last executing test programs: 8m26.218386436s ago: executing program 3 (id=25): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge0\x00', 0x0}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r1, 0x2}, 0x94) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000006c0f00000a"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB], 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r3}, 0x9) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x60040, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x80040c, &(0x7f00000004c0), 0x1, 0x5e8, &(0x7f0000001200)="$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") bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x4040, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x8) r5 = getpid() sched_setscheduler(r5, 0x2, &(0x7f0000001700)=0x4) connect$unix(0xffffffffffffffff, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000400)={[{@sysvgroups}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000}}]}, 0xff, 0x23f, &(0x7f0000000540)="$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") openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1202, 0x0) write(r6, &(0x7f0000004200)='t', 0x1) sendfile(r6, r4, 0x0, 0x3ffff) sendfile(r6, r4, 0x0, 0x7ffff000) r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x8100) ioctl$SCSI_IOCTL_SEND_COMMAND(r7, 0x1, &(0x7f0000000240)={0x0, 0x2, 0x8}) syz_emit_ethernet(0x45, &(0x7f00000000c0)={@local, @random="7f0a00034011", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x37, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010102, @local}, @time_exceeded={0xb, 0x2, 0x0, 0x12, 0x0, 0x2802, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2f, 0x0, @loopback, @private}, '\x00\x00eX\x00\x00\x00'}}}}}, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) r8 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000200)={'veth1_to_batadv\x00'}) 8m25.183329569s ago: executing program 3 (id=30): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r1, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x300, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x640100fe, @local}, {{0x3, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xfffe}}}}}}, 0x0) 8m24.789954571s ago: executing program 3 (id=33): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', 0x0}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4400000010000104fcffffff8000000000000000", @ANYRES32=0x0, @ANYBLOB="0315000000000000140012800b0001006d616373656300000400028008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r1], 0x44}, 0x1, 0x0, 0x0, 0x2004d808}, 0x0) 8m24.172715411s ago: executing program 3 (id=35): socket(0x10, 0x2, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8) getpid() sched_setaffinity(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000) getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000006900000000000001000000940000000fad413e850000000700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) socket$inet6_sctp(0xa, 0x1, 0x84) syz_open_dev$sg(0x0, 0x0, 0x48802) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) syz_clone(0x40000080, 0x0, 0x0, 0x0, 0x0, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) move_mount(0xffffffffffffffff, &(0x7f0000003900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffffff, 0x0, 0x44) connect$inet6(0xffffffffffffffff, &(0x7f0000000340)={0xa, 0x3, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000000c0), 0x4) gettid() write$binfmt_script(0xffffffffffffffff, &(0x7f0000000500)={'#! ', './file0'}, 0xb) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) 8m21.367929847s ago: executing program 3 (id=50): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) 8m18.049417555s ago: executing program 3 (id=56): write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000400)) dup(0xffffffffffffffff) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4) 8m2.843457811s ago: executing program 32 (id=56): write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000400)) dup(0xffffffffffffffff) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4) 5.072873661s ago: executing program 0 (id=3192): r0 = socket$kcm(0x11, 0xa, 0x300) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000003a00)={&(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x9}}, 0x10, 0x0}, 0x0) recvmsg(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000b80)=""/4096, 0x1000}], 0x1}, 0x0) 4.927894713s ago: executing program 0 (id=3195): bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x200f000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 4.783190394s ago: executing program 0 (id=3198): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) fsmount(0xffffffffffffffff, 0x1, 0x71) 2.414211825s ago: executing program 4 (id=3223): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000002b000b0000000000000000000800001008000300040001000c0001800600000088480000"], 0x28}}, 0x8000) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) r3 = socket(0x10, 0x803, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440) r5 = accept4(r4, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x7bff, &(0x7f0000000180)={&(0x7f0000000140)=@delqdisc={0xfffffffffffffc9b}, 0x49d32d254ae22f79}}, 0x0) getsockopt$sock_buf(r5, 0x1, 0x1a, 0x0, &(0x7f0000000340)) recvmmsg$unix(r5, &(0x7f0000012b80)=[{{&(0x7f00000005c0)=@abs, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000640)=""/20, 0x14}, {&(0x7f000000d280)=""/4096, 0x1000}, {&(0x7f000000e280)=""/4096, 0x1000}, {&(0x7f0000000680)=""/141, 0x8d}], 0x4, &(0x7f0000000780)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000000800), 0x6e, &(0x7f000000f480)=[{&(0x7f000000f280)=""/178, 0xb2}, {&(0x7f000000f340)=""/162, 0xa2}, {&(0x7f000000f400)=""/72, 0x48}], 0x3, &(0x7f000000f4c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f000000f540), 0x6e, &(0x7f0000012a00)=[{&(0x7f000000f5c0)=""/186, 0xba}, {&(0x7f000000f680)=""/238, 0xee}, {&(0x7f000000f780)=""/4096, 0x1000}, {&(0x7f0000010780)=""/121, 0x79}, {&(0x7f0000010800)}, {&(0x7f0000010840)=""/4096, 0x1000}, {&(0x7f0000011840)=""/194, 0xc2}, {&(0x7f0000011940)=""/4096, 0x1000}, {&(0x7f0000012940)=""/176, 0xb0}], 0x9, &(0x7f0000012ac0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x98}}], 0x3, 0x60, &(0x7f0000012c40)={0x0, 0x989680}) sendmsg$IPVS_CMD_SET_INFO(r3, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r7, @ANYBLOB="01000000000000001c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="3c0000001000030400"/20, @ANYRES32=r2, @ANYBLOB="a4280400000000001400350076657468305f746f5f626f6e6400000008000a00", @ANYRES32=r7], 0x3c}, 0x1, 0x0, 0x0, 0x4008800}, 0x8000) r9 = socket$nl_route(0x10, 0x3, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000800)={@link_local, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "ecff80", 0x18, 0x11, 0x0, @private0, @mcast2, {[], {0x0, 0x4e22, 0x18, 0x0, @wg=@data={0x3, 0x800}}}}}}}, 0x0) r10 = socket(0x1, 0x803, 0x0) getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) r12 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_netrom_SIOCDELRT(r6, 0x890c, &(0x7f00000003c0)={0x0, @default, @rose={'rose', 0x0}, 0x9, 'syz0\x00', @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0xd2, 0x7, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}) ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000100)={'veth1\x00', 0x0}) sendmsg$nl_route(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c000000100003041b00"/20, @ANYRES32=0x0, @ANYBLOB="46060900000000001c00128009000100766c616e000000000c000280060001000400000008000500", @ANYRES32=r13, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r11], 0x4c}, 0x1, 0x0, 0x0, 0x600}, 0x0) 1.445622824s ago: executing program 0 (id=3231): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x10, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180200000a00000000000000fdffffffd40a00002000000095"], &(0x7f0000000240)='GPL\x00', 0x8}, 0x94) 1.359017441s ago: executing program 4 (id=3233): socket$netlink(0x10, 0x3, 0x8000000004) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000001c0)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="3f9d00000000000000001700000008000300", @ANYRES32=r2, @ANYBLOB="60003080050002"], 0x7c}}, 0x0) 1.213717942s ago: executing program 4 (id=3235): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r1, 0x2000300, 0xe, 0xfffffd83, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.159989607s ago: executing program 1 (id=3236): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) write(r0, &(0x7f0000000140)="41000200010006", 0x7) 1.052924015s ago: executing program 4 (id=3237): bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x13, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ffffff858500000073000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) 967.017462ms ago: executing program 2 (id=3238): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x856) 935.032655ms ago: executing program 4 (id=3239): bpf$BPF_BTF_LOAD(0x12, &(0x7f00000015c0)={&(0x7f0000001480)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0xc, [@fwd={0x1}, @union={0x2, 0x1, 0x0, 0x5, 0x0, 0x0, [{0xa, 0x200001}]}]}, {0x0, [0x5f, 0x2e, 0x61, 0x30, 0x5f, 0x0, 0x0, 0x0, 0x0, 0x61]}}, &(0x7f0000001540)=""/74, 0x48, 0x4a, 0x1}, 0x28) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x10}}}, 0x24}}, 0x0) r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000500)={0x114, 0x34, 0x1, 0x0, 0x0, "", [@nested={0x101, 0x0, 0x0, 0x1, [@typed={0xc, 0x1, 0x0, 0x0, @u64}, @typed={0x14, 0x7, 0x0, 0x0, @ipv6=@rand_addr=' \x01\x00'}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe8101000000010000008b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd"]}]}, 0x114}], 0x1}, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="3800000056000100000000f70000000007020000", @ANYRES32, @ANYBLOB="200001"], 0x38}}, 0x0) r2 = socket$kcm(0x21, 0x2, 0x2) sendmsg$inet(r2, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@ip_pktinfo={{0x1c, 0x110, 0xd, {0x0, @multicast2=0x80ee3600, @multicast2}}}], 0x20}, 0x4040010) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48) r3 = socket$nl_route(0x10, 0x3, 0x0) bind$unix(0xffffffffffffffff, &(0x7f00000002c0)=@abs={0x1, 0x0, 0x4e22}, 0x6e) sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000003700)=ANY=[@ANYBLOB="4400000010003b1500"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000024001280090001007866726d000000001400028004000300040000000800020000b6"], 0x44}}, 0x0) pipe(&(0x7f0000000000)={0xffffffffffffffff}) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r4, 0x0, r5, 0x0, 0x25a5, 0x0) write$cgroup_subtree(r4, &(0x7f0000000240)={[{0x2d, 'blkio'}, {0x6, 'net_cls'}, {0x2b, 'net_prio'}, {0x6, 'pids'}, {0x2b, 'cpu'}]}, 0x56) 830.534104ms ago: executing program 1 (id=3240): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x200f000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 784.884107ms ago: executing program 2 (id=3241): r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$netlink(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000003c00)=ANY=[@ANYBLOB="e00000001000090500c63703b60000000000d00008004300ff030000a90000002b0e13e735a3184f123d6da2f1acfac0ee2dd2b184b27d08000000337c000400bf852c8986626691b01b5f44e4ce28715f2828"], 0xe0}], 0x1}, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_inet_udp_SIOCOUTQ(0xffffffffffffffff, 0x5411, &(0x7f0000000140)) r3 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$SEG6_CMD_SETHMAC(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x14, r3, 0x1}, 0x14}, 0x1, 0x0, 0x0, 0x48090}, 0x0) sendmsg$SEG6_CMD_SETHMAC(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x28, r3, 0x100, 0x70bd2c, 0x25dfdbfd, {}, [@SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x2}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x2}, @SEG6_ATTR_SECRET={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x90}, 0x4001) r4 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @local}, 0x10) syz_emit_ethernet(0x3a, &(0x7f0000000480)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x11, 0x0, @loopback, @multicast1}, {0x0, 0x4e20, 0x18, 0x0, @wg=@data={0x4, 0x1, 0x1}}}}}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newtaction={0x50, 0x30, 0x1, 0x2, 0x0, {}, [{0x3c, 0x1, [@m_mpls={0x38, 0x1, 0x0, 0x0, {{0x9}, {0xc, 0x2, 0x0, 0x1, [@TCA_MPLS_LABEL={0x8, 0x5, 0xffffffff}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x50}}, 0x0) 729.173312ms ago: executing program 1 (id=3242): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000002b000b0000000000000000000800001008000300040001000c0001800600000088480000"], 0x28}}, 0x8000) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) socket(0x10, 0x803, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440) r3 = accept4(r2, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x7bff, &(0x7f0000000180)={&(0x7f0000000140)=@delqdisc={0xfffffffffffffc9b}, 0x49d32d254ae22f79}}, 0x0) 496.31416ms ago: executing program 0 (id=3243): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="280000002b000b0000000000000000000800001008000300040001000c0001800600000088480000"], 0x28}}, 0x8000) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000680)={'wlan0\x00'}) socket(0x10, 0x803, 0x0) r2 = socket$alg(0x26, 0x5, 0x0) bind$alg(r2, &(0x7f0000000480)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305-generic\x00'}, 0x58) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440) r3 = accept4(r2, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x7bff, &(0x7f0000000180)={&(0x7f0000000140)=@delqdisc={0xfffffffffffffc9b}, 0x49d32d254ae22f79}}, 0x0) getsockopt$sock_buf(r3, 0x1, 0x1a, 0x0, &(0x7f0000000340)) recvmmsg$unix(r3, &(0x7f0000012b80)=[{{&(0x7f00000005c0)=@abs, 0x6e, &(0x7f0000000740)=[{&(0x7f0000000640)=""/20, 0x14}, {&(0x7f000000d280)=""/4096, 0x1000}, {&(0x7f000000e280)=""/4096, 0x1000}, {&(0x7f0000000680)=""/141, 0x8d}], 0x4, &(0x7f0000000780)=[@cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}}, {{&(0x7f0000000800), 0x6e, &(0x7f000000f480)=[{&(0x7f000000f280)=""/178, 0xb2}, {&(0x7f000000f340)=""/162, 0xa2}, {&(0x7f000000f400)=""/72, 0x48}], 0x3, &(0x7f000000f4c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x60}}, {{&(0x7f000000f540), 0x6e, &(0x7f0000012a00)=[{&(0x7f000000f5c0)=""/186, 0xba}, {&(0x7f000000f680)=""/238, 0xee}, {&(0x7f000000f780)=""/4096, 0x1000}, {&(0x7f0000010780)=""/121, 0x79}, {&(0x7f0000010800)}, {&(0x7f0000010840)=""/4096, 0x1000}, {&(0x7f0000011840)=""/194, 0xc2}, {&(0x7f0000011940)=""/4096, 0x1000}, {&(0x7f0000012940)=""/176, 0xb0}], 0x9, &(0x7f0000012ac0)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x98}}], 0x3, 0x60, &(0x7f0000012c40)={0x0, 0x989680}) 422.539626ms ago: executing program 2 (id=3244): r0 = socket$kcm(0x11, 0xa, 0x300) socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000003a00)={&(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x9}}, 0x10, &(0x7f0000000b40)}, 0x0) recvmsg(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000b80)=""/4096, 0x1000}], 0x1}, 0x0) 364.653821ms ago: executing program 2 (id=3245): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r1, 0x2000300, 0xe, 0xfffffd83, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 243.282891ms ago: executing program 1 (id=3246): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x1, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'veth1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c000000100003041b00"/20, @ANYRES32=0x0, @ANYBLOB="46060900000000001c00128009000100766c616e000000000c000280060001000400000008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r2], 0x4c}, 0x1, 0x0, 0x0, 0x600}, 0x0) 150.575348ms ago: executing program 2 (id=3247): bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x13, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ffffff858500000073000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) 134.432199ms ago: executing program 0 (id=3248): modify_ldt$write(0x1, &(0x7f0000000040)={0x806, 0xffffffffffffffff}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) r2 = syz_clone(0x40000, 0x0, 0x0, 0x0, 0x0, 0x0) kcmp(r0, r2, 0x1, r1, r1) bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1f, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0) 102.297302ms ago: executing program 1 (id=3249): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x856) 34.483838ms ago: executing program 2 (id=3250): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x200f000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 33.143488ms ago: executing program 1 (id=3251): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) socket$nl_route(0x10, 0x3, 0x0) socket(0x10, 0x803, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$inet(0x2, 0x3, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10) pselect6(0x40, &(0x7f0000000000)={0x400, 0xff, 0x630, 0x243, 0x2, 0x2, 0x9, 0xfb33}, 0x0, 0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={[0x5]}, 0x8}) 0s ago: executing program 4 (id=3252): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x10, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180200000a00000000000000fdffffffd40a00002000000095"], &(0x7f0000000240)='GPL\x00', 0x8}, 0x94) kernel console output (not intermixed with test programs): tered allmulticast mode [ 466.709962][T12387] bridge_slave_0: entered allmulticast mode [ 466.730373][T12387] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2279'. [ 466.866124][T12395] netlink: 277 bytes leftover after parsing attributes in process `syz.4.2282'. [ 466.903092][T12398] loop2: detected capacity change from 0 to 1024 [ 466.928250][T12398] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 467.062253][T12409] program syz.2.2285 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 468.189290][T12421] netlink: 332 bytes leftover after parsing attributes in process `syz.1.2291'. [ 468.243036][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 468.384925][T12428] loop2: detected capacity change from 0 to 512 [ 468.391903][T12430] batadv_slave_1: entered promiscuous mode [ 468.407793][T12430] batadv_slave_1: left promiscuous mode [ 468.446947][T12428] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 468.468502][T12428] ext4 filesystem being mounted at /575/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 468.521966][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 468.674404][T12443] netlink: 277 bytes leftover after parsing attributes in process `syz.2.2297'. [ 468.737376][T12445] loop1: detected capacity change from 0 to 512 [ 468.744704][T12445] EXT4-fs: Ignoring removed orlov option [ 468.754229][T12445] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 468.782471][T12445] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 468.798692][T12449] loop2: detected capacity change from 0 to 1024 [ 468.799680][T12445] EXT4-fs (loop1): 1 orphan inode deleted [ 468.813098][T12445] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 468.820972][T12449] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 468.848049][ T28] kauditd_printk_skb: 129 callbacks suppressed [ 468.848061][ T28] audit: type=1800 audit(1756624182.575:7812): pid=12449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2301" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 468.884904][ T28] audit: type=1804 audit(1756624182.615:7813): pid=12449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2301" name="/newroot/577/bus/bus" dev="loop2" ino=18 res=1 errno=0 [ 468.908798][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 468.934516][ T28] audit: type=1326 audit(1756624182.655:7814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12448 comm="syz.4.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 468.985942][ T28] audit: type=1326 audit(1756624182.665:7815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12448 comm="syz.4.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 469.008750][ T28] audit: type=1326 audit(1756624182.665:7816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12448 comm="syz.4.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 469.012348][T12455] program syz.2.2301 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 469.041263][ T28] audit: type=1326 audit(1756624182.665:7817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12448 comm="syz.4.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 469.100737][ C1] hrtimer: interrupt took 56718 ns [ 469.141531][ T28] audit: type=1326 audit(1756624182.665:7818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12448 comm="syz.4.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 469.170196][ T28] audit: type=1326 audit(1756624182.665:7819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12448 comm="syz.4.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 469.193357][ T28] audit: type=1326 audit(1756624182.665:7820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12448 comm="syz.4.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 469.363379][ T28] audit: type=1326 audit(1756624182.665:7821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12448 comm="syz.4.2302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 469.674526][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 469.759154][T12464] loop1: detected capacity change from 0 to 2048 [ 469.821796][T12464] GPT:first_usable_lbas don't match. [ 469.851101][T12464] GPT:34 != 290 [ 469.854650][T12464] GPT: Use GNU Parted to correct GPT errors. [ 469.891318][T12464] loop1: p1 p2 p3 [ 470.222023][T12474] netlink: 277 bytes leftover after parsing attributes in process `syz.2.2311'. [ 470.352096][T12477] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2312'. [ 470.485324][ T5798] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 470.502792][ T5798] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 470.512074][ T5798] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 470.521697][ T5798] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 470.529718][ T5798] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 470.537155][ T5798] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 470.809066][T12491] loop1: detected capacity change from 0 to 1024 [ 470.832705][T12491] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 470.990467][T12499] program syz.1.2315 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 471.468456][T12476] chnl_net:caif_netlink_parms(): no params data found [ 471.628245][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 471.693381][T12506] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2319'. [ 471.863811][T12476] bridge0: port 1(bridge_slave_0) entered blocking state [ 471.882849][T12476] bridge0: port 1(bridge_slave_0) entered disabled state [ 471.890985][T12514] netlink: 277 bytes leftover after parsing attributes in process `syz.1.2320'. [ 471.904734][T12476] bridge_slave_0: entered allmulticast mode [ 471.920530][T12476] bridge_slave_0: entered promiscuous mode [ 472.127207][T12476] bridge0: port 2(bridge_slave_1) entered blocking state [ 472.146034][T12476] bridge0: port 2(bridge_slave_1) entered disabled state [ 472.157532][T12525] loop4: detected capacity change from 0 to 1024 [ 472.166642][T12476] bridge_slave_1: entered allmulticast mode [ 472.178400][T12476] bridge_slave_1: entered promiscuous mode [ 472.194101][T12525] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 472.268668][T12531] loop2: detected capacity change from 0 to 128 [ 472.276157][T12531] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 472.292473][T12531] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 472.323951][T12476] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 472.342893][T12533] program syz.4.2326 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 472.385141][T12476] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 472.417840][ T2916] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 472.571054][ T5798] Bluetooth: hci0: command tx timeout [ 472.591659][T12476] team0: Port device team_slave_0 added [ 472.622984][T12476] team0: Port device team_slave_1 added [ 472.779615][ T6148] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 472.789617][T12476] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 472.797740][T12476] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 472.824403][T12476] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 472.838820][T12476] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 472.885761][T12476] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 472.912194][T12476] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 472.947258][T12539] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2329'. [ 473.025609][T12544] netlink: 277 bytes leftover after parsing attributes in process `syz.1.2331'. [ 473.063119][T12476] hsr_slave_0: entered promiscuous mode [ 473.082196][T12476] hsr_slave_1: entered promiscuous mode [ 473.358479][T12551] loop4: detected capacity change from 0 to 1024 [ 473.393590][T12551] EXT4-fs: Ignoring removed nobh option [ 473.420571][T12551] EXT4-fs: Ignoring removed bh option [ 473.458082][T12551] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 473.547311][T12551] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 473.602337][T12556] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2335'. [ 473.683473][ T6148] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 473.786496][T12558] loop1: detected capacity change from 0 to 1024 [ 473.800269][ T3468] bridge_slave_1: left allmulticast mode [ 473.819509][ T3468] bridge_slave_1: left promiscuous mode [ 473.825933][T12558] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 473.840851][ T3468] bridge0: port 2(bridge_slave_1) entered disabled state [ 473.868936][ T3468] bridge_slave_0: left promiscuous mode [ 473.882351][ T28] kauditd_printk_skb: 116 callbacks suppressed [ 473.882367][ T28] audit: type=1800 audit(1756624187.615:7938): pid=12558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2336" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 473.907150][ T3468] bridge0: port 1(bridge_slave_0) entered disabled state [ 473.929982][ T28] audit: type=1804 audit(1756624187.655:7939): pid=12558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2336" name="/newroot/595/bus/bus" dev="loop1" ino=18 res=1 errno=0 [ 473.939874][ T3468] bond9 (unregistering): Released all slaves [ 473.978353][T12558] program syz.1.2336 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 473.981272][ T3468] bond8 (unregistering): Released all slaves [ 474.017363][ T3468] bond7 (unregistering): Released all slaves [ 474.046201][ T3468] bond6 (unregistering): Released all slaves [ 474.070198][ T3468] bond5 (unregistering): Released all slaves [ 474.110575][ T3468] bond4 (unregistering): Released all slaves [ 474.139200][ T3468] bond3 (unregistering): Released all slaves [ 474.188242][ T3468] bond2 (unregistering): Released all slaves [ 474.217700][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 474.227366][ T3468] bond1 (unregistering): Released all slaves [ 474.397423][T12578] netlink: 277 bytes leftover after parsing attributes in process `syz.4.2342'. [ 474.481308][ T28] audit: type=1326 audit(1756624188.215:7940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12579 comm="syz.4.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 474.505266][ T28] audit: type=1326 audit(1756624188.215:7941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12579 comm="syz.4.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 474.529194][ T28] audit: type=1326 audit(1756624188.215:7942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12579 comm="syz.4.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 474.554979][ T28] audit: type=1326 audit(1756624188.215:7943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12579 comm="syz.4.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 474.580541][ T28] audit: type=1326 audit(1756624188.215:7944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12579 comm="syz.4.2343" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 474.629758][ T28] audit: type=1326 audit(1756624188.355:7945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12581 comm="syz.4.2344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 474.652778][ T5798] Bluetooth: hci0: command tx timeout [ 474.659335][ T28] audit: type=1326 audit(1756624188.355:7946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12581 comm="syz.4.2344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 474.684332][ T28] audit: type=1326 audit(1756624188.355:7947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12581 comm="syz.4.2344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 474.765486][T12584] syz.4.2345[12584] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 474.765629][T12584] syz.4.2345[12584] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 474.908722][T12588] loop4: detected capacity change from 0 to 1024 [ 474.976872][T12588] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 475.016748][ T3468] team0 (unregistering): Port device team_slave_1 removed [ 475.143149][T12593] program syz.4.2347 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 475.183106][ T3468] team0 (unregistering): Port device team_slave_0 removed [ 475.287896][ T3468] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 475.483338][ T3468] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 475.578644][ T6148] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 475.963751][T12601] netlink: 277 bytes leftover after parsing attributes in process `syz.4.2350'. [ 476.205650][T12605] loop2: detected capacity change from 0 to 1024 [ 476.243069][T12605] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 476.300235][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 476.301032][ T3468] bond0 (unregistering): Released all slaves [ 476.415604][T12575] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2340'. [ 476.426668][T12603] netlink: '+}[@': attribute type 4 has an invalid length. [ 476.580438][T12613] loop1: detected capacity change from 0 to 512 [ 476.625348][T12613] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 476.689617][T12613] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c098, mo2=0002] [ 476.697990][T12613] System zones: 0-2, 18-18, 34-34 [ 476.716791][T12613] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 476.739722][ T5798] Bluetooth: hci0: command tx timeout [ 476.745891][T12613] ext4 filesystem being mounted at /597/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 476.798184][T12613] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 476.840519][ T11] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 79 with max blocks 1 with error 28 [ 476.854651][ T11] EXT4-fs (loop1): This should not happen!! Data will be lost [ 476.854651][ T11] [ 476.864858][ T11] EXT4-fs (loop1): Total free blocks count 0 [ 476.872366][ T11] EXT4-fs (loop1): Free/Dirty block details [ 476.878377][ T11] EXT4-fs (loop1): free_blocks=39626 [ 476.884556][ T11] EXT4-fs (loop1): dirty_blocks=1 [ 476.890548][ T11] EXT4-fs (loop1): Block reservation details [ 476.896882][ T11] EXT4-fs (loop1): i_reserved_data_blocks=1 [ 476.908433][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 476.981570][ T3468] IPVS: stop unused estimator thread 0... [ 477.037737][T12619] loop1: detected capacity change from 0 to 1024 [ 477.060191][T12619] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 477.122337][T12476] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 477.135509][T12476] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 477.157113][T12476] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 477.179044][T12476] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 477.196867][T12622] program syz.1.2356 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 477.427203][T12476] 8021q: adding VLAN 0 to HW filter on device bond0 [ 477.512303][T12476] 8021q: adding VLAN 0 to HW filter on device team0 [ 477.554340][ T3468] bridge0: port 1(bridge_slave_0) entered blocking state [ 477.561578][ T3468] bridge0: port 1(bridge_slave_0) entered forwarding state [ 477.572625][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 477.592614][T12633] netlink: 277 bytes leftover after parsing attributes in process `syz.2.2358'. [ 477.593543][ T3468] bridge0: port 2(bridge_slave_1) entered blocking state [ 477.608896][ T3468] bridge0: port 2(bridge_slave_1) entered forwarding state [ 477.746870][T12641] loop2: detected capacity change from 0 to 512 [ 477.778214][T12641] EXT4-fs warning (device loop2): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 477.834117][T12641] EXT4-fs (loop2): mount failed [ 477.847269][T12649] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2362'. [ 478.083095][T12476] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 478.162692][T12476] veth0_vlan: entered promiscuous mode [ 478.193540][T12476] veth1_vlan: entered promiscuous mode [ 478.259021][T12476] veth0_macvtap: entered promiscuous mode [ 478.275311][T12476] veth1_macvtap: entered promiscuous mode [ 478.322876][T12476] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 478.350445][T12476] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 478.389574][T12476] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.408978][T12476] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.426380][T12476] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.438438][T12476] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 478.586346][ T3535] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 478.604117][ T3535] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 478.659035][ T3468] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 478.677063][ T3468] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 478.752809][T12665] loop4: detected capacity change from 0 to 1024 [ 478.781729][T12665] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 478.811197][ T5798] Bluetooth: hci0: command tx timeout [ 478.953523][T12671] program syz.4.2368 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 479.073775][T12674] netlink: 277 bytes leftover after parsing attributes in process `syz.0.2369'. [ 479.254314][T12678] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2371'. [ 479.414495][ T6148] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 479.639665][T12683] lo speed is unknown, defaulting to 1000 [ 479.653580][T12683] lo speed is unknown, defaulting to 1000 [ 479.659985][T12683] lo speed is unknown, defaulting to 1000 [ 479.714792][T12683] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 479.764724][T12686] netlink: 'syz.4.2374': attribute type 10 has an invalid length. [ 479.802740][T12686] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 479.826070][T12683] lo speed is unknown, defaulting to 1000 [ 479.846182][T12683] lo speed is unknown, defaulting to 1000 [ 479.866959][T12683] lo speed is unknown, defaulting to 1000 [ 479.896225][T12683] lo speed is unknown, defaulting to 1000 [ 480.263702][ T5792] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 480.275059][ T5792] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 480.283456][ T5792] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 480.298394][ T28] kauditd_printk_skb: 120 callbacks suppressed [ 480.298408][ T28] audit: type=1326 audit(1756624194.025:8067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12691 comm="syz.4.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 480.359287][ T5792] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 480.374823][ T5792] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 480.383304][ T5792] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 480.387180][ T28] audit: type=1326 audit(1756624194.065:8068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12691 comm="syz.4.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 480.455383][ T28] audit: type=1326 audit(1756624194.065:8069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12691 comm="syz.4.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 480.507851][ T28] audit: type=1326 audit(1756624194.065:8070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12691 comm="syz.4.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 480.547318][T12689] lo speed is unknown, defaulting to 1000 [ 480.593056][ T28] audit: type=1326 audit(1756624194.095:8071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12691 comm="syz.4.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 480.658994][ T28] audit: type=1326 audit(1756624194.095:8072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12691 comm="syz.4.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 480.682468][ T28] audit: type=1326 audit(1756624194.095:8073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12691 comm="syz.4.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 480.706003][ T28] audit: type=1326 audit(1756624194.095:8074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12691 comm="syz.4.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 480.733893][ T28] audit: type=1326 audit(1756624194.095:8075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12691 comm="syz.4.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 480.765780][ T28] audit: type=1326 audit(1756624194.095:8076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12691 comm="syz.4.2376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 480.827142][ T3535] netdevsim netdevsim1 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 480.840219][ T3535] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 480.929500][ T3535] netdevsim netdevsim1 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 480.944984][ T3535] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.001502][T12709] netlink: 277 bytes leftover after parsing attributes in process `syz.0.2379'. [ 481.068062][ T3535] netdevsim netdevsim1 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 481.091602][ T3535] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.169076][ T3535] netdevsim netdevsim1 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 481.179285][ T3535] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 481.234325][T12689] chnl_net:caif_netlink_parms(): no params data found [ 481.402180][T12689] bridge0: port 1(bridge_slave_0) entered blocking state [ 481.424265][T12689] bridge0: port 1(bridge_slave_0) entered disabled state [ 481.441488][T12689] bridge_slave_0: entered allmulticast mode [ 481.450517][T12689] bridge_slave_0: entered promiscuous mode [ 481.461296][T12689] bridge0: port 2(bridge_slave_1) entered blocking state [ 481.468727][T12689] bridge0: port 2(bridge_slave_1) entered disabled state [ 481.476652][T12689] bridge_slave_1: entered allmulticast mode [ 481.484857][T12689] bridge_slave_1: entered promiscuous mode [ 481.546415][T12727] loop4: detected capacity change from 0 to 1024 [ 481.567280][T12727] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 481.706342][T12689] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 481.739793][T12730] program syz.4.2382 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 481.774297][T12689] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 481.965275][T12689] team0: Port device team_slave_0 added [ 482.054382][T12689] team0: Port device team_slave_1 added [ 482.067832][ T3535] tipc: Left network mode [ 482.127731][ T6148] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 482.173665][T12689] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 482.202117][T12689] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 482.279259][T12689] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 482.417485][T12689] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 482.435121][T12689] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 482.490855][ T5792] Bluetooth: hci1: command tx timeout [ 482.491853][T12689] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 482.545398][T12733] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2383'. [ 482.606448][T12742] netlink: 277 bytes leftover after parsing attributes in process `syz.0.2387'. [ 482.688276][T12689] hsr_slave_0: entered promiscuous mode [ 482.698235][T12689] hsr_slave_1: entered promiscuous mode [ 482.706629][T12689] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 482.717896][T12689] Cannot create hsr debugfs directory [ 482.834991][T12751] netlink: 5 bytes leftover after parsing attributes in process `syz.4.2390'. [ 482.846008][T12751] 0ªî{X¹¦: renamed from gretap0 (while UP) [ 482.854444][T12751] 0ªî{X¹¦: entered allmulticast mode [ 482.860273][T12751] A link change request failed with some changes committed already. Interface 30ªî{X¹¦ may have been left with an inconsistent configuration, please check. [ 482.997113][T12753] loop4: detected capacity change from 0 to 1024 [ 483.014996][T12753] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 483.177191][T12757] program syz.4.2391 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 483.606495][ T6148] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 483.679281][T12762] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2393'. [ 483.718716][T12764] loop4: detected capacity change from 0 to 128 [ 483.739078][T12764] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a80ec018, mo2=0002] [ 483.753143][T12764] System zones: 1-3, 19-19, 35-36 [ 483.759958][T12764] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 483.775824][T12764] ext4 filesystem being mounted at /566/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 483.894515][ T6148] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 484.119100][T12689] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 484.467985][ T3535] hsr_slave_0: left promiscuous mode [ 484.537342][ T3535] hsr_slave_1: left promiscuous mode [ 484.600993][ T5792] Bluetooth: hci1: command tx timeout [ 484.772934][T12774] netlink: 277 bytes leftover after parsing attributes in process `syz.4.2397'. [ 484.809751][ T3535] veth1_macvtap: left promiscuous mode [ 484.820913][ T3535] veth0_macvtap: left promiscuous mode [ 484.826644][ T3535] veth1_vlan: left promiscuous mode [ 484.835167][ T3535] veth0_vlan: left promiscuous mode [ 485.053036][ T3535] bond8 (unregistering): Released all slaves [ 485.071744][ T3535] bond7 (unregistering): Released all slaves [ 485.094046][ T3535] bond6 (unregistering): Released all slaves [ 486.644654][ T3535] bond5 (unregistering): Released all slaves [ 487.210841][T12788] program syz.0.2402 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 487.533903][ T5792] Bluetooth: hci1: command tx timeout [ 487.573467][ T3535] bond4 (unregistering): Released all slaves [ 487.598550][ T3535] bond3 (unregistering): Released all slaves [ 487.625418][ T3535] bond2 (unregistering): Released all slaves [ 487.669739][ T3535] bond1 (unregistering): Released all slaves [ 487.975207][ T28] kauditd_printk_skb: 102 callbacks suppressed [ 487.975223][ T28] audit: type=1326 audit(1756624201.705:8179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12796 comm="syz.4.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 488.010329][ T28] audit: type=1326 audit(1756624201.735:8180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12796 comm="syz.4.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 488.038040][ T28] audit: type=1326 audit(1756624201.735:8181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12796 comm="syz.4.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 488.063324][ T28] audit: type=1326 audit(1756624201.735:8182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12796 comm="syz.4.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 488.088347][ T28] audit: type=1326 audit(1756624201.735:8183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12796 comm="syz.4.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 488.114836][ T28] audit: type=1326 audit(1756624201.735:8184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12796 comm="syz.4.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 488.140055][ T28] audit: type=1326 audit(1756624201.735:8185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12796 comm="syz.4.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 488.174133][ T28] audit: type=1326 audit(1756624201.735:8186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12796 comm="syz.4.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 488.200612][ T28] audit: type=1326 audit(1756624201.735:8187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12796 comm="syz.4.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 488.242565][ T28] audit: type=1326 audit(1756624201.735:8188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12796 comm="syz.4.2406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4b9c18ebe9 code=0x7ffc0000 [ 489.044309][T12804] netlink: 277 bytes leftover after parsing attributes in process `syz.4.2408'. [ 489.252245][ T3535] bond0 (unregistering): (slave lo): Releasing backup interface [ 489.260820][ T3535] bond0 (unregistering): (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed [ 489.272552][ T3535] bond0 (unregistering): Released all slaves [ 489.298757][T12689] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 489.310434][T12689] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 489.326352][T12777] @: renamed from vlan0 (while UP) [ 489.423492][T12689] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 489.613776][ T5792] Bluetooth: hci1: command tx timeout [ 489.732924][T12824] loop4: detected capacity change from 0 to 512 [ 489.779187][T12824] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 489.797313][T12689] 8021q: adding VLAN 0 to HW filter on device bond0 [ 489.827981][T12824] EXT4-fs warning (device loop4): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 489.853377][T12824] EXT4-fs (loop4): mount failed [ 489.870332][T12689] 8021q: adding VLAN 0 to HW filter on device team0 [ 489.914016][ T42] bridge0: port 1(bridge_slave_0) entered blocking state [ 489.921390][ T42] bridge0: port 1(bridge_slave_0) entered forwarding state [ 489.941426][ T42] bridge0: port 2(bridge_slave_1) entered blocking state [ 489.948759][ T42] bridge0: port 2(bridge_slave_1) entered forwarding state [ 490.112464][T12834] loop2: detected capacity change from 0 to 1024 [ 490.140574][T12834] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 490.176074][T12834] program syz.2.2415 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 490.414124][T12689] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 490.485469][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 490.526499][T12845] netlink: 277 bytes leftover after parsing attributes in process `syz.0.2417'. [ 490.569842][T12689] veth0_vlan: entered promiscuous mode [ 490.615126][T12689] veth1_vlan: entered promiscuous mode [ 490.669166][T12689] veth0_macvtap: entered promiscuous mode [ 490.686926][T12689] veth1_macvtap: entered promiscuous mode [ 490.730377][T12689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 490.753316][T12689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 490.772804][T12689] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 490.808842][T12689] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 490.822330][T12689] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 490.834182][T12689] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 490.880080][T12689] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 490.899745][T12689] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 490.921253][T12689] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 490.930038][T12689] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 491.135343][ T3516] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 491.160865][ T3516] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 491.208925][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 491.226327][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 491.378962][T12864] program syz.0.2425 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 491.396733][T12866] IPv6: Can't replace route, no match found [ 491.648624][T12873] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2428'. [ 492.060508][T12892] program syz.0.2437 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 492.457462][T12906] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2442'. [ 492.810186][ T5798] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 492.820605][ T5798] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 492.829745][ T5798] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 492.838174][ T5798] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 492.846331][ T5798] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 492.854015][ T5798] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 492.882609][T12917] 9pnet_fd: Insufficient options for proto=fd [ 493.079531][T12921] loop4: detected capacity change from 0 to 1024 [ 493.134783][T12913] lo speed is unknown, defaulting to 1000 [ 493.152256][T12921] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 493.229990][ T28] kauditd_printk_skb: 153 callbacks suppressed [ 493.230005][ T28] audit: type=1800 audit(1756624206.955:8342): pid=12921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2448" name="bus" dev="loop4" ino=18 res=0 errno=0 [ 493.263687][ T3494] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 493.301035][ T28] audit: type=1804 audit(1756624207.015:8343): pid=12921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.2448" name="/newroot/585/bus/bus" dev="loop4" ino=18 res=1 errno=0 [ 493.403838][T12926] program syz.4.2448 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 493.425211][ T3494] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 493.534337][ T3494] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 493.655236][ T3494] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 493.686496][ T28] audit: type=1326 audit(1756624207.415:8344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12931 comm="syz.1.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 493.724984][T12932] netlink: 7 bytes leftover after parsing attributes in process `syz.1.2450'. [ 493.734503][T12932] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2450'. [ 493.806606][ T28] audit: type=1326 audit(1756624207.415:8345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12931 comm="syz.1.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 493.842405][ T28] audit: type=1326 audit(1756624207.415:8346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12931 comm="syz.1.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 493.874653][T12935] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2451'. [ 493.910574][ T28] audit: type=1326 audit(1756624207.415:8347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12931 comm="syz.1.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 493.986460][ T28] audit: type=1326 audit(1756624207.415:8348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12931 comm="syz.1.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 494.031082][ T28] audit: type=1326 audit(1756624207.415:8349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12931 comm="syz.1.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 494.061273][T12938] netlink: 'syz.1.2452': attribute type 13 has an invalid length. [ 494.083078][ T28] audit: type=1326 audit(1756624207.415:8350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12931 comm="syz.1.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 494.109445][ T28] audit: type=1326 audit(1756624207.415:8351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12931 comm="syz.1.2450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 494.116425][ T6148] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 494.148497][T12938] gretap0: refused to change device tx_queue_len [ 494.155526][T12938] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 494.209027][T12913] chnl_net:caif_netlink_parms(): no params data found [ 494.327521][ T3494] tipc: Left network mode [ 494.702314][T12913] bridge0: port 1(bridge_slave_0) entered blocking state [ 494.732473][T12913] bridge0: port 1(bridge_slave_0) entered disabled state [ 494.769714][T12913] bridge_slave_0: entered allmulticast mode [ 494.802970][T12913] bridge_slave_0: entered promiscuous mode [ 494.930030][T12913] bridge0: port 2(bridge_slave_1) entered blocking state [ 494.963946][T12913] bridge0: port 2(bridge_slave_1) entered disabled state [ 494.990902][ T5792] Bluetooth: hci2: command tx timeout [ 495.024793][T12913] bridge_slave_1: entered allmulticast mode [ 495.064443][T12913] bridge_slave_1: entered promiscuous mode [ 495.165663][T12913] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 495.219891][T12913] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 495.315457][T12913] team0: Port device team_slave_0 added [ 495.418211][T12913] team0: Port device team_slave_1 added [ 495.529803][T12913] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 495.542903][T12913] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 495.546137][T12975] program syz.0.2461 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 495.587863][T12913] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 495.603982][T12974] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2462'. [ 495.665283][T12913] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 495.677175][T12913] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 495.707260][T12913] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 495.813136][ T3494] IPVS: stopping master sync thread 10080 ... [ 495.925246][T12913] hsr_slave_0: entered promiscuous mode [ 495.951231][T12913] hsr_slave_1: entered promiscuous mode [ 495.964740][T12913] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 495.978190][T12913] Cannot create hsr debugfs directory [ 496.008863][T12982] smc: net device bond0 applied user defined pnetid SYZ0 [ 496.023540][T12982] smc: net device bond0 erased user defined pnetid SYZ0 [ 496.338504][ T3494] hsr_slave_0: left promiscuous mode [ 496.353926][T12988] syz.4.2467[12988] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 496.354064][T12988] syz.4.2467[12988] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 496.366320][ T3494] hsr_slave_1: left promiscuous mode [ 496.389860][ T3494] bridge_slave_1: left allmulticast mode [ 496.395912][ T3494] bridge_slave_1: left promiscuous mode [ 496.405107][ T3494] bridge0: port 2(bridge_slave_1) entered disabled state [ 496.433036][ T3494] bridge_slave_0: left allmulticast mode [ 496.438740][ T3494] bridge_slave_0: left promiscuous mode [ 496.454713][ T3494] bridge0: port 1(bridge_slave_0) entered disabled state [ 496.520023][ T3494] veth1_vlan: left promiscuous mode [ 496.595392][ T3494] veth0_vlan: left promiscuous mode [ 497.054641][ T3494] bond14 (unregistering): Released all slaves [ 497.061187][ T5792] Bluetooth: hci2: command tx timeout [ 497.076066][ T3494] bond13 (unregistering): Released all slaves [ 497.106559][ T3494] bond12 (unregistering): Released all slaves [ 497.133695][ T3494] bond11 (unregistering): Released all slaves [ 497.169120][ T3494] bond10 (unregistering): Released all slaves [ 497.193050][ T3494] bond9 (unregistering): Released all slaves [ 497.222311][ T3494] bond8 (unregistering): Released all slaves [ 497.245282][ T3494] bond7 (unregistering): Released all slaves [ 497.264952][ T3494] bond6 (unregistering): Released all slaves [ 497.287619][ T3494] bond5 (unregistering): Released all slaves [ 497.321085][ T3494] bond4 (unregistering): Released all slaves [ 497.339579][ T3494] bond3 (unregistering): Released all slaves [ 497.375764][ T3494] bond2 (unregistering): Released all slaves [ 497.400607][ T3494] bond1 (unregistering): Released all slaves [ 497.839418][T13018] program syz.0.2476 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 497.990121][ T3494] team0 (unregistering): Port device team_slave_1 removed [ 498.060486][ T3494] team0 (unregistering): Port device team_slave_0 removed [ 498.119474][ T3494] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 498.195260][ T3494] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 498.908747][ T3494] bond0 (unregistering): Released all slaves [ 498.986243][T12998] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2471'. [ 499.058412][ T28] kauditd_printk_skb: 304 callbacks suppressed [ 499.067564][ T28] audit: type=1326 audit(1756624212.785:8656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13026 comm="syz.0.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 499.140164][ T28] audit: type=1326 audit(1756624212.785:8657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13026 comm="syz.0.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 499.176504][ T5792] Bluetooth: hci2: command tx timeout [ 499.307605][ T28] audit: type=1326 audit(1756624212.785:8658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13026 comm="syz.0.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 499.477464][ T28] audit: type=1326 audit(1756624212.785:8659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13026 comm="syz.0.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 499.500296][ T28] audit: type=1326 audit(1756624212.785:8660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13026 comm="syz.0.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 499.547658][ T28] audit: type=1326 audit(1756624212.785:8661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13026 comm="syz.0.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 499.572409][ T28] audit: type=1326 audit(1756624212.785:8662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13026 comm="syz.0.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 499.653135][ T28] audit: type=1326 audit(1756624212.785:8663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13026 comm="syz.0.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 499.706575][T13038] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2484'. [ 499.716365][ T28] audit: type=1326 audit(1756624212.785:8664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13026 comm="syz.0.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 499.746859][ T28] audit: type=1326 audit(1756624212.785:8665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13026 comm="syz.0.2480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 499.928263][T13040] loop1: detected capacity change from 0 to 1024 [ 500.007391][T13040] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 500.033575][T13048] netlink: 332 bytes leftover after parsing attributes in process `syz.4.2488'. [ 500.214418][T13053] program syz.1.2485 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 500.393148][T13056] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2490'. [ 500.505230][T12913] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 500.545687][T12913] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 500.590303][T12913] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 500.680568][T12913] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 500.722458][T12689] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 501.244491][T12913] 8021q: adding VLAN 0 to HW filter on device bond0 [ 501.256682][ T5792] Bluetooth: hci2: command tx timeout [ 501.874080][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 502.101440][T12913] 8021q: adding VLAN 0 to HW filter on device team0 [ 502.158892][ T2916] bridge0: port 1(bridge_slave_0) entered blocking state [ 502.166159][ T2916] bridge0: port 1(bridge_slave_0) entered forwarding state [ 502.200449][ T2916] bridge0: port 2(bridge_slave_1) entered blocking state [ 502.207657][ T2916] bridge0: port 2(bridge_slave_1) entered forwarding state [ 502.319935][T12913] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 502.331333][T12913] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 502.388538][T13090] loop1: detected capacity change from 0 to 1024 [ 502.392522][T13092] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2500'. [ 502.419050][T13090] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 502.645592][T13105] program syz.1.2501 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 502.815799][T12913] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 503.865384][T12689] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 503.919432][T12913] veth0_vlan: entered promiscuous mode [ 504.012725][T12913] veth1_vlan: entered promiscuous mode [ 504.063060][ T28] kauditd_printk_skb: 105 callbacks suppressed [ 504.063086][ T28] audit: type=1326 audit(1756624217.795:8771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13121 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 504.128729][T12913] veth0_macvtap: entered promiscuous mode [ 504.139940][T12913] veth1_macvtap: entered promiscuous mode [ 504.167470][ T28] audit: type=1326 audit(1756624217.795:8772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13121 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 504.193529][T13126] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2510'. [ 504.201357][ T28] audit: type=1326 audit(1756624217.795:8773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13121 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 504.226651][ T28] audit: type=1326 audit(1756624217.795:8774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13121 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 504.245201][T13126] netdevsim netdevsim1 netdevsim0: IPsec offload requires 128 bit authentication [ 504.265454][T12913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 504.280890][ T28] audit: type=1326 audit(1756624217.795:8775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13121 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 504.307093][T12913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.328826][T12913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 504.348648][ T28] audit: type=1326 audit(1756624217.795:8776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13121 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 504.376701][T12913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.389472][T12913] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 504.399983][ T28] audit: type=1326 audit(1756624217.795:8777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13121 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 504.446410][ T28] audit: type=1326 audit(1756624217.795:8778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13121 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 504.478095][ T28] audit: type=1326 audit(1756624217.795:8779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13121 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 504.517782][ T28] audit: type=1326 audit(1756624217.805:8780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13121 comm="syz.0.2509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=209 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 504.634981][T13131] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 504.663477][T13139] loop1: detected capacity change from 0 to 1024 [ 504.685792][T12913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.705984][T13139] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 504.720703][T12913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 504.848330][T12913] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 504.966480][T12913] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 505.161355][T12913] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 505.387401][T13139] program syz.1.2515 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 505.787970][T12913] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 505.834442][T12913] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 505.860854][T12913] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 505.880052][T12913] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 506.170919][ T3516] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 506.180372][T12689] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 506.193635][ T3516] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 506.398747][ T3516] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 506.417091][ T3516] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 506.457370][T13163] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2523'. [ 506.763712][T13166] lo speed is unknown, defaulting to 1000 [ 507.281899][T13169] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2521'. [ 508.212753][T13191] program syz.0.2528 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 509.382146][ T5798] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 509.393410][ T5798] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 509.424570][ T5798] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 509.445059][ T5798] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 509.452647][T13206] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2535'. [ 509.469030][ T5798] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 509.476606][ T5798] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 509.576163][T13203] lo speed is unknown, defaulting to 1000 [ 509.869327][T13203] chnl_net:caif_netlink_parms(): no params data found [ 510.045221][T13228] loop2: detected capacity change from 0 to 1024 [ 510.065278][T13228] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 510.092906][T13203] bridge0: port 1(bridge_slave_0) entered blocking state [ 510.107310][T13203] bridge0: port 1(bridge_slave_0) entered disabled state [ 510.115013][T13203] bridge_slave_0: entered allmulticast mode [ 510.125553][T13203] bridge_slave_0: entered promiscuous mode [ 510.134986][T13203] bridge0: port 2(bridge_slave_1) entered blocking state [ 510.135423][ T28] kauditd_printk_skb: 73 callbacks suppressed [ 510.135436][ T28] audit: type=1800 audit(1756624223.865:8854): pid=13228 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2540" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 510.142577][T13203] bridge0: port 2(bridge_slave_1) entered disabled state [ 510.183326][T13203] bridge_slave_1: entered allmulticast mode [ 510.191749][ T28] audit: type=1804 audit(1756624223.925:8855): pid=13228 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2540" name="/newroot/4/bus/bus" dev="loop2" ino=18 res=1 errno=0 [ 510.242615][T13203] bridge_slave_1: entered promiscuous mode [ 510.303872][T13232] program syz.2.2540 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 510.406828][T13203] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 510.434067][T13203] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 510.560004][T13203] team0: Port device team_slave_0 added [ 510.584146][T13203] team0: Port device team_slave_1 added [ 510.693454][T13203] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 510.700481][T13203] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 510.737240][T13203] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 510.754709][T13203] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 510.761959][T13203] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 510.767538][T13237] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2543'. [ 510.797416][T13203] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 510.910470][T13203] hsr_slave_0: entered promiscuous mode [ 510.921938][T13203] hsr_slave_1: entered promiscuous mode [ 510.946904][T13203] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 510.956962][T13203] Cannot create hsr debugfs directory [ 510.977970][T13241] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2544'. [ 511.001390][T12913] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 511.095159][ T28] audit: type=1326 audit(1756624224.825:8856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13242 comm="syz.1.2545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 511.167080][ T28] audit: type=1326 audit(1756624224.825:8857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13242 comm="syz.1.2545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 511.191132][ T28] audit: type=1326 audit(1756624224.825:8858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13242 comm="syz.1.2545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 511.215351][ T28] audit: type=1326 audit(1756624224.825:8859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13242 comm="syz.1.2545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 511.239387][ T28] audit: type=1326 audit(1756624224.825:8860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13242 comm="syz.1.2545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 511.277695][ T28] audit: type=1326 audit(1756624224.825:8861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13242 comm="syz.1.2545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 511.318099][ T28] audit: type=1326 audit(1756624224.825:8862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13242 comm="syz.1.2545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 511.343401][ T28] audit: type=1326 audit(1756624224.825:8863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13242 comm="syz.1.2545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 511.448577][T13203] netdevsim netdevsim4 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 511.478525][T13203] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 511.531471][ T5792] Bluetooth: hci3: command tx timeout [ 511.571958][T13203] netdevsim netdevsim4 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 511.582081][T13203] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 511.660038][T13203] netdevsim netdevsim4 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 511.680044][T13203] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 511.756106][T13203] netdevsim netdevsim4 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 511.769717][T13203] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 511.986123][T13203] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 512.000630][T13203] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 512.013846][T13203] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 512.032044][T13203] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 512.214343][T13203] 8021q: adding VLAN 0 to HW filter on device bond0 [ 512.265543][T13203] 8021q: adding VLAN 0 to HW filter on device team0 [ 512.302606][ T3516] bridge0: port 1(bridge_slave_0) entered blocking state [ 512.309805][ T3516] bridge0: port 1(bridge_slave_0) entered forwarding state [ 512.378500][T13269] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2551'. [ 512.378850][ T3516] bridge0: port 2(bridge_slave_1) entered blocking state [ 512.394867][ T3516] bridge0: port 2(bridge_slave_1) entered forwarding state [ 512.509208][T13203] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 512.580417][T13271] loop1: detected capacity change from 0 to 1024 [ 512.609243][T13271] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 512.652615][T13271] EXT4-fs error (device loop1): ext4_map_blocks:718: inode #3: block 1: comm syz.1.2552: lblock 1 mapped to illegal pblock 1 (length 1) [ 512.673089][T13271] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.2552: Failed to acquire dquot type 0 [ 512.697292][T13280] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2555'. [ 512.828932][T13271] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.2552: Freeing blocks not in datazone - block = 0, count = 4096 [ 512.903959][T13271] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.2552: Invalid inode bitmap blk 0 in block_group 0 [ 512.921437][T13285] program syz.0.2554 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 512.936338][ T2916] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1) [ 512.983066][T13271] EXT4-fs error (device loop1) in ext4_free_inode:363: Corrupt filesystem [ 513.011059][ T2916] EXT4-fs error (device loop1): ext4_release_dquot:6976: comm kworker/u4:6: Failed to release dquot type 0 [ 513.046018][T13271] EXT4-fs (loop1): 1 orphan inode deleted [ 513.222312][T13271] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 513.486261][T12689] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 513.550951][T13203] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 513.620799][ T5792] Bluetooth: hci3: command tx timeout [ 514.275775][T13203] veth0_vlan: entered promiscuous mode [ 514.297462][T13203] veth1_vlan: entered promiscuous mode [ 514.377934][T13203] veth0_macvtap: entered promiscuous mode [ 514.408441][T13203] veth1_macvtap: entered promiscuous mode [ 514.461164][T13203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 514.477356][T13203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 514.487906][T13203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 514.516015][T13203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 514.569441][T13203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 514.610719][T13203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 514.638066][T13320] program syz.1.2567 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 514.657220][T13203] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 514.700900][T13203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 514.711835][T13203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 514.726785][T13203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 514.761976][T13203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 514.795066][T13203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 514.822413][T13203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 514.834850][T13203] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 514.867650][T13203] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 514.884435][T13203] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 514.902325][T13203] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 514.930764][T13203] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 515.148246][ T2916] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 515.171274][ T2916] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 515.245280][ T137] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 515.265983][ T137] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 515.596140][ T28] kauditd_printk_skb: 123 callbacks suppressed [ 515.596155][ T28] audit: type=1326 audit(1756624229.325:8984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13339 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 515.663852][ T28] audit: type=1326 audit(1756624229.325:8985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13339 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 515.691285][ T5792] Bluetooth: hci3: command tx timeout [ 515.710623][ T28] audit: type=1326 audit(1756624229.365:8986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13339 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 515.733767][ T28] audit: type=1326 audit(1756624229.365:8987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13339 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 515.759169][ T28] audit: type=1326 audit(1756624229.365:8988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13339 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 515.783284][ T28] audit: type=1326 audit(1756624229.365:8989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13339 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 515.808005][ T28] audit: type=1326 audit(1756624229.375:8990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13339 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 515.836397][ T28] audit: type=1326 audit(1756624229.375:8991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13339 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 515.846716][T13344] loop2: detected capacity change from 0 to 1024 [ 515.871899][ T28] audit: type=1326 audit(1756624229.375:8992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13339 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 515.909358][T13344] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 515.926285][ T28] audit: type=1326 audit(1756624229.375:8993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13339 comm="syz.0.2574" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 515.974259][T13344] program syz.2.2576 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 516.142572][T12913] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 516.809078][T13379] program syz.0.2591 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 517.090885][T13393] batadv_slave_1: entered promiscuous mode [ 517.103043][T13393] batadv_slave_1: left promiscuous mode [ 517.640604][T13414] loop4: detected capacity change from 0 to 1024 [ 517.713190][T13414] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 517.771037][ T5792] Bluetooth: hci3: command tx timeout [ 517.804756][T13414] program syz.4.2607 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 518.225371][T13203] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 518.828785][T13451] serio: Serial port ptm0 [ 518.976265][T13459] loop2: detected capacity change from 0 to 1024 [ 518.997133][T13459] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 519.075593][T13459] program syz.2.2623 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 519.143998][T13466] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2626'. [ 519.347066][T12913] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 520.046090][T13494] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2635'. [ 520.164972][T13498] loop2: detected capacity change from 0 to 1024 [ 520.187437][T13498] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 520.248719][T13498] program syz.2.2638 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 520.410132][T13509] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2643'. [ 520.431973][T13509] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2643'. [ 520.442677][T13509] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2643'. [ 520.468613][T13509] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2643'. [ 520.562187][T12913] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 520.617155][T13514] loop4: detected capacity change from 0 to 1024 [ 520.655643][T13514] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 520.696546][T13518] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2646'. [ 520.710544][T13514] EXT4-fs error (device loop4): ext4_map_blocks:718: inode #3: block 1: comm syz.4.2645: lblock 1 mapped to illegal pblock 1 (length 1) [ 520.751132][T13514] __quota_error: 245 callbacks suppressed [ 520.751148][T13514] Quota error (device loop4): write_blk: dquota write failed [ 520.788114][T13514] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 520.818993][T13514] EXT4-fs error (device loop4): ext4_acquire_dquot:6940: comm syz.4.2645: Failed to acquire dquot type 0 [ 520.901189][T13514] EXT4-fs error (device loop4): ext4_free_blocks:6676: comm syz.4.2645: Freeing blocks not in datazone - block = 0, count = 4096 [ 520.928410][T13514] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.2645: Invalid inode bitmap blk 0 in block_group 0 [ 520.946668][ T28] audit: type=1326 audit(1756624234.605:9239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13522 comm="syz.1.2649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 520.996151][T13514] EXT4-fs error (device loop4) in ext4_free_inode:363: Corrupt filesystem [ 521.008307][ T28] audit: type=1326 audit(1756624234.605:9240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13522 comm="syz.1.2649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 521.053063][T13514] EXT4-fs (loop4): 1 orphan inode deleted [ 521.078974][T13514] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 521.124779][ T28] audit: type=1326 audit(1756624234.605:9241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13522 comm="syz.1.2649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 521.231370][ T28] audit: type=1326 audit(1756624234.605:9242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13522 comm="syz.1.2649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 521.290890][ T28] audit: type=1326 audit(1756624234.605:9243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13522 comm="syz.1.2649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 521.299587][ T11] EXT4-fs error (device loop4): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:0: lblock 1 mapped to illegal pblock 1 (length 1) [ 521.347497][ T28] audit: type=1326 audit(1756624234.605:9244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13522 comm="syz.1.2649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 521.364575][ T11] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 521.385569][ T11] EXT4-fs error (device loop4): ext4_release_dquot:6976: comm kworker/u4:0: Failed to release dquot type 0 [ 521.397363][ T28] audit: type=1326 audit(1756624234.605:9245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13522 comm="syz.1.2649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 521.441445][T13203] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 521.541983][T13540] loop4: detected capacity change from 0 to 1024 [ 521.556181][T13540] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 521.652656][T13540] program syz.4.2655 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 521.710031][T13547] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2658'. [ 521.787624][T13549] loop2: detected capacity change from 0 to 4096 [ 521.796789][T13549] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 521.816185][T13549] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 521.906882][T13203] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 522.034076][T13559] netlink: 173 bytes leftover after parsing attributes in process `syz.1.2662'. [ 522.176405][T13561] lo speed is unknown, defaulting to 1000 [ 522.335298][T13573] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2668'. [ 522.430478][T13576] program syz.1.2669 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 522.633896][T12913] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 523.255613][T13602] loop2: detected capacity change from 0 to 1024 [ 523.279594][T13602] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 523.296016][T13606] netlink: 'syz.0.2680': attribute type 10 has an invalid length. [ 523.331849][T13602] program syz.2.2681 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 523.584461][T12913] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 526.542627][T13642] __nla_validate_parse: 6 callbacks suppressed [ 526.542644][T13642] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2697'. [ 526.736282][T13651] netlink: 173 bytes leftover after parsing attributes in process `syz.4.2702'. [ 526.857128][T13658] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2704'. [ 526.929077][T13662] netlink: 'syz.4.2705': attribute type 4 has an invalid length. [ 526.969539][ T28] kauditd_printk_skb: 130 callbacks suppressed [ 526.969553][ T28] audit: type=1326 audit(1756624240.695:9376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13660 comm="syz.1.2706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 527.025342][T13664] loop2: detected capacity change from 0 to 1024 [ 527.027262][ T28] audit: type=1326 audit(1756624240.695:9377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13660 comm="syz.1.2706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 527.064710][ T28] audit: type=1326 audit(1756624240.725:9378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13660 comm="syz.1.2706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 527.093627][ T28] audit: type=1326 audit(1756624240.725:9379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13660 comm="syz.1.2706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 527.123359][T13664] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 527.125007][ T28] audit: type=1326 audit(1756624240.725:9380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13660 comm="syz.1.2706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 527.158974][ T28] audit: type=1326 audit(1756624240.725:9381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13660 comm="syz.1.2706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 527.182145][ T28] audit: type=1326 audit(1756624240.725:9382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13660 comm="syz.1.2706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 527.204898][ T28] audit: type=1326 audit(1756624240.735:9383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13660 comm="syz.1.2706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 527.228779][ T28] audit: type=1326 audit(1756624240.735:9384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13660 comm="syz.1.2706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 527.257406][ T28] audit: type=1326 audit(1756624240.735:9385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13660 comm="syz.1.2706" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 527.698508][T13680] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2710'. [ 527.713692][T12913] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 527.854482][T13684] netlink: 173 bytes leftover after parsing attributes in process `syz.1.2713'. [ 528.248726][T13704] loop4: detected capacity change from 0 to 1024 [ 528.275268][T13704] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 528.308974][T13712] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2722'. [ 528.746325][T13203] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 528.799479][T13721] sock: sock_timestamping_bind_phc: sock not bind to device [ 529.160883][T13737] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2732'. [ 529.216027][T13739] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2734'. [ 529.540825][T13746] program syz.1.2735 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 530.502935][T13767] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2745'. [ 532.702430][T13780] netlink: 'syz.0.2750': attribute type 12 has an invalid length. [ 532.731358][T13780] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2750'. [ 532.948252][T13791] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2755'. [ 533.007108][ T28] kauditd_printk_skb: 117 callbacks suppressed [ 533.007124][ T28] audit: type=1326 audit(1756624246.725:9503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13792 comm="syz.4.2756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 533.036515][ T28] audit: type=1326 audit(1756624246.725:9504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13792 comm="syz.4.2756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 533.060447][ T28] audit: type=1326 audit(1756624246.725:9505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13792 comm="syz.4.2756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 533.083020][ T28] audit: type=1326 audit(1756624246.725:9506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13792 comm="syz.4.2756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 533.105624][ T28] audit: type=1326 audit(1756624246.725:9507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13792 comm="syz.4.2756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 533.128377][ T28] audit: type=1326 audit(1756624246.725:9508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13792 comm="syz.4.2756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 533.170757][ T28] audit: type=1326 audit(1756624246.725:9509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13792 comm="syz.4.2756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 533.199068][ T28] audit: type=1326 audit(1756624246.725:9510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13792 comm="syz.4.2756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 533.237474][ T28] audit: type=1326 audit(1756624246.725:9511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13792 comm="syz.4.2756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 533.267926][ T28] audit: type=1326 audit(1756624246.725:9512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13792 comm="syz.4.2756" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 534.459828][T13820] netlink: 328 bytes leftover after parsing attributes in process `syz.0.2773'. [ 534.647719][T13826] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2767'. [ 537.857445][T13838] program syz.1.2769 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 538.275297][T13852] program syz.0.2780 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 539.037437][T13861] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2779'. [ 540.361588][T13882] program syz.0.2790 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 540.712229][T13885] bridge0: entered promiscuous mode [ 540.717561][T13885] bridge0: entered allmulticast mode [ 540.790130][T13888] netlink: 'syz.2.2788': attribute type 2 has an invalid length. [ 540.798823][T13890] netlink: 'syz.1.2787': attribute type 3 has an invalid length. [ 540.804731][T13888] netlink: 164 bytes leftover after parsing attributes in process `syz.2.2788'. [ 540.814800][T13890] netlink: 'syz.1.2787': attribute type 16 has an invalid length. [ 540.838206][T13890] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2787'. [ 540.882429][T13893] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2791'. [ 540.912722][T13891] loop4: detected capacity change from 0 to 1024 [ 540.927569][T13891] EXT4-fs: Ignoring removed nobh option [ 540.934636][T13891] EXT4-fs: Ignoring removed nobh option [ 540.950457][T13891] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 540.968378][T13891] EXT4-fs error (device loop4): ext4_get_journal_inode:5807: comm syz.4.2789: inode #4294967295: comm syz.4.2789: iget: illegal inode # [ 540.985082][T13891] EXT4-fs (loop4): no journal found [ 540.990414][T13891] EXT4-fs (loop4): can't get journal size [ 541.017551][T13891] EXT4-fs (loop4): failed to initialize system zone (-22) [ 541.040373][T13891] EXT4-fs (loop4): mount failed [ 541.198726][T13906] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2802'. [ 542.296101][T13919] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 542.303051][T13919] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 542.340413][T13922] loop2: detected capacity change from 0 to 1024 [ 542.404211][T13922] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 542.447770][ T28] kauditd_printk_skb: 31 callbacks suppressed [ 542.447785][ T28] audit: type=1800 audit(1756624256.175:9544): pid=13922 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2800" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 542.549617][ T28] audit: type=1804 audit(1756624256.215:9545): pid=13922 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2800" name="/newroot/64/bus/bus" dev="loop2" ino=18 res=1 errno=0 [ 542.590825][T13934] program syz.2.2800 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 542.693624][T13937] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2806'. [ 543.083945][T12913] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 543.198544][T13952] netlink: 'syz.0.2811': attribute type 2 has an invalid length. [ 543.207134][T13952] netlink: 164 bytes leftover after parsing attributes in process `syz.0.2811'. [ 544.381672][T13967] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2816'. [ 544.560541][T13971] program syz.1.2817 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 545.266145][ T28] audit: type=1326 audit(1756624258.995:9546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13975 comm="syz.4.2819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 545.311964][ T28] audit: type=1326 audit(1756624259.015:9547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13975 comm="syz.4.2819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 545.360862][ T28] audit: type=1326 audit(1756624259.065:9548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13975 comm="syz.4.2819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 545.370878][T13978] loop2: detected capacity change from 0 to 1024 [ 545.394206][ T28] audit: type=1326 audit(1756624259.065:9549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13979 comm="syz.4.2819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fecfffc14a5 code=0x7ffc0000 [ 545.397991][T13978] EXT4-fs: Ignoring removed nobh option [ 545.423381][T13978] EXT4-fs: Ignoring removed nobh option [ 545.429691][ T28] audit: type=1326 audit(1756624259.065:9550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13975 comm="syz.4.2819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 545.443832][T13978] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 545.461147][ T28] audit: type=1326 audit(1756624259.085:9551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13975 comm="syz.4.2819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 545.508471][ T28] audit: type=1326 audit(1756624259.085:9552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13975 comm="syz.4.2819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 545.526793][T13978] EXT4-fs error (device loop2): ext4_get_journal_inode:5807: comm syz.2.2820: inode #4294967295: comm syz.2.2820: iget: illegal inode # [ 545.547708][ T28] audit: type=1326 audit(1756624259.085:9553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13975 comm="syz.4.2819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 545.598474][T13978] EXT4-fs (loop2): no journal found [ 545.606314][T13978] EXT4-fs (loop2): can't get journal size [ 545.621032][T13978] EXT4-fs (loop2): failed to initialize system zone (-22) [ 545.628426][T13978] EXT4-fs (loop2): mount failed [ 547.077247][T14008] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2829'. [ 547.455891][ T28] kauditd_printk_skb: 17 callbacks suppressed [ 547.781311][ T28] audit: type=1326 audit(1756624260.915:9571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13997 comm="syz.1.2834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f33cc92adb9 code=0x7ffc0000 [ 547.880481][T14017] program syz.0.2830 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 548.032593][ T28] audit: type=1326 audit(1756624260.915:9572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13997 comm="syz.1.2834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 548.055188][ T28] audit: type=1326 audit(1756624260.915:9573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13997 comm="syz.1.2834" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 549.174997][T14036] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2840'. [ 549.192631][T14036] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2840'. [ 549.212901][T14036] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2840'. [ 549.240491][T14036] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2840'. [ 549.297220][T14040] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2841'. [ 549.670296][T14052] program syz.1.2844 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 552.961090][ T28] audit: type=1326 audit(1756624266.685:9574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14057 comm="syz.0.2845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 552.985049][ T28] audit: type=1326 audit(1756624266.685:9575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14057 comm="syz.0.2845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 553.009493][ T28] audit: type=1326 audit(1756624266.695:9576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14057 comm="syz.0.2845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 553.034405][ T28] audit: type=1326 audit(1756624266.715:9577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14057 comm="syz.0.2845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 553.271163][ T28] audit: type=1326 audit(1756624266.715:9578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14057 comm="syz.0.2845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 553.676650][ T28] audit: type=1326 audit(1756624266.715:9579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14059 comm="syz.0.2845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f85cbfc14a5 code=0x7ffc0000 [ 553.821825][ T28] audit: type=1326 audit(1756624267.025:9580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14059 comm="syz.0.2845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 553.862731][ T28] audit: type=1326 audit(1756624267.595:9581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14057 comm="syz.0.2845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 553.904503][ T28] audit: type=1326 audit(1756624267.625:9582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14057 comm="syz.0.2845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 553.949750][ T28] audit: type=1326 audit(1756624267.625:9583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14057 comm="syz.0.2845" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 554.104212][T14072] netlink: 'syz.4.2852': attribute type 4 has an invalid length. [ 554.123405][T14072] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2852'. [ 554.173501][T14076] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2854'. [ 554.367344][T14089] netlink: 16255 bytes leftover after parsing attributes in process `syz.4.2858'. [ 555.982770][T14113] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2865'. [ 556.035683][T14117] loop4: detected capacity change from 0 to 1024 [ 556.060561][T14117] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 556.241393][T14127] program syz.4.2869 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 557.549772][T13203] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 557.848071][T14149] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2879'. [ 558.010128][T14160] loop2: detected capacity change from 0 to 1024 [ 558.026359][T14160] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 558.048241][ T28] kauditd_printk_skb: 11 callbacks suppressed [ 558.048255][ T28] audit: type=1800 audit(1756624271.775:9595): pid=14160 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2883" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 558.103444][ T28] audit: type=1804 audit(1756624271.815:9596): pid=14160 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2883" name="/newroot/84/bus/bus" dev="loop2" ino=18 res=1 errno=0 [ 558.192094][T14168] program syz.2.2883 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 558.469927][T12913] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 558.688042][ T28] audit: type=1326 audit(1756624272.365:9597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14170 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 558.718194][ T28] audit: type=1326 audit(1756624272.365:9598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14170 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 559.143576][ T28] audit: type=1326 audit(1756624272.375:9599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14170 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 559.504567][ T28] audit: type=1326 audit(1756624272.375:9600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14170 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 559.527201][ T28] audit: type=1326 audit(1756624272.375:9601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14170 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 559.561071][ T28] audit: type=1326 audit(1756624272.375:9602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14170 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 559.651144][ T28] audit: type=1326 audit(1756624272.375:9603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14170 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 559.720823][ T28] audit: type=1326 audit(1756624272.375:9604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14170 comm="syz.2.2885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 559.831200][T14186] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2891'. [ 559.850898][T14188] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2892'. [ 559.893634][T14193] loop4: detected capacity change from 0 to 1024 [ 559.933283][T14193] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 560.098099][T14202] program syz.4.2893 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 561.767481][T13203] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 561.992851][T14222] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2903'. [ 562.164536][T14231] loop4: detected capacity change from 0 to 1024 [ 562.181452][T14231] EXT4-fs: Ignoring removed nobh option [ 562.187159][T14231] EXT4-fs: Ignoring removed nobh option [ 562.194810][T14231] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 562.205270][T14231] EXT4-fs error (device loop4): ext4_get_journal_inode:5807: comm syz.4.2906: inode #4294967295: comm syz.4.2906: iget: illegal inode # [ 562.856242][T14231] EXT4-fs (loop4): no journal found [ 563.167376][ T28] kauditd_printk_skb: 88 callbacks suppressed [ 563.167395][ T28] audit: type=1326 audit(1756624276.565:9693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14230 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 563.201207][T14231] EXT4-fs (loop4): can't get journal size [ 563.254634][ T28] audit: type=1326 audit(1756624276.565:9694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14230 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 563.278288][T14231] EXT4-fs (loop4): failed to initialize system zone (-22) [ 563.285625][ T28] audit: type=1326 audit(1756624276.565:9695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14230 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 563.285690][ T28] audit: type=1326 audit(1756624276.575:9696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14230 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 563.285741][ T28] audit: type=1326 audit(1756624276.575:9697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14230 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 563.285797][ T28] audit: type=1326 audit(1756624276.575:9698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14230 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 563.285850][ T28] audit: type=1326 audit(1756624276.575:9699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14230 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 563.285904][ T28] audit: type=1326 audit(1756624276.585:9700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14230 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 563.285957][ T28] audit: type=1326 audit(1756624276.585:9701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14230 comm="syz.2.2908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 563.342341][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.374539][T14231] EXT4-fs (loop4): mount failed [ 563.778710][T14248] program syz.0.2909 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 564.243858][ T28] audit: type=1326 audit(1756624277.965:9702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14250 comm="syz.1.2912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 564.514563][T14261] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2917'. [ 565.696502][T14276] pim6reg: entered allmulticast mode [ 565.776199][T14276] pim6reg: left allmulticast mode [ 566.083503][T14291] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2928'. [ 566.269732][T14303] netlink: 'syz.1.2930': attribute type 6 has an invalid length. [ 566.296920][T14303] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2930'. [ 567.466619][T14305] loop4: detected capacity change from 0 to 1024 [ 567.474383][T14305] EXT4-fs: Ignoring removed nobh option [ 567.479992][T14305] EXT4-fs: Ignoring removed nobh option [ 567.490391][T14305] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 567.501187][T14305] EXT4-fs error (device loop4): ext4_get_journal_inode:5807: comm syz.4.2938: inode #4294967295: comm syz.4.2938: iget: illegal inode # [ 567.534243][T14305] EXT4-fs (loop4): no journal found [ 567.545336][T14305] EXT4-fs (loop4): can't get journal size [ 567.559926][T14305] EXT4-fs (loop4): failed to initialize system zone (-22) [ 567.575595][T14305] EXT4-fs (loop4): mount failed [ 567.847325][T14320] pim6reg: entered allmulticast mode [ 567.879640][T14320] pim6reg: left allmulticast mode [ 567.967455][T14326] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2940'. [ 568.299248][T14336] loop4: detected capacity change from 0 to 512 [ 568.335780][T14336] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.2943: bg 0: block 393: padding at end of block bitmap is not set [ 568.360404][T14336] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 568.382921][T14336] EXT4-fs (loop4): 2 truncates cleaned up [ 568.400294][T14336] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 568.533169][T13203] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 568.961226][T14357] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2952'. [ 569.245063][ T28] kauditd_printk_skb: 93 callbacks suppressed [ 569.245101][ T28] audit: type=1326 audit(1756624282.905:9796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14363 comm="syz.1.2956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 569.724197][ T28] audit: type=1326 audit(1756624282.905:9797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14363 comm="syz.1.2956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 569.942881][ T28] audit: type=1326 audit(1756624282.905:9798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14363 comm="syz.1.2956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 569.979818][ T28] audit: type=1326 audit(1756624282.905:9799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14363 comm="syz.1.2956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 570.032126][ T28] audit: type=1326 audit(1756624282.925:9800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14363 comm="syz.1.2956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 570.060768][ T28] audit: type=1326 audit(1756624282.925:9801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14363 comm="syz.1.2956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 570.119311][ T28] audit: type=1326 audit(1756624282.925:9802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14363 comm="syz.1.2956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 570.162814][ T28] audit: type=1326 audit(1756624282.925:9803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14363 comm="syz.1.2956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 570.566505][ T28] audit: type=1326 audit(1756624282.925:9804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14363 comm="syz.1.2956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 571.062614][ T28] audit: type=1326 audit(1756624282.925:9805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14363 comm="syz.1.2956" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33cc98ebe9 code=0x7ffc0000 [ 571.496914][T14394] loop4: detected capacity change from 0 to 1024 [ 571.504698][T14394] EXT4-fs: Ignoring removed nobh option [ 571.513788][T14394] EXT4-fs: Ignoring removed nobh option [ 571.524237][T14394] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 571.534240][T14394] EXT4-fs error (device loop4): ext4_get_journal_inode:5807: comm syz.4.2963: inode #4294967295: comm syz.4.2963: iget: illegal inode # [ 571.556750][T14394] EXT4-fs (loop4): no journal found [ 571.570724][T14394] EXT4-fs (loop4): can't get journal size [ 571.581026][T14394] EXT4-fs (loop4): failed to initialize system zone (-22) [ 571.588596][T14394] EXT4-fs (loop4): mount failed [ 571.932961][T14406] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2968'. [ 573.098198][T14426] loop2: detected capacity change from 0 to 1024 [ 573.131638][T14426] EXT4-fs: Ignoring removed nobh option [ 573.137292][T14426] EXT4-fs: Ignoring removed nobh option [ 573.150988][T14426] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 573.165460][T14426] EXT4-fs error (device loop2): ext4_get_journal_inode:5807: comm syz.2.2976: inode #4294967295: comm syz.2.2976: iget: illegal inode # [ 573.180401][T14426] EXT4-fs (loop2): no journal found [ 573.193445][T14426] EXT4-fs (loop2): can't get journal size [ 573.206715][T14430] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 573.213219][T14430] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 573.231165][T14426] EXT4-fs (loop2): failed to initialize system zone (-22) [ 573.239661][T14426] EXT4-fs (loop2): mount failed [ 574.706681][T14458] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2990'. [ 575.776434][T14493] loop4: detected capacity change from 0 to 1024 [ 575.788506][T14493] EXT4-fs: Ignoring removed nobh option [ 575.794372][T14493] EXT4-fs: Ignoring removed nobh option [ 575.801466][T14493] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 575.818777][T14493] EXT4-fs error (device loop4): ext4_get_journal_inode:5807: comm syz.4.3005: inode #4294967295: comm syz.4.3005: iget: illegal inode # [ 575.838177][T14493] EXT4-fs (loop4): no journal found [ 575.843687][T14493] EXT4-fs (loop4): can't get journal size [ 575.864705][T14493] EXT4-fs (loop4): failed to initialize system zone (-22) [ 575.872210][T14493] EXT4-fs (loop4): mount failed [ 576.359827][T14507] netlink: 'syz.4.3011': attribute type 29 has an invalid length. [ 576.371141][T14507] netlink: 'syz.4.3011': attribute type 29 has an invalid length. [ 576.398109][T14507] netlink: 'syz.4.3011': attribute type 29 has an invalid length. [ 577.016564][T14533] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3023'. [ 577.395292][T14552] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 577.646249][T14565] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3038'. [ 578.241412][T14595] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3051'. [ 578.485787][ T28] kauditd_printk_skb: 173 callbacks suppressed [ 578.485833][ T28] audit: type=1326 audit(1756624292.165:9979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.2.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 579.084729][ T28] audit: type=1326 audit(1756624292.165:9980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.2.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 579.219513][T14606] netlink: 'syz.4.3057': attribute type 21 has an invalid length. [ 579.241110][ T28] audit: type=1326 audit(1756624292.165:9981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.2.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 579.264423][ T28] audit: type=1326 audit(1756624292.165:9982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.2.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 579.292183][ T28] audit: type=1326 audit(1756624292.175:9983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.2.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 579.310827][T14606] netlink: 128 bytes leftover after parsing attributes in process `syz.4.3057'. [ 579.319958][ T28] audit: type=1326 audit(1756624292.175:9984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.2.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 579.373905][T14606] netlink: 'syz.4.3057': attribute type 5 has an invalid length. [ 579.380823][ T28] audit: type=1326 audit(1756624292.175:9985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.2.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 579.401750][T14606] netlink: 'syz.4.3057': attribute type 6 has an invalid length. [ 579.424066][T14606] netlink: 3 bytes leftover after parsing attributes in process `syz.4.3057'. [ 579.457782][ T28] audit: type=1326 audit(1756624292.175:9986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.2.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 579.511247][ T28] audit: type=1326 audit(1756624292.175:9987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.2.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 579.559857][ T28] audit: type=1326 audit(1756624292.175:9988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14599 comm="syz.2.3055" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f195f58ebe9 code=0x7ffc0000 [ 579.589994][T14620] netlink: 'syz.2.3061': attribute type 27 has an invalid length. [ 579.598337][T14620] netlink: 'syz.2.3061': attribute type 4 has an invalid length. [ 579.656113][T14620] netlink: 'syz.2.3061': attribute type 27 has an invalid length. [ 579.666181][T14620] netlink: 'syz.2.3061': attribute type 4 has an invalid length. [ 579.825297][T14628] netlink: set zone limit has 8 unknown bytes [ 579.892505][T14630] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3066'. [ 581.207743][T14651] netlink: 16182 bytes leftover after parsing attributes in process `syz.4.3073'. [ 581.260794][T14650] netlink: 128 bytes leftover after parsing attributes in process `syz.0.3072'. [ 581.272708][T14650] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3072'. [ 581.333235][T14649] netlink: 152 bytes leftover after parsing attributes in process `syz.2.3071'. [ 581.362142][T14653] validate_nla: 5 callbacks suppressed [ 581.362159][T14653] netlink: 'syz.2.3071': attribute type 27 has an invalid length. [ 581.423850][T14653] netlink: 'syz.2.3071': attribute type 4 has an invalid length. [ 581.677729][T14669] netlink: 'syz.0.3080': attribute type 10 has an invalid length. [ 582.246346][T14669] team0: Port device team_slave_0 removed [ 583.615985][ T28] kauditd_printk_skb: 113 callbacks suppressed [ 583.616003][ T28] audit: type=1326 audit(1756624297.005:10102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14692 comm="syz.0.3091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 584.250718][ T28] audit: type=1326 audit(1756624297.015:10103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14692 comm="syz.0.3091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 584.282444][ T28] audit: type=1326 audit(1756624297.025:10104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14692 comm="syz.0.3091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 584.336239][ T28] audit: type=1326 audit(1756624297.025:10105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14692 comm="syz.0.3091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 584.371783][ T28] audit: type=1326 audit(1756624297.035:10106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14692 comm="syz.0.3091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 584.398921][T14704] __nla_validate_parse: 2 callbacks suppressed [ 584.398937][T14704] netlink: 88 bytes leftover after parsing attributes in process `syz.0.3094'. [ 584.440877][ T28] audit: type=1326 audit(1756624297.035:10107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14692 comm="syz.0.3091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 584.500767][ T28] audit: type=1326 audit(1756624297.045:10108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14692 comm="syz.0.3091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 584.558792][ T28] audit: type=1326 audit(1756624297.045:10109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14692 comm="syz.0.3091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 584.610821][ T28] audit: type=1326 audit(1756624297.055:10110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14692 comm="syz.0.3091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 584.673514][ T28] audit: type=1326 audit(1756624297.065:10111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14692 comm="syz.0.3091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cbf8ebe9 code=0x7ffc0000 [ 584.767053][T14715] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3099'. [ 584.776282][T14715] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3099'. [ 584.961039][T14724] netlink: 'syz.2.3103': attribute type 10 has an invalid length. [ 584.969154][T14724] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3103'. [ 585.135542][T14724] team0: Port device team_slave_0 removed [ 585.924868][T14731] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3106'. [ 585.951574][T14731] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3106'. [ 585.976067][T14731] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3106'. [ 585.998539][T14731] netlink: 60 bytes leftover after parsing attributes in process `syz.4.3106'. [ 587.461800][T14763] netlink: zone id is out of range [ 587.513396][T14765] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 587.531065][T14765] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 587.551979][T14765] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 587.559448][T14765] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 587.772608][T14775] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3126'. [ 588.185000][T14789] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3134'. [ 589.025356][T14818] netlink: 'syz.0.3144': attribute type 1 has an invalid length. [ 589.144924][T14818] 8021q: adding VLAN 0 to HW filter on device bond8 [ 589.159856][T14821] lo speed is unknown, defaulting to 1000 [ 589.228648][T14825] bond8: (slave wlan0): Enslaving as an active interface with a down link [ 589.321455][T14811] vlan2: entered allmulticast mode [ 589.326726][T14811] veth1: entered allmulticast mode [ 589.338207][T14811] veth1: entered promiscuous mode [ 589.344006][T14811] veth1: left promiscuous mode [ 589.356082][T14811] bond8: (slave vlan2): making interface the new active one [ 589.366640][T14811] bond8: (slave wlan0): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open [ 589.385247][T14811] veth1: entered promiscuous mode [ 589.391810][T14811] vlan2: entered promiscuous mode [ 589.397881][T14811] bond8: (slave vlan2): Enslaving as an active interface with an up link [ 589.950061][T14844] __nla_validate_parse: 1 callbacks suppressed [ 589.950080][T14844] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3150'. [ 591.595997][T14900] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 591.611560][T14900] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 591.631023][T14900] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 591.639380][T14900] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 591.857927][T14906] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3185'. [ 592.844095][ T28] kauditd_printk_skb: 113 callbacks suppressed [ 592.844238][ T28] audit: type=1326 audit(1756624306.515:10225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.4.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 593.248461][ T28] audit: type=1326 audit(1756624306.515:10226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.4.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 593.536261][ T28] audit: type=1326 audit(1756624306.525:10227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.4.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 593.614846][ T28] audit: type=1326 audit(1756624306.525:10228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.4.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 593.637743][ T28] audit: type=1326 audit(1756624306.525:10229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.4.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 593.660494][ T28] audit: type=1326 audit(1756624306.525:10230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.4.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 593.690715][ T28] audit: type=1326 audit(1756624306.525:10231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.4.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 593.763884][ T28] audit: type=1326 audit(1756624306.535:10232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.4.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 593.810824][ T28] audit: type=1326 audit(1756624306.535:10233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.4.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 593.853956][ T28] audit: type=1326 audit(1756624306.535:10234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14937 comm="syz.4.3203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfff8ebe9 code=0x7ffc0000 [ 595.022726][T14995] netlink: 'syz.4.3223': attribute type 1 has an invalid length. [ 595.236009][T14995] 8021q: adding VLAN 0 to HW filter on device bond8 [ 595.353056][T14999] bond8: (slave wlan0): Enslaving as an active interface with a down link [ 595.529291][T14989] vlan2: entered allmulticast mode [ 595.538107][T14989] veth1: entered allmulticast mode [ 595.547967][T14989] veth1: entered promiscuous mode [ 595.557121][T14989] veth1: left promiscuous mode [ 595.571663][T14989] bond8: (slave vlan2): making interface the new active one [ 595.584776][T14989] bond8: (slave wlan0): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open [ 595.603026][T14989] veth1: entered promiscuous mode [ 595.615122][T14989] vlan2: entered promiscuous mode [ 595.621571][T14989] bond8: (slave vlan2): Enslaving as an active interface with an up link [ 595.885886][T15012] lo speed is unknown, defaulting to 1000 [ 596.090947][ T5798] Bluetooth: hci0: command 0x0406 tx timeout [ 596.154244][T15024] Bluetooth: MGMT ver 1.22 [ 597.009258][T15052] vlan2: entered allmulticast mode [ 597.018487][T15052] veth1: entered allmulticast mode [ 702.200615][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 702.207631][ C0] rcu: (detected by 0, t=10502 jiffies, g=68161, q=284 ncpus=2) [ 702.215374][ C0] rcu: All QSes seen, last rcu_preempt kthread activity 10502 (4295007299-4294996797), jiffies_till_next_fqs=1, root ->qsmask 0x0 [ 702.228792][ C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g68161 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 702.240033][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 702.250031][ C0] rcu: RCU grace-period kthread stack dump: [ 702.255951][ C0] task:rcu_preempt state:R running task stack:26568 pid:17 ppid:2 flags:0x00004000 [ 702.266790][ C0] Call Trace: [ 702.270103][ C0] [ 702.273074][ C0] __schedule+0x14d2/0x44d0 [ 702.277639][ C0] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 702.283598][ C0] ? lockdep_hardirqs_on+0x98/0x150 [ 702.288834][ C0] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 702.294778][ C0] ? asan.module_dtor+0x20/0x20 [ 702.299675][ C0] ? enqueue_timer+0x225/0x530 [ 702.304485][ C0] ? __mod_timer+0x984/0xdb0 [ 702.309139][ C0] schedule+0xbd/0x170 [ 702.313252][ C0] schedule_timeout+0x160/0x280 [ 702.318151][ C0] ? console_conditional_schedule+0x40/0x40 [ 702.324125][ C0] ? update_process_times+0x1b0/0x1b0 [ 702.329633][ C0] ? prepare_to_swait_event+0x339/0x360 [ 702.335229][ C0] rcu_gp_fqs_loop+0x302/0x1560 [ 702.340136][ C0] ? rcu_gp_init+0x110e/0x1510 [ 702.344950][ C0] ? rcu_gp_kthread+0x380/0x380 [ 702.349895][ C0] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 702.355917][ C0] ? rcu_gp_init+0x1510/0x1510 [ 702.360729][ C0] ? rcu_gp_cleanup+0xb4c/0xca0 [ 702.365633][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 702.370891][ C0] ? lockdep_hardirqs_on+0x98/0x150 [ 702.376146][ C0] rcu_gp_kthread+0x99/0x380 [ 702.380800][ C0] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 702.385975][ C0] ? __kthread_parkme+0x7a/0x1c0 [ 702.391136][ C0] ? __kthread_parkme+0x162/0x1c0 [ 702.396216][ C0] kthread+0x2fa/0x390 [ 702.400323][ C0] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 702.405490][ C0] ? kthread_blkcg+0xd0/0xd0 [ 702.410114][ C0] ret_from_fork+0x48/0x80 [ 702.414577][ C0] ? kthread_blkcg+0xd0/0xd0 [ 702.419240][ C0] ret_from_fork_asm+0x11/0x20 [ 702.424073][ C0] [ 702.427136][ C0] rcu: Stack dump where RCU GP kthread last ran: [ 702.433484][ C0] Sending NMI from CPU 0 to CPUs 1: [ 702.438727][ C1] NMI backtrace for cpu 1 [ 702.438743][ C1] CPU: 1 PID: 15057 Comm: syz.0.3248 Not tainted syzkaller #0 [ 702.438759][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 702.438768][ C1] RIP: 0010:unwind_next_frame+0x1292/0x2970 [ 702.438798][ C1] Code: 08 48 89 df e8 4f 21 a2 00 4c 89 33 48 8b 44 24 08 48 8d b8 98 00 00 00 e8 ab 23 00 00 49 89 c6 48 8b 44 24 68 42 80 3c 28 00 <48> 8b 5c 24 60 74 08 48 89 df e8 1f 21 a2 00 4c 89 33 48 8b 44 24 [ 702.438812][ C1] RSP: 0018:ffffc900001f0878 EFLAGS: 00000046 [ 702.438826][ C1] RAX: 1ffff9200003e130 RBX: ffffc900001f0990 RCX: ffff88802b4b5a00 [ 702.438838][ C1] RDX: 0000000000010000 RSI: 0000000000000001 RDI: ffffc9000c6efff0 [ 702.438849][ C1] RBP: ffffc900001f0998 R08: ffff88802b4b5a00 R09: 0000000000000003 [ 702.438860][ C1] R10: 0000000000000004 R11: 0000000000010000 R12: ffffc900001f0948 [ 702.438870][ C1] R13: dffffc0000000000 R14: 00007f85ccdb3a80 R15: ffffffff8f6e9982 [ 702.438882][ C1] FS: 00007f85ccdb46c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 702.438896][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 702.438908][ C1] CR2: 00007f85ccdb3e40 CR3: 000000005d7af000 CR4: 00000000003506e0 [ 702.438922][ C1] Call Trace: [ 702.438927][ C1] [ 702.438939][ C1] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 702.438966][ C1] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 702.438991][ C1] ? stack_trace_save+0xe0/0xe0 [ 702.439010][ C1] arch_stack_walk+0x144/0x190 [ 702.439033][ C1] stack_trace_save+0x9c/0xe0 [ 702.439051][ C1] ? stack_trace_snprint+0xf0/0xf0 [ 702.439068][ C1] ? __lock_acquire+0x1260/0x7c80 [ 702.439092][ C1] kasan_set_track+0x4e/0x70 [ 702.439108][ C1] ? kasan_set_track+0x4e/0x70 [ 702.439123][ C1] ? __kasan_slab_alloc+0x6c/0x80 [ 702.439157][ C1] ? slab_post_alloc_hook+0x6e/0x4d0 [ 702.439177][ C1] ? kmem_cache_alloc+0x11e/0x2e0 [ 702.439196][ C1] ? __sigqueue_alloc+0x40c/0x520 [ 702.439219][ C1] ? __send_signal_locked+0x22f/0xe00 [ 702.439239][ C1] ? group_send_sig_info+0x1fa/0x260 [ 702.439260][ C1] ? do_bpf_send_signal+0x7f/0x190 [ 702.439276][ C1] ? irq_work_single+0xd5/0x230 [ 702.439290][ C1] ? irq_work_run+0x156/0x2e0 [ 702.439304][ C1] ? __sysvec_irq_work+0x98/0x380 [ 702.439326][ C1] ? sysvec_irq_work+0x9c/0xc0 [ 702.439344][ C1] ? asm_sysvec_irq_work+0x1a/0x20 [ 702.439357][ C1] ? native_apic_msr_write+0x39/0x50 [ 702.439371][ C1] ? arch_irq_work_raise+0x68/0x70 [ 702.439392][ C1] ? irq_work_queue+0x99/0x140 [ 702.439406][ C1] ? bpf_send_signal_common+0x2b6/0x420 [ 702.439422][ C1] ? bpf_send_signal+0x19/0x20 [ 702.439444][ C1] ? bpf_prog_7ba5217f62dcd359+0x40/0x44 [ 702.439463][ C1] ? bpf_trace_run2+0x1d1/0x3c0 [ 702.439495][ C1] ? trace_sys_enter+0x69/0x80 [ 702.439515][ C1] ? syscall_trace_enter+0xf0/0x150 [ 702.439536][ C1] ? do_syscall_64+0x28/0xb0 [ 702.439553][ C1] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 702.439596][ C1] __kasan_slab_alloc+0x6c/0x80 [ 702.439615][ C1] slab_post_alloc_hook+0x6e/0x4d0 [ 702.439642][ C1] kmem_cache_alloc+0x11e/0x2e0 [ 702.439663][ C1] ? __sigqueue_alloc+0x40c/0x520 [ 702.439688][ C1] ? __sigqueue_alloc+0x32/0x520 [ 702.439713][ C1] __sigqueue_alloc+0x40c/0x520 [ 702.439740][ C1] __send_signal_locked+0x22f/0xe00 [ 702.439765][ C1] ? group_send_sig_info+0x3e/0x260 [ 702.439789][ C1] group_send_sig_info+0x1fa/0x260 [ 702.439815][ C1] do_bpf_send_signal+0x7f/0x190 [ 702.439835][ C1] irq_work_single+0xd5/0x230 [ 702.439853][ C1] irq_work_run+0x156/0x2e0 [ 702.439869][ C1] ? irq_work_single+0x230/0x230 [ 702.439886][ C1] ? __irq_exit_rcu+0xd3/0x190 [ 702.439900][ C1] ? irq_exit_rcu+0x20/0x20 [ 702.439918][ C1] __sysvec_irq_work+0x98/0x380 [ 702.439941][ C1] sysvec_irq_work+0x9c/0xc0 [ 702.439961][ C1] [ 702.439965][ C1] [ 702.439971][ C1] asm_sysvec_irq_work+0x1a/0x20 [ 702.439985][ C1] RIP: 0010:native_apic_msr_write+0x39/0x50 [ 702.440001][ C1] Code: 74 2a 83 ff 30 74 25 eb 10 81 ff d0 00 00 00 74 1b 81 ff e0 00 00 00 74 13 c1 ef 04 81 c7 00 08 00 00 89 f9 89 f0 31 d2 0f 30 <66> 90 c3 f3 0f 1e fa 89 f6 31 d2 e9 c7 bd 18 03 0f 1f 80 00 00 00 [ 702.440014][ C1] RSP: 0018:ffffc9000c6efcd8 EFLAGS: 00000246 [ 702.440026][ C1] RAX: 00000000000000f6 RBX: 0000000000000200 RCX: 000000000000083f [ 702.440036][ C1] RDX: 0000000000000000 RSI: 00000000000000f6 RDI: 000000000000083f [ 702.440045][ C1] RBP: 0000000000000000 R08: ffffc9000c6efc47 R09: 1ffff920018ddf88 [ 702.440056][ C1] R10: dffffc0000000000 R11: fffff520018ddf89 R12: ffff8880b8f35201 [ 702.440086][ C1] R13: dffffc0000000000 R14: ffff8880b8f35290 R15: 0000000000000020 [ 702.440114][ C1] arch_irq_work_raise+0x68/0x70 [ 702.440138][ C1] irq_work_queue+0x99/0x140 [ 702.440164][ C1] bpf_send_signal_common+0x2b6/0x420 [ 702.440184][ C1] ? __set_printk_clr_event+0x80/0x80 [ 702.440203][ C1] ? __cant_sleep+0x210/0x210 [ 702.440223][ C1] ? arch_do_signal_or_restart+0x492/0x780 [ 702.440252][ C1] bpf_send_signal+0x19/0x20 [ 702.440278][ C1] bpf_prog_7ba5217f62dcd359+0x40/0x44 [ 702.440294][ C1] bpf_trace_run2+0x1d1/0x3c0 [ 702.440310][ C1] ? bpf_trace_run2+0xde/0x3c0 [ 702.440326][ C1] ? bpf_trace_run1+0x3b0/0x3b0 [ 702.440342][ C1] ? lock_chain_count+0x20/0x20 [ 702.440363][ C1] trace_sys_enter+0x69/0x80 [ 702.440384][ C1] syscall_trace_enter+0xf0/0x150 [ 702.440408][ C1] do_syscall_64+0x28/0xb0 [ 702.440427][ C1] ? clear_bhb_loop+0x40/0x90 [ 702.440442][ C1] ? clear_bhb_loop+0x40/0x90 [ 702.440458][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 702.440484][ C1] RIP: 0033:0x7f85cbf2adb9 [ 702.440496][ C1] Code: 64 c7 00 16 00 00 00 b8 ff ff ff ff c3 0f 1f 40 00 90 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 c7 c0 0f 00 00 00 0f 05 <0f> 1f 80 00 00 00 00 48 81 ec 48 01 00 00 49 89 d0 64 48 8b 04 25 [ 702.440509][ C1] RSP: 002b:00007f85ccdb3a80 EFLAGS: 00000246 ORIG_RAX: 000000000000000f [ 702.440524][ C1] RAX: ffffffffffffffda RBX: 00007f85cc1c5fa0 RCX: 00007f85cbf2adb9 [ 702.440536][ C1] RDX: 00007f85ccdb3a80 RSI: 00007f85ccdb3bb0 RDI: 0000000000000011 [ 702.440547][ C1] RBP: 00007f85cc011e19 R08: 0000000000000000 R09: 0000000000000000 [ 702.440557][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 702.440566][ C1] R13: 00007f85cc1c6038 R14: 00007f85cc1c5fa0 R15: 00007ffdd73fda08 [ 702.440591][ C1]