last executing test programs: 11.447896487s ago: executing program 1 (id=1350): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f00000003c0)='kmem_cache_free\x00'}, 0x10) fcntl$lock(0xffffffffffffffff, 0x26, 0x0) close(0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc) r4 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r4, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e20, @remote}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0) getsockopt$inet_mptcp_buf(0xffffffffffffffff, 0x11c, 0x2, &(0x7f0000000000)=""/245, 0x0) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f00000000c0)={[{@noquota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x3, 0x4c5, &(0x7f0000001cc0)="$eJzs3U1rW1caAOD3ynbiJM7YmZlFJjCZMJPBCTOR7HiSmFlkPFDaVaBpunddWzbGsmUsOYlNKA79AYXSL9pVV90Uui6Fkp9QCoF2X0ppCW2SLrpoqyL5qkld+YtYVmI9Dxzfcz+k9z0W90hH56IbQNs6EREjEdEREacjojfdnklLrKyW6nH37t4Yr5YkKpUr3yaRpNvqz5Wky0Ppw7oj4rlnIl5Mfh+3tLQ8M1Yo5BfS9Vx5dj5XWlo+Mz07NpWfys+NDA2eH74wfG54YMfaevGpr9545b2nL37872tfjH5z6qVqWj3pvofbsRUrWzxuteldtf9FXWdELGwn2GOsI21PV6sTAQBgS6qf8f8YEX+PiPtvtzobAAAAoBkq/+uJH5OICgAAALBnZWrXwCaZbHotQE9kMtns6jW8f46DmUKxVP7XZHFxbmL1Wtm+6MpMThfyA+m1wn3RlVTXB2v1B+tn16wPRcSRiHit90BtPTteLEy0+ssPAAAAaBOH1oz/v+9dHf8DAAAAe0xfqxMAAAAAms74HwAAAPa+dcf/SefuJgIAAAA0w7OXLlVLpX7/64mrS4szxatnJvKlmezs4nh2vLgwn50qFqdqv9k3u9nzFYrF+f/E3OL1XDlfKudKS8ujs8XFufJo7b7eo3n3iQYAAIDdd+Rvtz5PImLlvwdqpWpfum8LY/WR5mYHNFNme4cnzcoD2H0drU4AaBkX+EL7Mh8PbDKwf33N+ja/NgAAAB4H/X95pPl/84HwBDOQh/Zl/h/al/l/aF/m/6HN7d/8kO71dnyyw7kAAABN01MrSSabzgX2RCaTzUYcrt0WoCuZnC7kByLiDxHxWW/X/ur6YKuTBgAAAAAAAAAAAAAAAAAAAAAAAIAnTKWSRAUAAADY0yIyXyfpjfz7e0/2rP1+YF/yQ29tGRHX3rny5vWxcnlhsLr9u1+3l99Kt5+tbwEAAABaqT5Or4/jAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAn3bt7Y7xedjPunf9HRF+j+J3RXVt2f9gbEQfvJ9H50OOSiOjYgfgrNyPiaKP4STWt6EuzWBs/ExEHWhz/0A7Eh3Z2q9r/jFTPv641518mTtSWjc+/zrQ8qjsn1uv/MvX+r9bPNer/Dm/81N31yrHbH+TWjX8z4lhn4/6nHj95xP73heeXl9fbV3k3on+T959qrFx5dj5XWlo+Mz07NpWfys8NDQ2eH74wfG54IDc5XcinfxvGePWvH/28UfsPNoy/2v9u1P6TW2z/T7ev3/3TBvFP/aPx6390g/jV//0/0/eB6v7+en1ltf6w4+9/enyj9k+s0/7NXv9TW2z/6csvf7nFQwGAXVBaWp4ZKxTyCyoqKnuvcjk90bf98BZ3TAAAwI578KG/1ZkAAAAAAAAAAAAAAAAAAABA+2r6j5Dt/+0vC3S3rqkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABv6JQAA///dfdKW") r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x37, 0x7fffffff}]}) close_range(r5, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x13, 0xffffffffffffffff, 0x0) 8.555854703s ago: executing program 2 (id=1363): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@orlov}, {@abort}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x10}}]}, 0x64, 0x50a, &(0x7f0000000940)="$eJzs3VFrHFsdAPD/bHZr06Y3ueqDXvB6tZW0aHeTxrbBh1pB9Kmg1vcak00I2WRDdtM2oWiKH0AQUcEnffFF8AMIUvDFRxEK+qyoKKKtPvigncvuTtI03U227TabZn8/mMw5Z2b2f86GmZ0zc5gJYGC9FxHXI+JJmqYXImI0K89lU2y1psZ6jx/dm21MSaTpzX8mkWRl25+VZPPT2WYnI+JrX474ZvJ83NrG5tJMpVJey/Kl+vJqqbaxeXFxeWahvFBemZqavDJ9dfry9ERP2nkmIq598a8/+O7PvnTtV5+586dbfz//rUa1RrLlu9vxgvL7LWw1vdD8LnZvsPaSwY6ifLOFmeF2aww9V3L/NdcJAID2Guf4H4yIT0bEhRiNof1PZwEAAIA3UPr5kfhfEpG2d6JDOQAAAPAGyTXHwCa5YjYWYCRyuWKxNYb3w3EqV6nW6p+er66vzLXGyo5FITe/WClPZGOFx6KQNPKTzfTT/KU9+amIeDsivj863MwXZ6uVuX5f/AAAAIABcXpP//8/o63+PwAAAHDMjPW7AgAAAMBrp/8PAAAAx5/+PwAAABxrX7lxozGl2++/nru9sb5UvX1xrlxbKi6vzxZnq2urxYVqdaH5zL7lgz6vUq2ufjZW1u+W6uVavVTb2Ly1XF1fqd9afOYV2AAAAMAhevvjD/6QRMTW54abU8OJ7jbtcjXgqMrvpJJs3ma3/uNbrflfDqlSwKEY6ncFgL7J97sCQN8U+l0BoO+SA5Z3HLzz22z+id7WBwAA6L3xj3a+/5/bd8ut/RcDR56dGAaX+/8wuJr3/7sdyetkAY6VgjMAGHivfP//QGn6QhUCAAB6bqQ5JblidnlvJHK5YjHiTPO1AIVkfrFSnoiItyLi96OFDzTyk80tkwP7DAAAAAAAAAAAAAAAAAAAAAAAAABAS5omkQIAAADHWkTub8mvW8/yHx89N7L3+sCJ5L+jkb0i9M6Pb/7w7ky9vjbZKP/XTnn9R1n5pX5cwQAAAICB8EIv8N/up2/34wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACglx4/uje7PR1m3H98ISLG2sXPx8nm/GQUIuLUv5PI79ouiYihHsQfbvz5SLv4SaNaOyHbxR/uQfyt+/vGj7HsW2gX/3QP4sMge9A4/lxvt//l4r3mvP3+l494Jv+yOh//Yuf4N9Rh/z/TZYx3Hv6i1DH+/Yh38u2PP9vxkw7xz3YZ/xtf39zstCz9ScR429+f5JlYpfryaqm2sXlxcXlmobxQXpmamrwyfXX68vREaX6xUs7+to3xvY/98sl+7T/VIf7YAe0/12X7///w7qMPtZKFdvHPn20T/zc/zdZ4Pn4u++37VJZuLB/fTm+10ru9+/Pfvbtf++c6tP+g///5Ltt/4avf+XOXqwIAh6C2sbk0U6mU145totFLPwLVkDiCiW/39APTNE0b+9QrfE4SR+FraSb6fWQCAAB67elJf79rAgAAAAAAAAAAAAAAAAAAAIPrMB4ntjfm1k4q6cUjtAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeuL9AAAA//+GAdlV") r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) timer_create(0x9, 0x0, &(0x7f0000000700)=0x0) timer_settime(r1, 0x0, 0x0, 0x0) timer_settime(r1, 0x0, &(0x7f0000000080), &(0x7f00000000c0)) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$inet_sctp(0x2, 0x5, 0x84) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_MAXSEG(r3, 0x84, 0xd, &(0x7f0000000280)=@assoc_value={0x0, 0x9}, &(0x7f00000002c0)=0x8) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r4, {0x0, 0xa}, {}, {0xa}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x6e, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x0, 0x3, 0x1d}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0x3}]}]}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x22044028}, 0x800) 8.146754709s ago: executing program 1 (id=1367): r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0}, 0x18) r1 = mq_open(0x0, 0x40, 0x110, 0x0) mq_timedreceive(r1, 0x0, 0xfffffffffffffee3, 0x2000000, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000022c0)={0x11, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x23, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) unshare(0x68040200) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000000}, 0x94) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010) ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f00000001c0)={0x1, &(0x7f0000000180)=[{0x5, 0xa, 0xfa, 0x2}]}) openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0xa0902) 7.851662584s ago: executing program 2 (id=1369): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=@newlink={0x28, 0x10, 0xc362e63b3f31ba5f, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x20080, 0x80e1}, [@IFLA_GROUP={0x8}]}, 0x28}}, 0x0) sendmmsg$inet(r0, &(0x7f0000004a80)=[{{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f00000006c0)="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", 0x407}], 0x1}}], 0x1, 0xc0) 6.959704068s ago: executing program 1 (id=1372): r0 = socket$kcm(0x11, 0x2, 0x300) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000c80)={0x6, 0x0, 0x0, 0x0, 0x13, 0x0, 0x0, 0x41100, 0x2c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x4, 0x0, 0x1}, {0x10000002, 0x10}]}, 0x94) r1 = socket$kcm(0x11, 0x200000000000002, 0x300) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000c40)={0xffffffffffffffff, 0xffffffffffffffff}) close(r3) recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x400021a0) setsockopt$sock_attach_bpf(r1, 0x107, 0x12, &(0x7f0000000340)=r4, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) close(r6) recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0x12, &(0x7f00000008c0)=r7, 0x4) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0xf7, 0x0, &(0x7f0000000100)="b9ff03006044238cb89e14f089021bffffff00004000632f77fbac14140be934a0a662079f4b4d2f87e50aca6aab845013f288a81a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff40000", 0x0, 0xfe, 0x60000000}, 0x50) 5.189895697s ago: executing program 0 (id=1375): bpf$ENABLE_STATS(0x20, 0x0, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0, r1}, 0x18) r2 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)=ANY=[], 0x10b8}, 0x44090) close_range(r0, 0xffffffffffffffff, 0x0) 5.180701667s ago: executing program 4 (id=1376): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = mq_open(&(0x7f0000000dc0)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf\x00\x00\x00\x00\x00\x00\x00\x00\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=7\xfa\xd4\xf4\xde\xfar\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0r\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v=|?\x9e\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\x02-\f\x03T\xacm\x1ci\x1e^\xd0\xf5#G\xce\xaf\x88U\xfa\x80\xf2|\xb5.Z\x05_K \xe7\x92\xb7F4\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Ot9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xdc9\x89\xfd\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10?\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb\x00\x00\x00\x00\x00d\x9d\x85\x03\x80\x19\xe5\xe4\x18\\U/iH\xd5\x81E\x9eG\xb3\x8ay]{\xf6<\x86\xf3\x8b\xfe\xcd\xb9\xde\xcc\x9cC)zGv\xbb\x16\x03\xe1\xe0\xbf\x13\xbb\x98#\xae\x1f\x85\xed\xdb\x18\x8e:\x91C\x0f\x14_\xfd\xc1\x8d7?\x8f\xa8?\xe1q\x99\xca$\xce\xc6\xd0\xd5\xfe`t\xdeJ\xed\x00\xc1\xb8\x11\x91\xad\xbc\x92\xd7\xdd\x8a\x00\xe3i\ad\x91s\x99Z\xb3>$:\x82G\x9c[\xcbp\xb9\x192\x1b\xa1s\xeb)\x128G\x13\x92\xd0F\xc8\xef\xf0+\xa6', 0x40, 0x1e8, 0x0) mq_unlink(&(0x7f0000000000)='eth0\x00') close(r0) 5.138344338s ago: executing program 1 (id=1377): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f00000003c0)='kmem_cache_free\x00'}, 0x10) fcntl$lock(0xffffffffffffffff, 0x26, 0x0) close(0xffffffffffffffff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc) r4 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r4, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x4e20, @remote}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18}, 0x0) getsockopt$inet_mptcp_buf(0xffffffffffffffff, 0x11c, 0x2, &(0x7f0000000000)=""/245, 0x0) syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x3014850, &(0x7f00000000c0)={[{@noquota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x3, 0x4c5, &(0x7f0000001cc0)="$eJzs3U1rW1caAOD3ynbiJM7YmZlFJjCZMJPBCTOR7HiSmFlkPFDaVaBpunddWzbGsmUsOYlNKA79AYXSL9pVV90Uui6Fkp9QCoF2X0ppCW2SLrpoqyL5qkld+YtYVmI9Dxzfcz+k9z0W90hH56IbQNs6EREjEdEREacjojfdnklLrKyW6nH37t4Yr5YkKpUr3yaRpNvqz5Wky0Ppw7oj4rlnIl5Mfh+3tLQ8M1Yo5BfS9Vx5dj5XWlo+Mz07NpWfys+NDA2eH74wfG54YMfaevGpr9545b2nL37872tfjH5z6qVqWj3pvofbsRUrWzxuteldtf9FXWdELGwn2GOsI21PV6sTAQBgS6qf8f8YEX+PiPtvtzobAAAAoBkq/+uJH5OICgAAALBnZWrXwCaZbHotQE9kMtns6jW8f46DmUKxVP7XZHFxbmL1Wtm+6MpMThfyA+m1wn3RlVTXB2v1B+tn16wPRcSRiHit90BtPTteLEy0+ssPAAAAaBOH1oz/v+9dHf8DAAAAe0xfqxMAAAAAms74HwAAAPa+dcf/SefuJgIAAAA0w7OXLlVLpX7/64mrS4szxatnJvKlmezs4nh2vLgwn50qFqdqv9k3u9nzFYrF+f/E3OL1XDlfKudKS8ujs8XFufJo7b7eo3n3iQYAAIDdd+Rvtz5PImLlvwdqpWpfum8LY/WR5mYHNFNme4cnzcoD2H0drU4AaBkX+EL7Mh8PbDKwf33N+ja/NgAAAB4H/X95pPl/84HwBDOQh/Zl/h/al/l/aF/m/6HN7d/8kO71dnyyw7kAAABN01MrSSabzgX2RCaTzUYcrt0WoCuZnC7kByLiDxHxWW/X/ur6YKuTBgAAAAAAAAAAAAAAAAAAAAAAAIAnTKWSRAUAAADY0yIyXyfpjfz7e0/2rP1+YF/yQ29tGRHX3rny5vWxcnlhsLr9u1+3l99Kt5+tbwEAAABaqT5Or4/jAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAn3bt7Y7xedjPunf9HRF+j+J3RXVt2f9gbEQfvJ9H50OOSiOjYgfgrNyPiaKP4STWt6EuzWBs/ExEHWhz/0A7Eh3Z2q9r/jFTPv641518mTtSWjc+/zrQ8qjsn1uv/MvX+r9bPNer/Dm/81N31yrHbH+TWjX8z4lhn4/6nHj95xP73heeXl9fbV3k3on+T959qrFx5dj5XWlo+Mz07NpWfys8NDQ2eH74wfG54IDc5XcinfxvGePWvH/28UfsPNoy/2v9u1P6TW2z/T7ev3/3TBvFP/aPx6390g/jV//0/0/eB6v7+en1ltf6w4+9/enyj9k+s0/7NXv9TW2z/6csvf7nFQwGAXVBaWp4ZKxTyCyoqKnuvcjk90bf98BZ3TAAAwI578KG/1ZkAAAAAAAAAAAAAAAAAAABA+2r6j5Dt/+0vC3S3rqkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABv6JQAA///dfdKW") r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x37, 0x7fffffff}]}) close_range(r5, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x13, 0xffffffffffffffff, 0x0) 5.137871578s ago: executing program 2 (id=1378): socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, 0x0, &(0x7f0000009980)) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94) syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x800000, &(0x7f0000000500)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES32, @ANYBLOB="b7ad7cd65c46a5be7840094fc88ed3944440d445ac89758d3aa4a6c77ea3e1e50196a99f88ba68f3377383de4de11c07aa5d22d9f4f3c58344d6011b6ea5ee82cf40e4ca5976370cb73c872e576f936791a0ffa5639ac237214be5926acea5405e00f1a144cf7a5240bc1e56ed617e19d6a5a268505f0012b4baf36d3a71eb34c8b67281dbba4b20c3d724ef150deff6f7d908bc72575a1f43b608e0d118", @ANYBLOB="a1fffd2e4c38a7b17fef1a78ad1943012e7b7711a1517cd8b4288a2fbb7d202d8c4a1809add074e6dde0703158125f2f114c49f5ee5f249d63ac0d851c212ccd8d82b7c694ead23c417021e8bc78d646d07e3513568bb81d2179a012dcdcb845b0a58b6d5e46a177de56e3e77ed573967e4eea299078019693ca486edbaa44e947802c7f46f1de18cf7f0e1af02964d04cc84d979855e8d3a3fda262f6a7d2b4b4849fd880c9b9af9be818ba05386754a3505e833ca0b9770f63e91f3a9a04e9fca51d88273d5491ed", @ANYRES8=0x0], 0x3, 0x7ec, &(0x7f0000001580)="$eJzs3U1sHOX5APBnjU3yN39FiKKQRiFMApWCFMx6DaYWB1jWY2fA3rV215WjtoKIOMiKAwiKWnxoyAXaiqrqqUfaK7deqlaVWqmHtqdK5dBLb0icKlq1UtWqquRqZncdf6w/QuIkwO9nxfN69pn3fd7xZJ4d2zsbAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAECUapPl8mgpZrL6/EKyxUBEJPd2Y2e3PLy6urraafX6+/WGxQ7jRpTyf3HwYBzprDpy79WHD+efTsaxzlfH4mC+OBgrdx2++8kvDA70tt+a8HU7sce4UsRbeVIXzy0vL762D4ncRN/75U6PDvZb+e/i+z6d1rNWI5utTqdJ1mokE+Pj5UfPTLWSqWwmbZ1ttdPZpNZMq+1GMzlVezgZnZgYS9KRs435+vRkdSbtrXzikUq5PJ48O3I5IlqN+qPPjrRqZ7KZmaw+XcRUyt+MPOaJpDbZfC5rJ+20OpskF5aWF8d2m10eNLpl7VB+ZBeOPXT3R298+I+lxfyA3K6TUvfArIyOViqj449PPP5EuTxYKVc2rihvEmsRMRCRR+zLQcvtYyC2P4oKN+bEDTfAQLf+x0xkUY/5WIikz8dQ1GIymtGI2fzrPw1tiejq1f8vPfrXP+w07vr636vyR64+fDSK+n+889Xx7ep/31xv5MdAN5/tHn893oyVuBjnYjmWYzFe2/eMrvNjYM+RJ/5/D1HTkUY9smhFI7KYjWqxJumuSWIixmM8yvF8nImpaEUSU5HFTKTRirPRinakxRFVi2akUY12NKIZSZyKWjwcSYzGREzEWCSRxkicjUbMRz2mYzKqRS8XYqnY72Ob8jr87Rd+8dIfP3ovb68Fje4wkVL+ZC4P+vsOQVvK/d7r/2p0I9T/z7sbfAaHT261V/8BAACAz6xS8dP3/Pp/KO4vWlPZTPrVW50WAAAAcAMVv/k/li+G8tb9Ucqv/8t9Ij+46bkBAAAAN0apeI1dKSKG44FOq/dyqX4/BAAAAAA+hYrf/x/PF8MRl4sVrv8BAADgM+Y7291j/8PePXZbcwdKv/pbNJtDpStzCw+VLlXzuOqlOzrbdRdfWeuxPXW0dDA6nRR9jQ+u3FWKiMFaeqzUu/vlfw90lh8Xn48Orm2+3b3+S5sSWNvijs1TyhM4tLIpgcPFwO/GiU7MifOd5WA30e4diYensngrojHzZHFLxPxf+42Xl74VxfS/W589VIoLS8uLIy++sny+yOVK3suVS90bKG65j2L/XIoRV7t7IO7vP+Oh4oUY3XGHO+OW138DBp4uNh/YeczS+jHfjpOdmJPDneXwyob5H8zHHB15cjSq1UMD7XSh/cbqutl3sxi9zpm/HQ92Yh489WBn0SeLyoYsXt6aRWV9Ft2dsMu+2DWLoe6B9d6Jywv//G2jlI7tlsXYpiwOXmMWALfKheKuP1er0P8VVeg/qx15/b9ad5NOQFf3LHffWlf5Wa5XBjad5S7E2iO97dfVusHYUt03P72ITaNsc0Y/1Yk51Xk+MXi0T10p9zmjv7r06u+6Z/TH3v/Rj79+/Pc//eTV7f14uBPTXcQ9v9mmxuZz/n59drjX6cJT3cZPth23NVMpxVDEHd+49Gocfv3NlUeWLp17afGlxZcrlbHx8mPl8uOVGCqeKnQXag8Afez+Hju7RpQe23xVfX5j3b1n7U8KRuLFeCWW43ycLl5tEBEP9O91eN2fIZyOk1FcLG9z1Tq87h1eTu9ybTm0FlvZGluKbfodW7fH7vthsfjXPn5TAGCfndylDu+l/p/e5bp7Yy3fdHUc29fyfr68r3sDAD4f0ubHpeH2O6VmM5t7fnRiYrTaPpMmzUbtuaSZTU6nSVZvp83amWp9Ok3mmo12o9b7wfFk2kpa83NzjWY7mWo0k7lGK1so3vk96b71eyudrdbbWa01N5NWW2lSa9Tb1Vo7mcxatWTuzmdmstaZtFls3JpLa9lUVqu2s0Y9aTXmm7V0JElaaZrMzfcCs8m03s6msrxZT+aa2Wy1eSUiZuZn02QybdWa2Vy70fxi3mGtEcVYWX2q0Zwtuh3ZOv2/3Oz9DQC3g9ffXLl4bnl58bWNjUOxec2mxmAUjT/vFNNr3Oo5AgAbqdIAAAAAAAAAAAAAAHD72/pyvXztri/p69c4ENe+1YG4piGus5FPrbvm3Z997cVPPNNPRyOf3m2Qxj40Snuf1wtPPXVxu5hnLh85s7d++v9P6fdS13cORdz58x901jx9s3bLB1cP7GvZfLW0Q8ytPS8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAQD//CwAA///461Or") sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xb) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_GET(r1, 0x0, 0x40) r2 = mq_open(&(0x7f0000000000)='!selinu\xff\x7f\x00\x00inux\x00T\x8b\xb5\xf3\xcb\xdd\xe3\xbf2\x86\x01\x84\xdd\x8a\x8f_l\xa1L\xb1\xef\xb2\xc9\xf7+C\xb2\x8e9\xb8\xec\x1a\xe5\xaeq\x8fZ\xff\xbcY+\xaf0<\xa3\xb8\"Zm\x1c\x18\x11\x93\xb5z \xc2\x8b\xa9\xc5\x9es\t\xfe\x002\xa0-\xaf\xcdP\x9f\xe5Iv\xce*\xa8\xa3\x14i\x05\x8f\x9b\x1eB\x9f\x9d#E\x19\xdc\xfe\xc7\xeb\xb5\xcd\xc8\xe2U\xce\x00\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3}) mq_timedsend(r2, 0x0, 0x0, 0x0, 0x0) mq_timedsend(r2, 0x0, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0x80000}, 0x18) openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x82) ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x5460, 0x0) mq_timedreceive(r2, &(0x7f0000000340)=""/200, 0xc8, 0x0, 0x0) 5.01134194s ago: executing program 0 (id=1379): prctl$PR_SET_NAME(0xf, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = fsopen(&(0x7f0000000080)='cgroup2\x00', 0x0) r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x10, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x76}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x8, 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4006, &(0x7f0000001600)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@quota}, {@resuid}, {@lazytime}, {@noblock_validity}, {@usrquota}]}, 0x1, 0x443, &(0x7f0000001040)="$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") shmget$private(0x0, 0x2000, 0xc0, &(0x7f0000ffc000/0x2000)=nil) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3000010, &(0x7f0000000000), 0x3e, 0x521, &(0x7f0000000e00)="$eJzs3c9vI1cdAPDvTOJNdjfFKSBUKlEqWpStYO2koW2EEJQLnCoB5R5C4kRR7DiKnbKJKpqKvwCEBBInTlyQ+AOQUA/8AahSJbggDggQCMEWDkhAB409hl3HTkKbtbPx5yO9+L359X1vLD/PjF9mAphYT0bEixExFRHPRES5mJ4WaTUvHHeXe/vuq+t5SiLLXv5LEkkxrbetvDwdETe7q8RsRHzlixFfT07GbR0e7azV67X9olxtN/aqrcOj29uNta3aVm13eXnp+ZUXVp5bWcwK76md873Mj77w2Z998hu/Xf3TrW/m1frMh6IUfe24SN2mlzr7oiffR/sPItgYTBXtKY27IgAAnEt+jP/+iPhY5/i/HFOdo7k+U+OoGQAAAHBRss/Nxb+SiAwAAAC4stKImIskrRRjAeYiTa8V1wY+GDfSerPV/sRm82B3I58XMR+ldHO7XlssxgrPRynJy0vFGNte+dm+8nJEPBoR3y1f75Qr6836xpivfQAAAMCkuNl3/v/3cpqm51pzwP8JAAAAAJfX/NACAAAAcFU45QcAAICrr//83/3+AQAA4Er50ksv5SnrPf9645XDg53mK7c3aq2dSuNgvbLe3N+rbDWbW5179jXO2l692dz7VOwe3Km2a612tXV4tNpoHuy2V7fvewQ2AAAAMEKPfvSNXyURcfzp650UxX0AAe7z+3FXALhIhvrB5HIXb5hcpXFXABi75Iz5Bu8AAMDDb+HDJ3//7z3/37UBuNqM9QGAyeP3f5hcJSMAYWJNF9cA3tctzgxbbujv/784b6Qsi3izfO8U1xcBAGC05jopSSvFecBcpGmlEvFIRDofpWRzu15bLM4PflkuzeTlpc6ayZljhgEAAAAAAAAAAAAAAAAAAAAAAACArixLIgMAAACutIj0j0nnbv4RC+Wn5/qvD1xL/lGOPxSFH7z8vTtr7fb+Uj79r51neV2LiPb3i+nPDn18GAAAAHDRkuOhs7rn6cXr0khrBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAEePvuq+u9NMq4f/58RMwPij8ds53X2ShFxI2/JTF9z3pJRExdQPzj1yPisUHxk3gny16LohaD4l9/wPHnO7tmcPw0Im5eQHyYZG/k/c+Lgz5/aTzZeR38+Zsu0ns1vP9Li8iPdfq5Qf3PIye21hgY4/G3flLt5kon478e8fj04P6n1/8mQ+I/dWJr/8yy7GT8r3316GhY+7MfRiwM/P5J7otVbTf2qq3Do9vbjbWt2lZtd3l56fmVF1aeW1msbm7Xa8XfgTG+85GfvjMsft7+GwPi/+bX3f73tPY/PWyjff791p27H+hmT7wBefxbTw38/p2NIfHT4rvv40U+n7/Qyx938/d64sdvPnFa+zeG7P+z3v9b52z/M1/+1u/OuSgAMAKtw6OdtXq9tn9KZvYcyzyMmZ/PXopq/J+Z7LXuO3dZ6vNuM/nR6rf/24peqy5BxdbqM71MNpKgM53j+fOudW1EO2Gs3RIAAPAA/O+gf9w1AQAAAAAAAAAAAAAAAAAAgMk1inuq9cc8Hk9TAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABO9Z8AAAD//xNp24c=") quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f00000006c0)={0x5, 0x2, 0x1, 0x4}) fspick(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0) write$binfmt_script(r4, &(0x7f0000000000), 0x208e24b) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r5}, &(0x7f0000000240), &(0x7f0000000300)=r6}, 0x20) write$cgroup_int(0xffffffffffffffff, &(0x7f0000000000)=0xfe8e, 0x12) 4.963148421s ago: executing program 4 (id=1380): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@orlov}, {@abort}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x10}}]}, 0x64, 0x50a, &(0x7f0000000940)="$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") r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) timer_create(0x9, 0x0, &(0x7f0000000700)=0x0) timer_settime(r1, 0x0, 0x0, 0x0) timer_settime(r1, 0x0, &(0x7f0000000080), &(0x7f00000000c0)) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$inet_sctp(0x2, 0x5, 0x84) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_MAXSEG(r3, 0x84, 0xd, &(0x7f0000000280)=@assoc_value={0x0, 0x9}, &(0x7f00000002c0)=0x8) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r4, {0x0, 0xa}, {}, {0xa}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x6e, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x0, 0x3, 0x1d}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0x3}]}]}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x22044028}, 0x800) 4.758645864s ago: executing program 2 (id=1381): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xa8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000600)='kfree\x00', r0}, 0x18) r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100)=0x2) close_range(r1, 0xffffffffffffffff, 0x0) 4.661453476s ago: executing program 3 (id=1382): r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0}, 0x18) r1 = mq_open(0x0, 0x40, 0x110, 0x0) mq_timedreceive(r1, 0x0, 0xfffffffffffffee3, 0x2000000, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000022c0)={0x11, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x23, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) unshare(0x68040200) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000000}, 0x94) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010) ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f00000001c0)={0x1, &(0x7f0000000180)=[{0x5, 0xa, 0xfa, 0x2}]}) openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0xa0902) 4.342757371s ago: executing program 2 (id=1383): unshare(0x6a040000) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB="0a000000040000000800"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x25c}}, 0x0) 3.436617615s ago: executing program 0 (id=1384): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, &(0x7f0000006680)) socket$nl_netfilter(0x10, 0x3, 0xc) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x200000000006, 0x0, 0x4, 0x7ffc1ffb}]}) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={0x0}, 0x18) execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1000) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) r0 = getpgrp(0x0) syz_pidfd_open(r0, 0x0) r1 = openat$random(0xffffffffffffff9c, &(0x7f00000002c0), 0x20f40, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000002e80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000005c0)='sys_enter\x00', r3}, 0x18) readahead(r4, 0x8000000000000000, 0x1c) r5 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x460, 0xf0, 0xffffffff, 0xffffffff, 0xf0, 0xffffffff, 0x390, 0xffffffff, 0xffffffff, 0x390, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {}, 0x2f, 0x0, 0x3}, 0x0, 0xa8, 0xf0}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@local, 'nicvf0\x00', {0x3f66}}}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3d}}, [0xffffffff], [], 'wg1\x00', 'gre0\x00', {}, {0xff}}, 0x0, 0x258, 0x2a0, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x80ff, 0x0, 0x5, 0x563e4515, 0x0, 0x7, 0x3fc, 0x20}}}, @common=@inet=@hashlimit3={{0x158}, {'veth0_vlan\x00', {0x3, 0x0, 0x48, 0x0, 0x15ab, 0x1000, 0x6, 0x5}}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz0\x00', 0x2, 0x5, {0x6}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x4c0) socket(0x5, 0x3, 0x0) ioctl$RNDADDENTROPY(r1, 0x40085203, &(0x7f000000fec0)=ANY=[@ANYBLOB]) pipe(&(0x7f00000001c0)) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) rename(&(0x7f0000000000)='./file1\x00', &(0x7f0000000080)='./file2\x00') 3.397102466s ago: executing program 3 (id=1385): r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff) r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYRES16=r0, @ANYBLOB="01000000000000000000020000000900010073797a3200000000140002"], 0x34}}, 0xc800) sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, r0, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0) 3.201310419s ago: executing program 3 (id=1386): timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r0 = mq_open(0x0, 0x40, 0x110, 0x0) mq_timedreceive(r0, 0x0, 0xfffffffffffffee3, 0x2000000, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) unshare(0x68040200) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r4}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) 2.346548053s ago: executing program 4 (id=1387): r0 = socket$kcm(0x11, 0x2, 0x300) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000c80)={0x6, 0x0, 0x0, 0x0, 0x13, 0x0, 0x0, 0x41100, 0x2c, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x4, 0x0, 0x1}, {0x10000002, 0x10}]}, 0x94) r1 = socket$kcm(0x11, 0x200000000000002, 0x300) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000c40)={0xffffffffffffffff, 0xffffffffffffffff}) close(r3) recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x400021a0) setsockopt$sock_attach_bpf(r1, 0x107, 0x12, &(0x7f0000000340)=r4, 0x4) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) close(r6) recvmsg$unix(r5, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) setsockopt$sock_attach_bpf(r0, 0x107, 0x12, &(0x7f00000008c0)=r7, 0x4) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r8, 0x18000000000002a0, 0xf7, 0x0, &(0x7f0000000100)="b9ff03006044238cb89e14f089021bffffff00004000632f77fbac14140be934a0a662079f4b4d2f87e50aca6aab845013f288a81a3901050b038da1880b25181aa59d943be3f4aed50ea5a6b8686731cb89ef77123c899b699eeaa8eaa0073461119663906400f30c0600000000000059b6d3296e8ca31bce1d8392078b72f24996ae17dffc2e43c8174b54b620636894aaacf28ff62616363c70a440aec4014caf28c0adc043084617d7ecf41e9d134589d46e5dfc4ca5780d38cae870b9a1df48b238190da450296b0ac01496ace23eefc9d4246dd14afbf79a2283a0bb7e1d235f3df126c3acc240d75a058f6efa6d1f5f7ff40000", 0x0, 0xfe, 0x60000000}, 0x50) 2.175394295s ago: executing program 3 (id=1388): madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) mmap(&(0x7f0000698000/0x1000)=nil, 0x1000, 0x2000002, 0x10, 0xffffffffffffffff, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r0}, 0x18) syz_emit_ethernet(0x66, &(0x7f0000000b80)=ANY=[], 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10) r5 = socket$inet6(0xa, 0x805, 0x0) getsockopt$bt_hci(r5, 0x84, 0x81, &(0x7f0000000080)=""/4051, &(0x7f00000011c0)=0xfd3) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000000}, 0x94) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10) ioctl$USBDEVFS_SUBMITURB(0xffffffffffffffff, 0x8038550a, 0x0) syz_clone(0xa1889800, 0x0, 0x0, 0x0, 0x0, 0x0) r8 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000b00)=ANY=[@ANYBLOB="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"], 0x38}, 0x1, 0x0, 0x0, 0x854}, 0x0) syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0) r9 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) 2.049214747s ago: executing program 0 (id=1389): bpf$ENABLE_STATS(0x20, 0x0, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000000)='rxrpc_local\x00', r1}, 0x10) r2 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r2, 0x0, 0x44090) close_range(r0, 0xffffffffffffffff, 0x0) 1.214458081s ago: executing program 4 (id=1390): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = mq_open(&(0x7f0000000dc0)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf\x00\x00\x00\x00\x00\x00\x00\x00\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=7\xfa\xd4\xf4\xde\xfar\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0r\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\x81W\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v=|?\x9e\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\x02-\f\x03T\xacm\x1ci\x1e^\xd0\xf5#G\xce\xaf\x88U\xfa\x80\xf2|\xb5.Z\x05_K \xe7\x92\xb7F4\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Ot9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xdc9\x89\xfd\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10?\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb\x00\x00\x00\x00\x00d\x9d\x85\x03\x80\x19\xe5\xe4\x18\\U/iH\xd5\x81E\x9eG\xb3\x8ay]{\xf6<\x86\xf3\x8b\xfe\xcd\xb9\xde\xcc\x9cC)zGv\xbb\x16\x03\xe1\xe0\xbf\x13\xbb\x98#\xae\x1f\x85\xed\xdb\x18\x8e:\x91C\x0f\x14_\xfd\xc1\x8d7?\x8f\xa8?\xe1q\x99\xca$\xce\xc6\xd0\xd5\xfe`t\xdeJ\xed\x00\xc1\xb8\x11\x91\xad\xbc\x92\xd7\xdd\x8a\x00\xe3i\ad\x91s\x99Z\xb3>$:\x82G\x9c[\xcbp\xb9\x192\x1b\xa1s\xeb)\x128G\x13\x92\xd0F\xc8\xef\xf0+\xa6', 0x40, 0x1e8, 0x0) mq_unlink(&(0x7f0000000000)='eth0\x00') close(r0) 1.139769262s ago: executing program 3 (id=1391): socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$IP_VS_SO_GET_VERSION(r0, 0x0, 0x480, 0x0, &(0x7f0000009980)) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94) syz_mount_image$iso9660(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x800000, &(0x7f0000000500)=ANY=[@ANYRES8=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES32, @ANYBLOB="b7ad7cd65c46a5be7840094fc88ed3944440d445ac89758d3aa4a6c77ea3e1e50196a99f88ba68f3377383de4de11c07aa5d22d9f4f3c58344d6011b6ea5ee82cf40e4ca5976370cb73c872e576f936791a0ffa5639ac237214be5926acea5405e00f1a144cf7a5240bc1e56ed617e19d6a5a268505f0012b4baf36d3a71eb34c8b67281dbba4b20c3d724ef150deff6f7d908bc72575a1f43b608e0d118", @ANYBLOB="a1fffd2e4c38a7b17fef1a78ad1943012e7b7711a1517cd8b4288a2fbb7d202d8c4a1809add074e6dde0703158125f2f114c49f5ee5f249d63ac0d851c212ccd8d82b7c694ead23c417021e8bc78d646d07e3513568bb81d2179a012dcdcb845b0a58b6d5e46a177de56e3e77ed573967e4eea299078019693ca486edbaa44e947802c7f46f1de18cf7f0e1af02964d04cc84d979855e8d3a3fda262f6a7d2b4b4849fd880c9b9af9be818ba05386754a3505e833ca0b9770f63e91f3a9a04e9fca51d88273d5491ed", @ANYRES8=0x0], 0x3, 0x7ec, &(0x7f0000001580)="$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") sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xb) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_GET(r1, 0x0, 0x40) r2 = mq_open(&(0x7f0000000000)='!selinu\xff\x7f\x00\x00inux\x00T\x8b\xb5\xf3\xcb\xdd\xe3\xbf2\x86\x01\x84\xdd\x8a\x8f_l\xa1L\xb1\xef\xb2\xc9\xf7+C\xb2\x8e9\xb8\xec\x1a\xe5\xaeq\x8fZ\xff\xbcY+\xaf0<\xa3\xb8\"Zm\x1c\x18\x11\x93\xb5z \xc2\x8b\xa9\xc5\x9es\t\xfe\x002\xa0-\xaf\xcdP\x9f\xe5Iv\xce*\xa8\xa3\x14i\x05\x8f\x9b\x1eB\x9f\x9d#E\x19\xdc\xfe\xc7\xeb\xb5\xcd\xc8\xe2U\xce\x00\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3}) mq_timedsend(r2, 0x0, 0x0, 0x0, 0x0) mq_timedsend(r2, 0x0, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0x80000}, 0x18) openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x82) ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x5460, 0x0) mq_timedreceive(r2, &(0x7f0000000340)=""/200, 0xc8, 0x0, 0x0) 1.115358212s ago: executing program 4 (id=1392): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, 0x0, 0x0) sendmmsg$inet(r0, &(0x7f0000004a80)=[{{0x0, 0x0, &(0x7f0000001980)=[{&(0x7f00000006c0)="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", 0x407}], 0x1}}], 0x1, 0xc0) 1.085337523s ago: executing program 1 (id=1393): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xa8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000600)='kfree\x00', r0}, 0x18) r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000100)=0x2) close_range(r1, 0xffffffffffffffff, 0x0) 1.078896993s ago: executing program 0 (id=1394): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000380)='kfree\x00'}, 0x18) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e000000080000000000180003801400038010"], 0x44}}, 0x0) r4 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_int(r4, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4) connect$inet(r4, &(0x7f0000000480)={0x2, 0x4e24, @loopback}, 0x10) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000980)='mm_page_free\x00', r6, 0x0, 0x8}, 0x18) setrlimit(0x9, &(0x7f0000000000)) io_setup(0x2004, &(0x7f0000000680)) close(r4) request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000100)={'syz', 0x3}, &(0x7f0000000140)='GPL\x00', 0xfffffffffffffffd) r7 = add_key$keyring(&(0x7f0000000140), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xc40a, &(0x7f00000002c0)={[{@noblock_validity}, {@dioread_lock}, {@nobarrier}, {@nojournal_checksum}, {@acl}, {@usrjquota, 0x2e}, {@grpquota}, {@nodiscard}, {@jqfmt_vfsv0}, {@noload}], [], 0x2c}, 0x0, 0x459, &(0x7f0000000900)="$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") chdir(&(0x7f0000000140)='./file0\x00') r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000070000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, &(0x7f00000003c0)={0x17c04, 0xffffffffffffffff, 0x200000ba, 0x41000ff7ff, 0xdc, 0x6d3}) keyctl$restrict_keyring(0x1d, r7, 0x0, 0x0) r9 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r9, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) add_key$fscrypt_provisioning(&(0x7f0000000400), &(0x7f0000000580)={'syz', 0x3}, &(0x7f00000005c0)={0x1, 0x0, @auto=[0x22, 0x28, 0x2f, 0x16, 0x39, 0x20, 0x26, 0x12]}, 0x10, 0x0) 1.006151154s ago: executing program 2 (id=1395): r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0}, 0x18) r1 = mq_open(0x0, 0x40, 0x110, 0x0) mq_timedreceive(r1, 0x0, 0xfffffffffffffee3, 0x2000000, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000022c0)={0x11, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x23, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) unshare(0x68040200) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x25, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000000}, 0x94) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x5c}, 0x1, 0x0, 0x0, 0x4}, 0xc010) ioctl$PPPIOCSACTIVE(r0, 0x40107446, &(0x7f00000001c0)={0x1, &(0x7f0000000180)=[{0x5, 0xa, 0xfa, 0x2}]}) openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0xa0902) 850.556816ms ago: executing program 4 (id=1396): prctl$PR_SET_NAME(0xf, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = fsopen(&(0x7f0000000080)='cgroup2\x00', 0x0) r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x10, &(0x7f0000000000)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}, @printk={@llx, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x76}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x8, 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x4006, &(0x7f0000001600)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@quota}, {@resuid}, {@lazytime}, {@noblock_validity}, {@usrquota}]}, 0x1, 0x443, &(0x7f0000001040)="$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") shmget$private(0x0, 0x2000, 0xc0, &(0x7f0000ffc000/0x2000)=nil) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3000010, &(0x7f0000000000), 0x3e, 0x521, &(0x7f0000000e00)="$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") quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f00000006c0)={0x5, 0x2, 0x1, 0x4}) fspick(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) r3 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000080000000c"], 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000040)='kmem_cache_free\x00', r6}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r5}, &(0x7f0000000240), &(0x7f0000000300)=r6}, 0x20) write$cgroup_int(r4, &(0x7f0000000000)=0xfe8e, 0x12) 804.286267ms ago: executing program 3 (id=1397): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@orlov}, {@abort}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x10}}]}, 0x64, 0x50a, &(0x7f0000000940)="$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") r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) timer_create(0x9, 0x0, &(0x7f0000000700)=0x0) timer_settime(r1, 0x0, 0x0, 0x0) timer_settime(r1, 0x0, &(0x7f0000000080), &(0x7f00000000c0)) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$inet_sctp(0x2, 0x5, 0x84) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0) getsockopt$inet_sctp_SCTP_MAXSEG(r3, 0x84, 0xd, &(0x7f0000000280)=@assoc_value={0x0, 0x9}, &(0x7f00000002c0)=0x8) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x4c, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r4, {0x0, 0xa}, {}, {0xa}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x6e, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x0, 0x3, 0x1d}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0x3}]}]}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x22044028}, 0x800) 424.671µs ago: executing program 0 (id=1398): r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff) r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB='4\x00', @ANYRES16=r0, @ANYBLOB="01000000000000000000020000000900010073797a3200000000140002"], 0x34}}, 0xc800) sendmsg$SMC_PNETID_DEL(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x14, r0, 0xe27, 0x0, 0x0, {0x4, 0x7, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0) 0s ago: executing program 1 (id=1399): timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r0 = mq_open(0x0, 0x40, 0x110, 0x0) mq_timedreceive(r0, 0x0, 0xfffffffffffffee3, 0x2000000, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) unshare(0x68040200) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) add_key(0x0, 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) kernel console output (not intermixed with test programs): : auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5864 comm="syz.0.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 145.460673][ T27] audit: type=1326 audit(1753276369.168:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5864 comm="syz.0.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 145.480977][ T5882] loop2: detected capacity change from 0 to 512 [ 145.538518][ T5882] EXT4-fs: Ignoring removed orlov option [ 145.553027][ T5884] netlink: 4 bytes leftover after parsing attributes in process `syz.4.417'. [ 145.579931][ T5882] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 145.629713][ T5882] EXT4-fs (loop2): orphan cleanup on readonly fs [ 145.646401][ T5882] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.418: bg 0: block 248: padding at end of block bitmap is not set [ 145.683270][ T5882] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.418: Failed to acquire dquot type 1 [ 145.699428][ T5882] EXT4-fs (loop2): 1 truncate cleaned up [ 145.713009][ T5882] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 146.473554][ T5914] xt_hashlimit: size too large, truncated to 1048576 [ 146.480325][ T5914] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 146.672307][ T5918] loop1: detected capacity change from 0 to 764 [ 146.688389][ T5918] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 147.808291][ T5898] lo speed is unknown, defaulting to 1000 [ 147.830979][ T5922] netlink: 4 bytes leftover after parsing attributes in process `syz.1.432'. [ 147.968977][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 147.969025][ T5929] Driver unsupported XDP return value 0 on prog (id 191) dev N/A, expect packet loss! [ 148.075398][ T5931] syz.2.436[5931] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 148.075494][ T5931] syz.2.436[5931] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 148.365701][ T5944] loop0: detected capacity change from 0 to 764 [ 148.392169][ T5944] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 148.401831][ T5946] tipc: Started in network mode [ 148.407247][ T5946] tipc: Node identity ac141423, cluster identity 4711 [ 148.415527][ T5946] tipc: New replicast peer: 255.255.255.255 [ 148.423531][ T5946] tipc: Enabled bearer , priority 10 [ 148.504310][ T5948] netlink: 52 bytes leftover after parsing attributes in process `syz.1.438'. [ 149.353680][ T5961] loop1: detected capacity change from 0 to 512 [ 149.386831][ T5961] EXT4-fs: Ignoring removed orlov option [ 149.438496][ T5961] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 149.486252][ T5961] EXT4-fs (loop1): orphan cleanup on readonly fs [ 149.510969][ T5961] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.447: bg 0: block 248: padding at end of block bitmap is not set [ 149.536066][ T5961] __quota_error: 100 callbacks suppressed [ 149.536085][ T5961] Quota error (device loop1): write_blk: dquota write failed [ 149.550480][ T4276] tipc: Node number set to 2886997027 [ 149.562844][ T5961] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 149.575484][ T5961] EXT4-fs error (device loop1): ext4_acquire_dquot:6814: comm syz.1.447: Failed to acquire dquot type 1 [ 149.588801][ T5961] EXT4-fs (loop1): 1 truncate cleaned up [ 149.595551][ T5961] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 149.649390][ T5951] bridge0: port 2(bridge_slave_1) entered disabled state [ 149.656770][ T5951] bridge0: port 1(bridge_slave_0) entered disabled state [ 150.231951][ T5951] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.241196][ T5951] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.250131][ T5951] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.259038][ T5951] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.352676][ T5964] netlink: 4 bytes leftover after parsing attributes in process `syz.3.444'. [ 150.501216][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 150.515308][ T5976] loop0: detected capacity change from 0 to 256 [ 150.549584][ T5976] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 150.782110][ T5981] syz.1.451[5981] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 150.782197][ T5981] syz.1.451[5981] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 151.139198][ T5988] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 151.595482][ T5994] loop1: detected capacity change from 0 to 764 [ 151.653031][ T5994] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 151.704455][ T5998] netlink: 8 bytes leftover after parsing attributes in process `syz.0.458'. [ 151.707644][ T27] audit: type=1326 audit(1753276375.838:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5980 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 151.717186][ T5991] loop4: detected capacity change from 0 to 8192 [ 151.741604][ T5982] lo speed is unknown, defaulting to 1000 [ 151.790937][ T27] audit: type=1326 audit(1753276375.888:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5980 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 151.870461][ T27] audit: type=1326 audit(1753276375.888:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5980 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 151.965257][ T27] audit: type=1326 audit(1753276375.888:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5980 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 152.044494][ T27] audit: type=1326 audit(1753276375.888:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5980 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 152.113706][ T6013] netlink: 4 bytes leftover after parsing attributes in process `syz.0.461'. [ 152.231592][ T6015] lo speed is unknown, defaulting to 1000 [ 152.574056][ T6024] syz.2.466[6024] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 152.574163][ T6024] syz.2.466[6024] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 152.632872][ T6028] loop0: detected capacity change from 0 to 256 [ 152.684249][ T6028] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 153.338622][ T6033] loop3: detected capacity change from 0 to 764 [ 153.539502][ T6033] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 153.820630][ T6039] netlink: 'syz.2.471': attribute type 1 has an invalid length. [ 153.840223][ T6039] netlink: 48 bytes leftover after parsing attributes in process `syz.2.471'. [ 154.265245][ T27] audit: type=1326 audit(1753276378.398:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 154.292316][ T6056] xt_hashlimit: size too large, truncated to 1048576 [ 154.313756][ T6061] netlink: 4 bytes leftover after parsing attributes in process `syz.1.478'. [ 154.322679][ T6056] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 154.332302][ T27] audit: type=1326 audit(1753276378.398:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 154.406433][ T27] audit: type=1326 audit(1753276378.398:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 154.542647][ T27] audit: type=1326 audit(1753276378.398:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 154.587397][ T6071] sd 0:0:1:0: device reset [ 154.645958][ T27] audit: type=1326 audit(1753276378.398:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 154.716849][ T27] audit: type=1326 audit(1753276378.398:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 154.819678][ T6074] loop0: detected capacity change from 0 to 764 [ 154.820420][ T27] audit: type=1326 audit(1753276378.398:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 154.878921][ T27] audit: type=1326 audit(1753276378.398:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 154.944786][ T6074] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 154.952999][ T27] audit: type=1326 audit(1753276378.398:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 155.042654][ T27] audit: type=1326 audit(1753276378.398:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 155.154875][ T27] audit: type=1326 audit(1753276378.398:752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 155.227262][ T27] audit: type=1326 audit(1753276378.398:753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 155.290606][ T27] audit: type=1326 audit(1753276378.398:754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.4.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 155.394127][ T6097] sd 0:0:1:0: device reset [ 155.481086][ T6104] netlink: 4 bytes leftover after parsing attributes in process `syz.3.495'. [ 155.624567][ T6107] xt_hashlimit: size too large, truncated to 1048576 [ 155.647036][ T6107] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 155.988448][ T6121] loop2: detected capacity change from 0 to 764 [ 156.045023][ T6121] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 156.300502][ T6133] syz.2.504[6133] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.300966][ T6133] syz.2.504[6133] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.333644][ T6131] lo speed is unknown, defaulting to 1000 [ 156.428424][ T6139] sd 0:0:1:0: device reset [ 156.897141][ T6155] xt_hashlimit: size too large, truncated to 1048576 [ 157.414910][ T6159] lo speed is unknown, defaulting to 1000 [ 157.836710][ T6152] lo speed is unknown, defaulting to 1000 [ 157.842650][ T6152] lo speed is unknown, defaulting to 1000 [ 157.849084][ T6152] lo speed is unknown, defaulting to 1000 [ 157.867230][ T6152] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 157.920936][ T6158] lo speed is unknown, defaulting to 1000 [ 157.928377][ T6158] lo speed is unknown, defaulting to 1000 [ 158.053222][ T6152] lo speed is unknown, defaulting to 1000 [ 158.059925][ T6152] lo speed is unknown, defaulting to 1000 [ 158.066629][ T6152] lo speed is unknown, defaulting to 1000 [ 158.073393][ T6152] lo speed is unknown, defaulting to 1000 [ 158.080049][ T6152] lo speed is unknown, defaulting to 1000 [ 158.086738][ T6152] lo speed is unknown, defaulting to 1000 [ 158.094379][ T6152] lo speed is unknown, defaulting to 1000 [ 158.137611][ T6155] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 158.405829][ T6167] loop3: detected capacity change from 0 to 256 [ 158.424462][ T6167] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 158.643991][ T6174] loop2: detected capacity change from 0 to 256 [ 158.897411][ T6174] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 159.283677][ T6172] loop4: detected capacity change from 0 to 512 [ 159.359319][ T6174] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 159.441045][ T6172] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 159.462911][ T6174] FAT-fs (loop2): Filesystem has been set read-only [ 159.509285][ T6172] ext4 filesystem being mounted at /98/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 159.583310][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 159.869792][ T6188] lo speed is unknown, defaulting to 1000 [ 159.946089][ T6188] lo speed is unknown, defaulting to 1000 [ 160.167168][ T6206] lo speed is unknown, defaulting to 1000 [ 160.173900][ T6206] lo speed is unknown, defaulting to 1000 [ 161.653098][ T6213] syz.3.527[6213] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 161.653199][ T6213] syz.3.527[6213] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 161.854513][ T6219] loop4: detected capacity change from 0 to 256 [ 161.939717][ T6219] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 163.090866][ T6251] netlink: 24 bytes leftover after parsing attributes in process `syz.4.538'. [ 163.428956][ T27] kauditd_printk_skb: 98 callbacks suppressed [ 163.428971][ T27] audit: type=1326 audit(1753276387.558:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6262 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 163.467103][ T27] audit: type=1326 audit(1753276387.598:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6262 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 163.609359][ T6263] xt_hashlimit: size too large, truncated to 1048576 [ 163.749214][ T27] audit: type=1326 audit(1753276387.598:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6262 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 163.798144][ T6263] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 164.112688][ T27] audit: type=1326 audit(1753276387.598:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6262 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 164.180491][ T27] audit: type=1326 audit(1753276387.598:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6262 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 164.275937][ T6272] loop0: detected capacity change from 0 to 256 [ 164.279981][ T27] audit: type=1326 audit(1753276387.598:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6262 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 164.315545][ T6272] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 164.392595][ T27] audit: type=1326 audit(1753276387.598:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6262 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 164.583073][ T27] audit: type=1326 audit(1753276387.598:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6262 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 164.616137][ T27] audit: type=1326 audit(1753276387.598:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6262 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 165.069077][ T27] audit: type=1326 audit(1753276387.598:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6262 comm="syz.1.543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 165.273090][ T6259] bridge0: port 2(bridge_slave_1) entered disabled state [ 165.281736][ T6259] bridge0: port 1(bridge_slave_0) entered disabled state [ 167.036038][ T6259] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 167.045164][ T6259] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 167.054088][ T6259] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 167.063037][ T6259] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 167.232410][ T6314] netlink: 4 bytes leftover after parsing attributes in process `syz.1.561'. [ 167.363103][ T6318] device syzkaller1 entered promiscuous mode [ 167.424004][ T6317] lo speed is unknown, defaulting to 1000 [ 167.430612][ T6317] lo speed is unknown, defaulting to 1000 [ 167.747237][ T6334] loop1: detected capacity change from 0 to 512 [ 167.784274][ T6334] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 167.826548][ T6334] EXT4-fs (loop1): orphan cleanup on readonly fs [ 167.848708][ T6334] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.569: bad orphan inode 15 [ 167.904345][ T6334] ext4_test_bit(bit=14, block=18) = 1 [ 167.939211][ T6334] is_bad_inode(inode)=0 [ 167.954567][ T6334] NEXT_ORPHAN(inode)=1023 [ 167.968692][ T6334] max_ino=32 [ 167.993955][ T6334] i_nlink=0 [ 168.016042][ T6334] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2934: inode #15: comm syz.1.569: corrupted xattr block 19 [ 168.071269][ T6334] EXT4-fs warning (device loop1): ext4_evict_inode:299: xattr delete (err -117) [ 168.092696][ T6334] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 168.984084][ T6371] loop2: detected capacity change from 0 to 512 [ 169.251590][ T6371] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 169.291189][ T6371] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 169.308812][ T6371] EXT4-fs (loop2): 1 truncate cleaned up [ 169.314622][ T6371] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 169.486220][ T27] kauditd_printk_skb: 33 callbacks suppressed [ 169.486235][ T27] audit: type=1326 audit(1753276393.618:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6377 comm="syz.4.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 169.543885][ T27] audit: type=1326 audit(1753276393.658:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6377 comm="syz.4.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 169.569343][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 169.569503][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 169.693426][ T27] audit: type=1326 audit(1753276393.658:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6377 comm="syz.4.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 169.772490][ T27] audit: type=1326 audit(1753276393.658:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6377 comm="syz.4.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 169.839447][ T27] audit: type=1326 audit(1753276393.658:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6377 comm="syz.4.587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 170.098101][ T6397] usb usb1: usbfs: process 6397 (syz.4.593) did not claim interface 0 before use [ 170.397779][ T6405] loop1: detected capacity change from 0 to 1024 [ 170.415311][ T6408] syz.2.600[6408] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 170.415412][ T6408] syz.2.600[6408] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 170.493093][ T6405] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 170.532480][ T6405] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 170.766221][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 170.823726][ T27] audit: type=1326 audit(1753276394.958:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6422 comm="syz.2.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 170.863310][ T6424] xt_hashlimit: size too large, truncated to 1048576 [ 170.881024][ T6424] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 170.898031][ T27] audit: type=1326 audit(1753276394.988:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6422 comm="syz.2.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 170.962488][ T27] audit: type=1326 audit(1753276394.988:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6422 comm="syz.2.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 170.988795][ T6432] netlink: 64 bytes leftover after parsing attributes in process `syz.4.610'. [ 171.030476][ T27] audit: type=1326 audit(1753276394.988:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6422 comm="syz.2.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 171.055361][ T6436] loop3: detected capacity change from 0 to 512 [ 171.066923][ T6436] EXT4-fs: Ignoring removed orlov option [ 171.080733][ T6436] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 171.095167][ T27] audit: type=1326 audit(1753276394.988:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6422 comm="syz.2.606" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 171.145723][ T6436] EXT4-fs (loop3): orphan cleanup on readonly fs [ 171.162034][ T6436] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.611: bg 0: block 248: padding at end of block bitmap is not set [ 171.213962][ T6436] EXT4-fs error (device loop3): ext4_acquire_dquot:6814: comm syz.3.611: Failed to acquire dquot type 1 [ 171.226504][ T6440] loop4: detected capacity change from 0 to 764 [ 171.251025][ T6440] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 171.284863][ T6436] EXT4-fs (loop3): 1 truncate cleaned up [ 171.307286][ T6436] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 171.471151][ T6426] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.478657][ T6426] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.747991][ T6453] loop4: detected capacity change from 0 to 256 [ 171.767680][ T6453] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 172.933826][ T6426] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.943519][ T6426] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.952421][ T6426] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.961291][ T6426] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 173.067272][ T6442] lo speed is unknown, defaulting to 1000 [ 173.149219][ T6442] lo speed is unknown, defaulting to 1000 [ 173.290792][ T4270] EXT4-fs (loop3): unmounting filesystem. [ 173.423701][ T6463] sd 0:0:1:0: device reset [ 173.556909][ T6469] loop0: detected capacity change from 0 to 512 [ 173.603152][ T6469] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 173.648152][ T6476] netlink: 4 bytes leftover after parsing attributes in process `syz.4.622'. [ 173.690047][ T6477] loop1: detected capacity change from 0 to 764 [ 173.739724][ T6477] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 173.759144][ T6469] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 173.832035][ T6469] ext4 filesystem being mounted at /126/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 174.125986][ T6492] loop4: detected capacity change from 0 to 256 [ 174.276391][ T6494] siw: device registration error -23 [ 174.365519][ T6494] lo speed is unknown, defaulting to 1000 [ 174.376562][ T6494] lo speed is unknown, defaulting to 1000 [ 174.846248][ T6492] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 175.120697][ T6505] loop3: detected capacity change from 0 to 512 [ 175.127873][ T6505] EXT4-fs: Ignoring removed orlov option [ 175.722581][ T6505] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 175.825871][ T6505] EXT4-fs (loop3): orphan cleanup on readonly fs [ 175.834363][ T6505] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.632: bg 0: block 248: padding at end of block bitmap is not set [ 175.911405][ T6509] sd 0:0:1:0: device reset [ 175.922854][ T6505] __quota_error: 74 callbacks suppressed [ 175.922870][ T6505] Quota error (device loop3): write_blk: dquota write failed [ 175.955372][ T6505] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 175.965740][ T6505] EXT4-fs error (device loop3): ext4_acquire_dquot:6814: comm syz.3.632: Failed to acquire dquot type 1 [ 175.988430][ T6505] EXT4-fs (loop3): 1 truncate cleaned up [ 175.997903][ T6505] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 176.262184][ T4270] EXT4-fs (loop3): unmounting filesystem. [ 176.450845][ T6526] loop3: detected capacity change from 0 to 764 [ 176.504917][ T6526] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 176.529720][ T6528] loop4: detected capacity change from 0 to 2048 [ 176.612433][ T6528] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 176.694822][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 176.933822][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 177.178803][ T6540] lo speed is unknown, defaulting to 1000 [ 177.189168][ T6540] lo speed is unknown, defaulting to 1000 [ 177.808366][ T6548] loop4: detected capacity change from 0 to 256 [ 177.844609][ T6548] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 178.909960][ T6554] sd 0:0:1:0: device reset [ 178.920409][ T6556] loop4: detected capacity change from 0 to 512 [ 178.953079][ T6556] EXT4-fs: Ignoring removed orlov option [ 178.975932][ T6556] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 179.016664][ T6556] EXT4-fs (loop4): orphan cleanup on readonly fs [ 179.039875][ T6556] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.648: bg 0: block 248: padding at end of block bitmap is not set [ 179.086504][ T6556] Quota error (device loop4): write_blk: dquota write failed [ 179.094127][ T6556] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 179.104271][ T6556] EXT4-fs error (device loop4): ext4_acquire_dquot:6814: comm syz.4.648: Failed to acquire dquot type 1 [ 179.144597][ T6556] EXT4-fs (loop4): 1 truncate cleaned up [ 179.192985][ T6556] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 179.432736][ T6574] loop3: detected capacity change from 0 to 764 [ 179.463432][ T6574] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 179.575699][ T6576] loop1: detected capacity change from 0 to 512 [ 179.621155][ T6576] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 179.709907][ T6576] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 179.726600][ T6579] lo speed is unknown, defaulting to 1000 [ 179.737006][ T6576] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 179.756573][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 179.763924][ T6579] lo speed is unknown, defaulting to 1000 [ 179.985663][ T6588] loop0: detected capacity change from 0 to 512 [ 180.005343][ T6590] loop4: detected capacity change from 0 to 512 [ 180.036856][ T6588] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 180.050925][ T6590] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 180.090555][ T6588] ext4 filesystem being mounted at /131/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 180.245887][ T6596] siw: device registration error -23 [ 180.332634][ T6596] lo speed is unknown, defaulting to 1000 [ 180.343033][ T6596] lo speed is unknown, defaulting to 1000 [ 180.708968][ T6590] EXT4-fs (loop4): 1 truncate cleaned up [ 180.729461][ T6590] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 180.827370][ T6600] loop3: detected capacity change from 0 to 256 [ 180.863943][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 180.925205][ T6600] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 181.016790][ T6604] sd 0:0:1:0: device reset [ 181.117216][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 181.990360][ T6616] loop3: detected capacity change from 0 to 764 [ 182.086777][ T6616] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 182.147082][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 182.283946][ T6626] lo speed is unknown, defaulting to 1000 [ 182.313393][ T6626] lo speed is unknown, defaulting to 1000 [ 182.323974][ T6631] syz.1.669[6631] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 182.324079][ T6631] syz.1.669[6631] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 183.237970][ T6639] loop4: detected capacity change from 0 to 512 [ 183.322821][ T6639] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 183.346411][ T6635] lo speed is unknown, defaulting to 1000 [ 183.353108][ T6635] lo speed is unknown, defaulting to 1000 [ 183.371276][ T6642] loop1: detected capacity change from 0 to 256 [ 183.380061][ T6642] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 183.629527][ T6639] EXT4-fs (loop4): 1 truncate cleaned up [ 183.646018][ T6639] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 184.591554][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 184.810965][ T6672] netlink: 8 bytes leftover after parsing attributes in process `syz.1.685'. [ 184.816496][ T6673] loop3: detected capacity change from 0 to 512 [ 184.893376][ T6673] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 185.004041][ T6673] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 185.039751][ T6673] ext4 filesystem being mounted at /132/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 185.420823][ T6695] lo speed is unknown, defaulting to 1000 [ 185.427853][ T6695] lo speed is unknown, defaulting to 1000 [ 185.577725][ T6698] loop4: detected capacity change from 0 to 512 [ 185.604399][ T6698] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 185.663323][ T6698] EXT4-fs (loop4): 1 truncate cleaned up [ 185.672973][ T6698] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 185.871565][ T4270] EXT4-fs (loop3): unmounting filesystem. [ 186.022516][ T4282] Bluetooth: hci1: command 0x0406 tx timeout [ 186.028640][ T4282] Bluetooth: hci2: command 0x0406 tx timeout [ 186.035477][ T4285] Bluetooth: hci4: command 0x0406 tx timeout [ 186.041521][ T4285] Bluetooth: hci3: command 0x0406 tx timeout [ 186.464866][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 186.935176][ T6732] loop0: detected capacity change from 0 to 512 [ 187.018417][ T6732] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 187.127788][ T6732] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 187.175605][ T6732] ext4 filesystem being mounted at /138/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 187.909150][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 187.999548][ T6747] loop0: detected capacity change from 0 to 512 [ 188.093668][ T6747] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 188.102932][ T6747] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 188.230250][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 188.499254][ T6756] loop3: detected capacity change from 0 to 1024 [ 188.556397][ T6756] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 188.982497][ T27] audit: type=1800 audit(1753276413.108:978): pid=6756 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.716" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 189.017948][ T6756] EXT4-fs error (device loop3): mb_free_blocks:1815: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt. [ 189.125802][ T4270] EXT4-fs (loop3): unmounting filesystem. [ 189.443788][ T27] audit: type=1326 audit(1753276413.578:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.0.719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 189.467409][ T27] audit: type=1326 audit(1753276413.578:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.0.719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 189.489663][ T6770] xt_hashlimit: size too large, truncated to 1048576 [ 189.489681][ T6770] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 189.511558][ T27] audit: type=1326 audit(1753276413.598:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.0.719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 189.541349][ T27] audit: type=1326 audit(1753276413.598:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.0.719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 189.571471][ T27] audit: type=1326 audit(1753276413.598:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.0.719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 189.594055][ T27] audit: type=1326 audit(1753276413.618:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.0.719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 189.617809][ T27] audit: type=1326 audit(1753276413.618:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.0.719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 189.640860][ T27] audit: type=1326 audit(1753276413.618:986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.0.719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 189.663571][ T27] audit: type=1326 audit(1753276413.618:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6769 comm="syz.0.719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 190.202841][ T6725] netlink: 4 bytes leftover after parsing attributes in process `syz.1.705'. [ 190.227149][ T6744] lo speed is unknown, defaulting to 1000 [ 190.235901][ T6744] lo speed is unknown, defaulting to 1000 [ 190.662890][ T6798] xt_hashlimit: size too large, truncated to 1048576 [ 190.669999][ T6798] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 190.821758][ T6809] netlink: 4 bytes leftover after parsing attributes in process `syz.1.732'. [ 191.245465][ T6828] loop0: detected capacity change from 0 to 128 [ 191.550527][ T6840] loop1: detected capacity change from 0 to 164 [ 191.583209][ T6840] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 191.595246][ T6839] xt_hashlimit: size too large, truncated to 1048576 [ 191.619988][ T6839] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 191.651685][ T6846] netlink: 4 bytes leftover after parsing attributes in process `syz.0.747'. [ 192.356837][ T6876] netlink: 'syz.2.758': attribute type 1 has an invalid length. [ 192.371937][ T6876] netlink: 'syz.2.758': attribute type 2 has an invalid length. [ 192.475577][ T6879] loop3: detected capacity change from 0 to 1024 [ 192.559677][ T6879] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 192.576436][ T6879] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3841: comm syz.3.760: Allocating blocks 465-513 which overlap fs metadata [ 192.611464][ T6890] netlink: 4 bytes leftover after parsing attributes in process `syz.4.763'. [ 192.621174][ T6879] EXT4-fs (loop3): pa ffff888026e2c540: logic 256, phys. 369, len 9 [ 192.629353][ T6879] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 3 [ 192.738036][ T6879] EXT4-fs error (device loop3): mb_free_blocks:1815: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt. [ 192.929388][ T4270] EXT4-fs (loop3): unmounting filesystem. [ 193.310514][ T6912] loop3: detected capacity change from 0 to 764 [ 193.484432][ T6912] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 193.650629][ T6920] loop2: detected capacity change from 0 to 512 [ 193.741220][ T6920] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 193.836832][ T6928] netlink: 28 bytes leftover after parsing attributes in process `syz.4.774'. [ 193.866040][ T6920] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 193.908693][ T6928] loop4: detected capacity change from 0 to 512 [ 193.921748][ T6920] ext4 filesystem being mounted at /161/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 193.992093][ T6928] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 194.020521][ T6928] ext4 filesystem being mounted at /148/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 194.184911][ T1273] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.191268][ T1273] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.205027][ T27] kauditd_printk_skb: 117 callbacks suppressed [ 194.205042][ T27] audit: type=1326 audit(1753276418.338:1105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6944 comm="syz.3.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 194.257271][ T27] audit: type=1326 audit(1753276418.368:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6944 comm="syz.3.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 194.310574][ T27] audit: type=1326 audit(1753276418.368:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6944 comm="syz.3.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 194.422661][ T27] audit: type=1326 audit(1753276418.368:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6944 comm="syz.3.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 194.502524][ T27] audit: type=1326 audit(1753276418.368:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6944 comm="syz.3.777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 194.534732][ T6958] netlink: 4 bytes leftover after parsing attributes in process `syz.1.782'. [ 194.582512][ T6932] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 194.713450][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 194.951740][ T6976] netlink: 256 bytes leftover after parsing attributes in process `syz.3.787'. [ 195.124354][ T27] audit: type=1326 audit(1753276419.258:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.3.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 195.135058][ T6984] loop1: detected capacity change from 0 to 512 [ 195.165085][ T6983] xt_hashlimit: size too large, truncated to 1048576 [ 195.171902][ T6983] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 195.184875][ T27] audit: type=1326 audit(1753276419.258:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.3.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 195.211013][ T6984] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 195.267016][ T6984] EXT4-fs (loop1): 1 truncate cleaned up [ 195.282377][ T6984] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 195.328993][ T27] audit: type=1326 audit(1753276419.288:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.3.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 195.433894][ T27] audit: type=1326 audit(1753276419.288:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.3.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 195.513915][ T27] audit: type=1326 audit(1753276419.288:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.3.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 195.773982][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 195.927125][ T7013] netlink: 64 bytes leftover after parsing attributes in process `syz.2.797'. [ 196.024768][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 196.033625][ T7015] lo speed is unknown, defaulting to 1000 [ 196.040274][ T7015] lo speed is unknown, defaulting to 1000 [ 196.076532][ T7020] netlink: 4 bytes leftover after parsing attributes in process `syz.0.799'. [ 196.367285][ T7030] xt_hashlimit: size too large, truncated to 1048576 [ 196.403271][ T7030] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 196.538816][ T7038] siw: device registration error -23 [ 197.617783][ T7063] netlink: 'syz.2.814': attribute type 1 has an invalid length. [ 197.639970][ T7063] netlink: 48 bytes leftover after parsing attributes in process `syz.2.814'. [ 197.761549][ T7068] capability: warning: `syz.1.815' uses deprecated v2 capabilities in a way that may be insecure [ 197.777027][ T7067] loop3: detected capacity change from 0 to 128 [ 197.869200][ T7067] IPVS: Error connecting to the multicast addr [ 198.241463][ T7076] siw: device registration error -23 [ 199.276152][ T7103] netlink: 'syz.3.828': attribute type 1 has an invalid length. [ 199.285353][ T7103] netlink: 48 bytes leftover after parsing attributes in process `syz.3.828'. [ 199.313734][ T7105] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 199.313734][ T7105] program syz.2.829 not setting count and/or reply_len properly [ 199.314141][ T4404] dvb-usb: did not find the firmware file 'dvb-usb-s630.fw' (status -110). You can use /scripts/get_dvb_firmware to get the firmware [ 199.460355][ T7107] loop0: detected capacity change from 0 to 512 [ 199.483734][ T7107] ext4: Unknown parameter 'smackfshat' [ 199.556194][ T4404] dvb-usb: found a 'TeVii S630 USB' in cold state, will try to load a firmware [ 199.572418][ T4404] usb 5-1: Direct firmware load for dvb-usb-s630.fw failed with error -2 [ 199.580896][ T4404] usb 5-1: Falling back to sysfs fallback for: dvb-usb-s630.fw [ 199.739562][ T7119] siw: device registration error -23 [ 199.922430][ T4531] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 200.321804][ T7122] netlink: 8 bytes leftover after parsing attributes in process `syz.3.835'. [ 200.392481][ T7122] netlink: 12 bytes leftover after parsing attributes in process `syz.3.835'. [ 200.442367][ T7122] netlink: 'syz.3.835': attribute type 18 has an invalid length. [ 200.504303][ T7122] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 200.513653][ T7122] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 200.522430][ T7122] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 200.531154][ T7122] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 200.555787][ T7129] loop2: detected capacity change from 0 to 512 [ 200.590806][ T7129] EXT4-fs: Ignoring removed orlov option [ 200.636660][ T7129] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 200.646753][ T7122] netlink: 8 bytes leftover after parsing attributes in process `syz.3.835'. [ 200.690109][ T7122] netlink: 12 bytes leftover after parsing attributes in process `syz.3.835'. [ 200.691394][ T7129] EXT4-fs (loop2): orphan cleanup on readonly fs [ 200.712537][ T7122] netlink: 'syz.3.835': attribute type 18 has an invalid length. [ 200.814316][ T7129] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.837: bg 0: block 248: padding at end of block bitmap is not set [ 200.909056][ T7129] __quota_error: 58 callbacks suppressed [ 200.909073][ T7129] Quota error (device loop2): write_blk: dquota write failed [ 200.944029][ T7129] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 200.983444][ T7129] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.837: Failed to acquire dquot type 1 [ 201.033518][ T7129] EXT4-fs (loop2): 1 truncate cleaned up [ 201.045327][ T7129] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 201.140845][ T7129] netlink: 20 bytes leftover after parsing attributes in process `syz.2.837'. [ 201.354338][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 201.410645][ T7157] netlink: 4 bytes leftover after parsing attributes in process `syz.4.850'. [ 201.766814][ T7159] lo speed is unknown, defaulting to 1000 [ 201.777226][ T7159] lo speed is unknown, defaulting to 1000 [ 202.253732][ T27] audit: type=1326 audit(1753276426.388:1173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.1.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 202.306758][ T7170] xt_hashlimit: size too large, truncated to 1048576 [ 202.342751][ T7170] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 202.347185][ T27] audit: type=1326 audit(1753276426.418:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.1.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 202.415177][ T7178] loop4: detected capacity change from 0 to 764 [ 202.425999][ T7178] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 202.435392][ T27] audit: type=1326 audit(1753276426.418:1175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.1.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 202.486856][ T27] audit: type=1326 audit(1753276426.418:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.1.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 202.575638][ T27] audit: type=1326 audit(1753276426.418:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.1.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 202.810445][ T27] audit: type=1326 audit(1753276426.418:1178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.1.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 202.833501][ T27] audit: type=1326 audit(1753276426.418:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.1.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 202.882577][ T27] audit: type=1326 audit(1753276426.418:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.1.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 204.120473][ T7214] lo speed is unknown, defaulting to 1000 [ 204.131274][ T7214] lo speed is unknown, defaulting to 1000 [ 204.405466][ T7208] loop1: detected capacity change from 0 to 764 [ 204.567615][ T7208] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 204.914992][ T7233] xt_hashlimit: size too large, truncated to 1048576 [ 204.946798][ T7231] loop4: detected capacity change from 0 to 8192 [ 204.950908][ T7233] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 205.098748][ T7242] netlink: 'syz.0.878': attribute type 1 has an invalid length. [ 205.126190][ T7242] netlink: 48 bytes leftover after parsing attributes in process `syz.0.878'. [ 205.560582][ T7249] netlink: 24 bytes leftover after parsing attributes in process `syz.1.881'. [ 205.879384][ T7261] lo speed is unknown, defaulting to 1000 [ 205.890194][ T7261] lo speed is unknown, defaulting to 1000 [ 206.604843][ T7274] loop3: detected capacity change from 0 to 764 [ 206.644745][ T7274] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 206.795915][ T27] kauditd_printk_skb: 84 callbacks suppressed [ 206.795930][ T27] audit: type=1326 audit(1753276430.928:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7278 comm="syz.2.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 206.849383][ T7280] xt_hashlimit: size too large, truncated to 1048576 [ 206.881228][ T27] audit: type=1326 audit(1753276430.928:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7278 comm="syz.2.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 206.901840][ T7280] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 206.937159][ T27] audit: type=1326 audit(1753276430.928:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7278 comm="syz.2.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 206.970025][ T27] audit: type=1326 audit(1753276430.928:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7278 comm="syz.2.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 207.011024][ T27] audit: type=1326 audit(1753276430.928:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7278 comm="syz.2.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 207.133819][ T27] audit: type=1326 audit(1753276430.928:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7278 comm="syz.2.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 207.141959][ T7294] netlink: 64 bytes leftover after parsing attributes in process `syz.4.895'. [ 207.271310][ T7295] lo speed is unknown, defaulting to 1000 [ 207.281768][ T7295] lo speed is unknown, defaulting to 1000 [ 207.875101][ T27] audit: type=1326 audit(1753276430.928:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7278 comm="syz.2.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 208.012300][ T27] audit: type=1326 audit(1753276430.928:1272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7278 comm="syz.2.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 208.082310][ T27] audit: type=1326 audit(1753276430.928:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7278 comm="syz.2.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 208.133906][ T7305] 8021q: adding VLAN 0 to HW filter on device bond1 [ 208.135651][ T7316] loop3: detected capacity change from 0 to 764 [ 208.148596][ T27] audit: type=1326 audit(1753276430.928:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7278 comm="syz.2.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 208.190895][ T7316] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 208.441625][ T7323] lo speed is unknown, defaulting to 1000 [ 208.459952][ T7323] lo speed is unknown, defaulting to 1000 [ 208.583375][ T7332] xt_hashlimit: size too large, truncated to 1048576 [ 208.600604][ T7332] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 208.690834][ T7337] netlink: 64 bytes leftover after parsing attributes in process `syz.2.910'. [ 208.943865][ T7342] lo speed is unknown, defaulting to 1000 [ 208.954235][ T7342] lo speed is unknown, defaulting to 1000 [ 209.787161][ T7356] loop3: detected capacity change from 0 to 764 [ 209.796586][ T7356] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 210.319107][ T7376] xt_hashlimit: size too large, truncated to 1048576 [ 210.332351][ T7376] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 210.643525][ T7389] lo speed is unknown, defaulting to 1000 [ 210.654461][ T7389] lo speed is unknown, defaulting to 1000 [ 211.381535][ T7392] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 211.575870][ T7408] netlink: 'syz.4.935': attribute type 1 has an invalid length. [ 211.662583][ T7411] netlink: 8 bytes leftover after parsing attributes in process `syz.4.935'. [ 211.682617][ T7413] netlink: 64 bytes leftover after parsing attributes in process `syz.3.936'. [ 211.696846][ T7411] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 211.707062][ T7411] bond1: (slave batadv0): Enslaving as a backup interface with an up link [ 211.721141][ T7408] bond1 (unregistering): (slave batadv0): Releasing backup interface [ 211.740163][ T7408] bond1 (unregistering): Released all slaves [ 212.040246][ T5216] nci: nci_rsp_packet: unknown rsp opcode 0xe39 [ 212.202661][ T7435] lo speed is unknown, defaulting to 1000 [ 212.213587][ T7435] lo speed is unknown, defaulting to 1000 [ 213.043233][ T7441] lo speed is unknown, defaulting to 1000 [ 213.049895][ T7441] lo speed is unknown, defaulting to 1000 [ 213.131924][ T7452] netlink: 48 bytes leftover after parsing attributes in process `syz.4.949'. [ 213.211999][ T7457] ieee802154 phy0 wpan0: encryption failed: -22 [ 213.430819][ T7463] netlink: 4 bytes leftover after parsing attributes in process `syz.1.954'. [ 213.470518][ T7463] netlink: 32 bytes leftover after parsing attributes in process `syz.1.954'. [ 214.982848][ T7475] lo speed is unknown, defaulting to 1000 [ 214.994062][ T7475] lo speed is unknown, defaulting to 1000 [ 215.419667][ T7476] lo speed is unknown, defaulting to 1000 [ 215.427244][ T7476] lo speed is unknown, defaulting to 1000 [ 216.273235][ T7505] netlink: 64 bytes leftover after parsing attributes in process `syz.2.968'. [ 216.715797][ T7519] lo speed is unknown, defaulting to 1000 [ 216.722587][ T7519] lo speed is unknown, defaulting to 1000 [ 218.170671][ T7522] lo speed is unknown, defaulting to 1000 [ 218.177371][ T7522] lo speed is unknown, defaulting to 1000 [ 218.622032][ T7528] Unsupported ieee802154 address type: 0 [ 218.631425][ T27] kauditd_printk_skb: 147 callbacks suppressed [ 218.631439][ T27] audit: type=1326 audit(1753276442.768:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7526 comm="syz.1.977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 218.675366][ T7531] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 218.684631][ T7531] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 218.693569][ T7531] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 218.702479][ T7531] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 218.706798][ T27] audit: type=1326 audit(1753276442.768:1423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7526 comm="syz.1.977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=192 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 218.739590][ T7529] loop0: detected capacity change from 0 to 2048 [ 218.797199][ T7535] loop4: detected capacity change from 0 to 512 [ 218.804217][ T27] audit: type=1326 audit(1753276442.768:1424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7526 comm="syz.1.977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 218.876256][ T7535] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 218.928571][ T27] audit: type=1326 audit(1753276442.798:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7526 comm="syz.1.977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 218.944520][ T7529] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 218.999297][ T7535] EXT4-fs (loop4): 1 truncate cleaned up [ 219.022399][ T7535] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 219.025063][ T27] audit: type=1800 audit(1753276443.158:1426): pid=7529 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.975" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 219.244548][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 219.258039][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 219.573694][ T7561] syz.1.986[7561] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 219.573794][ T7561] syz.1.986[7561] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 219.587337][ T7553] lo speed is unknown, defaulting to 1000 [ 220.346005][ T7564] lo speed is unknown, defaulting to 1000 [ 220.363639][ T7553] lo speed is unknown, defaulting to 1000 [ 220.375580][ T7564] lo speed is unknown, defaulting to 1000 [ 220.903722][ T7575] loop0: detected capacity change from 0 to 8192 [ 220.989532][ T7575] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 221.533325][ T7579] netlink: 'syz.4.990': attribute type 10 has an invalid length. [ 221.622437][ T7579] team0: Port device dummy0 added [ 221.630269][ T7582] netlink: 'syz.4.990': attribute type 10 has an invalid length. [ 221.671314][ T7582] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 221.720137][ T7582] team0: Failed to send options change via netlink (err -105) [ 221.736866][ T7582] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 221.787825][ T7582] team0: Port device dummy0 removed [ 221.808695][ T7582] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 221.834456][ T7594] syz.2.995[7594] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 221.834565][ T7594] syz.2.995[7594] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 222.012092][ T27] audit: type=1326 audit(1753276446.138:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 222.145337][ T27] audit: type=1326 audit(1753276446.178:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 222.211169][ T27] audit: type=1326 audit(1753276446.188:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 222.240784][ T27] audit: type=1326 audit(1753276446.238:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 222.271028][ T27] audit: type=1326 audit(1753276446.278:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7583 comm="syz.0.993" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 222.332164][ T7609] netlink: 20 bytes leftover after parsing attributes in process `syz.1.999'. [ 222.508075][ T7588] device syzkaller0 entered promiscuous mode [ 222.535770][ T7617] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 222.536324][ T7616] IPVS: stopping master sync thread 7617 ... [ 223.604133][ T7644] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1010'. [ 223.608920][ T7646] loop1: detected capacity change from 0 to 128 [ 223.931459][ T27] kauditd_printk_skb: 2 callbacks suppressed [ 223.931474][ T27] audit: type=1326 audit(1753276448.058:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 223.960123][ T27] audit: type=1326 audit(1753276448.068:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 223.982916][ T27] audit: type=1326 audit(1753276448.068:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 224.005363][ T27] audit: type=1326 audit(1753276448.068:1437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 224.028189][ T27] audit: type=1326 audit(1753276448.068:1438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 224.052651][ T27] audit: type=1326 audit(1753276448.068:1439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 224.076541][ T27] audit: type=1326 audit(1753276448.068:1440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 224.099327][ T27] audit: type=1326 audit(1753276448.068:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 224.122884][ T27] audit: type=1326 audit(1753276448.068:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 224.146763][ T27] audit: type=1326 audit(1753276448.068:1443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7651 comm="syz.2.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6d7ed8e9a9 code=0x7ffc0000 [ 225.363234][ T7652] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1015'. [ 225.374817][ T7653] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 225.383211][ T7653] bond0: (slave dummy0): Releasing backup interface [ 225.395314][ T7653] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 225.403429][ T7653] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 225.411762][ T7653] device bridge_slave_0 left promiscuous mode [ 225.419798][ T7653] bridge0: port 1(bridge_slave_0) entered disabled state [ 225.430832][ T7653] device bridge_slave_1 left promiscuous mode [ 225.438039][ T7653] bridge0: port 2(bridge_slave_1) entered disabled state [ 225.448831][ T7653] bond0: (slave bond_slave_0): Releasing backup interface [ 225.460089][ T7653] bond0: (slave bond_slave_1): Releasing backup interface [ 225.500987][ T7653] team0: Port device team_slave_0 removed [ 225.537030][ T7653] team0: Port device team_slave_1 removed [ 225.880354][ T7675] lo speed is unknown, defaulting to 1000 [ 225.901335][ T7675] lo speed is unknown, defaulting to 1000 [ 225.998879][ T7685] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1023'. [ 226.213480][ T7693] netlink: 'syz.4.1026': attribute type 16 has an invalid length. [ 226.221502][ T7693] netlink: 'syz.4.1026': attribute type 17 has an invalid length. [ 226.258134][ T7693] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 226.267707][ T7693] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 226.275672][ T7693] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 226.288895][ T7693] 8021q: adding VLAN 0 to HW filter on device bond0 [ 226.297928][ T7693] 8021q: adding VLAN 0 to HW filter on device team0 [ 226.309201][ T7693] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 226.649249][ T7703] xt_hashlimit: size too large, truncated to 1048576 [ 226.663957][ T7703] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 226.944986][ T7716] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready [ 226.983746][ T4285] Bluetooth: hci0: command 0x0406 tx timeout [ 227.150022][ T7725] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1035'. [ 227.322609][ T7732] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1038'. [ 227.380255][ T2948] IPv6: ADDRCONF(NETDEV_CHANGE): vlan2: link becomes ready [ 227.431668][ T7737] loop9: detected capacity change from 0 to 7 [ 227.475424][ C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.484945][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 227.519138][ C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.528425][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 227.536738][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.545956][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 227.576953][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.586228][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 227.608703][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.617977][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 227.673957][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.683240][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 227.725130][ T7741] lo speed is unknown, defaulting to 1000 [ 227.731774][ T7741] lo speed is unknown, defaulting to 1000 [ 227.734679][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.746703][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 227.757016][ T7737] ldm_validate_partition_table(): Disk read failed. [ 227.885494][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.894738][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 227.905962][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.915180][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 227.924131][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 227.933338][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 227.944217][ T7737] Dev loop9: unable to read RDB block 0 [ 227.952361][ T7747] xt_hashlimit: size too large, truncated to 1048576 [ 227.957804][ T7737] loop9: unable to read partition table [ 227.966306][ T7747] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 227.979946][ T7737] loop9: partition table beyond EOD, truncated [ 228.000262][ T7737] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ â·û [ 228.000262][ T7737] ) failed (rc=-5) [ 228.471957][ T7765] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1050'. [ 228.650602][ T7777] loop1: detected capacity change from 0 to 764 [ 228.669329][ T7777] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 228.817176][ T7780] loop3: detected capacity change from 0 to 2048 [ 228.827654][ T7775] lo speed is unknown, defaulting to 1000 [ 228.834371][ T7775] lo speed is unknown, defaulting to 1000 [ 228.868374][ T7783] syz.1.1058 uses obsolete (PF_INET,SOCK_PACKET) [ 228.879569][ T7780] loop3: p1 [ 228.900193][ T7783] device syzkaller1 entered promiscuous mode [ 229.018680][ T7785] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 229.109849][ T4531] udevd[4531]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 229.270029][ T27] kauditd_printk_skb: 86 callbacks suppressed [ 229.270043][ T27] audit: type=1326 audit(1753276453.398:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 229.317275][ T27] audit: type=1326 audit(1753276453.398:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 229.341349][ T7791] xt_hashlimit: size too large, truncated to 1048576 [ 229.365127][ T7791] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 229.375842][ T27] audit: type=1326 audit(1753276453.438:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 229.427173][ T27] audit: type=1326 audit(1753276453.438:1533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 229.450482][ T27] audit: type=1326 audit(1753276453.438:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 229.532319][ T27] audit: type=1326 audit(1753276453.438:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 229.612534][ T27] audit: type=1326 audit(1753276453.438:1536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 229.682311][ T27] audit: type=1326 audit(1753276453.438:1537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 229.848427][ T27] audit: type=1326 audit(1753276453.438:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 229.897795][ T27] audit: type=1326 audit(1753276453.438:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7790 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 229.945235][ T7809] lo speed is unknown, defaulting to 1000 [ 229.951895][ T7809] lo speed is unknown, defaulting to 1000 [ 229.961521][ T7811] loop3: detected capacity change from 0 to 764 [ 230.096962][ T7811] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 230.315381][ T7833] netlink: 204 bytes leftover after parsing attributes in process `syz.1.1077'. [ 230.315514][ T7834] loop3: detected capacity change from 0 to 256 [ 230.979132][ T7849] xt_hashlimit: size too large, truncated to 1048576 [ 230.998410][ T7849] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 231.403770][ T7861] loop3: detected capacity change from 0 to 4096 [ 231.436554][ T7861] EXT4-fs: Ignoring removed nomblk_io_submit option [ 231.469052][ T7861] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 231.735533][ T4270] EXT4-fs (loop3): unmounting filesystem. [ 231.819928][ T7869] loop3: detected capacity change from 0 to 764 [ 231.838820][ T7869] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 232.062886][ T7838] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.071789][ T7838] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.081159][ T7838] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.090225][ T7838] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.167414][ T4381] lo speed is unknown, defaulting to 1000 [ 232.187862][ T7862] lo speed is unknown, defaulting to 1000 [ 232.194579][ T7862] lo speed is unknown, defaulting to 1000 [ 232.414167][ T7875] loop2: detected capacity change from 0 to 1024 [ 232.440506][ T7875] EXT4-fs (loop2): Test dummy encryption mode enabled [ 232.527820][ T7875] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 232.690816][ T7883] lo speed is unknown, defaulting to 1000 [ 232.701279][ T7883] lo speed is unknown, defaulting to 1000 [ 233.418197][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 233.597290][ T7901] loop3: detected capacity change from 0 to 764 [ 233.622970][ T7901] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 234.118735][ T7921] lo speed is unknown, defaulting to 1000 [ 234.125472][ T7921] lo speed is unknown, defaulting to 1000 [ 234.169543][ T7917] loop1: detected capacity change from 0 to 4096 [ 234.271116][ T7917] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 234.435292][ T7924] device ipvlan2 entered promiscuous mode [ 234.444549][ T7924] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 234.453138][ T7924] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 234.684058][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 234.925166][ T7928] lo speed is unknown, defaulting to 1000 [ 234.931821][ T7928] lo speed is unknown, defaulting to 1000 [ 235.624708][ T7935] sch_tbf: burst 0 is lower than device lo mtu (11337746) ! [ 236.254033][ T7965] lo speed is unknown, defaulting to 1000 [ 236.260646][ T7965] lo speed is unknown, defaulting to 1000 [ 236.698880][ T7972] lo speed is unknown, defaulting to 1000 [ 236.709369][ T7972] lo speed is unknown, defaulting to 1000 [ 237.287193][ T7970] loop2: detected capacity change from 0 to 512 [ 237.364573][ T7970] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 237.450817][ T7976] loop3: detected capacity change from 0 to 764 [ 237.560969][ T7976] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 237.578514][ T7970] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 237.630907][ T7970] ext4 filesystem being mounted at /233/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 237.795739][ T27] kauditd_printk_skb: 106 callbacks suppressed [ 237.795753][ T27] audit: type=1326 audit(1753276461.928:1646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7987 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 237.912507][ T27] audit: type=1326 audit(1753276461.968:1647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7987 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 237.914318][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 237.963627][ T27] audit: type=1326 audit(1753276461.968:1648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7987 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 238.014957][ T27] audit: type=1326 audit(1753276461.968:1649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7987 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 238.019299][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 238.070299][ T27] audit: type=1326 audit(1753276461.968:1650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7987 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 238.112389][ T7990] 8021q: adding VLAN 0 to HW filter on device bond0 [ 238.152824][ T7990] 8021q: adding VLAN 0 to HW filter on device team0 [ 238.170397][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready [ 238.179330][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready [ 238.190068][ T7990] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 238.207963][ T4541] lo speed is unknown, defaulting to 1000 [ 238.281768][ T7998] tipc: Started in network mode [ 238.295910][ T7998] tipc: Node identity c624f288789, cluster identity 4711 [ 238.332765][ T7998] tipc: Enabled bearer , priority 0 [ 238.342647][ T8000] device syzkaller0 entered promiscuous mode [ 238.458531][ T7998] tipc: Resetting bearer [ 238.487331][ T7997] tipc: Resetting bearer [ 238.554617][ T7997] tipc: Disabling bearer [ 238.755737][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 238.780884][ T8014] loop0: detected capacity change from 0 to 128 [ 238.853817][ T8016] loop1: detected capacity change from 0 to 764 [ 238.903185][ T8016] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 239.121717][ T27] audit: type=1326 audit(1753276463.248:1651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8023 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 239.151234][ T27] audit: type=1326 audit(1753276463.278:1652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8023 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 239.175707][ T27] audit: type=1326 audit(1753276463.278:1653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8023 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 239.200293][ T27] audit: type=1326 audit(1753276463.278:1654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8023 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 239.264463][ T8028] loop1: detected capacity change from 0 to 1024 [ 239.287419][ T27] audit: type=1326 audit(1753276463.278:1655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8023 comm="syz.1.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 239.386632][ T8028] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 239.403397][ T8028] ext4 filesystem being mounted at /200/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.474568][ T8034] loop2: detected capacity change from 0 to 1024 [ 239.500767][ T8028] EXT4-fs error (device loop1): ext4_map_blocks:745: inode #15: block 3: comm syz.1.1146: lblock 3 mapped to illegal pblock 3 (length 3) [ 239.527371][ T8028] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 239.540875][ T8028] EXT4-fs (loop1): This should not happen!! Data will be lost [ 239.540875][ T8028] [ 239.563369][ T8034] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 239.566056][ T8038] loop4: detected capacity change from 0 to 512 [ 239.573744][ T8034] ext4 filesystem being mounted at /236/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.605030][ T8034] EXT4-fs error (device loop2): ext4_map_blocks:745: inode #15: block 3: comm syz.2.1148: lblock 3 mapped to illegal pblock 3 (length 13) [ 239.620900][ T8034] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 13 with error 117 [ 239.636010][ T8028] EXT4-fs error (device loop1): ext4_ext_remove_space:2930: inode #15: comm syz.1.1146: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 239.660596][ T8034] EXT4-fs (loop2): This should not happen!! Data will be lost [ 239.660596][ T8034] [ 239.675562][ T8038] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 239.675564][ T8028] EXT4-fs error (device loop1) in ext4_setattr:5658: Corrupt filesystem [ 239.701705][ T8038] ext4 filesystem being mounted at /223/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.791946][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 239.793101][ T8038] mmap: syz.4.1149 (8038) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 239.822339][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 239.985701][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 240.015448][ T8052] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1153'. [ 240.055928][ T8052] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1153'. [ 240.329189][ T8060] loop3: detected capacity change from 0 to 764 [ 240.346478][ T8060] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 240.471351][ T8064] loop1: detected capacity change from 0 to 1024 [ 240.491516][ T8064] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 240.502597][ T8064] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (30349!=20869) [ 240.521753][ T8064] EXT4-fs (loop1): invalid journal inode [ 240.527805][ T8064] EXT4-fs (loop1): can't get journal size [ 240.973574][ T8064] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 241.111420][ T8070] loop4: detected capacity change from 0 to 512 [ 241.179690][ T8070] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 241.189666][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 241.255683][ T8070] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 241.295516][ T8070] ext4 filesystem being mounted at /224/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 241.389429][ T8082] loop0: detected capacity change from 0 to 512 [ 241.435138][ T8082] EXT4-fs: Ignoring removed orlov option [ 241.468357][ T8082] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 241.519209][ T8082] EXT4-fs (loop0): orphan cleanup on readonly fs [ 241.549805][ T8082] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1163: bg 0: block 248: padding at end of block bitmap is not set [ 241.573601][ T8082] EXT4-fs error (device loop0): ext4_acquire_dquot:6814: comm syz.0.1163: Failed to acquire dquot type 1 [ 241.625265][ T8087] loop1: detected capacity change from 0 to 512 [ 241.635514][ T8082] EXT4-fs (loop0): 1 truncate cleaned up [ 241.678159][ T8082] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 241.700456][ T8087] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 241.765190][ T8087] EXT4-fs (loop1): 1 truncate cleaned up [ 241.788193][ T8087] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 242.123840][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 242.221160][ T8102] loop3: detected capacity change from 0 to 512 [ 242.256745][ T8102] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 242.271678][ T8102] ext4 filesystem being mounted at /228/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 242.318957][ T4270] EXT4-fs (loop3): unmounting filesystem. [ 242.465678][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 242.690188][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 242.885874][ T8120] lo speed is unknown, defaulting to 1000 [ 242.892617][ T8120] lo speed is unknown, defaulting to 1000 [ 242.963796][ T8119] lo speed is unknown, defaulting to 1000 [ 242.971294][ T8119] lo speed is unknown, defaulting to 1000 [ 243.471926][ T27] kauditd_printk_skb: 86 callbacks suppressed [ 243.471940][ T27] audit: type=1326 audit(1753276467.598:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.3.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 243.605497][ T27] audit: type=1326 audit(1753276467.638:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.3.1171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 243.858666][ T8133] loop2: detected capacity change from 0 to 512 [ 243.884054][ T8133] EXT4-fs: Ignoring removed orlov option [ 243.916960][ T8133] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 243.948471][ T8133] EXT4-fs (loop2): orphan cleanup on readonly fs [ 243.980051][ T8135] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1179'. [ 244.019767][ T8133] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1178: bg 0: block 248: padding at end of block bitmap is not set [ 244.105200][ T8133] Quota error (device loop2): write_blk: dquota write failed [ 244.148281][ T8133] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 244.202908][ T8133] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.1178: Failed to acquire dquot type 1 [ 244.218748][ T8133] EXT4-fs (loop2): 1 truncate cleaned up [ 244.225477][ T8133] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 244.668592][ T8152] loop4: detected capacity change from 0 to 512 [ 244.703967][ T8152] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 244.759057][ T8152] EXT4-fs (loop4): 1 truncate cleaned up [ 244.782399][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 244.799695][ T8152] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 245.361236][ T8165] lo speed is unknown, defaulting to 1000 [ 245.367914][ T8165] lo speed is unknown, defaulting to 1000 [ 245.441431][ T8166] lo speed is unknown, defaulting to 1000 [ 245.448949][ T8166] lo speed is unknown, defaulting to 1000 [ 245.994220][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 246.040426][ T27] audit: type=1326 audit(1753276470.108:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8168 comm="syz.1.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 246.173434][ T27] audit: type=1326 audit(1753276470.108:1743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8168 comm="syz.1.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 246.242548][ T27] audit: type=1326 audit(1753276470.118:1744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8168 comm="syz.1.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 246.328455][ T27] audit: type=1326 audit(1753276470.118:1745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8168 comm="syz.1.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 246.412809][ T27] audit: type=1326 audit(1753276470.118:1746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8168 comm="syz.1.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 246.503312][ T27] audit: type=1326 audit(1753276470.118:1747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8168 comm="syz.1.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 246.575119][ T8189] loop3: detected capacity change from 0 to 128 [ 246.972834][ T8194] lo speed is unknown, defaulting to 1000 [ 246.983065][ T8194] lo speed is unknown, defaulting to 1000 [ 247.534299][ T8197] loop2: detected capacity change from 0 to 512 [ 247.594551][ T8197] EXT4-fs: Ignoring removed orlov option [ 247.610912][ T8197] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 247.654249][ T8197] EXT4-fs (loop2): orphan cleanup on readonly fs [ 247.674054][ T8197] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1197: bg 0: block 248: padding at end of block bitmap is not set [ 247.745926][ T8197] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.1197: Failed to acquire dquot type 1 [ 247.863637][ T8197] EXT4-fs (loop2): 1 truncate cleaned up [ 247.871409][ T8197] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 248.140042][ T8207] lo speed is unknown, defaulting to 1000 [ 248.150691][ T8207] lo speed is unknown, defaulting to 1000 [ 248.690517][ T8210] loop1: detected capacity change from 0 to 512 [ 248.718802][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 248.768737][ T8210] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 248.846012][ T8210] EXT4-fs (loop1): 1 truncate cleaned up [ 248.863562][ T8210] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 249.200176][ T27] kauditd_printk_skb: 32 callbacks suppressed [ 249.200191][ T27] audit: type=1326 audit(1753276473.328:1778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 249.266532][ T8222] lo speed is unknown, defaulting to 1000 [ 249.273453][ T8222] lo speed is unknown, defaulting to 1000 [ 249.315730][ T27] audit: type=1326 audit(1753276473.338:1779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 249.339689][ T27] audit: type=1326 audit(1753276473.368:1780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 249.363762][ T27] audit: type=1326 audit(1753276473.368:1781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 249.452097][ T27] audit: type=1326 audit(1753276473.368:1782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 249.476681][ T27] audit: type=1326 audit(1753276473.368:1783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 249.502502][ T27] audit: type=1326 audit(1753276473.368:1784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 249.563647][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 249.569732][ T27] audit: type=1326 audit(1753276473.368:1785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 249.608409][ T27] audit: type=1326 audit(1753276473.368:1786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 249.631618][ T27] audit: type=1326 audit(1753276473.368:1787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8224 comm="syz.4.1207" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 249.676024][ T8240] loop4: detected capacity change from 0 to 512 [ 249.689846][ T8240] EXT4-fs: Ignoring removed orlov option [ 249.709459][ T8240] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 249.742083][ T8240] EXT4-fs (loop4): orphan cleanup on readonly fs [ 249.810776][ T8240] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1212: bg 0: block 248: padding at end of block bitmap is not set [ 249.883949][ T8240] EXT4-fs error (device loop4): ext4_acquire_dquot:6814: comm syz.4.1212: Failed to acquire dquot type 1 [ 249.904330][ T8240] EXT4-fs (loop4): 1 truncate cleaned up [ 249.923108][ T8240] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 250.250527][ T8256] lo speed is unknown, defaulting to 1000 [ 250.260697][ T8256] lo speed is unknown, defaulting to 1000 [ 250.931170][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 251.161814][ T8270] loop1: detected capacity change from 0 to 512 [ 251.179996][ T8270] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 251.213284][ T8270] EXT4-fs (loop1): 1 truncate cleaned up [ 251.218997][ T8270] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 251.603841][ T8289] loop3: detected capacity change from 0 to 512 [ 251.610937][ T8289] EXT4-fs: Ignoring removed orlov option [ 251.636198][ T8285] lo speed is unknown, defaulting to 1000 [ 251.642926][ T8285] lo speed is unknown, defaulting to 1000 [ 251.689033][ T8289] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 251.710693][ T8289] EXT4-fs (loop3): orphan cleanup on readonly fs [ 251.722145][ T8289] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1229: bg 0: block 248: padding at end of block bitmap is not set [ 251.745287][ T8289] EXT4-fs error (device loop3): ext4_acquire_dquot:6814: comm syz.3.1229: Failed to acquire dquot type 1 [ 251.768782][ T8289] EXT4-fs (loop3): 1 truncate cleaned up [ 251.777324][ T8289] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 252.143774][ T8299] lo speed is unknown, defaulting to 1000 [ 252.154383][ T8299] lo speed is unknown, defaulting to 1000 [ 252.773856][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 252.822833][ T4270] EXT4-fs (loop3): unmounting filesystem. [ 253.409539][ T8330] loop2: detected capacity change from 0 to 512 [ 253.431737][ T8330] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 253.464186][ T8330] EXT4-fs (loop2): 1 truncate cleaned up [ 253.472431][ T8330] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 253.705170][ T8337] lo speed is unknown, defaulting to 1000 [ 253.711790][ T8337] lo speed is unknown, defaulting to 1000 [ 253.842276][ T8343] loop0: detected capacity change from 0 to 512 [ 253.857205][ T8343] EXT4-fs: Ignoring removed orlov option [ 253.884514][ T8343] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 254.036591][ T8346] lo speed is unknown, defaulting to 1000 [ 254.048207][ T8346] lo speed is unknown, defaulting to 1000 [ 254.615341][ T8343] EXT4-fs (loop0): orphan cleanup on readonly fs [ 254.675481][ T8343] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1248: bg 0: block 248: padding at end of block bitmap is not set [ 254.733726][ T8343] __quota_error: 99 callbacks suppressed [ 254.733741][ T8343] Quota error (device loop0): write_blk: dquota write failed [ 254.753904][ T8343] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 254.765662][ T8343] EXT4-fs error (device loop0): ext4_acquire_dquot:6814: comm syz.0.1248: Failed to acquire dquot type 1 [ 254.788016][ T8343] EXT4-fs (loop0): 1 truncate cleaned up [ 254.796673][ T8343] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 254.818467][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 255.151451][ T8359] Falling back ldisc for ttyS3. [ 255.245444][ T8373] loop4: detected capacity change from 0 to 512 [ 255.307968][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 255.317199][ T8373] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 255.363678][ T8373] ext4 filesystem being mounted at /245/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 255.387955][ T27] audit: type=1326 audit(1753276479.518:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8374 comm="syz.3.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 255.414526][ T27] audit: type=1326 audit(1753276479.518:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8374 comm="syz.3.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 255.447642][ T27] audit: type=1326 audit(1753276479.518:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8374 comm="syz.3.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 255.493274][ T8376] xt_hashlimit: size too large, truncated to 1048576 [ 255.499998][ T8376] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 255.584668][ T27] audit: type=1326 audit(1753276479.518:1886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8374 comm="syz.3.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 255.615037][ T27] audit: type=1326 audit(1753276479.518:1887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8374 comm="syz.3.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 255.625247][ T1273] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.645656][ T1273] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.777096][ T8389] lo speed is unknown, defaulting to 1000 [ 255.787369][ T8389] lo speed is unknown, defaulting to 1000 [ 256.301270][ T27] audit: type=1326 audit(1753276479.528:1888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8374 comm="syz.3.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 256.373951][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 256.473527][ T27] audit: type=1326 audit(1753276479.528:1889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8374 comm="syz.3.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 256.672287][ T27] audit: type=1326 audit(1753276479.528:1890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8374 comm="syz.3.1258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 256.691697][ T8402] loop4: detected capacity change from 0 to 512 [ 256.709408][ T8402] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 256.746532][ T8402] EXT4-fs (loop4): 1 truncate cleaned up [ 256.752334][ T8402] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 256.873437][ T8407] lo speed is unknown, defaulting to 1000 [ 256.883643][ T8407] lo speed is unknown, defaulting to 1000 [ 257.554762][ T8416] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 257.637096][ T8420] loop0: detected capacity change from 0 to 1024 [ 257.646620][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 257.761702][ T8420] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 257.787429][ T8425] loop1: detected capacity change from 0 to 512 [ 257.846188][ T8425] EXT4-fs: Ignoring removed orlov option [ 257.871001][ T8425] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 257.954010][ T8425] EXT4-fs (loop1): orphan cleanup on readonly fs [ 257.992826][ T8425] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1270: bg 0: block 248: padding at end of block bitmap is not set [ 258.133626][ T8425] EXT4-fs error (device loop1): ext4_acquire_dquot:6814: comm syz.1.1270: Failed to acquire dquot type 1 [ 258.157711][ T8425] EXT4-fs (loop1): 1 truncate cleaned up [ 258.173793][ T8425] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 258.429505][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 258.738373][ T8449] lo speed is unknown, defaulting to 1000 [ 258.748670][ T8449] lo speed is unknown, defaulting to 1000 [ 259.352323][ T8456] xt_hashlimit: size too large, truncated to 1048576 [ 259.355396][ T8445] EXT4-fs error (device loop0): mb_free_blocks:1815: group 0, inode 18: block 113:freeing already freed block (bit 7); block bitmap corrupt. [ 259.359094][ T8456] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 259.756004][ T8470] lo speed is unknown, defaulting to 1000 [ 259.766606][ T8470] lo speed is unknown, defaulting to 1000 [ 260.416913][ T8469] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1283'. [ 260.473648][ T8477] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1286'. [ 260.494296][ T8475] loop4: detected capacity change from 0 to 512 [ 260.531276][ T8475] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 260.588621][ T8475] EXT4-fs (loop4): 1 truncate cleaned up [ 260.602675][ T8475] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 260.615718][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 260.671531][ T8484] loop0: detected capacity change from 0 to 512 [ 260.679598][ T8484] EXT4-fs: Ignoring removed orlov option [ 260.687306][ T8484] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 260.749967][ T4404] dvb-usb: did not find the firmware file 'dvb-usb-s630.fw' (status -110). You can use /scripts/get_dvb_firmware to get the firmware [ 260.754417][ T8484] EXT4-fs (loop0): orphan cleanup on readonly fs [ 260.813928][ T4404] dvb-usb: found a 'TeVii S630 USB' in cold state, will try to load a firmware [ 260.823391][ T4404] usb 5-1: Direct firmware load for dvb-usb-s630.fw failed with error -2 [ 260.832012][ T4404] usb 5-1: Falling back to sysfs fallback for: dvb-usb-s630.fw [ 260.883194][ T8484] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1288: bg 0: block 248: padding at end of block bitmap is not set [ 260.997435][ T8484] __quota_error: 78 callbacks suppressed [ 260.997455][ T8484] Quota error (device loop0): write_blk: dquota write failed [ 261.041578][ T8484] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 261.063642][ T8484] EXT4-fs error (device loop0): ext4_acquire_dquot:6814: comm syz.0.1288: Failed to acquire dquot type 1 [ 261.100474][ T8484] EXT4-fs (loop0): 1 truncate cleaned up [ 261.134241][ T8484] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 261.254528][ T8502] lo speed is unknown, defaulting to 1000 [ 261.264495][ T8502] lo speed is unknown, defaulting to 1000 [ 261.952451][ T27] audit: type=1326 audit(1753276486.088:1967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8507 comm="syz.3.1293" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x0 [ 262.036737][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 262.194802][ T8517] hub 6-0:1.0: USB hub found [ 262.208125][ T8517] hub 6-0:1.0: 1 port detected [ 262.459627][ T8525] xt_hashlimit: size too large, truncated to 1048576 [ 262.467683][ T27] audit: type=1326 audit(1753276486.578:1968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 262.523170][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 262.546342][ T8525] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 262.598654][ T27] audit: type=1326 audit(1753276486.578:1969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 262.756890][ T8530] lo speed is unknown, defaulting to 1000 [ 262.767237][ T8530] lo speed is unknown, defaulting to 1000 [ 263.329453][ T27] audit: type=1326 audit(1753276486.578:1970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 263.398890][ T27] audit: type=1326 audit(1753276486.578:1971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 263.465693][ T8536] netlink: 'syz.0.1298': attribute type 4 has an invalid length. [ 263.471849][ T27] audit: type=1326 audit(1753276486.578:1972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 263.520296][ T27] audit: type=1326 audit(1753276486.578:1973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 263.561119][ T8543] syz.3.1302[8543] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 263.561216][ T8543] syz.3.1302[8543] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 263.580212][ T27] audit: type=1326 audit(1753276486.578:1974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8524 comm="syz.1.1296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5b98e9a9 code=0x7ffc0000 [ 263.724135][ T8547] loop1: detected capacity change from 0 to 512 [ 263.809417][ T8547] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 263.962648][ T8554] lo speed is unknown, defaulting to 1000 [ 263.973071][ T8554] lo speed is unknown, defaulting to 1000 [ 264.361913][ T8547] EXT4-fs (loop1): 1 truncate cleaned up [ 264.561813][ T8547] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 264.768275][ T8562] loop0: detected capacity change from 0 to 512 [ 264.795947][ T8562] EXT4-fs: Ignoring removed orlov option [ 264.863450][ T8562] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 264.997660][ T8569] lo speed is unknown, defaulting to 1000 [ 265.008026][ T8569] lo speed is unknown, defaulting to 1000 [ 265.427590][ T8562] EXT4-fs (loop0): orphan cleanup on readonly fs [ 265.615255][ T8562] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1309: bg 0: block 248: padding at end of block bitmap is not set [ 265.726117][ T8562] EXT4-fs error (device loop0): ext4_acquire_dquot:6814: comm syz.0.1309: Failed to acquire dquot type 1 [ 265.728752][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 265.788457][ T8574] xt_hashlimit: size too large, truncated to 1048576 [ 265.807362][ T8574] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 265.815306][ T8562] EXT4-fs (loop0): 1 truncate cleaned up [ 265.824762][ T8562] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 266.036637][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 266.115450][ T8587] loop3: detected capacity change from 0 to 1024 [ 266.165685][ T8587] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 266.202135][ T27] kauditd_printk_skb: 87 callbacks suppressed [ 266.208661][ T27] audit: type=1800 audit(1753276490.328:2060): pid=8587 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1317" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 266.302452][ T8587] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3841: comm syz.3.1317: Allocating blocks 497-513 which overlap fs metadata [ 266.324099][ T8587] EXT4-fs (loop3): pa ffff888075aaf620: logic 256, phys. 385, len 8 [ 266.332862][ T8587] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1 [ 266.628696][ T4270] EXT4-fs (loop3): unmounting filesystem. [ 266.769324][ T8611] loop0: detected capacity change from 0 to 512 [ 266.839892][ T8617] loop1: detected capacity change from 0 to 764 [ 266.868570][ T8611] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 266.917375][ T8617] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 267.181612][ T8624] siw: device registration error -23 [ 267.425650][ T8611] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 267.690158][ T8611] ext4 filesystem being mounted at /251/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 267.702644][ T8556] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 267.953655][ T8624] lo speed is unknown, defaulting to 1000 [ 267.960355][ T8624] lo speed is unknown, defaulting to 1000 [ 267.981081][ T8615] lo speed is unknown, defaulting to 1000 [ 268.028473][ T8615] lo speed is unknown, defaulting to 1000 [ 268.075937][ T27] audit: type=1326 audit(1753276492.208:2061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8631 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 268.171969][ T8633] xt_hashlimit: size too large, truncated to 1048576 [ 268.189722][ T27] audit: type=1326 audit(1753276492.288:2062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8631 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 268.220228][ T8633] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 268.296031][ T8639] loop3: detected capacity change from 0 to 512 [ 268.327572][ T8639] EXT4-fs: Ignoring removed orlov option [ 268.347730][ T27] audit: type=1326 audit(1753276492.288:2063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8631 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 268.389976][ T27] audit: type=1326 audit(1753276492.288:2064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8631 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 268.421761][ T27] audit: type=1326 audit(1753276492.288:2065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8631 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 268.445470][ T27] audit: type=1326 audit(1753276492.288:2066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8631 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 268.481411][ T27] audit: type=1326 audit(1753276492.288:2067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8631 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 268.509365][ T8639] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 268.582428][ T8641] lo speed is unknown, defaulting to 1000 [ 268.592853][ T8641] lo speed is unknown, defaulting to 1000 [ 268.948220][ T27] audit: type=1326 audit(1753276492.288:2068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8631 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 269.113937][ T8639] EXT4-fs (loop3): orphan cleanup on readonly fs [ 269.155755][ T8639] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1332: bg 0: block 248: padding at end of block bitmap is not set [ 269.176320][ T27] audit: type=1326 audit(1753276492.288:2069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8631 comm="syz.4.1330" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efdfd78e9a9 code=0x7ffc0000 [ 269.241267][ T8639] EXT4-fs error (device loop3): ext4_acquire_dquot:6814: comm syz.3.1332: Failed to acquire dquot type 1 [ 269.274668][ T8639] EXT4-fs (loop3): 1 truncate cleaned up [ 269.284333][ T8639] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 269.691067][ T4270] EXT4-fs (loop3): unmounting filesystem. [ 269.830006][ T8651] loop2: detected capacity change from 0 to 512 [ 269.841318][ T8630] lo speed is unknown, defaulting to 1000 [ 269.873564][ T8630] lo speed is unknown, defaulting to 1000 [ 269.911038][ T8651] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 269.986097][ T8655] loop4: detected capacity change from 0 to 764 [ 270.086321][ T8651] EXT4-fs (loop2): 1 truncate cleaned up [ 270.092007][ T8651] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 270.108849][ T8655] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 270.248595][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 270.636673][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 272.090603][ T8682] sched: RT throttling activated [ 272.599492][ T8691] xt_hashlimit: size too large, truncated to 1048576 [ 272.618127][ T8691] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 272.755396][ T8698] loop2: detected capacity change from 0 to 512 [ 272.770680][ T8682] lo speed is unknown, defaulting to 1000 [ 272.777402][ T8682] lo speed is unknown, defaulting to 1000 [ 272.811927][ T8698] EXT4-fs: Ignoring removed orlov option [ 272.818876][ T8679] lo speed is unknown, defaulting to 1000 [ 272.826204][ T8679] lo speed is unknown, defaulting to 1000 [ 272.833622][ T8698] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 272.873409][ T8698] EXT4-fs (loop2): orphan cleanup on readonly fs [ 272.894479][ T8698] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1347: bg 0: block 248: padding at end of block bitmap is not set [ 272.961785][ T8698] __quota_error: 35 callbacks suppressed [ 272.961802][ T8698] Quota error (device loop2): write_blk: dquota write failed [ 273.003902][ T8698] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 273.014524][ T8698] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.1347: Failed to acquire dquot type 1 [ 273.032731][ T8698] EXT4-fs (loop2): 1 truncate cleaned up [ 273.066430][ T8698] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 273.213837][ T8708] loop4: detected capacity change from 0 to 764 [ 273.313872][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 273.323752][ T8708] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 273.436494][ T8714] loop1: detected capacity change from 0 to 512 [ 273.543419][ T8714] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 273.767316][ T8720] lo speed is unknown, defaulting to 1000 [ 273.777603][ T8720] lo speed is unknown, defaulting to 1000 [ 274.467363][ T27] audit: type=1326 audit(1753276498.598:2103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.3.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 274.497536][ T8726] xt_hashlimit: size too large, truncated to 1048576 [ 274.505527][ T8726] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 274.576063][ T8714] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 274.591658][ T8723] loop4: detected capacity change from 0 to 512 [ 274.607320][ T27] audit: type=1326 audit(1753276498.598:2104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.3.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 274.654564][ T8714] ext4 filesystem being mounted at /242/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 274.689997][ T27] audit: type=1326 audit(1753276498.598:2105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.3.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 274.749035][ T8723] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 274.817572][ T27] audit: type=1326 audit(1753276498.598:2106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.3.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 274.868440][ T27] audit: type=1326 audit(1753276498.598:2107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.3.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 274.968115][ T8739] lo speed is unknown, defaulting to 1000 [ 274.978563][ T8739] lo speed is unknown, defaulting to 1000 [ 275.261638][ T8723] EXT4-fs (loop4): 1 truncate cleaned up [ 275.272772][ T27] audit: type=1326 audit(1753276498.598:2108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.3.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 275.423553][ T8723] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 275.637253][ T27] audit: type=1326 audit(1753276498.598:2109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.3.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 275.748762][ T27] audit: type=1326 audit(1753276498.598:2110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.3.1357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fead458e9a9 code=0x7ffc0000 [ 275.787570][ T8747] lo speed is unknown, defaulting to 1000 [ 275.853514][ T8747] lo speed is unknown, defaulting to 1000 [ 275.979527][ T8755] loop2: detected capacity change from 0 to 512 [ 275.993552][ T8755] EXT4-fs: Ignoring removed orlov option [ 276.020714][ T8755] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 276.073950][ T8755] EXT4-fs (loop2): orphan cleanup on readonly fs [ 276.123448][ T8755] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.1363: bg 0: block 248: padding at end of block bitmap is not set [ 276.149185][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 276.264445][ T8729] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 276.284141][ T8755] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.1363: Failed to acquire dquot type 1 [ 276.304613][ T8755] EXT4-fs (loop2): 1 truncate cleaned up [ 276.316804][ T8755] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 276.328252][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 276.407997][ T8761] loop4: detected capacity change from 0 to 764 [ 276.491708][ T8761] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 276.659089][ T4272] EXT4-fs (loop2): unmounting filesystem. [ 276.682248][ T8771] xt_hashlimit: size too large, truncated to 1048576 [ 276.689050][ T8771] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 277.357411][ T8773] lo speed is unknown, defaulting to 1000 [ 277.364994][ T8773] lo speed is unknown, defaulting to 1000 [ 278.712885][ T8790] siw: device registration error -23 [ 279.099847][ T8785] lo speed is unknown, defaulting to 1000 [ 279.106552][ T8790] lo speed is unknown, defaulting to 1000 [ 279.106603][ T8785] lo speed is unknown, defaulting to 1000 [ 279.121307][ T8790] lo speed is unknown, defaulting to 1000 [ 279.546524][ T8804] loop2: detected capacity change from 0 to 764 [ 279.555777][ T8808] loop0: detected capacity change from 0 to 512 [ 279.574131][ T8804] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 279.591436][ T8808] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 279.627893][ T8810] loop4: detected capacity change from 0 to 512 [ 279.674540][ T8810] EXT4-fs: Ignoring removed orlov option [ 279.687652][ T8808] EXT4-fs (loop0): 1 truncate cleaned up [ 279.699934][ T8810] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 279.727656][ T8808] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 279.770571][ T8814] loop1: detected capacity change from 0 to 512 [ 279.800015][ T8810] EXT4-fs (loop4): orphan cleanup on readonly fs [ 279.894887][ T8810] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1380: bg 0: block 248: padding at end of block bitmap is not set [ 279.932835][ T8814] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 279.964801][ T8810] __quota_error: 54 callbacks suppressed [ 279.964817][ T8810] Quota error (device loop4): write_blk: dquota write failed [ 280.049886][ T8810] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 280.090606][ T8814] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 280.109486][ T8814] ext4 filesystem being mounted at /245/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 280.209927][ T8810] EXT4-fs error (device loop4): ext4_acquire_dquot:6814: comm syz.4.1380: Failed to acquire dquot type 1 [ 280.238730][ T8810] EXT4-fs (loop4): 1 truncate cleaned up [ 280.248192][ T8830] lo speed is unknown, defaulting to 1000 [ 280.255138][ T8830] lo speed is unknown, defaulting to 1000 [ 280.810730][ T8832] lo speed is unknown, defaulting to 1000 [ 280.821262][ T8832] lo speed is unknown, defaulting to 1000 [ 281.144848][ T8810] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 281.210112][ T4271] EXT4-fs (loop0): unmounting filesystem. [ 281.369059][ T27] audit: type=1326 audit(1753276505.498:2163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8841 comm="syz.0.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 281.422360][ T27] audit: type=1326 audit(1753276505.498:2164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8841 comm="syz.0.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 281.472461][ T27] audit: type=1326 audit(1753276505.498:2165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8841 comm="syz.0.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 281.515587][ T27] audit: type=1326 audit(1753276505.498:2166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8841 comm="syz.0.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 281.557807][ T8844] xt_hashlimit: size too large, truncated to 1048576 [ 281.593458][ T8844] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 281.613607][ T27] audit: type=1326 audit(1753276505.498:2167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8841 comm="syz.0.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 281.721825][ T8846] lo speed is unknown, defaulting to 1000 [ 281.732250][ T8846] lo speed is unknown, defaulting to 1000 [ 281.972471][ T27] audit: type=1326 audit(1753276505.508:2168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8841 comm="syz.0.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 282.107749][ T27] audit: type=1326 audit(1753276505.508:2169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8841 comm="syz.0.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 282.212831][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 282.362327][ T27] audit: type=1326 audit(1753276505.508:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8841 comm="syz.0.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82a2b8e9a9 code=0x7ffc0000 [ 282.962488][ T8859] lo speed is unknown, defaulting to 1000 [ 282.973131][ T8859] lo speed is unknown, defaulting to 1000 [ 283.424973][ T4913] EXT4-fs (loop1): unmounting filesystem. [ 283.460678][ T8867] loop3: detected capacity change from 0 to 764 [ 283.512741][ T8867] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 283.710948][ T8881] loop4: detected capacity change from 0 to 512 [ 283.738419][ T8881] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 283.972110][ T8881] EXT4-fs (loop4): 1 truncate cleaned up [ 284.007967][ T8881] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 284.456756][ T28] INFO: task udevd:4414 blocked for more than 143 seconds. [ 284.467317][ T28] Not tainted 6.1.146-syzkaller #0 [ 284.490010][ T8888] loop3: detected capacity change from 0 to 512 [ 284.498041][ T8888] EXT4-fs: Ignoring removed orlov option [ 284.504274][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 284.523120][ T8888] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 284.571527][ T28] task:udevd state:D stack:23584 pid:4414 ppid:3638 flags:0x00004002 [ 284.590640][ T28] Call Trace: [ 284.597653][ T28] [ 284.606016][ T28] __schedule+0x10e9/0x40d0 [ 284.616929][ T28] ? release_firmware_map_entry+0x18a/0x18a [ 284.626523][ T28] ? __mutex_trylock_common+0x80/0x250 [ 284.632597][ T28] ? trace_raw_output_contention_end+0xd0/0xd0 [ 284.639164][ T28] schedule+0xb9/0x180 [ 284.644866][ T28] schedule_preempt_disabled+0xf/0x20 [ 284.650643][ T28] __mutex_lock+0x555/0xaf0 [ 284.661242][ T28] ? __mutex_lock+0x3a5/0xaf0 [ 284.669120][ T8888] EXT4-fs (loop3): orphan cleanup on readonly fs [ 284.675874][ T8895] PM: Image not found (code -6) [ 284.683561][ T28] ? uevent_show+0x16c/0x320 [ 284.695263][ T28] ? mutex_lock_nested+0x10/0x10 [ 284.700906][ T28] uevent_show+0x16c/0x320 [ 284.706284][ T8888] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1397: bg 0: block 248: padding at end of block bitmap is not set [ 284.721373][ T28] dev_attr_show+0x50/0xb0 [ 284.726240][ T28] sysfs_kf_seq_show+0x349/0x4b0 [ 284.731550][ T28] ? device_get_ownership+0xa0/0xa0 [ 284.739508][ T8888] EXT4-fs error (device loop3): ext4_acquire_dquot:6814: comm syz.3.1397: Failed to acquire dquot type 1 [ 284.755318][ T28] seq_read_iter+0x49b/0xd50 [ 284.762324][ T8888] EXT4-fs (loop3): 1 truncate cleaned up [ 284.768001][ T28] ? common_file_perm+0x171/0x1c0 [ 284.777366][ T28] vfs_read+0x434/0x920 [ 284.781997][ T28] ? do_raw_spin_unlock+0x11d/0x230 [ 284.943826][ T8888] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 284.987889][ T28] ? kernel_read+0x1e0/0x1e0 [ 285.059035][ T28] ? __x64_sys_newfstat+0x171/0x1c0 [ 285.195210][ T28] ? __fdget_pos+0x2b5/0x360 [ 285.313768][ T28] ksys_read+0x143/0x240 [ 285.408919][ T28] ? vfs_write+0x960/0x960 [ 285.413515][ T28] ? lockdep_hardirqs_on+0x94/0x140 [ 285.419567][ T28] do_syscall_64+0x4c/0xa0 [ 285.424279][ T28] ? clear_bhb_loop+0x60/0xb0 [ 285.429405][ T28] ? clear_bhb_loop+0x60/0xb0 [ 285.435955][ T28] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 285.447442][ T28] RIP: 0033:0x7fcde4aa7407 [ 285.462188][ T28] RSP: 002b:00007fff5372fb40 EFLAGS: 00000202 ORIG_RAX: 0000000000000000 [ 285.470663][ T28] RAX: ffffffffffffffda RBX: 00007fcde523e880 RCX: 00007fcde4aa7407 [ 285.479210][ T28] RDX: 0000000000001000 RSI: 000055c0213aba10 RDI: 0000000000000008 [ 285.487651][ T28] RBP: 00007fcde4befff0 R08: 0000000000000000 R09: 0000000000000000 [ 285.495910][ T28] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000000a [ 285.504329][ T28] R13: 00007fcde4befea0 R14: 0000000000000000 R15: 000055c0213b0800 [ 285.512737][ T28] [ 285.516064][ T28] [ 285.516064][ T28] Showing all locks held in the system: [ 285.534429][ T4273] EXT4-fs (loop4): unmounting filesystem. [ 285.556206][ T28] 1 lock held by rcu_tasks_kthre/12: [ 285.561545][ T28] #0: ffffffff8cb2b7b0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00 [ 285.574191][ T28] 1 lock held by rcu_tasks_trace/13: [ 285.579683][ T28] #0: ffffffff8cb2bfd0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00 [ 285.612124][ T28] 1 lock held by khungtaskd/28: [ 285.622405][ T28] #0: ffffffff8cb2ae20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290 [ 285.632695][ T28] 2 locks held by kworker/0:2/952: [ 285.637855][ T28] #0: ffff888017472138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 285.648331][ T28] #1: ffffc900045d7d00 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 285.659829][ T28] 2 locks held by getty/4029: [ 285.664557][ T28] #0: ffff88814d52a098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70 [ 285.674380][ T28] #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x41b/0x1380 [ 285.684701][ T28] 3 locks held by kworker/0:7/4332: [ 285.689939][ T28] #0: ffff888017470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 285.700486][ T28] #1: ffffc900048bfd00 (key_gc_work){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 285.710161][ T28] #2: ffffffff8cb30af8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x455/0x830 [ 285.721302][ T28] 6 locks held by kworker/1:5/4404: [ 285.726596][ T28] #0: ffff88801c6e6938 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 285.737388][ T28] #1: ffffc90004b9fd00 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 285.748770][ T28] #2: ffff888145b20190 (&dev->mutex){....}-{3:3}, at: hub_event+0x185/0x5210 [ 285.757741][ T28] #3: ffff88805bb5e190 (&dev->mutex){....}-{3:3}, at: __device_attach+0x85/0x460 [ 285.767036][ T28] #4: ffff88805b097118 (&dev->mutex){....}-{3:3}, at: __device_attach+0x85/0x460 [ 285.776376][ T28] #5: ffffffff8c9d79b0 (umhelper_sem){++++}-{3:3}, at: usermodehelper_read_trylock+0xec/0x2a0 [ 285.786914][ T28] 4 locks held by udevd/4414: [ 285.791581][ T28] #0: ffff888077c66540 (&p->lock){+.+.}-{3:3}, at: seq_read_iter+0xad/0xd50 [ 285.800553][ T28] #1: ffff88805882e488 (&of->mutex){+.+.}-{3:3}, at: kernfs_seq_start+0x51/0x3b0 [ 285.809978][ T28] #2: ffff88807a007a00 (kn->active#5){++++}-{0:0}, at: kernfs_seq_start+0x71/0x3b0 [ 285.819505][ T28] #3: ffff88805bb5e190 (&dev->mutex){....}-{3:3}, at: uevent_show+0x16c/0x320 [ 285.828542][ T28] 5 locks held by kworker/u4:14/5216: [ 285.833966][ T28] #0: ffff888017616938 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 285.844372][ T28] #1: ffffc90004d9fd00 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 285.854564][ T28] #2: ffffffff8dd332d0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x132/0xb80 [ 285.864110][ T28] #3: ffffffff8dd3ff68 (rtnl_mutex){+.+.}-{3:3}, at: ip_tunnel_delete_nets+0xc8/0x360 [ 285.873855][ T28] #4: ffffffff8cb30af8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x346/0x830 [ 285.884849][ T28] 2 locks held by kworker/1:11/8836: [ 285.890146][ T28] #0: ffff888017470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 285.900559][ T28] #1: ffffc900037a7d00 ((work_completion)(&pwq->unbound_release_work)){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 285.913261][ T28] 2 locks held by syz.2.1395/8886: [ 285.918387][ T28] #0: ffffffff8dd332d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x32e/0x5b0 [ 285.927862][ T28] #1: ffffffff8dd3ff68 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x7d/0x210 [ 285.938200][ T28] 1 lock held by syz.3.1397/8888: [ 285.943429][ T28] #0: ffffffff8dd3ff68 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x3ab/0x1e10 [ 285.953570][ T28] 2 locks held by syz.1.1399/8897: [ 285.959130][ T28] #0: ffffffff8dd332d0 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x32e/0x5b0 [ 285.968596][ T28] #1: ffffffff8dd3ff68 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x7d/0x210 [ 285.978839][ T28] [ 285.987115][ T8886] lo speed is unknown, defaulting to 1000 [ 285.993806][ T8897] lo speed is unknown, defaulting to 1000 [ 285.994336][ T8886] lo speed is unknown, defaulting to 1000 [ 286.008279][ T8897] lo speed is unknown, defaulting to 1000 [ 286.154427][ T28] ============================================= [ 286.154427][ T28] [ 286.162943][ T28] NMI backtrace for cpu 1 [ 286.167297][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.1.146-syzkaller #0 [ 286.175209][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 286.185276][ T28] Call Trace: [ 286.188571][ T28] [ 286.191516][ T28] dump_stack_lvl+0x168/0x22e [ 286.196205][ T28] ? preempt_schedule_thunk+0x16/0x18 [ 286.201589][ T28] ? show_regs_print_info+0x12/0x12 [ 286.206795][ T28] ? load_image+0x3b0/0x3b0 [ 286.211303][ T28] ? vprintk_emit+0x571/0x680 [ 286.215983][ T28] ? printk_sprint+0x460/0x460 [ 286.220749][ T28] nmi_cpu_backtrace+0x3f4/0x470 [ 286.225686][ T28] ? nmi_trigger_cpumask_backtrace+0x450/0x450 [ 286.231831][ T28] ? _printk+0xcc/0x110 [ 286.235983][ T28] ? load_image+0x3b0/0x3b0 [ 286.240483][ T28] ? load_image+0x3b0/0x3b0 [ 286.244995][ T28] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 286.251056][ T28] nmi_trigger_cpumask_backtrace+0x1d4/0x450 [ 286.257034][ T28] watchdog+0xeee/0xf30 [ 286.261187][ T28] ? watchdog+0x1ed/0xf30 [ 286.265516][ T28] kthread+0x29d/0x330 [ 286.269584][ T28] ? hungtask_pm_notify+0x40/0x40 [ 286.274603][ T28] ? kthread_blkcg+0xd0/0xd0 [ 286.279192][ T28] ret_from_fork+0x1f/0x30 [ 286.283615][ T28] [ 286.286950][ T28] Sending NMI from CPU 1 to CPUs 0: [ 286.292223][ C0] NMI backtrace for cpu 0 [ 286.292233][ C0] CPU: 0 PID: 2948 Comm: kworker/u4:5 Not tainted 6.1.146-syzkaller #0 [ 286.292248][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 286.292256][ C0] Workqueue: events_unbound toggle_allocation_gate [ 286.292275][ C0] RIP: 0010:lockdep_hardirqs_on_prepare+0x257/0x760 [ 286.292295][ C0] Code: da 00 48 8b 7c 24 10 4c 89 fe e8 54 eb 00 00 48 ba 00 00 00 00 00 fc ff df 85 c0 0f 84 a2 01 00 00 41 0f b6 04 16 84 c0 75 5b <49> ff c5 48 63 03 49 83 c7 28 49 83 c4 28 49 39 c5 7c 95 eb 66 48 [ 286.292307][ C0] RSP: 0018:ffffc9000c9b77a0 EFLAGS: 00000046 [ 286.292318][ C0] RAX: 0000000000000000 RBX: ffff88802f27c658 RCX: ffffffff8163a354 [ 286.292329][ C0] RDX: dffffc0000000000 RSI: 0000000000000008 RDI: ffffffff90add250 [ 286.292339][ C0] RBP: ffffc9000c9b7848 R08: dffffc0000000000 R09: fffffbfff215ba4b [ 286.292349][ C0] R10: fffffbfff215ba4b R11: 1ffffffff215ba4a R12: ffff88802f27c6a8 [ 286.292360][ C0] R13: 0000000000000001 R14: 1ffff11005e4f8cb R15: ffff88802f27c688 [ 286.292369][ C0] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 286.292381][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 286.292391][ C0] CR2: 00007fed5bb802d8 CR3: 000000000c88e000 CR4: 00000000003506f0 [ 286.292404][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 286.292413][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 286.292422][ C0] Call Trace: [ 286.292427][ C0] [ 286.292434][ C0] ? lock_chain_count+0x20/0x20 [ 286.292451][ C0] ? kasan_check_range+0x27b/0x290 [ 286.292468][ C0] ? kmem_cache_alloc_node+0x6b/0x320 [ 286.292481][ C0] trace_hardirqs_on+0x34/0x40 [ 286.292496][ C0] __text_poke+0x64b/0x810 [ 286.292513][ C0] ? __text_poke+0x810/0x810 [ 286.292527][ C0] ? kmem_cache_alloc_node+0x6b/0x320 [ 286.292540][ C0] ? text_poke+0x90/0x90 [ 286.292554][ C0] ? trace_raw_output_contention_end+0xd0/0xd0 [ 286.292569][ C0] ? text_poke_loc_init+0xd6/0x570 [ 286.292588][ C0] text_poke_bp_batch+0x425/0x7d0 [ 286.292605][ C0] ? kmem_cache_alloc_node+0x6b/0x320 [ 286.292618][ C0] ? text_poke_loc_init+0x570/0x570 [ 286.292634][ C0] ? arch_jump_label_transform_queue+0x76/0xd0 [ 286.292652][ C0] text_poke_finish+0x16/0x30 [ 286.292666][ C0] arch_jump_label_transform_apply+0x13/0x20 [ 286.292680][ C0] static_key_enable_cpuslocked+0x11f/0x240 [ 286.292700][ C0] static_key_enable+0x16/0x20 [ 286.292716][ C0] toggle_allocation_gate+0xb4/0x430 [ 286.292730][ C0] ? show_object+0xa0/0xa0 [ 286.292743][ C0] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 286.292760][ C0] ? read_lock_is_recursive+0x10/0x10 [ 286.292778][ C0] ? _raw_spin_unlock_irq+0x1f/0x40 [ 286.292797][ C0] ? process_one_work+0x7a1/0x1160 [ 286.292810][ C0] process_one_work+0x898/0x1160 [ 286.292829][ C0] ? worker_detach_from_pool+0x240/0x240 [ 286.292844][ C0] ? _raw_spin_lock_irq+0xab/0xe0 [ 286.292859][ C0] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 286.292875][ C0] ? kthread_data+0x4b/0xc0 [ 286.292892][ C0] worker_thread+0xaa2/0x1250 [ 286.292912][ C0] ? __kthread_parkme+0x162/0x1c0 [ 286.292930][ C0] kthread+0x29d/0x330 [ 286.292946][ C0] ? worker_clr_flags+0x1a0/0x1a0 [ 286.292959][ C0] ? kthread_blkcg+0xd0/0xd0 [ 286.292976][ C0] ret_from_fork+0x1f/0x30 [ 286.292997][ C0] [ 286.293415][ T28] Kernel panic - not syncing: hung_task: blocked tasks [ 286.626637][ T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.1.146-syzkaller #0 [ 286.634519][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 286.644561][ T28] Call Trace: [ 286.647830][ T28] [ 286.650752][ T28] dump_stack_lvl+0x168/0x22e [ 286.655550][ T28] ? memcpy+0x3c/0x60 [ 286.659532][ T28] ? show_regs_print_info+0x12/0x12 [ 286.664724][ T28] ? load_image+0x3b0/0x3b0 [ 286.669227][ T28] panic+0x2c9/0x710 [ 286.673129][ T28] ? schedule_preempt_disabled+0x20/0x20 [ 286.678758][ T28] ? bpf_jit_dump+0xd0/0xd0 [ 286.683252][ T28] ? nmi_trigger_cpumask_backtrace+0x35b/0x450 [ 286.689396][ T28] ? nmi_trigger_cpumask_backtrace+0x360/0x450 [ 286.695543][ T28] watchdog+0xf2d/0xf30 [ 286.699693][ T28] ? watchdog+0x1ed/0xf30 [ 286.704013][ T28] kthread+0x29d/0x330 [ 286.708073][ T28] ? hungtask_pm_notify+0x40/0x40 [ 286.713087][ T28] ? kthread_blkcg+0xd0/0xd0 [ 286.717677][ T28] ret_from_fork+0x1f/0x30 [ 286.722093][ T28] [ 286.725299][ T28] Kernel Offset: disabled [ 286.729611][ T28] Rebooting in 86400 seconds..