last executing test programs: 13.06918163s ago: executing program 3 (id=3427): creat(&(0x7f00000000c0)='./file0\x00', 0xce) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff"], 0x15) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000004000000e57f000008"], 0x50) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f0000000300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6b}}) 12.871823793s ago: executing program 3 (id=3431): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kfree\x00', 0xffffffffffffffff, 0x0, 0x9}, 0x18) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000400)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000020000000000010000000900010073797a300000000044000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a3000000000080005400000001f0800034000000004640000000e0a01020000000000000000010000000900020073797a32000000000900010073797a3000000000380003803400008028000180230001"], 0xf0}, 0x1, 0x0, 0x0, 0x80}, 0x0) 12.678019576s ago: executing program 3 (id=3435): syz_io_uring_setup(0x117, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50) socket$caif_stream(0x25, 0x1, 0x1) socket$igmp(0x2, 0x3, 0x2) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) syz_emit_ethernet(0x4a, &(0x7f00000007c0)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\f\n5', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x10, 0x6, 0x0, @remote, @local}, {{0x4e21, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2, 0x0, 0x0, 0x100}}}}}}, 0x0) 12.576355418s ago: executing program 3 (id=3436): bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000080000000000000000000850000007d000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80000}}, {@quota}]}, 0x1, 0x4ff, &(0x7f0000000ac0)="$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") quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x3, 0x100000000, 0x2000000000000000, 0x0, 0x2, 0x526d, 0x7b, 0xfffffffffffffffd, 0x107ff}) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) dup(0xffffffffffffffff) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) 12.133243195s ago: executing program 3 (id=3440): sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="e8000000000000000b210000ff3f7c081e0f315b91fcaec7bf495d5c618332756cbb1bb9ce6d12b9d976d1f33aca41e50a3342bcd67c311f7885a05c3fcf2ae21f1498ec481e7ca2c3ca4c7b3bf94448f62e111e5a79929b9182cc977ba6ae766ce37bdaac6da997fbc15f0c79f42155b99a280667b51fdc7902d7be5ef41f953fedb32aceeada13250626957eff13d5b12cc916541ccbeb0d4060a4dd89664eaba2f6b4ede0c9e3dc1c9446d9284ebe0e46eee7bc145ff0a2779c025553298812978ea53a8c60f254f23344a80a0a"], 0x208}, 0x0) open(0x0, 0x143c62, 0x0) mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,') 11.621574142s ago: executing program 3 (id=3447): r0 = socket(0x10, 0x803, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbf6, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0xc8fa, 0x80000001, 0xfffffff1}}}}]}, 0x44}}, 0x40804) sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=@delqdisc={0x24, 0x25, 0x1, 0x70bd26, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xe, 0x10}, {0x1, 0x9}, {0x8, 0xffe3}}}, 0x24}}, 0x20040054) 11.324221407s ago: executing program 32 (id=3447): r0 = socket(0x10, 0x803, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbf6, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0xc8fa, 0x80000001, 0xfffffff1}}}}]}, 0x44}}, 0x40804) sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=@delqdisc={0x24, 0x25, 0x1, 0x70bd26, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0xe, 0x10}, {0x1, 0x9}, {0x8, 0xffe3}}}, 0x24}}, 0x20040054) 5.925784309s ago: executing program 2 (id=3478): mount(0x0, 0x0, 0x0, 0x2080000, 0x0) r0 = socket(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYRESOCT=r0, @ANYRES32, @ANYRESOCT, @ANYRES8=r0], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x7, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xa, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x73, 0x11, 0x8b}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0xa0}, @exit], {0x95, 0x0, 0x5a5}}, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x4, 0x4, 0x56}]}) mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f0000000000)) 4.825938286s ago: executing program 2 (id=3484): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x100) ioctl$SNDRV_TIMER_IOCTL_STATUS32(r2, 0xc0f85403, 0x0) 4.621134749s ago: executing program 2 (id=3486): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x18) ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000000)=0x2) ioctl$PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x48, 0x0, 0x38, 0x4}]}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000000)=@req3={0xfffff800, 0xb1, 0xf, 0x0, 0x6, 0x800, 0x1af1}, 0x1c) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001080)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffff"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) write$cgroup_devices(r4, &(0x7f00000002c0)=ANY=[@ANYBLOB="0700a3fcf070d1ff"], 0xffdd) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x4, 0x0, 0x7ffc0005}]}) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000001600)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000006000000180100006020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300003500000085000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r5}, 0x18) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="b501000000000000bd110000000000008510000002000000850000007600000095000000000000009500a5050000000077d8f3b4000000002be16ad10a48b243ccc40806d25dfd73a015e0ca7fc2506a0f68a7d06d75357f21699cdc6751dfb265a0e3ccae669e173a649c1cfd6587d472d64e7cc955d77578f4c35235138d5421f9453559c35da860e8ef14142b2a3e314422b854421eed734ceb1efeecb9c66854c3b3ffe1b4ce25d7c983c005c03b1d1ca4cb3e26e7a23129d6606fd28a697a9d552af6d9a9df2c3af333e2008e11bbec0727cb3f647535deb6277f5696833a71011a7d06602e2fd5234712596b696418f163d1a13ed38a682f87925bfa753f631cd027edd68149ee99eebc6f7d6dd4ae59af7588c8e1f4efab57644ccb1973d7879b70a70001040000000000000000d7900a820b63278f4e9a217b98ef7042ad2a923132f208fd8289eaf8cd00000000000009d27d753a300800000000000000a5686f2fccc33e3e34c3969c5ad781302d40e97a8ad10ce0cbe17366d5ac6af2fca2360a15b80400d52040ef7b28d300747877e176fe4c4b8e40dbf260f5a9f7eee30293c1b163b795d0aef4deb851a30000f569dc8f39943f889008e1ec914faa9e6cd0b3b4b3b5db666ebeb49d6a62019d76459e70b459543c4ac42e53b4ad4c77cff373ebd95848f01864e456969cd28000170996016aceb583df5ee4dd722e8c350af489f9a900000000a0dcc391a65c674a9cce0439f832a20d7cbdcda5dff3ba92dd66afb9dcd3e7784dbea1e51a15b0f1a040cc63177f8fafa3192fc8e5552da1a982ab8dfe31ad1a0968faa47c2069d6bf09c3aa4f0fc128cb578d99b08a150b4cc4b22f6a464c6398c952519818a44a1b450ff502df87865c276588ea478e328e8277e811b99ce1acfecaf8e2c55ccc4b8eae0a61635514e99ffd438784060f23ba74c0b30b1180d935832deb686d789ba1d436d116394534e88492a42b8bcab12fcc661a2dc50b3a1dcfbc871e5c27e3d7260f6fa589e40000b89db451ff994845f6b49c12e89291398bcb3c06ef1289f74e0b0e2cab592d35f82a69e7284223a171c616b1f0fee6c4711d7aecb69746064d2c096554975d605ebe646302bf3d5cf32a9a09915ae3f3d4eb96615d7b237da56cd5e9904a19e145f25b6d98eb2c019967f553b61d0e80d6913cee9f8d18469a654a239a84a85debbc0284c5a5d51f0e115ab159e3b513a68284d2efc30587e433431b2896a3bd48020af67e9ac071b2dd6dc3b9efae4ff03558fa619aea909c7f2416e7e7da1c51ccc7e6ac27412f728dc6d80da8adf317ca863ed683897321f8c8bb5a5d953d6783b7a06353ee496bbdff418de3e53234df87756eb99e330253cf5da4aa1a9648a38f07e2d302b4165983db4f7b8972923fffa8c03c288512a3a38fbd7c816a44634f7a03fab30811b7b93257bea4369ba46024dee5e9b0b2c3d3324e9b7c1f99ab9bb3f498b1485373b79ec84a67dad4e37575dab87ce55a9a69ed856a4c4410d1242ac1bd1539094a641cc086c2c53e363beafc74ab4e9ff320373705cbf5644586ffe60d293944fa2d9dc18b55f1af5c42f27747bef1ffd0c1766f062d47d61bf9f64e6ee288fa7fc12d48da526527b9f5c318c93ec447cb8b5eee7aa8a1e85696af3dfef96657c0545c8ebd96528d9c28828e5befd80d684b03b6d153da3e3cbd3bfbf4a9375b8ad04a1d241bcb775505cb6cc7a44e2e24bd0b1ca4879caaff59d0ce39dc7f3fea447f4e46967855208e63ec988bd2692afefbed2b001205e4b30ee8fe417defa566a73ace8f01f7181de0ef25f1744896a3c38859e6148c42454949cd64b1a888e7fe9c2d86bb01023b6dde4ab67f5eb038af3e460c771518a4126c338b0390d459361e03adf6e6b558b3651a0e33d101b5febfff82794203da18db6fcf89715c2d338f78d8b9220171b418528f857a7cb79ca990de1208777e13faaa9b9cb9e67797b07d9eb9e909410b50c5d981d9a72aa36498b630519d1530ef0000000000000000000037fcffffffffffffff8db8379bd2044c652dff399a9f8bfa4e9c507f049d18837464276830461ee203ba51f6102d262fc9a26bc3638ecce24e65c55da6efaa462f03e0d36c62785f32ecc294a8c7a522b59f5a7b44d018cb2648383073d9e032492cae44350bc0a85697f431392eb22cae093e85954af97d6d7b2e6e8f43353062275ad1578a431594243452a2bfb89f91d8eaac00000000000080014573789425c4c22da528d89356aa6d2ae6da082e756c80cf39053431080ea6cbf9997a5a0ddad0b9d12bc3f880476ab32f0feaac5f16e61f7b72b8c9082eec423c6b3eaecfdcc9ec72795e7696421c83b76c2d6bac19bc875d009679778d8ef97d7e05329649d97b0dc54bea9b650873de2d3d702690176e0b23ee5cb5e469a8d1612d611722e6200e3a297d92f8e1de98326c5ef2b89d4e2d47767c0700783e5d865e373338e96ceb8399f296c59b2d70ca27735ecaff62982616d3ac1ab041733bce119d8002a6c8a2b08b32551b2313b1a2ff41b3f04af61c69c85cb2da48215727271bac2ffdeb62d9f5dc4845f1c3f63dc806e615ee8d28d6d7f181e30807afa27f41d0364c746a65a47464db68f3c433d88dd625db35fded2c86d75af88efaf20c8b37c644b6c4e773a9589200faa553bc92f916b75ddbfa18ab73979f46947b35914286d2499a0b8c970000000000000000f4fe74e0c26ab52329bd600627b256ca44dd121ffc8dbb6e5f70cbe03efccac70375b30cc927574d254d1b46c607e8b1ca7d1511568c4d885723734a3ef4b6b885f4582bdcef74e5e010627fc8e4fe00000000000000000000869d9640f06b11df2971909b90133983308ea4f033de613763f32d913bcbe9dd082a6fff197a20730269e6cfd31275395833f1c2b8a50a94c30cceae2a11fe9b9b835d0da73891c0b3ce22dea6bf31e7f51808cf72f44b4455b77a778440795e152dc1b7bb0a5636aa4742ce4d331a47de5836539cdf289176527277b70c8162aaf6f9475418b478329f3565450acfaf07000000eab8cabfa97e35081967bb92a264b07e8003d2f15537e72a1e4ca5ec1e2aaaf8236ecdefbaf512c75e636b6b6f518ad20521f909b12e9bc97e408e0dc82f950d12705f35708bc862196abb27e8d7991b5273987f38c4706289ff4f6130cee76465d487a07a74452f87da2029bd3debd9870335d58d3fe1ac809c227aa25842f75981bc6f569ffdb10ba3f20a86d95128d13e0c778998d3b3114bfb07bd61e4bff8a5e2ce4aa572c63e09b44ca4a181bcfe4eec3ce843c65c4948169fe639a186acc2b4a96c6b8d4d2e6d53ab97bea01eab953e6e89e3af34d4ada217bc6fda0fb2095c49195d0d6f365ca80a955b9ec81240a84ef672afa369fcd097728955cf04fec692b01fadfc8e3d444ba35d0f51a0065a3b982d09dfc6874fc0d8079b185447cb8a695e132d4d613a529d9c77e2a8f7320ecf698e8a2b170fd601dc1a9767a38b10788e92d1356f6a6c1bcfb2d31b46e735db13f1be80bac1b6be04fd98610000000000000000000000000000139af5493f74751c5e2501a4936bc4a0fa516117f4ccadc692003adee0a080eba2f1059660c0ee0e9aec72d4d0fe095632e4f641b0e34c611c5b3e0ba05fa36542d40837dda323910672a9097d68398fd3539686e4288db0d6bf7cb8a1835f46dfe11865a66ef47e736dada06677a5bca133d6cbc8fe5c4557e51b006bdccd7c5f32ff1d9e8b130f77df09236870fb3de5b87b4f8acc13df534eba329b86670000000000000000b27a2616c03cdf6c009447a652bca9b325e73c0737d5b717945e4fe7a169c5e2c54fc71a4104aa7cf0f5d30e2fcd9503650edbd8a5971a9a1fde5e5df37469ae204a6e899eacc1e63034cbabc5604739881cb82604bed3e53696a0606b26b879ef232a1a038291389593d1575cb79aa8284cf01a7e1a456acab9d8d608ad69d4c4b56492af7004e7ed9d47c5db3d76a00bea7c804f3a3638408bc1636f1009b7f185f51606918eaa0ab61a19"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB='ya\x00?\b\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054) 4.408897442s ago: executing program 4 (id=3489): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000480)=[@cswp={0x58, 0x114, 0x7, {{0x8, 0x18ebc614}, &(0x7f0000000080), 0x0, 0x0, 0x6d9, 0x2, 0x6, 0x8, 0x6}}, @cswp={0x58, 0x114, 0x7, {{0x48d}, &(0x7f00000002c0), 0x0, 0xfffffffffffffff6, 0x8, 0x1b6, 0x7fff, 0x32, 0x10001}}], 0xb0}, 0x0) 4.277228574s ago: executing program 4 (id=3490): r0 = memfd_create(&(0x7f0000000180)='\b\x9dF\xd8\b\xb3~u\xa5\"\xdc\xfdq\xf6c\r;\xfcO\x8c=\x81\xb1\x8aWpA\xd4\x98\x85K\x89>N\x8ar\x17O\x0fKR\xe2{mn\xcc\xbf2\xc0\xa7\x14\xd0\xd4\xfe/m\xdf\xb6]\xc2\xaa\x86\xec(\xf7\xcd\xa6\xd9n^.\x13*\xd4\xb8\xe8\xc4\xefb\x14Vx\xc6\xfe\x9e\xee\xe7\xd7E\xe9\t\x83\xdeNX\xec\xe66\x1b\x97$\xee\x84\x14n,B\xd5?\xe5E:+Pm\x1d\xb4\xb8\xeb\xe8Op2\x82\xc7\x0e\x97\x03\xef\x1a\xa5\x00.\x89\b!m\f\xd9\x8b$}\x9f\fX\x81\xa8\xf6\x94\xbc\xed\x80|l]\xe9\xca\xd3\xc9\xa3\x9e\x9cJI\xf1\xa2\xa0\xc4:\x00\x00\x00\x00\x00\x00\b\x00\x00', 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) unshare(0x20000400) write$binfmt_misc(r2, 0x0, 0x0) splice(r1, 0x0, r0, &(0x7f0000000140)=0x8008, 0x4, 0x0) 3.288799239s ago: executing program 2 (id=3493): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, 0x0, 0x0) r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x0) fchdir(r2) r3 = open(&(0x7f0000000040)='./bus\x00', 0x143142, 0x80) ftruncate(r3, 0x2007ffb) sendfile(r3, r3, 0x0, 0x1000000201005) 3.155013572s ago: executing program 1 (id=3495): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x18) openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2000081, &(0x7f00000004c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="8e29b5c6d59d9a8fa9f1222c", @ANYRESOCT, @ANYBLOB="d90f55b2fe87bccaae179697e871353358a10c2f9b664f24e6a9112c9e2e2e3003fa09469b1b", @ANYBLOB], 0x8, 0x23e, &(0x7f0000000bc0)="$eJzs3c9qE1EUB+AzSdqmukgWrkRwQBeuStsnSJEKYldKFupCi21BklCwEGgVQ1c+gU/ic7jxDXwAoTtdFEYmSZsWUm0wf0r9vk0uzP3NOTe5Iau5eX2n1dja3ds5/PA9yuUkCrWoJUcR1ShEbiEAgOvmV5bFUdYzWrJUmFRPAMBkXfL3f3GKLQEAE/bs+Ysnaxsb60/TtBzR+tSuJ9F77V1f24m30YztWI5KHEdkp3rjR4831qOU5qpxv9Vp1/Nk69XX/v3XfkR08ytRierw/Eracybfadfn4ka/fi3Pr0Ylbg3Prw7JR30+Htw70/9SVOLbm9iNZmxFnh3kP66k6cPs88/3L/OO83zSadcXuvMGsuLUPxwAAAAAAAAAAAAAAAAAAAAAAK6tpTRN0yz7kmVZ1jl3/k7xuHt9KT1RPX8+Ty9/0flAnTPn6yznJZLe/EG+FLdLUZrl2gEAAAAAAAAAAAAAAAAAAOCq2Ns/aGw2m9vvxjo4eax//Hf+10EU+601k4gr0E93sJj3M51ad2PEWrURS0Rh/6Bxsrsam0n8JVWe0CbJhmy/4oWp+TFVn7853lUkETF3+mb+aXIh5sb8TQEAAAAAAAAAAAAAAAAAAKZs8NDvkIuHM2gIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGZg8P//Iww6/fAlUzNeIgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP+B3wEAAP//bkR7Lg==") mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r1, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0xffffff7f, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438) 2.977202004s ago: executing program 0 (id=3496): syz_io_uring_setup(0x117, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50) socket$caif_stream(0x25, 0x1, 0x1) socket$igmp(0x2, 0x3, 0x2) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f00000007c0)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\f\n5', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x10, 0x6, 0x0, @remote, @local}, {{0x4e21, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2, 0x0, 0x0, 0x100}}}}}}, 0x0) 2.936881005s ago: executing program 4 (id=3497): bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="070000000400000008000000"], 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b703000000030000850000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18) r1 = epoll_create(0x7) r2 = epoll_create1(0x0) r3 = epoll_create(0x7) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)) r4 = epoll_create1(0x0) r5 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f00000000c0)) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000100)) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r7, &(0x7f0000000080)) epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f0000000200)) 2.786050547s ago: executing program 0 (id=3498): setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1a, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='sched_switch\x00', r0, 0x0, 0xa}, 0x18) r1 = gettid() timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) openat(0xffffffffffffff9c, &(0x7f00000002c0)='./bus\x00', 0x289c2, 0x1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00'}, 0x10) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) pipe(&(0x7f00000008c0)={0xffffffffffffffff, 0xffffffffffffffff}) splice(0xffffffffffffffff, 0x0, r3, 0x0, 0x7, 0x9) read(r2, &(0x7f0000032440)=""/102364, 0x18fdc) 2.767965058s ago: executing program 4 (id=3499): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000040)) 1.97770958s ago: executing program 2 (id=3500): r0 = socket(0x28, 0x5, 0x0) bind$vsock_stream(r0, &(0x7f0000000040), 0x10) listen(r0, 0x0) r1 = accept4$unix(r0, 0x0, 0x0, 0x0) recvfrom$unix(r1, &(0x7f0000000140)=""/263, 0x107, 0x0, 0x0, 0x0) 1.839483912s ago: executing program 0 (id=3502): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x18) ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000000)=0x2) ioctl$PPPIOCSPASS(0xffffffffffffffff, 0x40107447, &(0x7f0000000140)={0x1, &(0x7f0000000080)=[{0x48, 0x0, 0x38, 0x4}]}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000000)=@req3={0xfffff800, 0xb1, 0xf, 0x0, 0x6, 0x800, 0x1af1}, 0x1c) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000400)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000001080)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffff"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) write$cgroup_devices(r4, &(0x7f00000002c0)=ANY=[@ANYBLOB="0700a3fcf070d1ff"], 0xffdd) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x4, 0x0, 0x7ffc0005}]}) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000001600)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000006000000180100006020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300003500000085000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r5}, 0x18) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r7, @ANYBLOB='ya\x00?\b\x00\x00\x00\x00\x00~'], 0x1c}}, 0x4000054) 1.717115494s ago: executing program 1 (id=3503): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x9}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10) semtimedop(0x0, 0x0, 0x0, 0x0) 1.716038884s ago: executing program 4 (id=3504): r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x7, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000791010000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)={0x300, 0x20, 0x1c}, 0x18) syz_open_dev$vcsn(&(0x7f0000000080), 0x1, 0x92040) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c0000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000ac0)='kmem_cache_free\x00', r2, 0x0, 0x1}, 0x18) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0xc0ed0040, &(0x7f00000000c0)={[{@resgid={'resgid', 0x3d, 0xee00}}, {@resgid={'resgid', 0x3d, 0xee00}}, {@acl}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x8}}, {@dioread_nolock}]}, 0xfe, 0x472, &(0x7f0000000940)="$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") r3 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) connect$inet(r3, &(0x7f0000000280)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x1}}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="440000001000090600"/20, @ANYRES32=0x0, @ANYBLOB="adffa888000000001c00128009000100626f6e64000000000c000280050001000600000008000a0079"], 0x44}}, 0x0) 1.497202727s ago: executing program 1 (id=3505): bpf$PROG_LOAD(0x5, 0x0, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c) listen(r1, 0x0) r2 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10) r3 = accept(r0, 0x0, 0x0) sendmsg$TEAM_CMD_OPTIONS_SET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}, 0x1, 0x0, 0x0, 0x840}, 0x1) recvfrom(r2, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4112, 0x0, 0x11c) sendmsg$ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x4008000) getsockopt$PNPIPE_IFINDEX(r3, 0x113, 0x2, &(0x7f0000000580), 0x0) 635.62012ms ago: executing program 2 (id=3506): r0 = memfd_create(&(0x7f0000000180)='\b\x9dF\xd8\b\xb3~u\xa5\"\xdc\xfdq\xf6c\r;\xfcO\x8c=\x81\xb1\x8aWpA\xd4\x98\x85K\x89>N\x8ar\x17O\x0fKR\xe2{mn\xcc\xbf2\xc0\xa7\x14\xd0\xd4\xfe/m\xdf\xb6]\xc2\xaa\x86\xec(\xf7\xcd\xa6\xd9n^.\x13*\xd4\xb8\xe8\xc4\xefb\x14Vx\xc6\xfe\x9e\xee\xe7\xd7E\xe9\t\x83\xdeNX\xec\xe66\x1b\x97$\xee\x84\x14n,B\xd5?\xe5E:+Pm\x1d\xb4\xb8\xeb\xe8Op2\x82\xc7\x0e\x97\x03\xef\x1a\xa5\x00.\x89\b!m\f\xd9\x8b$}\x9f\fX\x81\xa8\xf6\x94\xbc\xed\x80|l]\xe9\xca\xd3\xc9\xa3\x9e\x9cJI\xf1\xa2\xa0\xc4:\x00\x00\x00\x00\x00\x00\b\x00\x00', 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) unshare(0x20000400) write$binfmt_misc(r2, 0x0, 0x0) splice(r1, 0x0, r0, &(0x7f0000000140)=0x8008, 0x4, 0x0) 503.847332ms ago: executing program 0 (id=3507): syz_io_uring_setup(0x117, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50) socket$caif_stream(0x25, 0x1, 0x1) socket$igmp(0x2, 0x3, 0x2) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f00000007c0)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\f\n5', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x10, 0x6, 0x0, @remote, @local}, {{0x4e21, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0xc2, 0x0, 0x0, 0x100}}}}}}, 0x0) 439.818683ms ago: executing program 1 (id=3508): bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="070000000400000008000000"], 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b703000000030000850000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18) r1 = epoll_create(0x7) r2 = epoll_create1(0x0) r3 = epoll_create(0x7) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000180)) epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f00000000c0)) r4 = epoll_create1(0x0) r5 = epoll_create(0x6) epoll_ctl$EPOLL_CTL_ADD(r5, 0x1, r4, &(0x7f00000000c0)) epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f0000000100)) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r7, &(0x7f0000000080)) epoll_ctl$EPOLL_CTL_ADD(r7, 0x1, r6, &(0x7f0000000200)) 352.607415ms ago: executing program 0 (id=3509): syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x14c0e, &(0x7f00000001c0)=ANY=[@ANYBLOB="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", @ANYRESOCT], 0xfd, 0x6b1, &(0x7f0000001f80)="$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") r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="30000000000000008400000001000000"], 0x30}], 0x1, 0x0) 351.890085ms ago: executing program 1 (id=3510): syz_genetlink_get_family_id$gtp(0x0, 0xffffffffffffffff) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket(0x2a, 0x2, 0x0) sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x24}}, 0x0) getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x90, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0x60, 0x2, [@TCA_FLOWER_ACT={0x54, 0x3, [@m_connmark={0x50, 0x1, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffff8, 0xfff, 0x0, 0x200, 0xa}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}, @TCA_FLOWER_FLAGS={0x8, 0x16, 0x12}]}}]}, 0x90}, 0x1, 0x0, 0x0, 0x20000004}, 0x24000000) r4 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0) 204.921847ms ago: executing program 0 (id=3511): r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000180)=@bpf_lsm={0x6, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94) r1 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x24}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x2, 0x0, 0x4102, 0x1, 0x10000}, 0x50) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x600, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r0, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) creat(&(0x7f0000000000)='./file0\x00', 0x50) getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, &(0x7f00000000c0), 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mmap(&(0x7f0000ae8000/0x4000)=nil, 0x4000, 0x1000002, 0x4000010, r4, 0xe66ee000) r5 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000001780)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000017c0)=ANY=[@ANYBLOB="38000000031401002cbd7000000000000900020073797a30000000000800410072786500140033006c6f000000000000000000000000000053ba7e51e01af97d5cf8b865c0eeeedba39fe89294dc1087a6701be6233abdae943d6a386d40a690daff344e94ebff093cd615e1acec107c8c5744a545f809acf6bccb2e6765a5b0"], 0x38}, 0x1, 0x0, 0x0, 0x20854}, 0x0) 121.464298ms ago: executing program 1 (id=3512): recvmmsg(0xffffffffffffffff, &(0x7f0000006940)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000003c0)=""/6, 0x6}], 0x1}, 0x53}], 0x1, 0x2, 0x0) socketpair$tipc(0x1e, 0x4, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18) sendmmsg$sock(r0, &(0x7f00000044c0), 0x4000000000001c0, 0x0) recvfrom(r1, &(0x7f00000000c0)=""/60, 0x3c, 0x40, 0x0, 0x0) 0s ago: executing program 4 (id=3513): bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x7, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="b4000000000000007910480000000000a600ffff800000f195007400000000008b26680991cf7be46e92ba4de27a4391c3b6f3fc34b23fb6589be2ac17c158b20730d0e4a5e2"], &(0x7f0000003ff6)='GPL\x00', 0x8, 0xc3, &(0x7f000000cf3d)=""/195}, 0x69) kernel console output (not intermixed with test programs): 565] veth0_macvtap: entered promiscuous mode [ 423.102234][T12565] veth1_macvtap: entered promiscuous mode [ 423.157944][T12565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 423.187756][T12565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 423.215626][T12565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 423.237205][T12752] 9pnet_fd: Insufficient options for proto=fd [ 423.249116][T12565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 423.280886][T12565] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 423.323089][T12565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 423.337057][T12565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 423.349200][T12565] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 423.360247][T12565] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 423.373306][T12565] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 423.415646][T12565] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 423.428077][T12565] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 423.437174][T12565] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 423.446202][T12565] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 423.617133][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 423.642611][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 423.656204][T12762] binfmt_misc: register: failed to install interpreter file ./file2 [ 423.752523][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 423.771960][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 423.791911][T12767] lo speed is unknown, defaulting to 1000 [ 423.841937][T12762] netlink: 'syz.2.2506': attribute type 16 has an invalid length. [ 423.860179][T12762] netlink: 'syz.2.2506': attribute type 17 has an invalid length. [ 424.013303][T12762] 8021q: adding VLAN 0 to HW filter on device  [ 424.028369][T12762] 8021q: adding VLAN 0 to HW filter on device team0 [ 424.042658][T12777] 9pnet_fd: Insufficient options for proto=fd [ 424.064178][T12762] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 424.112656][T12779] sctp: [Deprecated]: syz.0.2511 (pid 12779) Use of int in max_burst socket option deprecated. [ 424.112656][T12779] Use struct sctp_assoc_value instead [ 424.130316][ T5859] lo speed is unknown, defaulting to 1000 [ 424.210003][T12783] syz.1.2512[12783] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 424.210156][T12783] syz.1.2512[12783] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 424.481688][T12787] loop3: detected capacity change from 0 to 2048 [ 424.586800][T12787] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 424.679170][T12787] EXT4-fs error (device loop3): ext4_find_extent:936: inode #2: comm syz.3.2514: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 424.750695][T12787] EXT4-fs (loop3): Remounting filesystem read-only [ 424.911390][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 425.029046][T12804] 9pnet_fd: Insufficient options for proto=fd [ 425.067309][T12806] loop3: detected capacity change from 0 to 256 [ 425.195584][T12329] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 425.205711][T12329] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 425.230259][T12329] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 425.244918][T12329] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 425.259573][T12329] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 425.269211][T12329] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 425.288325][T12812] syz.3.2523[12812] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 425.288464][T12812] syz.3.2523[12812] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 425.388883][T12815] sctp: [Deprecated]: syz.1.2524 (pid 12815) Use of int in max_burst socket option deprecated. [ 425.388883][T12815] Use struct sctp_assoc_value instead [ 425.439264][T12809] lo speed is unknown, defaulting to 1000 [ 425.494887][T12818] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2525'. [ 425.958828][T12809] chnl_net:caif_netlink_parms(): no params data found [ 425.982893][T12834] 9pnet_fd: Insufficient options for proto=fd [ 426.224557][T12809] bridge0: port 1(bridge_slave_0) entered blocking state [ 426.239358][T12843] loop3: detected capacity change from 0 to 128 [ 426.247401][T12809] bridge0: port 1(bridge_slave_0) entered disabled state [ 426.265168][T12809] bridge_slave_0: entered allmulticast mode [ 426.276615][T12809] bridge_slave_0: entered promiscuous mode [ 426.296200][T12843] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 426.298851][T12809] bridge0: port 2(bridge_slave_1) entered blocking state [ 426.327152][T12843] ext4 filesystem being mounted at /58/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 426.345209][T12809] bridge0: port 2(bridge_slave_1) entered disabled state [ 426.360887][T12809] bridge_slave_1: entered allmulticast mode [ 426.375075][T12809] bridge_slave_1: entered promiscuous mode [ 426.462513][T12843] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2532'. [ 426.476171][T12809] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 426.500341][T12850] sctp: [Deprecated]: syz.1.2534 (pid 12850) Use of int in max_burst socket option deprecated. [ 426.500341][T12850] Use struct sctp_assoc_value instead [ 426.529284][T12809] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 426.601700][T12809] team0: Port device team_slave_0 added [ 426.615865][T12809] team0: Port device team_slave_1 added [ 426.621734][T12852] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2535'. [ 426.693231][T12809] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 426.719821][T12809] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 426.759978][T12809] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 426.776404][T12809] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 426.785171][T12809] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 426.813240][T12809] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 426.955004][T12809] hsr_slave_0: entered promiscuous mode [ 426.963624][T12809] hsr_slave_1: entered promiscuous mode [ 426.973144][T12809] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 426.999124][T12809] Cannot create hsr debugfs directory [ 427.022840][T12865] 9pnet_fd: Insufficient options for proto=fd [ 427.163824][T12153] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 427.294398][T12871] sctp: [Deprecated]: syz.3.2543 (pid 12871) Use of int in max_burst socket option deprecated. [ 427.294398][T12871] Use struct sctp_assoc_value instead [ 427.302098][T12873] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2544'. [ 427.340734][T12329] Bluetooth: hci2: command tx timeout [ 427.371677][T12809] netdevsim netdevsim2 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 427.443874][T12809] netdevsim netdevsim2 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 427.530739][T12809] netdevsim netdevsim2 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 427.643002][T12809] netdevsim netdevsim2 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 427.718080][T12888] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2550'. [ 427.896999][T12809] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 427.920357][T12809] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 427.940293][T12809] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 427.954182][T12809] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 427.961174][T12894] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2552'. [ 428.103147][T12905] program syz.3.2555 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 428.207446][T12809] 8021q: adding VLAN 0 to HW filter on device bond0 [ 428.257753][T12809] 8021q: adding VLAN 0 to HW filter on device team0 [ 428.278595][ T59] bridge0: port 1(bridge_slave_0) entered blocking state [ 428.285971][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state [ 428.312632][ T59] bridge0: port 2(bridge_slave_1) entered blocking state [ 428.319883][ T59] bridge0: port 2(bridge_slave_1) entered forwarding state [ 428.719215][T12923] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2561'. [ 428.852444][T12809] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 428.969129][T12809] veth0_vlan: entered promiscuous mode [ 428.992391][T12809] veth1_vlan: entered promiscuous mode [ 429.055060][T12809] veth0_macvtap: entered promiscuous mode [ 429.082799][T12809] veth1_macvtap: entered promiscuous mode [ 429.128854][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 429.142442][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 429.156904][T12937] loop3: detected capacity change from 0 to 256 [ 429.164267][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 429.175657][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 429.205493][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 429.217164][T12937] netlink: 'syz.3.2567': attribute type 1 has an invalid length. [ 429.239056][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 429.249132][T12937] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2567'. [ 429.261482][T12809] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 429.283991][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 429.329002][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 429.349213][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 429.375848][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 429.397850][ T28] kauditd_printk_skb: 58 callbacks suppressed [ 429.397866][ T28] audit: type=1326 audit(1752294104.982:3426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12944 comm="syz.0.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 429.426713][T12329] Bluetooth: hci2: command tx timeout [ 429.426897][T12809] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 429.443025][T12809] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 429.457629][T12809] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 429.481897][ T28] audit: type=1326 audit(1752294104.982:3427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12944 comm="syz.0.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 429.514662][T12809] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 429.524144][T12809] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 429.533436][T12809] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 429.549147][T12809] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 429.558016][ T28] audit: type=1326 audit(1752294105.032:3428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12944 comm="syz.0.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 429.600283][T12945] netlink: 14 bytes leftover after parsing attributes in process `syz.0.2571'. [ 429.615879][ T28] audit: type=1326 audit(1752294105.042:3429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12944 comm="syz.0.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 429.643542][ T28] audit: type=1326 audit(1752294105.062:3430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12944 comm="syz.0.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 429.656041][T12951] netlink: 80 bytes leftover after parsing attributes in process `syz.3.2572'. [ 429.666202][ T28] audit: type=1326 audit(1752294105.062:3431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12944 comm="syz.0.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 429.666255][ T28] audit: type=1326 audit(1752294105.062:3432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12944 comm="syz.0.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 429.666328][ T28] audit: type=1326 audit(1752294105.062:3433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12944 comm="syz.0.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 429.760043][ T28] audit: type=1326 audit(1752294105.062:3434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12944 comm="syz.0.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 429.783224][ T28] audit: type=1326 audit(1752294105.062:3435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12944 comm="syz.0.2571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f9ce338e963 code=0x7ffc0000 [ 429.986823][T12945] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 430.011915][T12945] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 430.033645][T12945] bond0 (unregistering): Released all slaves [ 430.299960][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 430.324564][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 430.384787][T12963] loop3: detected capacity change from 0 to 1024 [ 430.408350][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 430.422708][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 430.434779][T12963] EXT4-fs: Ignoring removed nomblk_io_submit option [ 430.472128][T12963] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 430.527478][T12963] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 430.554688][T12972] loop2: detected capacity change from 0 to 128 [ 430.717402][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 430.887094][T12972] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 431.014032][T12977] netlink: 80 bytes leftover after parsing attributes in process `syz.0.2580'. [ 431.174144][T12980] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2581'. [ 431.499296][T12329] Bluetooth: hci2: command tx timeout [ 432.259471][T12997] sctp: [Deprecated]: syz.3.2589 (pid 12997) Use of int in max_burst socket option deprecated. [ 432.259471][T12997] Use struct sctp_assoc_value instead [ 432.723049][T13002] lo speed is unknown, defaulting to 1000 [ 433.555481][T13011] loop3: detected capacity change from 0 to 1024 [ 433.570635][T13011] EXT4-fs: Ignoring removed nomblk_io_submit option [ 433.599642][T12329] Bluetooth: hci2: command tx timeout [ 433.615993][T13011] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 433.664339][T13011] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 433.803491][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 433.853839][T13017] loop2: detected capacity change from 0 to 512 [ 433.861259][T13017] EXT4-fs: Ignoring removed mblk_io_submit option [ 433.872917][T13017] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 433.903837][T13019] binfmt_misc: register: failed to install interpreter file ./file2 [ 433.909121][T13017] EXT4-fs (loop2): 1 truncate cleaned up [ 433.925191][T13017] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 434.033843][T13019] lo speed is unknown, defaulting to 1000 [ 434.080695][T12809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 434.158571][T13023] netlink: 'syz.0.2596': attribute type 16 has an invalid length. [ 434.175952][T13023] netlink: 'syz.0.2596': attribute type 17 has an invalid length. [ 434.457129][T13032] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2594'. [ 434.479290][ T28] kauditd_printk_skb: 228 callbacks suppressed [ 434.479335][ T28] audit: type=1326 audit(1752294109.982:3664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13021 comm="syz.1.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 434.622244][T13023] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 434.915216][ T28] audit: type=1326 audit(1752294109.982:3665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13021 comm="syz.1.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 434.972554][T13032] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12 [ 434.982143][T13032] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12 [ 434.991848][T13032] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 434.992478][ T28] audit: type=1326 audit(1752294109.982:3666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13021 comm="syz.1.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 435.085025][ T28] audit: type=1326 audit(1752294109.992:3667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13021 comm="syz.1.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 435.115548][ T28] audit: type=1326 audit(1752294109.992:3668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13021 comm="syz.1.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 435.139090][ T28] audit: type=1326 audit(1752294109.992:3669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13021 comm="syz.1.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 435.213414][ T28] audit: type=1326 audit(1752294109.992:3670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13021 comm="syz.1.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 435.282413][ T28] audit: type=1326 audit(1752294109.992:3671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13021 comm="syz.1.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 435.305951][ T28] audit: type=1326 audit(1752294110.002:3672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13021 comm="syz.1.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 435.334117][ T28] audit: type=1326 audit(1752294110.002:3673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13021 comm="syz.1.2594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 436.064648][T13067] loop2: detected capacity change from 0 to 256 [ 436.452065][ T5831] Process accounting resumed [ 436.618250][T13087] loop0: detected capacity change from 0 to 512 [ 436.669510][T13087] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 436.726625][T13087] EXT4-fs (loop0): 1 truncate cleaned up [ 436.740452][T13087] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 436.833455][T12327] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 437.317456][T13109] loop2: detected capacity change from 0 to 2048 [ 437.337400][T13109] EXT4-fs: Ignoring removed mblk_io_submit option [ 437.461252][T13109] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 437.637290][T13121] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2632'. [ 438.036451][T13122] lo speed is unknown, defaulting to 1000 [ 438.181066][T12809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 438.747914][T13140] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2643'. [ 439.609258][T13146] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2646'. [ 439.812593][T13149] loop0: detected capacity change from 0 to 2048 [ 439.842033][T13149] EXT4-fs (loop0): failed to initialize system zone (-117) [ 439.855736][T13149] EXT4-fs (loop0): mount failed [ 439.999761][ T28] kauditd_printk_skb: 224 callbacks suppressed [ 439.999778][ T28] audit: type=1326 audit(1752294115.592:3898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 440.033457][T13162] 9pnet_fd: Insufficient options for proto=fd [ 440.129415][ T28] audit: type=1326 audit(1752294115.622:3899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 440.215777][ T28] audit: type=1326 audit(1752294115.632:3900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 440.246960][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.258598][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.285596][ T28] audit: type=1326 audit(1752294115.632:3901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 440.349877][ T28] audit: type=1326 audit(1752294115.632:3902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 440.376711][ T28] audit: type=1326 audit(1752294115.632:3903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 440.399847][ T28] audit: type=1326 audit(1752294115.632:3904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 440.422667][ T28] audit: type=1326 audit(1752294115.632:3905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13157 comm="syz.2.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 440.619532][ T28] audit: type=1326 audit(1752294116.202:3906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13175 comm="syz.0.2658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 440.636601][T13176] loop0: detected capacity change from 0 to 1024 [ 440.661227][T13176] EXT4-fs: Ignoring removed nomblk_io_submit option [ 440.686161][ T28] audit: type=1326 audit(1752294116.202:3907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13175 comm="syz.0.2658" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 440.825733][T13177] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2656'. [ 440.952556][T13176] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 441.352449][T13176] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 441.563425][T12327] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 441.665552][T13188] loop2: detected capacity change from 0 to 1024 [ 441.673593][T13188] EXT4-fs: Ignoring removed nobh option [ 441.680386][T13188] EXT4-fs: inline encryption not supported [ 441.687066][T13188] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 441.707689][T13190] veth0_to_hsr: entered allmulticast mode [ 441.733016][T13188] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 441.841041][T13188] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4036: comm syz.2.2663: Allocating blocks 385-513 which overlap fs metadata [ 441.924452][T13188] EXT4-fs (loop2): pa ffff888057f2fbc8: logic 16, phys. 129, len 24 [ 441.932722][T13188] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5377: group 0, free 0, pa_free 8 [ 442.012108][T12809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 443.114953][T13214] loop0: detected capacity change from 0 to 256 [ 443.161587][T13212] loop2: detected capacity change from 0 to 1024 [ 443.186560][T13212] EXT4-fs: Ignoring removed nomblk_io_submit option [ 443.223015][T13212] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 443.324370][T13212] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 443.356913][T13220] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.2673' sets config #1 [ 443.432185][T13221] (null): rxe_set_mtu: Set mtu to 4096 [ 443.441759][T13221] rdma_rxe: rxe_newlink: failed to add lo [ 444.222388][T12809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 444.843356][T13235] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2677'. [ 445.484760][T13238] netlink: 'syz.0.2680': attribute type 1 has an invalid length. [ 445.493781][T13238] netlink: 236 bytes leftover after parsing attributes in process `syz.0.2680'. [ 445.510311][T13239] loop2: detected capacity change from 0 to 256 [ 445.685754][ T7730] hid-generic 0003:0004:0000.0016: unknown main item tag 0x0 [ 445.694069][ T7730] hid-generic 0003:0004:0000.0016: unknown main item tag 0x0 [ 445.702329][ T7730] hid-generic 0003:0004:0000.0016: unknown main item tag 0x0 [ 445.712979][ T7730] hid-generic 0003:0004:0000.0016: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 445.782082][ T28] kauditd_printk_skb: 162 callbacks suppressed [ 445.782098][ T28] audit: type=1326 audit(1752294121.372:4070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13245 comm="syz.3.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 445.820898][ T28] audit: type=1326 audit(1752294121.372:4071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13245 comm="syz.3.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 445.902975][ T28] audit: type=1326 audit(1752294121.372:4072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13245 comm="syz.3.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 445.954246][ T28] audit: type=1326 audit(1752294121.372:4073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13245 comm="syz.3.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 446.006401][ T28] audit: type=1326 audit(1752294121.372:4074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13245 comm="syz.3.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 446.038165][ T28] audit: type=1326 audit(1752294121.372:4075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13245 comm="syz.3.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 446.100076][ T28] audit: type=1326 audit(1752294121.372:4076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13245 comm="syz.3.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 446.127093][ T28] audit: type=1326 audit(1752294121.372:4077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13245 comm="syz.3.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 446.151634][ T28] audit: type=1326 audit(1752294121.442:4078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13245 comm="syz.3.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 446.186696][ T28] audit: type=1326 audit(1752294121.442:4079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13245 comm="syz.3.2685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 446.770796][T13281] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2694'. [ 447.649225][T13288] loop2: detected capacity change from 0 to 128 [ 447.673089][T13288] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 447.752744][T13288] ext4 filesystem being mounted at /31/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 447.844618][T13297] loop3: detected capacity change from 0 to 1024 [ 447.853049][T13297] EXT4-fs: Ignoring removed nomblk_io_submit option [ 447.861338][T13297] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 447.911352][T12809] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 447.941841][T13297] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 448.022255][T13302] loop2: detected capacity change from 0 to 512 [ 448.079141][T13302] EXT4-fs (loop2): 1 orphan inode deleted [ 448.109807][T13302] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 448.135313][ T12] EXT4-fs error (device loop2): ext4_release_dquot:6974: comm kworker/u4:1: Failed to release dquot type 1 [ 448.174930][T13302] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 448.197655][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 448.365454][T12809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 448.492651][T13312] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2714'. [ 448.546079][T13315] loop3: detected capacity change from 0 to 256 [ 448.847338][T13328] sctp: [Deprecated]: syz.0.2719 (pid 13328) Use of int in max_burst socket option deprecated. [ 448.847338][T13328] Use struct sctp_assoc_value instead [ 448.919795][T13327] loop3: detected capacity change from 0 to 1024 [ 448.943669][T13327] EXT4-fs: Ignoring removed nomblk_io_submit option [ 448.962522][T13327] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 449.028207][T13327] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 449.077369][T13338] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2724'. [ 450.155390][T13347] netlink: 'syz.0.2727': attribute type 298 has an invalid length. [ 450.280837][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 450.402875][T13355] sctp: [Deprecated]: syz.1.2732 (pid 13355) Use of int in max_burst socket option deprecated. [ 450.402875][T13355] Use struct sctp_assoc_value instead [ 450.654930][T13368] xt_hashlimit: size too large, truncated to 1048576 [ 450.678629][T13368] xt_hashlimit: Unknown mode mask 80FF, kernel too old? [ 450.694220][T13369] loop3: detected capacity change from 0 to 256 [ 451.075856][T13381] sctp: [Deprecated]: syz.3.2741 (pid 13381) Use of int in max_burst socket option deprecated. [ 451.075856][T13381] Use struct sctp_assoc_value instead [ 451.776498][T13403] sctp: [Deprecated]: syz.3.2751 (pid 13403) Use of int in max_burst socket option deprecated. [ 451.776498][T13403] Use struct sctp_assoc_value instead [ 452.547049][T13408] loop2: detected capacity change from 0 to 128 [ 452.600789][T13408] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 452.645863][T13408] ext4 filesystem being mounted at /41/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 452.711208][T12809] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 452.855694][T13422] loop3: detected capacity change from 0 to 128 [ 453.070526][T13431] sctp: [Deprecated]: syz.2.2763 (pid 13431) Use of int in max_burst socket option deprecated. [ 453.070526][T13431] Use struct sctp_assoc_value instead [ 453.296605][T13439] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 453.749871][T13453] netlink: 'syz.1.2772': attribute type 1 has an invalid length. [ 453.848807][T13453] 8021q: adding VLAN 0 to HW filter on device bond1 [ 454.068168][ T28] kauditd_printk_skb: 198 callbacks suppressed [ 454.068185][ T28] audit: type=1326 audit(1752294129.652:4277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.2776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 454.117818][ T28] audit: type=1326 audit(1752294129.692:4278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.2776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 454.179511][ T28] audit: type=1326 audit(1752294129.692:4279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.2776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 454.247648][ T28] audit: type=1326 audit(1752294129.692:4280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.2776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 454.308741][ T28] audit: type=1326 audit(1752294129.692:4281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.2776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 454.539366][ T28] audit: type=1326 audit(1752294129.692:4282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.2776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 455.723759][T13471] syz.2.2777[13471] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 455.723896][T13471] syz.2.2777[13471] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 455.775668][T13472] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2778'. [ 455.780384][T13471] can0: slcan on ttyS3. [ 456.087070][ T28] audit: type=1326 audit(1752294129.692:4283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.2776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 456.403488][ T28] audit: type=1326 audit(1752294129.692:4284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.2776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 456.713052][ T28] audit: type=1326 audit(1752294129.692:4285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.2776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 457.057632][ T28] audit: type=1326 audit(1752294129.692:4286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13462 comm="syz.2.2776" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 457.650252][T13464] can0 (unregistered): slcan off ttyS3. [ 458.368235][T13498] netlink: 'syz.0.2789': attribute type 10 has an invalid length. [ 458.376344][T13498] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2789'. [ 458.394732][T13498] dummy0: entered promiscuous mode [ 458.401222][T13498] bridge0: port 3(dummy0) entered blocking state [ 458.407806][T13498] bridge0: port 3(dummy0) entered disabled state [ 458.414759][T13498] dummy0: entered allmulticast mode [ 458.423186][T13498] bridge0: port 3(dummy0) entered blocking state [ 458.429795][T13498] bridge0: port 3(dummy0) entered forwarding state [ 459.114740][ T28] kauditd_printk_skb: 143 callbacks suppressed [ 459.114756][ T28] audit: type=1326 audit(1752294134.702:4430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13513 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 459.148617][ T28] audit: type=1326 audit(1752294134.732:4431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13513 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 459.174842][ T28] audit: type=1326 audit(1752294134.762:4432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13513 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 459.200095][ T28] audit: type=1326 audit(1752294134.762:4433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13513 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 459.225017][ T28] audit: type=1326 audit(1752294134.762:4434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13513 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 459.248237][ T28] audit: type=1326 audit(1752294134.782:4435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13513 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 459.275845][ T28] audit: type=1326 audit(1752294134.862:4436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13513 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 459.300298][ T28] audit: type=1326 audit(1752294134.862:4437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13513 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 459.323511][ T28] audit: type=1326 audit(1752294134.892:4438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13513 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 459.376618][ T28] audit: type=1326 audit(1752294134.892:4439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13513 comm="syz.3.2797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 459.662210][T13529] loop2: detected capacity change from 0 to 512 [ 459.677448][T13529] EXT4-fs: quotafile must be on filesystem root [ 459.725317][T13532] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2804'. [ 459.909374][T13537] syz.1.2805[13537] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 459.909520][T13537] syz.1.2805[13537] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 460.701425][T13561] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2814'. [ 461.460443][T13564] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2818'. [ 461.659063][T13564] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2818'. [ 462.198572][ T6921] nci: nci_add_new_protocol: the target found does not have the desired protocol [ 463.129838][T13601] (null): rxe_set_mtu: Set mtu to 4096 [ 463.137853][T13601] rdma_rxe: rxe_newlink: failed to add lo [ 463.868295][T13606] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2832'. [ 463.913372][T13606] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 463.930025][T13606] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 463.958134][T13606] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 464.012775][T13606] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 464.124275][T13614] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2836'. [ 464.672641][T13637] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2847'. [ 464.814455][T13638] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2843'. [ 464.911298][ T28] kauditd_printk_skb: 170 callbacks suppressed [ 464.911335][ T28] audit: type=1326 audit(1752294140.332:4610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.3.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 465.448443][ T28] audit: type=1326 audit(1752294140.332:4611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.3.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 465.474974][ T28] audit: type=1326 audit(1752294140.342:4612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.3.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 465.525310][ T28] audit: type=1326 audit(1752294140.342:4613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.3.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 465.550113][ T28] audit: type=1326 audit(1752294140.342:4614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.3.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 465.624184][ T28] audit: type=1326 audit(1752294140.342:4615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.3.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 465.647992][ T28] audit: type=1326 audit(1752294140.342:4616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.3.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 465.695323][ T28] audit: type=1326 audit(1752294140.352:4617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.3.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 465.724929][ T28] audit: type=1326 audit(1752294140.352:4618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.3.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 465.757602][ T28] audit: type=1326 audit(1752294140.352:4619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13624 comm="syz.3.2843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 465.923524][T13652] netlink: 240 bytes leftover after parsing attributes in process `syz.2.2852'. [ 465.943386][T13652] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2852'. [ 466.121543][T13662] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2857'. [ 466.362314][T13672] loop3: detected capacity change from 0 to 128 [ 466.632435][T13682] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2867'. [ 467.186714][T13689] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 468.853469][T13699] Process accounting resumed [ 469.434266][T13713] loop3: detected capacity change from 0 to 1024 [ 470.250870][T13716] lo speed is unknown, defaulting to 1000 [ 471.588463][T13713] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 471.646865][T13713] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 471.659343][ T28] kauditd_printk_skb: 432 callbacks suppressed [ 471.659358][ T28] audit: type=1326 audit(1752294147.232:5052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13720 comm="syz.2.2881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 471.716177][ T28] audit: type=1326 audit(1752294147.232:5053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13720 comm="syz.2.2881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 471.739525][ T28] audit: type=1326 audit(1752294147.232:5054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13720 comm="syz.2.2881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 471.762973][ T28] audit: type=1326 audit(1752294147.232:5055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13720 comm="syz.2.2881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 471.787598][T13713] JBD2: no valid journal superblock found [ 471.800330][T13713] EXT4-fs (loop3): Could not load journal inode [ 471.847760][T13725] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2883'. [ 471.857272][T13725] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 471.865410][T13725] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 471.880876][T13725] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 471.895520][T13725] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 471.910235][ T28] audit: type=1326 audit(1752294147.232:5056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13720 comm="syz.2.2881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 471.961903][ T28] audit: type=1326 audit(1752294147.232:5057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13720 comm="syz.2.2881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 471.986441][ T28] audit: type=1326 audit(1752294147.232:5058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13720 comm="syz.2.2881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 472.014867][ T28] audit: type=1326 audit(1752294147.232:5059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13720 comm="syz.2.2881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 472.039108][ T28] audit: type=1326 audit(1752294147.242:5060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13720 comm="syz.2.2881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 472.076013][ T28] audit: type=1326 audit(1752294147.242:5061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13720 comm="syz.2.2881" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 472.290710][T13728] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2882'. [ 473.087919][T13735] sctp: [Deprecated]: syz.1.2886 (pid 13735) Use of int in max_burst socket option deprecated. [ 473.087919][T13735] Use struct sctp_assoc_value instead [ 473.275228][T13743] netlink: 5 bytes leftover after parsing attributes in process `syz.1.2890'. [ 473.286916][T13743] 0XD: renamed from gretap0 (while UP) [ 473.297987][T13743] 0XD: entered allmulticast mode [ 473.305509][T13743] A link change request failed with some changes committed already. Interface 30XD may have been left with an inconsistent configuration, please check. [ 473.376891][T13747] loop3: detected capacity change from 0 to 128 [ 474.615539][T13753] Process accounting resumed [ 474.787881][T13758] lo speed is unknown, defaulting to 1000 [ 474.805553][T13759] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 474.884356][T13762] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2896'. [ 475.139554][T13768] sctp: [Deprecated]: syz.2.2898 (pid 13768) Use of int in max_burst socket option deprecated. [ 475.139554][T13768] Use struct sctp_assoc_value instead [ 475.414044][T13775] mmap: syz.2.2902 (13775) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 475.533989][T13778] loop2: detected capacity change from 0 to 512 [ 475.587891][T13778] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 475.620080][T13778] ext4 filesystem being mounted at /84/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 475.674381][T13778] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.2902: corrupted inode contents [ 475.747219][T13778] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #2: comm syz.2.2902: mark_inode_dirty error [ 475.796639][T13778] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.2902: corrupted inode contents [ 475.829765][T13784] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.2902: corrupted inode contents [ 475.855642][T13784] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #2: comm syz.2.2902: mark_inode_dirty error [ 475.884891][T13784] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.2902: corrupted inode contents [ 475.910926][T13784] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.2902: mark_inode_dirty error [ 475.936473][T13784] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.2902: corrupted inode contents [ 475.965113][T13784] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #2: comm syz.2.2902: mark_inode_dirty error [ 476.596425][T13795] (null): rxe_set_mtu: Set mtu to 4096 [ 476.604790][T13795] rdma_rxe: rxe_newlink: failed to add lo [ 477.630626][T13805] sctp: [Deprecated]: syz.3.2909 (pid 13805) Use of int in max_burst socket option deprecated. [ 477.630626][T13805] Use struct sctp_assoc_value instead [ 477.665001][T13775] syz.2.2902: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1 [ 477.702374][T13805] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2909'. [ 477.714493][T13775] CPU: 0 PID: 13775 Comm: syz.2.2902 Not tainted 6.6.97-syzkaller #0 [ 477.722645][T13775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 477.732758][T13775] Call Trace: [ 477.736082][T13775] [ 477.739055][T13775] dump_stack_lvl+0x16c/0x230 [ 477.743796][T13775] ? show_regs_print_info+0x20/0x20 [ 477.749054][T13775] ? load_image+0x3b0/0x3b0 [ 477.753634][T13775] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 477.760117][T13775] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 477.766681][T13775] warn_alloc+0x210/0x300 [ 477.771070][T13775] ? zone_watermark_ok_safe+0x230/0x230 [ 477.776676][T13775] ? _raw_spin_unlock+0x28/0x40 [ 477.781594][T13775] __vmalloc_node_range+0x662/0x1320 [ 477.786966][T13775] ? free_vm_area+0x50/0x50 [ 477.791520][T13775] ? _raw_spin_unlock+0x28/0x40 [ 477.796414][T13775] ? __kasan_kmalloc+0x8f/0xa0 [ 477.801230][T13775] __vmalloc_node_range+0x568/0x1320 [ 477.806563][T13775] ? hash_netiface_create+0x361/0xff0 [ 477.811985][T13775] ? __asan_memset+0x22/0x40 [ 477.816653][T13775] ? free_vm_area+0x50/0x50 [ 477.821211][T13775] ? kvmalloc_node+0x70/0x180 [ 477.825927][T13775] ? rcu_is_watching+0x15/0xb0 [ 477.830720][T13775] ? kvmalloc_node+0x70/0x180 [ 477.835423][T13775] ? trace_kmalloc+0x1f/0xa0 [ 477.840036][T13775] kvmalloc_node+0x13f/0x180 [ 477.844659][T13775] ? hash_netiface_create+0x361/0xff0 [ 477.850061][T13775] hash_netiface_create+0x361/0xff0 [ 477.855284][T13775] ? __lock_acquire+0x7c80/0x7c80 [ 477.860334][T13775] ? __nla_parse+0x40/0x50 [ 477.864766][T13775] ? hash_netport6_gc+0x570/0x570 [ 477.869821][T13775] ip_set_create+0xa87/0x18e0 [ 477.874517][T13775] ? ip_set_create+0x4b2/0x18e0 [ 477.879389][T13775] ? ip_set_protocol+0x5d0/0x5d0 [ 477.884341][T13775] ? trace_contention_end+0x39/0xe0 [ 477.889672][T13775] nfnetlink_rcv_msg+0xb49/0x1130 [ 477.894720][T13775] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 477.900827][T13775] ? nfnetlink_rcv_msg+0x20e/0x1130 [ 477.906072][T13775] ? nfnetlink_unbind+0x160/0x160 [ 477.911144][T13775] ? __dev_queue_xmit+0x1a64/0x35a0 [ 477.916360][T13775] ? __netlink_deliver_tap+0x5ab/0x830 [ 477.921844][T13775] ? netlink_deliver_tap+0x19c/0x1b0 [ 477.927155][T13775] ? netlink_unicast+0x72b/0x8c0 [ 477.932116][T13775] ? netlink_sendmsg+0x8c1/0xbe0 [ 477.937075][T13775] ? ____sys_sendmsg+0x5bf/0x950 [ 477.942025][T13775] ? ___sys_sendmsg+0x220/0x290 [ 477.946886][T13775] ? __se_sys_sendmsg+0x1a5/0x270 [ 477.951939][T13775] ? do_syscall_64+0x55/0xb0 [ 477.956581][T13775] netlink_rcv_skb+0x216/0x480 [ 477.961387][T13775] ? nfnetlink_unbind+0x160/0x160 [ 477.966458][T13775] ? netlink_ack+0x1110/0x1110 [ 477.971264][T13775] ? apparmor_capable+0x137/0x1a0 [ 477.976316][T13775] ? bpf_lsm_capable+0x9/0x10 [ 477.981099][T13775] ? security_capable+0x89/0xb0 [ 477.985994][T13775] nfnetlink_rcv+0x274/0x2180 [ 477.990703][T13775] ? __local_bh_enable_ip+0x12e/0x1c0 [ 477.996097][T13775] ? lockdep_hardirqs_on+0x98/0x150 [ 478.001322][T13775] ? __local_bh_enable_ip+0x12e/0x1c0 [ 478.006711][T13775] ? _local_bh_enable+0xa0/0xa0 [ 478.011583][T13775] ? __dev_queue_xmit+0x245/0x35a0 [ 478.016720][T13775] ? nfnetlink_net_exit_batch+0xa0/0xa0 [ 478.022306][T13775] ? __dev_queue_xmit+0x245/0x35a0 [ 478.027452][T13775] ? ref_tracker_free+0x634/0x7d0 [ 478.032503][T13775] ? __copy_skb_header+0xa7/0x550 [ 478.037849][T13775] ? refcount_inc+0x70/0x70 [ 478.042389][T13775] ? __skb_clone+0x63/0x790 [ 478.046927][T13775] ? __skb_clone+0x480/0x790 [ 478.051556][T13775] ? __netlink_deliver_tap+0x7e8/0x830 [ 478.057044][T13775] ? netlink_deliver_tap+0x2e/0x1b0 [ 478.062282][T13775] ? __lock_acquire+0x7c80/0x7c80 [ 478.067342][T13775] ? netlink_deliver_tap+0x2e/0x1b0 [ 478.072599][T13775] netlink_unicast+0x750/0x8c0 [ 478.077405][T13775] netlink_sendmsg+0x8c1/0xbe0 [ 478.082200][T13775] ? netlink_getsockopt+0x580/0x580 [ 478.087430][T13775] ? aa_sock_msg_perm+0x94/0x150 [ 478.092389][T13775] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 478.097703][T13775] ? security_socket_sendmsg+0x80/0xa0 [ 478.103182][T13775] ? netlink_getsockopt+0x580/0x580 [ 478.108407][T13775] ____sys_sendmsg+0x5bf/0x950 [ 478.113190][T13775] ? __asan_memset+0x22/0x40 [ 478.117810][T13775] ? __sys_sendmsg_sock+0x30/0x30 [ 478.122849][T13775] ? __import_iovec+0x5f2/0x860 [ 478.127733][T13775] ? import_iovec+0x73/0xa0 [ 478.132454][T13775] ___sys_sendmsg+0x220/0x290 [ 478.137281][T13775] ? __sys_sendmsg+0x270/0x270 [ 478.142108][T13775] ? debug_mutex_init+0x38/0x70 [ 478.147028][T13775] __se_sys_sendmsg+0x1a5/0x270 [ 478.151923][T13775] ? __x64_sys_sendmsg+0x80/0x80 [ 478.156901][T13775] ? lockdep_hardirqs_on+0x98/0x150 [ 478.162170][T13775] do_syscall_64+0x55/0xb0 [ 478.166631][T13775] ? clear_bhb_loop+0x40/0x90 [ 478.171337][T13775] ? clear_bhb_loop+0x40/0x90 [ 478.176045][T13775] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 478.181974][T13775] RIP: 0033:0x7f29b7f8e929 [ 478.186413][T13775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 478.206130][T13775] RSP: 002b:00007f29b8ee7038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 478.214667][T13775] RAX: ffffffffffffffda RBX: 00007f29b81b5fa0 RCX: 00007f29b7f8e929 [ 478.222657][T13775] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000008 [ 478.230647][T13775] RBP: 00007f29b8010b39 R08: 0000000000000000 R09: 0000000000000000 [ 478.238635][T13775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 478.246641][T13775] R13: 0000000000000000 R14: 00007f29b81b5fa0 R15: 00007ffef502abd8 [ 478.254658][T13775] [ 478.318396][T13808] syzkaller1: entered promiscuous mode [ 478.326514][T13808] syzkaller1: entered allmulticast mode [ 478.337262][T13775] Mem-Info: [ 478.344892][T13775] active_anon:4714 inactive_anon:0 isolated_anon:0 [ 478.344892][T13775] active_file:16405 inactive_file:40409 isolated_file:0 [ 478.344892][T13775] unevictable:768 dirty:130 writeback:0 [ 478.344892][T13775] slab_reclaimable:11241 slab_unreclaimable:102319 [ 478.344892][T13775] mapped:26201 shmem:1427 pagetables:527 [ 478.344892][T13775] sec_pagetables:0 bounce:0 [ 478.344892][T13775] kernel_misc_reclaimable:0 [ 478.344892][T13775] free:1299838 free_pcp:9424 free_cma:0 [ 478.423265][T13775] Node 0 active_anon:19456kB inactive_anon:0kB active_file:65620kB inactive_file:161436kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:104804kB dirty:516kB writeback:0kB shmem:4172kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12656kB pagetables:2108kB sec_pagetables:0kB all_unreclaimable? no [ 478.474805][T13775] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 478.506212][T13775] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 478.533668][T13775] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 478.540657][T13775] Node 0 DMA32 free:1283188kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:19708kB inactive_anon:0kB active_file:65620kB inactive_file:160112kB unevictable:1536kB writepending:516kB present:3129332kB managed:2589592kB mlocked:0kB bounce:0kB free_pcp:21172kB local_pcp:19932kB free_cma:0kB [ 478.588928][T13775] lowmem_reserve[]: 0 0 1 1 1 [ 478.593741][T13775] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1324kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 478.646672][T13775] lowmem_reserve[]: 0 0 0 0 0 [ 478.662713][T13775] Node 1 Normal free:3900548kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:16356kB local_pcp:5120kB free_cma:0kB [ 478.734021][T13775] lowmem_reserve[]: 0 0 0 0 0 [ 478.749836][T13775] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 478.793504][T13775] Node 0 DMA32: 324*4kB (ME) 245*8kB (UME) 946*16kB (ME) 1013*32kB (UME) 532*64kB (ME) 276*128kB (UME) 128*256kB (UM) 59*512kB (UME) 22*1024kB (UME) 6*2048kB (UME) 260*4096kB (M) = 1282936kB [ 478.817970][T13775] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 478.841918][T13775] Node 1 Normal: 231*4kB (UE) 71*8kB (UE) 43*16kB (UE) 136*32kB (UE) 30*64kB (UME) 9*128kB (UME) 3*256kB (UE) 2*512kB (UM) 2*1024kB (UE) 2*2048kB (UE) 948*4096kB (M) = 3900548kB [ 478.868238][T13775] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 478.912915][T13775] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 478.924246][T13775] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 478.937589][T13775] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 478.953843][T13775] 58239 total pagecache pages [ 478.958599][T13775] 0 pages in swap cache [ 478.965203][T13775] Free swap = 124448kB [ 478.972954][T13775] Total swap = 124996kB [ 478.977272][T13775] 2097051 pages RAM [ 478.982855][T13775] 0 pages HighMem/MovableOnly [ 478.987825][T13816] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2914'. [ 479.002594][T13775] 416139 pages reserved [ 479.006804][T13775] 0 pages cma reserved [ 480.693528][T13825] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 480.746385][T13825] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2917'. [ 482.738268][T12809] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 482.886713][ T28] kauditd_printk_skb: 138 callbacks suppressed [ 482.886729][ T28] audit: type=1326 audit(1752294158.472:5200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13837 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 482.958240][ T28] audit: type=1326 audit(1752294158.502:5201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13837 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 482.984239][ T28] audit: type=1326 audit(1752294158.522:5202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13837 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 483.007178][ T28] audit: type=1326 audit(1752294158.522:5203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13837 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 483.033459][ T28] audit: type=1326 audit(1752294158.522:5204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13837 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 483.134037][T13845] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 483.171950][ T28] audit: type=1326 audit(1752294158.522:5205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13837 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 483.469211][ T28] audit: type=1326 audit(1752294158.522:5206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13837 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 483.614514][ T28] audit: type=1326 audit(1752294158.522:5207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13837 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 483.685906][ T28] audit: type=1326 audit(1752294158.522:5208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13837 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 483.783184][ T28] audit: type=1326 audit(1752294158.522:5209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13837 comm="syz.1.2924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 483.953883][T13851] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 484.166674][T13862] netlink: 'syz.1.2932': attribute type 13 has an invalid length. [ 484.254309][T13851] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 485.217449][T13851] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 485.439827][T13851] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 485.727107][T13883] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 486.273196][T13851] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 486.351136][T13851] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 486.437886][T13851] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 486.459879][T13851] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 486.987670][T13911] loop3: detected capacity change from 0 to 128 [ 487.105418][T13912] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 487.157838][T13912] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2948'. [ 488.041564][T13914] loop9: detected capacity change from 0 to 7 [ 488.060873][T13918] xt_TPROXY: Can be used only with -p tcp or -p udp [ 488.069949][ C1] blk_print_req_error: 2 callbacks suppressed [ 488.069966][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 488.085337][ C1] buffer_io_error: 2 callbacks suppressed [ 488.085353][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 488.107128][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 488.116386][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 488.132040][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 488.141307][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 488.152398][T13920] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 488.190772][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 488.200039][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 488.213026][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 488.222349][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 488.231982][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 488.241224][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 488.250545][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 488.259794][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 488.277326][T13914] ldm_validate_partition_table(): Disk read failed. [ 488.288521][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 488.297802][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 488.310855][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 488.320172][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 488.329042][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 488.338254][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 488.348467][T13914] Dev loop9: unable to read RDB block 0 [ 488.363093][T13914] loop9: unable to read partition table [ 488.382460][T13914] loop9: partition table beyond EOD, truncated [ 488.427462][T13914] loop_reread_partitions: partition scan of loop9 (被xڬdGݡ [ 488.427462][T13914] ) failed (rc=-5) [ 488.478737][T13918] wireguard0: entered promiscuous mode [ 488.598399][T13921] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 488.907553][T13931] syzkaller1: entered promiscuous mode [ 488.919230][T13931] syzkaller1: entered allmulticast mode [ 488.997970][T13939] loop3: detected capacity change from 0 to 512 [ 489.006129][T13939] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 489.017392][T13937] netlink: 'syz.2.2963': attribute type 13 has an invalid length. [ 489.027863][ T28] kauditd_printk_skb: 247 callbacks suppressed [ 489.027878][ T28] audit: type=1326 audit(1752294164.622:5457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13936 comm="syz.2.2963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 489.040859][T13939] EXT4-fs (loop3): 1 truncate cleaned up [ 489.067865][ T28] audit: type=1326 audit(1752294164.622:5458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13936 comm="syz.2.2963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 489.092062][ T28] audit: type=1326 audit(1752294164.622:5459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13936 comm="syz.2.2963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 489.112108][T13939] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 489.115101][ T28] audit: type=1326 audit(1752294164.622:5460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13936 comm="syz.2.2963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 489.149499][ T28] audit: type=1326 audit(1752294164.622:5461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13936 comm="syz.2.2963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 489.179539][ T28] audit: type=1326 audit(1752294164.622:5462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13936 comm="syz.2.2963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 489.212760][ T28] audit: type=1326 audit(1752294164.622:5463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13936 comm="syz.2.2963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 489.244557][ T28] audit: type=1326 audit(1752294164.622:5464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13936 comm="syz.2.2963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 489.269104][ T28] audit: type=1326 audit(1752294164.622:5465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13936 comm="syz.2.2963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 489.293172][ T28] audit: type=1326 audit(1752294164.622:5466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13936 comm="syz.2.2963" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 489.392586][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 489.858361][T13966] loop3: detected capacity change from 0 to 128 [ 489.883893][T13966] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 489.898360][T13966] ext4 filesystem being mounted at /168/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 489.929846][T13970] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2976'. [ 489.965186][T13970] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2976'. [ 490.444301][T13977] lo speed is unknown, defaulting to 1000 [ 491.209625][T13982] netlink: 'syz.0.2979': attribute type 10 has an invalid length. [ 491.273816][T13982] team0: Device hsr_slave_0 failed to register rx_handler [ 493.190846][T12153] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 493.268150][T14003] netlink: 'syz.0.2987': attribute type 13 has an invalid length. [ 493.395659][T14006] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 493.500650][T14016] 9pnet_fd: Insufficient options for proto=fd [ 493.625571][T14006] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 493.637499][T14021] sctp: [Deprecated]: syz.3.2995 (pid 14021) Use of int in max_burst socket option deprecated. [ 493.637499][T14021] Use struct sctp_assoc_value instead [ 493.684588][T14021] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2995'. [ 493.760422][T14006] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 493.884512][T14006] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 494.033166][ T28] kauditd_printk_skb: 449 callbacks suppressed [ 494.033182][ T28] audit: type=1326 audit(1752294169.622:5916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9ce33858e7 code=0x7ffc0000 [ 494.137374][T14029] (null): rxe_set_mtu: Set mtu to 4096 [ 494.143496][T14029] rdma_rxe: rxe_newlink: failed to add lo [ 494.203944][ T28] audit: type=1326 audit(1752294169.622:5917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9ce332ab19 code=0x7ffc0000 [ 494.292271][ T28] audit: type=1326 audit(1752294169.622:5918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 494.297982][T14006] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 494.340683][T14006] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 494.371407][ T28] audit: type=1326 audit(1752294169.652:5919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9ce33858e7 code=0x7ffc0000 [ 494.373994][T14006] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 494.423102][ T28] audit: type=1326 audit(1752294169.652:5920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9ce332ab19 code=0x7ffc0000 [ 494.432254][T14006] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 494.509353][ T28] audit: type=1326 audit(1752294169.652:5921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 494.556172][ T28] audit: type=1326 audit(1752294169.652:5922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9ce33858e7 code=0x7ffc0000 [ 494.583612][ T28] audit: type=1326 audit(1752294169.652:5923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9ce332ab19 code=0x7ffc0000 [ 494.617853][ T28] audit: type=1326 audit(1752294169.652:5924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 494.651202][ T28] audit: type=1326 audit(1752294169.672:5925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14000 comm="syz.0.2987" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9ce33858e7 code=0x7ffc0000 [ 494.674485][T14043] sctp: [Deprecated]: syz.0.3005 (pid 14043) Use of int in max_burst socket option deprecated. [ 494.674485][T14043] Use struct sctp_assoc_value instead [ 494.702704][T14043] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3005'. [ 495.126699][T14052] (null): rxe_set_mtu: Set mtu to 4096 [ 495.133426][T14052] rdma_rxe: rxe_newlink: failed to add lo [ 496.963255][T14098] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 498.078539][T14118] (null): rxe_set_mtu: Set mtu to 4096 [ 498.084494][T14118] rdma_rxe: rxe_newlink: failed to add lo [ 498.096587][T14119] syz.0.3037[14119] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 498.096726][T14119] syz.0.3037[14119] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 498.152866][T14119] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3037'. [ 498.728686][T14135] netlink: 'syz.3.3045': attribute type 1 has an invalid length. [ 498.736843][T14135] netlink: 224 bytes leftover after parsing attributes in process `syz.3.3045'. [ 499.246648][T14155] xt_hashlimit: max too large, truncated to 1048576 [ 499.469125][T14160] netlink: 'syz.2.3055': attribute type 1 has an invalid length. [ 499.477016][T14160] netlink: 224 bytes leftover after parsing attributes in process `syz.2.3055'. [ 499.625445][T14162] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 499.854794][T14176] (null): rxe_set_mtu: Set mtu to 4096 [ 499.860828][T14176] rdma_rxe: rxe_newlink: failed to add lo [ 499.874290][T14162] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 499.901220][T14174] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 500.012298][T14162] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 500.179685][T14162] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 500.381485][T14162] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 500.407623][T14162] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 500.423353][T14162] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 500.440788][T14162] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 501.540689][T14182] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 501.549996][ T28] kauditd_printk_skb: 157 callbacks suppressed [ 501.550011][ T28] audit: type=1326 audit(1752294177.142:6083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14180 comm="syz.2.3062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 501.580874][ T28] audit: type=1326 audit(1752294177.142:6084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14180 comm="syz.2.3062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 501.611218][T14182] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3062'. [ 501.663686][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 501.663910][ T28] audit: type=1326 audit(1752294177.142:6085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14180 comm="syz.2.3062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 501.670244][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.703124][ T28] audit: type=1326 audit(1752294177.142:6086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14180 comm="syz.2.3062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 501.726130][ T28] audit: type=1326 audit(1752294177.142:6087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14180 comm="syz.2.3062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 501.963694][ T28] audit: type=1326 audit(1752294177.172:6088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14180 comm="syz.2.3062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 501.987019][ T28] audit: type=1326 audit(1752294177.172:6089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14180 comm="syz.2.3062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 502.019294][ T28] audit: type=1326 audit(1752294177.172:6090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14180 comm="syz.2.3062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 502.043204][ T28] audit: type=1326 audit(1752294177.172:6091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14180 comm="syz.2.3062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 502.183183][ T28] audit: type=1326 audit(1752294177.172:6092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14180 comm="syz.2.3062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 502.729694][T14197] lo speed is unknown, defaulting to 1000 [ 503.611855][T14225] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 503.683678][T14225] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3073'. [ 504.968776][T14256] lo speed is unknown, defaulting to 1000 [ 505.506285][T14267] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 505.567685][T14267] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3087'. [ 506.630068][T14283] netlink: 'syz.2.3095': attribute type 3 has an invalid length. [ 506.813823][T14285] syzkaller0: entered promiscuous mode [ 506.820589][T14285] syzkaller0: entered allmulticast mode [ 507.590692][T14291] (null): rxe_set_mtu: Set mtu to 4096 [ 507.596506][T14291] rdma_rxe: rxe_newlink: failed to add lo [ 509.634610][T14307] lo speed is unknown, defaulting to 1000 [ 509.791951][T14314] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 509.799706][T14314] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 509.809578][T14314] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 509.817283][T14314] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 510.019372][T14318] loop3: detected capacity change from 0 to 256 [ 510.475292][T14337] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 510.554150][T14338] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 511.126872][T14339] syz.2.3115[14339] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 511.127020][T14339] syz.2.3115[14339] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 511.425565][T14349] netlink: 9 bytes leftover after parsing attributes in process `syz.3.3120'. [ 511.451158][T14349] 0: renamed from hsr_slave_1 (while UP) [ 511.474892][T14349] 0: entered allmulticast mode [ 511.485224][T14349] A link change request failed with some changes committed already. Interface c0 may have been left with an inconsistent configuration, please check. [ 511.531782][T14347] lo speed is unknown, defaulting to 1000 [ 511.780144][ T28] kauditd_printk_skb: 90 callbacks suppressed [ 511.780159][ T28] audit: type=1326 audit(1752294187.372:6183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.3.3123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 511.890367][ T28] audit: type=1326 audit(1752294187.372:6184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.3.3123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 511.955147][ T28] audit: type=1326 audit(1752294187.412:6185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.3.3123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 511.978183][ T28] audit: type=1326 audit(1752294187.412:6186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.3.3123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 512.002346][ T28] audit: type=1326 audit(1752294187.412:6187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14356 comm="syz.3.3123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 512.292678][ T28] audit: type=1326 audit(1752294187.882:6188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14371 comm="syz.1.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 512.369133][ T28] audit: type=1326 audit(1752294187.882:6189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14371 comm="syz.1.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 512.457015][ T28] audit: type=1326 audit(1752294187.922:6190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14371 comm="syz.1.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 512.503521][ T28] audit: type=1326 audit(1752294187.922:6191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14371 comm="syz.1.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 512.531093][ T28] audit: type=1326 audit(1752294187.922:6192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14371 comm="syz.1.3129" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 513.246687][T14399] lo speed is unknown, defaulting to 1000 [ 513.766869][T14426] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 513.821646][T14426] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 513.912067][T14426] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 513.979003][T12329] Bluetooth: hci4: command 0x0406 tx timeout [ 514.001331][T14426] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 514.129790][T14426] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 514.151377][T14426] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 514.183819][T14426] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 514.261749][T14426] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 514.344736][T14435] loop3: detected capacity change from 0 to 128 [ 514.472009][T14440] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 514.963161][T14449] (null): rxe_set_mtu: Set mtu to 4096 [ 514.970193][T14449] rdma_rxe: rxe_newlink: failed to add lo [ 516.145121][T14448] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 516.164934][T14448] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3163'. [ 516.521856][T14452] nfs4: Bad value for 'source' [ 517.593943][T14460] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 517.609912][T14460] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 517.623162][T14460] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 517.629389][T14460] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 517.637579][T14460] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 517.649448][T14460] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 517.656454][T14460] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 517.671163][T14460] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 517.678463][T14460] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 517.685307][T14460] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 517.694220][T14460] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 518.666672][T14514] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3189'. [ 518.780675][T14516] loop3: detected capacity change from 0 to 4096 [ 518.822257][T14516] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 518.955476][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 519.179952][ T50] Bluetooth: hci4: command 0x0406 tx timeout [ 519.213167][ T1324] nci: nci_rsp_packet: unknown rsp opcode 0x10c [ 519.274768][T14538] can0: slcan on ttyS3. [ 519.349199][T14536] can0 (unregistered): slcan off ttyS3. [ 519.660679][ T50] Bluetooth: hci1: command 0x0c1a tx timeout [ 519.660694][T12329] Bluetooth: hci0: command 0x0c1a tx timeout [ 519.739011][T12329] Bluetooth: hci2: command 0x0c1a tx timeout [ 520.409317][T14563] loop3: detected capacity change from 0 to 2048 [ 520.430258][T14563] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 520.452584][ T28] kauditd_printk_skb: 61 callbacks suppressed [ 520.452598][ T28] audit: type=1800 audit(1752294196.042:6254): pid=14563 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3209" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 520.517602][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 520.641672][T14571] netlink: 240 bytes leftover after parsing attributes in process `syz.1.3211'. [ 520.651592][T14571] netlink: 72 bytes leftover after parsing attributes in process `syz.1.3211'. [ 521.049702][T14585] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 521.269033][T12329] Bluetooth: hci4: command 0x0406 tx timeout [ 521.589424][T14584] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 521.742412][T12329] Bluetooth: hci1: command 0x0c1a tx timeout [ 521.748619][T12329] Bluetooth: hci0: command 0x0c1a tx timeout [ 521.818998][ T50] Bluetooth: hci2: command 0x0c1a tx timeout [ 521.883393][T14596] netlink: 56 bytes leftover after parsing attributes in process `syz.0.3222'. [ 521.908538][T14596] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3222'. [ 522.021918][ T28] audit: type=1326 audit(1752294197.612:6255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14601 comm="syz.3.3224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 522.102864][ T28] audit: type=1326 audit(1752294197.632:6256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14601 comm="syz.3.3224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 522.276298][ T28] audit: type=1326 audit(1752294197.642:6257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14601 comm="syz.3.3224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 522.353655][ T28] audit: type=1326 audit(1752294197.642:6258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14601 comm="syz.3.3224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 522.373848][T14610] tipc: Started in network mode [ 522.377148][ T28] audit: type=1326 audit(1752294197.642:6259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14601 comm="syz.3.3224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 522.447262][T14610] tipc: Node identity 26053cd8af44, cluster identity 4711 [ 522.614899][ T28] audit: type=1326 audit(1752294198.152:6260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.0.3226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 522.653202][T14610] tipc: Enabled bearer , priority 0 [ 523.066315][ T28] audit: type=1326 audit(1752294198.152:6261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.0.3226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 523.149250][T14607] tipc: Resetting bearer [ 523.192296][ T28] audit: type=1326 audit(1752294198.152:6262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.0.3226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 523.215586][ T28] audit: type=1326 audit(1752294198.162:6263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.0.3226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 523.263861][T14620] loop3: detected capacity change from 0 to 128 [ 523.640439][T14627] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 523.771287][ T7726] tipc: Node number set to 2302754008 [ 523.823539][ T50] Bluetooth: hci0: command 0x0c1a tx timeout [ 523.830600][ T50] Bluetooth: hci1: command 0x0c1a tx timeout [ 523.899100][T12329] Bluetooth: hci2: command 0x0c1a tx timeout [ 524.495492][T14637] loop3: detected capacity change from 0 to 1024 [ 524.503033][T14637] EXT4-fs: inline encryption not supported [ 524.509076][T14637] EXT4-fs: Ignoring removed i_version option [ 524.521038][T14637] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 524.556580][T14637] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.3238: lblock 2 mapped to illegal pblock 2 (length 1) [ 524.598001][T14637] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.3238: lblock 0 mapped to illegal pblock 48 (length 1) [ 524.613618][T14637] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3238: Failed to acquire dquot type 0 [ 524.634243][T14637] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 524.654698][T14637] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.3238: mark_inode_dirty error [ 524.676666][T14637] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 524.688239][T14637] EXT4-fs (loop3): 1 orphan inode deleted [ 524.695632][T14637] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 524.720858][ T6921] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:10: lblock 1 mapped to illegal pblock 1 (length 1) [ 524.755781][ T6921] EXT4-fs error (device loop3): ext4_release_dquot:6974: comm kworker/u4:10: Failed to release dquot type 0 [ 526.182591][T14607] tipc: Disabling bearer [ 526.260131][ T28] kauditd_printk_skb: 20 callbacks suppressed [ 526.260147][ T28] audit: type=1326 audit(1752294201.852:6281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14643 comm="syz.1.3239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 526.291715][ T28] audit: type=1326 audit(1752294201.852:6282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14643 comm="syz.1.3239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 526.315298][ T28] audit: type=1326 audit(1752294201.852:6283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14643 comm="syz.1.3239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 526.368996][ T28] audit: type=1326 audit(1752294201.852:6284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14643 comm="syz.1.3239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 526.418557][ T28] audit: type=1326 audit(1752294201.852:6285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14643 comm="syz.1.3239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 526.455399][ T28] audit: type=1326 audit(1752294201.852:6286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14643 comm="syz.1.3239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 526.568991][ T28] audit: type=1326 audit(1752294201.852:6287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14643 comm="syz.1.3239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 526.615872][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 526.635210][T12153] EXT4-fs error (device loop3): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 526.657855][ T28] audit: type=1326 audit(1752294201.932:6288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14643 comm="syz.1.3239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 526.685233][T12153] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 526.698741][T12153] EXT4-fs error (device loop3): ext4_quota_off:7222: inode #3: comm syz-executor: mark_inode_dirty error [ 526.741297][ T28] audit: type=1326 audit(1752294201.932:6289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14643 comm="syz.1.3239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 526.819606][ T28] audit: type=1326 audit(1752294202.032:6290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14643 comm="syz.1.3239" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 526.889873][T14660] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3247'. [ 527.285376][T14675] loop3: detected capacity change from 0 to 1024 [ 527.297378][T14675] EXT4-fs: inline encryption not supported [ 527.411861][T14678] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 527.490757][T14678] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3250'. [ 527.655089][T14676] netlink: 240 bytes leftover after parsing attributes in process `syz.1.3252'. [ 527.687293][T14675] EXT4-fs: Ignoring removed i_version option [ 527.802989][T14675] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 528.082632][T14675] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.3253: lblock 2 mapped to illegal pblock 2 (length 1) [ 528.112126][T14652] hub 9-0:1.0: USB hub found [ 528.137436][T14652] hub 9-0:1.0: 1 port detected [ 528.144216][T14675] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.3253: lblock 0 mapped to illegal pblock 48 (length 1) [ 528.192573][T14675] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3253: Failed to acquire dquot type 0 [ 528.232676][T14675] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 528.260994][T14675] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.3253: mark_inode_dirty error [ 528.290083][T14675] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 528.331472][T14675] EXT4-fs (loop3): 1 orphan inode deleted [ 528.352868][ T3485] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:8: lblock 1 mapped to illegal pblock 1 (length 1) [ 528.370333][T14675] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 528.406076][ T3485] EXT4-fs error (device loop3): ext4_release_dquot:6974: comm kworker/u4:8: Failed to release dquot type 0 [ 528.467313][T14688] netlink: 'syz.2.3257': attribute type 12 has an invalid length. [ 528.553737][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 528.565043][T14692] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3259'. [ 528.567605][T12153] EXT4-fs error (device loop3): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 528.582807][T14692] vlan2: entered allmulticast mode [ 528.592853][T14692] dummy0: entered allmulticast mode [ 528.597959][T12153] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 528.615948][T12153] EXT4-fs error (device loop3): ext4_quota_off:7222: inode #3: comm syz-executor: mark_inode_dirty error [ 528.622199][T14695] netlink: 'syz.2.3260': attribute type 10 has an invalid length. [ 528.680145][T14695] team0: Device veth0_macvtap failed to register rx_handler [ 528.920713][T14700] loop3: detected capacity change from 0 to 8192 [ 528.957749][T14700] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 529.324301][T14722] loop3: detected capacity change from 0 to 128 [ 529.443407][T14722] syz.3.3273: attempt to access beyond end of device [ 529.443407][T14722] loop3: rw=2049, sector=145, nr_sectors = 480 limit=128 [ 529.657189][T14739] netlink: 108 bytes leftover after parsing attributes in process `syz.2.3279'. [ 529.697075][T14739] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3279'. [ 530.114518][T14756] loop3: detected capacity change from 0 to 8192 [ 530.499331][T14775] hsr0: entered promiscuous mode [ 530.520320][T14775] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3296'. [ 530.535242][T14775] hsr_slave_0: left promiscuous mode [ 530.553110][T14775] 0: left promiscuous mode [ 530.644720][T14775] hsr0 (unregistering): left promiscuous mode [ 530.902787][T14790] syz.2.3302[14790] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 530.902998][T14790] syz.2.3302[14790] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 530.939046][T14789] loop3: detected capacity change from 0 to 1024 [ 531.036619][T14791] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 531.106792][T14791] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3299'. [ 531.314851][T14789] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 531.622980][T14789] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 531.745139][T14789] EXT4-fs (loop3): orphan cleanup on readonly fs [ 531.764652][T14789] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.3303: bg 0: block 10: padding at end of block bitmap is not set [ 531.919206][T14789] __quota_error: 107 callbacks suppressed [ 531.919225][T14789] Quota error (device loop3): write_blk: dquota write failed [ 531.933983][T14789] Quota error (device loop3): find_free_dqentry: Can't write quota data block 3 [ 531.943605][T14789] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 531.955090][T14789] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3303: Failed to acquire dquot type 0 [ 531.967332][T14789] Quota error (device loop3): write_blk: dquota write failed [ 531.975282][T14789] Quota error (device loop3): find_free_dqentry: Can't write quota data block 3 [ 531.985306][T14789] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 531.997588][T14789] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3303: Failed to acquire dquot type 0 [ 532.013846][T14789] EXT4-fs error (device loop3): ext4_free_blocks:6681: comm syz.3.3303: Freeing blocks not in datazone - block = 0, count = 4096 [ 532.060485][T14789] Quota error (device loop3): write_blk: dquota write failed [ 532.078928][T14789] Quota error (device loop3): find_free_dqentry: Can't write quota data block 3 [ 532.095219][T14789] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 532.115444][T14789] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3303: Failed to acquire dquot type 0 [ 532.147679][T14789] EXT4-fs (loop3): 1 orphan inode deleted [ 532.172369][T14789] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 532.298153][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 532.482793][T14812] loop3: detected capacity change from 0 to 1024 [ 532.525345][T14812] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 532.611453][ T28] audit: type=1800 audit(1752294208.192:6395): pid=14812 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3313" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 533.121608][T14812] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4036: comm syz.3.3313: Allocating blocks 497-513 which overlap fs metadata [ 533.163502][T14811] EXT4-fs (loop3): pa ffff888057f2f740: logic 32, phys. 161, len 22 [ 533.172352][T14811] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5377: group 0, free 0, pa_free 1 [ 533.225468][T12153] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 533.505382][T14841] (null): rxe_set_mtu: Set mtu to 4096 [ 533.511313][T14841] rdma_rxe: rxe_newlink: failed to add lo [ 533.695099][T14847] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies. [ 535.787996][T14893] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 535.857294][T14893] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3342'. [ 536.752139][T14903] netlink: 340 bytes leftover after parsing attributes in process `syz.1.3350'. [ 536.943933][T14913] syz.1.3355[14913] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 536.944156][T14913] syz.1.3355[14913] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 537.568901][T14926] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 537.659452][T14926] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3358'. [ 537.758568][ T28] kauditd_printk_skb: 46 callbacks suppressed [ 537.758647][ T28] audit: type=1326 audit(1752294213.182:6442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14918 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 538.208282][ T28] audit: type=1326 audit(1752294213.182:6443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14918 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 538.239439][ T28] audit: type=1326 audit(1752294213.182:6444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14918 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 538.292527][ T28] audit: type=1326 audit(1752294213.192:6445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14918 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 538.343052][ T28] audit: type=1326 audit(1752294213.192:6446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14918 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 538.499436][ T28] audit: type=1326 audit(1752294213.192:6447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14918 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 538.522360][ T28] audit: type=1326 audit(1752294213.192:6448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14918 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 538.582626][ T28] audit: type=1326 audit(1752294213.192:6449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14918 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 538.615941][ T28] audit: type=1326 audit(1752294213.202:6450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14918 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 538.658815][ T28] audit: type=1326 audit(1752294213.202:6451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14918 comm="syz.1.3358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27a418e929 code=0x7ffc0000 [ 538.972340][T14950] netlink: 'syz.0.3371': attribute type 1 has an invalid length. [ 539.281181][T14956] (null): rxe_set_mtu: Set mtu to 4096 [ 539.398102][T14957] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 539.476467][T14957] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3372'. [ 540.215787][T14956] rdma_rxe: rxe_newlink: failed to add lo [ 540.412882][T14965] netlink: 340 bytes leftover after parsing attributes in process `syz.0.3376'. [ 542.693792][T15020] netlink: 52 bytes leftover after parsing attributes in process `syz.0.3401'. [ 542.974533][T15027] lo speed is unknown, defaulting to 1000 [ 543.606653][T15047] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 543.680415][T15047] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3409'. [ 543.777793][ T28] kauditd_printk_skb: 45 callbacks suppressed [ 543.777834][ T28] audit: type=1326 audit(1752294219.212:6497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15040 comm="syz.3.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 544.314313][ T28] audit: type=1326 audit(1752294219.212:6498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15040 comm="syz.3.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 544.337210][ T28] audit: type=1326 audit(1752294219.212:6499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15040 comm="syz.3.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 544.360210][ T28] audit: type=1326 audit(1752294219.212:6500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15040 comm="syz.3.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 544.406449][ T28] audit: type=1326 audit(1752294219.212:6501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15040 comm="syz.3.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 544.520145][ T28] audit: type=1326 audit(1752294219.212:6502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15040 comm="syz.3.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 544.614111][ T28] audit: type=1326 audit(1752294219.212:6503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15040 comm="syz.3.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 544.654119][ T28] audit: type=1326 audit(1752294219.222:6504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15040 comm="syz.3.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 544.677285][ T28] audit: type=1326 audit(1752294219.222:6505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15040 comm="syz.3.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 544.699765][ C0] vkms_vblank_simulate: vblank timer overrun [ 544.734584][ T28] audit: type=1326 audit(1752294219.222:6506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15040 comm="syz.3.3409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1fd58e929 code=0x7ffc0000 [ 544.896956][T15068] loop3: detected capacity change from 0 to 128 [ 545.358834][T15075] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 545.732314][T15077] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 545.754940][T15077] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3423'. [ 546.820029][T15082] lo speed is unknown, defaulting to 1000 [ 547.216932][T15101] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3431'. [ 547.421180][T15108] netlink: 52 bytes leftover after parsing attributes in process `syz.2.3434'. [ 547.523591][T15110] capability: warning: `syz.3.3436' uses deprecated v2 capabilities in a way that may be insecure [ 547.557253][T15110] loop3: detected capacity change from 0 to 512 [ 547.612319][T15110] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 547.642023][T15110] ext4 filesystem being mounted at /282/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 547.866128][T12153] EXT4-fs error (device loop3): ext4_lookup:1858: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816 [ 547.904343][T12153] EXT4-fs error (device loop3): ext4_lookup:1858: inode #12: comm syz-executor: iget: bad i_size value: 2533274857506816 [ 548.023911][T12374] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 548.346462][T15139] nfs4: Bad value for 'source' [ 548.385034][T15126] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3439'. [ 550.352942][ T50] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 550.365073][ T50] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 550.379610][ T50] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 550.396108][ T50] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 550.404129][ T50] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 550.413896][ T50] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 550.467129][T15162] lo speed is unknown, defaulting to 1000 [ 550.741816][ T28] kauditd_printk_skb: 40 callbacks suppressed [ 550.741834][ T28] audit: type=1326 audit(1752294226.332:6547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15179 comm="syz.0.3460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 550.804607][T15162] chnl_net:caif_netlink_parms(): no params data found [ 550.869205][ T28] audit: type=1326 audit(1752294226.332:6548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15179 comm="syz.0.3460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 550.924521][ T28] audit: type=1326 audit(1752294226.332:6549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15179 comm="syz.0.3460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 550.996256][ T28] audit: type=1326 audit(1752294226.332:6550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15179 comm="syz.0.3460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 551.072598][ T28] audit: type=1326 audit(1752294226.332:6551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15179 comm="syz.0.3460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 551.129317][ T28] audit: type=1326 audit(1752294226.342:6552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15179 comm="syz.0.3460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 551.163196][T15162] bridge0: port 1(bridge_slave_0) entered blocking state [ 551.178371][ T28] audit: type=1326 audit(1752294226.362:6553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15179 comm="syz.0.3460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 551.200975][ T28] audit: type=1326 audit(1752294226.362:6554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15179 comm="syz.0.3460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 551.219042][T15162] bridge0: port 1(bridge_slave_0) entered disabled state [ 551.239455][T15162] bridge_slave_0: entered allmulticast mode [ 551.267990][T15162] bridge_slave_0: entered promiscuous mode [ 551.268025][ T28] audit: type=1326 audit(1752294226.372:6555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15179 comm="syz.0.3460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=74 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 551.298611][T15162] bridge0: port 2(bridge_slave_1) entered blocking state [ 551.327719][ T28] audit: type=1326 audit(1752294226.372:6556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15179 comm="syz.0.3460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9ce338e929 code=0x7ffc0000 [ 551.336847][T15162] bridge0: port 2(bridge_slave_1) entered disabled state [ 551.413787][T15162] bridge_slave_1: entered allmulticast mode [ 551.430780][T15162] bridge_slave_1: entered promiscuous mode [ 551.585330][T15162] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 551.616750][T15162] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 551.862983][T15162] team0: Port device team_slave_0 added [ 551.903076][T15162] team0: Port device team_slave_1 added [ 552.075088][T15211] xt_recent: hitcount (692) is larger than allowed maximum (255) [ 552.086508][T15162] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 552.174336][T15162] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 552.460984][T12329] Bluetooth: hci3: command tx timeout [ 552.544705][T15162] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 552.632184][T15162] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 552.662392][T15162] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 552.748238][T15162] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 552.947072][T15162] hsr_slave_0: entered promiscuous mode [ 552.961472][T15162] hsr_slave_1: entered promiscuous mode [ 552.972366][T15162] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 552.980870][T15162] Cannot create hsr debugfs directory [ 552.995968][T15216] lo speed is unknown, defaulting to 1000 [ 553.311998][T15162] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 553.323073][T15162] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 553.333646][T15162] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 553.345767][T15162] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 553.456841][T15162] 8021q: adding VLAN 0 to HW filter on device bond0 [ 553.484976][T15162] 8021q: adding VLAN 0 to HW filter on device team0 [ 553.503430][ T1324] bridge0: port 1(bridge_slave_0) entered blocking state [ 553.510720][ T1324] bridge0: port 1(bridge_slave_0) entered forwarding state [ 553.529761][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 553.536970][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 553.811597][T15162] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 554.421881][T15162] veth0_vlan: entered promiscuous mode [ 554.470853][T15162] veth1_vlan: entered promiscuous mode [ 554.548976][T12329] Bluetooth: hci3: command tx timeout [ 554.560444][T15162] veth0_macvtap: entered promiscuous mode [ 554.572880][T15162] veth1_macvtap: entered promiscuous mode [ 554.642558][T15162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 554.699078][T15162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 554.730889][T15162] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 554.747663][T15162] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 554.763637][T15162] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 554.776551][T15162] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 554.817826][T15162] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 554.841028][T15162] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 554.863984][T15162] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 554.874052][T15162] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 555.084979][ T3466] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 555.109196][ T3466] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 555.192148][ T6921] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 555.210980][ T6921] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 555.830602][T15279] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 555.905795][T15279] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3486'. [ 556.042053][ T28] kauditd_printk_skb: 39 callbacks suppressed [ 556.042091][ T28] audit: type=1326 audit(1752294231.432:6596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.2.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 556.546146][ T28] audit: type=1326 audit(1752294231.432:6597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.2.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 556.579044][ T28] audit: type=1326 audit(1752294231.432:6598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.2.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 556.619055][T12329] Bluetooth: hci3: command tx timeout [ 556.693763][ T28] audit: type=1326 audit(1752294231.432:6599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.2.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 556.767326][ T28] audit: type=1326 audit(1752294231.432:6600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.2.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 556.803000][ T28] audit: type=1326 audit(1752294231.442:6601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.2.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 556.869300][ T28] audit: type=1326 audit(1752294231.442:6602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.2.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 556.923697][ T28] audit: type=1326 audit(1752294231.442:6603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.2.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 556.998182][ T28] audit: type=1326 audit(1752294231.442:6604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.2.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 557.054705][ T28] audit: type=1326 audit(1752294231.442:6605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15268 comm="syz.2.3486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29b7f8e929 code=0x7ffc0000 [ 558.418262][T15311] loop4: detected capacity change from 0 to 512 [ 558.450979][T15311] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 558.498803][T15311] EXT4-fs error (device loop4): ext4_orphan_get:1399: inode #15: comm syz.4.3504: iget: bad extended attribute block 1 [ 558.626736][T15318] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491 [ 558.702180][T15318] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3502'. [ 558.793200][T12329] Bluetooth: hci3: command tx timeout [ 558.864928][T15311] EXT4-fs error (device loop4): ext4_orphan_get:1404: comm syz.4.3504: couldn't read orphan inode 15 (err -117) [ 559.308481][T15311] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 559.484325][T15311] bond1: entered promiscuous mode [ 559.494682][T15311] bond1: entered allmulticast mode [ 559.503229][T15311] 8021q: adding VLAN 0 to HW filter on device bond1 [ 559.808349][T15311] bond1 (unregistering): Released all slaves [ 560.017723][T15162] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 560.156090][T15338] (null): rxe_set_mtu: Set mtu to 4096 [ 560.164168][T15338] rdma_rxe: rxe_newlink: failed to add lo [ 560.289297][ T11] unregister_netdevice: waiting for lo to become free. Usage count = 29 [ 560.371405][ T11] ref_tracker: lo@ffff88802e40c5b8 has 27/28 users at [ 560.371405][ T11] dst_init+0xd9/0x460 [ 560.371405][ T11] dst_alloc+0x12e/0x170 [ 560.371405][ T11] rt_dst_clone+0x58/0x680 [ 560.371405][ T11] ip_mc_finish_output+0x10b/0x5f0 [ 560.371405][ T11] ip_mc_output+0x39c/0x580 [ 560.371405][ T11] iptunnel_xmit+0x53e/0x9c0 [ 560.371405][ T11] udp_tunnel_xmit_skb+0x249/0x390 [ 560.371405][ T11] tipc_udp_xmit+0x7be/0xaa0 [ 560.371405][ T11] tipc_udp_send_msg+0x27e/0x3e0 [ 560.371405][ T11] tipc_bearer_xmit_skb+0x2ad/0x3f0 [ 560.371405][ T11] tipc_disc_timeout+0x581/0x6d0 [ 560.371405][ T11] call_timer_fn+0x16e/0x530 [ 560.371405][ T11] __run_timers+0x52d/0x7d0 [ 560.371405][ T11] run_timer_softirq+0x67/0xf0 [ 560.371405][ T11] handle_softirqs+0x280/0x820 [ 560.371405][ T11] __irq_exit_rcu+0xc7/0x190 [ 560.371405][ T11] [ 560.459263][ T11] ref_tracker: lo@ffff88802e40c5b8 has 1/28 users at [ 560.459263][ T11] dst_init+0xd9/0x460 [ 560.459263][ T11] dst_alloc+0x12e/0x170 [ 560.459263][ T11] rt_dst_clone+0x58/0x680 [ 560.459263][ T11] ip_mc_finish_output+0x10b/0x5f0 [ 560.459263][ T11] ip_mc_output+0x39c/0x580 [ 560.459263][ T11] iptunnel_xmit+0x53e/0x9c0 [ 560.459263][ T11] udp_tunnel_xmit_skb+0x249/0x390 [ 560.459263][ T11] tipc_udp_xmit+0x7be/0xaa0 [ 560.459263][ T11] tipc_udp_send_msg+0x27e/0x3e0 [ 560.459263][ T11] tipc_bearer_xmit_skb+0x2ad/0x3f0 [ 560.459263][ T11] __tipc_nl_bearer_enable+0x100c/0x1360 [ 560.459263][ T11] tipc_nl_bearer_enable+0x22/0x30 [ 560.459263][ T11] genl_family_rcv_msg_doit+0x209/0x2f0 [ 560.459263][ T11] genl_rcv_msg+0x60b/0x790 [ 560.459263][ T11] netlink_rcv_skb+0x216/0x480 [ 560.459263][ T11] genl_rcv+0x28/0x40 [ 560.459263][ T11] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 563.104361][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.110792][ T1288] ieee802154 phy1 wpan1: encryption failed: -22