CxjMRZ/1GofLN+f/rse3ezKclJu/Z3clSzfwZZVyWJkMCIei5Eot/1vjsSHL+faOKCvaklEDSioRPxDQTXHAc339r29Dy71eVQCPAhLx9OfAx3iv9K4NhijMRARe5c9r8MlvQ1J6/ju25PX0y36dB0O6Gzx2o4stTz+k3psjsbOem7XndI913nTEcCp7DHd/8oG6x9blhf/8OAsXouIxzuN/9eO/zfa4v/NDdYv/gEAAAAAAGDz3DoeEc92uv9Xyu7N7Yyn6vf/ksb9vx/urhA8tgn1r33/r3R7E6oBOlg6HvFSx/m/rTm+o+Us9//GbMDkzLnq7MGIeCgi9sfAjjQ/uUodBz7efaNbWfv8v3RL62/OBczacbuy497nzEzPT9/POQMNS9cinqh0n/+T9v9Je/+fSV8PLvdYx+69N091K1s7/oF+qX0esa9j/5+0jklW/3yOifp4YKI5Kljpyfc++apb/eIf8pP2/7tWj//RpP3zeubW9/sHI+LQQqXWrXyj4//B5LVy8/en3p2en78yGTGYnFi5f2p9bYbtqhkPzXhJ43//06tf/2uN/9vicCgiFnus89F/hn/uVqb/h/yk8T+zrv5//Ympm6Nfd6u/t/7/cL1P35/tcf0PVtdrgObdTgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4LypFxP8iKY230qXS+HjEcEQ8ErtK1Utz88+cufT2xZm0rP79/6XmN/2ONPJJ8/v/R9vyU8vyhyLi4Yj4tDxUz4+fvlSdyfvkAQAAAAAAAAAAAAAAAAAAYIsY7rL+P/VLOe/WAX1XyR7FOxRPJe8GALkR/1Bc4h+KS/xDcYl/KK4Nxr/bBbAN6P+hqAZ6O2xnv9sB5EH/DwAAAAAA28qtF5+/kUTE4gtD9S01mJW1bgwO5dU6oJ9KeTcAyI05vFBcpv5AcfU4+RfYxpJW6s9ap/Lus/+T/jQIAAAAAAAAAAAAAFhh355bP665/h/Ylqz/h+Ky/h+Ky/p/KC7v8YG1VvFb/w8AAAAAAAAAAAAA+ZtbuHp+ulqdvSIhsdUSAxGxBZqRQ2Iw//DM+YUJAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABo+TcAAP//Swsk/Q==") 150.149966ms ago: executing program 3 (id=929): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x2ca}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001b00)={0x11, 0xc, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000050000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000073000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000480)={r1}, 0xc) syz_emit_ethernet(0x2a, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @private=0x800001c, @multicast1}, {0x0, 0x17c1, 0x8}}}}}, 0x0) syz_emit_ethernet(0x2a, &(0x7f0000000100)=ANY=[@ANYBLOB="bbbbbbbbbbbb8a0a63cdec5908060001080006040001"], 0x0) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendto$packet(r2, &(0x7f0000000100)="f257a8ea7bc273dfaeab96850806", 0x2a, 0x0, &(0x7f0000000200)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @link_local}, 0x14) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x10, 0x0, &(0x7f0000000040)="b90103606989068c3c270040e700009e", 0x0, 0x8104, 0x6000000000000000, 0x0, 0x0, 0x0, 0x0}, 0x50) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x48}, 0x1, 0x0, 0x0, 0x10}, 0x4000000) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4008840) 0s ago: executing program 0 (id=930): sendmsg$AUDIT_LIST_RULES(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x804) r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c) sendto$inet6(r0, &(0x7f0000000240)='\x00', 0x1, 0x0, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040)={0x8, 0x6, 0x5, 0x2, 0xe2, 0xc1, 0x8, 0xd1, 0x4, 0xf, 0x2, 0xd2, 0x53, 0xf}, 0xe) recvmmsg(r0, &(0x7f0000000740)=[{{0x0, 0x4a, &(0x7f00000000c0), 0x1, &(0x7f00000003c0)=""/21, 0x21}, 0x1ff}], 0x73d, 0x40000040, 0x0) kernel console output (not intermixed with test programs): lave_0: entered allmulticast mode [ 209.731523][ T5802] bridge_slave_0: entered promiscuous mode [ 209.760206][ T5808] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 209.843296][ T5808] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 209.854730][ T5802] bridge0: port 2(bridge_slave_1) entered blocking state [ 209.862544][ T5802] bridge0: port 2(bridge_slave_1) entered disabled state [ 209.870273][ T5802] bridge_slave_1: entered allmulticast mode [ 209.885392][ T5802] bridge_slave_1: entered promiscuous mode [ 210.137799][ T5808] team0: Port device team_slave_0 added [ 210.313343][ T5808] team0: Port device team_slave_1 added [ 210.374457][ T5802] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 210.549595][ T5800] bridge0: port 1(bridge_slave_0) entered blocking state [ 210.557473][ T5800] bridge0: port 1(bridge_slave_0) entered disabled state [ 210.565530][ T5800] bridge_slave_0: entered allmulticast mode [ 210.575722][ T5800] bridge_slave_0: entered promiscuous mode [ 210.615074][ T5802] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 210.669920][ T5097] Bluetooth: hci1: command tx timeout [ 210.672808][ T5806] Bluetooth: hci0: command tx timeout [ 210.687435][ T5808] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 210.695521][ T5808] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 210.722210][ T5808] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 210.733955][ T5806] Bluetooth: hci2: command tx timeout [ 210.735454][ T5097] Bluetooth: hci4: command tx timeout [ 210.740507][ T5800] bridge0: port 2(bridge_slave_1) entered blocking state [ 210.752885][ T5800] bridge0: port 2(bridge_slave_1) entered disabled state [ 210.760652][ T5800] bridge_slave_1: entered allmulticast mode [ 210.770256][ T5800] bridge_slave_1: entered promiscuous mode [ 210.781699][ T5808] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 210.789319][ T5808] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 210.815820][ T5808] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 210.828421][ T5097] Bluetooth: hci3: command tx timeout [ 211.070905][ T5805] bridge0: port 1(bridge_slave_0) entered blocking state [ 211.078700][ T5805] bridge0: port 1(bridge_slave_0) entered disabled state [ 211.086725][ T5805] bridge_slave_0: entered allmulticast mode [ 211.098002][ T5805] bridge_slave_0: entered promiscuous mode [ 211.163991][ T5802] team0: Port device team_slave_0 added [ 211.171566][ T5797] bridge0: port 1(bridge_slave_0) entered blocking state [ 211.179334][ T5797] bridge0: port 1(bridge_slave_0) entered disabled state [ 211.187232][ T5797] bridge_slave_0: entered allmulticast mode [ 211.196452][ T5797] bridge_slave_0: entered promiscuous mode [ 211.209047][ T5805] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.216715][ T5805] bridge0: port 2(bridge_slave_1) entered disabled state [ 211.224547][ T5805] bridge_slave_1: entered allmulticast mode [ 211.234287][ T5805] bridge_slave_1: entered promiscuous mode [ 211.244840][ T5797] bridge0: port 2(bridge_slave_1) entered blocking state [ 211.253002][ T5797] bridge0: port 2(bridge_slave_1) entered disabled state [ 211.260667][ T5797] bridge_slave_1: entered allmulticast mode [ 211.270550][ T5797] bridge_slave_1: entered promiscuous mode [ 211.298044][ T5800] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 211.316409][ T5802] team0: Port device team_slave_1 added [ 211.334381][ T5800] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 211.710018][ T5805] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 211.723888][ T5802] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 211.731048][ T5802] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 211.758505][ T5802] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 211.786047][ T5808] hsr_slave_0: entered promiscuous mode [ 211.795791][ T5808] hsr_slave_1: entered promiscuous mode [ 211.816020][ T5797] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 211.833088][ T5800] team0: Port device team_slave_0 added [ 211.850540][ T5805] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 211.862997][ T5802] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 211.870146][ T5802] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 211.896986][ T5802] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 211.938739][ T5797] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 211.956257][ T5800] team0: Port device team_slave_1 added [ 212.164190][ T5805] team0: Port device team_slave_0 added [ 212.266075][ T5805] team0: Port device team_slave_1 added [ 212.315185][ T5797] team0: Port device team_slave_0 added [ 212.325478][ T5800] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 212.333155][ T5800] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 212.359613][ T5800] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 212.497813][ T5797] team0: Port device team_slave_1 added [ 212.507694][ T5800] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 212.515942][ T5800] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 212.543805][ T5800] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 212.639636][ T5802] hsr_slave_0: entered promiscuous mode [ 212.649142][ T5802] hsr_slave_1: entered promiscuous mode [ 212.658144][ T5802] debugfs: 'hsr0' already exists in 'hsr' [ 212.664124][ T5802] Cannot create hsr debugfs directory [ 212.732420][ T5097] Bluetooth: hci1: command tx timeout [ 212.738055][ T5097] Bluetooth: hci0: command tx timeout [ 212.763987][ T5797] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 212.771222][ T5797] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 212.797583][ T5797] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 212.812696][ T5806] Bluetooth: hci2: command tx timeout [ 212.818363][ T5097] Bluetooth: hci4: command tx timeout [ 212.831823][ T5805] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 212.839621][ T5805] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 212.865928][ T5805] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 212.882856][ T5805] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 212.890007][ T5805] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 212.916455][ T5805] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 212.922575][ T5806] Bluetooth: hci3: command tx timeout [ 212.938144][ T5797] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 212.945526][ T5797] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 212.972454][ T5797] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 213.383286][ T5797] hsr_slave_0: entered promiscuous mode [ 213.392791][ T5797] hsr_slave_1: entered promiscuous mode [ 213.400862][ T5797] debugfs: 'hsr0' already exists in 'hsr' [ 213.406882][ T5797] Cannot create hsr debugfs directory [ 213.426234][ T5800] hsr_slave_0: entered promiscuous mode [ 213.436065][ T5800] hsr_slave_1: entered promiscuous mode [ 213.444663][ T5800] debugfs: 'hsr0' already exists in 'hsr' [ 213.450524][ T5800] Cannot create hsr debugfs directory [ 213.648567][ T5805] hsr_slave_0: entered promiscuous mode [ 213.659360][ T5805] hsr_slave_1: entered promiscuous mode [ 213.668694][ T5805] debugfs: 'hsr0' already exists in 'hsr' [ 213.674860][ T5805] Cannot create hsr debugfs directory [ 214.813059][ T5806] Bluetooth: hci0: command tx timeout [ 214.818723][ T5806] Bluetooth: hci1: command tx timeout [ 214.897397][ T5806] Bluetooth: hci2: command tx timeout [ 214.903361][ T5097] Bluetooth: hci4: command tx timeout [ 214.972598][ T5097] Bluetooth: hci3: command tx timeout [ 215.028741][ T5808] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 215.107846][ T5808] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 215.160150][ T5808] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 215.188584][ T5808] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 215.209060][ T5802] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 215.309764][ T5802] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 215.340067][ T5802] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 215.365073][ T5802] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 215.459125][ T5797] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 215.543430][ T5797] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 215.574807][ T5797] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 215.600740][ T5797] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 215.848958][ T5805] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 215.878772][ T5805] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 215.907771][ T5805] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 215.963789][ T5805] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 216.180385][ T5800] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 216.261947][ T5800] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 216.290944][ T5800] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 216.337655][ T5800] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 216.728861][ T5808] 8021q: adding VLAN 0 to HW filter on device bond0 [ 216.815315][ T5802] 8021q: adding VLAN 0 to HW filter on device bond0 [ 216.927398][ T5808] 8021q: adding VLAN 0 to HW filter on device team0 [ 217.074718][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 217.082504][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 217.109885][ T5802] 8021q: adding VLAN 0 to HW filter on device team0 [ 217.188092][ T5797] 8021q: adding VLAN 0 to HW filter on device bond0 [ 217.237890][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 217.245609][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 217.389470][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 217.397133][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 217.414633][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 217.422413][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 217.587155][ T5797] 8021q: adding VLAN 0 to HW filter on device team0 [ 217.620090][ T5805] 8021q: adding VLAN 0 to HW filter on device bond0 [ 217.739690][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 217.747521][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 217.844915][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 217.852744][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 217.944991][ T5805] 8021q: adding VLAN 0 to HW filter on device team0 [ 218.058070][ T5800] 8021q: adding VLAN 0 to HW filter on device bond0 [ 218.131618][ T58] bridge0: port 1(bridge_slave_0) entered blocking state [ 218.139303][ T58] bridge0: port 1(bridge_slave_0) entered forwarding state [ 218.264125][ T58] bridge0: port 2(bridge_slave_1) entered blocking state [ 218.271740][ T58] bridge0: port 2(bridge_slave_1) entered forwarding state [ 218.428837][ T5800] 8021q: adding VLAN 0 to HW filter on device team0 [ 218.520991][ T2990] bridge0: port 1(bridge_slave_0) entered blocking state [ 218.528687][ T2990] bridge0: port 1(bridge_slave_0) entered forwarding state [ 218.648824][ T2990] bridge0: port 2(bridge_slave_1) entered blocking state [ 218.656639][ T2990] bridge0: port 2(bridge_slave_1) entered forwarding state [ 219.111484][ T5800] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 219.124292][ T5800] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 219.789904][ T5808] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 220.349014][ T5808] veth0_vlan: entered promiscuous mode [ 220.376002][ T5802] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 220.488380][ T5808] veth1_vlan: entered promiscuous mode [ 220.697683][ T5797] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 220.850361][ T5808] veth0_macvtap: entered promiscuous mode [ 220.934286][ T5808] veth1_macvtap: entered promiscuous mode [ 221.090210][ T5802] veth0_vlan: entered promiscuous mode [ 221.127307][ T5805] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 221.178624][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 221.280961][ T5802] veth1_vlan: entered promiscuous mode [ 221.311887][ T5800] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 221.349198][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 221.465428][ T3996] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.481222][ T5797] veth0_vlan: entered promiscuous mode [ 221.511000][ T3996] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.548323][ T3996] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.608922][ T2990] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 221.707209][ T5797] veth1_vlan: entered promiscuous mode [ 221.785258][ T5802] veth0_macvtap: entered promiscuous mode [ 221.857702][ T5802] veth1_macvtap: entered promiscuous mode [ 222.096310][ T5802] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 222.110447][ T5800] veth0_vlan: entered promiscuous mode [ 222.153177][ T5797] veth0_macvtap: entered promiscuous mode [ 222.194073][ T5802] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 222.276470][ T5797] veth1_macvtap: entered promiscuous mode [ 222.298807][ T5800] veth1_vlan: entered promiscuous mode [ 222.351784][ T2997] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.367297][ T2997] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.436115][ T2997] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.447122][ T2997] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.608784][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 222.704076][ T5800] veth0_macvtap: entered promiscuous mode [ 222.772862][ T5797] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 222.814984][ T5800] veth1_macvtap: entered promiscuous mode [ 222.909082][ T2990] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 222.963813][ T5800] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 223.016928][ T2990] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.056055][ T2990] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.095249][ T5800] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 223.112321][ T2990] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.206354][ T4040] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.233730][ T4040] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.298426][ T4040] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 223.356194][ T1093] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 224.285864][ T5805] veth0_vlan: entered promiscuous mode [ 224.370075][ T5805] veth1_vlan: entered promiscuous mode [ 224.744357][ T5805] veth0_macvtap: entered promiscuous mode [ 224.826035][ T5805] veth1_macvtap: entered promiscuous mode [ 225.033485][ T5805] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 225.105985][ T5805] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 225.210356][ T2990] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 225.271414][ T2990] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 225.332574][ T2990] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 225.341661][ T2990] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 228.819244][ T4040] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 228.827592][ T4040] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 229.140924][ T3996] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 229.149718][ T3996] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 229.335134][ T2997] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 229.344044][ T2997] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 229.538776][ T3996] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 229.547067][ T3996] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 229.675417][ T5808] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 229.876430][ T4379] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 229.884621][ T4379] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 230.187871][ T4379] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 230.196242][ T4379] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 230.599346][ T1093] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 230.607938][ T1093] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 230.716406][ T5984] mmap: syz.2.3 (5984) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 230.845305][ T5987] syz.3.4 uses obsolete (PF_INET,SOCK_PACKET) [ 231.013664][ T4096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 231.021731][ T4096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 231.901531][ T5995] process 'syz.3.6' launched '/dev/fd/3' with NULL argv: empty string added [ 232.222675][ T4096] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 232.231031][ T4096] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 232.372559][ T6000] loop3: detected capacity change from 0 to 512 [ 232.459314][ T5999] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2'. [ 232.470163][ T5999] gre0: entered promiscuous mode [ 232.475564][ T5999] gre0: entered allmulticast mode [ 232.582500][ T4096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 232.590558][ T4096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 233.265138][ T6000] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.6: bg 0: block 248: padding at end of block bitmap is not set [ 233.402885][ T6000] Quota error (device loop3): write_blk: dquota write failed [ 233.410909][ T6000] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 233.421882][ T6000] EXT4-fs error (device loop3): ext4_acquire_dquot:6945: comm syz.3.6: Failed to acquire dquot type 1 [ 233.522422][ T6000] EXT4-fs (loop3): 1 truncate cleaned up [ 233.540318][ T6000] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 233.560283][ T6000] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 233.594621][ T6007] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7'. [ 233.671415][ T6007] team0: Port device team_slave_1 removed [ 233.741136][ T30] audit: type=1326 audit(1761321515.825:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5994 comm="" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf700d539 code=0x0 [ 234.190383][ T5802] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.236844][ T30] audit: type=1326 audit(1761321516.325:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6011 comm="syz.1.9" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 234.379288][ T30] audit: type=1326 audit(1761321516.355:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6011 comm="syz.1.9" exe="/root/syz-executor" sig=0 arch=40000003 syscall=353 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 234.402647][ T30] audit: type=1326 audit(1761321516.355:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6011 comm="syz.1.9" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 234.844758][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 234.851599][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 234.930985][ T6020] loop3: detected capacity change from 0 to 512 [ 235.059095][ T6020] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 235.083137][ T6020] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 235.233291][ T6020] EXT4-fs (loop3): 1 truncate cleaned up [ 235.284445][ T6020] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 235.480717][ T6020] EXT4-fs error (device loop3): ext4_find_dest_de:2052: inode #2: block 13: comm syz.3.11: bad entry in directory: '.' directory cannot be the last in data block - offset=0, inode=2, rec_len=1024, size=1024 fake=1 [ 235.788103][ T6030] loop2: detected capacity change from 0 to 512 [ 235.820503][ T5802] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.854850][ T6030] EXT4-fs: Ignoring removed i_version option [ 235.861146][ T6030] EXT4-fs: Ignoring removed bh option [ 236.117170][ T6030] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 236.205420][ T6030] ext4 filesystem being mounted at /3/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 236.539132][ T6030] netdevsim netdevsim2: Direct firmware load for ./file0/file1 failed with error -2 [ 236.549313][ T6030] netdevsim netdevsim2: Falling back to sysfs fallback for: ./file0/file1 [ 236.696784][ T30] audit: type=1800 audit(1761321518.785:6): pid=6041 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.16" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 236.777551][ T6043] netlink: 4 bytes leftover after parsing attributes in process `syz.3.18'. [ 236.787306][ T6043] syz_tun: entered promiscuous mode [ 236.793145][ T6043] syz_tun: entered allmulticast mode [ 237.640126][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.180472][ T6049] serio: Serial port ptm0 [ 238.718287][ T6054] loop3: detected capacity change from 0 to 128 [ 238.825171][ T6054] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 238.862602][ T6054] ext4 filesystem being mounted at /4/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 239.051575][ T30] audit: type=1326 audit(1761321521.135:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6053 comm="syz.3.23" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 239.201877][ T5158] udevd[5158]: worker [5969] terminated by signal 33 (Unknown signal 33) [ 239.233678][ T30] audit: type=1326 audit(1761321521.185:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6053 comm="syz.3.23" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf700d567 code=0x7ffc0000 [ 239.257207][ T30] audit: type=1326 audit(1761321521.185:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6053 comm="syz.3.23" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 239.285981][ T30] audit: type=1326 audit(1761321521.185:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6053 comm="syz.3.23" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf700d567 code=0x7ffc0000 [ 239.311381][ T30] audit: type=1326 audit(1761321521.215:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6053 comm="syz.3.23" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 239.334151][ T30] audit: type=1326 audit(1761321521.215:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6053 comm="syz.3.23" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf700d567 code=0x7ffc0000 [ 239.356461][ T30] audit: type=1326 audit(1761321521.215:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6053 comm="syz.3.23" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 239.385278][ T30] audit: type=1326 audit(1761321521.215:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6053 comm="syz.3.23" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf700d567 code=0x7ffc0000 [ 239.416238][ T30] audit: type=1326 audit(1761321521.215:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6053 comm="syz.3.23" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 239.438559][ T30] audit: type=1326 audit(1761321521.215:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6053 comm="syz.3.23" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf700d567 code=0x7ffc0000 [ 239.682363][ T5802] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 240.925974][ T6075] netlink: 108 bytes leftover after parsing attributes in process `syz.0.31'. [ 240.935547][ T6075] netlink: 12 bytes leftover after parsing attributes in process `syz.0.31'. [ 240.944651][ T6075] netlink: 8 bytes leftover after parsing attributes in process `syz.0.31'. [ 241.168022][ T6078] loop0: detected capacity change from 0 to 1024 [ 241.202711][ T6081] netlink: 4 bytes leftover after parsing attributes in process `syz.4.33'. [ 241.215728][ T6078] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 241.215906][ T6078] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 241.228450][ T6078] JBD2: no valid journal superblock found [ 241.246906][ T6078] EXT4-fs (loop0): Could not load journal inode [ 242.100728][ T6090] netlink: 4 bytes leftover after parsing attributes in process `syz.4.34'. [ 242.110253][ T6090] batadv0: entered promiscuous mode [ 242.116702][ T6090] batadv0: entered allmulticast mode [ 243.260653][ C0] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 243.750297][ T6112] Zero length message leads to an empty skb [ 244.064697][ T6115] netlink: 4 bytes leftover after parsing attributes in process `syz.2.46'. [ 245.353869][ T6126] infiniband syz!: set active [ 245.358812][ T6126] infiniband syz!: added team_slave_0 [ 245.655900][ T6126] RDS/IB: syz!: added [ 245.660170][ T6126] smc: adding ib device syz! with port count 1 [ 245.667107][ T6126] smc: ib device syz! port 1 has no pnetid [ 247.306956][ T6145] netlink: 80 bytes leftover after parsing attributes in process `syz.1.57'. [ 249.792945][ T6163] tmpfs: Bad value for 'mpol' [ 249.804666][ T2990] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.950831][ T6163] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 250.171512][ T6163] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 250.250151][ T6173] loop1: detected capacity change from 0 to 164 [ 250.327401][ T6163] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 250.461439][ T6163] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 250.742903][ T6175] netlink: 80 bytes leftover after parsing attributes in process `syz.0.71'. [ 250.879142][ T3996] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 251.013237][ T3996] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 251.021769][ T3996] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 251.047676][ T3996] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 251.736261][ T6181] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 252.792463][ T6197] loop4: detected capacity change from 0 to 2048 [ 253.489182][ T6197] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 254.617218][ T6212] netlink: 172 bytes leftover after parsing attributes in process `syz.2.86'. [ 254.701483][ T6212] smc: removing ib device syz! [ 255.424293][ T6205] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 256.760107][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 258.045797][ T6230] netlink: 52 bytes leftover after parsing attributes in process `syz.2.92'. [ 258.689743][ T6229] infiniband syz!: set active [ 258.694999][ T6229] infiniband syz!: added team_slave_0 [ 258.704021][ T6229] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR [ 258.729276][ T6229] infiniband syz!: Couldn't open port 1 [ 258.777767][ T6229] RDS/IB: syz!: added [ 258.782386][ T6229] smc: adding ib device syz! with port count 1 [ 258.788762][ T6229] smc: ib device syz! port 1 has no pnetid [ 262.570537][ T9] IPVS: starting estimator thread 0... [ 262.573587][ T6271] IPVS: wlc: UDP 224.0.0.2:0 - no destination available [ 262.674461][ T6276] IPVS: using max 192 ests per chain, 9600 per kthread [ 264.182903][ T6297] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 264.196794][ T6297] netlink: 52 bytes leftover after parsing attributes in process `syz.0.118'. [ 264.847457][ T30] kauditd_printk_skb: 33 callbacks suppressed [ 264.847541][ T30] audit: type=1326 audit(1761321546.935:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.1.123" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 264.945262][ T30] audit: type=1326 audit(1761321546.985:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.1.123" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 264.970702][ T30] audit: type=1326 audit(1761321546.985:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.1.123" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 264.994622][ T30] audit: type=1326 audit(1761321546.985:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.1.123" exe="/root/syz-executor" sig=0 arch=40000003 syscall=327 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 265.016856][ T30] audit: type=1326 audit(1761321546.985:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.1.123" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 265.039748][ T30] audit: type=1326 audit(1761321546.985:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.1.123" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 265.062591][ T30] audit: type=1326 audit(1761321546.985:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.1.123" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 265.356017][ T6312] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 265.356017][ T6312] program syz.2.125 not setting count and/or reply_len properly [ 266.851798][ T6331] syz!: rxe_newlink: already configured on team_slave_0 [ 266.877595][ T6331] netlink: 52 bytes leftover after parsing attributes in process `syz.2.131'. [ 268.929872][ T6349] netlink: 80 bytes leftover after parsing attributes in process `syz.4.138'. [ 271.794757][ T6366] syz!: rxe_newlink: already configured on team_slave_0 [ 271.841809][ T6366] netlink: 52 bytes leftover after parsing attributes in process `syz.2.145'. [ 272.673554][ T6379] netlink: 80 bytes leftover after parsing attributes in process `syz.4.150'. [ 272.748351][ T30] audit: type=1326 audit(1761321554.825:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6380 comm="syz.1.152" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 272.771091][ T30] audit: type=1326 audit(1761321554.835:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6380 comm="syz.1.152" exe="/root/syz-executor" sig=0 arch=40000003 syscall=356 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 272.793507][ T30] audit: type=1326 audit(1761321554.865:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6380 comm="syz.1.152" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 272.815878][ T30] audit: type=1326 audit(1761321554.875:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6380 comm="syz.1.152" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 272.880375][ T6381] loop1: detected capacity change from 0 to 1024 [ 272.897776][ T6381] ======================================================= [ 272.897776][ T6381] WARNING: The mand mount option has been deprecated and [ 272.897776][ T6381] and is ignored by this kernel. Remove the mand [ 272.897776][ T6381] option from the mount to silence this warning. [ 272.897776][ T6381] ======================================================= [ 272.933852][ T6381] EXT4-fs: Ignoring removed i_version option [ 272.940591][ T6381] EXT4-fs: Ignoring removed nobh option [ 273.034256][ T30] audit: type=1326 audit(1761321554.965:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6380 comm="syz.1.152" exe="/root/syz-executor" sig=0 arch=40000003 syscall=91 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 273.062890][ T30] audit: type=1326 audit(1761321554.965:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6380 comm="syz.1.152" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 273.087434][ T30] audit: type=1326 audit(1761321554.965:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6380 comm="syz.1.152" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 273.109751][ T30] audit: type=1326 audit(1761321554.985:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6380 comm="syz.1.152" exe="/root/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 273.131960][ T30] audit: type=1326 audit(1761321554.985:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6380 comm="syz.1.152" exe="/root/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 273.160962][ T30] audit: type=1326 audit(1761321554.985:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6380 comm="syz.1.152" exe="/root/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 273.215139][ T6381] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 273.709053][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 274.347532][ T6400] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 274.378854][ T6400] netlink: 52 bytes leftover after parsing attributes in process `syz.0.159'. [ 274.747369][ T6407] netlink: 80 bytes leftover after parsing attributes in process `syz.1.163'. [ 275.430852][ T6416] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 276.774582][ T6434] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 276.816494][ T6434] netlink: 52 bytes leftover after parsing attributes in process `syz.3.174'. [ 277.336073][ T6438] loop0: detected capacity change from 0 to 1024 [ 277.383357][ T6438] EXT4-fs: inline encryption not supported [ 277.441407][ T6438] EXT4-fs (loop0): orphan cleanup on readonly fs [ 277.543675][ T6443] netlink: 80 bytes leftover after parsing attributes in process `syz.3.178'. [ 277.571376][ T6438] EXT4-fs (loop0): 1 truncate cleaned up [ 277.615137][ T6438] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 278.067306][ T5797] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 280.249375][ T6482] netlink: 52 bytes leftover after parsing attributes in process `syz.0.188'. [ 280.318440][ T6474] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 280.909133][ T6506] netlink: 80 bytes leftover after parsing attributes in process `syz.0.190'. [ 282.526608][ T6554] netlink: 20 bytes leftover after parsing attributes in process `syz.0.191'. [ 282.661097][ T6557] tipc: Started in network mode [ 282.667268][ T6557] tipc: Node identity 02c3bc73ff8b, cluster identity 4711 [ 282.675819][ T6557] tipc: Enabled bearer , priority 0 [ 282.881403][ T6557] syzkaller0: entered promiscuous mode [ 282.891663][ T6557] syzkaller0: entered allmulticast mode [ 282.956157][ T6560] netlink: 32 bytes leftover after parsing attributes in process `syz.2.192'. [ 283.024138][ T6563] tipc: Resetting bearer [ 283.073954][ T6556] tipc: Resetting bearer [ 283.104506][ T6556] tipc: Disabling bearer [ 284.817424][ T6576] netlink: 4 bytes leftover after parsing attributes in process `syz.1.196'. [ 285.919100][ T6592] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 285.978866][ T6591] netlink: 52 bytes leftover after parsing attributes in process `syz.4.200'. [ 286.308185][ T6598] netlink: 80 bytes leftover after parsing attributes in process `syz.0.201'. [ 286.419967][ T4040] Bluetooth: hci5: Frame reassembly failed (-84) [ 286.593974][ T6600] loop3: detected capacity change from 0 to 512 [ 286.659391][ T6600] EXT4-fs (loop3): orphan cleanup on readonly fs [ 286.765410][ T6600] EXT4-fs error (device loop3): ext4_xattr_inode_iget:446: comm syz.3.203: error while reading EA inode 32 err=-116 [ 286.820817][ T6600] EXT4-fs (loop3): Remounting filesystem read-only [ 286.828766][ T6600] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 286.842320][ T6600] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 286.853090][ T6600] EXT4-fs (loop3): 1 orphan inode deleted [ 286.861218][ T6600] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 286.913883][ T6605] tipc: Started in network mode [ 286.919056][ T6605] tipc: Node identity ca7c04cee9ed, cluster identity 4711 [ 286.927549][ T6605] tipc: Enabled bearer , priority 0 [ 286.938952][ T6613] netlink: 4 bytes leftover after parsing attributes in process `syz.0.206'. [ 286.993428][ T6605] syzkaller0: entered promiscuous mode [ 286.999440][ T6605] syzkaller0: entered allmulticast mode [ 287.048589][ T6609] netlink: 32 bytes leftover after parsing attributes in process `syz.4.204'. [ 287.052313][ T6615] loop1: detected capacity change from 0 to 512 [ 287.077616][ T6605] tipc: Resetting bearer [ 287.098437][ T6603] tipc: Resetting bearer [ 287.129151][ T6603] tipc: Disabling bearer [ 287.138291][ T6615] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 287.845364][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.018170][ T6625] loop2: detected capacity change from 0 to 2048 [ 288.352510][ T6633] hub 8-0:1.0: USB hub found [ 288.452512][ T5806] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 288.473519][ T6633] hub 8-0:1.0: 1 port detected [ 288.488471][ T6625] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 289.780060][ T5802] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 289.956014][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.482454][ T6665] netlink: 312 bytes leftover after parsing attributes in process `syz.2.215'. [ 290.594642][ T6664] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 290.595500][ T6667] netlink: 80 bytes leftover after parsing attributes in process `syz.4.216'. [ 290.638131][ T6664] netlink: 52 bytes leftover after parsing attributes in process `syz.3.214'. [ 291.344805][ T6676] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 291.724594][ T6678] tipc: Enabled bearer , priority 0 [ 291.784368][ T6683] syzkaller0: entered promiscuous mode [ 291.790085][ T6683] syzkaller0: entered allmulticast mode [ 291.849385][ T6678] netlink: 32 bytes leftover after parsing attributes in process `syz.4.221'. [ 291.909533][ T6678] tipc: Resetting bearer [ 291.959309][ T6677] tipc: Resetting bearer [ 291.988153][ T6677] tipc: Disabling bearer [ 292.297226][ T6690] netlink: 8 bytes leftover after parsing attributes in process `syz.2.224'. [ 292.310669][ T6690] netlink: 8 bytes leftover after parsing attributes in process `syz.2.224'. [ 293.590991][ T6702] syz!: rxe_newlink: already configured on team_slave_0 [ 293.628234][ T6702] netlink: 52 bytes leftover after parsing attributes in process `syz.2.230'. [ 294.994767][ T6715] tipc: Enabled bearer , priority 0 [ 295.049238][ T6722] syzkaller0: entered promiscuous mode [ 295.056532][ T6722] syzkaller0: entered allmulticast mode [ 295.148099][ T6715] tipc: Resetting bearer [ 295.244454][ T6714] tipc: Resetting bearer [ 295.295194][ T6714] tipc: Disabling bearer [ 295.568903][ T30] kauditd_printk_skb: 52 callbacks suppressed [ 295.568989][ T30] audit: type=1326 audit(1761321577.645:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6728 comm="syz.3.241" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 295.600423][ T30] audit: type=1326 audit(1761321577.645:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6728 comm="syz.3.241" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 295.742410][ T30] audit: type=1326 audit(1761321577.725:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6728 comm="syz.3.241" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 295.765096][ T30] audit: type=1326 audit(1761321577.745:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6728 comm="syz.3.241" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 295.790604][ T30] audit: type=1326 audit(1761321577.745:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6728 comm="syz.3.241" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 295.813833][ T30] audit: type=1326 audit(1761321577.745:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6728 comm="syz.3.241" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 296.016325][ T30] audit: type=1326 audit(1761321577.945:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6728 comm="syz.3.241" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 296.039004][ T30] audit: type=1326 audit(1761321577.945:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6728 comm="syz.3.241" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 296.061593][ T30] audit: type=1326 audit(1761321577.965:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6728 comm="syz.3.241" exe="/root/syz-executor" sig=0 arch=40000003 syscall=309 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 296.283127][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 296.290047][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 296.534592][ T6731] loop0: detected capacity change from 0 to 2048 [ 296.807176][ T6731] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 297.581942][ T6743] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 297.626304][ T6746] syz!: rxe_newlink: already configured on team_slave_0 [ 297.744751][ T6746] netlink: 52 bytes leftover after parsing attributes in process `syz.2.244'. [ 298.086516][ T5797] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 298.569544][ T6761] loop0: detected capacity change from 0 to 164 [ 298.618140][ T6761] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 298.691037][ T6761] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 298.714471][ T6761] Symlink component flag not implemented [ 298.720301][ T6761] Symlink component flag not implemented [ 298.727049][ T6761] Symlink component flag not implemented (7) [ 298.733493][ T6761] Symlink component flag not implemented (116) [ 299.101717][ T6767] tipc: Started in network mode [ 299.107319][ T6767] tipc: Node identity b27a58c3ea06, cluster identity 4711 [ 299.116387][ T6767] tipc: Enabled bearer , priority 0 [ 299.182575][ T6775] syzkaller0: entered promiscuous mode [ 299.188389][ T6775] syzkaller0: entered allmulticast mode [ 299.250454][ T6767] tipc: Resetting bearer [ 299.294268][ T6766] tipc: Resetting bearer [ 299.313642][ T6766] tipc: Disabling bearer [ 299.757245][ T6781] ALSA: seq fatal error: cannot create timer (-19) [ 300.209487][ T6792] loop0: detected capacity change from 0 to 128 [ 300.692811][ T6799] loop1: detected capacity change from 0 to 2048 [ 301.122249][ T6801] syz!: rxe_newlink: already configured on team_slave_0 [ 301.204186][ T6801] netlink: 52 bytes leftover after parsing attributes in process `syz.2.260'. [ 301.296784][ T6799] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 301.643209][ T6814] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 302.586671][ T6818] loop4: detected capacity change from 0 to 512 [ 302.698083][ T6818] EXT4-fs error (device loop4): ext4_iget_extra_inode:5075: inode #15: comm syz.4.262: corrupted in-inode xattr: invalid ea_ino [ 302.731333][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 302.743180][ T6818] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.262: couldn't read orphan inode 15 (err -117) [ 302.799917][ T6818] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 303.161477][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 303.655156][ T6849] tipc: Enabled bearer , priority 0 [ 303.702751][ T6843] syzkaller0: entered promiscuous mode [ 303.708456][ T6843] syzkaller0: entered allmulticast mode [ 303.755979][ T6843] tipc: Resetting bearer [ 303.857276][ T6838] tipc: Resetting bearer [ 303.965449][ T6838] tipc: Disabling bearer [ 304.173228][ T30] audit: type=1326 audit(1761321586.245:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.4.269" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 304.198665][ T30] audit: type=1326 audit(1761321586.245:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.4.269" exe="/root/syz-executor" sig=0 arch=40000003 syscall=27 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 304.223054][ T30] audit: type=1326 audit(1761321586.245:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6850 comm="syz.4.269" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 304.884684][ T6865] $Hÿ: renamed from bond0 (while UP) [ 304.924014][ T6865] $Hÿ: entered promiscuous mode [ 304.929329][ T6865] bond_slave_0: entered promiscuous mode [ 304.936788][ T6865] bond_slave_1: entered promiscuous mode [ 305.377645][ T6869] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 305.419435][ T6869] netlink: 52 bytes leftover after parsing attributes in process `syz.1.274'. [ 305.692829][ T6871] loop4: detected capacity change from 0 to 2048 [ 305.766212][ T6875] netlink: 4 bytes leftover after parsing attributes in process `syz.2.277'. [ 305.909206][ T6871] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 306.433145][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 306.973370][ T6894] tipc: Enabled bearer , priority 0 [ 306.983846][ T6894] syzkaller0: entered promiscuous mode [ 306.989540][ T6894] syzkaller0: entered allmulticast mode [ 307.133270][ T6894] tipc: Resetting bearer [ 307.213908][ T6892] tipc: Resetting bearer [ 307.249627][ T6892] tipc: Disabling bearer [ 308.145501][ T6911] sd 0:0:1:0: device reset [ 308.575013][ T6917] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 308.617207][ T6917] netlink: 52 bytes leftover after parsing attributes in process `syz.0.288'. [ 310.842251][ T30] audit: type=1326 audit(1761321592.885:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.0.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 311.041443][ T30] audit: type=1326 audit(1761321592.955:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.0.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 311.066855][ T30] audit: type=1326 audit(1761321592.965:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.0.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 311.090191][ T30] audit: type=1326 audit(1761321592.965:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.0.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 311.112847][ T30] audit: type=1326 audit(1761321592.965:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.0.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 311.135403][ T30] audit: type=1326 audit(1761321592.995:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.0.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 311.160327][ T30] audit: type=1326 audit(1761321593.015:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.0.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 311.185632][ T30] audit: type=1326 audit(1761321593.025:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.0.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 311.208140][ T30] audit: type=1326 audit(1761321593.025:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.0.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 311.223187][ T6943] loop3: detected capacity change from 0 to 1024 [ 311.230410][ T30] audit: type=1326 audit(1761321593.045:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6940 comm="syz.0.298" exe="/root/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 311.303886][ T6943] EXT4-fs: Ignoring removed orlov option [ 311.477539][ T6943] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 312.007586][ T5802] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 312.148404][ T6960] syz!: rxe_newlink: already configured on team_slave_0 [ 312.218890][ T6960] netlink: 52 bytes leftover after parsing attributes in process `syz.2.301'. [ 312.260803][ T6959] loop1: detected capacity change from 0 to 1024 [ 312.426976][ T6959] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 312.954451][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 313.471535][ T6977] loop4: detected capacity change from 0 to 2048 [ 313.580494][ T6977] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 314.045347][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 315.218916][ T7009] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 315.289300][ T7009] netlink: 52 bytes leftover after parsing attributes in process `syz.4.316'. [ 316.590985][ T7030] netlink: 4 bytes leftover after parsing attributes in process `syz.0.327'. [ 316.670151][ T7028] loop1: detected capacity change from 0 to 2048 [ 316.826682][ T7028] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 316.957030][ T7044] netlink: 80 bytes leftover after parsing attributes in process `syz.4.330'. [ 317.063981][ T7048] syz!: rxe_newlink: already configured on team_slave_0 [ 317.077570][ T7048] netlink: 52 bytes leftover after parsing attributes in process `syz.2.331'. [ 317.556883][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 318.985624][ T7077] netlink: 4 bytes leftover after parsing attributes in process `syz.3.338'. [ 319.046053][ T7077] netlink: 4 bytes leftover after parsing attributes in process `syz.3.338'. [ 319.366213][ T7086] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 319.412962][ T7086] netlink: 52 bytes leftover after parsing attributes in process `syz.4.342'. [ 319.558768][ T7087] loop1: detected capacity change from 0 to 2048 [ 319.667521][ T7087] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 319.847994][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 320.093813][ T7101] netlink: 4 bytes leftover after parsing attributes in process `syz.2.347'. [ 320.194636][ T7099] Driver unsupported XDP return value 0 on prog (id 135) dev N/A, expect packet loss! [ 321.061707][ T30] kauditd_printk_skb: 36 callbacks suppressed [ 321.061792][ T30] audit: type=1326 audit(1761321603.145:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7123 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 321.098256][ T30] audit: type=1326 audit(1761321603.145:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7123 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 321.122990][ T30] audit: type=1326 audit(1761321603.155:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7123 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 321.145559][ T30] audit: type=1326 audit(1761321603.155:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7123 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 321.168170][ T30] audit: type=1326 audit(1761321603.155:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7123 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 321.196878][ T30] audit: type=1326 audit(1761321603.185:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7123 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 321.221564][ T30] audit: type=1326 audit(1761321603.185:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7123 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 321.244406][ T30] audit: type=1326 audit(1761321603.285:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7123 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 321.349962][ T30] audit: type=1326 audit(1761321603.415:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7123 comm="syz.4.351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 321.913808][ T7138] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 321.944625][ T7138] netlink: 52 bytes leftover after parsing attributes in process `syz.4.356'. [ 322.238299][ T7140] loop1: detected capacity change from 0 to 2048 [ 322.326292][ T7140] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 322.385878][ T7149] 9pnet_fd: Insufficient options for proto=fd [ 322.733652][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 322.846805][ T7143] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 322.853781][ T7143] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 322.928053][ T7143] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 322.954501][ T7143] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 322.961043][ T7143] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 323.010433][ T7143] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 323.056535][ T7143] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 323.064505][ T7143] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 323.095689][ T30] audit: type=1326 audit(1761321605.165:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7156 comm="syz.2.366" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 323.141390][ T7167] netlink: 4 bytes leftover after parsing attributes in process `syz.4.364'. [ 323.243586][ T7143] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 323.328325][ T7143] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 323.338594][ T7143] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 323.422800][ T7143] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 323.451347][ T7143] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 323.459669][ T7143] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 323.461809][ T7169] loop1: detected capacity change from 0 to 512 [ 323.516280][ T7143] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 323.628732][ T7169] ------------[ cut here ]------------ [ 323.634742][ T7169] EA inode 11 i_nlink=2 [ 323.636062][ T7169] WARNING: CPU: 0 PID: 7169 at fs/ext4/xattr.c:1058 ext4_xattr_inode_update_ref+0x711/0x900 [ 323.657877][ T7169] Modules linked in: [ 323.662395][ T7169] CPU: 0 UID: 0 PID: 7169 Comm: syz.1.365 Not tainted syzkaller #0 PREEMPT(none) [ 323.671909][ T7169] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 323.682562][ T7169] RIP: 0010:ext4_xattr_inode_update_ref+0x711/0x900 [ 323.689572][ T7169] Code: 00 00 00 00 4d 85 ed 0f 85 e6 01 00 00 45 85 ff 0f 85 ee 01 00 00 48 c7 c7 3e 67 ba 91 48 8b 75 d0 8b 55 c0 e8 10 20 dd fd 90 <0f> 0b 90 90 4c 8b 6d a8 4c 8b 75 c8 4c 8b 7d b0 e9 6c fe ff ff e8 [ 323.710070][ T7169] RSP: 0018:ffff88804fcd2d50 EFLAGS: 00010283 [ 323.716700][ T7169] RAX: ffffffff8120833e RBX: ffff8881198e0ba0 RCX: 0000000000080000 [ 323.725101][ T7169] RDX: ffffc90008c03000 RSI: 0000000000004cd2 RDI: 0000000000004cd3 [ 323.733521][ T7169] RBP: ffff88804fcd2dd8 R08: ffffea000000000f R09: 0000000000000000 [ 323.746730][ T7169] R10: ffff888237aba028 R11: ffff88823f273c80 R12: 0000000000000000 [ 323.756479][ T7169] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 323.765033][ T7169] FS: 0000000000000000(0000) GS:ffff8881aad51000(0063) knlGS:00000000f54cdb40 [ 323.774405][ T7169] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 323.781265][ T7169] CR2: 000000000c36a469 CR3: 000000005442e000 CR4: 00000000003526f0 [ 323.789680][ T7169] Call Trace: [ 323.793349][ T7169] [ 323.796594][ T7169] ext4_xattr_set_entry+0x1169/0x3440 [ 323.802534][ T7169] ext4_xattr_ibody_set+0x437/0xa40 [ 323.808106][ T7169] ext4_expand_extra_isize_ea+0x2ea9/0x3bb0 [ 323.814702][ T7169] __ext4_expand_extra_isize+0x571/0x6f0 [ 323.820760][ T7169] __ext4_mark_inode_dirty+0x654/0x970 [ 323.826906][ T7169] ext4_evict_inode+0x171c/0x2480 [ 323.832454][ T7169] ? __pfx_ext4_evict_inode+0x10/0x10 [ 323.838153][ T7169] evict+0x700/0xd00 [ 323.846809][ T7169] ? kmsan_get_metadata+0xfb/0x160 [ 323.853684][ T7169] iput+0xba3/0xfa0 [ 323.857841][ T7169] ext4_process_orphan+0x49a/0x520 [ 323.863477][ T7169] ext4_orphan_cleanup+0x10a6/0x1e30 [ 323.869169][ T7169] ext4_fill_super+0xa788/0xb010 [ 323.874789][ T7169] get_tree_bdev_flags+0x6e6/0x920 [ 323.880213][ T7169] ? __pfx_ext4_fill_super+0x10/0x10 [ 323.886519][ T7169] ? __pfx_ext4_fill_super+0x10/0x10 [ 323.892313][ T7169] ? __pfx_ext4_get_tree+0x10/0x10 [ 323.897800][ T7169] get_tree_bdev+0x38/0x50 [ 323.902639][ T7169] ext4_get_tree+0x35/0x40 [ 323.907386][ T7169] vfs_get_tree+0xb3/0x5c0 [ 323.912504][ T7169] do_new_mount+0x839/0x15f0 [ 323.917477][ T7169] ? kmsan_get_metadata+0xfb/0x160 [ 323.923066][ T7169] path_mount+0x747/0x1fb0 [ 323.927880][ T7169] __se_sys_mount+0x6f7/0x7e0 [ 323.933151][ T7169] __ia32_sys_mount+0xe2/0x150 [ 323.938318][ T7169] ia32_sys_call+0x2c16/0x4310 [ 323.943604][ T7169] __do_fast_syscall_32+0xb0/0x150 [ 323.953569][ T7169] ? irqentry_exit_to_user_mode+0x7f/0xa0 [ 323.959678][ T7169] do_fast_syscall_32+0x38/0x80 [ 323.966303][ T7169] do_SYSENTER_32+0x1f/0x30 [ 323.971168][ T7169] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 323.978097][ T7169] RIP: 0023:0xf70dd539 [ 323.982598][ T7169] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 324.002779][ T7169] RSP: 002b:00000000f54cd3b0 EFLAGS: 00000206 ORIG_RAX: 0000000000000015 [ 324.011526][ T7169] RAX: ffffffffffffffda RBX: 00000000f54cd410 RCX: 00000000800001c0 [ 324.019913][ T7169] RDX: 0000000080000180 RSI: 0000000000800718 RDI: 00000000f54cd450 [ 324.028292][ T7169] RBP: 00000000f54cd410 R08: 0000000000000000 R09: 0000000000000000 [ 324.036835][ T7169] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 324.045276][ T7169] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 324.058201][ T7169] [ 324.061448][ T7169] ---[ end trace 0000000000000000 ]--- [ 324.071158][ T7169] EXT4-fs (loop1): 1 orphan inode deleted [ 324.079676][ T7169] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 324.198348][ T5806] Bluetooth: hci0: command 0x0c1a tx timeout [ 324.206770][ T7169] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 324.464474][ T7199] loop2: detected capacity change from 0 to 164 [ 324.512666][ T7199] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 324.615156][ T7199] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 324.629383][ T7199] Symlink component flag not implemented [ 324.636058][ T7199] Symlink component flag not implemented [ 324.642597][ T7199] Symlink component flag not implemented (7) [ 324.648873][ T7199] Symlink component flag not implemented (116) [ 324.954890][ T7206] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 324.981118][ T5806] Bluetooth: hci1: command 0x0c1a tx timeout [ 325.027204][ T7206] netlink: 52 bytes leftover after parsing attributes in process `syz.1.371'. [ 325.142850][ T5806] Bluetooth: hci2: command 0x0c1a tx timeout [ 325.325236][ T7211] 9pnet_fd: Insufficient options for proto=fd [ 325.372285][ T5806] Bluetooth: hci3: command 0x0c1a tx timeout [ 325.454599][ T5806] Bluetooth: hci4: command 0x0c1a tx timeout [ 326.094453][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 326.094534][ T30] audit: type=1326 audit(1761321608.175:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 326.132146][ T30] audit: type=1326 audit(1761321608.175:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 326.155485][ T30] audit: type=1326 audit(1761321608.175:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 326.177991][ T30] audit: type=1326 audit(1761321608.175:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 326.206054][ T30] audit: type=1326 audit(1761321608.175:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 326.230194][ T30] audit: type=1326 audit(1761321608.185:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 326.253319][ T30] audit: type=1326 audit(1761321608.195:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 326.275738][ T30] audit: type=1326 audit(1761321608.195:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 326.282978][ T5806] Bluetooth: hci0: command 0x0c1a tx timeout [ 326.298227][ T30] audit: type=1326 audit(1761321608.195:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 326.333979][ T30] audit: type=1326 audit(1761321608.195:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.3.377" exe="/root/syz-executor" sig=0 arch=40000003 syscall=255 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 326.995015][ T7231] loop9: detected capacity change from 0 to 7 [ 327.003702][ T7231] Buffer I/O error on dev loop9, logical block 0, async page read [ 327.011835][ T7231] Buffer I/O error on dev loop9, logical block 0, async page read [ 327.029555][ T7231] Buffer I/O error on dev loop9, logical block 0, async page read [ 327.040347][ T7231] Buffer I/O error on dev loop9, logical block 0, async page read [ 327.048884][ T7231] Buffer I/O error on dev loop9, logical block 0, async page read [ 327.057511][ T7231] Buffer I/O error on dev loop9, logical block 0, async page read [ 327.064279][ T5806] Bluetooth: hci1: command 0x0c1a tx timeout [ 327.066014][ T7231] Buffer I/O error on dev loop9, logical block 0, async page read [ 327.080460][ T7231] ldm_validate_partition_table(): Disk read failed. [ 327.087520][ T7231] Buffer I/O error on dev loop9, logical block 0, async page read [ 327.095808][ T7231] Buffer I/O error on dev loop9, logical block 0, async page read [ 327.104261][ T7231] Buffer I/O error on dev loop9, logical block 0, async page read [ 327.112569][ T7231] Dev loop9: unable to read RDB block 0 [ 327.118606][ T7231] loop9: unable to read partition table [ 327.159679][ T7231] loop9: partition table beyond EOD, truncated [ 327.166308][ T7231] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ â·û [ 327.166308][ T7231] ) failed (rc=-5) [ 327.212875][ T5806] Bluetooth: hci2: command 0x0c1a tx timeout [ 327.409051][ T11] IPVS: starting estimator thread 0... [ 327.454284][ T5806] Bluetooth: hci3: command 0x0c1a tx timeout [ 327.527121][ T7239] IPVS: using max 192 ests per chain, 9600 per kthread [ 327.540137][ T5806] Bluetooth: hci4: command 0x0c1a tx timeout [ 328.083603][ T7247] 9pnet_fd: Insufficient options for proto=fd [ 328.333259][ T5806] Bluetooth: hci0: command 0x0c1a tx timeout [ 328.853723][ T7263] netlink: 4 bytes leftover after parsing attributes in process `syz.1.388'. [ 329.143474][ T5806] Bluetooth: hci1: command 0x0c1a tx timeout [ 329.302761][ T5806] Bluetooth: hci2: command 0x0c1a tx timeout [ 329.532685][ T5806] Bluetooth: hci3: command 0x0c1a tx timeout [ 329.613151][ T5806] Bluetooth: hci4: command 0x0c1a tx timeout [ 330.208438][ T7274] loop1: detected capacity change from 0 to 512 [ 330.270763][ T7274] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 330.725567][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 331.291375][ T30] kauditd_printk_skb: 6 callbacks suppressed [ 331.291457][ T30] audit: type=1326 audit(1761321613.375:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7289 comm="syz.0.398" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 331.404009][ T30] audit: type=1326 audit(1761321613.415:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7289 comm="syz.0.398" exe="/root/syz-executor" sig=0 arch=40000003 syscall=428 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 331.429849][ T30] audit: type=1326 audit(1761321613.415:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7289 comm="syz.0.398" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 331.453361][ T30] audit: type=1326 audit(1761321613.425:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7289 comm="syz.0.398" exe="/root/syz-executor" sig=0 arch=40000003 syscall=433 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 331.475664][ T30] audit: type=1326 audit(1761321613.425:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7289 comm="syz.0.398" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 331.498532][ T30] audit: type=1326 audit(1761321613.435:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7289 comm="syz.0.398" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 332.013105][ T7304] loop1: detected capacity change from 0 to 128 [ 332.560926][ T7310] netlink: 4 bytes leftover after parsing attributes in process `syz.3.404'. [ 333.015289][ T30] audit: type=1326 audit(1761321615.095:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.0.406" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 333.038288][ T30] audit: type=1326 audit(1761321615.095:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7316 comm="syz.0.406" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 334.033459][ T7332] serio: Serial port ptm0 [ 334.581270][ T7346] netlink: 72 bytes leftover after parsing attributes in process `syz.3.415'. [ 335.555639][ T7364] netlink: 4 bytes leftover after parsing attributes in process `syz.3.418'. [ 336.135473][ T30] audit: type=1326 audit(1761321618.205:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.246340][ T30] audit: type=1326 audit(1761321618.295:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.387546][ T30] kauditd_printk_skb: 6 callbacks suppressed [ 336.387694][ T30] audit: type=1326 audit(1761321618.405:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.500534][ T30] audit: type=1326 audit(1761321618.515:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=91 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.523245][ T30] audit: type=1326 audit(1761321618.535:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.549693][ T30] audit: type=1326 audit(1761321618.535:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.573958][ T30] audit: type=1326 audit(1761321618.585:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.756967][ T30] audit: type=1326 audit(1761321618.685:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=353 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.779803][ T30] audit: type=1326 audit(1761321618.685:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.802325][ T30] audit: type=1326 audit(1761321618.695:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.825355][ T30] audit: type=1326 audit(1761321618.695:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.850207][ T30] audit: type=1326 audit(1761321618.705:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7369 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 336.954650][ T7381] serio: Serial port ptm0 [ 336.969594][ T7378] program syz.0.422 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 337.067640][ T7383] loop3: detected capacity change from 0 to 512 [ 337.085591][ T7378] netlink: 14 bytes leftover after parsing attributes in process `syz.0.422'. [ 337.266429][ T7383] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 337.338435][ T7383] EXT4-fs (loop3): orphan cleanup on readonly fs [ 337.504214][ T7383] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #16: comm syz.3.424: corrupted inode contents [ 337.542676][ T7383] EXT4-fs (loop3): Remounting filesystem read-only [ 337.550243][ T7383] EXT4-fs (loop3): 1 truncate cleaned up [ 337.558360][ T4379] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 337.572580][ T4379] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 337.584932][ T4379] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started [ 337.688699][ T7383] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 338.136257][ T7411] loop4: detected capacity change from 0 to 512 [ 338.154151][ T7411] EXT4-fs: Ignoring removed bh option [ 338.221009][ T7411] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 338.292801][ T7411] EXT4-fs (loop4): 1 truncate cleaned up [ 338.300874][ T7411] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 338.380729][ T5802] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 338.550887][ T7421] netlink: 4 bytes leftover after parsing attributes in process `syz.0.434'. [ 338.627222][ T5805] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 339.229473][ T7442] serio: Serial port ptm0 [ 339.324949][ C1] hrtimer: interrupt took 263000 ns [ 339.638829][ T7449] loop2: detected capacity change from 0 to 1024 [ 339.728663][ T7449] ext4: Unknown parameter 'fsuuid' [ 340.155671][ T7465] program syz.2.440 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 340.317088][ T7466] netlink: 14 bytes leftover after parsing attributes in process `syz.2.440'. [ 340.967191][ T11] IPVS: starting estimator thread 0... [ 341.072497][ T7480] IPVS: using max 192 ests per chain, 9600 per kthread [ 342.018096][ T7494] serio: Serial port ptm0 [ 343.444407][ T7511] netlink: 28 bytes leftover after parsing attributes in process `syz.0.455'. [ 343.454491][ T7511] netem: change failed [ 343.793052][ T30] kauditd_printk_skb: 130 callbacks suppressed [ 343.793141][ T30] audit: type=1326 audit(1761321625.855:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7500 comm="syz.4.452" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x0 [ 344.951653][ T7522] loop1: detected capacity change from 0 to 1024 [ 345.019419][ T7522] ext4: Unknown parameter 'fsuuid' [ 345.292996][ T30] audit: type=1326 audit(1761321627.375:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7485 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 345.353521][ T7533] program syz.1.458 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 345.365517][ T30] audit: type=1326 audit(1761321627.405:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7485 comm="syz.2.448" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 345.557998][ T7537] netlink: 14 bytes leftover after parsing attributes in process `syz.1.458'. [ 346.500683][ T7546] serio: Serial port ptm0 [ 348.526211][ T7570] loop3: detected capacity change from 0 to 128 [ 348.632524][ T30] audit: type=1800 audit(1761321630.705:365): pid=7570 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.472" name="file2" dev="loop3" ino=1048606 res=0 errno=0 [ 348.926823][ T7570] syz.3.472: attempt to access beyond end of device [ 348.926823][ T7570] loop3: rw=0, sector=2078, nr_sectors = 1 limit=128 [ 348.950389][ T7570] buffer_io_error: 4 callbacks suppressed [ 348.959142][ T7570] Buffer I/O error on dev loop3, logical block 2078, async page read [ 349.072681][ T7570] syz.3.472: attempt to access beyond end of device [ 349.072681][ T7570] loop3: rw=0, sector=2078, nr_sectors = 1 limit=128 [ 349.086710][ T7570] Buffer I/O error on dev loop3, logical block 2078, async page read [ 349.095402][ T7570] syz.3.472: attempt to access beyond end of device [ 349.095402][ T7570] loop3: rw=0, sector=2078, nr_sectors = 1 limit=128 [ 349.109149][ T7570] Buffer I/O error on dev loop3, logical block 2078, async page read [ 349.529437][ T7575] loop4: detected capacity change from 0 to 1024 [ 349.575791][ T7575] ext4: Unknown parameter 'fsuuid' [ 349.833222][ T7584] program syz.4.474 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 349.984185][ T7587] netlink: 14 bytes leftover after parsing attributes in process `syz.4.474'. [ 350.325391][ T7591] serio: Serial port ptm0 [ 351.005687][ T7598] bridge0: port 3(batadv1) entered blocking state [ 351.012901][ T7598] bridge0: port 3(batadv1) entered disabled state [ 351.020071][ T7598] batadv1: entered allmulticast mode [ 351.029311][ T7598] batadv1: entered promiscuous mode [ 351.498509][ T1093] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled [ 351.508407][ T1093] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled [ 351.687407][ T7607] vti0: entered promiscuous mode [ 354.511473][ T7633] serio: Serial port ptm0 [ 355.776199][ T7660] loop3: detected capacity change from 0 to 1024 [ 355.817844][ T7660] EXT4-fs: inline encryption not supported [ 355.825283][ T7660] EXT4-fs: Ignoring removed oldalloc option [ 355.831775][ T7660] EXT4-fs: Ignoring removed nomblk_io_submit option [ 355.946995][ T7660] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 355.972935][ T7663] hub 6-0:1.0: USB hub found [ 356.008141][ T7663] hub 6-0:1.0: 1 port detected [ 356.293856][ T5802] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 356.755141][ T11] IPVS: starting estimator thread 0... [ 356.772558][ T7682] serio: Serial port ptm0 [ 356.873075][ T7685] IPVS: using max 192 ests per chain, 9600 per kthread [ 356.882705][ T30] audit: type=1326 audit(1761321638.955:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.4.506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 356.965570][ T30] audit: type=1326 audit(1761321639.005:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.4.506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 356.988687][ T30] audit: type=1326 audit(1761321639.045:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.4.506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 357.011098][ T30] audit: type=1326 audit(1761321639.045:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.4.506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 357.036219][ T30] audit: type=1326 audit(1761321639.045:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.4.506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 357.059588][ T30] audit: type=1326 audit(1761321639.045:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.4.506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 357.081921][ T30] audit: type=1326 audit(1761321639.085:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.4.506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=141 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 357.104538][ T30] audit: type=1326 audit(1761321639.085:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.4.506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 357.129534][ T30] audit: type=1326 audit(1761321639.095:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.4.506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 357.152753][ T30] audit: type=1326 audit(1761321639.095:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.4.506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc5539 code=0x7ffc0000 [ 357.209530][ T7684] loop3: detected capacity change from 0 to 1024 [ 357.255685][ T7684] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 357.267091][ T7684] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 357.314666][ T7684] JBD2: no valid journal superblock found [ 357.320997][ T7684] EXT4-fs (loop3): Could not load journal inode [ 357.595883][ T7702] netlink: 20 bytes leftover after parsing attributes in process `+}[@'. [ 357.823174][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 357.829999][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 359.707323][ T7734] serio: Serial port ptm0 [ 360.072689][ T7747] netlink: 4 bytes leftover after parsing attributes in process `syz.0.520'. [ 361.361173][ T7768] usb usb1: usbfs: interface 0 claimed by hub while 'syz.1.528' sets config #1 [ 361.885697][ T7774] syzkaller0: entered promiscuous mode [ 361.891591][ T7774] syzkaller0: entered allmulticast mode [ 362.193345][ T7784] serio: Serial port ptm0 [ 362.691750][ T7795] loop2: detected capacity change from 0 to 512 [ 362.734596][ T7799] netlink: 4 bytes leftover after parsing attributes in process `syz.4.539'. [ 362.781465][ T7795] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 362.883613][ T7795] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.537: invalid indirect mapped block 2683928664 (level 1) [ 362.951823][ T7807] loop3: detected capacity change from 0 to 512 [ 362.983242][ T7795] EXT4-fs (loop2): 1 truncate cleaned up [ 362.992372][ T7795] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 363.093107][ T7807] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 363.138282][ T7795] 9pnet_fd: Insufficient options for proto=fd [ 363.197958][ T7807] EXT4-fs (loop3): orphan cleanup on readonly fs [ 363.293164][ T7807] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 363.315220][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 363.362338][ T7807] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 363.412670][ T7807] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #13: comm syz.3.540: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 363.504026][ T7807] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.540: couldn't read orphan inode 13 (err -117) [ 363.536557][ T7807] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 363.605959][ T7807] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 363.639289][ T7807] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 363.766917][ T7807] EXT4-fs warning (device loop3): ext4_enable_quotas:7180: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 364.046147][ T7826] capability: warning: `syz.0.544' uses deprecated v2 capabilities in a way that may be insecure [ 364.227349][ T5802] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 365.265478][ T7870] serio: Serial port ptm0 [ 366.268926][ T7887] netlink: 4 bytes leftover after parsing attributes in process `syz.4.552'. [ 367.927827][ T30] kauditd_printk_skb: 23 callbacks suppressed [ 367.927908][ T30] audit: type=1326 audit(1761321650.015:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7907 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 367.965675][ T30] audit: type=1326 audit(1761321650.015:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7907 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 367.990824][ T30] audit: type=1326 audit(1761321650.075:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7907 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 368.014057][ T30] audit: type=1326 audit(1761321650.075:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7907 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 368.036536][ T30] audit: type=1326 audit(1761321650.075:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7907 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 368.201946][ T30] audit: type=1326 audit(1761321650.265:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7907 comm="syz.1.561" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 368.397812][ T7916] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.565' sets config #1 [ 368.435707][ T7917] serio: Serial port ptm0 [ 369.568013][ T30] audit: type=1326 audit(1761321651.645:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.2.573" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 369.591113][ T30] audit: type=1326 audit(1761321651.645:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.2.573" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 369.741235][ T30] audit: type=1326 audit(1761321651.705:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.2.573" exe="/root/syz-executor" sig=0 arch=40000003 syscall=425 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 369.764068][ T30] audit: type=1326 audit(1761321651.715:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7936 comm="syz.2.573" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 369.897239][ T7945] netlink: 28 bytes leftover after parsing attributes in process `syz.2.573'. [ 370.963797][ T7952] netlink: 'syz.3.578': attribute type 1 has an invalid length. [ 371.166702][ T7989] serio: Serial port ptm0 [ 371.256780][ T7952] 8021q: adding VLAN 0 to HW filter on device bond2 [ 371.275515][ T7952] bond1: (slave bond2): making interface the new active one [ 371.285445][ T7952] bond1: (slave bond2): Enslaving as an active interface with an up link [ 371.547449][ T7952] bond1: (slave gretap1): Enslaving as a backup interface with an up link [ 371.563759][ T8029] netlink: 28 bytes leftover after parsing attributes in process `syz.3.578'. [ 371.794821][ T8032] loop1: detected capacity change from 0 to 512 [ 371.845617][ T8032] EXT4-fs: Ignoring removed orlov option [ 371.878376][ T8032] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 372.095187][ T8032] EXT4-fs (loop1): orphan cleanup on readonly fs [ 372.263223][ T8032] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.568: bg 0: block 248: padding at end of block bitmap is not set [ 372.356206][ T8032] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.568: Failed to acquire dquot type 1 [ 372.452512][ T8032] EXT4-fs (loop1): 1 truncate cleaned up [ 372.495791][ T8032] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 373.582630][ T30] kauditd_printk_skb: 10 callbacks suppressed [ 373.582715][ T30] audit: type=1326 audit(1761321655.655:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8051 comm="syz.3.589" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 373.721163][ T30] audit: type=1326 audit(1761321655.735:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8051 comm="syz.3.589" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 373.743691][ T30] audit: type=1326 audit(1761321655.735:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8051 comm="syz.3.589" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 373.766377][ T30] audit: type=1326 audit(1761321655.765:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8051 comm="syz.3.589" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 373.788911][ T30] audit: type=1326 audit(1761321655.765:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8051 comm="syz.3.589" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 373.811197][ T30] audit: type=1326 audit(1761321655.765:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8051 comm="syz.3.589" exe="/root/syz-executor" sig=0 arch=40000003 syscall=51 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 373.836294][ T30] audit: type=1326 audit(1761321655.765:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8051 comm="syz.3.589" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 373.887000][ T8059] serio: Serial port ptm0 [ 376.557195][ T8092] serio: Serial port ptm0 [ 376.720774][ T8099] loop2: detected capacity change from 0 to 512 [ 376.774946][ T8099] EXT4-fs: Ignoring removed bh option [ 376.823027][ T8099] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 376.950075][ T8099] EXT4-fs (loop2): 1 truncate cleaned up [ 376.958569][ T8099] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 377.170409][ T8104] serio: Serial port ptm0 [ 377.337086][ T5808] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 378.491774][ T30] audit: type=1326 audit(1761321660.575:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8115 comm="syz.2.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 378.602418][ T30] audit: type=1326 audit(1761321660.615:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8115 comm="syz.2.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=278 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 378.625288][ T30] audit: type=1326 audit(1761321660.615:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8115 comm="syz.2.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 378.650452][ T30] audit: type=1326 audit(1761321660.615:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8115 comm="syz.2.611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 379.141229][ T8120] loop3: detected capacity change from 0 to 1024 [ 379.205710][ T8120] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 379.218155][ T8120] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 379.302829][ T8120] JBD2: no valid journal superblock found [ 379.308892][ T8120] EXT4-fs (loop3): Could not load journal inode [ 380.115099][ T8142] serio: Serial port ptm0 [ 380.232621][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 381.303261][ T8168] IPVS: set_ctl: invalid protocol: 4 172.20.20.170:20000 [ 381.919747][ T8173] loop4: detected capacity change from 0 to 1024 [ 381.922370][ T30] audit: type=1326 audit(1761321664.005:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8178 comm="syz.1.630" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 381.948973][ T30] audit: type=1326 audit(1761321664.005:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8178 comm="syz.1.630" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 381.971900][ T30] audit: type=1326 audit(1761321664.025:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8178 comm="syz.1.630" exe="/root/syz-executor" sig=0 arch=40000003 syscall=449 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 381.995054][ T30] audit: type=1326 audit(1761321664.025:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8178 comm="syz.1.630" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70dd539 code=0x7ffc0000 [ 382.053587][ T8173] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 382.065320][ T8173] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 382.143556][ T8173] JBD2: no valid journal superblock found [ 382.150013][ T8173] EXT4-fs (loop4): Could not load journal inode [ 383.609420][ T8211] IPVS: set_ctl: invalid protocol: 4 172.20.20.170:20000 [ 383.878756][ T8212] netlink: 4 bytes leftover after parsing attributes in process `syz.4.642'. [ 383.969452][ T8212] ip6gretap0: entered promiscuous mode [ 383.975791][ T8212] macvtap1: entered promiscuous mode [ 383.982439][ T8212] macvtap1: entered allmulticast mode [ 383.988148][ T8212] ip6gretap0: entered allmulticast mode [ 384.022554][ T8213] ip6gretap0: left allmulticast mode [ 384.028947][ T8213] ip6gretap0: left promiscuous mode [ 384.907933][ T8227] loop3: detected capacity change from 0 to 1024 [ 384.949226][ T8227] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 384.961125][ T8227] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 385.047183][ T8227] JBD2: no valid journal superblock found [ 385.055758][ T8227] EXT4-fs (loop3): Could not load journal inode [ 387.801056][ T8269] loop1: detected capacity change from 0 to 1024 [ 387.832870][ T8269] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 387.847562][ T8269] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 387.887810][ T8269] JBD2: no valid journal superblock found [ 387.894466][ T8269] EXT4-fs (loop1): Could not load journal inode [ 389.992452][ T8304] bridge0: port 2(bridge_slave_1) entered disabled state [ 390.002693][ T8304] bridge0: port 1(bridge_slave_0) entered disabled state [ 390.245075][ T8304] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 390.274885][ T8304] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 390.811213][ T58] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 390.849662][ T58] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 390.885370][ T58] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 390.906300][ T58] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 393.665196][ T30] audit: type=1326 audit(1761321675.755:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8370 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 393.693348][ T30] audit: type=1326 audit(1761321675.755:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8370 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 393.827368][ T30] audit: type=1326 audit(1761321675.825:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8370 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 393.850101][ T30] audit: type=1326 audit(1761321675.825:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8370 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 393.872710][ T30] audit: type=1326 audit(1761321675.855:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8370 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 393.896745][ T30] audit: type=1326 audit(1761321675.885:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8370 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 393.919742][ T30] audit: type=1326 audit(1761321675.885:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8370 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 393.942550][ T30] audit: type=1326 audit(1761321675.885:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8370 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 393.964981][ T30] audit: type=1326 audit(1761321675.895:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8370 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=65 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 393.989257][ T30] audit: type=1326 audit(1761321675.895:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8370 comm="syz.3.698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 394.219694][ T8378] loop1: detected capacity change from 0 to 512 [ 394.315190][ T8378] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #2: block 3: comm syz.1.701: lblock 0 mapped to illegal pblock 3 (length 1) [ 394.431383][ T8378] EXT4-fs warning (device loop1): dx_probe:791: inode #2: lblock 0: comm syz.1.701: error -117 reading directory block [ 394.487960][ T8378] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117 [ 394.501629][ T8378] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 394.610346][ T8378] EXT4-fs error (device loop1): ext4_xattr_set_entry:1665: inode #2: comm syz.1.701: corrupted xattr entries [ 394.624366][ T8384] netlink: 12 bytes leftover after parsing attributes in process `syz.3.702'. [ 394.680187][ T8384] syz.3.702: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 394.695719][ T8384] CPU: 0 UID: 0 PID: 8384 Comm: syz.3.702 Tainted: G W syzkaller #0 PREEMPT(none) [ 394.695911][ T8384] Tainted: [W]=WARN [ 394.695967][ T8384] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 394.696059][ T8384] Call Trace: [ 394.696116][ T8384] [ 394.696170][ T8384] __dump_stack+0x26/0x30 [ 394.696363][ T8384] dump_stack_lvl+0x1df/0x270 [ 394.696549][ T8384] dump_stack+0x1e/0x25 [ 394.696713][ T8384] warn_alloc+0x470/0x690 [ 394.696942][ T8384] ? kmsan_get_metadata+0xfb/0x160 [ 394.697105][ T8384] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 394.697285][ T8384] __vmalloc_node_range_noprof+0x133/0x2330 [ 394.697488][ T8384] ? kmsan_get_metadata+0xfb/0x160 [ 394.697648][ T8384] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 394.697827][ T8384] ? should_fail_ex+0x45/0x8a0 [ 394.697999][ T8384] ? kmsan_get_metadata+0xfb/0x160 [ 394.698155][ T8384] ? kmsan_get_metadata+0xfb/0x160 [ 394.698316][ T8384] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 394.698500][ T8384] ? kmsan_get_metadata+0xfb/0x160 [ 394.698673][ T8384] vmalloc_user_noprof+0xce/0x140 [ 394.698858][ T8384] ? xskq_create+0x11d/0x290 [ 394.699062][ T8384] xskq_create+0x11d/0x290 [ 394.699267][ T8384] xsk_init_queue+0xfd/0x1d0 [ 394.699469][ T8384] xsk_setsockopt+0x7f6/0xfe0 [ 394.699667][ T8384] ? __pfx_xsk_setsockopt+0x10/0x10 [ 394.699849][ T8384] __sys_setsockopt+0x43e/0x580 [ 394.700060][ T8384] __ia32_sys_setsockopt+0xf3/0x1a0 [ 394.700276][ T8384] ia32_sys_call+0x24c2/0x4310 [ 394.700495][ T8384] __do_fast_syscall_32+0xb0/0x150 [ 394.700711][ T8384] do_fast_syscall_32+0x38/0x80 [ 394.700906][ T8384] do_SYSENTER_32+0x1f/0x30 [ 394.701098][ T8384] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 394.701299][ T8384] RIP: 0023:0xf700d539 [ 394.701415][ T8384] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 394.701543][ T8384] RSP: 002b:00000000f53fd55c EFLAGS: 00000206 ORIG_RAX: 000000000000016e [ 394.701685][ T8384] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 000000000000011b [ 394.701783][ T8384] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004 [ 394.701874][ T8384] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 394.701965][ T8384] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 394.702049][ T8384] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 394.702176][ T8384] [ 394.950857][ T8384] Mem-Info: [ 394.954449][ T8384] active_anon:6457 inactive_anon:0 isolated_anon:0 [ 394.954449][ T8384] active_file:3256 inactive_file:40298 isolated_file:0 [ 394.954449][ T8384] unevictable:768 dirty:59 writeback:0 [ 394.954449][ T8384] slab_reclaimable:5027 slab_unreclaimable:22150 [ 394.954449][ T8384] mapped:31429 shmem:3419 pagetables:1263 [ 394.954449][ T8384] sec_pagetables:0 bounce:0 [ 394.954449][ T8384] kernel_misc_reclaimable:0 [ 394.954449][ T8384] free:373185 free_pcp:13572 free_cma:0 [ 395.000072][ T8384] Node 0 active_anon:25828kB inactive_anon:0kB active_file:13024kB inactive_file:160992kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:125716kB dirty:236kB writeback:0kB shmem:12140kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:5168kB pagetables:4704kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 395.034337][ T8384] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:16kB pagetables:348kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 395.065946][ T8384] Node 0 DMA free:4096kB boost:0kB min:164kB low:204kB high:244kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 395.096246][ T8384] lowmem_reserve[]: 0 929 1242 1242 1242 [ 395.102574][ T8384] Node 0 DMA32 free:573788kB boost:0kB min:36800kB low:46000kB high:55200kB reserved_highatomic:0KB free_highatomic:0KB active_anon:364kB inactive_anon:0kB active_file:10168kB inactive_file:64960kB unevictable:0kB writepending:188kB zspages:0kB present:3129332kB managed:952056kB mlocked:0kB bounce:0kB free_pcp:41176kB local_pcp:18336kB free_cma:0kB [ 395.137951][ T8384] lowmem_reserve[]: 0 0 312 312 312 [ 395.147223][ T8384] Node 0 Normal free:16216kB boost:0kB min:12980kB low:16224kB high:19468kB reserved_highatomic:0KB free_highatomic:0KB active_anon:25600kB inactive_anon:0kB active_file:2856kB inactive_file:96032kB unevictable:1536kB writepending:48kB zspages:0kB present:1048580kB managed:320476kB mlocked:0kB bounce:0kB free_pcp:11108kB local_pcp:5648kB free_cma:0kB [ 395.180924][ T8384] lowmem_reserve[]: 0 0 0 0 0 [ 395.186426][ T8384] Node 1 Normal free:898404kB boost:0kB min:40156kB low:50192kB high:60228kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:991252kB mlocked:0kB bounce:0kB free_pcp:1824kB local_pcp:0kB free_cma:0kB [ 395.221475][ T8384] lowmem_reserve[]: 0 0 0 0 0 [ 395.223030][ T5800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 395.227758][ T8384] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB [ 395.250699][ T8384] Node 0 DMA32: 1*4kB (U) 5*8kB (UE) 109*16kB (UME) 131*32kB (UME) 72*64kB (UME) 46*128kB (UME) 11*256kB (UME) 7*512kB (UME) 8*1024kB (UME) 7*2048kB (UME) 129*4096kB (M) = 573788kB [ 395.270965][ T8384] Node 0 Normal: 114*4kB (UE) 18*8kB (UME) 14*16kB (UE) 57*32kB (UE) 34*64kB (UME) 13*128kB (UME) 4*256kB (UM) 1*512kB (M) 2*1024kB (ME) 3*2048kB (UM) 0*4096kB = 16216kB [ 395.290614][ T8384] Node 1 Normal: 3*4kB (UE) 7*8kB (UE) 16*16kB (UME) 25*32kB (UME) 22*64kB (UME) 9*128kB (UME) 3*256kB (UME) 2*512kB (ME) 4*1024kB (UM) 2*2048kB (UM) 216*4096kB (M) = 898404kB [ 395.311090][ T8384] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 395.323187][ T8384] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 395.333622][ T8384] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 395.343534][ T8384] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 395.353169][ T8384] 47068 total pagecache pages [ 395.358046][ T8384] 0 pages in swap cache [ 395.362619][ T8384] Free swap = 124996kB [ 395.366946][ T8384] Total swap = 124996kB [ 395.371282][ T8384] 2097051 pages RAM [ 395.375507][ T8384] 0 pages HighMem/MovableOnly [ 395.380367][ T8384] 1530081 pages reserved [ 395.384921][ T8384] 0 pages cma reserved [ 397.725081][ T8421] 9pnet_fd: Insufficient options for proto=fd [ 397.774536][ T8421] netlink: 'syz.2.715': attribute type 12 has an invalid length. [ 398.695176][ T8446] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 401.449837][ T8479] netlink: 200 bytes leftover after parsing attributes in process `syz.4.738'. [ 401.462537][ T8479] netlink: 200 bytes leftover after parsing attributes in process `syz.4.738'. [ 401.603656][ T8481] netlink: 4 bytes leftover after parsing attributes in process `syz.2.739'. [ 401.996712][ T8490] netlink: 'syz.1.741': attribute type 16 has an invalid length. [ 402.005293][ T8490] netlink: 156 bytes leftover after parsing attributes in process `syz.1.741'. [ 404.551587][ T8533] netlink: 4 bytes leftover after parsing attributes in process `syz.0.754'. [ 404.562816][ T30] audit: type=1326 audit(1761321686.635:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8535 comm="syz.3.760" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf700d539 code=0x0 [ 404.795031][ T8533] netlink: 4 bytes leftover after parsing attributes in process `syz.0.754'. [ 404.941277][ T8533] netlink: 8 bytes leftover after parsing attributes in process `syz.0.754'. [ 406.468275][ T30] audit: type=1326 audit(1761321688.555:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8562 comm="syz.0.769" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 406.493093][ T30] audit: type=1326 audit(1761321688.555:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8562 comm="syz.0.769" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 406.527755][ T30] audit: type=1326 audit(1761321688.615:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8562 comm="syz.0.769" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 406.550492][ T30] audit: type=1326 audit(1761321688.615:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8562 comm="syz.0.769" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 406.573405][ T30] audit: type=1326 audit(1761321688.635:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8562 comm="syz.0.769" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 406.597532][ T30] audit: type=1326 audit(1761321688.645:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8562 comm="syz.0.769" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 406.620541][ T30] audit: type=1326 audit(1761321688.655:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8562 comm="syz.0.769" exe="/root/syz-executor" sig=0 arch=40000003 syscall=356 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 406.642965][ T30] audit: type=1326 audit(1761321688.655:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8562 comm="syz.0.769" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 406.665423][ T30] audit: type=1326 audit(1761321688.705:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8562 comm="syz.0.769" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 408.378331][ T8590] netlink: 28 bytes leftover after parsing attributes in process `syz.1.778'. [ 408.387868][ T8590] netlink: 108 bytes leftover after parsing attributes in process `syz.1.778'. [ 408.398085][ T8590] netlink: 28 bytes leftover after parsing attributes in process `syz.1.778'. [ 408.407719][ T8590] netlink: 108 bytes leftover after parsing attributes in process `syz.1.778'. [ 408.417013][ T8590] netlink: 84 bytes leftover after parsing attributes in process `syz.1.778'. [ 408.586703][ T8593] loop1: detected capacity change from 0 to 512 [ 408.769260][ T8593] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #2: comm syz.1.778: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 6, max 4(4), depth 0(0) [ 408.810000][ T8593] EXT4-fs (loop1): get root inode failed [ 408.816066][ T8593] EXT4-fs (loop1): mount failed [ 408.983173][ T8608] netlink: 4 bytes leftover after parsing attributes in process `syz.4.782'. [ 410.392385][ T30] kauditd_printk_skb: 23 callbacks suppressed [ 410.392468][ T30] audit: type=1107 audit(1761321692.475:475): pid=8645 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='…' [ 414.947535][ T8757] lo speed is unknown, defaulting to 1000 [ 414.954182][ T8757] lo speed is unknown, defaulting to 1000 [ 414.961275][ T8757] lo speed is unknown, defaulting to 1000 [ 414.993765][ T8757] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 415.041094][ T8757] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 415.175312][ T8757] lo speed is unknown, defaulting to 1000 [ 415.187563][ T8757] lo speed is unknown, defaulting to 1000 [ 415.197680][ T8757] lo speed is unknown, defaulting to 1000 [ 415.206770][ T8757] lo speed is unknown, defaulting to 1000 [ 415.216060][ T8757] lo speed is unknown, defaulting to 1000 [ 416.461752][ T8773] netlink: 12 bytes leftover after parsing attributes in process `syz.0.823'. [ 417.101228][ T1093] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 417.138074][ T1093] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 417.188506][ T1093] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 417.214435][ T8779] lo speed is unknown, defaulting to 1000 [ 417.220818][ T8779] lo speed is unknown, defaulting to 1000 [ 417.228040][ T8779] lo speed is unknown, defaulting to 1000 [ 417.295987][ T8779] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 417.335941][ T1093] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 417.782712][ T8779] lo speed is unknown, defaulting to 1000 [ 417.791711][ T8779] lo speed is unknown, defaulting to 1000 [ 417.800846][ T8779] lo speed is unknown, defaulting to 1000 [ 417.810034][ T8779] lo speed is unknown, defaulting to 1000 [ 417.819098][ T8779] lo speed is unknown, defaulting to 1000 [ 419.163299][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 419.169986][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 419.652146][ T30] audit: type=1326 audit(1761321701.735:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8810 comm="syz.0.837" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 419.675133][ T30] audit: type=1326 audit(1761321701.735:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8810 comm="syz.0.837" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 420.172949][ T30] audit: type=1326 audit(1761321701.795:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8810 comm="syz.0.837" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 420.195889][ T30] audit: type=1326 audit(1761321701.805:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8810 comm="syz.0.837" exe="/root/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 420.223449][ T30] audit: type=1326 audit(1761321701.805:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8810 comm="syz.0.837" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 420.247565][ T30] audit: type=1326 audit(1761321701.805:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8810 comm="syz.0.837" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 420.270260][ T30] audit: type=1326 audit(1761321701.805:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8810 comm="syz.0.837" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 420.292680][ T30] audit: type=1326 audit(1761321701.815:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8810 comm="syz.0.837" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 420.320939][ T30] audit: type=1326 audit(1761321701.815:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8810 comm="syz.0.837" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 420.345200][ T30] audit: type=1326 audit(1761321701.815:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8810 comm="syz.0.837" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 423.115221][ T8851] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 424.462366][ T11] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 424.690358][ T11] usb 1-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00 [ 424.699921][ T11] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 424.710399][ T11] usb 1-1: Product: syz [ 424.715830][ T11] usb 1-1: Manufacturer: syz [ 424.720687][ T11] usb 1-1: SerialNumber: syz [ 424.953322][ T4379] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 424.979474][ T4379] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 425.033499][ T4379] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 425.043611][ T4379] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 425.139352][ T8892] siw: device registration error -23 [ 425.248635][ T8899] netlink: 8 bytes leftover after parsing attributes in process `syz.1.869'. [ 426.502613][ T11] rtl8150 1-1:1.0: couldn't reset the device [ 426.510368][ T11] rtl8150 1-1:1.0: probe with driver rtl8150 failed with error -5 [ 426.610697][ T8916] netdevsim netdevsim3 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 426.621060][ T8916] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 426.720436][ T30] kauditd_printk_skb: 103 callbacks suppressed [ 426.720524][ T30] audit: type=1326 audit(1761321708.805:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8914 comm="syz.3.878" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 426.806231][ T30] audit: type=1326 audit(1761321708.865:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8914 comm="syz.3.878" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 426.828919][ T30] audit: type=1326 audit(1761321708.885:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8914 comm="syz.3.878" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 426.851878][ T30] audit: type=1326 audit(1761321708.885:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8914 comm="syz.3.878" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 426.881279][ T30] audit: type=1326 audit(1761321708.895:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8914 comm="syz.3.878" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 426.903940][ T30] audit: type=1326 audit(1761321708.895:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8914 comm="syz.3.878" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 426.926335][ T30] audit: type=1326 audit(1761321708.945:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8914 comm="syz.3.878" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 426.957231][ T8916] netdevsim netdevsim3 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 426.970218][ T8916] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 427.169617][ T8916] netdevsim netdevsim3 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 427.179976][ T8916] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 427.263203][ T30] audit: type=1326 audit(1761321709.175:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8914 comm="syz.3.878" exe="/root/syz-executor" sig=0 arch=40000003 syscall=360 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 427.291166][ T30] audit: type=1326 audit(1761321709.175:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8914 comm="syz.3.878" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 427.315230][ T30] audit: type=1326 audit(1761321709.175:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8914 comm="syz.3.878" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf700d539 code=0x7ffc0000 [ 427.400684][ T8916] netdevsim netdevsim3 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 427.411140][ T8916] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 427.479209][ T5155] usb 1-1: USB disconnect, device number 2 [ 427.925950][ T4040] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 427.935516][ T4040] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 428.040288][ T4040] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 428.049729][ T4040] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 428.114518][ T1093] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 428.123586][ T1093] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 428.170943][ T1093] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 428.179677][ T1093] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 428.637905][ T8959] loop4: detected capacity change from 0 to 1024 [ 428.674618][ T8959] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 428.686151][ T8959] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 428.744667][ T8959] JBD2: no valid journal superblock found [ 428.750866][ T8959] EXT4-fs (loop4): Could not load journal inode [ 431.897174][ T9018] syz!: rxe_newlink: already configured on team_slave_0 [ 431.986141][ T9018] netlink: 52 bytes leftover after parsing attributes in process `syz.2.904'. [ 432.569570][ T30] kauditd_printk_skb: 26 callbacks suppressed [ 432.569653][ T30] audit: type=1326 audit(1761321714.655:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm="syz.2.909" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 432.604763][ T30] audit: type=1326 audit(1761321714.655:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm="syz.2.909" exe="/root/syz-executor" sig=0 arch=40000003 syscall=383 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 432.635133][ T30] audit: type=1326 audit(1761321714.655:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm="syz.2.909" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 432.659345][ T30] audit: type=1326 audit(1761321714.655:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9028 comm="syz.2.909" exe="/root/syz-executor" sig=0 arch=40000003 syscall=371 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 433.628754][ T30] audit: type=1326 audit(1761321715.705:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9041 comm="syz.4.914" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fc5539 code=0x0 [ 434.100277][ T9043] lo speed is unknown, defaulting to 1000 [ 434.109366][ T9043] lo speed is unknown, defaulting to 1000 [ 434.585471][ T9084] program syz.2.919 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 436.069294][ T9101] ===================================================== [ 436.076717][ T9101] BUG: KMSAN: uninit-value in batadv_get_vid+0x2d0/0x3b0 [ 436.084144][ T9101] batadv_get_vid+0x2d0/0x3b0 [ 436.089056][ T9101] batadv_interface_tx+0x2e5/0x1e60 [ 436.094659][ T9101] dev_hard_start_xmit+0x22f/0xa30 [ 436.100017][ T9101] __dev_queue_xmit+0x3c51/0x5e60 [ 436.105469][ T9101] __bpf_redirect+0x162d/0x1760 [ 436.110563][ T9101] bpf_clone_redirect+0x366/0x530 [ 436.116014][ T9101] ___bpf_prog_run+0x1297/0xeba0 [ 436.121172][ T9101] __bpf_prog_run512+0xc5/0x100 [ 436.126390][ T9101] bpf_test_run+0x496/0xd80 [ 436.131111][ T9101] bpf_prog_test_run_skb+0x18c1/0x26a0 [ 436.136989][ T9101] bpf_prog_test_run+0x5c2/0xa40 [ 436.142301][ T9101] __sys_bpf+0x873/0xeb0 [ 436.146726][ T9101] __ia32_sys_bpf+0xa4/0xf0 [ 436.151471][ T9101] ia32_sys_call+0xadf/0x4310 [ 436.156584][ T9101] __do_fast_syscall_32+0xb0/0x150 [ 436.162099][ T9101] do_fast_syscall_32+0x38/0x80 [ 436.167177][ T9101] do_SYSENTER_32+0x1f/0x30 [ 436.171914][ T9101] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 436.178648][ T9101] [ 436.181081][ T9101] Uninit was created at: [ 436.185761][ T9101] kmem_cache_alloc_node_noprof+0x989/0x16b0 [ 436.192123][ T9101] kmalloc_reserve+0x13c/0x4b0 [ 436.197109][ T9101] pskb_expand_head+0x1fc/0x1610 [ 436.202454][ T9101] skb_ensure_writable+0x44e/0x510 [ 436.207813][ T9101] bpf_clone_redirect+0x1c1/0x530 [ 436.213265][ T9101] ___bpf_prog_run+0x1297/0xeba0 [ 436.218393][ T9101] __bpf_prog_run512+0xc5/0x100 [ 436.223634][ T9101] bpf_test_run+0x496/0xd80 [ 436.228362][ T9101] bpf_prog_test_run_skb+0x18c1/0x26a0 [ 436.234240][ T9101] bpf_prog_test_run+0x5c2/0xa40 [ 436.239383][ T9101] __sys_bpf+0x873/0xeb0 [ 436.243968][ T9101] __ia32_sys_bpf+0xa4/0xf0 [ 436.248719][ T9101] ia32_sys_call+0xadf/0x4310 [ 436.253905][ T9101] __do_fast_syscall_32+0xb0/0x150 [ 436.259262][ T9101] do_fast_syscall_32+0x38/0x80 [ 436.264647][ T9101] do_SYSENTER_32+0x1f/0x30 [ 436.269397][ T9101] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 436.276149][ T9101] [ 436.278615][ T9101] CPU: 1 UID: 0 PID: 9101 Comm: syz.3.929 Tainted: G W syzkaller #0 PREEMPT(none) [ 436.289788][ T9101] Tainted: [W]=WARN [ 436.293838][ T9101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 436.304231][ T9101] ===================================================== [ 436.311290][ T9101] Disabling lock debugging due to kernel taint [ 436.317857][ T9101] Kernel panic - not syncing: kmsan.panic set ... [ 436.324452][ T9101] CPU: 1 UID: 0 PID: 9101 Comm: syz.3.929 Tainted: G B W syzkaller #0 PREEMPT(none) [ 436.335584][ T9101] Tainted: [B]=BAD_PAGE, [W]=WARN [ 436.340740][ T9101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 436.350965][ T9101] Call Trace: [ 436.354383][ T9101] [ 436.357454][ T9101] __dump_stack+0x26/0x30 [ 436.362102][ T9101] dump_stack_lvl+0x53/0x270 [ 436.366928][ T9101] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 436.372977][ T9101] dump_stack+0x1e/0x25 [ 436.377359][ T9101] vpanic+0x435/0xd30 [ 436.381633][ T9101] panic+0x15d/0x160 [ 436.385900][ T9101] kmsan_report+0x31c/0x320 [ 436.390882][ T9101] ? __do_fast_syscall_32+0xb0/0x150 [ 436.396421][ T9101] ? __msan_warning+0x1b/0x30 [ 436.401421][ T9101] ? batadv_get_vid+0x2d0/0x3b0 [ 436.406530][ T9101] ? batadv_interface_tx+0x2e5/0x1e60 [ 436.412141][ T9101] ? dev_hard_start_xmit+0x22f/0xa30 [ 436.417681][ T9101] ? __dev_queue_xmit+0x3c51/0x5e60 [ 436.423121][ T9101] ? __bpf_redirect+0x162d/0x1760 [ 436.428397][ T9101] ? bpf_clone_redirect+0x366/0x530 [ 436.433846][ T9101] ? ___bpf_prog_run+0x1297/0xeba0 [ 436.439122][ T9101] ? __bpf_prog_run512+0xc5/0x100 [ 436.444308][ T9101] ? bpf_test_run+0x496/0xd80 [ 436.449220][ T9101] ? bpf_prog_test_run_skb+0x18c1/0x26a0 [ 436.455080][ T9101] ? bpf_prog_test_run+0x5c2/0xa40 [ 436.460397][ T9101] ? __sys_bpf+0x873/0xeb0 [ 436.464982][ T9101] ? __ia32_sys_bpf+0xa4/0xf0 [ 436.469867][ T9101] ? ia32_sys_call+0xadf/0x4310 [ 436.474921][ T9101] ? __do_fast_syscall_32+0xb0/0x150 [ 436.480406][ T9101] ? do_fast_syscall_32+0x38/0x80 [ 436.485622][ T9101] ? do_SYSENTER_32+0x1f/0x30 [ 436.490494][ T9101] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 436.497195][ T9101] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 436.503673][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.508954][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.514233][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.520265][ T9101] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 436.526365][ T9101] ? batadv_interface_tx+0xc1/0x1e60 [ 436.531970][ T9101] ? filter_irq_stacks+0x49/0x190 [ 436.537223][ T9101] ? stack_depot_save_flags+0x35/0x7b0 [ 436.542854][ T9101] ? packet_rcv+0x1dad/0x23a0 [ 436.547701][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.552993][ T9101] __msan_warning+0x1b/0x30 [ 436.557644][ T9101] batadv_get_vid+0x2d0/0x3b0 [ 436.562507][ T9101] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 436.568507][ T9101] batadv_interface_tx+0x2e5/0x1e60 [ 436.573908][ T9101] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 436.580465][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.585761][ T9101] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 436.591788][ T9101] ? __pfx_batadv_interface_tx+0x10/0x10 [ 436.597646][ T9101] dev_hard_start_xmit+0x22f/0xa30 [ 436.603008][ T9101] __dev_queue_xmit+0x3c51/0x5e60 [ 436.608248][ T9101] ? skb_release_data+0xa12/0xac0 [ 436.613470][ T9101] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 436.619979][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.625276][ T9101] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 436.631260][ T9101] ? __dev_queue_xmit+0x30c/0x5e60 [ 436.636610][ T9101] __bpf_redirect+0x162d/0x1760 [ 436.641680][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.647152][ T9101] bpf_clone_redirect+0x366/0x530 [ 436.652511][ T9101] ___bpf_prog_run+0x1297/0xeba0 [ 436.657652][ T9101] __bpf_prog_run512+0xc5/0x100 [ 436.662685][ T9101] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 436.669245][ T9101] ? kmsan_internal_poison_memory+0x7f/0xa0 [ 436.675372][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.680668][ T9101] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 436.687244][ T9101] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 436.693601][ T9101] ? _raw_spin_unlock_irqrestore+0x3f/0x60 [ 436.699604][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.704886][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.710171][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.715459][ T9101] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 436.722045][ T9101] ? kmsan_get_metadata+0x150/0x160 [ 436.727431][ T9101] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 436.733426][ T9101] ? __pfx___bpf_prog_run512+0x10/0x10 [ 436.739064][ T9101] ? __pfx___bpf_prog_run512+0x10/0x10 [ 436.744692][ T9101] bpf_test_run+0x496/0xd80 [ 436.749383][ T9101] ? kmsan_get_metadata+0xfb/0x160 [ 436.754693][ T9101] ? bpf_test_run+0x2f7/0xd80 [ 436.759583][ T9101] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 436.765594][ T9101] bpf_prog_test_run_skb+0x18c1/0x26a0 [ 436.771302][ T9101] ? __pfx_bpf_prog_test_run_skb+0x10/0x10 [ 436.777318][ T9101] bpf_prog_test_run+0x5c2/0xa40 [ 436.782456][ T9101] __sys_bpf+0x873/0xeb0 [ 436.786902][ T9101] __ia32_sys_bpf+0xa4/0xf0 [ 436.791625][ T9101] ia32_sys_call+0xadf/0x4310 [ 436.796525][ T9101] __do_fast_syscall_32+0xb0/0x150 [ 436.801900][ T9101] do_fast_syscall_32+0x38/0x80 [ 436.806968][ T9101] do_SYSENTER_32+0x1f/0x30 [ 436.811663][ T9101] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 436.818213][ T9101] RIP: 0023:0xf700d539 [ 436.822402][ T9101] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 436.842186][ T9101] RSP: 002b:00000000f53fd55c EFLAGS: 00000206 ORIG_RAX: 0000000000000165 [ 436.850766][ T9101] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000080000080 [ 436.858863][ T9101] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000 [ 436.866963][ T9101] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 436.875076][ T9101] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 436.883194][ T9101] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 436.891323][ T9101] [ 436.894819][ T9101] Kernel Offset: disabled [ 436.899227][ T9101] Rebooting in 86400 seconds..