last executing test programs: 12.552215098s ago: executing program 0 (id=1658): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r1, &(0x7f00000003c0)={0x10, 0x0, 0x25dfdbff, 0x2ffffffff}, 0xc) r2 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4) r3 = getpid() r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, 0x0, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r3}}]}, 0x3c}}, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, 0x0, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000004b00)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000004ac0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="3c000000100085060000", @ANYRES32=r5, @ANYBLOB="01ff00e1c2ed00001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000004b40)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140035007465616d5f736c6176655f310000000008000a00", @ANYRES32=r5], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4008040) 12.441451288s ago: executing program 0 (id=1660): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x1, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) socket$l2tp6(0xa, 0x2, 0x73) socket$l2tp6(0xa, 0x2, 0x73) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000590000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) r3 = syz_open_dev$loop(&(0x7f00000000c0), 0xf, 0x800) ioctl$LOOP_SET_DIRECT_IO(r3, 0x4c08, 0x3) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, 0x0, &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r5 = syz_open_dev$usbfs(0x0, 0x205, 0x8401) r6 = fcntl$dupfd(r5, 0x0, r5) io_uring_enter(r6, 0x6209, 0x787e, 0x0, &(0x7f0000000100)={[0x1]}, 0x8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x20c006, &(0x7f0000000200)={[{@i_version}, {@mblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@lazytime}, {@block_validity}, {@data_err_abort}], [{@seclabel}]}, 0x1, 0x43d, &(0x7f0000000900)="$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") 9.303829586s ago: executing program 0 (id=1685): close(0xffffffffffffffff) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) r1 = socket$can_j1939(0x1d, 0x2, 0x7) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r1, &(0x7f0000000240)={0x1d, r3, 0x4, {0x0, 0x0, 0x4}}, 0x18) connect$can_j1939(r1, &(0x7f0000000480)={0x1d, r3, 0xfffffffffffffffe, {0x1, 0xff, 0x2}}, 0x18) r4 = socket$can_j1939(0x1d, 0x2, 0x7) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x31, &(0x7f0000000280)={0x0, 0xea60}, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000380)={'vcan0\x00', 0x0}) r7 = socket$can_j1939(0x1d, 0x2, 0x7) bind$can_j1939(r7, &(0x7f0000000080)={0x1d, r6, 0x0, {0x0, 0x0, 0x4}}, 0x18) sendmsg$can_j1939(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1}}, 0xee) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newtfilter={0x24, 0x11, 0x1, 0x74bd2c, 0x0, {0x0, 0x0, 0x74, r8, {0x2, 0x4}, {0xa, 0x4}, {0xa}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x40804}, 0x0) 8.904914844s ago: executing program 0 (id=1690): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000007000000ff0f000009"], 0x18) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r4}, 0x10) syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000080)='./file0\x00', 0x300001a, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"/1023, @ANYRES16, @ANYRESOCT, @ANYBLOB="bb959014fe42bd878edddb9788f4cec96dd69d130caf3587695510e2e5987ce4e8cbaff59efc3d3c58c0c3439984819fc27464bed0d18293eda9357efd79ab67bf796f5164692cf674a118050b7e8ff6eb204c5edb96fbd5ceda7b64ad7d0fea8dc14cc2c51d75c9d7f9da697eb093587e71b198fa9138a6df88de934750de851b955b1bdc4ab72d5ef6bd1f12dee6476705b678d54b3a090958e506f98abb503521dd4c874d61017a6ec5a772fa084b992fc638e44ebe8261b74243d71c88146ffffeb84b108e736f"], 0xd, 0x2a7, &(0x7f0000000c40)="$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") 5.07080464s ago: executing program 0 (id=1697): unshare(0x62040200) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000000), 0x1, 0x79b, &(0x7f0000000a40)="$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") r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$IPT_SO_GET_INFO(r0, 0x0, 0x40, &(0x7f0000000000)={'nat\x00', 0x7003, [0x80002, 0x40009, 0x5, 0x1]}, &(0x7f0000000100)=0x54) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000140)={'security\x00', 0x2, [{}, {}]}, 0x48) 4.650541368s ago: executing program 4 (id=1703): open(0x0, 0x0, 0x0) syz_emit_ethernet(0x6b, &(0x7f0000000d80)={@multicast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "828bf7", 0x35, 0x3a, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "fd9063", 0x0, 0x3a, 0x0, @private1, @private2, [], "1e520b4c95"}}}}}}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000340)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="20000000110001010000", @ANYRES32=r3], 0x20}}, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2d, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x108) 4.638930078s ago: executing program 2 (id=1704): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) socket$netlink(0x10, 0x3, 0x9) getpeername$inet(r3, &(0x7f0000000000)={0x2, 0x0, @initdev}, &(0x7f00000003c0)=0x10) syz_usb_connect(0x5, 0xe4, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000017ffd340b1134200bbdf000000010902d200010000400009046a00067af4190009050f102000050801060c8b631b7507250102020700090501", @ANYBLOB='J'], 0x0) socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_DPORT={0x6}, @IFLA_IPTUN_ENCAP_TYPE={0x6, 0xf, 0x11}]}}}]}, 0x44}}, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x14, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NFC_CMD_GET_TARGET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x0) syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r5) sendmsg$NL802154_CMD_NEW_INTERFACE(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000580)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000eeff11"], 0x30}}, 0x0) 4.200257266s ago: executing program 4 (id=1707): prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) setsockopt$MRT_ADD_VIF(0xffffffffffffffff, 0x0, 0xca, &(0x7f0000000280)={0xffffffffffffffff, 0x0, 0x0, 0x3, @vifc_lcl_addr=@remote, @multicast1}, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000950000000000000033f67a1f796787c0fa67ed34360b1c9f305fc72d88fee7f8535b1a63902497b7bd45a3ebbdb759b2442f9e06679797c9f8fdf0"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) unshare(0x68040200) 3.132056842s ago: executing program 3 (id=1709): r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) close(r0) r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="b4050000200080066110000000000000c6000000000000009500d800000000009f33ef60916e55893f1eeb0b2ae13d922e6235592ce847e2566c43d72918a897323fd0723043c47c896ce0bce66a245ad9d6817fd98cd824498949714ffaac8a6f77ef0000ca5d82054d54d53cd2b6db714e75d9bdae214fa68a0557eb2c5ca683a4b6fcfcff0bffffffffffd47042eaebfa6fa26fa7a347c7faa8e700458c60897d4a6148a1c11428427c40de60beacf871ab5c2ff88a02084e5b5271e45f00003826fb8579c1fb01d2c5553d2ccb5fc5b51fe6b174ebd9907dcff414ed55b0c20cdbe7009a6fe7cc78762f1d4dcdbca64920db9a50f86c21632f7a4bd344e0bd74ff05d37ef68e3b9db863c758ffffffffabe90ac5d08dd9d4e0359c41cf3626e1230bc1cd4c02c460ceb44276e9bd94d1c2e6d17dc5c2edf332a62f5fe68fbbbbfcfd00000000000fbf940e6652d357474ed5f816f66ac3027460ae66317f83cdd7a7eb2a7003d1a6cf5478533584961c329fcf5a43e05c92bfef0dcd28000000003f2915a3039c9a78f63b8ec7e60a0000fed7d67c440e23d130e51eea1e085bebabe7059de9cbfc5117c024185a062acb6b8eec31c21b3af8b9eedb4660ed2deb7acf2a33a376a5cb7d4266d5b0be14488d14b473502486ad8dd600000000000000000000c7766ea7c581782c0d90f42a85303835fc291c25d29e6bead5d7360f2e1929d7736ebc8558c4506407d3046022bdf25485bd5442169e9b4c1278343581b7a06f65e8ea6b042c4fd08381e5000000000000006398d6480000001a723b91030000006480304c66b217aea0156ce9eef911fe5b7370f79987303ecb3aabc53c60014a0101ab766754f596b41da9534d12b8306a1b36cf3b03f0d790879f523eabfbee83d8bd472ef69660cf6ec897106c51e54a17497f384c4956b41f3843e7c878b1e11316d8ddae1c6c3b85aaf7a9fcaf8f5d6186c42542d68ba72682c938d3c0a2e6e10eed71b1d31c9f300b41745329bf34495c63e43fb896e4903fb0fae54a8f0fe3b48a5b29d279070647e65097c8ecf32a15080000000000000001007ba4a70a084bd994ac5e00000000000000000000000000351a30cd97f83d72631d0fe92efa974a53f4dc1eb9a86df632a6d463688123f64d42a919bcfc44a90ffd680200000091f842a91c977f6075d07e39e669b0713af0498a99bf5261cb3269d499a5202d7a08b33ade7b38829b9bd39619688d5e9af22170ef83e5b92cbb32b655c45de1c154aad81bf64351668a3f76d5afa958aff76249e0ffdf8e45155536a1a44bfcbfbfd232af000052f9002a"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x12, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10) close(r1) socket$kcm(0x2, 0x2, 0x0) close(r0) 2.226710569s ago: executing program 0 (id=1711): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x58, &(0x7f0000000140)={[{@abort}, {@errors_remount}, {@jqfmt_vfsv1}, {@stripe={'stripe', 0x3d, 0x4ffff}}, {@auto_da_alloc}, {@minixdf}, {@nobh}]}, 0xfe, 0x7ab, &(0x7f0000001100)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x26e1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0) write$cgroup_subtree(r1, &(0x7f0000000040)=ANY=[], 0x32600) ftruncate(r0, 0x400403) 2.146672238s ago: executing program 3 (id=1712): r0 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r0, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10) 2.068062178s ago: executing program 1 (id=1713): syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000240)='./file0\x00', 0x18000, &(0x7f0000002f40)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES16=0x0, @ANYRESDEC, @ANYRES32, @ANYRES32], 0x1, 0x2ee, &(0x7f00000006c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpu.stat\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) fdatasync(r0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10) mlock2(&(0x7f0000004000/0x4000)=nil, 0x40ef, 0x0) 1.860523118s ago: executing program 3 (id=1714): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe) r1 = open_tree(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x1000) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000240)={r1, 0xffffffffffffffff}, 0xffffffffffffffbf) bpf$BPF_MAP_FREEZE(0x16, &(0x7f00000001c0)=r2, 0x4) bind$inet(r1, &(0x7f0000000300)={0x2, 0x4e20, @private=0xa010101}, 0x10) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) write$binfmt_misc(r4, 0x0, 0xfffffecc) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_ENABLE_BEARER(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r6) socket(0x400000000010, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r6, 0x8923, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 1.550663796s ago: executing program 2 (id=1715): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000100)=0x1, 0x4) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4000, 0x0, @loopback}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000240)='tunl0\x00', 0x10) setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4) 1.306105125s ago: executing program 2 (id=1716): close(0xffffffffffffffff) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0) r1 = socket$can_j1939(0x1d, 0x2, 0x7) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r1, &(0x7f0000000240)={0x1d, r3, 0x4, {0x0, 0x0, 0x4}}, 0x18) connect$can_j1939(r1, &(0x7f0000000480)={0x1d, r3, 0xfffffffffffffffe, {0x1, 0xff, 0x2}}, 0x18) r4 = socket$can_j1939(0x1d, 0x2, 0x7) setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x31, &(0x7f0000000280)={0x0, 0xea60}, 0x10) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000380)={'vcan0\x00', 0x0}) r7 = socket$can_j1939(0x1d, 0x2, 0x7) bind$can_j1939(r7, &(0x7f0000000080)={0x1d, r6, 0x0, {0x0, 0x0, 0x4}}, 0x18) sendmsg$can_j1939(r7, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, 0x0}, 0xee) ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newtfilter={0x24, 0x11, 0x1, 0x74bd2c, 0x0, {0x0, 0x0, 0x74, r8, {0x2, 0x4}, {0xa, 0x4}, {0xa}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x40804}, 0x0) 1.304840435s ago: executing program 3 (id=1717): open(0x0, 0x0, 0x0) syz_emit_ethernet(0x6b, &(0x7f0000000d80)={@multicast, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "828bf7", 0x35, 0x3a, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, @mcast2, {[], @time_exceed={0x2, 0x0, 0x0, 0x0, '\x00', {0x0, 0x6, "fd9063", 0x0, 0x3a, 0x0, @private1, @private2, [], "1e520b4c95"}}}}}}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000340)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @empty}}}, 0x108) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001000)=ANY=[@ANYBLOB="20000000110001010000", @ANYRES32=r3], 0x20}}, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2d, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x108) 1.040554824s ago: executing program 4 (id=1718): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0x4, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10) futex_waitv(0x0, 0x0, 0x0, 0x0, 0x0) 924.065164ms ago: executing program 1 (id=1719): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0xd, &(0x7f0000000180)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x36}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x3}}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x8}, 0x50) 843.311473ms ago: executing program 4 (id=1720): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r1, &(0x7f00000003c0)={0x10, 0x0, 0x25dfdbff, 0x2ffffffff}, 0xc) r2 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4) r3 = getpid() r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, 0x0, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r3}}]}, 0x3c}}, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4) getsockname$packet(0xffffffffffffffff, 0x0, &(0x7f0000004ac0)) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="3c000000100085060000", @ANYRES32, @ANYBLOB="01ff00e1c2ed00001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000004b40)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140035007465616d5f736c6176655f310000000008000a00", @ANYRES32], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4008040) 679.842843ms ago: executing program 3 (id=1721): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x70}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f0000000140)={0x9, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x2, 0x9, 0x0, 0x0, 0x2}, 0x10}}, 0x0) 679.639813ms ago: executing program 4 (id=1722): r0 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) close(r0) r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0x12, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map=r2, r1, 0x5, 0x0, 0x0, @void, @value}, 0x10) close(r1) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000580)={{r2}, &(0x7f0000000500), &(0x7f0000000540)=r1}, 0x20) close(r0) 655.390363ms ago: executing program 1 (id=1723): set_mempolicy_home_node(&(0x7f0000349000/0xa000)=nil, 0xa000, 0x0, 0x3f000000) 652.139893ms ago: executing program 2 (id=1724): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000810"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[@ANYBLOB="540100001a001307000000000000001cac141400"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac141417000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c"], 0x154}}, 0x0) 531.984612ms ago: executing program 4 (id=1725): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, 0x0, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_mptcp(0x2, 0x1, 0x106) socket$netlink(0x10, 0x3, 0x9) getpeername$inet(r3, &(0x7f0000000000)={0x2, 0x0, @initdev}, &(0x7f00000003c0)=0x10) syz_usb_connect(0x5, 0xe4, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000017ffd340b1134200bbdf000000010902d200010000400009046a00067af4190009050f102000050801060c8b631b7507250102020700090501", @ANYBLOB='J'], 0x0) socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=@newlink={0x44, 0x10, 0x437, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_DPORT={0x6}, @IFLA_IPTUN_ENCAP_TYPE={0x6, 0xf, 0x11}]}}}]}, 0x44}}, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x14, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NFC_CMD_GET_TARGET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000040)={0x14, 0x0, 0x4}, 0x14}}, 0x0) syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r5) sendmsg$NL802154_CMD_NEW_INTERFACE(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000580)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="0100000000000000eeff11"], 0x30}}, 0x0) 531.813112ms ago: executing program 1 (id=1726): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000001c0)='mm_page_alloc\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x29fd, 0x84, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) 395.714312ms ago: executing program 3 (id=1727): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2010480, &(0x7f00000001c0), 0x45, 0x76a, &(0x7f0000000fc0)="$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") socket$inet_udp(0x2, 0x2, 0x0) getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0xb, &(0x7f0000000000), 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x4000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10) madvise(&(0x7f0000000000/0x4000)=nil, 0x0, 0x11) pwritev2(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5405, 0x0, 0x0) sendfile(r0, r0, 0x0, 0x7a680000) 394.719582ms ago: executing program 2 (id=1728): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0xe) r1 = open_tree(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x1000) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000240)={r1, 0xffffffffffffffff}, 0xffffffffffffffbf) bpf$BPF_MAP_FREEZE(0x16, &(0x7f00000001c0)=r2, 0x4) bind$inet(r1, &(0x7f0000000300)={0x2, 0x4e20, @private=0xa010101}, 0x10) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) write$binfmt_misc(r4, 0x0, 0xfffffecc) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_ENABLE_BEARER(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r6) socket(0x400000000010, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r6, 0x8923, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 238.489041ms ago: executing program 1 (id=1729): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/asound/seq/clients\x00', 0x0, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) 81.490871ms ago: executing program 2 (id=1730): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r0 = socket(0x1e, 0x5, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000040)=@req3={0x80000000}, 0xfeda) listen(r0, 0x0) r1 = socket(0x1e, 0x805, 0x0) sendmsg$tipc(r1, &(0x7f0000000080)={&(0x7f0000000100)=@id={0x1e, 0x3, 0x0, {0x4e20, 0x2}}, 0x10, 0x0}, 0x4045094) setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f00000000c0)=@req3={0x80000000}, 0x1c) r2 = bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000480)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {{0x18, 0x1, 0x1, 0x0, r2}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) accept4$inet6(r0, 0x0, 0x0, 0x0) sendmsg$tipc(r1, &(0x7f0000000640)={&(0x7f0000000300), 0x10, 0x0}, 0x0) 0s ago: executing program 1 (id=1731): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r1, &(0x7f00000003c0)={0x10, 0x0, 0x25dfdbff, 0x2ffffffff}, 0xc) r2 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000000), 0x4) r3 = getpid() r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_RELOAD(r4, &(0x7f0000000100)={0x0, 0x4100, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, 0x0, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r3}}]}, 0x3c}}, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4) getsockname$packet(0xffffffffffffffff, &(0x7f0000004b00)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="3c000000100085060000", @ANYRES32=r5, @ANYBLOB="01ff00e1c2ed00001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000004b40)=ANY=[@ANYBLOB="3c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140035007465616d5f736c6176655f310000000008000a00", @ANYRES32=r5], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x4008040) kernel console output (not intermixed with test programs): ncated [ 72.291255][ T3912] loop4: p85 start 4294967040 is beyond EOD, truncated [ 72.293345][ T3912] loop4: p87 start 4294967040 is beyond EOD, truncated [ 72.295309][ T3912] loop4: p89 start 4294967040 is beyond EOD, truncated [ 72.297276][ T3912] loop4: p91 start 4294967040 is beyond EOD, truncated [ 72.299075][ T3912] loop4: p93 start 4294967040 is beyond EOD, truncated [ 72.301149][ T3912] loop4: p95 start 4294967040 is beyond EOD, truncated [ 72.303015][ T3912] loop4: p97 start 4294967040 is beyond EOD, truncated [ 72.305035][ T3912] loop4: p99 start 4294967040 is beyond EOD, truncated [ 72.307152][ T3912] loop4: p101 start 4294967040 is beyond EOD, truncated [ 72.309222][ T3912] loop4: p103 start 4294967040 is beyond EOD, truncated [ 72.315277][ T3912] loop4: p105 start 4294967040 is beyond EOD, truncated [ 72.317431][ T3912] loop4: p107 start 4294967040 is beyond EOD, truncated [ 72.319367][ T3912] loop4: p109 start 4294967040 is beyond EOD, truncated [ 72.321493][ T3912] loop4: p111 start 4294967040 is beyond EOD, truncated [ 72.324246][ T3912] loop4: p113 start 4294967040 is beyond EOD, truncated [ 72.327217][ T3912] loop4: p115 start 4294967040 is beyond EOD, truncated [ 72.329110][ T3912] loop4: p117 start 4294967040 is beyond EOD, truncated [ 72.331423][ T3912] loop4: p119 start 4294967040 is beyond EOD, truncated [ 72.334236][ T3912] loop4: p121 start 4294967040 is beyond EOD, truncated [ 72.336244][ T3912] loop4: p123 start 4294967040 is beyond EOD, truncated [ 72.338432][ T3912] loop4: p125 start 4294967040 is beyond EOD, truncated [ 72.340921][ T3912] loop4: p127 start 4294967040 is beyond EOD, truncated [ 72.343022][ T3912] loop4: p129 start 4294967040 is beyond EOD, truncated [ 72.344897][ T3912] loop4: p131 start 4294967040 is beyond EOD, truncated [ 72.346961][ T3912] loop4: p133 start 4294967040 is beyond EOD, truncated [ 72.349112][ T3912] loop4: p135 start 4294967040 is beyond EOD, truncated [ 72.355241][ T3912] loop4: p137 start 4294967040 is beyond EOD, truncated [ 72.357312][ T3912] loop4: p139 start 4294967040 is beyond EOD, truncated [ 72.359528][ T3912] loop4: p141 start 4294967040 is beyond EOD, truncated [ 72.361618][ T3912] loop4: p143 start 4294967040 is beyond EOD, truncated [ 72.363460][ T3912] loop4: p145 start 4294967040 is beyond EOD, truncated [ 72.365404][ T3912] loop4: p147 start 4294967040 is beyond EOD, truncated [ 72.367358][ T3912] loop4: p149 start 4294967040 is beyond EOD, truncated [ 72.369466][ T3912] loop4: p151 start 4294967040 is beyond EOD, truncated [ 72.371772][ T3912] loop4: p153 start 4294967040 is beyond EOD, truncated [ 72.373655][ T3912] loop4: p155 start 4294967040 is beyond EOD, truncated [ 72.375609][ T3912] loop4: p157 start 4294967040 is beyond EOD, truncated [ 72.377553][ T3912] loop4: p159 start 4294967040 is beyond EOD, truncated [ 72.379652][ T3912] loop4: p161 start 4294967040 is beyond EOD, truncated [ 72.381999][ T3912] loop4: p163 start 4294967040 is beyond EOD, truncated [ 72.383894][ T3912] loop4: p165 start 4294967040 is beyond EOD, truncated [ 72.385865][ T3912] loop4: p167 start 4294967040 is beyond EOD, truncated [ 72.387907][ T3912] loop4: p169 start 4294967040 is beyond EOD, truncated [ 72.394228][ T3912] loop4: p171 start 4294967040 is beyond EOD, truncated [ 72.396048][ T3912] loop4: p173 start 4294967040 is beyond EOD, truncated [ 72.398005][ T3912] loop4: p175 start 4294967040 is beyond EOD, truncated [ 72.400264][ T3912] loop4: p177 start 4294967040 is beyond EOD, truncated [ 72.402140][ T3912] loop4: p179 start 4294967040 is beyond EOD, truncated [ 72.404004][ T3912] loop4: p181 start 4294967040 is beyond EOD, truncated [ 72.405910][ T3912] loop4: p183 start 4294967040 is beyond EOD, truncated [ 72.407764][ T3912] loop4: p185 start 4294967040 is beyond EOD, truncated [ 72.410006][ T3912] loop4: p187 start 4294967040 is beyond EOD, truncated [ 72.411972][ T3912] loop4: p189 start 4294967040 is beyond EOD, truncated [ 72.413932][ T3912] loop4: p191 start 4294967040 is beyond EOD, truncated [ 72.415815][ T3912] loop4: p193 start 4294967040 is beyond EOD, truncated [ 72.417866][ T3912] loop4: p195 start 4294967040 is beyond EOD, truncated [ 72.419769][ T3912] loop4: p197 start 4294967040 is beyond EOD, truncated [ 72.421947][ T3912] loop4: p199 start 4294967040 is beyond EOD, truncated [ 72.423828][ T3912] loop4: p201 start 4294967040 is beyond EOD, truncated [ 72.425854][ T3912] loop4: p203 start 4294967040 is beyond EOD, truncated [ 72.428532][ T3912] loop4: p205 start 4294967040 is beyond EOD, truncated [ 72.435140][ T3912] loop4: p207 start 4294967040 is beyond EOD, truncated [ 72.437282][ T3912] loop4: p209 start 4294967040 is beyond EOD, truncated [ 72.439161][ T3912] loop4: p211 start 4294967040 is beyond EOD, truncated [ 72.442804][ T3912] loop4: p213 start 4294967040 is beyond EOD, truncated [ 72.445073][ T3912] loop4: p215 start 4294967040 is beyond EOD, truncated [ 72.446971][ T3912] loop4: p217 start 4294967040 is beyond EOD, truncated [ 72.448777][ T3912] loop4: p219 start 4294967040 is beyond EOD, truncated [ 72.451004][ T3912] loop4: p221 start 4294967040 is beyond EOD, truncated [ 72.453097][ T3912] loop4: p223 start 4294967040 is beyond EOD, truncated [ 72.455065][ T3912] loop4: p225 start 4294967040 is beyond EOD, truncated [ 72.456950][ T3912] loop4: p227 start 4294967040 is beyond EOD, truncated [ 72.458852][ T3912] loop4: p229 start 4294967040 is beyond EOD, truncated [ 72.461124][ T3912] loop4: p231 start 4294967040 is beyond EOD, truncated [ 72.463027][ T3912] loop4: p233 start 4294967040 is beyond EOD, truncated [ 72.465360][ T3912] loop4: p235 start 4294967040 is beyond EOD, truncated [ 72.467256][ T3912] loop4: p237 start 4294967040 is beyond EOD, truncated [ 72.469211][ T3912] loop4: p239 start 4294967040 is beyond EOD, truncated [ 72.475340][ T3912] loop4: p241 start 4294967040 is beyond EOD, truncated [ 72.477358][ T3912] loop4: p243 start 4294967040 is beyond EOD, truncated [ 72.479260][ T3912] loop4: p245 start 4294967040 is beyond EOD, truncated [ 72.481419][ T3912] loop4: p247 start 4294967040 is beyond EOD, truncated [ 72.483378][ T3912] loop4: p249 start 4294967040 is beyond EOD, truncated [ 72.485465][ T3912] loop4: p251 start 4294967040 is beyond EOD, truncated [ 72.487458][ T3912] loop4: p253 start 4294967040 is beyond EOD, truncated [ 72.489447][ T3912] loop4: p255 start 4294967040 is beyond EOD, truncated [ 72.728993][ T5352] udevd[5352]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 72.744664][ T4298] udevd[4298]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 72.753540][ T4440] udevd[4440]: inotify_add_watch(7, /dev/loop4p8, 10) failed: No such file or directory [ 72.762063][ T4300] udevd[4300]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory [ 72.764483][ T4441] udevd[4441]: inotify_add_watch(7, /dev/loop4p10, 10) failed: No such file or directory [ 72.776295][ T4439] udevd[4439]: inotify_add_watch(7, /dev/loop4p12, 10) failed: No such file or directory [ 72.807843][ T4439] udevd[4439]: inotify_add_watch(7, /dev/loop4p26, 10) failed: No such file or directory [ 72.817444][ T4298] udevd[4298]: inotify_add_watch(7, /dev/loop4p30, 10) failed: No such file or directory [ 72.818597][ T5410] udevd[5410]: inotify_add_watch(7, /dev/loop4p14, 10) failed: No such file or directory [ 72.852318][ T5417] udevd[5417]: inotify_add_watch(7, /dev/loop4p24, 10) failed: No such file or directory [ 81.867439][ T5388] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 81.869168][ T5388] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 81.873470][ T5388] device bridge_slave_0 left promiscuous mode [ 81.875936][ T5388] bridge0: port 1(bridge_slave_0) entered disabled state [ 81.912502][ T5388] device bridge_slave_1 left promiscuous mode [ 81.913885][ T5388] bridge0: port 2(bridge_slave_1) entered disabled state [ 81.952834][ T5388] bond0: (slave bond_slave_0): Releasing backup interface [ 81.991222][ T5388] bond0: (slave bond_slave_1): Releasing backup interface [ 82.059769][ T5388] team0: Port device team_slave_0 removed [ 82.066103][ T5388] team0: Port device team_slave_1 removed [ 82.067900][ T5388] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 82.071123][ T5388] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 82.075717][ T5388] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 82.077354][ T5388] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 82.099550][ T5389] team0: Mode changed to "loadbalance" [ 82.273511][ T5437] netlink: 'syz.3.423': attribute type 4 has an invalid length. [ 82.397008][ T5444] netlink: 4 bytes leftover after parsing attributes in process `syz.0.428'. [ 82.416798][ T5440] infiniband syz!: set active [ 82.416854][ T5440] infiniband syz!: added team_slave_0 [ 82.445276][ T5447] loop3: detected capacity change from 0 to 1024 [ 82.446318][ T5447] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 82.447785][ T5440] RDS/IB: syz!: added [ 82.448474][ T5447] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869) [ 82.465308][ T5447] EXT4-fs (loop3): invalid journal inode [ 82.466621][ T5447] EXT4-fs (loop3): can't get journal size [ 82.468491][ T5440] smc: adding ib device syz! with port count 1 [ 82.469928][ T5440] smc: ib device syz! port 1 has pnetid [ 82.616999][ T5447] EXT4-fs error (device loop3): ext4_protect_reserved_inode:182: inode #3: comm syz.3.430: blocks 2-2 from inode overlap system zone [ 82.620278][ T5447] EXT4-fs (loop3): failed to initialize system zone (-117) [ 82.622379][ T5447] EXT4-fs (loop3): mount failed [ 83.376416][ T5454] loop4: detected capacity change from 0 to 1024 [ 83.378178][ T5454] EXT4-fs: Ignoring removed nomblk_io_submit option [ 83.398627][ T5454] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 83.416553][ T5454] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 83.475591][ T5454] EXT4-fs mount: 6 callbacks suppressed [ 83.475610][ T5454] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 83.479908][ T5454] EXT4-fs (loop4): unmounting filesystem. [ 83.639666][ T5467] netlink: 'syz.4.436': attribute type 10 has an invalid length. [ 83.641748][ T5467] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 83.664777][ T5467] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 83.699809][ T5467] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link [ 83.726091][ T5464] syz.2.434 uses obsolete (PF_INET,SOCK_PACKET) [ 83.755698][ T5471] netlink: 12 bytes leftover after parsing attributes in process `syz.1.437'. [ 84.085719][ T5480] netlink: 3576 bytes leftover after parsing attributes in process `syz.4.440'. [ 84.667648][ T5498] loop3: detected capacity change from 0 to 512 [ 84.708465][ T5498] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2186: inode #15: comm syz.3.446: corrupted in-inode xattr [ 84.716800][ T5498] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.446: couldn't read orphan inode 15 (err -117) [ 84.739933][ T5498] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 85.014658][ C1] vcan0: j1939_tp_rxtimer: 0x000000007f4c380a: rx timeout, send abort [ 85.016799][ C1] vcan0: j1939_tp_rxtimer: 0x00000000958b57fc: rx timeout, send abort [ 85.018943][ C1] vcan0: j1939_xtp_rx_abort_one: 0x000000007f4c380a: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 85.022689][ C1] vcan0: j1939_xtp_rx_abort_one: 0x00000000958b57fc: 0x00000: (3) A timeout occurred and this is the connection abort to close the session. [ 85.035521][ T27] audit: type=1326 audit(85.000:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5507 comm="syz.4.451" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x0 [ 85.250641][ T5518] loop1: detected capacity change from 0 to 1024 [ 85.297019][ T5518] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 85.416386][ T4319] EXT4-fs (loop1): unmounting filesystem. [ 85.509623][ T5526] netlink: 4 bytes leftover after parsing attributes in process `syz.0.459'. [ 85.644948][ T27] audit: type=1326 audit(85.610:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5531 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 85.649650][ T27] audit: type=1326 audit(85.610:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5531 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 85.671991][ T27] audit: type=1326 audit(85.610:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5531 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 85.676427][ T27] audit: type=1326 audit(85.610:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5531 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 85.705078][ T27] audit: type=1326 audit(85.610:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5531 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 85.709531][ T27] audit: type=1326 audit(85.610:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5531 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 85.735929][ T27] audit: type=1326 audit(85.610:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5531 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 85.751864][ T27] audit: type=1326 audit(85.610:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5531 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 85.775381][ T27] audit: type=1326 audit(85.610:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5531 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 85.834737][ T5545] netlink: 4 bytes leftover after parsing attributes in process `syz.4.463'. [ 86.167912][ T5563] loop2: detected capacity change from 0 to 128 [ 86.399770][ T5571] lo speed is unknown, defaulting to 1000 [ 86.424288][ T4316] EXT4-fs (loop3): unmounting filesystem. [ 86.720740][ T5580] netlink: 4 bytes leftover after parsing attributes in process `syz.4.481'. [ 86.827440][ T5596] loop2: detected capacity change from 0 to 512 [ 86.899134][ T5596] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #2: comm syz.2.486: corrupted xattr block 255 [ 86.933151][ T5602] netlink: 4 bytes leftover after parsing attributes in process `syz.1.488'. [ 86.934407][ T5596] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -117 [ 86.945485][ T5596] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 86.947365][ T5596] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #2: comm syz.2.486: corrupted xattr block 255 [ 86.986906][ T4306] EXT4-fs (loop2): unmounting filesystem. [ 87.352873][ T5616] smc: net device bond0 applied user defined pnetid S [ 87.358698][ T5616] smc: net device bond0 erased user defined pnetid S [ 87.444335][ T5622] netlink: 4 bytes leftover after parsing attributes in process `syz.0.497'. [ 88.171647][ T5641] loop2: detected capacity change from 0 to 512 [ 88.188317][ T5641] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 88.227500][ T4306] EXT4-fs (loop2): unmounting filesystem. [ 88.277509][ T5645] netlink: 8 bytes leftover after parsing attributes in process `syz.3.505'. [ 88.766458][ T5665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 88.774077][ T5665] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 89.228626][ T5677] netlink: 8 bytes leftover after parsing attributes in process `syz.3.516'. [ 89.349023][ T5678] lo speed is unknown, defaulting to 1000 [ 91.007357][ T5693] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.024454][ T5699] netlink: 4 bytes leftover after parsing attributes in process `syz.4.522'. [ 91.026424][ T5699] device bridge_slave_1 left promiscuous mode [ 91.027991][ T5699] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.085283][ T5699] device bridge_slave_0 left promiscuous mode [ 91.086856][ T5699] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.382317][ T5693] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.522158][ T5693] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.552207][ T5706] 9pnet: Could not find request transport: rx¡‘’Ȳ;K"Éçµ?ëí|z.ßìLD|íËßL^»±µ½2_­VÖóòT}5y™eÛW—Wç—*K•µÙÙ™s7ç®ÏM÷¤ãqë‹úÁwö¥[¿úôÃßßýËä·ZlÙÛŽ^j5½Øü_´"bý$‚H¡Ù–ë® [ 91.673716][ T5693] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.691973][ T5710] netlink: 12 bytes leftover after parsing attributes in process `syz.0.527'. [ 91.700729][ T5710] device bond2 entered promiscuous mode [ 91.803856][ T5710] 8021q: adding VLAN 0 to HW filter on device bond3 [ 91.806133][ T5710] device bond3 entered promiscuous mode [ 91.807650][ T5710] bond2: (slave bond3): Enslaving as an active interface with an up link [ 91.838608][ T5717] netlink: 4 bytes leftover after parsing attributes in process `syz.0.527'. [ 91.849366][ T5717] bond2 (unregistering): (slave bond3): Releasing backup interface [ 91.918059][ T5717] device bond3 left promiscuous mode [ 91.935933][ T5717] bond2 (unregistering): Released all slaves [ 92.003905][ T5693] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.009089][ T5720] tipc: Started in network mode [ 92.010735][ T5720] tipc: Node identity 0ad3c418d026, cluster identity 4711 [ 92.013480][ T5720] tipc: Enabled bearer , priority 0 [ 92.025903][ T5693] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.047422][ T5693] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.067615][ T5693] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.950329][ T5733] loop3: detected capacity change from 0 to 1024 [ 92.952155][ T5733] EXT4-fs: Ignoring removed nomblk_io_submit option [ 93.023068][ T1963] tipc: Node number set to 3673539608 [ 93.030004][ T5733] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 93.068767][ T4316] EXT4-fs (loop3): unmounting filesystem. [ 93.188424][ T5745] netlink: 12 bytes leftover after parsing attributes in process `syz.3.537'. [ 93.406337][ T5755] netlink: 108 bytes leftover after parsing attributes in process `syz.3.541'. [ 93.709263][ T5757] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 93.738012][ T5759] netlink: 28 bytes leftover after parsing attributes in process `syz.0.543'. [ 94.086964][ T5777] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 94.093380][ T5777] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 94.244434][ T27] kauditd_printk_skb: 36 callbacks suppressed [ 94.244446][ T27] audit: type=1326 audit(94.210:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.4.551" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 94.253145][ T27] audit: type=1326 audit(94.220:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.4.551" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=111 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 94.261151][ T27] audit: type=1326 audit(94.220:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5782 comm="syz.4.551" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 94.496134][ T5762] team0: Port device team_slave_1 removed [ 94.583725][ T5757] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.592078][ T5787] netlink: 96 bytes leftover after parsing attributes in process `syz.4.553'. [ 94.654291][ T27] audit: type=1326 audit(94.620:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5790 comm="syz.2.555" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x0 [ 94.712031][ T5757] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.844668][ T5757] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 94.881039][ T5798] tipc: Enabling of bearer rejected, already enabled [ 94.884321][ T5798] device syzkaller0 entered promiscuous mode [ 95.053367][ T5757] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.074590][ T5757] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.088866][ T5757] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.106819][ T5757] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.759993][ T5821] netlink: 8 bytes leftover after parsing attributes in process `syz.0.567'. [ 95.894816][ T5826] tipc: Started in network mode [ 95.895952][ T5826] tipc: Node identity eac0c24d363f, cluster identity 4711 [ 95.897800][ T5826] tipc: Enabled bearer , priority 0 [ 95.903617][ T5826] device syzkaller0 entered promiscuous mode [ 95.918124][ T5825] tipc: Resetting bearer [ 95.919627][ T5830] netlink: 'syz.4.570': attribute type 3 has an invalid length. [ 96.012023][ T5825] tipc: Disabling bearer [ 96.016349][ T5832] netlink: 28 bytes leftover after parsing attributes in process `syz.0.571'. [ 96.039963][ T5828] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.112822][ T5828] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.185340][ T5828] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.257286][ T5828] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 96.399204][ T5848] loop4: detected capacity change from 0 to 512 [ 96.404487][ T5850] netlink: 16 bytes leftover after parsing attributes in process `syz.3.579'. [ 96.447372][ T5848] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 96.449693][ T5848] EXT4-fs (loop4): orphan cleanup on readonly fs [ 96.473380][ T5848] Quota error (device loop4): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 96.479886][ T5848] EXT4-fs warning (device loop4): ext4_enable_quotas:7029: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 96.498602][ T5848] EXT4-fs (loop4): Cannot turn on quotas: error -117 [ 96.513648][ T5848] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.578: bg 0: block 40: padding at end of block bitmap is not set [ 96.541202][ T5848] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 96.566057][ T5848] EXT4-fs (loop4): 1 truncate cleaned up [ 96.567628][ T5848] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 96.626730][ T5848] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 96.932126][ T5870] loop1: detected capacity change from 0 to 1024 [ 96.952990][ T5870] EXT4-fs: Ignoring removed orlov option [ 96.963850][ T5870] EXT4-fs: Ignoring removed nomblk_io_submit option [ 97.029709][ T5870] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 97.282631][ T4319] EXT4-fs (loop1): unmounting filesystem. [ 97.291696][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 97.412462][ T5882] netlink: 4 bytes leftover after parsing attributes in process `syz.2.588'. [ 97.707839][ T5895] syz.1.594 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 97.822217][ T5898] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 97.838227][ T5898] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 98.574229][ T27] audit: type=1326 audit(98.540:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5904 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 98.581795][ T27] audit: type=1326 audit(98.550:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5904 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=102 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 98.593242][ T27] audit: type=1326 audit(98.550:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5904 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 98.740890][ T5912] loop1: detected capacity change from 0 to 2048 [ 98.805339][ T5912] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 99.077956][ T5922] netlink: 'syz.3.603': attribute type 2 has an invalid length. [ 99.598896][ T4319] EXT4-fs (loop1): unmounting filesystem. [ 99.936060][ T5939] loop2: detected capacity change from 0 to 512 [ 100.004635][ T5939] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.610: bg 0: block 248: padding at end of block bitmap is not set [ 100.009233][ T27] audit: type=1326 audit(99.970:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5947 comm="syz.3.614" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 100.015605][ T27] audit: type=1326 audit(99.980:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5947 comm="syz.3.614" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 100.025895][ T5939] Quota error (device loop2): write_blk: dquota write failed [ 100.029122][ T27] audit: type=1326 audit(99.980:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5947 comm="syz.3.614" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 100.034198][ T5939] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 100.036234][ T5939] EXT4-fs error (device loop2): ext4_acquire_dquot:6794: comm syz.2.610: Failed to acquire dquot type 1 [ 100.043100][ T5939] EXT4-fs (loop2): 1 truncate cleaned up [ 100.044410][ T5939] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 100.055375][ T5950] loop1: detected capacity change from 0 to 256 [ 100.057808][ T27] audit: type=1326 audit(99.980:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5947 comm="syz.3.614" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 100.080531][ T27] audit: type=1326 audit(99.980:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5947 comm="syz.3.614" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 100.088807][ T5950] FAT-fs (loop1): Directory bread(block 64) failed [ 100.091702][ T5950] FAT-fs (loop1): Directory bread(block 65) failed [ 100.094305][ T27] audit: type=1326 audit(99.990:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5947 comm="syz.3.614" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=267 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 100.100974][ T5950] FAT-fs (loop1): Directory bread(block 66) failed [ 100.104791][ T5950] FAT-fs (loop1): Directory bread(block 67) failed [ 100.107597][ T5950] FAT-fs (loop1): Directory bread(block 68) failed [ 100.109163][ T27] audit: type=1326 audit(99.990:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5947 comm="syz.3.614" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 100.116512][ T5950] FAT-fs (loop1): Directory bread(block 69) failed [ 100.119127][ T5950] FAT-fs (loop1): Directory bread(block 70) failed [ 100.122176][ T5950] FAT-fs (loop1): Directory bread(block 71) failed [ 100.124753][ T5950] FAT-fs (loop1): Directory bread(block 72) failed [ 100.128704][ T5950] FAT-fs (loop1): Directory bread(block 73) failed [ 100.196136][ T5953] loop3: detected capacity change from 0 to 2048 [ 100.257191][ T5956] loop1: detected capacity change from 0 to 512 [ 100.259163][ T5956] EXT4-fs: Invalid want_extra_isize 0 [ 100.263690][ T5442] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 100.303902][ T5461] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 100.307848][ T27] audit: type=1326 audit(100.270:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5955 comm="syz.1.616" exe="/root/syz-executor" sig=9 arch=c00000b7 syscall=98 compat=0 ip=0xffffafb5a968 code=0x0 [ 100.386357][ T4306] EXT4-fs (loop2): unmounting filesystem. [ 100.684159][ T5968] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 101.064319][ T5980] loop4: detected capacity change from 0 to 1024 [ 101.166377][ T5980] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:477: comm syz.4.625: Invalid block bitmap block 0 in block_group 0 [ 101.188399][ T5980] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.625: Failed to acquire dquot type 0 [ 101.216923][ T5980] EXT4-fs error (device loop4): ext4_free_blocks:6210: comm syz.4.625: Freeing blocks not in datazone - block = 0, count = 4096 [ 101.256380][ T5980] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.625: Invalid inode bitmap blk 0 in block_group 0 [ 101.260388][ T5320] EXT4-fs error (device loop4): ext4_release_dquot:6817: comm kworker/u4:14: Failed to release dquot type 0 [ 101.279205][ T5980] EXT4-fs error (device loop4) in ext4_free_inode:362: Corrupt filesystem [ 101.289621][ T5980] EXT4-fs (loop4): 1 orphan inode deleted [ 101.297488][ T5980] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 101.452623][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 102.240960][ T6016] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 102.243092][ T6016] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 102.265093][ T6018] ALSA: seq fatal error: cannot create timer (-22) [ 102.376255][ T5828] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.396886][ T5828] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.412663][ T5828] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.447982][ T5828] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.206814][ T6046] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.249365][ T6049] netlink: 28 bytes leftover after parsing attributes in process `syz.3.652'. [ 103.284766][ T6051] netlink: 4 bytes leftover after parsing attributes in process `syz.1.654'. [ 103.338538][ T6046] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.406045][ T6046] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.478070][ T6046] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 103.667298][ T6046] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.675827][ T6046] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.699837][ T6046] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.718926][ T6046] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.022775][ T6068] netlink: 4 bytes leftover after parsing attributes in process `syz.0.661'. [ 104.758157][ T6092] netlink: 28 bytes leftover after parsing attributes in process `syz.1.670'. [ 104.834871][ T6086] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 104.868881][ T6096] team0: Port device team_slave_1 removed [ 104.920216][ T6098] netlink: 'syz.3.674': attribute type 27 has an invalid length. [ 105.611622][ T27] kauditd_printk_skb: 9 callbacks suppressed [ 105.611634][ T27] audit: type=1326 audit(105.580:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6105 comm="syz.4.677" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 105.617728][ T27] audit: type=1326 audit(105.580:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6105 comm="syz.4.677" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 105.640220][ T27] audit: type=1326 audit(105.590:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6105 comm="syz.4.677" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=277 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 105.644400][ T27] audit: type=1326 audit(105.590:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6105 comm="syz.4.677" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 105.676202][ T27] audit: type=1326 audit(105.590:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6105 comm="syz.4.677" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 105.683006][ T27] audit: type=1326 audit(105.590:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6105 comm="syz.4.677" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 105.687411][ T27] audit: type=1326 audit(105.590:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6105 comm="syz.4.677" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 105.723611][ T27] audit: type=1326 audit(105.590:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6105 comm="syz.4.677" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=100 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 105.728472][ T27] audit: type=1326 audit(105.590:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6105 comm="syz.4.677" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 105.739549][ T27] audit: type=1326 audit(105.590:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6105 comm="syz.4.677" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 105.833214][ T6114] loop4: detected capacity change from 0 to 2048 [ 105.885493][ T6114] loop4: p2 p3 p7 [ 106.075567][ T6123] qrtr: Invalid version 0 [ 106.445466][ T6129] netlink: 32 bytes leftover after parsing attributes in process `syz.4.684'. [ 107.940230][ T6098] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.942096][ T6098] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.943820][ T6098] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.945567][ T6098] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 108.212177][ T6121] netlink: 4 bytes leftover after parsing attributes in process `syz.2.681'. [ 108.293807][ T6086] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 108.651863][ T6154] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 108.653824][ T6154] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 108.965684][ T6158] netlink: 32 bytes leftover after parsing attributes in process `syz.2.695'. [ 109.795527][ T6086] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 109.819092][ T6164] loop4: detected capacity change from 0 to 512 [ 109.860352][ T6164] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 109.941890][ T6086] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.175057][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 110.227761][ T6173] netlink: 4 bytes leftover after parsing attributes in process `syz.0.701'. [ 110.237289][ T6086] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.269610][ T6086] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.286837][ T6086] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.292277][ T6086] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.400964][ T6183] loop1: detected capacity change from 0 to 164 [ 110.414320][ T6183] Unable to read rock-ridge attributes [ 110.847234][ T6201] netlink: 32 bytes leftover after parsing attributes in process `syz.4.706'. [ 111.733258][ T6210] serio: Serial port ptm0 [ 112.018122][ T6231] netlink: 20 bytes leftover after parsing attributes in process `syz.3.723'. [ 112.174974][ T6241] netlink: 'syz.1.728': attribute type 10 has an invalid length. [ 112.201013][ T6241] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 112.203793][ T6241] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 112.349896][ T27] kauditd_printk_skb: 31 callbacks suppressed [ 112.349909][ T27] audit: type=1326 audit(112.310:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6251 comm="syz.1.732" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffafb5a968 code=0x7ffc0000 [ 112.357280][ T27] audit: type=1326 audit(112.320:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6251 comm="syz.1.732" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffafb5a968 code=0x7ffc0000 [ 112.372695][ T27] audit: type=1326 audit(112.340:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6251 comm="syz.1.732" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=437 compat=0 ip=0xffffafb5a968 code=0x7ffc0000 [ 112.386284][ T27] audit: type=1326 audit(112.340:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6251 comm="syz.1.732" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffafb5a968 code=0x7ffc0000 [ 112.428845][ T27] audit: type=1326 audit(112.340:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6251 comm="syz.1.732" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffafb5a968 code=0x7ffc0000 [ 113.012072][ T6293] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 113.029718][ T6295] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.750'. [ 113.034975][ T6293] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 113.354473][ T6314] netlink: 16 bytes leftover after parsing attributes in process `syz.0.759'. [ 113.468556][ T6314] netlink: 16 bytes leftover after parsing attributes in process `syz.0.759'. [ 113.629970][ T6327] MPTCP: kernel_bind error, err=-22 [ 113.642996][ T6314] netlink: 16 bytes leftover after parsing attributes in process `syz.0.759'. [ 113.684320][ T6329] loop4: detected capacity change from 0 to 512 [ 113.712809][ T6329] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 113.744826][ T6329] EXT4-fs (loop4): 1 truncate cleaned up [ 113.746162][ T6329] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 114.357430][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 114.418883][ T6354] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.465470][ T6357] netlink: 28 bytes leftover after parsing attributes in process `syz.1.773'. [ 114.476716][ T6354] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.558896][ T6354] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.641157][ T6354] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 114.663535][ T27] audit: type=1326 audit(114.630:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.4.779" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 114.669710][ T27] audit: type=1326 audit(114.630:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.4.779" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 114.681197][ T27] audit: type=1326 audit(114.650:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.4.779" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 114.685811][ T27] audit: type=1326 audit(114.650:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.4.779" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 114.691764][ T27] audit: type=1326 audit(114.650:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6367 comm="syz.4.779" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 114.710337][ T6368] loop4: detected capacity change from 0 to 2048 [ 116.238451][ T6454] loop2: detected capacity change from 0 to 1024 [ 116.248573][ T6457] netlink: 'syz.4.806': attribute type 10 has an invalid length. [ 116.279260][ T6457] device veth0_macvtap left promiscuous mode [ 116.296858][ T6454] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 116.312781][ T6457] batman_adv: batadv0: Adding interface: macvtap0 [ 116.314189][ T6457] batman_adv: batadv0: The MTU of interface macvtap0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 116.325903][ T6454] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 116.332198][ T6454] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28 [ 116.336043][ T6454] EXT4-fs (loop2): This should not happen!! Data will be lost [ 116.336043][ T6454] [ 116.338106][ T6454] EXT4-fs (loop2): Total free blocks count 0 [ 116.339524][ T6454] EXT4-fs (loop2): Free/Dirty block details [ 116.341379][ T6454] EXT4-fs (loop2): free_blocks=4293918720 [ 116.342865][ T6454] EXT4-fs (loop2): dirty_blocks=64 [ 116.344049][ T6454] EXT4-fs (loop2): Block reservation details [ 116.345349][ T6454] EXT4-fs (loop2): i_reserved_data_blocks=4 [ 116.347993][ T6457] batman_adv: batadv0: Not using interface macvtap0 (retrying later): interface not active [ 116.393409][ T4306] EXT4-fs (loop2): unmounting filesystem. [ 116.617452][ T6354] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.623052][ T6354] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.735414][ T6354] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.741869][ T6354] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.808102][ T6484] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 116.838872][ T6484] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 116.984583][ T6494] netlink: 20 bytes leftover after parsing attributes in process `syz.4.819'. [ 117.674819][ T6508] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.728703][ T6508] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.732830][ T6511] netlink: 28 bytes leftover after parsing attributes in process `syz.1.826'. [ 117.776127][ T6508] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.875364][ T6508] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.209244][ T27] kauditd_printk_skb: 79 callbacks suppressed [ 119.209259][ T27] audit: type=1326 audit(119.170:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6556 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 119.215087][ T27] audit: type=1326 audit(119.170:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6556 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 119.219476][ T27] audit: type=1326 audit(119.180:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6556 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 119.242603][ T27] audit: type=1326 audit(119.180:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6556 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 119.247034][ T27] audit: type=1326 audit(119.180:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6556 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 119.260429][ T27] audit: type=1326 audit(119.180:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6556 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 119.269624][ T27] audit: type=1326 audit(119.180:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6556 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 119.279176][ T27] audit: type=1326 audit(119.180:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6556 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 119.296499][ T27] audit: type=1326 audit(119.180:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6556 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 119.309845][ T27] audit: type=1326 audit(119.180:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6556 comm="syz.2.843" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 119.575924][ T6569] loop4: detected capacity change from 0 to 1764 [ 119.620557][ T5442] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 119.694549][ T6576] netlink: 4 bytes leftover after parsing attributes in process `syz.3.849'. [ 122.224661][ T6637] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 122.226696][ T6637] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 122.632897][ T6508] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.637913][ T6508] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.643793][ T6508] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.649032][ T6508] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.814335][ T6646] bond0: (slave syz_tun): Releasing backup interface [ 122.863443][ T6654] loop3: detected capacity change from 0 to 512 [ 122.899077][ T6654] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 123.105557][ T4316] EXT4-fs (loop3): unmounting filesystem. [ 123.204069][ T6672] netlink: 28 bytes leftover after parsing attributes in process `syz.3.889'. [ 123.403410][ T6684] loop3: detected capacity change from 0 to 764 [ 123.701050][ T6698] netlink: 28 bytes leftover after parsing attributes in process `syz.0.901'. [ 123.935766][ T6723] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.910'. [ 123.955282][ T6727] netlink: 4 bytes leftover after parsing attributes in process `syz.0.907'. [ 123.998885][ T6726] loop3: detected capacity change from 0 to 2048 [ 124.028957][ T6729] xt_connbytes: Forcing CT accounting to be enabled [ 124.031840][ T6729] Cannot find del_set index 1 as target [ 124.035534][ T6726] Alternate GPT is invalid, using primary GPT. [ 124.038225][ T6726] loop3: p2 p3 p7 [ 124.218258][ T5462] udevd[5462]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 124.228522][ T5427] udevd[5427]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory [ 124.261797][ T5442] udevd[5442]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 124.284997][ T6740] netlink: 28 bytes leftover after parsing attributes in process `syz.0.915'. [ 124.577564][ T6761] loop3: detected capacity change from 0 to 512 [ 124.586348][ T6761] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 124.618599][ T6761] EXT4-fs (loop3): 1 truncate cleaned up [ 124.619853][ T6761] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 124.626175][ T6768] netlink: 4 bytes leftover after parsing attributes in process `syz.4.922'. [ 124.660200][ T4316] EXT4-fs (loop3): unmounting filesystem. [ 124.872475][ T6778] netlink: 28 bytes leftover after parsing attributes in process `syz.0.928'. [ 124.951077][ T6782] netlink: 4 bytes leftover after parsing attributes in process `syz.2.930'. [ 124.953681][ T6782] netlink: 4 bytes leftover after parsing attributes in process `syz.2.930'. [ 125.147325][ T6800] loop4: detected capacity change from 0 to 512 [ 125.217971][ T6800] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 125.286990][ T6814] netlink: 4 bytes leftover after parsing attributes in process `syz.2.937'. [ 125.339350][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 125.503673][ T6826] netlink: 28 bytes leftover after parsing attributes in process `syz.2.944'. [ 125.951053][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.952446][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 126.092794][ T4356] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 126.204289][ T6856] netlink: 4 bytes leftover after parsing attributes in process `syz.2.954'. [ 126.247990][ T6862] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 126.299597][ T4356] usb 1-1: config 0 has an invalid interface number: 106 but max is 0 [ 126.301099][ T27] kauditd_printk_skb: 53 callbacks suppressed [ 126.301110][ T27] audit: type=1107 audit(126.270:436): pid=6861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='`' [ 126.301965][ T4356] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 126.306992][ T4356] usb 1-1: config 0 has no interface number 0 [ 126.308278][ T4356] usb 1-1: config 0 interface 106 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 126.315415][ T4356] usb 1-1: config 0 interface 106 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 126.317552][ T4356] usb 1-1: config 0 interface 106 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 6 [ 126.320342][ T4356] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=df.bb [ 126.323670][ T4356] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 126.336188][ T4356] usb 1-1: config 0 descriptor?? [ 126.349372][ T4356] usb 1-1: Warning: ath10k USB support is incomplete, don't expect anything to work! [ 126.474560][ T6870] netlink: 28 bytes leftover after parsing attributes in process `syz.4.957'. [ 126.494838][ T6870] team0: Port device team_slave_1 removed [ 127.123349][ T6899] netlink: 28 bytes leftover after parsing attributes in process `syz.4.969'. [ 127.232041][ T6909] qrtr: Invalid version 0 [ 127.390647][ T6130] usb 1-1: Failed to submit usb control message: -110 [ 127.394946][ T6130] usb 1-1: unable to send the bmi data to the device: -110 [ 127.396634][ T6130] usb 1-1: unable to get target info from device [ 127.398208][ T6130] usb 1-1: could not get target info (-110) [ 127.399437][ T6130] usb 1-1: could not probe fw (-110) [ 127.473879][ T27] audit: type=1326 audit(127.440:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.4.980" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 127.491940][ T27] audit: type=1326 audit(127.460:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.4.980" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=178 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 127.499594][ T27] audit: type=1326 audit(127.460:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.4.980" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 127.509644][ T27] audit: type=1326 audit(127.460:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.4.980" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 127.535593][ T27] audit: type=1326 audit(127.460:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.4.980" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=138 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 127.559507][ T27] audit: type=1326 audit(127.460:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.4.980" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffff81f5244c code=0x7ffc0000 [ 127.564810][ T27] audit: type=1326 audit(127.460:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.4.980" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffff82e7e89c code=0x7ffc0000 [ 127.569271][ T27] audit: type=1326 audit(127.460:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.4.980" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 127.627697][ T6930] netlink: 28 bytes leftover after parsing attributes in process `syz.4.983'. [ 127.680329][ T27] audit: type=1326 audit(127.650:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6933 comm="syz.3.986" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 127.728354][ T6939] qrtr: Invalid version 0 [ 128.165210][ T6966] qrtr: Invalid version 0 [ 128.339668][ T22] usb 1-1: USB disconnect, device number 2 [ 128.420381][ T6978] loop2: detected capacity change from 0 to 2048 [ 128.586497][ T6988] rtc-efi rtc-efi.0: write status is 3 [ 128.624292][ T6988] loop1: detected capacity change from 0 to 512 [ 128.633494][ T6990] loop4: detected capacity change from 0 to 512 [ 128.641670][ T6990] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 128.668045][ T6996] qrtr: Invalid version 0 [ 128.694280][ T6988] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 128.696749][ T6990] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 128.709706][ T6998] loop2: detected capacity change from 0 to 512 [ 128.741480][ T6998] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2186: inode #15: comm syz.2.1012: corrupted in-inode xattr [ 128.744206][ T6998] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.1012: couldn't read orphan inode 15 (err -117) [ 128.747618][ T6998] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 128.754951][ T6998] EXT4-fs (loop2): shut down requested (2) [ 128.821078][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 128.868089][ T4306] EXT4-fs (loop2): unmounting filesystem. [ 129.514113][ T7027] qrtr: Invalid version 0 [ 129.835327][ T7039] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 129.837517][ T7039] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 130.255423][ T7047] bond0: (slave syz_tun): Releasing backup interface [ 130.306987][ T7053] (unnamed net_device) (uninitialized): down delay (32768) is not a multiple of miimon (100), value rounded to 32700 ms [ 130.321042][ T7053] device bond1 entered promiscuous mode [ 130.322821][ T7053] 8021q: adding VLAN 0 to HW filter on device bond1 [ 130.392720][ T4319] EXT4-fs (loop1): unmounting filesystem. [ 130.475854][ T7062] qrtr: Invalid version 0 [ 130.569106][ T7066] lo speed is unknown, defaulting to 1000 [ 130.653122][ T7067] loop1: detected capacity change from 0 to 2048 [ 130.770424][ T7075] Driver unsupported XDP return value 0 on prog (id 33) dev N/A, expect packet loss! [ 131.392411][ T7067] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 131.591463][ T4319] EXT4-fs (loop1): unmounting filesystem. [ 131.743133][ T7090] device netdevsim0 entered promiscuous mode [ 131.761322][ T7087] device netdevsim0 left promiscuous mode [ 132.809395][ T7132] lo speed is unknown, defaulting to 1000 [ 134.278761][ T27] kauditd_printk_skb: 25 callbacks suppressed [ 134.278774][ T27] audit: type=1326 audit(134.240:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.1068" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 134.295677][ T27] audit: type=1326 audit(134.250:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.1068" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=134 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 134.320913][ T27] audit: type=1326 audit(134.260:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.1068" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 134.358275][ T27] audit: type=1326 audit(134.270:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.1068" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 134.406879][ T27] audit: type=1326 audit(134.270:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.1068" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 134.454831][ T27] audit: type=1326 audit(134.270:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.1068" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=47 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 134.459163][ T27] audit: type=1326 audit(134.270:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.1068" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 134.524744][ T27] audit: type=1326 audit(134.480:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.1.1070" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffafb5a968 code=0x7ffc0000 [ 134.554292][ T27] audit: type=1326 audit(134.480:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.1.1070" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffafb5a968 code=0x7ffc0000 [ 134.586761][ T27] audit: type=1326 audit(134.500:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.1.1070" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=63 compat=0 ip=0xffffafb5a968 code=0x7ffc0000 [ 135.015484][ T7164] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 135.018919][ T7164] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 135.685295][ T7169] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1076'. [ 135.748466][ T7171] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1074'. [ 136.176236][ T7195] loop3: detected capacity change from 0 to 512 [ 136.229241][ T7195] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1084: bg 0: block 248: padding at end of block bitmap is not set [ 136.255402][ T7195] EXT4-fs error (device loop3): ext4_acquire_dquot:6794: comm syz.3.1084: Failed to acquire dquot type 1 [ 136.288959][ T7195] EXT4-fs (loop3): 1 truncate cleaned up [ 136.290524][ T7195] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 136.417542][ T4316] EXT4-fs (loop3): unmounting filesystem. [ 136.489501][ T7208] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1090'. [ 136.554135][ T7210] loop3: detected capacity change from 0 to 2048 [ 136.583750][ T7212] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1091'. [ 136.599895][ T7210] EXT4-fs error (device loop3): __ext4_fill_super:5388: inode #2: comm syz.3.1089: iget: bad extended attribute block 281474976710655 [ 136.604194][ T7210] EXT4-fs (loop3): get root inode failed [ 136.606841][ T7210] EXT4-fs (loop3): mount failed [ 136.733096][ T7226] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1092'. [ 137.151969][ T7247] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1102'. [ 137.264499][ T7249] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1103'. [ 137.461557][ T7255] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1106'. [ 137.560642][ T7266] loop3: detected capacity change from 0 to 2048 [ 137.589833][ T7266] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 137.612969][ T7266] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 137.620757][ T7266] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 137.903623][ T7281] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1114'. [ 137.971960][ T7283] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1115'. [ 138.112618][ T7295] loop4: detected capacity change from 0 to 512 [ 138.128952][ T7295] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.1121: Failed to acquire dquot type 1 [ 138.132554][ T7295] EXT4-fs (loop4): 1 truncate cleaned up [ 138.133744][ T7295] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 138.194223][ T4316] EXT4-fs (loop3): unmounting filesystem. [ 138.222202][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 138.571865][ T7321] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 138.575728][ T7321] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 140.705019][ T7389] __nla_validate_parse: 7 callbacks suppressed [ 140.705033][ T7389] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1149'. [ 141.068383][ T7410] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1159'. [ 141.560297][ T7395] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1154'. [ 141.569390][ T7395] device bond1 entered promiscuous mode [ 141.596395][ T7402] 8021q: adding VLAN 0 to HW filter on device bond2 [ 141.602401][ T7402] device bond2 entered promiscuous mode [ 141.606376][ T7402] bond1: (slave bond2): Enslaving as an active interface with an up link [ 141.615548][ T7406] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1154'. [ 141.622228][ T7406] bond1 (unregistering): (slave bond2): Releasing backup interface [ 141.661150][ T7406] device bond2 left promiscuous mode [ 141.678377][ T7406] bond1 (unregistering): Released all slaves [ 141.701197][ T7407] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1158'. [ 141.703629][ T7413] syzkaller0: Caught tx_queue_len zero misconfig [ 141.750359][ T7432] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1163'. [ 141.999737][ T7448] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1170'. [ 142.947225][ T7454] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 142.957734][ T7454] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 144.044188][ T7461] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1174'. [ 144.181204][ T7472] loop1: detected capacity change from 0 to 256 [ 144.186789][ T7472] FAT-fs (loop1): Unrecognized mount option "ÿÿÿÿÿÿÿ" or missing value [ 144.255939][ T7481] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1181'. [ 144.265303][ T7474] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1178'. [ 144.426045][ T7491] ieee802154 phy0 wpan0: encryption failed: -22 [ 144.696531][ T7503] SET target dimension over the limit! [ 145.737673][ T7576] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 145.751466][ T7576] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 146.032913][ T7588] __nla_validate_parse: 13 callbacks suppressed [ 146.032928][ T7588] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1220'. [ 146.588759][ T7608] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1229'. [ 146.844059][ T7628] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1236'. [ 146.987603][ T7636] smc: net device bond0 applied user defined pnetid S [ 147.006070][ T7636] smc: net device bond0 erased user defined pnetid S [ 147.352925][ T7653] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1249'. [ 147.449799][ T7663] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1246'. [ 147.715016][ T7675] netlink: 'syz.3.1255': attribute type 3 has an invalid length. [ 147.823951][ T7682] smc: net device bond0 applied user defined pnetid S [ 147.830347][ T7682] smc: net device bond0 erased user defined pnetid S [ 147.934380][ T7692] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1266'. [ 148.062311][ T7698] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1261'. [ 150.282392][ T27] kauditd_printk_skb: 24 callbacks suppressed [ 150.282404][ T27] audit: type=1326 audit(150.250:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7721 comm="syz.3.1270" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 150.302386][ T27] audit: type=1326 audit(150.270:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7721 comm="syz.3.1270" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 150.330282][ T27] audit: type=1326 audit(150.270:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7721 comm="syz.3.1270" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 150.356682][ T27] audit: type=1326 audit(150.270:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7721 comm="syz.3.1270" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 150.367551][ T27] audit: type=1326 audit(150.270:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7721 comm="syz.3.1270" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 150.381272][ T7725] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 150.395426][ T27] audit: type=1326 audit(150.270:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7721 comm="syz.3.1270" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 150.404793][ T27] audit: type=1326 audit(150.280:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7721 comm="syz.3.1270" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 150.409216][ T27] audit: type=1326 audit(150.300:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7721 comm="syz.3.1270" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 150.434352][ T27] audit: type=1326 audit(150.300:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7721 comm="syz.3.1270" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 150.459065][ T27] audit: type=1326 audit(150.300:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7721 comm="syz.3.1270" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=148 compat=0 ip=0xffffad75a968 code=0x7ffc0000 [ 150.644282][ T7745] loop1: detected capacity change from 0 to 1024 [ 153.844834][ T7803] loop2: detected capacity change from 0 to 1024 [ 153.892366][ T7803] EXT4-fs: Ignoring removed orlov option [ 153.893602][ T7803] EXT4-fs: Ignoring removed orlov option [ 153.894846][ T7803] EXT4-fs: Ignoring removed oldalloc option [ 153.919392][ T7811] 9pnet_fd: Insufficient options for proto=fd [ 153.930375][ T7803] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 153.932596][ T7803] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (12914!=20869) [ 153.950644][ T7803] EXT4-fs (loop2): invalid journal inode [ 153.951951][ T7803] EXT4-fs (loop2): can't get journal size [ 154.003493][ T7803] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 154.073075][ T4306] EXT4-fs (loop2): unmounting filesystem. [ 154.446834][ T7843] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 154.453918][ T7843] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 155.905797][ T7852] lo speed is unknown, defaulting to 1000 [ 156.598111][ T7866] xt_hashlimit: max too large, truncated to 1048576 [ 156.633239][ T7868] loop2: detected capacity change from 0 to 2048 [ 156.691242][ T7870] sit0 speed is unknown, defaulting to 1000 [ 156.693652][ T7870] sit0 speed is unknown, defaulting to 1000 [ 156.697650][ T7868] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 156.700800][ T7870] sit0 speed is unknown, defaulting to 1000 [ 156.763862][ T7875] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 156.865670][ T4306] EXT4-fs (loop2): unmounting filesystem. [ 157.029322][ T7870] infiniband syz2: set down [ 157.032828][ T22] sit0 speed is unknown, defaulting to 1000 [ 157.037661][ T7870] infiniband syz2: added sit0 [ 157.117829][ T7870] RDS/IB: syz2: added [ 157.118892][ T7870] smc: adding ib device syz2 with port count 1 [ 157.137259][ T7870] smc: ib device syz2 port 1 has pnetid [ 157.138895][ T22] sit0 speed is unknown, defaulting to 1000 [ 157.150636][ T7870] sit0 speed is unknown, defaulting to 1000 [ 157.396790][ T7870] sit0 speed is unknown, defaulting to 1000 [ 157.634456][ T7870] sit0 speed is unknown, defaulting to 1000 [ 157.744030][ T7870] sit0 speed is unknown, defaulting to 1000 [ 157.754624][ T7899] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1335'. [ 157.884597][ T7870] sit0 speed is unknown, defaulting to 1000 [ 159.839936][ T7983] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 159.860519][ T7983] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 160.019277][ T27] kauditd_printk_skb: 45 callbacks suppressed [ 160.019290][ T27] audit: type=1326 audit(159.980:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7991 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 160.078057][ T27] audit: type=1326 audit(160.040:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7991 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 160.086974][ T7997] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1365'. [ 160.091081][ T27] audit: type=1326 audit(160.060:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7991 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 160.485592][ T27] audit: type=1326 audit(160.170:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7991 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 160.698614][ T27] audit: type=1326 audit(160.190:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7991 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 160.835649][ T27] audit: type=1326 audit(160.770:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7991 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 160.869977][ T27] audit: type=1326 audit(160.770:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7991 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=62 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 160.922766][ T27] audit: type=1326 audit(160.770:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7991 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 160.960920][ T27] audit: type=1326 audit(160.770:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7991 comm="syz.2.1364" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 161.005250][ T8005] loop4: detected capacity change from 0 to 1024 [ 161.025470][ T8005] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 161.065762][ T8005] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 161.177126][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 161.250209][ T8020] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1366'. [ 161.800556][ T8049] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1379'. [ 163.898144][ T27] audit: type=1326 audit(163.860:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8089 comm="syz.1.1391" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffafb5a968 code=0x7ffc0000 [ 163.935718][ T8093] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1393'. [ 164.982785][ T8114] loop4: detected capacity change from 0 to 164 [ 164.988411][ T8114] Unable to read rock-ridge attributes [ 164.993236][ T8114] Unable to read rock-ridge attributes [ 165.013813][ T8114] Unable to read rock-ridge attributes [ 165.033427][ T8114] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 165.083097][ T8120] xt_hashlimit: max too large, truncated to 1048576 [ 165.097286][ T8120] No such timeout policy "syz1" [ 165.371138][ T8133] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1405'. [ 166.479279][ T8157] loop3: detected capacity change from 0 to 128 [ 166.718963][ T8174] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1418'. [ 166.832744][ T8185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1417'. [ 167.011010][ T8187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 167.012982][ T8187] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 167.661130][ T8210] loop3: detected capacity change from 0 to 512 [ 167.715254][ T8210] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.1429: casefold flag without casefold feature [ 167.718270][ T8210] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1429: couldn't read orphan inode 15 (err -117) [ 167.725539][ T8210] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 167.744335][ T8212] device bond_slave_0 entered promiscuous mode [ 167.746252][ T8212] device bond_slave_1 entered promiscuous mode [ 167.757840][ T8216] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1430'. [ 167.761986][ T8212] device bond_slave_0 left promiscuous mode [ 167.763428][ T8212] device bond_slave_1 left promiscuous mode [ 167.985083][ T8222] hub 6-0:1.0: USB hub found [ 168.004987][ T8222] hub 6-0:1.0: 8 ports detected [ 168.104191][ T4316] EXT4-fs (loop3): unmounting filesystem. [ 168.150451][ T8233] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1432'. [ 168.246696][ T8240] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1437'. [ 168.420225][ T8242] 9pnet: Could not find request transport: 0xffffffffffffffff [ 168.505133][ T8247] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 168.507099][ T8247] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 168.674831][ T8258] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1443'. [ 168.720980][ T8259] loop1: detected capacity change from 0 to 512 [ 168.746123][ T8259] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 168.746135][ T8262] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1444'. [ 168.825831][ T8259] EXT4-fs (loop1): 1 truncate cleaned up [ 168.827084][ T8259] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 170.138787][ T4319] EXT4-fs (loop1): unmounting filesystem. [ 170.192821][ T8291] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1450'. [ 170.205104][ T8303] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1456'. [ 170.373123][ T8309] tipc: Started in network mode [ 170.374305][ T8309] tipc: Node identity 1e9eaffe630e, cluster identity 4711 [ 170.386186][ T8309] tipc: Enabled bearer , priority 0 [ 170.388818][ T8309] +: renamed from syzkaller0 [ 170.441138][ T8309] tipc: Disabling bearer [ 170.605806][ T8318] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 170.607714][ T8318] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 172.273565][ T8336] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1470'. [ 172.391020][ T8343] loop2: detected capacity change from 0 to 512 [ 172.406801][ T8355] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1471'. [ 172.416161][ T8343] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 172.499425][ T8343] EXT4-fs (loop2): 1 truncate cleaned up [ 172.503197][ T8343] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 172.793443][ T27] kauditd_printk_skb: 8 callbacks suppressed [ 172.793456][ T27] audit: type=1326 audit(172.760:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8363 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 172.813825][ T27] audit: type=1326 audit(172.780:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8363 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 172.828313][ T27] audit: type=1326 audit(172.780:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8363 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 172.838937][ T27] audit: type=1326 audit(172.790:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8363 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 172.851690][ T27] audit: type=1326 audit(172.790:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8363 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 172.859938][ T27] audit: type=1326 audit(172.790:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8363 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 172.871971][ T27] audit: type=1326 audit(172.790:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8363 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 172.892174][ T27] audit: type=1326 audit(172.790:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8363 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 172.909946][ T8370] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 172.912166][ T8370] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 172.936832][ T27] audit: type=1326 audit(172.790:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8363 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=178 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 172.986134][ T27] audit: type=1326 audit(172.790:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8363 comm="syz.0.1476" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad5a968 code=0x7ffc0000 [ 173.267295][ T4306] EXT4-fs (loop2): unmounting filesystem. [ 173.342221][ T8379] loop4: detected capacity change from 0 to 1024 [ 173.365213][ T8379] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:477: comm syz.4.1482: Invalid block bitmap block 0 in block_group 0 [ 173.368441][ T8379] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.1482: Failed to acquire dquot type 0 [ 173.401393][ T8379] EXT4-fs error (device loop4): ext4_free_blocks:6210: comm syz.4.1482: Freeing blocks not in datazone - block = 0, count = 4096 [ 173.409992][ T8379] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.1482: Invalid inode bitmap blk 0 in block_group 0 [ 173.416094][ T8379] EXT4-fs error (device loop4) in ext4_free_inode:362: Corrupt filesystem [ 173.421501][ T5691] EXT4-fs error (device loop4): ext4_release_dquot:6817: comm kworker/u4:15: Failed to release dquot type 0 [ 173.428852][ T8379] EXT4-fs (loop4): 1 orphan inode deleted [ 173.434686][ T8379] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 173.501509][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 173.700356][ T8385] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1483'. [ 174.550409][ T8413] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1487'. [ 174.646528][ T8416] tipc: Enabled bearer , priority 0 [ 174.655976][ T8416] +: renamed from syzkaller0 [ 174.685936][ T8420] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1493'. [ 174.712084][ T8416] tipc: Disabling bearer [ 174.729491][ T8420] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 174.736082][ T8420] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 175.601242][ T8428] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1497'. [ 176.025619][ T8444] loop4: detected capacity change from 0 to 512 [ 176.073403][ T8455] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1504'. [ 176.075919][ T8444] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 176.216377][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 176.305442][ T8464] loop3: detected capacity change from 0 to 512 [ 176.337644][ T8464] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #17: comm syz.3.1508: iget: bogus i_mode (0) [ 176.340790][ T8464] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.1508: couldn't read orphan inode 17 (err -117) [ 176.343635][ T8464] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 176.392206][ T8472] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1511'. [ 176.423009][ T8475] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1512'. [ 176.436978][ T4316] EXT4-fs (loop3): unmounting filesystem. [ 176.687237][ T8486] loop4: detected capacity change from 0 to 1024 [ 176.696501][ T8486] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 176.698993][ T8486] EXT4-fs error (device loop4): ext4_get_journal_inode:5722: inode #32: comm syz.4.1517: iget: special inode unallocated [ 176.702280][ T8486] EXT4-fs (loop4): no journal found [ 176.703360][ T8486] EXT4-fs (loop4): can't get journal size [ 176.707969][ T8486] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 176.951053][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 177.597339][ T8506] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1519'. [ 177.789259][ T8514] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1525'. [ 178.963345][ T8540] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1534'. [ 178.968324][ T8542] loop3: detected capacity change from 0 to 256 [ 179.254510][ T8556] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1536'. [ 179.273387][ T8562] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1541'. [ 179.278923][ T8560] tipc: Enabled bearer , priority 0 [ 179.307572][ T8559] tipc: Disabling bearer [ 179.496265][ T8578] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1548'. [ 180.959427][ T8599] __nla_validate_parse: 1 callbacks suppressed [ 180.959444][ T8599] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1554'. [ 180.966244][ T8614] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1555'. [ 181.095781][ T8623] loop4: detected capacity change from 0 to 256 [ 181.184666][ T8624] tipc: Enabled bearer , priority 0 [ 181.194312][ T8618] tipc: Disabling bearer [ 182.365084][ T8653] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1569'. [ 182.375818][ T8654] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1568'. [ 182.447502][ T8658] netlink: 108 bytes leftover after parsing attributes in process `syz.0.1570'. [ 182.535474][ T8658] netlink: 108 bytes leftover after parsing attributes in process `syz.0.1570'. [ 182.699285][ T8658] netlink: 108 bytes leftover after parsing attributes in process `syz.0.1570'. [ 182.798601][ T8674] loop2: detected capacity change from 0 to 512 [ 182.806639][ T8674] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 182.832236][ T8677] netlink: 'syz.0.1577': attribute type 4 has an invalid length. [ 182.836673][ T8677] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.1577'. [ 182.856633][ T8674] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 182.864196][ T8674] EXT4-fs (loop2): 1 truncate cleaned up [ 182.865605][ T8674] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 182.914013][ T4306] EXT4-fs (loop2): unmounting filesystem. [ 182.949395][ T8681] tipc: Enabling of bearer rejected, already enabled [ 182.985240][ T27] kauditd_printk_skb: 11 callbacks suppressed [ 182.985253][ T27] audit: type=1326 audit(182.950:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.2.1579" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 182.996663][ T27] audit: type=1326 audit(182.960:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.2.1579" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 183.004080][ T27] audit: type=1326 audit(182.970:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.2.1579" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 183.019441][ T27] audit: type=1326 audit(182.970:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.2.1579" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 183.043639][ T27] audit: type=1326 audit(182.970:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.2.1579" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 183.048273][ T27] audit: type=1326 audit(182.970:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.2.1579" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 183.070213][ T27] audit: type=1326 audit(182.970:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.2.1579" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 183.085277][ T27] audit: type=1326 audit(182.970:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.2.1579" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 183.105246][ T27] audit: type=1326 audit(182.970:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.2.1579" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 183.116297][ T27] audit: type=1326 audit(182.970:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8683 comm="syz.2.1579" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=3 compat=0 ip=0xffff8f75a968 code=0x7ffc0000 [ 183.148649][ T8692] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1581'. [ 183.287053][ T8704] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1583'. [ 183.731199][ T8719] tipc: Enabled bearer , priority 0 [ 183.737884][ T8718] tipc: Disabling bearer [ 183.752470][ T8715] loop0: detected capacity change from 0 to 8192 [ 183.804980][ T8715] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1) [ 183.807006][ T8715] FAT-fs (loop0): Filesystem has been set read-only [ 184.068446][ T8737] rdma_rxe: already configured on team_slave_0 [ 184.459877][ T8761] hub 9-0:1.0: USB hub found [ 184.470320][ T8761] hub 9-0:1.0: 8 ports detected [ 184.485931][ T8760] tipc: Enabled bearer , priority 0 [ 184.495389][ T8758] tipc: Disabling bearer [ 184.884062][ T8774] loop2: detected capacity change from 0 to 512 [ 184.886216][ T8774] EXT4-fs: Ignoring removed nobh option [ 184.895266][ T8774] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 184.906994][ T8771] loop4: detected capacity change from 0 to 8192 [ 184.941409][ T8774] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 184.946351][ T8771] loop4: p1 p3 p4 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 [ 184.946533][ T8771] loop4: p1 size 108986237 extends beyond EOD, truncated [ 185.069010][ T8771] loop4: p3 size 50462720 extends beyond EOD, truncated [ 185.122824][ T8771] loop4: p5 size 108986237 extends beyond EOD, truncated [ 185.132899][ T8771] loop4: p6 size 108986237 extends beyond EOD, truncated [ 185.139634][ T8771] loop4: p7 size 108986237 extends beyond EOD, truncated [ 185.146706][ T8771] loop4: p8 size 108986237 extends beyond EOD, truncated [ 185.156538][ T8771] loop4: p9 size 108986237 extends beyond EOD, truncated [ 185.162317][ T8771] loop4: p10 size 108986237 extends beyond EOD, truncated [ 185.168951][ T8771] loop4: p11 size 108986237 extends beyond EOD, truncated [ 185.174811][ T8771] loop4: p12 size 108986237 extends beyond EOD, truncated [ 185.182124][ T8771] loop4: p13 size 108986237 extends beyond EOD, truncated [ 185.186566][ T8771] loop4: p14 size 108986237 extends beyond EOD, truncated [ 185.194710][ T8771] loop4: p15 size 108986237 extends beyond EOD, truncated [ 185.201023][ T8771] loop4: p16 size 108986237 extends beyond EOD, truncated [ 185.205386][ T8771] loop4: p17 size 108986237 extends beyond EOD, truncated [ 185.210552][ T8771] loop4: p18 size 108986237 extends beyond EOD, truncated [ 185.215369][ T8771] loop4: p19 size 108986237 extends beyond EOD, truncated [ 185.222225][ T8771] loop4: p20 size 108986237 extends beyond EOD, truncated [ 185.227856][ T8771] loop4: p21 size 108986237 extends beyond EOD, truncated [ 185.236299][ T8771] loop4: p22 size 108986237 extends beyond EOD, truncated [ 185.248620][ T8771] loop4: p23 size 108986237 extends beyond EOD, truncated [ 185.255054][ T8771] loop4: p24 size 108986237 extends beyond EOD, truncated [ 185.265380][ T8771] loop4: p25 size 108986237 extends beyond EOD, truncated [ 185.268532][ T8771] loop4: p26 size 108986237 extends beyond EOD, truncated [ 185.273056][ T8771] loop4: p27 size 108986237 extends beyond EOD, truncated [ 185.279984][ T8771] loop4: p28 size 108986237 extends beyond EOD, truncated [ 185.285670][ T8771] loop4: p29 size 108986237 extends beyond EOD, truncated [ 185.295570][ T8771] loop4: p30 size 108986237 extends beyond EOD, truncated [ 185.298888][ T8771] loop4: p31 size 108986237 extends beyond EOD, truncated [ 185.303377][ T8771] loop4: p32 size 108986237 extends beyond EOD, truncated [ 185.317153][ T8771] loop4: p33 size 108986237 extends beyond EOD, truncated [ 185.322860][ T8771] loop4: p34 size 108986237 extends beyond EOD, truncated [ 185.328476][ T8771] loop4: p35 size 108986237 extends beyond EOD, truncated [ 185.334203][ T8771] loop4: p36 size 108986237 extends beyond EOD, truncated [ 185.339867][ T8771] loop4: p37 size 108986237 extends beyond EOD, truncated [ 185.345637][ T8771] loop4: p38 size 108986237 extends beyond EOD, truncated [ 185.351036][ T8771] loop4: p39 size 108986237 extends beyond EOD, truncated [ 185.356510][ T8771] loop4: p40 size 108986237 extends beyond EOD, truncated [ 185.364552][ T8771] loop4: p41 size 108986237 extends beyond EOD, truncated [ 185.367850][ T8771] loop4: p42 size 108986237 extends beyond EOD, truncated [ 185.373680][ T8771] loop4: p43 size 108986237 extends beyond EOD, truncated [ 185.381737][ T8771] loop4: p44 size 108986237 extends beyond EOD, truncated [ 185.387395][ T8771] loop4: p45 size 108986237 extends beyond EOD, truncated [ 185.400023][ T8771] loop4: p46 size 108986237 extends beyond EOD, truncated [ 185.407101][ T8771] loop4: p47 size 108986237 extends beyond EOD, truncated [ 185.413937][ T8771] loop4: p48 size 108986237 extends beyond EOD, truncated [ 185.419426][ T8771] loop4: p49 size 108986237 extends beyond EOD, truncated [ 185.425385][ T8771] loop4: p50 size 108986237 extends beyond EOD, truncated [ 185.450613][ T8771] loop4: p51 size 108986237 extends beyond EOD, truncated [ 185.456328][ T8771] loop4: p52 size 108986237 extends beyond EOD, truncated [ 185.464223][ T8771] loop4: p53 size 108986237 extends beyond EOD, truncated [ 185.470797][ T8771] loop4: p54 size 108986237 extends beyond EOD, truncated [ 185.477086][ T8771] loop4: p55 size 108986237 extends beyond EOD, truncated [ 185.481046][ T8771] loop4: p56 size 108986237 extends beyond EOD, truncated [ 185.488902][ T8771] loop4: p57 size 108986237 extends beyond EOD, truncated [ 185.496174][ T8771] loop4: p58 size 108986237 extends beyond EOD, truncated [ 185.520394][ T8771] loop4: p59 size 108986237 extends beyond EOD, truncated [ 185.534458][ T8771] loop4: p60 size 108986237 extends beyond EOD, truncated [ 185.537355][ T8771] loop4: p61 size 108986237 extends beyond EOD, truncated [ 185.544265][ T8771] loop4: p62 size 108986237 extends beyond EOD, truncated [ 185.549542][ T8631] Set syz1 is full, maxelem 65536 reached [ 185.552258][ T8771] loop4: p63 size 108986237 extends beyond EOD, truncated [ 185.566464][ T8771] loop4: p64 size 108986237 extends beyond EOD, truncated [ 185.571363][ T8771] loop4: p65 size 108986237 extends beyond EOD, truncated [ 185.585119][ T8771] loop4: p66 size 108986237 extends beyond EOD, truncated [ 185.591078][ T8771] loop4: p67 size 108986237 extends beyond EOD, truncated [ 185.614861][ T8771] loop4: p68 size 108986237 extends beyond EOD, truncated [ 185.638717][ T8771] loop4: p69 size 108986237 extends beyond EOD, truncated [ 185.655389][ T8771] loop4: p70 size 108986237 extends beyond EOD, truncated [ 185.658154][ T8771] loop4: p71 size 108986237 extends beyond EOD, truncated [ 185.669330][ T8771] loop4: p72 size 108986237 extends beyond EOD, truncated [ 185.676711][ T8771] loop4: p73 size 108986237 extends beyond EOD, truncated [ 185.679720][ T8771] loop4: p74 size 108986237 extends beyond EOD, truncated [ 185.691062][ T4306] EXT4-fs (loop2): unmounting filesystem. [ 185.691072][ T8771] loop4: p75 size 108986237 extends beyond EOD, truncated [ 185.717628][ T8771] loop4: p76 size 108986237 extends beyond EOD, truncated [ 185.731440][ T8771] loop4: p77 size 108986237 extends beyond EOD, truncated [ 185.741631][ T8771] loop4: p78 size 108986237 extends beyond EOD, truncated [ 185.744291][ T8771] loop4: p79 size 108986237 extends beyond EOD, truncated [ 185.751017][ T8771] loop4: p80 size 108986237 extends beyond EOD, truncated [ 185.759708][ T8771] loop4: p81 size 108986237 extends beyond EOD, truncated [ 185.775220][ T8771] loop4: p82 size 108986237 extends beyond EOD, truncated [ 185.778090][ T8771] loop4: p83 size 108986237 extends beyond EOD, truncated [ 185.781937][ T8771] loop4: p84 size 108986237 extends beyond EOD, truncated [ 185.784409][ T8771] loop4: p85 size 108986237 extends beyond EOD, truncated [ 185.791256][ T8771] loop4: p86 size 108986237 extends beyond EOD, truncated [ 185.793640][ T8771] loop4: p87 size 108986237 extends beyond EOD, truncated [ 185.801078][ T8771] loop4: p88 size 108986237 extends beyond EOD, truncated [ 185.803724][ T8771] loop4: p89 size 108986237 extends beyond EOD, truncated [ 185.820843][ T8771] loop4: p90 size 108986237 extends beyond EOD, truncated [ 185.822952][ T8771] loop4: p91 size 108986237 extends beyond EOD, truncated [ 185.831566][ T8771] loop4: p92 size 108986237 extends beyond EOD, truncated [ 185.834068][ T8771] loop4: p93 size 108986237 extends beyond EOD, truncated [ 185.836538][ T8771] loop4: p94 size 108986237 extends beyond EOD, truncated [ 185.860325][ T8771] loop4: p95 size 108986237 extends beyond EOD, truncated [ 185.864762][ T8771] loop4: p96 size 108986237 extends beyond EOD, truncated [ 185.871107][ T8771] loop4: p97 size 108986237 extends beyond EOD, truncated [ 185.884497][ T8771] loop4: p98 size 108986237 extends beyond EOD, truncated [ 185.889311][ T8771] loop4: p99 size 108986237 extends beyond EOD, truncated [ 185.895713][ T8805] tipc: Enabled bearer , priority 0 [ 185.900761][ T8771] loop4: p100 size 108986237 extends beyond EOD, truncated [ 185.902959][ T8771] loop4: p101 size 108986237 extends beyond EOD, truncated [ 185.921025][ T8803] tipc: Disabling bearer [ 185.924237][ T8771] loop4: p102 size 108986237 extends beyond EOD, truncated [ 185.926703][ T8771] loop4: p103 size 108986237 extends beyond EOD, truncated [ 185.930747][ T8771] loop4: p104 size 108986237 extends beyond EOD, truncated [ 185.933022][ T8771] loop4: p105 size 108986237 extends beyond EOD, truncated [ 185.935025][ T8771] loop4: p106 size 108986237 extends beyond EOD, truncated [ 185.937011][ T8771] loop4: p107 size 108986237 extends beyond EOD, truncated [ 185.949217][ T8771] loop4: p108 size 108986237 extends beyond EOD, truncated [ 185.952407][ T8771] loop4: p109 size 108986237 extends beyond EOD, truncated [ 185.964739][ T8771] loop4: p110 size 108986237 extends beyond EOD, truncated [ 185.967030][ T8771] loop4: p111 size 108986237 extends beyond EOD, truncated [ 185.980805][ T8771] loop4: p112 size 108986237 extends beyond EOD, truncated [ 185.994741][ T8771] loop4: p113 size 108986237 extends beyond EOD, truncated [ 185.998286][ T8771] loop4: p114 size 108986237 extends beyond EOD, truncated [ 186.010651][ T8771] loop4: p115 size 108986237 extends beyond EOD, truncated [ 186.019737][ T8771] loop4: p116 size 108986237 extends beyond EOD, truncated [ 186.023329][ T8771] loop4: p117 size 108986237 extends beyond EOD, truncated [ 186.031273][ T8771] loop4: p118 size 108986237 extends beyond EOD, truncated [ 186.040892][ T8771] loop4: p119 size 108986237 extends beyond EOD, truncated [ 186.043191][ T8808] __nla_validate_parse: 5 callbacks suppressed [ 186.043202][ T8808] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1621'. [ 186.047946][ T8771] loop4: p120 size 108986237 extends beyond EOD, truncated [ 186.051093][ T8771] loop4: p121 size 108986237 extends beyond EOD, truncated [ 186.061100][ T8771] loop4: p122 size 108986237 extends beyond EOD, truncated [ 186.063672][ T8771] loop4: p123 size 108986237 extends beyond EOD, truncated [ 186.071132][ T8771] loop4: p124 size 108986237 extends beyond EOD, truncated [ 186.073571][ T8771] loop4: p125 size 108986237 extends beyond EOD, truncated [ 186.079467][ T8771] loop4: p126 size 108986237 extends beyond EOD, truncated [ 186.082668][ T8771] loop4: p127 size 108986237 extends beyond EOD, truncated [ 186.098026][ T8771] loop4: p128 size 108986237 extends beyond EOD, truncated [ 186.111260][ T8771] loop4: p129 size 108986237 extends beyond EOD, truncated [ 186.113397][ T8771] loop4: p130 size 108986237 extends beyond EOD, truncated [ 186.116660][ T8771] loop4: p131 size 108986237 extends beyond EOD, truncated [ 186.119483][ T8771] loop4: p132 size 108986237 extends beyond EOD, truncated [ 186.130403][ T8771] loop4: p133 size 108986237 extends beyond EOD, truncated [ 186.138060][ T8771] loop4: p134 size 108986237 extends beyond EOD, truncated [ 186.144304][ T8771] loop4: p135 size 108986237 extends beyond EOD, truncated [ 186.149990][ T8771] loop4: p136 size 108986237 extends beyond EOD, truncated [ 186.163009][ T8771] loop4: p137 size 108986237 extends beyond EOD, truncated [ 186.170637][ T8771] loop4: p138 size 108986237 extends beyond EOD, truncated [ 186.176451][ T8771] loop4: p139 size 108986237 extends beyond EOD, truncated [ 186.180813][ T8771] loop4: p140 size 108986237 extends beyond EOD, truncated [ 186.194836][ T8771] loop4: p141 size 108986237 extends beyond EOD, truncated [ 186.199269][ T8771] loop4: p142 size 108986237 extends beyond EOD, truncated [ 186.204292][ T8771] loop4: p143 size 108986237 extends beyond EOD, truncated [ 186.214380][ T8771] loop4: p144 size 108986237 extends beyond EOD, truncated [ 186.216353][ T8771] loop4: p145 size 108986237 extends beyond EOD, truncated [ 186.228955][ T8771] loop4: p146 size 108986237 extends beyond EOD, truncated [ 186.237789][ T8771] loop4: p147 size 108986237 extends beyond EOD, truncated [ 186.241538][ T8771] loop4: p148 size 108986237 extends beyond EOD, truncated [ 186.248068][ T8771] loop4: p149 size 108986237 extends beyond EOD, truncated [ 186.257579][ T8771] loop4: p150 size 108986237 extends beyond EOD, truncated [ 186.268771][ T8771] loop4: p151 size 108986237 extends beyond EOD, truncated [ 186.281803][ T8771] loop4: p152 size 108986237 extends beyond EOD, truncated [ 186.283960][ T8771] loop4: p153 size 108986237 extends beyond EOD, truncated [ 186.287065][ T8771] loop4: p154 size 108986237 extends beyond EOD, truncated [ 186.301402][ T8771] loop4: p155 size 108986237 extends beyond EOD, truncated [ 186.305038][ T8771] loop4: p156 size 108986237 extends beyond EOD, truncated [ 186.309624][ T8771] loop4: p157 size 108986237 extends beyond EOD, truncated [ 186.311364][ T8823] tmpfs: Bad value for 'size' [ 186.324189][ T8771] loop4: p158 size 108986237 extends beyond EOD, truncated [ 186.334062][ T8771] loop4: p159 size 108986237 extends beyond EOD, truncated [ 186.336315][ T8771] loop4: p160 size 108986237 extends beyond EOD, truncated [ 186.341683][ T8771] loop4: p161 size 108986237 extends beyond EOD, truncated [ 186.346389][ T8771] loop4: p162 size 108986237 extends beyond EOD, truncated [ 186.354285][ T8771] loop4: p163 size 108986237 extends beyond EOD, truncated [ 186.356780][ T8771] loop4: p164 size 108986237 extends beyond EOD, truncated [ 186.359438][ T8771] loop4: p165 size 108986237 extends beyond EOD, truncated [ 186.383020][ T8771] loop4: p166 size 108986237 extends beyond EOD, truncated [ 186.385689][ T8771] loop4: p167 size 108986237 extends beyond EOD, truncated [ 186.399778][ T8771] loop4: p168 size 108986237 extends beyond EOD, truncated [ 186.403718][ T8771] loop4: p169 size 108986237 extends beyond EOD, truncated [ 186.408437][ T8771] loop4: p170 size 108986237 extends beyond EOD, truncated [ 186.419018][ T8771] loop4: p171 size 108986237 extends beyond EOD, truncated [ 186.424886][ T8771] loop4: p172 size 108986237 extends beyond EOD, truncated [ 186.427049][ T8771] loop4: p173 size 108986237 extends beyond EOD, truncated [ 186.431891][ T8771] loop4: p174 size 108986237 extends beyond EOD, truncated [ 186.452222][ T8771] loop4: p175 size 108986237 extends beyond EOD, truncated [ 186.456067][ T8771] loop4: p176 size 108986237 extends beyond EOD, truncated [ 186.466245][ T8771] loop4: p177 size 108986237 extends beyond EOD, truncated [ 186.478537][ T8771] loop4: p178 size 108986237 extends beyond EOD, truncated [ 186.490765][ T8771] loop4: p179 size 108986237 extends beyond EOD, truncated [ 186.492862][ T8771] loop4: p180 size 108986237 extends beyond EOD, truncated [ 186.504783][ T8771] loop4: p181 size 108986237 extends beyond EOD, truncated [ 186.506890][ T8771] loop4: p182 size 108986237 extends beyond EOD, truncated [ 186.514121][ T8771] loop4: p183 size 108986237 extends beyond EOD, truncated [ 186.518609][ T8771] loop4: p184 size 108986237 extends beyond EOD, truncated [ 186.528768][ T8771] loop4: p185 size 108986237 extends beyond EOD, truncated [ 186.541889][ T8771] loop4: p186 size 108986237 extends beyond EOD, truncated [ 186.556626][ T8771] loop4: p187 size 108986237 extends beyond EOD, truncated [ 186.558805][ T8771] loop4: p188 size 108986237 extends beyond EOD, truncated [ 186.565887][ T8771] loop4: p189 size 108986237 extends beyond EOD, truncated [ 186.573679][ T8771] loop4: p190 size 108986237 extends beyond EOD, truncated [ 186.576266][ T8771] loop4: p191 size 108986237 extends beyond EOD, truncated [ 186.579953][ T8771] loop4: p192 size 108986237 extends beyond EOD, truncated [ 186.587962][ T8771] loop4: p193 size 108986237 extends beyond EOD, truncated [ 186.597023][ T8771] loop4: p194 size 108986237 extends beyond EOD, truncated [ 186.620405][ T8771] loop4: p195 size 108986237 extends beyond EOD, truncated [ 186.622387][ T8836] tipc: Enabled bearer , priority 0 [ 186.627504][ T8771] loop4: p196 size 108986237 extends beyond EOD, truncated [ 186.629791][ T8771] loop4: p197 size 108986237 extends beyond EOD, truncated [ 186.635844][ T8771] loop4: p198 size 108986237 extends beyond EOD, truncated [ 186.641190][ T8771] loop4: p199 size 108986237 extends beyond EOD, truncated [ 186.656690][ T8835] tipc: Disabling bearer [ 186.662744][ T8771] loop4: p200 size 108986237 extends beyond EOD, truncated [ 186.665404][ T8842] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1629'. [ 186.672296][ T8771] loop4: p201 size 108986237 extends beyond EOD, truncated [ 186.675524][ T8843] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1633'. [ 186.677056][ T8771] loop4: p202 size 108986237 extends beyond EOD, truncated [ 186.682220][ T8771] loop4: p203 size 108986237 extends beyond EOD, truncated [ 186.686982][ T8771] loop4: p204 size 108986237 extends beyond EOD, truncated [ 186.693431][ T8771] loop4: p205 size 108986237 extends beyond EOD, truncated [ 186.696006][ T8771] loop4: p206 size 108986237 extends beyond EOD, truncated [ 186.701294][ T8771] loop4: p207 size 108986237 extends beyond EOD, truncated [ 186.706069][ T8771] loop4: p208 size 108986237 extends beyond EOD, truncated [ 186.713053][ T8771] loop4: p209 size 108986237 extends beyond EOD, truncated [ 186.718653][ T8771] loop4: p210 size 108986237 extends beyond EOD, truncated [ 186.723961][ T8771] loop4: p211 size 108986237 extends beyond EOD, truncated [ 186.728776][ T8771] loop4: p212 size 108986237 extends beyond EOD, truncated [ 186.734423][ T8771] loop4: p213 size 108986237 extends beyond EOD, truncated [ 186.739220][ T8771] loop4: p214 size 108986237 extends beyond EOD, truncated [ 186.773800][ T8771] loop4: p215 size 108986237 extends beyond EOD, truncated [ 186.784561][ T8771] loop4: p216 size 108986237 extends beyond EOD, truncated [ 186.786659][ T8771] loop4: p217 size 108986237 extends beyond EOD, truncated [ 186.795362][ T8771] loop4: p218 size 108986237 extends beyond EOD, truncated [ 186.802763][ T8771] loop4: p219 size 108986237 extends beyond EOD, truncated [ 186.817645][ T8771] loop4: p220 size 108986237 extends beyond EOD, truncated [ 186.823259][ T8771] loop4: p221 size 108986237 extends beyond EOD, truncated [ 186.828209][ T8771] loop4: p222 size 108986237 extends beyond EOD, truncated [ 186.835408][ T8771] loop4: p223 size 108986237 extends beyond EOD, truncated [ 186.841162][ T8771] loop4: p224 size 108986237 extends beyond EOD, truncated [ 186.849769][ T8771] loop4: p225 size 108986237 extends beyond EOD, truncated [ 186.855982][ T8771] loop4: p226 size 108986237 extends beyond EOD, truncated [ 186.861191][ T8771] loop4: p227 size 108986237 extends beyond EOD, truncated [ 186.867958][ T8771] loop4: p228 size 108986237 extends beyond EOD, truncated [ 186.874578][ T8771] loop4: p229 size 108986237 extends beyond EOD, truncated [ 186.879295][ T8771] loop4: p230 size 108986237 extends beyond EOD, truncated [ 186.885740][ T8771] loop4: p231 size 108986237 extends beyond EOD, truncated [ 186.891089][ T8771] loop4: p232 size 108986237 extends beyond EOD, truncated [ 186.895682][ T8771] loop4: p233 size 108986237 extends beyond EOD, truncated [ 186.898167][ T8771] loop4: p234 size 108986237 extends beyond EOD, truncated [ 186.901340][ T8771] loop4: p235 size 108986237 extends beyond EOD, truncated [ 186.903995][ T8771] loop4: p236 size 108986237 extends beyond EOD, truncated [ 186.906377][ T8771] loop4: p237 size 108986237 extends beyond EOD, truncated [ 186.909598][ T8771] loop4: p238 size 108986237 extends beyond EOD, truncated [ 186.912624][ T8771] loop4: p239 size 108986237 extends beyond EOD, truncated [ 186.914891][ T8771] loop4: p240 size 108986237 extends beyond EOD, truncated [ 186.917277][ T8771] loop4: p241 size 108986237 extends beyond EOD, truncated [ 186.920987][ T8771] loop4: p242 size 108986237 extends beyond EOD, truncated [ 186.936565][ T8771] loop4: p243 size 108986237 extends beyond EOD, truncated [ 186.952160][ T8771] loop4: p244 size 108986237 extends beyond EOD, truncated [ 186.956508][ T8771] loop4: p245 size 108986237 extends beyond EOD, truncated [ 186.961034][ T8771] loop4: p246 size 108986237 extends beyond EOD, truncated [ 186.964279][ T8771] loop4: p247 size 108986237 extends beyond EOD, truncated [ 186.966918][ T8771] loop4: p248 size 108986237 extends beyond EOD, truncated [ 186.969329][ T8771] loop4: p249 size 108986237 extends beyond EOD, truncated [ 186.973467][ T8771] loop4: p250 size 108986237 extends beyond EOD, truncated [ 186.975204][ T8850] netlink: 'syz.1.1636': attribute type 21 has an invalid length. [ 186.985341][ T8771] loop4: p251 size 108986237 extends beyond EOD, truncated [ 186.991406][ T8771] loop4: p252 size 108986237 extends beyond EOD, truncated [ 186.997915][ T8771] loop4: p253 size 108986237 extends beyond EOD, truncated [ 186.998428][ T8829] loop3: detected capacity change from 0 to 2048 [ 187.000953][ T8771] loop4: p254 size 108986237 extends beyond EOD, truncated [ 187.005685][ T8771] loop4: p255 size 108986237 extends beyond EOD, truncated [ 187.275905][ T8872] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1644'. [ 187.392038][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 187.393364][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 187.408947][ T8884] loop2: detected capacity change from 0 to 256 [ 187.423873][ T8884] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 187.450752][ T8882] tipc: Enabled bearer , priority 0 [ 187.587746][ T8881] tipc: Disabling bearer [ 187.658084][ T8854] udevd[8854]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory [ 187.682749][ T8865] udevd[8865]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 187.762715][ T8864] udevd[8864]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory [ 187.774965][ T8866] udevd[8866]: inotify_add_watch(7, /dev/loop4p8, 10) failed: No such file or directory [ 187.775704][ T8878] udevd[8878]: inotify_add_watch(7, /dev/loop4p12, 10) failed: No such file or directory [ 187.801022][ T8876] udevd[8876]: inotify_add_watch(7, /dev/loop4p10, 10) failed: No such file or directory [ 187.811217][ T8877] udevd[8877]: inotify_add_watch(7, /dev/loop4p11, 10) failed: No such file or directory [ 187.814170][ T8873] udevd[8873]: inotify_add_watch(7, /dev/loop4p9, 10) failed: No such file or directory [ 187.940600][ T8907] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1646'. [ 188.019633][ T5442] udevd[5442]: inotify_add_watch(7, /dev/loop4p13, 10) failed: No such file or directory [ 188.025506][ T8918] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1658'. [ 188.031064][ T5461] udevd[5461]: inotify_add_watch(7, /dev/loop4p14, 10) failed: No such file or directory [ 188.369918][ T8933] tipc: Started in network mode [ 188.378802][ T8933] tipc: Node identity 1ef2848c6ca, cluster identity 4711 [ 188.381067][ T8933] tipc: Enabled bearer , priority 0 [ 188.398509][ T8934] loop0: detected capacity change from 0 to 512 [ 188.408615][ T8934] EXT4-fs: Ignoring removed i_version option [ 188.409915][ T8932] tipc: Disabling bearer [ 188.412414][ T8934] EXT4-fs: Ignoring removed mblk_io_submit option [ 188.415742][ T8934] ext4: Unknown parameter 'seclabel' [ 188.553119][ T8940] loop1: detected capacity change from 0 to 512 [ 188.560371][ T8940] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 188.583393][ T8940] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.1666: invalid block [ 188.588659][ T8940] EXT4-fs (loop1): Remounting filesystem read-only [ 188.590005][ T8940] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1666: invalid indirect mapped block 4294967295 (level 1) [ 188.601397][ T8940] EXT4-fs (loop1): Remounting filesystem read-only [ 188.602868][ T8940] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1666: invalid indirect mapped block 4294967295 (level 1) [ 188.609126][ T8940] EXT4-fs (loop1): Remounting filesystem read-only [ 188.611388][ T8940] EXT4-fs (loop1): 2 truncates cleaned up [ 188.612825][ T8940] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 188.644827][ T8940] 9pnet_fd: Insufficient options for proto=fd [ 188.736599][ T4319] EXT4-fs (loop1): unmounting filesystem. [ 188.891045][ T8953] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1670'. [ 188.974067][ T8959] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1669'. [ 190.458857][ T8981] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 190.461261][ T8981] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 190.716085][ T8990] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1681'. [ 191.047432][ T8994] lo speed is unknown, defaulting to 1000 [ 191.048289][ T8995] loop3: detected capacity change from 0 to 2048 [ 191.082070][ T8995] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 191.122150][ T8994] sit0 speed is unknown, defaulting to 1000 [ 191.415575][ T4316] EXT4-fs (loop3): unmounting filesystem. [ 191.453123][ T9008] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1685'. [ 191.523977][ T9012] loop3: detected capacity change from 0 to 512 [ 191.528842][ T9012] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 191.545453][ T9012] EXT4-fs (loop3): 1 truncate cleaned up [ 191.546753][ T9012] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 191.693096][ T4316] EXT4-fs (loop3): unmounting filesystem. [ 192.289514][ T9027] loop0: detected capacity change from 0 to 256 [ 193.088005][ T8876] udevd[8876]: inotify_add_watch(7, /dev/loop4p184, 10) failed: No such file or directory [ 193.094035][ T5461] udevd[5461]: inotify_add_watch(7, /dev/loop4p180, 10) failed: No such file or directory [ 193.096796][ T5442] udevd[5442]: inotify_add_watch(7, /dev/loop4p179, 10) failed: No such file or directory [ 193.099428][ T5462] udevd[5462]: inotify_add_watch(7, /dev/loop4p185, 10) failed: No such file or directory [ 193.101841][ T8866] udevd[8866]: inotify_add_watch(7, /dev/loop4p189, 10) failed: No such file or directory [ 193.104492][ T8854] udevd[8854]: inotify_add_watch(7, /dev/loop4p186, 10) failed: No such file or directory [ 193.107210][ T5427] udevd[5427]: inotify_add_watch(7, /dev/loop4p190, 10) failed: No such file or directory [ 193.109927][ T8877] udevd[8877]: inotify_add_watch(7, /dev/loop4p188, 10) failed: No such file or directory [ 195.084409][ T8873] udevd[8873]: inotify_add_watch(7, /dev/loop4p181, 10) failed: No such file or directory [ 195.101525][ T8865] udevd[8865]: inotify_add_watch(7, /dev/loop4p187, 10) failed: No such file or directory [ 195.130631][ T9033] lo speed is unknown, defaulting to 1000 [ 195.167519][ T9033] sit0 speed is unknown, defaulting to 1000 [ 195.442578][ T9036] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1693'. [ 195.669928][ T9050] loop0: detected capacity change from 0 to 2048 [ 195.687674][ T9047] lo speed is unknown, defaulting to 1000 [ 195.695329][ T9049] +: renamed from syzkaller0 [ 195.708578][ T9052] loop4: detected capacity change from 0 to 512 [ 195.820108][ T9050] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 195.828626][ T9052] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 195.834063][ T27] kauditd_printk_skb: 26 callbacks suppressed [ 195.834079][ T27] audit: type=1326 audit(195.793:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9051 comm="syz.4.1701" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 195.839996][ T27] audit: type=1326 audit(195.793:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9051 comm="syz.4.1701" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 195.850821][ T9069] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1700'. [ 195.866440][ T27] audit: type=1326 audit(195.793:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9051 comm="syz.4.1701" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 195.878973][ T4307] EXT4-fs (loop4): unmounting filesystem. [ 195.907462][ T27] audit: type=1326 audit(195.793:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9051 comm="syz.4.1701" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 195.917606][ T27] audit: type=1326 audit(195.793:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9051 comm="syz.4.1701" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 195.922645][ T27] audit: type=1326 audit(195.793:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9051 comm="syz.4.1701" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 195.930577][ T27] audit: type=1326 audit(195.803:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9051 comm="syz.4.1701" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 195.938874][ T27] audit: type=1326 audit(195.803:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9051 comm="syz.4.1701" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 195.943828][ T27] audit: type=1326 audit(195.803:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9051 comm="syz.4.1701" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 195.953743][ T9047] sit0 speed is unknown, defaulting to 1000 [ 195.956729][ T27] audit: type=1326 audit(195.803:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9051 comm="syz.4.1701" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff81f5a968 code=0x7ffc0000 [ 196.156734][ T9078] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 196.158747][ T9078] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 196.344217][ T9083] loop3: detected capacity change from 0 to 1024 [ 196.358843][ T9083] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 196.367372][ T9083] EXT4-fs (loop3): orphan cleanup on readonly fs [ 196.373594][ T9083] EXT4-fs error (device loop3): ext4_free_blocks:6210: comm syz.3.1706: Freeing blocks not in datazone - block = 0, count = 4096 [ 196.378186][ T9083] EXT4-fs (loop3): Remounting filesystem read-only [ 196.381621][ T9083] EXT4-fs (loop3): 1 orphan inode deleted [ 196.382952][ T9083] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 197.379115][ T4316] EXT4-fs (loop3): unmounting filesystem. [ 197.390874][ T9090] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1708'. [ 197.955905][ T9091] lo speed is unknown, defaulting to 1000 [ 197.993598][ T9091] sit0 speed is unknown, defaulting to 1000 [ 198.592786][ T9099] loop1: detected capacity change from 0 to 128 [ 198.763297][ T9099] bio_check_eod: 138 callbacks suppressed [ 198.763316][ T9099] syz.1.1713: attempt to access beyond end of device [ 198.763316][ T9099] loop1: rw=2049, sector=145, nr_sectors = 304 limit=128 [ 198.826937][ T9099] syz.1.1713: attempt to access beyond end of device [ 198.826937][ T9099] loop1: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 198.878032][ T9102] +: renamed from syzkaller0 [ 198.888272][ T9100] syz.1.1713: attempt to access beyond end of device [ 198.888272][ T9100] loop1: rw=0, sector=145, nr_sectors = 8 limit=128 [ 198.896034][ T8876] udevd[8876]: inotify_add_watch(7, /dev/loop4p220, 10) failed: No such file or directory [ 198.908229][ T9100] syz.1.1713: attempt to access beyond end of device [ 198.908229][ T9100] loop1: rw=0, sector=145, nr_sectors = 8 limit=128 [ 198.978194][ T8873] udevd[8873]: inotify_add_watch(7, /dev/loop4p217, 10) failed: No such file or directory [ 198.998382][ T9100] syz.1.1713: attempt to access beyond end of device [ 198.998382][ T9100] loop1: rw=0, sector=145, nr_sectors = 8 limit=128 [ 199.008953][ T8865] udevd[8865]: inotify_add_watch(7, /dev/loop4p223, 10) failed: No such file or directory [ 199.019102][ T9100] syz.1.1713: attempt to access beyond end of device [ 199.019102][ T9100] loop1: rw=0, sector=145, nr_sectors = 8 limit=128 [ 199.032440][ T8866] udevd[8866]: inotify_add_watch(7, /dev/loop4p225, 10) failed: No such file or directory [ 199.051011][ T9100] syz.1.1713: attempt to access beyond end of device [ 199.051011][ T9100] loop1: rw=0, sector=145, nr_sectors = 8 limit=128 [ 199.055756][ T8878] udevd[8878]: inotify_add_watch(7, /dev/loop4p219, 10) failed: No such file or directory [ 199.071342][ T9100] syz.1.1713: attempt to access beyond end of device [ 199.071342][ T9100] loop1: rw=0, sector=145, nr_sectors = 8 limit=128 [ 199.086132][ T8864] udevd[8864]: inotify_add_watch(7, /dev/loop4p218, 10) failed: No such file or directory [ 199.100401][ T9100] syz.1.1713: attempt to access beyond end of device [ 199.100401][ T9100] loop1: rw=0, sector=145, nr_sectors = 8 limit=128 [ 199.113106][ T8854] udevd[8854]: inotify_add_watch(7, /dev/loop4p222, 10) failed: No such file or directory [ 199.123648][ T9100] syz.1.1713: attempt to access beyond end of device [ 199.123648][ T9100] loop1: rw=0, sector=145, nr_sectors = 8 limit=128 [ 199.167976][ T8877] udevd[8877]: inotify_add_watch(7, /dev/loop4p224, 10) failed: No such file or directory [ 199.187858][ T5461] udevd[5461]: inotify_add_watch(7, /dev/loop4p216, 10) failed: No such file or directory [ 199.203867][ T5427] udevd[5427]: inotify_add_watch(7, /dev/loop4p226, 10) failed: No such file or directory [ 199.574060][ T9116] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1716'. [ 199.764769][ T9126] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1720'. [ 199.957313][ T9134] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1724'. [ 199.959541][ T9134] bond0: (slave bond_slave_0): Slave does not support ipsec offload [ 200.223722][ T9139] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 200.225745][ T9139] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 200.288735][ T9143] +: renamed from syzkaller0 [ 200.305423][ T9142] loop3: detected capacity change from 0 to 2048 [ 200.362902][ T9142] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 200.640002][ T9153] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 200.646789][ T9153] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 1 with error 28 [ 200.649637][ T9153] EXT4-fs (loop3): This should not happen!! Data will be lost [ 200.649637][ T9153] [ 200.651838][ T9153] EXT4-fs (loop3): Total free blocks count 0 [ 200.653110][ T9153] EXT4-fs (loop3): Free/Dirty block details [ 200.654539][ T9153] EXT4-fs (loop3): free_blocks=2415919104 [ 200.655791][ T9153] EXT4-fs (loop3): dirty_blocks=16 [ 200.656828][ T9153] EXT4-fs (loop3): Block reservation details [ 200.658090][ T9153] EXT4-fs (loop3): i_reserved_data_blocks=1 [ 200.683250][ T9153] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 11 with error 28 [ 200.752449][ T9056] ------------[ cut here ]------------ [ 200.753956][ T9152] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1731'. [ 200.754031][ T9056] kernel BUG at fs/buffer.c:2666! [ 200.757549][ T9056] Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP [ 200.759347][ T9056] Modules linked in: [ 200.760226][ T9056] CPU: 0 PID: 9056 Comm: kmmpd-loop0 Not tainted 6.1.127-syzkaller #0 [ 200.761819][ T9056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 200.764019][ T9056] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 200.765660][ T9056] pc : submit_bh_wbc+0x3f4/0x468 [ 200.766708][ T9056] lr : submit_bh_wbc+0x3f4/0x468 [ 200.767702][ T9056] sp : ffff8000218d7b10 [ 200.768622][ T9056] x29: ffff8000218d7b20 x28: 1fffe0001a0f4872 x27: dfff800000000000 [ 200.770245][ T9056] x26: 1ffff0000431af74 x25: 0000000000000000 x24: 1fffe0001be55f05 [ 200.771989][ T9056] x23: 1fffe0001a0f48cf x22: ffff0000d053e000 x21: 0000000000003801 [ 200.773632][ T9056] x20: ffff0000df2af828 x19: 0000000000000005 x18: 1fffe0003679bf76 [ 200.775694][ T9056] x17: ffff800015a8d000 x16: ffff8000082ffa9c x15: ffff0001b3cdfbbc [ 200.777409][ T9056] x14: 1ffff00002b520b2 x13: dfff800000000000 x12: 0000000000000001 [ 200.779168][ T9056] x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008b3a6a0 [ 200.780962][ T9056] x8 : ffff0000d323b780 x7 : ffff800008eaebe8 x6 : 0000000000000000 [ 200.782659][ T9056] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff800008eae6b0 [ 200.784391][ T9056] x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000 [ 200.786264][ T9056] Call trace: [ 200.786918][ T9056] submit_bh_wbc+0x3f4/0x468 [ 200.787990][ T9056] submit_bh+0x2c/0x3c [ 200.788971][ T9056] write_mmp_block_thawed+0x340/0x52c [ 200.790313][ T9056] write_mmp_block+0x23c/0x734 [ 200.791312][ T9056] kmmpd+0x330/0x9f8 [ 200.792129][ T9056] kthread+0x250/0x2d8 [ 200.793080][ T9056] ret_from_fork+0x10/0x20 [ 200.794037][ T9056] Code: 17ffffad 97e6e282 d4210000 97e6e280 (d4210000) [ 200.795457][ T9056] ---[ end trace 0000000000000000 ]--- [ 201.621442][ T9056] Kernel panic - not syncing: Oops - BUG: Fatal exception [ 201.622996][ T9056] SMP: stopping secondary CPUs [ 201.624213][ T9056] Kernel Offset: disabled [ 201.625235][ T9056] CPU features: 0x080000,02070084,26017203 [ 201.626592][ T9056] Memory Limit: none [ 202.373433][ T9056] Rebooting in 86400 seconds..