last executing test programs: 5.74958479s ago: executing program 0 (id=2349): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet(r0, &(0x7f0000001bc0)=[{{&(0x7f0000000080)={0x2, 0x0, @private=0xa010102}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='~', 0x1}], 0x1}}, {{&(0x7f00000022c0)={0x2, 0x20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000600)=[{&(0x7f0000002300)="ef", 0x1}], 0x1}}, {{&(0x7f0000000680)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000ac0)=[{&(0x7f0000000700)="b5", 0x1}], 0x1}}], 0x3, 0x1005) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) close_range(r1, 0xffffffffffffffff, 0x100000000000000) 5.603560895s ago: executing program 0 (id=2353): socket$nl_netfilter(0x10, 0x3, 0xc) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) unshare(0x60600) r0 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r0, &(0x7f0000000580)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560a067f0200ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200040010000800014004000000", 0x58}], 0x1) 5.530629059s ago: executing program 3 (id=2354): syz_usb_connect(0x1, 0x0, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x4, &(0x7f0000000180)=@lang_id={0x4, 0x3, 0x3001}}]}) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e24}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4) r1 = fcntl$dupfd(r0, 0x406, r0) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4) sendmsg$IPVS_CMD_GET_CONFIG(r1, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x4000) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000240)=@ccm_128={{0x303}, "3c62b80000856314", "5ed8002558e2bb7174371336dad9ecbd", '\x00', "4c5293d719408a98"}, 0x28) 5.437049373s ago: executing program 1 (id=2355): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000680)={0x15, 0x110, 0xfa08, {0xffffffffffffffff, 0x4, 0x10, 0x10, 0x0, @ib={0x1b, 0xd, 0xb, {"50b7a964ff07588e3f1d74b92a8cf018"}, 0x6, 0x8, 0x1}, @in={0x2, 0x4e21, @broadcast}}}, 0x118) 5.317355548s ago: executing program 1 (id=2356): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x8, 0x7fe2, 0x1, 0x4}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, 0x0, &(0x7f0000000080)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f00000002c0)={0x28, 0x0, 0x2710, @local}, 0x10) 5.316778589s ago: executing program 0 (id=2357): r0 = socket$l2tp6(0xa, 0x2, 0x73) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f00000000c0), &(0x7f0000000240)=0x30) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="9feb01001800000000000053a9ebad30e139e6c8cde768c84f00380000003800000006000000000000000100000d0000000004000000030000000000000000000003000000000100000003000000f6ffffff040000000000001202000000000000005f00"], 0x0, 0x56, 0x0, 0x1}, 0x28) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f"], 0x48) r4 = socket(0xa, 0x1, 0x0) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f00000005c0)=ANY=[@ANYBLOB="03000000000000000a004e230000000cff010000000000000000000000000001f8ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000a0080010000000200000000000000000000000000000001000003000000000000000000000000004000"/272], 0x110) setsockopt$inet6_group_source_req(r4, 0x29, 0x2b, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10) stat(0x0, 0x0) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r5, &(0x7f00000010c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c) shutdown(r5, 0x1) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r5, 0x84, 0x7c, &(0x7f0000000280)={0x0, 0x1, 0x6}, 0x8) 5.269069121s ago: executing program 1 (id=2358): r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @empty, 0xffffffff}, 0x1c) r1 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4) bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xffffffff}, 0x1c) syz_emit_ethernet(0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000008095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffe01}, 0x94) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 4.455699636s ago: executing program 3 (id=2360): bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x3, 0x0, @vifc_lcl_addr=@local, @local}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$igmp(0x2, 0x3, 0x2) setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8) syz_emit_ethernet(0x2a, &(0x7f0000000240)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0xfb, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @echo_reply={0x0, 0x0, 0x0, 0x64, 0xd2}}}}}, 0x0) 3.69175146s ago: executing program 3 (id=2362): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8001}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffc}, 0x18) r1 = socket$kcm(0x11, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x107, 0x14, &(0x7f0000000000), 0x4) sendmsg$kcm(r1, &(0x7f0000001780)={&(0x7f00000003c0)=@caif=@rfm={0x25, 0x8, "fb95785b587f2fba61bfb990191a2af1"}, 0x80, &(0x7f00000015c0)=[{&(0x7f0000001800)="a5", 0x1}], 0x1}, 0x0) 3.599693093s ago: executing program 2 (id=2363): r0 = syz_io_uring_setup(0x832, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f0000000080)=0x0) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1) r3 = socket$rds(0x15, 0x5, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r3, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0, 0x2020, 0x1}) io_uring_enter(r0, 0x27e2, 0x0, 0x0, 0x0, 0x0) 3.570568805s ago: executing program 0 (id=2364): socket$inet6(0xa, 0x80002, 0x0) r0 = open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x0) fcntl$setlease(r0, 0x400, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) fcntl$lock(r1, 0x25, &(0x7f00000002c0)) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/4\x00') preadv(r2, &(0x7f0000001240)=[{&(0x7f0000000040)=""/18, 0x12}], 0x1, 0x0, 0x3) 3.527644446s ago: executing program 2 (id=2365): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='kfree\x00', r1, 0x0, 0x200000004000000}, 0x18) r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x70, 0x103301) ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000200)) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000300)='tlb_flush\x00', r3}, 0x18) r4 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x181880, 0x0) r5 = dup2(r3, r3) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10) r7 = syz_io_uring_setup(0x4b5, &(0x7f0000010400)={0x0, 0x86e1, 0x1, 0x8}, &(0x7f0000010080), &(0x7f0000000000)) io_uring_register$IORING_REGISTER_BUFFERS(r7, 0x0, &(0x7f0000000140)=[{0x0}, {0x0}], 0x2) io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r7, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r4, 0xc0189375, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r5}, './file0\x00'}) mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) ioctl$USBDEVFS_IOCTL(r2, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect) 3.489357619s ago: executing program 1 (id=2366): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x8, 0x7fe2, 0x1, 0x4}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f00000001c0), 0x0}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f00000002c0)={0x28, 0x0, 0x2710, @local}, 0x10) 3.489087498s ago: executing program 3 (id=2367): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000001440)=@raw={'raw\x00', 0x3c1, 0x3, 0x13c0, 0x11e0, 0xc8, 0x8, 0x0, 0x5803, 0x12f0, 0x2e8, 0x2e8, 0x12f0, 0x2e8, 0x3, 0x0, {[{{@uncond, 0x0, 0x1198, 0x11e0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5df11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f35a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x2, 0x3}}, @common=@unspec=@cgroup1={{0x1030}, {0x0, 0x1, 0x0, 0x0, './cgroup.cpu/syz1\x00', 0x0, {0xfffffffffffffffc}}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x81, 0x8, 0xe, 'syz0\x00', {0x1}}}}, {{@uncond, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'snmp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1420) 3.355889124s ago: executing program 0 (id=2368): r0 = socket$l2tp6(0xa, 0x2, 0x73) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f00000000c0), &(0x7f0000000240)=0x30) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="9feb01001800000000000053a9ebad30e139e6c8cde768c84f00380000003800000006000000000000000100000d0000000004000000030000000000000000000003000000000100000003000000f6ffffff040000000000001202000000"], 0x0, 0x56, 0x0, 0x1}, 0x28) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) r4 = socket(0xa, 0x1, 0x0) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f00000005c0)=ANY=[@ANYBLOB="03000000000000000a004e230000000cff010000000000000000000000000001f8ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000a0080010000000200000000000000000000000000000001000003000000000000000000000000004000"/272], 0x110) setsockopt$inet6_group_source_req(r4, 0x29, 0x2b, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10) stat(0x0, 0x0) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r5, &(0x7f00000010c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c) shutdown(r5, 0x1) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r5, 0x84, 0x7c, &(0x7f0000000280)={0x0, 0x1, 0x6}, 0x8) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) 3.349578874s ago: executing program 1 (id=2369): bpf$MAP_CREATE(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) madvise(&(0x7f00002e5000/0x400000)=nil, 0x400000, 0xf) madvise(&(0x7f0000000000/0x800000)=nil, 0x800002, 0xe) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b70300000000000085000000720000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) 3.342164985s ago: executing program 3 (id=2370): r0 = socket$netlink(0x10, 0x3, 0x0) writev(r0, &(0x7f00000000c0), 0x0) 3.275959437s ago: executing program 2 (id=2371): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000780)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ec}, 0x94) close_range(r1, 0xffffffffffffffff, 0x40000000000000) 3.261975168s ago: executing program 2 (id=2372): r0 = socket$l2tp6(0xa, 0x2, 0x73) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f00000000c0), &(0x7f0000000240)=0x30) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="9feb01001800000000000053a9ebad30e139e6c8cde768c84f00380000003800000006000000000000000100000d0000000004000000030000000000000000000003000000000100000003000000f6ffffff040000000000001202000000000000005f00"], 0x0, 0x56, 0x0, 0x1}, 0x28) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f0000"], 0x48) r4 = socket(0xa, 0x1, 0x0) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f00000005c0)=ANY=[@ANYBLOB="03000000000000000a004e230000000cff010000000000000000000000000001f8ffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000a0080010000000200000000000000000000000000000001000003000000000000000000000000004000"/272], 0x110) setsockopt$inet6_group_source_req(r4, 0x29, 0x2b, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10) stat(0x0, 0x0) r5 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r5, &(0x7f00000010c0)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback={0x0, 0x1c9ae7fffe9a6f34}}, 0x1c) shutdown(r5, 0x1) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r5, 0x84, 0x7c, &(0x7f0000000280)={0x0, 0x1, 0x6}, 0x8) 378.391614ms ago: executing program 2 (id=2373): r0 = syz_io_uring_setup(0x832, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f0000000080)=0x0) io_uring_register$IORING_REGISTER_PBUF_RING(r0, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1) r3 = socket$rds(0x15, 0x5, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r3, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0, 0x2020, 0x1}) io_uring_enter(r0, 0x27e2, 0x0, 0x0, 0x0, 0x0) 367.742565ms ago: executing program 0 (id=2374): r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @empty, 0xffffffff}, 0x1c) r1 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x80000004, 0x4) bind$inet6(r1, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xffffffff}, 0x1c) syz_emit_ethernet(0x0, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000008095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffe01}, 0x94) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x300, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 207.754962ms ago: executing program 3 (id=2375): sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20040084) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10) r2 = socket$netlink(0x10, 0x3, 0x0) socket$unix(0x1, 0x1, 0x0) sendmsg$nl_route_sched(r2, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000007c0)={[{@nodioread_nolock}, {@errors_remount}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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") 107.766416ms ago: executing program 2 (id=2376): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x14, &(0x7f0000000600)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x42, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000780)='kfree\x00', r1}, 0x18) r2 = socket(0x10, 0x803, 0x0) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0xffffffff, 0x0, 0x0, 0x4, 0x2, 0x1}}) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x3, 0x4, 0x4, 0x0, 0x0, 0x0, 0x9, 0xff, 0x0, 0x3, 0xfffffffe, 0x3}}) 0s ago: executing program 1 (id=2377): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x8, 0x7fe2, 0x1, 0x4}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f00000001c0), 0x0}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18) r2 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r2, &(0x7f00000002c0)={0x28, 0x0, 0x2710, @local}, 0x10) kernel console output (not intermixed with test programs): ] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 291.260102][ T9213] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 291.269974][ T9213] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 291.360295][ T5848] lo speed is unknown, defaulting to 1000 [ 291.553509][ T9259] bond0: (slave bond_slave_0): Releasing backup interface [ 291.589407][ T9259] bond0: (slave bond_slave_1): Releasing backup interface [ 291.680825][ T9259] team0: Port device team_slave_0 removed [ 291.761185][ T9264] netlink: 'syz.0.1207': attribute type 10 has an invalid length. [ 291.797918][ T9264] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1207'. [ 291.819272][ T9264] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check. [ 291.868561][ T9273] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1204'. [ 294.109242][ T27] kauditd_printk_skb: 184 callbacks suppressed [ 294.109262][ T27] audit: type=1326 audit(1765669894.872:2408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9282 comm="syz.0.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 294.182394][ T27] audit: type=1326 audit(1765669894.872:2409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9282 comm="syz.0.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 294.404467][ T27] audit: type=1326 audit(1765669894.902:2410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9282 comm="syz.0.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 294.427626][ T27] audit: type=1326 audit(1765669894.902:2411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9282 comm="syz.0.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 294.458732][ T27] audit: type=1326 audit(1765669894.902:2412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9282 comm="syz.0.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 294.536232][ T9298] 9pnet_fd: Insufficient options for proto=fd [ 294.641224][ T9304] loop3: detected capacity change from 0 to 128 [ 294.650493][ T9304] FAT-fs (loop3): Unrecognized mount option "98heDR<" or missing value [ 294.701805][ T9296] pim6reg: entered allmulticast mode [ 294.723136][ T9296] pim6reg: left allmulticast mode [ 296.718286][ T27] audit: type=1326 audit(1765669897.501:2413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9311 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 296.941242][ T27] audit: type=1326 audit(1765669897.501:2414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9311 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 297.149408][ T27] audit: type=1326 audit(1765669897.501:2415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9311 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 297.193223][ T27] audit: type=1326 audit(1765669897.501:2416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9311 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 297.240365][ T27] audit: type=1326 audit(1765669897.501:2417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9311 comm="syz.1.1222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 298.119452][ T9333] netlink: 176 bytes leftover after parsing attributes in process `syz.3.1228'. [ 300.569155][ T9349] warn_alloc: 3 callbacks suppressed [ 300.569178][ T9349] syz.3.1236: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1 [ 300.606292][ T9349] CPU: 0 PID: 9349 Comm: syz.3.1236 Not tainted syzkaller #0 [ 300.613742][ T9349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 300.623843][ T9349] Call Trace: [ 300.627219][ T9349] [ 300.630177][ T9349] dump_stack_lvl+0x16c/0x230 [ 300.634924][ T9349] ? show_regs_print_info+0x20/0x20 [ 300.640161][ T9349] ? load_image+0x3b0/0x3b0 [ 300.644702][ T9349] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 300.651155][ T9349] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 300.657694][ T9349] warn_alloc+0x210/0x300 [ 300.662071][ T9349] ? zone_watermark_ok_safe+0x230/0x230 [ 300.667670][ T9349] ? _raw_spin_unlock+0x28/0x40 [ 300.672570][ T9349] __vmalloc_node_range+0x662/0x1320 [ 300.677928][ T9349] ? free_vm_area+0x50/0x50 [ 300.682466][ T9349] ? _raw_spin_unlock+0x28/0x40 [ 300.687351][ T9349] ? __kasan_kmalloc+0x8f/0xa0 [ 300.692147][ T9349] __vmalloc_node_range+0x568/0x1320 [ 300.697479][ T9349] ? hash_netiface_create+0x361/0xff0 [ 300.702895][ T9349] ? __asan_memset+0x22/0x40 [ 300.707551][ T9349] ? free_vm_area+0x50/0x50 [ 300.712120][ T9349] ? kvmalloc_node+0x70/0x180 [ 300.716837][ T9349] ? rcu_is_watching+0x15/0xb0 [ 300.721644][ T9349] ? kvmalloc_node+0x70/0x180 [ 300.726362][ T9349] ? trace_kmalloc+0x1f/0xa0 [ 300.730997][ T9349] kvmalloc_node+0x13f/0x180 [ 300.735637][ T9349] ? hash_netiface_create+0x361/0xff0 [ 300.741063][ T9349] hash_netiface_create+0x361/0xff0 [ 300.746310][ T9349] ? __lock_acquire+0x7c80/0x7c80 [ 300.751379][ T9349] ? __nla_parse+0x40/0x50 [ 300.755841][ T9349] ? hash_netport6_gc+0x570/0x570 [ 300.760952][ T9349] ip_set_create+0xa87/0x18e0 [ 300.765679][ T9349] ? ip_set_create+0x4b2/0x18e0 [ 300.770588][ T9349] ? ip_set_protocol+0x5d0/0x5d0 [ 300.775569][ T9349] ? trace_contention_end+0x39/0xe0 [ 300.780848][ T9349] nfnetlink_rcv_msg+0xb49/0x1130 [ 300.785934][ T9349] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 300.792044][ T9349] ? nfnetlink_rcv_msg+0x20e/0x1130 [ 300.797311][ T9349] ? nfnetlink_unbind+0x160/0x160 [ 300.802407][ T9349] ? __dev_queue_xmit+0x1a64/0x35a0 [ 300.807646][ T9349] ? __netlink_deliver_tap+0x5ab/0x830 [ 300.813305][ T9349] ? netlink_deliver_tap+0x19c/0x1b0 [ 300.818662][ T9349] ? netlink_unicast+0x72c/0x8d0 [ 300.823675][ T9349] ? netlink_sendmsg+0x8c1/0xbe0 [ 300.828667][ T9349] ? ____sys_sendmsg+0x5bf/0x950 [ 300.833657][ T9349] ? ___sys_sendmsg+0x220/0x290 [ 300.838599][ T9349] ? __se_sys_sendmsg+0x1a5/0x270 [ 300.843675][ T9349] ? do_syscall_64+0x55/0xb0 [ 300.848344][ T9349] netlink_rcv_skb+0x216/0x480 [ 300.853178][ T9349] ? nfnetlink_unbind+0x160/0x160 [ 300.858257][ T9349] ? netlink_ack+0x1110/0x1110 [ 300.863083][ T9349] ? apparmor_capable+0x137/0x1a0 [ 300.868161][ T9349] ? bpf_lsm_capable+0x9/0x10 [ 300.872892][ T9349] ? security_capable+0x89/0xb0 [ 300.876664][ T9375] netlink: 556 bytes leftover after parsing attributes in process `syz.1.1254'. [ 300.877784][ T9349] nfnetlink_rcv+0x274/0x2180 [ 300.891542][ T9349] ? __local_bh_enable_ip+0x12e/0x1c0 [ 300.896959][ T9349] ? lockdep_hardirqs_on+0x98/0x150 [ 300.902210][ T9349] ? __local_bh_enable_ip+0x12e/0x1c0 [ 300.907630][ T9349] ? _local_bh_enable+0xa0/0xa0 [ 300.912542][ T9349] ? __dev_queue_xmit+0x245/0x35a0 [ 300.917704][ T9349] ? nfnetlink_net_exit_batch+0xa0/0xa0 [ 300.923403][ T9349] ? __dev_queue_xmit+0x245/0x35a0 [ 300.928577][ T9349] ? ref_tracker_free+0x634/0x7d0 [ 300.933645][ T9349] ? __copy_skb_header+0xa7/0x550 [ 300.938748][ T9349] ? refcount_inc+0x70/0x70 [ 300.943294][ T9349] ? __skb_clone+0x63/0x790 [ 300.947850][ T9349] ? __skb_clone+0x480/0x790 [ 300.952511][ T9349] ? __netlink_deliver_tap+0x7e8/0x830 [ 300.958024][ T9349] ? netlink_deliver_tap+0x2e/0x1b0 [ 300.963282][ T9349] ? __lock_acquire+0x7c80/0x7c80 [ 300.968441][ T9349] ? netlink_deliver_tap+0x2e/0x1b0 [ 300.973712][ T9349] netlink_unicast+0x751/0x8d0 [ 300.978535][ T9349] netlink_sendmsg+0x8c1/0xbe0 [ 300.983355][ T9349] ? netlink_getsockopt+0x580/0x580 [ 300.988613][ T9349] ? aa_sock_msg_perm+0x94/0x150 [ 300.993605][ T9349] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 300.998964][ T9349] ? security_socket_sendmsg+0x80/0xa0 [ 301.004468][ T9349] ? netlink_getsockopt+0x580/0x580 [ 301.009711][ T9349] ____sys_sendmsg+0x5bf/0x950 [ 301.014535][ T9349] ? __asan_memset+0x22/0x40 [ 301.019186][ T9349] ? __sys_sendmsg_sock+0x30/0x30 [ 301.024263][ T9349] ? __import_iovec+0x5f2/0x860 [ 301.029171][ T9349] ? import_iovec+0x73/0xa0 [ 301.033728][ T9349] ___sys_sendmsg+0x220/0x290 [ 301.038441][ T9349] ? __sys_sendmsg+0x270/0x270 [ 301.043247][ T9349] ? __local_bh_enable_ip+0x12e/0x1c0 [ 301.048661][ T9349] __se_sys_sendmsg+0x1a5/0x270 [ 301.053547][ T9349] ? __x64_sys_sendmsg+0x80/0x80 [ 301.058527][ T9349] ? lockdep_hardirqs_on+0x98/0x150 [ 301.063749][ T9349] do_syscall_64+0x55/0xb0 [ 301.068187][ T9349] ? clear_bhb_loop+0x40/0x90 [ 301.072881][ T9349] ? clear_bhb_loop+0x40/0x90 [ 301.077579][ T9349] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 301.083485][ T9349] RIP: 0033:0x7fee6398f749 [ 301.087918][ T9349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 301.107640][ T9349] RSP: 002b:00007fee64865038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 301.116075][ T9349] RAX: ffffffffffffffda RBX: 00007fee63be5fa0 RCX: 00007fee6398f749 [ 301.124067][ T9349] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003 [ 301.132058][ T9349] RBP: 00007fee63a13f91 R08: 0000000000000000 R09: 0000000000000000 [ 301.140159][ T9349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 301.148193][ T9349] R13: 00007fee63be6038 R14: 00007fee63be5fa0 R15: 00007ffe9716bb28 [ 301.156280][ T9349] [ 301.193739][ T9349] Mem-Info: [ 301.196995][ T9349] active_anon:13956 inactive_anon:0 isolated_anon:0 [ 301.196995][ T9349] active_file:1353 inactive_file:39959 isolated_file:0 [ 301.196995][ T9349] unevictable:768 dirty:111 writeback:0 [ 301.196995][ T9349] slab_reclaimable:10770 slab_unreclaimable:127891 [ 301.196995][ T9349] mapped:27369 shmem:7101 pagetables:593 [ 301.196995][ T9349] sec_pagetables:0 bounce:0 [ 301.196995][ T9349] kernel_misc_reclaimable:0 [ 301.196995][ T9349] free:1282494 free_pcp:13808 free_cma:0 [ 301.288000][ T9349] Node 0 active_anon:55824kB inactive_anon:0kB active_file:5412kB inactive_file:159636kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:109476kB dirty:444kB writeback:0kB shmem:26868kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11440kB pagetables:2372kB sec_pagetables:0kB all_unreclaimable? no [ 301.726791][ T9349] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 301.827397][ T9349] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 301.920246][ T9349] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 301.942447][ T9349] Node 0 DMA32 free:1204928kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:55368kB inactive_anon:0kB active_file:5412kB inactive_file:158320kB unevictable:1536kB writepending:444kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:29988kB local_pcp:16820kB free_cma:0kB [ 302.045864][ T9349] lowmem_reserve[]: 0 0 1 1 1 [ 302.063787][ T9349] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 302.359652][ T9349] lowmem_reserve[]: 0 0 0 0 0 [ 302.975412][ T9349] Node 1 Normal free:3895556kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:25792kB local_pcp:15360kB free_cma:0kB [ 303.257303][ T9349] lowmem_reserve[]: 0 0 0 0 0 [ 303.262212][ T9349] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 303.347783][ T9349] Node 0 DMA32: 39*4kB (UME) 48*8kB (UM) 84*16kB (UME) 99*32kB (UM) 2*64kB (U) 4*128kB (UE) 1*256kB (U) 2*512kB (UM) 4*1024kB (UE) 4*2048kB (M) 288*4096kB (M) = 1198908kB [ 303.412732][ T9349] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 303.458777][ T9349] Node 1 Normal: 271*4kB (UME) 69*8kB (UME) 52*16kB (UME) 57*32kB (UME) 15*64kB (UE) 3*128kB (ME) 1*256kB (U) 1*512kB (M) 2*1024kB (UE) 2*2048kB (UE) 948*4096kB (M) = 3895556kB [ 303.519252][ T9349] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 303.543114][ T9349] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 303.565145][ T9349] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 303.586744][ T9349] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 303.623488][ T9349] 46738 total pagecache pages [ 303.641907][ T9349] 0 pages in swap cache [ 303.652063][ T9349] Free swap = 124472kB [ 303.678901][ T9349] Total swap = 124996kB [ 303.694308][ T9349] 2097051 pages RAM [ 303.700974][ T9349] 0 pages HighMem/MovableOnly [ 303.724857][ T9349] 416138 pages reserved [ 303.730697][ T9349] 0 pages cma reserved [ 303.857144][ T9399] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1256'. [ 304.174654][ T9411] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1261'. [ 304.183949][ T27] kauditd_printk_skb: 12 callbacks suppressed [ 304.183965][ T27] audit: type=1326 audit(1765669904.987:2430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9397 comm="syz.0.1255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 304.248841][ T27] audit: type=1326 audit(1765669904.987:2431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9397 comm="syz.0.1255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 304.302701][ T27] audit: type=1326 audit(1765669904.987:2432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9397 comm="syz.0.1255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 304.353678][ T27] audit: type=1326 audit(1765669904.987:2433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9397 comm="syz.0.1255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 304.397254][ T27] audit: type=1326 audit(1765669904.987:2434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9397 comm="syz.0.1255" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 305.446773][ T9418] sch_tbf: burst 19360 is lower than device lo mtu (65550) ! [ 306.044597][ T27] audit: type=1326 audit(1765669906.846:2435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9425 comm="syz.0.1267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 306.098973][ T27] audit: type=1326 audit(1765669906.846:2436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9425 comm="syz.0.1267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 306.164618][ T27] audit: type=1326 audit(1765669906.846:2437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9425 comm="syz.0.1267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 306.224623][ T27] audit: type=1326 audit(1765669906.846:2438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9425 comm="syz.0.1267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 306.273900][ T27] audit: type=1326 audit(1765669906.846:2439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9425 comm="syz.0.1267" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 306.595940][ T9434] IPv6: NLM_F_CREATE should be specified when creating new route [ 307.789331][ T9453] syz.0.1277[9453] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 307.789475][ T9453] syz.0.1277[9453] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 308.397830][ T9474] loop3: detected capacity change from 0 to 512 [ 308.822494][ T9482] lo speed is unknown, defaulting to 1000 [ 308.898326][ T9482] lo speed is unknown, defaulting to 1000 [ 308.913384][ T9479] lo speed is unknown, defaulting to 1000 [ 308.934763][ T9482] lo speed is unknown, defaulting to 1000 [ 309.013766][ T9482] infiniband s{z2: RDMA CMA: cma_listen_on_dev, error -98 [ 309.132826][ T9482] lo speed is unknown, defaulting to 1000 [ 309.152252][ T9482] lo speed is unknown, defaulting to 1000 [ 309.187500][ T9482] lo speed is unknown, defaulting to 1000 [ 309.195017][ T9482] lo speed is unknown, defaulting to 1000 [ 309.202420][ T9482] lo speed is unknown, defaulting to 1000 [ 309.669914][ T27] kauditd_printk_skb: 144 callbacks suppressed [ 309.669933][ T27] audit: type=1326 audit(1765669910.484:2584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9495 comm="syz.1.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 309.726479][ T27] audit: type=1326 audit(1765669910.524:2585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9495 comm="syz.1.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 309.872751][ T27] audit: type=1326 audit(1765669910.524:2586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9495 comm="syz.1.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 309.916438][ T27] audit: type=1326 audit(1765669910.524:2587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9495 comm="syz.1.1293" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 310.758554][ T9522] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1303'. [ 310.775417][ T9522] : entered promiscuous mode [ 310.897425][ T27] audit: type=1326 audit(1765669911.623:2588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.3.1299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 311.606319][ T27] audit: type=1326 audit(1765669911.623:2589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.3.1299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 311.680088][ T27] audit: type=1326 audit(1765669911.633:2590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.3.1299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 311.787350][ T27] audit: type=1326 audit(1765669911.633:2591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.3.1299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 311.823742][ T9530] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1305'. [ 311.881911][ T27] audit: type=1326 audit(1765669911.633:2592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.3.1299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 312.053380][ T27] audit: type=1326 audit(1765669912.863:2593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9531 comm="syz.1.1306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 312.766023][ T9470] warn_alloc: 5 callbacks suppressed [ 312.766044][ T9470] syz.2.1282: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1 [ 312.791590][ T9470] CPU: 0 PID: 9470 Comm: syz.2.1282 Not tainted syzkaller #0 [ 312.799030][ T9470] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 312.809246][ T9470] Call Trace: [ 312.812692][ T9470] [ 312.815672][ T9470] dump_stack_lvl+0x16c/0x230 [ 312.820417][ T9470] ? show_regs_print_info+0x20/0x20 [ 312.825676][ T9470] ? load_image+0x3b0/0x3b0 [ 312.830235][ T9470] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 312.836704][ T9470] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 312.843257][ T9470] warn_alloc+0x210/0x300 [ 312.847674][ T9470] ? zone_watermark_ok_safe+0x230/0x230 [ 312.853361][ T9470] ? _raw_spin_unlock+0x28/0x40 [ 312.858258][ T9470] __vmalloc_node_range+0x662/0x1320 [ 312.863605][ T9470] ? free_vm_area+0x50/0x50 [ 312.868177][ T9470] ? _raw_spin_unlock+0x28/0x40 [ 312.873054][ T9470] ? __vmalloc_node_range+0x10af/0x1320 [ 312.878631][ T9470] __vmalloc_node_range+0x568/0x1320 [ 312.883953][ T9470] ? hash_netiface_create+0x361/0xff0 [ 312.889354][ T9470] ? __asan_memset+0x22/0x40 [ 312.894001][ T9470] ? free_vm_area+0x50/0x50 [ 312.898529][ T9470] ? kvmalloc_node+0x70/0x180 [ 312.903247][ T9470] ? rcu_is_watching+0x15/0xb0 [ 312.908034][ T9470] ? kvmalloc_node+0x70/0x180 [ 312.912730][ T9470] ? trace_kmalloc+0x1f/0xa0 [ 312.917352][ T9470] kvmalloc_node+0x13f/0x180 [ 312.921975][ T9470] ? hash_netiface_create+0x361/0xff0 [ 312.927371][ T9470] hash_netiface_create+0x361/0xff0 [ 312.932592][ T9470] ? __lock_acquire+0x7c80/0x7c80 [ 312.937639][ T9470] ? __nla_parse+0x40/0x50 [ 312.942091][ T9470] ? hash_netport6_gc+0x570/0x570 [ 312.947139][ T9470] ip_set_create+0xa87/0x18e0 [ 312.951856][ T9470] ? ip_set_create+0x4b2/0x18e0 [ 312.956770][ T9470] ? ip_set_protocol+0x5d0/0x5d0 [ 312.961748][ T9470] ? trace_contention_end+0x39/0xe0 [ 312.966999][ T9470] nfnetlink_rcv_msg+0xb49/0x1130 [ 312.972055][ T9470] ? nfnetlink_rcv_msg+0x20e/0x1130 [ 312.977384][ T9470] ? nfnetlink_unbind+0x160/0x160 [ 312.982477][ T9470] netlink_rcv_skb+0x216/0x480 [ 312.987264][ T9470] ? nfnetlink_unbind+0x160/0x160 [ 312.992318][ T9470] ? netlink_ack+0x1110/0x1110 [ 312.997117][ T9470] ? apparmor_capable+0x137/0x1a0 [ 313.002161][ T9470] ? bpf_lsm_capable+0x9/0x10 [ 313.006863][ T9470] ? security_capable+0x89/0xb0 [ 313.011740][ T9470] nfnetlink_rcv+0x274/0x2180 [ 313.016439][ T9470] ? mark_lock+0x94/0x320 [ 313.020787][ T9470] ? mark_lock+0x94/0x320 [ 313.025183][ T9470] ? __lock_acquire+0x1260/0x7c80 [ 313.030238][ T9470] ? nfnetlink_net_exit_batch+0xa0/0xa0 [ 313.035815][ T9470] ? kmalloc_reserve+0x95/0x240 [ 313.040697][ T9470] ? verify_lock_unused+0x140/0x140 [ 313.045918][ T9470] ? __netlink_lookup+0xbe/0x810 [ 313.050893][ T9470] ? netlink_deliver_tap+0x2e/0x1b0 [ 313.056114][ T9470] ? __lock_acquire+0x7c80/0x7c80 [ 313.061157][ T9470] ? net_generic+0x1e/0x240 [ 313.065681][ T9470] ? netlink_deliver_tap+0x2e/0x1b0 [ 313.070908][ T9470] netlink_unicast+0x751/0x8d0 [ 313.075707][ T9470] netlink_sendmsg+0x8c1/0xbe0 [ 313.080498][ T9470] ? netlink_getsockopt+0x580/0x580 [ 313.085722][ T9470] ? aa_sock_msg_perm+0x94/0x150 [ 313.090680][ T9470] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 313.096089][ T9470] ? security_socket_sendmsg+0x80/0xa0 [ 313.101572][ T9470] ? netlink_getsockopt+0x580/0x580 [ 313.106816][ T9470] ____sys_sendmsg+0x5bf/0x950 [ 313.111612][ T9470] ? __asan_memset+0x22/0x40 [ 313.116229][ T9470] ? __sys_sendmsg_sock+0x30/0x30 [ 313.121278][ T9470] ? __import_iovec+0x5f2/0x860 [ 313.126161][ T9470] ? import_iovec+0x73/0xa0 [ 313.130789][ T9470] ___sys_sendmsg+0x220/0x290 [ 313.135500][ T9470] ? __sys_sendmsg+0x270/0x270 [ 313.140343][ T9470] __se_sys_sendmsg+0x1a5/0x270 [ 313.145227][ T9470] ? __x64_sys_sendmsg+0x80/0x80 [ 313.150206][ T9470] ? lockdep_hardirqs_on+0x98/0x150 [ 313.155423][ T9470] do_syscall_64+0x55/0xb0 [ 313.159893][ T9470] ? clear_bhb_loop+0x40/0x90 [ 313.164587][ T9470] ? clear_bhb_loop+0x40/0x90 [ 313.169285][ T9470] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 313.175201][ T9470] RIP: 0033:0x7f444338f749 [ 313.179654][ T9470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 313.199279][ T9470] RSP: 002b:00007f444421f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 313.207737][ T9470] RAX: ffffffffffffffda RBX: 00007f44435e5fa0 RCX: 00007f444338f749 [ 313.215720][ T9470] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003 [ 313.223706][ T9470] RBP: 00007f4443413f91 R08: 0000000000000000 R09: 0000000000000000 [ 313.231688][ T9470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 313.239700][ T9470] R13: 00007f44435e6038 R14: 00007f44435e5fa0 R15: 00007ffc7cddbe08 [ 313.247703][ T9470] [ 313.258698][ T9470] Mem-Info: [ 313.261983][ T9470] active_anon:11097 inactive_anon:0 isolated_anon:0 [ 313.261983][ T9470] active_file:1353 inactive_file:39963 isolated_file:0 [ 313.261983][ T9470] unevictable:768 dirty:116 writeback:0 [ 313.261983][ T9470] slab_reclaimable:10836 slab_unreclaimable:127330 [ 313.261983][ T9470] mapped:24544 shmem:4251 pagetables:603 [ 313.261983][ T9470] sec_pagetables:0 bounce:0 [ 313.261983][ T9470] kernel_misc_reclaimable:0 [ 313.261983][ T9470] free:1289752 free_pcp:10303 free_cma:0 [ 313.318436][ T9470] Node 0 active_anon:44500kB inactive_anon:0kB active_file:5412kB inactive_file:159652kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:98136kB dirty:464kB writeback:0kB shmem:15388kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11376kB pagetables:2436kB sec_pagetables:0kB all_unreclaimable? no [ 313.351461][ T9470] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 313.383993][ T9470] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 313.444438][ T9549] loop3: detected capacity change from 0 to 1024 [ 313.454613][ T9470] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 313.473824][ T9470] Node 0 DMA32 free:1247400kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:44852kB inactive_anon:0kB active_file:5412kB inactive_file:158336kB unevictable:1536kB writepending:464kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:16008kB local_pcp:13400kB free_cma:0kB [ 313.506994][ T9470] lowmem_reserve[]: 0 0 1 1 1 [ 313.513080][ T9470] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 313.541911][ T9549] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 313.564712][ T9470] lowmem_reserve[]: 0 0 0 0 0 [ 313.577091][ T9470] Node 1 Normal free:3895556kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:25792kB local_pcp:10432kB free_cma:0kB [ 313.592567][ T9549] EXT4-fs error (device loop3): mb_free_blocks:1938: group 0, inode 15: block 161:freeing already freed block (bit 10); block bitmap corrupt. [ 313.626369][ T9470] lowmem_reserve[]: 0 0 0 0 0 [ 313.631420][ T9470] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 313.644512][ T9470] Node 0 DMA32: 337*4kB (UME) 188*8kB (UM) 63*16kB (ME) 111*32kB (ME) 8*64kB (UME) 52*128kB (UME) 95*256kB (UM) 44*512kB (UM) 7*1024kB (UME) 5*2048kB (UM) 285*4096kB (UM) = 1246196kB [ 313.663051][ T9470] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 313.675520][ T9470] Node 1 Normal: 271*4kB (UME) 69*8kB (UME) 52*16kB (UME) 57*32kB (UME) 15*64kB (UE) 3*128kB (ME) 1*256kB (U) 1*512kB (M) 2*1024kB (UE) 2*2048kB (UE) 948*4096kB (M) = 3895556kB [ 313.694412][ T9470] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 313.718327][ T9470] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 313.737954][ T9470] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 313.759959][ T9470] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 313.773211][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 313.785098][ T9470] 47672 total pagecache pages [ 313.794959][ T9470] 0 pages in swap cache [ 313.799651][ T9470] Free swap = 124452kB [ 313.803852][ T9470] Total swap = 124996kB [ 313.808049][ T9470] 2097051 pages RAM [ 313.824205][ T9470] 0 pages HighMem/MovableOnly [ 313.829389][ T9470] 416138 pages reserved [ 313.833726][ T9470] 0 pages cma reserved [ 315.530759][ T9574] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1329'. [ 315.543648][ T9572] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1321'. [ 315.575989][ T9572] openvswitch: : Dropping previously announced user features [ 315.660077][ T27] kauditd_printk_skb: 67 callbacks suppressed [ 315.660094][ T27] audit: type=1326 audit(1765669916.471:2661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9566 comm="syz.1.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 315.709709][ T27] audit: type=1326 audit(1765669916.511:2662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9566 comm="syz.1.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 315.763974][ T27] audit: type=1326 audit(1765669916.541:2663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9566 comm="syz.1.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 315.814584][ T27] audit: type=1326 audit(1765669916.541:2664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9566 comm="syz.1.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 315.839784][ T27] audit: type=1326 audit(1765669916.541:2665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9566 comm="syz.1.1319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 315.904106][ T27] audit: type=1326 audit(1765669916.611:2666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9580 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 315.927666][ T27] audit: type=1326 audit(1765669916.611:2667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9580 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 315.951639][ T27] audit: type=1326 audit(1765669916.611:2668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9580 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 316.089110][ T27] audit: type=1326 audit(1765669916.621:2669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9580 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 316.169206][ T27] audit: type=1326 audit(1765669916.621:2670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9580 comm="syz.2.1323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 316.235232][ T9587] netlink: 'syz.2.1326': attribute type 3 has an invalid length. [ 317.170935][ T9600] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1331'. [ 317.358114][ T9602] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1333'. [ 317.386252][ T9602] : entered promiscuous mode [ 317.565711][ T9608] netlink: 148 bytes leftover after parsing attributes in process `syz.3.1336'. [ 317.608791][ T9610] 9pnet_fd: Insufficient options for proto=fd [ 318.165232][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 318.172388][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 319.067549][ T9625] syz.3.1343[9625] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 319.067685][ T9625] syz.3.1343[9625] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 319.083681][ T9625] sch_fq: defrate 4294967295 ignored. [ 321.892866][ T9615] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1339'. [ 322.188046][ T9656] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1357'. [ 322.204506][ T9656] 0X: renamed from caif0 [ 322.220269][ T9656] 0X: entered allmulticast mode [ 322.226504][ T9656] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 322.549881][ T9665] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1362'. [ 322.607066][ T9666] syz.3.1361[9666] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 322.607208][ T9666] syz.3.1361[9666] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 322.628510][ T9666] netlink: 92 bytes leftover after parsing attributes in process `syz.3.1361'. [ 322.653246][ T9666] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1361'. [ 322.759857][ T9668] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1363'. [ 322.842207][ T9672] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1365'. [ 323.023904][ T9680] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1368'. [ 323.049750][ T9680] 0X: renamed from caif0 [ 323.124387][ T9680] 0X: entered allmulticast mode [ 323.131584][ T9680] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 323.216980][ T9687] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1371'. [ 323.508146][ T9696] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1375'. [ 324.502128][ T9710] loop3: detected capacity change from 0 to 512 [ 324.579426][ T9710] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 324.653462][ T9710] ext4 filesystem being mounted at /337/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 324.758228][ T27] kauditd_printk_skb: 14 callbacks suppressed [ 324.758247][ T27] audit: type=1326 audit(1765669925.547:2685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9709 comm="syz.3.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 324.837956][ T27] audit: type=1326 audit(1765669925.547:2686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9709 comm="syz.3.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 324.891542][ T27] audit: type=1326 audit(1765669925.547:2687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9709 comm="syz.3.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 324.937346][ T27] audit: type=1326 audit(1765669925.547:2688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9709 comm="syz.3.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 324.966536][ T27] audit: type=1326 audit(1765669925.556:2689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9709 comm="syz.3.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 324.991455][ T27] audit: type=1326 audit(1765669925.556:2690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9709 comm="syz.3.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 325.016342][ T27] audit: type=1326 audit(1765669925.556:2691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9709 comm="syz.3.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 325.041252][ T27] audit: type=1326 audit(1765669925.556:2692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9709 comm="syz.3.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 325.066517][ T27] audit: type=1326 audit(1765669925.556:2693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9709 comm="syz.3.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 325.089564][ T27] audit: type=1326 audit(1765669925.556:2694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9709 comm="syz.3.1378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 325.158059][ T9723] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1382'. [ 325.168539][ T9723] 0X: renamed from caif0 [ 325.181689][ T9723] 0X: entered allmulticast mode [ 325.189449][ T9723] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 325.379272][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 327.786074][ T9795] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1413'. [ 327.887192][ T9797] netlink: 'syz.2.1414': attribute type 10 has an invalid length. [ 327.917593][ T9797] team0: Port device dummy0 added [ 327.938311][ T9797] netlink: 'syz.2.1414': attribute type 10 has an invalid length. [ 327.996851][ T9797] team0: Port device dummy0 removed [ 328.017499][ T9797] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 328.531615][ T9818] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1424'. [ 328.640121][ T9824] netlink: 7 bytes leftover after parsing attributes in process `syz.0.1426'. [ 329.608245][ T9852] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1440'. [ 329.794501][ T9852] syz.2.1440 (9852) used greatest stack depth: 17064 bytes left [ 330.291911][ T9884] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1455'. [ 331.429791][ T9897] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1459'. [ 331.581441][ T27] kauditd_printk_skb: 60 callbacks suppressed [ 331.581459][ T27] audit: type=1326 audit(1765669932.383:2755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9898 comm="syz.3.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 331.621264][ T27] audit: type=1326 audit(1765669932.403:2756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9898 comm="syz.3.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 331.645698][ T27] audit: type=1326 audit(1765669932.413:2757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9898 comm="syz.3.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 331.669706][ T27] audit: type=1326 audit(1765669932.413:2758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9898 comm="syz.3.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 331.692503][ T27] audit: type=1326 audit(1765669932.413:2759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9898 comm="syz.3.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 331.716470][ T27] audit: type=1326 audit(1765669932.413:2760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9898 comm="syz.3.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 331.739897][ T27] audit: type=1326 audit(1765669932.413:2761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9898 comm="syz.3.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 331.777810][ T27] audit: type=1326 audit(1765669932.423:2762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9898 comm="syz.3.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 331.825993][ T27] audit: type=1326 audit(1765669932.423:2763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9898 comm="syz.3.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 331.869162][ T27] audit: type=1326 audit(1765669932.423:2764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9898 comm="syz.3.1460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 331.979074][ T9914] loop3: detected capacity change from 0 to 512 [ 332.010432][ T9916] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1467'. [ 332.041771][ T9914] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 332.055257][ T9920] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1469'. [ 332.071141][ T9914] ext4 filesystem being mounted at /355/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 332.271022][ T9921] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 332.331116][ T9921] EXT4-fs (loop3): Remounting filesystem read-only [ 332.370691][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 334.568238][ T9957] loop3: detected capacity change from 0 to 128 [ 335.427939][ T9957] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 335.442411][ T9957] ext4 filesystem being mounted at /360/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 337.873734][ T5784] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 339.207960][ T27] kauditd_printk_skb: 24 callbacks suppressed [ 339.207978][ T27] audit: type=1326 audit(1765669939.999:2789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.3.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 339.271080][ T27] audit: type=1326 audit(1765669940.029:2790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.3.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 339.295438][ T27] audit: type=1326 audit(1765669940.029:2791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.3.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 339.318045][ T27] audit: type=1326 audit(1765669940.029:2792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.3.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 339.340751][ T27] audit: type=1326 audit(1765669940.029:2793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.3.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 339.371368][ T27] audit: type=1326 audit(1765669940.029:2794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.3.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 340.921969][ T27] audit: type=1326 audit(1765669940.029:2795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.3.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 341.303486][ T27] audit: type=1326 audit(1765669940.029:2796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.3.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 341.392473][ T27] audit: type=1326 audit(1765669940.029:2797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.3.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 341.456672][ T27] audit: type=1326 audit(1765669940.039:2798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10009 comm="syz.3.1505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 342.548889][T10041] loop3: detected capacity change from 0 to 1024 [ 342.574441][T10041] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 342.668376][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 343.128283][T10056] loop3: detected capacity change from 0 to 2048 [ 343.180896][T10056] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 345.907704][T10077] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1531'. [ 345.917335][T10077] netlink: 43 bytes leftover after parsing attributes in process `syz.1.1531'. [ 345.958556][T10077] netlink: 'syz.1.1531': attribute type 6 has an invalid length. [ 345.977486][T10077] netlink: 'syz.1.1531': attribute type 5 has an invalid length. [ 345.995909][T10077] netlink: 43 bytes leftover after parsing attributes in process `syz.1.1531'. [ 346.980732][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 348.586111][T10098] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1538'. [ 348.607434][T10098] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1538'. [ 348.646647][T10100] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1539'. [ 348.686393][T10100] ip6gre1: entered allmulticast mode [ 356.213939][ T27] kauditd_printk_skb: 81 callbacks suppressed [ 356.213956][ T27] audit: type=1326 audit(1765669957.001:2880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10210 comm="syz.3.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 356.280035][ T27] audit: type=1326 audit(1765669957.031:2881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10210 comm="syz.3.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 356.323416][ T27] audit: type=1326 audit(1765669957.031:2882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10210 comm="syz.3.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 356.370167][ T27] audit: type=1326 audit(1765669957.031:2883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10210 comm="syz.3.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 356.414854][ T27] audit: type=1326 audit(1765669957.031:2884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10210 comm="syz.3.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 356.488071][ T27] audit: type=1326 audit(1765669957.031:2885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10210 comm="syz.3.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 356.529701][ T27] audit: type=1326 audit(1765669957.031:2886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10210 comm="syz.3.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 356.575477][ T27] audit: type=1326 audit(1765669957.031:2887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10210 comm="syz.3.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 356.610941][ T27] audit: type=1326 audit(1765669957.031:2888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10210 comm="syz.3.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 356.634540][ T27] audit: type=1326 audit(1765669957.031:2889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10210 comm="syz.3.1580" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 356.735373][T10231] syz.1.1588[10231] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 356.735640][T10231] syz.1.1588[10231] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 357.814543][T10243] IPVS: Error connecting to the multicast addr [ 358.065854][T10261] netlink: 'syz.2.1601': attribute type 10 has an invalid length. [ 358.075180][T10261] macvlan1: entered allmulticast mode [ 358.081447][T10261] veth1_vlan: entered allmulticast mode [ 358.089370][T10261] team0: Port device macvlan1 added [ 358.553311][T10286] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1612'. [ 358.564739][T10286] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1612'. [ 358.807791][T10297] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 359.160727][T10307] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1619'. [ 359.196411][T10307] (null): rxe_set_mtu: Set mtu to 1024 [ 360.020371][T10319] loop3: detected capacity change from 0 to 128 [ 360.066068][T10319] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 360.108039][T10319] ext4 filesystem being mounted at /391/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 360.240502][T10307] infiniband !yz!: set down [ 360.261637][T10307] infiniband !yz!: added team_slave_0 [ 360.269129][T10307] !yz!: rxe_create_cq: returned err = -12 [ 360.297293][T10307] infiniband !yz!: Couldn't create ib_mad CQ [ 360.322162][T10307] infiniband !yz!: Couldn't open port 1 [ 360.378760][T10307] RDS/IB: !yz!: added [ 360.394745][T10307] smc: adding ib device !yz! with port count 1 [ 360.412882][T10307] smc: ib device !yz! port 1 has pnetid [ 360.759116][ T5784] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 361.478774][T10345] Process accounting resumed [ 361.635235][T10353] loop3: detected capacity change from 0 to 1024 [ 361.654186][T10353] EXT4-fs (loop3): VFS: Found ext4 filesystem with invalid superblock checksum. Run e2fsck? [ 361.728059][ T27] kauditd_printk_skb: 296 callbacks suppressed [ 361.728076][ T27] audit: type=1326 audit(1765669962.508:3186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 361.775612][ T27] audit: type=1326 audit(1765669962.538:3187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 361.822693][ T27] audit: type=1326 audit(1765669962.548:3188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 361.882437][ T27] audit: type=1326 audit(1765669962.548:3189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 361.929518][ T27] audit: type=1326 audit(1765669962.548:3190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 361.964373][ T27] audit: type=1326 audit(1765669962.558:3191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 361.995410][ T27] audit: type=1326 audit(1765669962.558:3192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 362.041735][ T27] audit: type=1326 audit(1765669962.558:3193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 362.320283][ T27] audit: type=1326 audit(1765669962.558:3194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 362.859671][ T27] audit: type=1326 audit(1765669962.558:3195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10356 comm="syz.1.1637" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 364.336367][T10400] wg2: entered promiscuous mode [ 364.341406][T10400] wg2: entered allmulticast mode [ 367.396293][ T27] kauditd_printk_skb: 60 callbacks suppressed [ 367.396310][ T27] audit: type=1326 audit(1765669968.175:3256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.0.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 367.455773][ T27] audit: type=1326 audit(1765669968.205:3257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.0.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 367.500108][ T27] audit: type=1326 audit(1765669968.215:3258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.0.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 367.528915][ T27] audit: type=1326 audit(1765669968.215:3259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.0.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 367.552855][ T27] audit: type=1326 audit(1765669968.215:3260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.0.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 367.577994][ T27] audit: type=1326 audit(1765669968.215:3261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.0.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 367.792439][ T27] audit: type=1326 audit(1765669968.215:3262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.0.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 368.332883][ T27] audit: type=1326 audit(1765669968.215:3263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.0.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 368.419157][ T27] audit: type=1326 audit(1765669968.215:3264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.0.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 368.441756][ T27] audit: type=1326 audit(1765669968.215:3265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10456 comm="syz.0.1677" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 368.690555][T10478] syz.0.1686[10478] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 368.690710][T10478] syz.0.1686[10478] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 369.794544][T10500] sctp: [Deprecated]: syz.0.1695 (pid 10500) Use of struct sctp_assoc_value in delayed_ack socket option. [ 369.794544][T10500] Use struct sctp_sack_info instead [ 371.178698][T10525] bond0: (slave dummy0): Releasing backup interface [ 371.298547][T10525] bridge_slave_0: left allmulticast mode [ 371.320934][T10525] bridge_slave_0: left promiscuous mode [ 371.353423][T10525] bridge0: port 1(bridge_slave_0) entered disabled state [ 371.428453][T10525] bridge_slave_1: left allmulticast mode [ 371.434830][T10525] bridge_slave_1: left promiscuous mode [ 371.440765][T10525] bridge0: port 2(bridge_slave_1) entered disabled state [ 371.452481][T10525] bond0: (slave bond_slave_0): Releasing backup interface [ 371.496823][T10525] bond0: (slave bond_slave_1): Releasing backup interface [ 371.524562][T10525] team0: Port device team_slave_0 removed [ 371.533062][T10525] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 371.559762][T10525] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 371.572222][T10525] veth1_vlan: left allmulticast mode [ 371.604786][T10525] team0: Port device macvlan1 removed [ 371.623511][T10530] netlink: 'syz.2.1705': attribute type 10 has an invalid length. [ 371.649456][T10530] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1705'. [ 371.691530][T10530] batman_adv: batadv0: Adding interface: virt_wifi0 [ 371.700028][T10530] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 371.728269][T10530] batman_adv: batadv0: Interface activated: virt_wifi0 [ 371.892985][T10547] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1714'. [ 371.902105][T10547] netlink: 312 bytes leftover after parsing attributes in process `syz.2.1714'. [ 371.911347][T10547] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1714'. [ 371.968551][T10550] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1715'. [ 372.165606][T10550] 8021q: adding VLAN 0 to HW filter on device bond1 [ 372.173586][T10553] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1715'. [ 372.629202][ T27] kauditd_printk_skb: 134 callbacks suppressed [ 372.629380][ T27] audit: type=1326 audit(1765669973.403:3400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10551 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 372.927592][ T27] audit: type=1326 audit(1765669973.403:3401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10551 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 372.967735][ T27] audit: type=1326 audit(1765669973.403:3402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10551 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 372.990862][ T27] audit: type=1326 audit(1765669973.403:3403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10551 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 373.024440][ T27] audit: type=1326 audit(1765669973.403:3404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10551 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 373.056280][ T27] audit: type=1326 audit(1765669973.722:3405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10562 comm="syz.3.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 373.080763][ T27] audit: type=1326 audit(1765669973.722:3406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10562 comm="syz.3.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 373.105820][ T27] audit: type=1326 audit(1765669973.722:3407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10562 comm="syz.3.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 373.130111][ T27] audit: type=1326 audit(1765669973.722:3408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10562 comm="syz.3.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 373.153934][ T27] audit: type=1326 audit(1765669973.722:3409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10562 comm="syz.3.1719" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 373.192961][T10553] bond1 (unregistering): Released all slaves [ 377.640812][ T27] kauditd_printk_skb: 219 callbacks suppressed [ 377.640829][ T27] audit: type=1326 audit(1765669978.420:3629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.0.1751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 377.711701][ T27] audit: type=1326 audit(1765669978.420:3630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.0.1751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 377.933406][ T27] audit: type=1326 audit(1765669978.450:3631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.0.1751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 378.255769][ T27] audit: type=1326 audit(1765669978.450:3632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.0.1751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 378.684116][ T27] audit: type=1326 audit(1765669978.450:3633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.0.1751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 378.729621][ T27] audit: type=1326 audit(1765669978.450:3634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.0.1751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 378.752928][ T27] audit: type=1326 audit(1765669978.450:3635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.0.1751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 378.775519][ T27] audit: type=1326 audit(1765669978.450:3636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.0.1751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 378.798176][ T27] audit: type=1326 audit(1765669978.450:3637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.0.1751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 378.825345][ T27] audit: type=1326 audit(1765669978.450:3638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10646 comm="syz.0.1751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 378.940686][T10632] loop3: detected capacity change from 0 to 512 [ 378.970298][T10632] fscrypt (loop3, inode 2): Error -61 getting encryption context [ 378.989081][T10632] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -61 [ 379.008204][T10632] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #13: comm syz.3.1744: iget: bad i_size value: 12154757448730 [ 379.032596][T10632] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1744: couldn't read orphan inode 13 (err -117) [ 379.052488][T10632] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 379.452235][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 379.650014][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.656601][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 381.721549][T10697] 0X: left allmulticast mode [ 381.734533][T10697] wg2: left promiscuous mode [ 381.742551][T10697] wg2: left allmulticast mode [ 381.758256][T10697] batman_adv: batadv0: Interface deactivated: virt_wifi0 [ 381.806207][T10697] macvlan1: left allmulticast mode [ 381.823979][T10697] gretap1: left promiscuous mode [ 385.580826][ T27] kauditd_printk_skb: 44 callbacks suppressed [ 385.580841][ T27] audit: type=1326 audit(1765669986.346:3683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.0.1786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 385.754389][ T27] audit: type=1326 audit(1765669986.346:3684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.0.1786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 385.819261][ T27] audit: type=1326 audit(1765669986.346:3685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.0.1786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 385.882979][ T27] audit: type=1326 audit(1765669986.346:3686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.0.1786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 385.906416][ T27] audit: type=1326 audit(1765669986.346:3687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.0.1786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 385.931714][ T27] audit: type=1326 audit(1765669986.346:3688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.0.1786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 385.979011][ T27] audit: type=1326 audit(1765669986.346:3689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.0.1786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 386.030957][ T27] audit: type=1326 audit(1765669986.346:3690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.0.1786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 386.054311][ T27] audit: type=1326 audit(1765669986.346:3691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.0.1786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 386.078219][ T27] audit: type=1326 audit(1765669986.346:3692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10744 comm="syz.0.1786" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 388.388882][T10793] bridge0: port 1(gretap0) entered blocking state [ 388.396110][T10793] bridge0: port 1(gretap0) entered disabled state [ 388.403043][T10793] gretap0: entered allmulticast mode [ 388.438116][T10793] gretap0: entered promiscuous mode [ 391.897030][ T27] kauditd_printk_skb: 97 callbacks suppressed [ 391.897046][ T27] audit: type=1326 audit(1765669992.663:3790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10821 comm="syz.3.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 392.164849][ T27] audit: type=1326 audit(1765669992.663:3791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10821 comm="syz.3.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 392.615365][ T27] audit: type=1326 audit(1765669992.663:3792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10821 comm="syz.3.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 392.938834][ T27] audit: type=1326 audit(1765669992.663:3793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10821 comm="syz.3.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 392.964125][ T27] audit: type=1326 audit(1765669992.663:3794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10821 comm="syz.3.1813" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 393.379855][T10852] lo speed is unknown, defaulting to 1000 [ 393.388356][T10852] lo speed is unknown, defaulting to 1000 [ 394.774470][T10876] loop3: detected capacity change from 0 to 1024 [ 394.798928][T10876] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 394.844228][T10876] bridge0: port 3(gretap0) entered blocking state [ 394.851938][T10876] bridge0: port 3(gretap0) entered disabled state [ 394.858885][T10876] gretap0: entered allmulticast mode [ 394.865955][T10876] gretap0: entered promiscuous mode [ 394.872448][T10876] bridge0: port 3(gretap0) entered blocking state [ 394.879618][T10876] bridge0: port 3(gretap0) entered forwarding state [ 396.001515][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 398.223770][ T27] audit: type=1326 audit(1765669998.990:3795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10893 comm="syz.0.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 398.303798][ T27] audit: type=1326 audit(1765669998.990:3796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10893 comm="syz.0.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 398.466119][ T27] audit: type=1326 audit(1765669998.990:3797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10893 comm="syz.0.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 398.846086][ T27] audit: type=1326 audit(1765669998.990:3798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10893 comm="syz.0.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 399.075037][ T27] audit: type=1326 audit(1765669998.990:3799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10893 comm="syz.0.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 399.321737][ T27] audit: type=1326 audit(1765669999.989:3800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10923 comm="syz.3.1848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 399.386312][ T27] audit: type=1326 audit(1765669999.989:3801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10923 comm="syz.3.1848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 399.409969][ T27] audit: type=1326 audit(1765669999.999:3802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10923 comm="syz.3.1848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 399.435781][ T27] audit: type=1326 audit(1765669999.999:3803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10923 comm="syz.3.1848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 399.461503][ T27] audit: type=1326 audit(1765669999.999:3804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10923 comm="syz.3.1848" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fee6398f749 code=0x7ffc0000 [ 399.839180][ T1133] Bluetooth: hci4: Frame reassembly failed (-84) [ 399.868839][ T1133] Bluetooth: hci4: Frame reassembly failed (-84) [ 401.921534][ T51] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 401.929511][ T5792] Bluetooth: hci4: command 0x1003 tx timeout [ 404.309051][T10964] warn_alloc: 5 callbacks suppressed [ 404.309070][T10964] syz.0.1861: vmalloc error: size 16777216, failed to allocated page array size 32768, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1 [ 404.413665][T10964] CPU: 1 PID: 10964 Comm: syz.0.1861 Not tainted syzkaller #0 [ 404.421216][T10964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 404.431319][T10964] Call Trace: [ 404.434638][T10964] [ 404.437598][T10964] dump_stack_lvl+0x16c/0x230 [ 404.442327][T10964] ? show_regs_print_info+0x20/0x20 [ 404.447566][T10964] ? load_image+0x3b0/0x3b0 [ 404.452145][T10964] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 404.458603][T10964] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 404.465149][T10964] warn_alloc+0x210/0x300 [ 404.469531][T10964] ? zone_watermark_ok_safe+0x230/0x230 [ 404.475138][T10964] ? _raw_spin_unlock+0x28/0x40 [ 404.480040][T10964] __vmalloc_node_range+0x662/0x1320 [ 404.485391][T10964] ? __alloc_pages+0xa1/0x460 [ 404.490114][T10964] ? free_vm_area+0x50/0x50 [ 404.494666][T10964] ? packet_set_ring+0x712/0x2380 [ 404.499740][T10964] vzalloc+0x79/0x90 [ 404.503687][T10964] ? packet_set_ring+0x712/0x2380 [ 404.508763][T10964] packet_set_ring+0x712/0x2380 [ 404.513701][T10964] ? packet_mmap+0x4e0/0x4e0 [ 404.518429][T10964] ? __lock_acquire+0x7c80/0x7c80 [ 404.523503][T10964] ? __local_bh_enable_ip+0x12e/0x1c0 [ 404.528908][T10964] ? lockdep_hardirqs_on+0x98/0x150 [ 404.534141][T10964] ? __might_fault+0xaa/0x120 [ 404.538840][T10964] ? __might_fault+0xc6/0x120 [ 404.543528][T10964] ? __might_fault+0xaa/0x120 [ 404.548222][T10964] ? _copy_from_user+0xa5/0xe0 [ 404.553025][T10964] packet_setsockopt+0xc58/0x12a0 [ 404.558146][T10964] ? packet_ioctl+0x340/0x340 [ 404.562854][T10964] ? aa_sk_perm+0x7fc/0x930 [ 404.567403][T10964] ? aa_af_perm+0x2b0/0x2b0 [ 404.571928][T10964] ? __fget_files+0x28/0x4d0 [ 404.576540][T10964] ? aa_sock_opt_perm+0x74/0x100 [ 404.581490][T10964] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 404.587047][T10964] ? security_socket_setsockopt+0x7e/0xa0 [ 404.592775][T10964] ? packet_ioctl+0x340/0x340 [ 404.597473][T10964] do_sock_setsockopt+0x175/0x1a0 [ 404.602521][T10964] ? __fdget+0x180/0x210 [ 404.606785][T10964] __x64_sys_setsockopt+0x184/0x200 [ 404.612011][T10964] do_syscall_64+0x55/0xb0 [ 404.616448][T10964] ? clear_bhb_loop+0x40/0x90 [ 404.621136][T10964] ? clear_bhb_loop+0x40/0x90 [ 404.625831][T10964] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 404.631756][T10964] RIP: 0033:0x7fe78578f749 [ 404.636179][T10964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 404.655817][T10964] RSP: 002b:00007fe786617038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 404.664250][T10964] RAX: ffffffffffffffda RBX: 00007fe7859e5fa0 RCX: 00007fe78578f749 [ 404.672241][T10964] RDX: 0000000000000005 RSI: 0000000000000107 RDI: 0000000000000003 [ 404.680339][T10964] RBP: 00007fe785813f91 R08: 000000000000001c R09: 0000000000000000 [ 404.688349][T10964] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000 [ 404.696339][T10964] R13: 00007fe7859e6038 R14: 00007fe7859e5fa0 R15: 00007ffe95c32278 [ 404.704346][T10964] [ 404.728018][T10964] Mem-Info: [ 404.731291][T10964] active_anon:11307 inactive_anon:0 isolated_anon:1225 [ 404.731291][T10964] active_file:1353 inactive_file:40003 isolated_file:0 [ 404.731291][T10964] unevictable:768 dirty:123 writeback:0 [ 404.731291][T10964] slab_reclaimable:10876 slab_unreclaimable:131460 [ 404.731291][T10964] mapped:27076 shmem:7107 pagetables:524 [ 404.731291][T10964] sec_pagetables:0 bounce:0 [ 404.731291][T10964] kernel_misc_reclaimable:0 [ 404.731291][T10964] free:1307540 free_pcp:12605 free_cma:0 [ 404.791388][T10964] Node 0 active_anon:41928kB inactive_anon:0kB active_file:5412kB inactive_file:159812kB unevictable:1536kB isolated(anon):8100kB isolated(file):0kB mapped:107704kB dirty:492kB writeback:0kB shmem:26892kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10992kB pagetables:2196kB sec_pagetables:0kB all_unreclaimable? no [ 404.873848][T10964] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 404.906622][T10964] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 404.964523][T10964] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 404.974162][T10964] Node 0 DMA32 free:1318204kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:45628kB inactive_anon:0kB active_file:5412kB inactive_file:158496kB unevictable:1536kB writepending:512kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:25288kB local_pcp:9832kB free_cma:0kB [ 405.040701][T10964] lowmem_reserve[]: 0 0 1 1 1 [ 405.046730][T10982] netlink: 'syz.2.1869': attribute type 10 has an invalid length. [ 405.053940][T10964] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 405.056970][T10982] macvlan1: entered allmulticast mode [ 405.093803][T10964] lowmem_reserve[]: 0 [ 405.098992][T10982] veth1_vlan: entered allmulticast mode [ 405.129091][T10982] team0: Port device macvlan1 added [ 405.207629][T10964] 0 0 0 0 [ 405.210779][T10964] Node 1 Normal free:3896324kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:25280kB local_pcp:10016kB free_cma:0kB [ 405.295767][T10964] lowmem_reserve[]: 0 0 0 0 0 [ 405.309646][T10964] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 405.336783][T10964] Node 0 DMA32: 9*4kB (UE) 24*8kB (ME) 2*16kB (UM) 797*32kB (UME) 516*64kB (UME) 232*128kB (UME) 118*256kB (UME) 38*512kB (UM) 10*1024kB (U) 6*2048kB (UM) 281*4096kB (UM) = 1311652kB [ 405.358675][T10964] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB [ 405.632479][T10964] Node 1 Normal: 271*4kB (UME) 69*8kB (UME) 52*16kB (UME) 69*32kB (UME) 19*64kB (UE) 4*128kB (UME) 1*256kB (U) 1*512kB (M) 2*1024kB (UE) 2*2048kB (UE) 948*4096kB (M) = 3896324kB [ 405.919773][T10964] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 406.051229][T10964] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 406.062235][T10964] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 406.073258][T10964] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 406.084154][T10964] 48468 total pagecache pages [ 406.089417][T10964] 0 pages in swap cache [ 406.095301][T10964] Free swap = 124432kB [ 406.099516][T10964] Total swap = 124996kB [ 406.103696][T10964] 2097051 pages RAM [ 406.109440][T10964] 0 pages HighMem/MovableOnly [ 406.114163][T10964] 416138 pages reserved [ 406.118999][T10964] 0 pages cma reserved [ 412.264355][ T27] kauditd_printk_skb: 54 callbacks suppressed [ 412.264371][ T27] audit: type=1326 audit(1765670013.023:3859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 412.318512][ T27] audit: type=1326 audit(1765670013.023:3860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 412.342325][ T27] audit: type=1326 audit(1765670013.023:3861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 412.365372][ T27] audit: type=1326 audit(1765670013.023:3862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 412.388255][ T27] audit: type=1326 audit(1765670013.023:3863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 412.411371][ T27] audit: type=1326 audit(1765670013.023:3864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 412.438934][ T27] audit: type=1326 audit(1765670013.023:3865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 412.505941][ T27] audit: type=1326 audit(1765670013.023:3866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 412.580689][ T27] audit: type=1326 audit(1765670013.023:3867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 412.650070][ T27] audit: type=1326 audit(1765670013.023:3868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11077 comm="syz.2.1902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 413.000063][T11094] loop3: detected capacity change from 0 to 512 [ 414.328171][T11120] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1918'. [ 417.886048][T11180] loop3: detected capacity change from 0 to 512 [ 417.913570][T11180] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1942: bg 0: block 248: padding at end of block bitmap is not set [ 417.932257][T11180] __quota_error: 152 callbacks suppressed [ 417.932271][T11180] Quota error (device loop3): write_blk: dquota write failed [ 417.945991][T11180] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 417.956268][T11180] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.1942: Failed to acquire dquot type 1 [ 417.974247][T11180] EXT4-fs (loop3): 1 truncate cleaned up [ 417.981752][T11180] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 417.994598][T11180] ext4 filesystem being mounted at /464/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 418.044622][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 418.055460][ T746] Quota error (device loop3): do_check_range: Getting block 0 out of range 1-5 [ 418.066328][ T746] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u4:5: Failed to release dquot type 1 [ 419.877638][ T27] audit: type=1326 audit(1765670020.629:4021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11202 comm="syz.0.1950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 419.923713][ T27] audit: type=1326 audit(1765670020.649:4022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11202 comm="syz.0.1950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 419.949971][ T27] audit: type=1326 audit(1765670020.659:4023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11202 comm="syz.0.1950" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 419.985896][ T27] audit: type=1326 audit(1765670020.659:4024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11202 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 420.008923][ T27] audit: type=1326 audit(1765670020.659:4025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11202 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 420.033658][ T27] audit: type=1326 audit(1765670020.659:4026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11202 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 420.080054][ T27] audit: type=1326 audit(1765670020.659:4027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11202 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 421.143108][T11231] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1960'. [ 421.152943][T11231] netlink: 324 bytes leftover after parsing attributes in process `syz.2.1960'. [ 422.598387][T11252] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1969'. [ 422.608861][T11252] netlink: 324 bytes leftover after parsing attributes in process `syz.1.1969'. [ 423.223111][ T27] kauditd_printk_skb: 32 callbacks suppressed [ 423.223153][ T27] audit: type=1326 audit(1765670023.897:4060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11259 comm="syz.1.1971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 423.670225][ T27] audit: type=1326 audit(1765670023.897:4061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11259 comm="syz.1.1971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 423.704087][ T27] audit: type=1326 audit(1765670023.897:4062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11259 comm="syz.1.1971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 423.820061][ T27] audit: type=1326 audit(1765670023.907:4063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11259 comm="syz.1.1971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 423.902342][ T27] audit: type=1326 audit(1765670023.907:4064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11259 comm="syz.1.1971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 425.253782][ T27] audit: type=1326 audit(1765670025.996:4065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.1.1975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 425.445899][ T27] audit: type=1326 audit(1765670026.026:4066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.1.1975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 425.469097][ T27] audit: type=1326 audit(1765670026.036:4067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.1.1975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 425.491780][ T27] audit: type=1326 audit(1765670026.036:4068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.1.1975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 425.514432][ T27] audit: type=1326 audit(1765670026.036:4069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11270 comm="syz.1.1975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 425.645851][T11284] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1978'. [ 425.664968][T11284] netlink: 324 bytes leftover after parsing attributes in process `syz.2.1978'. [ 427.356841][T11316] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1989'. [ 427.376108][T11316] netlink: 324 bytes leftover after parsing attributes in process `syz.3.1989'. [ 430.006971][ T27] kauditd_printk_skb: 79 callbacks suppressed [ 430.006990][ T27] audit: type=1326 audit(1765670029.794:4149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11339 comm="syz.2.1998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 430.063508][ T27] audit: type=1326 audit(1765670029.794:4150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11339 comm="syz.2.1998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 430.087465][ T27] audit: type=1326 audit(1765670029.794:4151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11339 comm="syz.2.1998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 430.111810][ T27] audit: type=1326 audit(1765670029.794:4152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11339 comm="syz.2.1998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 430.135147][ T27] audit: type=1326 audit(1765670029.804:4153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11339 comm="syz.2.1998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 430.171527][T11347] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2000'. [ 430.180653][T11347] netlink: 324 bytes leftover after parsing attributes in process `syz.3.2000'. [ 430.238859][T11349] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2001'. [ 430.549836][T11366] SET target dimension over the limit! [ 431.534961][T11373] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2011'. [ 431.569234][T11373] netlink: 324 bytes leftover after parsing attributes in process `syz.3.2011'. [ 431.915264][T11390] xt_hashlimit: max too large, truncated to 1048576 [ 431.938149][T11390] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 433.102504][T11403] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2021'. [ 433.144964][T11403] netlink: 324 bytes leftover after parsing attributes in process `syz.1.2021'. [ 433.946153][T11431] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2032'. [ 433.955280][T11431] netlink: 324 bytes leftover after parsing attributes in process `syz.3.2032'. [ 435.000872][T11448] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 435.177414][T11455] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2042'. [ 435.209048][T11455] netlink: 324 bytes leftover after parsing attributes in process `syz.1.2042'. [ 435.305352][T11461] syz.1.2045[11461] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 435.305494][T11461] syz.1.2045[11461] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 436.499561][T11481] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2053'. [ 437.957044][T11497] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2059'. [ 440.242905][ T1114] nci: nci_rsp_packet: unknown rsp opcode 0x3f [ 441.103687][ T1281] ieee802154 phy0 wpan0: encryption failed: -22 [ 441.110110][ T1281] ieee802154 phy1 wpan1: encryption failed: -22 [ 442.922873][ T27] audit: type=1326 audit(1765670556.661:4154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11579 comm="syz.2.2088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 442.972891][ T27] audit: type=1326 audit(1765670556.661:4155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11579 comm="syz.2.2088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 443.020785][ T27] audit: type=1326 audit(1765670556.661:4156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11579 comm="syz.2.2088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 443.082278][T11584] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2090'. [ 443.083852][ T27] audit: type=1326 audit(1765670556.661:4157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11579 comm="syz.2.2088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 443.163001][ T27] audit: type=1326 audit(1765670556.661:4158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11579 comm="syz.2.2088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 443.196232][T11584] team1: entered promiscuous mode [ 443.209509][T11584] team1: entered allmulticast mode [ 443.215533][T11584] 8021q: adding VLAN 0 to HW filter on device team1 [ 443.247131][T11589] loop3: detected capacity change from 0 to 1024 [ 443.301395][T11589] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 443.336951][T11589] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2872: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 443.360614][T11595] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2093'. [ 443.380415][T11589] EXT4-fs error (device loop3): ext4_validate_block_bitmap:430: comm syz.3.2092: bg 0: block 260: invalid block bitmap [ 443.393756][T11595] netlink: 324 bytes leftover after parsing attributes in process `syz.1.2093'. [ 443.425261][T11589] EXT4-fs error (device loop3): ext4_free_inode:356: comm syz.3.2092: bit already cleared for inode 15 [ 443.490911][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 443.966169][ T27] audit: type=1326 audit(1765670557.611:4159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11613 comm="syz.1.2102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 443.997426][ T27] audit: type=1326 audit(1765670557.611:4160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11613 comm="syz.1.2102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 444.021135][ T27] audit: type=1326 audit(1765670557.611:4161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11613 comm="syz.1.2102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 444.064975][ T27] audit: type=1326 audit(1765670557.641:4162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11615 comm="syz.1.2102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fec859c2005 code=0x7ffc0000 [ 444.496217][ T27] audit: type=1326 audit(1765670557.641:4163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11613 comm="syz.1.2102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec8598f749 code=0x7ffc0000 [ 444.819797][T11623] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2105'. [ 444.860805][T11623] netlink: 324 bytes leftover after parsing attributes in process `syz.2.2105'. [ 445.429475][T11649] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2117'. [ 445.456578][T11649] netlink: 324 bytes leftover after parsing attributes in process `syz.2.2117'. [ 446.629358][T11672] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2127'. [ 446.648927][T11672] netlink: 312 bytes leftover after parsing attributes in process `syz.0.2127'. [ 446.666175][T11675] netlink: 'syz.3.2128': attribute type 13 has an invalid length. [ 446.924903][T11684] loop3: detected capacity change from 0 to 256 [ 446.936155][T11683] syz.0.2131[11683] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 446.936332][T11683] syz.0.2131[11683] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 446.967461][T11684] FAT-fs (loop3): Directory bread(block 64) failed [ 447.006079][T11684] FAT-fs (loop3): Directory bread(block 65) failed [ 447.023206][T11684] FAT-fs (loop3): Directory bread(block 66) failed [ 447.037743][T11684] FAT-fs (loop3): Directory bread(block 67) failed [ 447.050131][T11684] FAT-fs (loop3): Directory bread(block 68) failed [ 447.057092][T11684] FAT-fs (loop3): Directory bread(block 69) failed [ 447.064167][T11684] FAT-fs (loop3): Directory bread(block 70) failed [ 447.072987][T11684] FAT-fs (loop3): Directory bread(block 71) failed [ 447.082469][T11684] FAT-fs (loop3): Directory bread(block 72) failed [ 447.089424][T11684] FAT-fs (loop3): Directory bread(block 73) failed [ 447.830092][T11693] loop3: detected capacity change from 0 to 128 [ 447.876838][T11693] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 447.930426][T11693] ext4 filesystem being mounted at /511/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 448.080599][ T5784] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 448.247075][T11710] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2140'. [ 448.286974][T11710] netlink: 312 bytes leftover after parsing attributes in process `syz.3.2140'. [ 448.559449][T11717] loop3: detected capacity change from 0 to 4096 [ 448.597383][T11717] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 448.695995][ T27] kauditd_printk_skb: 46 callbacks suppressed [ 448.696017][ T27] audit: type=1800 audit(1765670562.369:4210): pid=11717 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2145" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 449.906061][T11742] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2153'. [ 449.961719][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 450.102781][T11751] netlink: 44 bytes leftover after parsing attributes in process `syz.3.2155'. [ 450.112141][T11751] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2155'. [ 450.160233][T11751] netlink: 'syz.3.2155': attribute type 12 has an invalid length. [ 450.486235][T11761] loop3: detected capacity change from 0 to 2048 [ 450.518853][T11761] loop3: p1 < > p4 [ 450.525086][T11761] loop3: p4 size 8388608 extends beyond EOD, truncated [ 451.633076][T11775] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 452.149981][ T27] audit: type=1326 audit(1765670565.887:4211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 452.196171][ T27] audit: type=1326 audit(1765670565.887:4212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 452.219571][ T27] audit: type=1326 audit(1765670565.907:4213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 452.258129][ T27] audit: type=1326 audit(1765670565.907:4214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 452.320595][ T27] audit: type=1326 audit(1765670565.907:4215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 452.396846][ T27] audit: type=1326 audit(1765670565.907:4216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 452.478559][ T27] audit: type=1326 audit(1765670565.907:4217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 452.560133][ T27] audit: type=1326 audit(1765670565.907:4218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 452.633737][ T27] audit: type=1326 audit(1765670565.907:4219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11789 comm="syz.0.2171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 453.461698][T11813] 9pnet_fd: Insufficient options for proto=fd [ 453.808770][ T27] kauditd_printk_skb: 17 callbacks suppressed [ 453.808785][ T27] audit: type=1326 audit(1765670567.546:4237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11816 comm="syz.2.2181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 453.900283][ T27] audit: type=1326 audit(1765670567.586:4238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11816 comm="syz.2.2181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 453.982100][ T27] audit: type=1326 audit(1765670567.586:4239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11816 comm="syz.2.2181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 454.045460][ T27] audit: type=1326 audit(1765670567.586:4240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11816 comm="syz.2.2181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 454.130064][ T27] audit: type=1326 audit(1765670567.586:4241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11816 comm="syz.2.2181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 454.153070][ T27] audit: type=1326 audit(1765670567.596:4242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11816 comm="syz.2.2181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 454.175744][ T27] audit: type=1326 audit(1765670567.596:4243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11816 comm="syz.2.2181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 454.206969][ T27] audit: type=1326 audit(1765670567.596:4244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11816 comm="syz.2.2181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 454.249815][ T27] audit: type=1326 audit(1765670567.596:4245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11816 comm="syz.2.2181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 454.313620][ T27] audit: type=1326 audit(1765670567.596:4246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11816 comm="syz.2.2181" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 455.182276][T11842] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2191'. [ 458.254994][T11893] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2213'. [ 458.377682][T11898] syz.0.2215[11898] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 458.377820][T11898] syz.0.2215[11898] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 458.395955][T11898] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 458.730390][T11911] lo speed is unknown, defaulting to 1000 [ 458.739368][T11911] lo speed is unknown, defaulting to 1000 [ 460.248469][ T27] kauditd_printk_skb: 85 callbacks suppressed [ 460.248486][ T27] audit: type=1326 audit(1765670573.983:4332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11933 comm="syz.2.2230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 460.301825][ T27] audit: type=1326 audit(1765670573.983:4333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11933 comm="syz.2.2230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 460.360245][ T27] audit: type=1326 audit(1765670574.023:4334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11933 comm="syz.2.2230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 460.441642][ T27] audit: type=1326 audit(1765670574.023:4335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11933 comm="syz.2.2230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 460.483005][ T27] audit: type=1326 audit(1765670574.023:4336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11933 comm="syz.2.2230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 460.516101][ T27] audit: type=1326 audit(1765670574.023:4337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11933 comm="syz.2.2230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 460.568066][ T27] audit: type=1326 audit(1765670574.023:4338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11933 comm="syz.2.2230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 460.592768][ T27] audit: type=1326 audit(1765670574.023:4339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11933 comm="syz.2.2230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 460.623109][ T27] audit: type=1326 audit(1765670574.023:4340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11933 comm="syz.2.2230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 460.647529][ T27] audit: type=1326 audit(1765670574.023:4341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11933 comm="syz.2.2230" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 464.103034][T12001] lo speed is unknown, defaulting to 1000 [ 464.175958][T12001] lo speed is unknown, defaulting to 1000 [ 465.910601][ T5792] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 466.006385][ T5792] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 466.015640][ T5792] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 466.035572][ T5792] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 466.043665][ T5792] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 466.052369][ T5792] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 466.268267][T12023] lo speed is unknown, defaulting to 1000 [ 466.287711][T12023] lo speed is unknown, defaulting to 1000 [ 467.081380][ T27] kauditd_printk_skb: 78 callbacks suppressed [ 467.081418][ T27] audit: type=1326 audit(1765670580.799:4420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12030 comm="syz.2.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 467.360520][ T27] audit: type=1326 audit(1765670580.809:4421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12030 comm="syz.2.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 467.395129][ T27] audit: type=1326 audit(1765670580.809:4422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12030 comm="syz.2.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 467.431827][T12040] sg_write: process 1363 (syz.3.2271) changed security contexts after opening file descriptor, this is not allowed. [ 467.485129][ T27] audit: type=1326 audit(1765670580.809:4423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12030 comm="syz.2.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 467.525247][ T27] audit: type=1326 audit(1765670580.809:4424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12030 comm="syz.2.2269" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 467.792752][T12023] chnl_net:caif_netlink_parms(): no params data found [ 468.156607][ T51] Bluetooth: hci4: command tx timeout [ 468.866241][T12023] bridge0: port 1(bridge_slave_0) entered blocking state [ 468.883839][T12023] bridge0: port 1(bridge_slave_0) entered disabled state [ 468.901453][T12023] bridge_slave_0: entered allmulticast mode [ 468.913991][T12023] bridge_slave_0: entered promiscuous mode [ 468.947946][T12023] bridge0: port 2(bridge_slave_1) entered blocking state [ 468.975931][T12023] bridge0: port 2(bridge_slave_1) entered disabled state [ 468.989129][T12023] bridge_slave_1: entered allmulticast mode [ 469.021281][T12023] bridge_slave_1: entered promiscuous mode [ 469.779342][T12023] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 469.814929][T12023] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 469.994295][T12023] team0: Port device team_slave_0 added [ 470.025063][T12023] team0: Port device team_slave_1 added [ 470.221723][T12023] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 470.236733][ T51] Bluetooth: hci4: command tx timeout [ 470.251963][T12023] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 470.279260][T12023] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 470.308289][T12023] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 470.315614][T12023] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 470.717500][T12023] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 471.113465][T12085] hugetlbfs: Bad value '.' for mount option 'nr_inodes' [ 471.113465][T12085] [ 471.144953][T12023] hsr_slave_0: entered promiscuous mode [ 471.157365][T12023] hsr_slave_1: entered promiscuous mode [ 471.170776][T12023] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 471.184995][T12023] Cannot create hsr debugfs directory [ 471.249419][ T27] audit: type=1326 audit(1765670584.977:4425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12086 comm="syz.2.2286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 471.307069][ T27] audit: type=1326 audit(1765670584.977:4426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12086 comm="syz.2.2286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 471.370959][ T27] audit: type=1326 audit(1765670584.977:4427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12086 comm="syz.2.2286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 471.377378][T12091] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2288'. [ 471.403610][ T27] audit: type=1326 audit(1765670584.977:4428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12086 comm="syz.2.2286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 471.412393][T12091] 1X: renamed from 60X [ 471.432398][ T27] audit: type=1326 audit(1765670585.007:4429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12086 comm="syz.2.2286" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f444338f749 code=0x7ffc0000 [ 471.463137][T12091] A link change request failed with some changes committed already. Interface 61X may have been left with an inconsistent configuration, please check. [ 472.231041][ T59] hsr_slave_0: left promiscuous mode [ 472.253975][ T59] hsr_slave_1: left promiscuous mode [ 472.262202][ T59] veth1_vlan: left allmulticast mode [ 472.317817][ T51] Bluetooth: hci4: command tx timeout [ 473.126457][ T59] team0 (unregistering): Port device macvlan1 removed [ 473.887229][ T27] kauditd_printk_skb: 14 callbacks suppressed [ 473.887267][ T27] audit: type=1326 audit(1765670587.606:4444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12115 comm="syz.0.2299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 474.206333][ T27] audit: type=1326 audit(1765670587.606:4445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12115 comm="syz.0.2299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 474.229824][ T27] audit: type=1326 audit(1765670587.606:4446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12115 comm="syz.0.2299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 474.252401][ T27] audit: type=1326 audit(1765670587.606:4447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12115 comm="syz.0.2299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 474.274967][ T27] audit: type=1326 audit(1765670587.606:4448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12115 comm="syz.0.2299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 474.389325][ T51] Bluetooth: hci4: command tx timeout [ 474.653647][ T59] team0 (unregistering): Port device team_slave_1 removed [ 474.735789][ T59] team0 (unregistering): Port device team_slave_0 removed [ 474.780027][ T59] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 474.827254][ T59] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 475.306865][ T59] bond0 (unregistering): Released all slaves [ 475.958355][T12023] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 475.971075][T12023] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 475.984678][T12023] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 475.996724][T12023] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 476.205712][T12023] 8021q: adding VLAN 0 to HW filter on device bond0 [ 476.237436][T12023] 8021q: adding VLAN 0 to HW filter on device team0 [ 476.262241][ T6095] bridge0: port 1(bridge_slave_0) entered blocking state [ 476.270632][ T6095] bridge0: port 1(bridge_slave_0) entered forwarding state [ 476.290508][ T6095] bridge0: port 2(bridge_slave_1) entered blocking state [ 476.297725][ T6095] bridge0: port 2(bridge_slave_1) entered forwarding state [ 477.579855][T12023] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 477.717790][T12023] veth0_vlan: entered promiscuous mode [ 477.759488][T12023] veth1_vlan: entered promiscuous mode [ 477.855088][T12023] veth0_macvtap: entered promiscuous mode [ 477.873068][T12023] veth1_macvtap: entered promiscuous mode [ 477.897236][T12023] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 477.916991][T12023] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 477.933998][T12023] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.944124][T12023] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.954442][T12023] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 477.964256][T12023] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.122084][ T746] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 478.150330][ T746] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 478.210108][ T1114] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 478.227914][ T27] audit: type=1326 audit(1765670591.954:4449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12169 comm="syz.0.2315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 478.228686][ T1114] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 478.258016][ T27] audit: type=1326 audit(1765670591.954:4450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12169 comm="syz.0.2315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe785791667 code=0x7ffc0000 [ 478.292126][ T27] audit: type=1326 audit(1765670591.954:4451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12169 comm="syz.0.2315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fe7857915dc code=0x7ffc0000 [ 478.324089][ T27] audit: type=1326 audit(1765670591.954:4452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12169 comm="syz.0.2315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fe785791514 code=0x7ffc0000 [ 478.347606][ T27] audit: type=1326 audit(1765670591.954:4453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12169 comm="syz.0.2315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fe785791514 code=0x7ffc0000 [ 478.669924][T12182] lo speed is unknown, defaulting to 1000 [ 478.695029][T12182] lo speed is unknown, defaulting to 1000 [ 479.647253][ T27] kauditd_printk_skb: 3 callbacks suppressed [ 479.647270][ T27] audit: type=1804 audit(1765670593.373:4457): pid=12195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2324" name="bus" dev="ramfs" ino=25626 res=1 errno=0 [ 479.709124][ T27] audit: type=1804 audit(1765670593.373:4458): pid=12195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2324" name="bus" dev="ramfs" ino=25626 res=1 errno=0 [ 479.847181][T12200] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2326'. [ 479.908009][ T27] audit: type=1326 audit(1765670593.633:4459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12203 comm="syz.0.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 479.933553][ T27] audit: type=1326 audit(1765670593.633:4460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12203 comm="syz.0.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 479.960515][ T27] audit: type=1326 audit(1765670593.633:4461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12203 comm="syz.0.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 479.989552][ T27] audit: type=1326 audit(1765670593.643:4462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12203 comm="syz.0.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 480.027657][ T27] audit: type=1326 audit(1765670593.643:4463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12203 comm="syz.0.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 480.051179][ T27] audit: type=1326 audit(1765670593.643:4464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12203 comm="syz.0.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 480.075080][ T27] audit: type=1326 audit(1765670593.653:4465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12203 comm="syz.0.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 480.102532][ T27] audit: type=1326 audit(1765670593.663:4466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12203 comm="syz.0.2328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 482.874920][T12250] batman_adv: batadv0: Adding interface: dummy0 [ 482.898391][T12250] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 483.560193][T12250] batman_adv: batadv0: Interface activated: dummy0 [ 483.605630][T12257] batadv0: mtu less than device minimum [ 483.613802][T12257] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 483.627052][T12257] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 483.639668][T12257] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 483.652263][T12257] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 483.664859][T12257] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 483.677450][T12257] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 483.689999][T12257] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 483.702652][T12257] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 483.715256][T12257] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 485.102847][T12291] syz_tun: entered allmulticast mode [ 485.124873][T12290] syz_tun: left allmulticast mode [ 486.091318][T12308] xt_CT: You must specify a L4 protocol and not use inversions on it [ 489.072493][ T27] kauditd_printk_skb: 18 callbacks suppressed [ 489.072524][ T27] audit: type=1326 audit(1765670601.819:4485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12310 comm="syz.0.2368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 489.209150][ T27] audit: type=1326 audit(1765670601.819:4486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12310 comm="syz.0.2368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 489.306149][ T27] audit: type=1326 audit(1765670601.979:4487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12310 comm="syz.0.2368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 489.418375][ T27] audit: type=1326 audit(1765670601.979:4488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12310 comm="syz.0.2368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 489.505397][ T27] audit: type=1326 audit(1765670601.979:4489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12310 comm="syz.0.2368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe78578f749 code=0x7ffc0000 [ 489.512949][T12333] loop3: detected capacity change from 0 to 512 [ 489.612932][T12333] [ 489.615349][T12333] ====================================================== [ 489.622395][T12333] WARNING: possible circular locking dependency detected [ 489.629459][T12333] syzkaller #0 Not tainted [ 489.633892][T12333] ------------------------------------------------------ [ 489.640927][T12333] syz.3.2375/12333 is trying to acquire lock: [ 489.647001][T12333] ffff888077904bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0 [ 489.657058][T12333] [ 489.657058][T12333] but task is already holding lock: [ 489.664431][T12333] ffff88802de3e608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0 [ 489.673548][T12333] [ 489.673548][T12333] which lock already depends on the new lock. [ 489.673548][T12333] [ 489.683964][T12333] [ 489.683964][T12333] the existing dependency chain (in reverse order) is: [ 489.692988][T12333] [ 489.692988][T12333] -> #1 (sb_internal){.+.+}-{0:0}: [ 489.700304][T12333] percpu_down_read+0x44/0x1a0 [ 489.705631][T12333] ext4_evict_inode+0x2b9/0xea0 [ 489.711049][T12333] evict+0x486/0x870 [ 489.715481][T12333] ext4_ext_migrate+0xcfb/0xff0 [ 489.720862][T12333] ext4_ioctl+0x1c4b/0x3820 [ 489.725896][T12333] __se_sys_ioctl+0xfd/0x170 [ 489.731019][T12333] do_syscall_64+0x55/0xb0 [ 489.735972][T12333] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 489.742402][T12333] [ 489.742402][T12333] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 489.750849][T12333] __lock_acquire+0x2ddb/0x7c80 [ 489.756231][T12333] lock_acquire+0x197/0x410 [ 489.761276][T12333] percpu_down_read+0x44/0x1a0 [ 489.766616][T12333] ext4_writepages+0x170/0x2f0 [ 489.771918][T12333] do_writepages+0x3a2/0x600 [ 489.777035][T12333] __writeback_single_inode+0x153/0xee0 [ 489.783112][T12333] writeback_single_inode+0x211/0x720 [ 489.789027][T12333] write_inode_now+0x161/0x1e0 [ 489.794332][T12333] iput+0x5b2/0x920 [ 489.798680][T12333] ext4_xattr_block_set+0x273a/0x32a0 [ 489.804590][T12333] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 489.811043][T12333] __ext4_expand_extra_isize+0x306/0x400 [ 489.817219][T12333] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 489.823209][T12333] ext4_evict_inode+0x7ed/0xea0 [ 489.828600][T12333] evict+0x486/0x870 [ 489.833022][T12333] ext4_orphan_cleanup+0xbd4/0x1400 [ 489.838753][T12333] ext4_fill_super+0x5de4/0x66c0 [ 489.844223][T12333] get_tree_bdev+0x3e4/0x510 [ 489.849342][T12333] vfs_get_tree+0x8c/0x280 [ 489.854280][T12333] do_new_mount+0x24b/0xa40 [ 489.859329][T12333] __se_sys_mount+0x2da/0x3c0 [ 489.864570][T12333] do_syscall_64+0x55/0xb0 [ 489.869535][T12333] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 489.875977][T12333] [ 489.875977][T12333] other info that might help us debug this: [ 489.875977][T12333] [ 489.886221][T12333] Possible unsafe locking scenario: [ 489.886221][T12333] [ 489.893705][T12333] CPU0 CPU1 [ 489.899077][T12333] ---- ---- [ 489.904445][T12333] rlock(sb_internal); [ 489.908613][T12333] lock(&sbi->s_writepages_rwsem); [ 489.916435][T12333] lock(sb_internal); [ 489.923045][T12333] rlock(&sbi->s_writepages_rwsem); [ 489.928344][T12333] [ 489.928344][T12333] *** DEADLOCK *** [ 489.928344][T12333] [ 489.936586][T12333] 3 locks held by syz.3.2375/12333: [ 489.941787][T12333] #0: ffff88802de3e0e0 (&type->s_umount_key#32){++++}-{3:3}, at: get_tree_bdev+0x344/0x510 [ 489.951915][T12333] #1: ffff88802de3e608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0 [ 489.961362][T12333] #2: ffff888077fb5ac8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 489.971673][T12333] [ 489.971673][T12333] stack backtrace: [ 489.977579][T12333] CPU: 0 PID: 12333 Comm: syz.3.2375 Not tainted syzkaller #0 [ 489.985057][T12333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 489.995141][T12333] Call Trace: [ 489.998448][T12333] [ 490.001417][T12333] dump_stack_lvl+0x16c/0x230 [ 490.006118][T12333] ? load_image+0x3b0/0x3b0 [ 490.010632][T12333] ? show_regs_print_info+0x20/0x20 [ 490.015893][T12333] ? print_circular_bug+0x12b/0x1a0 [ 490.021105][T12333] check_noncircular+0x2bd/0x3c0 [ 490.026061][T12333] ? print_deadlock_bug+0x5d0/0x5d0 [ 490.031269][T12333] ? _find_first_zero_bit+0xd3/0x100 [ 490.036581][T12333] ? add_lock_to_list+0x191/0x280 [ 490.041615][T12333] __lock_acquire+0x2ddb/0x7c80 [ 490.046586][T12333] ? mark_lock+0x94/0x320 [ 490.050925][T12333] ? verify_lock_unused+0x140/0x140 [ 490.056126][T12333] ? __lock_acquire+0x1334/0x7c80 [ 490.061171][T12333] lock_acquire+0x197/0x410 [ 490.065682][T12333] ? ext4_writepages+0x170/0x2f0 [ 490.070646][T12333] ? __might_sleep+0xe0/0xe0 [ 490.075252][T12333] ? mark_lock+0x94/0x320 [ 490.079591][T12333] ? read_lock_is_recursive+0x20/0x20 [ 490.085057][T12333] ? __lock_acquire+0x1334/0x7c80 [ 490.090184][T12333] percpu_down_read+0x44/0x1a0 [ 490.094963][T12333] ? ext4_writepages+0x170/0x2f0 [ 490.099926][T12333] ext4_writepages+0x170/0x2f0 [ 490.104710][T12333] ? ext4_read_folio+0x2f0/0x2f0 [ 490.109670][T12333] ? __rwlock_init+0x150/0x150 [ 490.114449][T12333] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 490.120359][T12333] ? do_raw_spin_unlock+0x121/0x230 [ 490.125594][T12333] ? ext4_read_folio+0x2f0/0x2f0 [ 490.130553][T12333] do_writepages+0x3a2/0x600 [ 490.135163][T12333] ? folio_clear_dirty_for_io+0xc30/0xc30 [ 490.140900][T12333] ? writeback_single_inode+0x206/0x720 [ 490.146472][T12333] ? __lock_acquire+0x7c80/0x7c80 [ 490.151505][T12333] ? do_raw_spin_lock+0x121/0x2c0 [ 490.156560][T12333] ? get_tree_bdev+0x3e4/0x510 [ 490.161347][T12333] __writeback_single_inode+0x153/0xee0 [ 490.166917][T12333] writeback_single_inode+0x211/0x720 [ 490.172364][T12333] ? write_inode_now+0x1e0/0x1e0 [ 490.177318][T12333] write_inode_now+0x161/0x1e0 [ 490.182092][T12333] ? bdi_split_work_to_wbs+0x890/0x890 [ 490.187570][T12333] ? do_raw_spin_unlock+0x121/0x230 [ 490.192784][T12333] iput+0x5b2/0x920 [ 490.196605][T12333] ext4_xattr_block_set+0x273a/0x32a0 [ 490.202018][T12333] ? __might_sleep+0xe0/0xe0 [ 490.206631][T12333] ? xattr_find_entry+0x12b/0x2f0 [ 490.211679][T12333] ? ext4_xattr_block_find+0x350/0x350 [ 490.217156][T12333] ? ext4_xattr_block_find+0x2d4/0x350 [ 490.222630][T12333] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 490.228556][T12333] __ext4_expand_extra_isize+0x306/0x400 [ 490.234223][T12333] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 490.239705][T12333] ext4_evict_inode+0x7ed/0xea0 [ 490.244563][T12333] ? _raw_spin_unlock+0x28/0x40 [ 490.249429][T12333] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 490.255339][T12333] ? do_raw_spin_unlock+0x121/0x230 [ 490.260554][T12333] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 490.266462][T12333] evict+0x486/0x870 [ 490.270369][T12333] ? __lock_acquire+0x7c80/0x7c80 [ 490.275419][T12333] ? proc_nr_inodes+0x230/0x230 [ 490.280280][T12333] ? do_raw_spin_unlock+0x121/0x230 [ 490.285498][T12333] ? _raw_spin_unlock+0x28/0x40 [ 490.290354][T12333] ? iput+0x70a/0x920 [ 490.294356][T12333] ext4_orphan_cleanup+0xbd4/0x1400 [ 490.299585][T12333] ? ext4_orphan_del+0xba0/0xba0 [ 490.304545][T12333] ? ext4_register_li_request+0x183/0x940 [ 490.310368][T12333] ? errseq_check_and_advance+0x66/0x120 [ 490.316054][T12333] ext4_fill_super+0x5de4/0x66c0 [ 490.321035][T12333] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 490.327296][T12333] ? __might_sleep+0xe0/0xe0 [ 490.331904][T12333] ? read_lock_is_recursive+0x20/0x20 [ 490.337289][T12333] ? snprintf+0xdb/0x120 [ 490.341557][T12333] ? vscnprintf+0x80/0x80 [ 490.345996][T12333] ? down_write+0x162/0x1f0 [ 490.350508][T12333] ? down_read_killable+0x340/0x340 [ 490.355744][T12333] ? setup_bdev_super+0x56b/0x660 [ 490.360799][T12333] get_tree_bdev+0x3e4/0x510 [ 490.365399][T12333] ? vfs_parse_fs_string+0x160/0x160 [ 490.370696][T12333] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 490.377122][T12333] ? setup_bdev_super+0x660/0x660 [ 490.382163][T12333] ? apparmor_capable+0x137/0x1a0 [ 490.387198][T12333] ? bpf_lsm_capable+0x9/0x10 [ 490.391910][T12333] ? security_capable+0x89/0xb0 [ 490.396778][T12333] vfs_get_tree+0x8c/0x280 [ 490.401213][T12333] do_new_mount+0x24b/0xa40 [ 490.405753][T12333] __se_sys_mount+0x2da/0x3c0 [ 490.410468][T12333] ? __x64_sys_mount+0xc0/0xc0 [ 490.415239][T12333] ? lockdep_hardirqs_on+0x98/0x150 [ 490.420478][T12333] ? __x64_sys_mount+0x20/0xc0 [ 490.425248][T12333] do_syscall_64+0x55/0xb0 [ 490.429677][T12333] ? clear_bhb_loop+0x40/0x90 [ 490.434361][T12333] ? clear_bhb_loop+0x40/0x90 [ 490.439133][T12333] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 490.445041][T12333] RIP: 0033:0x7fee63990eea [ 490.449465][T12333] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 490.469084][T12333] RSP: 002b:00007fee64864e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 490.477511][T12333] RAX: ffffffffffffffda RBX: 00007fee64864ef0 RCX: 00007fee63990eea [ 490.485484][T12333] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fee64864eb0 [ 490.493488][T12333] RBP: 0000200000000180 R08: 00007fee64864ef0 R09: 0000000000800700 [ 490.501477][T12333] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 490.509457][T12333] R13: 00007fee64864eb0 R14: 000000000000046f R15: 000000000000002c [ 490.517443][T12333] SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 490.544495][T12333] ------------[ cut here ]------------ [ 490.550069][T12333] EA inode 11 i_nlink=2 [ 490.550590][T12333] WARNING: CPU: 0 PID: 12333 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550 [ 490.565876][T12333] Modules linked in: [ 490.570431][T12333] CPU: 0 PID: 12333 Comm: syz.3.2375 Not tainted syzkaller #0 [ 490.578321][T12333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 490.588779][T12333] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 490.595427][T12333] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 e0 c6 be 8a 89 da e8 a5 39 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 4f 59 2c 08 [ 490.616096][T12333] RSP: 0018:ffffc90003a6f1c0 EFLAGS: 00010246 [ 490.623078][T12333] RAX: 872c70014282ec00 RBX: 0000000000000002 RCX: 0000000000080000 [ 490.631560][T12333] RDX: ffffc9000ca59000 RSI: 000000000007ffff RDI: 0000000000080000 [ 490.639813][T12333] RBP: ffffc90003a6f2b8 R08: ffffc90003a6edc7 R09: 1ffff9200074ddb8 [ 490.647857][T12333] R10: dffffc0000000000 R11: fffff5200074ddb9 R12: dffffc0000000000 [ 490.655853][T12333] R13: ffff888077fb54a8 R14: ffff888077fb52b0 R15: ffff888077fb5300 [ 490.664101][T12333] FS: 00007fee648656c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 490.673141][T12333] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 490.679787][T12333] CR2: 00007f110c943d58 CR3: 0000000029e42000 CR4: 00000000003506f0 [ 490.687823][T12333] Call Trace: [ 490.691131][T12333] [ 490.694094][T12333] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 490.699792][T12333] ? ext4_xattr_inode_iget+0x3df/0x600 [ 490.705288][T12333] ext4_xattr_set_entry+0xcda/0x1e90 [ 490.710753][T12333] ext4_xattr_ibody_set+0x254/0x6a0 [ 490.715997][T12333] ext4_expand_extra_isize_ea+0x113a/0x19e0 [ 490.722649][T12333] __ext4_expand_extra_isize+0x306/0x400 [ 490.728511][T12333] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 490.734021][T12333] ext4_evict_inode+0x7ed/0xea0 [ 490.738943][T12333] ? _raw_spin_unlock+0x28/0x40 [ 490.743837][T12333] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 490.749916][T12333] ? do_raw_spin_unlock+0x121/0x230 [ 490.755166][T12333] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 490.761138][T12333] evict+0x486/0x870 [ 490.765272][T12333] ? __lock_acquire+0x7c80/0x7c80 [ 490.770472][T12333] ? proc_nr_inodes+0x230/0x230 [ 490.775358][T12333] ? do_raw_spin_unlock+0x121/0x230 [ 490.780631][T12333] ? _raw_spin_unlock+0x28/0x40 [ 490.785524][T12333] ? iput+0x70a/0x920 [ 490.789588][T12333] ext4_orphan_cleanup+0xbd4/0x1400 [ 490.794845][T12333] ? ext4_orphan_del+0xba0/0xba0 [ 490.799865][T12333] ? ext4_register_li_request+0x183/0x940 [ 490.805623][T12333] ? errseq_check_and_advance+0x66/0x120 [ 490.811354][T12333] ext4_fill_super+0x5de4/0x66c0 [ 490.816352][T12333] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 490.823443][T12333] ? __might_sleep+0xe0/0xe0 [ 490.828228][T12333] ? read_lock_is_recursive+0x20/0x20 [ 490.833648][T12333] ? snprintf+0xdb/0x120 [ 490.837982][T12333] ? vscnprintf+0x80/0x80 [ 490.842399][T12333] ? down_write+0x162/0x1f0 [ 490.846979][T12333] ? down_read_killable+0x340/0x340 [ 490.852217][T12333] ? setup_bdev_super+0x56b/0x660 [ 490.857323][T12333] get_tree_bdev+0x3e4/0x510 [ 490.861968][T12333] ? vfs_parse_fs_string+0x160/0x160 [ 490.867887][T12333] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 490.874174][T12333] ? setup_bdev_super+0x660/0x660 [ 490.879354][T12333] ? apparmor_capable+0x137/0x1a0 [ 490.884450][T12333] ? bpf_lsm_capable+0x9/0x10 [ 490.889236][T12333] ? security_capable+0x89/0xb0 [ 490.894141][T12333] vfs_get_tree+0x8c/0x280 [ 490.898634][T12333] do_new_mount+0x24b/0xa40 [ 490.903189][T12333] __se_sys_mount+0x2da/0x3c0 [ 490.907952][T12333] ? __x64_sys_mount+0xc0/0xc0 [ 490.912751][T12333] ? lockdep_hardirqs_on+0x98/0x150 [ 490.918014][T12333] ? __x64_sys_mount+0x20/0xc0 [ 490.923435][T12333] do_syscall_64+0x55/0xb0 [ 490.927993][T12333] ? clear_bhb_loop+0x40/0x90 [ 490.932713][T12333] ? clear_bhb_loop+0x40/0x90 [ 490.937482][T12333] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 490.943412][T12333] RIP: 0033:0x7fee63990eea [ 490.947891][T12333] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 490.967641][T12333] RSP: 002b:00007fee64864e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 490.976362][T12333] RAX: ffffffffffffffda RBX: 00007fee64864ef0 RCX: 00007fee63990eea [ 490.984463][T12333] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fee64864eb0 [ 490.992513][T12333] RBP: 0000200000000180 R08: 00007fee64864ef0 R09: 0000000000800700 [ 491.000618][T12333] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 491.008665][T12333] R13: 00007fee64864eb0 R14: 000000000000046f R15: 000000000000002c [ 491.017142][T12333] [ 491.020203][T12333] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 491.027511][T12333] CPU: 0 PID: 12333 Comm: syz.3.2375 Not tainted syzkaller #0 [ 491.035020][T12333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 491.045125][T12333] Call Trace: [ 491.048414][T12333] [ 491.051354][T12333] dump_stack_lvl+0x16c/0x230 [ 491.056057][T12333] ? show_regs_print_info+0x20/0x20 [ 491.061303][T12333] ? load_image+0x3b0/0x3b0 [ 491.065824][T12333] panic+0x2c0/0x710 [ 491.069761][T12333] ? bpf_jit_dump+0xd0/0xd0 [ 491.074296][T12333] __warn+0x2e0/0x470 [ 491.078305][T12333] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 491.084301][T12333] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 491.090297][T12333] report_bug+0x2be/0x4f0 [ 491.094641][T12333] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 491.100735][T12333] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 491.106727][T12333] ? ext4_xattr_inode_update_ref+0x4fd/0x550 [ 491.112814][T12333] handle_bug+0xcf/0x120 [ 491.117090][T12333] exc_invalid_op+0x1a/0x50 [ 491.121616][T12333] asm_exc_invalid_op+0x1a/0x20 [ 491.126480][T12333] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 491.133085][T12333] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 e0 c6 be 8a 89 da e8 a5 39 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 4f 59 2c 08 [ 491.152701][T12333] RSP: 0018:ffffc90003a6f1c0 EFLAGS: 00010246 [ 491.158783][T12333] RAX: 872c70014282ec00 RBX: 0000000000000002 RCX: 0000000000080000 [ 491.166764][T12333] RDX: ffffc9000ca59000 RSI: 000000000007ffff RDI: 0000000000080000 [ 491.174747][T12333] RBP: ffffc90003a6f2b8 R08: ffffc90003a6edc7 R09: 1ffff9200074ddb8 [ 491.182727][T12333] R10: dffffc0000000000 R11: fffff5200074ddb9 R12: dffffc0000000000 [ 491.190711][T12333] R13: ffff888077fb54a8 R14: ffff888077fb52b0 R15: ffff888077fb5300 [ 491.198708][T12333] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 491.204365][T12333] ? ext4_xattr_inode_iget+0x3df/0x600 [ 491.209850][T12333] ext4_xattr_set_entry+0xcda/0x1e90 [ 491.215164][T12333] ext4_xattr_ibody_set+0x254/0x6a0 [ 491.220384][T12333] ext4_expand_extra_isize_ea+0x113a/0x19e0 [ 491.226311][T12333] __ext4_expand_extra_isize+0x306/0x400 [ 491.231966][T12333] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 491.237445][T12333] ext4_evict_inode+0x7ed/0xea0 [ 491.242308][T12333] ? _raw_spin_unlock+0x28/0x40 [ 491.247178][T12333] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 491.253090][T12333] ? do_raw_spin_unlock+0x121/0x230 [ 491.258317][T12333] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 491.264223][T12333] evict+0x486/0x870 [ 491.268150][T12333] ? __lock_acquire+0x7c80/0x7c80 [ 491.273188][T12333] ? proc_nr_inodes+0x230/0x230 [ 491.278048][T12333] ? do_raw_spin_unlock+0x121/0x230 [ 491.283283][T12333] ? _raw_spin_unlock+0x28/0x40 [ 491.288151][T12333] ? iput+0x70a/0x920 [ 491.292136][T12333] ext4_orphan_cleanup+0xbd4/0x1400 [ 491.297374][T12333] ? ext4_orphan_del+0xba0/0xba0 [ 491.302325][T12333] ? ext4_register_li_request+0x183/0x940 [ 491.308151][T12333] ? errseq_check_and_advance+0x66/0x120 [ 491.313794][T12333] ext4_fill_super+0x5de4/0x66c0 [ 491.318766][T12333] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 491.325036][T12333] ? __might_sleep+0xe0/0xe0 [ 491.329656][T12333] ? read_lock_is_recursive+0x20/0x20 [ 491.335042][T12333] ? snprintf+0xdb/0x120 [ 491.339299][T12333] ? vscnprintf+0x80/0x80 [ 491.343653][T12333] ? down_write+0x162/0x1f0 [ 491.348167][T12333] ? down_read_killable+0x340/0x340 [ 491.353385][T12333] ? setup_bdev_super+0x56b/0x660 [ 491.358433][T12333] get_tree_bdev+0x3e4/0x510 [ 491.363034][T12333] ? vfs_parse_fs_string+0x160/0x160 [ 491.368336][T12333] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 491.374617][T12333] ? setup_bdev_super+0x660/0x660 [ 491.379652][T12333] ? apparmor_capable+0x137/0x1a0 [ 491.385310][T12333] ? bpf_lsm_capable+0x9/0x10 [ 491.390010][T12333] ? security_capable+0x89/0xb0 [ 491.394887][T12333] vfs_get_tree+0x8c/0x280 [ 491.399333][T12333] do_new_mount+0x24b/0xa40 [ 491.403848][T12333] __se_sys_mount+0x2da/0x3c0 [ 491.408538][T12333] ? __x64_sys_mount+0xc0/0xc0 [ 491.413320][T12333] ? lockdep_hardirqs_on+0x98/0x150 [ 491.418532][T12333] ? __x64_sys_mount+0x20/0xc0 [ 491.423304][T12333] do_syscall_64+0x55/0xb0 [ 491.427752][T12333] ? clear_bhb_loop+0x40/0x90 [ 491.432438][T12333] ? clear_bhb_loop+0x40/0x90 [ 491.437132][T12333] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 491.443054][T12333] RIP: 0033:0x7fee63990eea [ 491.447503][T12333] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 491.467119][T12333] RSP: 002b:00007fee64864e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 491.475545][T12333] RAX: ffffffffffffffda RBX: 00007fee64864ef0 RCX: 00007fee63990eea [ 491.483533][T12333] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fee64864eb0 [ 491.491513][T12333] RBP: 0000200000000180 R08: 00007fee64864ef0 R09: 0000000000800700 [ 491.499485][T12333] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 491.507487][T12333] R13: 00007fee64864eb0 R14: 000000000000046f R15: 000000000000002c [ 491.515484][T12333] [ 491.518847][T12333] Kernel Offset: disabled [ 491.523176][T12333] Rebooting in 86400 seconds..