last executing test programs: 5.101524335s ago: executing program 0 (id=862): r0 = syz_open_dev$usbmon(&(0x7f0000000c40), 0x7, 0x0) ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x6}) ioctl$MON_IOCX_GETX(r0, 0x80089203, &(0x7f0000000a40)={0x0, 0x0}) 3.855213104s ago: executing program 0 (id=874): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_WOL_GET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)={0x14, r1, 0x1, 0x70bd2a, 0x0, {0x1b}}, 0x14}}, 0x0) 3.37484752s ago: executing program 0 (id=876): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r1}, 0x18) io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6}) 3.326375211s ago: executing program 3 (id=877): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10) r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, 0x0, 0x0) sendmsg$rds(r0, &(0x7f0000000380)={&(0x7f0000000040)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000500)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000002c0)=[{&(0x7f0000000600)=""/183, 0xb7}], 0x1, 0x0, 0x6}}], 0x48}, 0x0) 3.274286042s ago: executing program 0 (id=878): socket$inet6(0xa, 0xa, 0x9) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$wireguard(&(0x7f0000000840), r4) ioctl$ifreq_SIOCGIFINDEX_wireguard(r4, 0x8933, &(0x7f0000000080)={'wg2\x00'}) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e) syz_emit_ethernet(0x3e, &(0x7f0000000a40)=ANY=[@ANYBLOB="bbbebbbbbbbbaaaaaaaaaaaa86dd6070eae40008000000000000000000000000ffff0a010100fc0200000000000000000000000000010000050000"], 0x0) llistxattr(0x0, 0x0, 0x0) fsopen(0x0, 0x0) syz_emit_ethernet(0x52, 0x0, 0x0) syz_emit_ethernet(0x46, 0x0, 0x0) 3.196237533s ago: executing program 3 (id=879): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000480), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000380)={0xffffffffffffffff}, 0x2, 0x5}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000cc0)={0x3, 0x40, 0xfa00, {{0xa, 0xfffd, 0x5, @empty, 0x4}, {0xa, 0x4e23, 0x0, @loopback, 0xfffffffc}, r1, 0x400}}, 0x48) write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, 0x0, 0x0) 3.107086214s ago: executing program 3 (id=881): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000a80), 0xffffffffffffffff) sendmsg$NL802154_CMD_NEW_SEC_DEV(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)={0x2c, r1, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [@NL802154_ATTR_SEC_DEVICE={0xc, 0x2e, 0x0, 0x1, [@NL802154_DEV_ATTR_FRAME_COUNTER={0x6, 0x1, 0x1}]}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x2c}}, 0x2400c000) 2.955722596s ago: executing program 1 (id=882): openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143441, 0x98) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x3000000, &(0x7f0000000180), 0x1, 0x512, &(0x7f0000000c40)="$eJzs3W1rZFcdAPD/vcmk2d3UTFVkLdgWW9ktujNJY9so0lYQfVVQ6/s1JpMQMsmEzKRuQtEsfgBBRAU/gG8EP4Ag+xFEWND3oqKI7upL3St35kbzMJMMySSzTn4/OJlz7sP5n3PJ3LkPh3sDuLJeioh3ImIsIl6NiOlielqk2OukfLnHjz5YzFMSWfbe35JIimn7deXl8Yi4Uaw2GRFf/0rEt5LjcZs7u2sL9XptqyhXW+ub1ebO7p3V9YWV2kptY25u9o35N+dfn5/JCufqZzki3vrSn370/Z99+a1ffebbv7/7l9vfyZv1hY912h0Ri+cK0EOn7lJ7W+zLt9HWRQQbkrw/pbFhtwIAgH7kx/gfjohPto//p2OsfTQHAAAAjJLs7an4VxKRAQAAACMrjYipSNJKMRZgKtK0UumM4f1oXE/rjWbr08uN7Y2lfF5EOUrp8mq9NlOMFS5HKcnLs8UY2/3ya0fKcxHxXET8cPpau1xZbNSXhn3xAwAAAK6IGy8ePv//53TazgMAAAAjptyzAAAAAIwKp/wAAAAw+pz/AwAAwEj76rvv5inbf4/30vs722uN9+8s1ZprlfXtxcpiY2uzstJorLSf2bd+Wn31RmPzs7Gxfa/aqjVb1ebO7t31xvZG6+7qoVdgAwAAAJfouRcf/C6JiL3PX2unKJ4DCHDIH4fdAGCQxobdAGBoxofdAGBoSqcuYQ8Boy45Zf7xwTuda4Xx64tpDwAAMHi3Pn78/v9EMe/0awPA/zNjfQDg6nF3D66u0llHAN4cdEuAYflQ5+OZXvN7Pryjj/v/nWsMWXamhgEAAAMz1U5JWimO06ciTSuViGfbrwUoJcur9dpMcX7w2+nSM3l5tr1mcuqYYQAAAAAAAAAAAAAAAAAAAAAAAACgI8uSyAAAAICRFpH+OWk/zT/i1vQrU4evDhx569dP3/vxvYVWa2s2YiL5+3Q+aSIiWj8ppr+WeSUAAAAAPAU65+nF5+ywWwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAqHn86IPF/XSZcf/6xYgod4s/HpPtz8koRcT1fyQxfmC9JCLGBhB/735E3OwWP4knWZaVi1Z0i3/tguOX25ume/w0Im4MID5cZQ/y/c873b5/abzU/uz+/Rsv0nn13v+l/93/jfXY/zx7pNzL8w9/Ue0Z/37E8+Pd9z/78ZNO/EMh8sLLffbxm9/Y3e0640CV3eIfjFVtrW9Wmzu7d1bXF1ZqK7WNubnZN+bfnH99fqa6vFqvFX+7hvnBJ3755KT+X+8Rv3y4/8e2/yt99T6Lfz+89+gjnUKpW/zbL3f//b3ZI35a/PZ9qsjn82/t5/c6+YNe+PlvXjip/0s9+j95Sv9v99X/+NyrX/veH7rOObY1AIDL0NzZXVuo12tbJ2Qm+1jmkjNvPx3NGGAmno5mDCuTfbfz/3i+es65+rFMdp7Vx2MAzZg49j0di7NWmETs5XX1+Q8JAACMmP8d9J90BwkAAAAAAAAAAAAAAAAAAAC4SGd8LNlkRPS98NGYe8PpKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAif4TAAD//4RX0Xo=") 2.954922147s ago: executing program 2 (id=883): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f00000017c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10) io_setup(0x3ff, &(0x7f0000000500)=0x0) io_getevents(r2, 0x4, 0x4, &(0x7f00000000c0)=[{}, {}, {}, {}], 0x0) io_destroy(r2) 2.862764548s ago: executing program 3 (id=884): ioperm(0x2b, 0xa9, 0x3) r0 = socket$tipc(0x1e, 0x5, 0x0) sendmsg$tipc(r0, 0x0, 0x4000045) shmdt(0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) 2.72894821s ago: executing program 3 (id=886): socket$kcm(0x10, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x109301) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={0x0, r1}, 0x18) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$gtp(&(0x7f00000003c0), 0xffffffffffffffff) sendmsg$GTP_CMD_NEWPDP(r2, 0x0, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000002600)={0x0, 0xc1b6406c16078602, "5a77bd318786aeb879ca62cdab2a02fa560186d85b25a5665a3247e500f61681905db88235f8a5447dd2a2ec6e91626f068881e50f68530c2b21efb76cba37ff3111d6847e0c7f719e169a596e5fc008daefba68f6222103472bc55704cdb72b4b996ed82ccb1eaae27969d008ba7d34171113d806726615380fe65a6a0a72e19c2b60bd6276fd8bb6363d10f70da60fd53ded22c87eb2be010e4a62fb73c33424b437bb192c9d06ea6ed04983fe5c5ca033dfce0a82575ef14eee686be0fc58e384f93a13e4e8bbf599394baea3a9ca1864f0a35d6cc38fca32ad6b39905a9727d2001457df7be7e1aefe3635b2ee97c143f28def4b73905ca14d90d1f600"}) 2.605121682s ago: executing program 2 (id=889): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'dummy0\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e0000000000"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000005a40)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r1, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0) 2.475755444s ago: executing program 1 (id=890): r0 = syz_open_dev$usbmon(&(0x7f0000000c40), 0x7, 0x0) ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x6}) ioctl$MON_IOCX_GETX(r0, 0x80089203, &(0x7f0000000a40)={0x0, 0x0}) 2.388607555s ago: executing program 2 (id=892): r0 = socket(0x10, 0x803, 0x0) getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x8f) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r1, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r2], 0x3c}}, 0x0) 2.182431898s ago: executing program 2 (id=894): r0 = syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000ac0)={0x0, &(0x7f0000003040)=[@uexit={0x0, 0x18, 0x6}, @code={0x1, 0x81, {"260fc7b60e000000dfc1660f38808814d2a53c48b800000000000000000f23c00f21f835000009000f23f866baa100b05feeb9fd030000b800000000ba000000000f30b9800000c00f3235000400000f3066430f38f887000000000fc7ac9a01000000440f20c0350c000000440f22c0"}}, @code={0x1, 0x69, {"c4412cc2c20066b8cd008ee8440f01c366b878008ed0b930080000b84dcc0000ba000000000f30440fc7a82011000066baf80cb8c8d9fa8bef66bafc0c66edf2466ec7442400e7000000c74424020a000000ff2c24f3ddcf"}}, @code={0x1, 0x5b, {"c4a209aad2c74424002a000000c744240200000000c7442406000000000f0114240f01b2000000003e7ec58f49c801e6c4a1ff2cef66b8ba008ee044de12c4819173d000672e640f01c4"}}, @uexit={0x0, 0x18, 0x1ff}, @uexit={0x0, 0x18, 0x6abd}, @code={0x1, 0x54, {"0f09c4237917ba2953000007b9ab080000b824f044c0ba000000000f30e3000fc75895c461fa7e47dc0f0136f2650f07c4c2650cb20f000000c442f13cbcb100300000"}}, @uexit={0x0, 0x18, 0x6f6}, @uexit={0x0, 0x18, 0x7f}, @code={0x1, 0x6e, {"0f00e7360f01bfe6000000b9d6020000b809000000ba000000000f30c40261037c1e0066baf80cb83886178eef66bafc0cb89a657fb4ef0f01c9460f0fa723630000a7660f1efe66bad004ecb924030000b8bee70000ba000000000f30"}}, @code={0x1, 0x4b, {"440f20c03506000000440f22c0c4c12966bd934000000f093e420f01da470f00d7b9960a00000f320f01c466420f388086000000000f3066f36d"}}, @code={0x1, 0x66, {"48b8f028be59000000000f23c00f21f835010009000f23f8406f65460f01747eeac744240000000000c744240205000000c7442406000000000f011c24c4a1dd71d2d8f3af3237f466ba2000b0a1eec4631d5ef100"}}, @uexit={0x0, 0x18, 0x8001}, @code={0x1, 0x6a, {"2e42f60b00440f01cf440f0f6ffda0450f01c9c4e2790eb80000008066baf80cb8eefcbf8cef66bafc0c66edb805000000b9050000800f01c1c4c2d5ae3fb8010000000f01d9c74424002b010000c744240200900000ff2c24"}}, @code={0x1, 0x87, {"48b809000000000000000f23d00f21f8350000000e0f23f8c4c37904da00b9d20a0000b80d000000ba000000000f30b9800000c00f3235004000000f300f01c848b8ee6c0000000000000f23d80f21f835c00000e00f23f82e0f01cac74424009e000000c744240202000000ff1c24470fc71b0f00d6"}}, @uexit={0x0, 0x18, 0x8}, @uexit={0x0, 0x18, 0x3}, @code={0x1, 0x4e, {"36f246ac0fc75b000f01c8440f01300fc76ee8673e0f21988f4978d3c5b985010000b8b6000000ba000000000f30660f6b9520000000c482f9a664dbf4"}}, @uexit={0x0, 0x18}, @code={0x1, 0x72, {"dbe0e15ec744240049000000c74424025af80000ff1c24c442c90002660f388106f2420f11a300680000b9ca080000b808000000ba000000000f300f20c035040000000f22c0c744240002010000c744240256de0000ff1c24b8010000000f01d9"}}, @uexit={0x0, 0x18, 0x101}], 0x559}) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYRES8=0x0], 0x1, 0x5514, &(0x7f000000b2c0)="$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") r1 = socket(0x10, 0x3, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r4, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x0}, 0x1000000000000, 0x0, 0xffffffffffffffff) sendmsg$nl_route_sched(r1, 0x0, 0x0) readlinkat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0xc}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x14, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) 1.846703733s ago: executing program 4 (id=897): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000a50000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0, 0x0, 0x507}, 0x18) readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, 0x0, 0x0) syz_emit_ethernet(0x83, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030086dd601b8b97004d88c19edace00000000000000002100000002ff02000000000000000000000000000104004e20004d"], 0x0) ppoll(&(0x7f0000000d40)=[{r1}], 0x25, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0) 1.606786886s ago: executing program 4 (id=898): r0 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0xc0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) pwritev2(r0, 0x0, 0x0, 0x7800, 0x0, 0x3) 1.37074664s ago: executing program 4 (id=899): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="fc01000019000100000000000000000000000000000000000000000000000000fe8000000000000000000000000000bb00000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000005000000000000000000000000000000000000000000000000000000000000004401050020010000000000000000000000000000000000022b0000000a00"], 0x1fc}}, 0x0) 1.270225302s ago: executing program 1 (id=900): r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000040)={{{@in=@rand_addr=0x64010100, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x4e23, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x2000, 0x0, 0x0, 0x5, 0xfffffffffffffffa}, {0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0x1, 0x0, 0x3}, {{@in=@empty, 0x0, 0x2b}, 0xa, @in6=@empty, 0x3507, 0x4}}, 0xe8) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) 891.617087ms ago: executing program 4 (id=901): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r1}, 0x18) io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6}) 822.584798ms ago: executing program 1 (id=902): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0) r4 = socket(0x400000000010, 0x3, 0x0) r5 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0xfff2, 0xb}, {}, {0x7, 0xd}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8864}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8848}, 0x20000800) 817.037048ms ago: executing program 2 (id=903): socket$nl_route(0x10, 0x3, 0x0) socket$inet_udp(0x2, 0x2, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) socket$netlink(0x10, 0x3, 0x0) r1 = syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1) openat$nci(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) bind$nfc_llcp(r1, &(0x7f0000000080)={0x27, 0x0, 0x0, 0x5, 0x0, 0x1, "75287ad1ee602ec4452a04ea7cdcd151bb2cd9893bc31f80718316d9bd3517076db9ad1f6a120d8be6d7f81cd81ec2757d0386e7d95f0669b740a5418d69d0", 0x4}, 0x60) 691.26899ms ago: executing program 1 (id=904): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000280)='./file1\x00', 0x1000040, &(0x7f0000000240)=ANY=[], 0x81, 0x1237, &(0x7f00000006c0)="$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") r0 = open(&(0x7f00000000c0)='.\x00', 0x10000, 0x0) getdents(r0, 0x0, 0x0) 599.679771ms ago: executing program 4 (id=905): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'bond0\x00'}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$nl_xfrm(r0, 0x0, 0x0) 398.532954ms ago: executing program 4 (id=906): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000044850000000e0000003f0000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r0}, 0x18) syz_clone(0x2002000, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r2 = syz_init_net_socket$llc(0x1a, 0x801, 0x0) bind$llc(r2, &(0x7f0000000080), 0x10) listen(r2, 0x0) accept4$llc(r2, 0x0, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 368.511834ms ago: executing program 0 (id=907): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000380)='kmem_cache_free\x00', r0, 0x0, 0xfffffffffffffffb}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c0002800500010000000000080007"], 0x64}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa2000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000500)=ANY=[@ANYBLOB="6c000000000101040000000000000000020000002c0001801400018008000100e000000108000200ac1414000c00028005000100000000000600034000040000240002801400018008000100e000000108000200e00000010c0002800500010000000000080007"], 0x6c}}, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="3800000000010104000000000000000002000000240002801400018008000100e000000108000200e00000010c000280050001"], 0x38}, 0x1, 0x0, 0x0, 0xa040}, 0x0) 285.276166ms ago: executing program 2 (id=908): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x0, 0x0) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000400)={0xffffffffffffffff, 0x3, 0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) socketpair$unix(0x1, 0x1, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r4 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TCSETA(r4, 0x5406, 0x0) ioctl$TIOCL_GETMOUSEREPORTING(r4, 0x5412, &(0x7f00000006c0)=0xa) socket(0x10, 0x803, 0x0) remap_file_pages(&(0x7f0000603000/0x3000)=nil, 0x3000, 0x0, 0x4, 0x1c0000) mremap(&(0x7f000040b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00004b3000/0x4000)=nil) 198.709417ms ago: executing program 1 (id=909): bpf$MAP_CREATE(0x0, 0x0, 0x50) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r1, 0x0, 0x13}, 0x18) fcntl$lock(0xffffffffffffffff, 0x25, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) readv(r2, 0x0, 0x0) readv(r2, &(0x7f0000001240)=[{&(0x7f0000000040)=""/73, 0x49}], 0x1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffc}, 0x18) 139.184418ms ago: executing program 0 (id=910): bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xb, 0x0, &(0x7f0000000300)='GPL\x00', 0xc, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f0000000200)='./file1\x00', 0x4900, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000180)='f2fs_direct_IO_enter\x00', r0, 0x0, 0xcdf5}, 0x18) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002680)={0x11, 0xc, &(0x7f00000010c0)=ANY=[@ANYRES32], &(0x7f0000002640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000540)='selinux_audited\x00', r1, 0x0, 0x2}, 0x18) r2 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7\'\f\f\x957\xc9}\r\xa6\xaa\x0f\xca\x96\xeb', 0x42, 0x0, 0x0) mq_timedsend(r2, 0x0, 0x0, 0x6, 0x0) mq_timedsend(r2, 0x0, 0x0, 0x6, 0x0) mq_unlink(&(0x7f0000000000)='eth0\x00') close(r2) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYRES32=0x0], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, @void, @value}, 0x94) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907009875f37538e486dd6317ce6203c23c00fe80000000000000875a65969ff57b00000000000000000000000000ac1414aa2c"], 0xfdef) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8004, &(0x7f00000002c0)={[{@discard}, {@user_xattr}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x7b9, &(0x7f00000007c0)="$eJzs3d9rHNUeAPDvbJLmR3tvcuFy7+1b4EJvoHRzU2Or4EPFBxEsFPTZNmy2oWaTLdlNaULAFhF8EVR8EPSlz/6ob776A3zS/8IHaamaFis+SGR2Z5M02c2vJtloPh+YzDkzsznnO+fMzNmdYTeAQ2sw/ZOLOB4RbycR/dnyJCK6aqnOiHP17R4uLvRERCGJpaWXfkpq2zxYXCjEqtekjmaZ/0TEV29EnMytL7cyNz85VioVZ7L8cHXq6nBlbv7UlamxieJEcfrMyOjo6bNPnj2ze7H+8t38sbvvPP+/T8/99vq/b7/1dRLn4li2bnUcu2UwBrN90pXuwkc8t9uFtVnS7gqwI+mh2VE/yuN49EdHLdVC737WDADYK69FxBIAcMgkrv8AcMg0Pgd4sLhQaEzt/URif917NiJ66vE/zKb6ms7snl1P7T5o34PkkTsjSUQM7EL5gxHx4eevnOjI8mk93EsD9sONmxFxaWBw/fk/WffMwnb9f6OVS9212eCaxYft+gPt9EU6/nmq2fgvtzz+iSbjn+76sfuvxy1/8+M/d+dxy9hIOv57pv5s25rx3/JDawMdWe5vtTFfV3L5SqmYntv+HhFD0dWd5kdqmzYfuQ3d//1+q/Kz8d/H6fTzu69+lJafzle2yN3p7H70NeNj1c5vHjfwzL2b0Zcl18SfLLd/0mL8e2GLZbzw9JsftFqXxp/G25jWx7+3lm5FnGja/ittmWz4fOJwrTsMNzpFE599/35fq/JXt386peWn892PtLl7N6PWAZJkZR/U1yzHP5Csfl6zsv0yvr3V/2WrdZvH37T/jx1JXq6lj2TLro9VqzMjEUeSF9cvP73y2ka+sX0a/9B/mx//9WKb9//0PeGlLcbfeffHT3Ye/95K4x/fuP+vaf+ebPHKks0Stx9OdrQqf2vtP1pLDWVL0vbfLK6t1GtnvRkAAAAAAAAAAAAAAAAAAAAAAAAAti8XEcciyeWX07lcPl//De9/Rl+uVK5UT14uz06PR+23sgeiK9f4qsv+Vd+HOpJ9H34jf3pN/omI+EdEvNfdW8vnC+XSeLuDBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDM0Ra//5/6obvdtQMA9kxPuysAAOw7138AOHy2d/3v3bN6AAD7x/t/ADh8tnz9v7S39QAA9o/3/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOyxC+fPp9PSr4sLhTQ/fm1udrJ87dR4sTKZn5ot5Avlmav5iXJ5olTMF8pTLf/RjfqsVC5fHY3p2evD1WKlOlyZm784VZ6drl68MjU2UbxY7Nq3yAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg6ypz85NjpVJx5i+RuLES2C7/5962xtV3MHbvqkRnHIhqHOhEdxyIauwwsfos0duGMxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAn8MfAQAA//94WBdi") r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1) pwrite64(r3, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x107842, 0x42) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5}, 0x38) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) r4 = socket$inet6(0xa, 0x80002, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a8, 0x0, 0x940c, 0x3002, 0x0, 0x2c0, 0x328, 0x3d8, 0x3d8, 0x328, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0, 0x4001}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x308) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x1001, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 0s ago: executing program 3 (id=911): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000680)='kfree\x00', r1}, 0x18) r2 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) socket$inet_udp(0x2, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x3, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0xfffff801, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r4}, &(0x7f00000002c0), &(0x7f0000000440)=r2}, 0x20) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000700)=ANY=[@ANYRES32=r4, @ANYRES32=r3, @ANYBLOB='&\x00'], 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r2}, 0x20) kernel console output (not intermixed with test programs): NGE): vlan0: link becomes ready [ 91.173036][ T2919] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 91.196986][ T4263] device veth0_vlan entered promiscuous mode [ 91.206621][ T4257] device veth0_macvtap entered promiscuous mode [ 91.224697][ T2919] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.244590][ T4257] device veth1_macvtap entered promiscuous mode [ 91.259320][ T4263] device veth1_vlan entered promiscuous mode [ 91.267967][ T2919] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.300536][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.308569][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.328306][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 91.337808][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 91.347104][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 91.355956][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 91.364667][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 91.372891][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 91.381216][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 91.390616][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 91.446425][ T4263] device veth0_macvtap entered promiscuous mode [ 91.468995][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 91.478512][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 91.488401][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 91.498196][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.509697][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.520442][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.532949][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.544777][ T4257] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.559637][ T4263] device veth1_macvtap entered promiscuous mode [ 91.569573][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 91.577718][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 91.586813][ T2919] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.596872][ T2919] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.597047][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 91.613813][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 91.637057][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.650476][ T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.656300][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.668956][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.675291][ T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.680471][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.697090][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 91.708567][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.728219][ T4263] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 91.736166][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.753064][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.764835][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.776321][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.787897][ T4257] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.810649][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 91.818745][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 91.828650][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 91.838334][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 91.847579][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 91.858771][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.875530][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.885951][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.896858][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.906890][ T4263] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 91.919462][ T4263] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 91.931909][ T4263] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 91.942510][ T4257] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.953528][ T129] cfg80211: failed to load regulatory.db [ 91.954491][ T4257] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.968958][ T4257] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 91.978408][ T4257] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.012657][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 92.023259][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 92.041278][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 92.058811][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 92.071397][ T4263] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.082238][ T4263] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.091277][ T4263] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.100555][ T4263] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.118476][ T4262] device veth0_vlan entered promiscuous mode [ 92.130645][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 92.138666][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 92.181425][ T4262] device veth1_vlan entered promiscuous mode [ 92.278161][ T4342] Cannot find add_set index 0 as target [ 92.342091][ T4262] device veth0_macvtap entered promiscuous mode [ 92.362802][ T2919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 92.390646][ T2919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 92.402941][ T2919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 92.415515][ T2919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 92.446803][ T2919] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 92.486067][ T4262] device veth1_macvtap entered promiscuous mode [ 92.496981][ T4346] loop0: detected capacity change from 0 to 1024 [ 92.509667][ T4270] Bluetooth: hci4: command 0x0419 tx timeout [ 92.515900][ T4270] Bluetooth: hci0: command 0x0419 tx timeout [ 92.545938][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.566620][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.589746][ T4270] Bluetooth: hci1: command 0x0419 tx timeout [ 92.592885][ T4346] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 92.595815][ T4270] Bluetooth: hci2: command 0x0419 tx timeout [ 92.610689][ T4258] Bluetooth: hci3: command 0x0419 tx timeout [ 92.628771][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.647802][ T4346] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2818: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 92.649189][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.679657][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 92.681328][ T4346] EXT4-fs error (device loop0): ext4_check_all_de:666: inode #12: block 7: comm syz.0.7: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 92.698507][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 92.716627][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 92.770510][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.787508][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 92.792493][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.808879][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.820224][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.830500][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.863669][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.875912][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 92.886735][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.901270][ T4262] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.935407][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 92.950028][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 93.052657][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.100296][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.119488][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.135594][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.147164][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.158628][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.168854][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.180526][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.227324][ T4262] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.252223][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 93.260672][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.260942][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.269550][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.278518][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 93.310860][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.320826][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 93.335157][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 93.375391][ T4262] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.388137][ T4262] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.404419][ T4262] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.415580][ T4262] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.630104][ T127] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 93.693371][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.715660][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.747332][ T4362] loop1: detected capacity change from 0 to 2048 [ 93.767924][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 93.974439][ T4362] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 94.034145][ T127] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e [ 94.049421][ T127] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 94.076001][ T127] usb 3-1: config 0 descriptor?? [ 94.249077][ T27] audit: type=1326 audit(1747187543.015:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4369 comm="syz.3.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 94.870136][ T4377] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.878821][ T4377] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.920892][ T27] audit: type=1326 audit(1747187543.085:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4369 comm="syz.3.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 95.060887][ T4375] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 95.663307][ T27] audit: type=1326 audit(1747187543.125:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4369 comm="syz.3.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 95.727912][ T127] ath6kl: Failed to submit usb control message: -110 [ 95.731757][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 95.738892][ T127] ath6kl: unable to send the bmi data to the device: -110 [ 95.748540][ T127] ath6kl: Unable to send get target info: -110 [ 95.757556][ T27] audit: type=1326 audit(1747187543.185:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4369 comm="syz.3.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 95.782444][ T27] audit: type=1326 audit(1747187543.185:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4369 comm="syz.3.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 95.837873][ T127] ath6kl: Failed to init ath6kl core: -110 [ 95.932661][ T127] ath6kl_usb: probe of 3-1:0.0 failed with error -110 [ 95.999157][ T4383] device batadv0 entered promiscuous mode [ 96.038201][ T4383] device vlan2 entered promiscuous mode [ 96.243796][ T4392] loop0: detected capacity change from 0 to 128 [ 96.303505][ T4392] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 96.322331][ T4392] ext4 filesystem being mounted at /6/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 96.812051][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 96.858025][ T129] usb 3-1: USB disconnect, device number 2 [ 97.150588][ T4413] loop4: detected capacity change from 0 to 2048 [ 97.214009][ T4411] loop0: detected capacity change from 0 to 2048 [ 97.261466][ T4413] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 97.359093][ T4411] EXT4-fs (loop0): failed to initialize system zone (-117) [ 97.382666][ T4411] EXT4-fs (loop0): mount failed [ 97.426326][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 97.433910][ T4421] IPVS: stopping master sync thread 4425 ... [ 97.447415][ T4425] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 97.636200][ T4429] netlink: 28 bytes leftover after parsing attributes in process `syz.4.29'. [ 97.722838][ T4431] loop0: detected capacity change from 0 to 512 [ 97.729893][ T4429] netlink: 28 bytes leftover after parsing attributes in process `syz.4.29'. [ 97.760451][ T4431] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 97.829699][ T4431] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 97.838573][ T4435] netlink: 44 bytes leftover after parsing attributes in process `syz.3.33'. [ 97.966619][ T4431] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2195: inode #15: comm syz.0.30: corrupted in-inode xattr [ 98.044099][ T4431] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.30: couldn't read orphan inode 15 (err -117) [ 98.078381][ T4431] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 98.300377][ T4450] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22 [ 98.308652][ T4450] netdevsim netdevsim4: Direct firmware load for . failed with error -22 [ 98.352114][ T4450] netdevsim netdevsim4: Falling back to sysfs fallback for: . [ 98.446473][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 98.757761][ T4464] netlink: 20 bytes leftover after parsing attributes in process `syz.0.43'. [ 99.406476][ T4479] loop0: detected capacity change from 0 to 256 [ 99.530296][ T4479] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 99.877645][ T27] audit: type=1326 audit(1747187548.645:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4482 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 99.927623][ T27] audit: type=1326 audit(1747187548.695:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4482 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 100.015909][ T27] audit: type=1326 audit(1747187548.745:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4482 comm="syz.3.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 100.179307][ T27] audit: type=1326 audit(1747187548.945:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4497 comm="syz.2.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 100.247253][ T27] audit: type=1326 audit(1747187548.975:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4497 comm="syz.2.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 100.318160][ T4502] loop0: detected capacity change from 0 to 512 [ 100.334284][ T27] audit: type=1326 audit(1747187548.975:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4497 comm="syz.2.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 100.361344][ T4502] ======================================================= [ 100.361344][ T4502] WARNING: The mand mount option has been deprecated and [ 100.361344][ T4502] and is ignored by this kernel. Remove the mand [ 100.361344][ T4502] option from the mount to silence this warning. [ 100.361344][ T4502] ======================================================= [ 100.442773][ T27] audit: type=1326 audit(1747187548.975:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4497 comm="syz.2.58" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 100.471825][ T4500] loop4: detected capacity change from 0 to 8192 [ 100.506893][ T4500] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 100.740726][ T4502] EXT4-fs (loop0): orphan cleanup on readonly fs [ 101.496450][ T4502] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.60: bad orphan inode 13 [ 101.512455][ T4502] ext4_test_bit(bit=12, block=18) = 1 [ 101.518056][ T4502] is_bad_inode(inode)=0 [ 101.526807][ T4502] NEXT_ORPHAN(inode)=2130706432 [ 101.535505][ T4502] max_ino=32 [ 101.538884][ T4502] i_nlink=1 [ 101.562397][ T4502] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 101.603903][ T27] audit: type=1326 audit(1747187550.375:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4501 comm="syz.0.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 101.706689][ T27] audit: type=1326 audit(1747187550.395:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4501 comm="syz.0.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 101.732861][ T4502] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 101.826796][ T27] audit: type=1326 audit(1747187550.395:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4501 comm="syz.0.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 101.982037][ T4502] EXT4-fs warning (device loop0): ext4_multi_mount_protect:404: Unable to create kmmpd thread for loop0. [ 102.267481][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 102.702946][ T4539] loop2: detected capacity change from 0 to 256 [ 102.803867][ T4543] syz.4.74[4543] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 102.804029][ T4543] syz.4.74[4543] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 102.811705][ T4539] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 103.568667][ T4565] loop3: detected capacity change from 0 to 512 [ 103.686184][ T4565] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 103.705717][ T4565] ext4 filesystem being mounted at /16/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 104.856960][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 105.447657][ T4608] loop3: detected capacity change from 0 to 256 [ 105.503826][ T4608] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 106.035872][ T4618] netlink: 4 bytes leftover after parsing attributes in process `syz.1.101'. [ 106.220497][ T4618] syz.1.101 uses obsolete (PF_INET,SOCK_PACKET) [ 107.300676][ T27] kauditd_printk_skb: 11 callbacks suppressed [ 107.300692][ T27] audit: type=1326 audit(1747187556.075:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4627 comm="syz.4.103" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f346b98e969 code=0x0 [ 107.872833][ T4649] loop1: detected capacity change from 0 to 128 [ 107.908763][ T4649] ext4: Unknown parameter 'seclabel' [ 107.991563][ T27] audit: type=1326 audit(1747187556.765:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4648 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 108.057467][ T27] audit: type=1326 audit(1747187556.795:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4648 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 108.171965][ T27] audit: type=1326 audit(1747187556.795:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4648 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 108.189243][ T4652] loop2: detected capacity change from 0 to 128 [ 108.380203][ T27] audit: type=1326 audit(1747187556.805:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4648 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 108.393511][ T4660] syz.2.114: attempt to access beyond end of device [ 108.393511][ T4660] loop2: rw=2049, sector=145, nr_sectors = 216 limit=128 [ 108.405757][ T4658] loop1: detected capacity change from 0 to 512 [ 108.661833][ T4660] syz.2.114: attempt to access beyond end of device [ 108.661833][ T4660] loop2: rw=524288, sector=145, nr_sectors = 216 limit=128 [ 108.888330][ T4652] syz.2.114: attempt to access beyond end of device [ 108.888330][ T4652] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 109.284677][ T4658] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.117: inode #1: comm syz.1.117: iget: illegal inode # [ 109.302506][ T27] audit: type=1326 audit(1747187558.075:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4666 comm="syz.0.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 109.352547][ T4658] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.117: error while reading EA inode 1 err=-117 [ 109.382634][ T4658] EXT4-fs (loop1): 1 orphan inode deleted [ 109.388457][ T4658] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 109.404240][ T27] audit: type=1326 audit(1747187558.115:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4666 comm="syz.0.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 109.519758][ T27] audit: type=1326 audit(1747187558.115:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4666 comm="syz.0.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 109.634289][ T27] audit: type=1326 audit(1747187558.115:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4666 comm="syz.0.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=197 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 109.999451][ T27] audit: type=1326 audit(1747187558.115:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4666 comm="syz.0.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 110.322191][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 110.807354][ T4702] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 110.847945][ T4702] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 110.886578][ T4702] netdevsim netdevsim2: Falling back to sysfs fallback for: . [ 111.972769][ T4701] infiniband syz!: set active [ 111.999450][ T4701] infiniband syz!: added team_slave_0 [ 112.007054][ T4701] rdma_rxe: unable to create cq [ 112.050023][ T4701] infiniband syz!: Couldn't create ib_mad CQ [ 112.056622][ T4701] infiniband syz!: Couldn't open port 1 [ 112.124662][ T4713] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22 [ 112.168519][ T4713] netdevsim netdevsim0: Direct firmware load for . failed with error -22 [ 112.178041][ T4701] RDS/IB: syz!: added [ 112.190177][ T4701] smc: adding ib device syz! with port count 1 [ 112.206691][ T4713] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 112.214791][ T4701] smc: ib device syz! port 1 has pnetid [ 112.249691][ T4717] tipc: Started in network mode [ 112.254812][ T4717] tipc: Node identity 4, cluster identity 4711 [ 112.299177][ T4717] tipc: Node number set to 4 [ 113.366411][ T4725] loop1: detected capacity change from 0 to 512 [ 113.501046][ T4725] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.136: inode #1: comm syz.1.136: iget: illegal inode # [ 113.585751][ T4725] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.136: error while reading EA inode 1 err=-117 [ 113.620116][ T4731] capability: warning: `syz.0.138' uses deprecated v2 capabilities in a way that may be insecure [ 113.662095][ T4725] EXT4-fs (loop1): 1 orphan inode deleted [ 113.668082][ T4725] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 113.795659][ T4733] netlink: 'syz.2.139': attribute type 4 has an invalid length. [ 114.500155][ T27] kauditd_printk_skb: 1 callbacks suppressed [ 114.500170][ T27] audit: type=1326 audit(1747187563.275:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4740 comm="syz.2.142" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x0 [ 114.578344][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 115.061150][ T4760] mmap: syz.1.149 (4760) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 116.317485][ T4777] loop1: detected capacity change from 0 to 512 [ 116.384688][ T4777] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.155: inode #1: comm syz.1.155: iget: illegal inode # [ 116.408911][ T4777] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.155: error while reading EA inode 1 err=-117 [ 116.455760][ T4777] EXT4-fs (loop1): 1 orphan inode deleted [ 116.481650][ T4777] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 116.519178][ T4783] netlink: 12 bytes leftover after parsing attributes in process `syz.0.156'. [ 117.525847][ T4792] loop4: detected capacity change from 0 to 512 [ 117.534602][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 117.604433][ T4792] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 117.690279][ T4792] Quota error (device loop4): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 117.713940][ T4792] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 117.730249][ T4792] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.160: Failed to acquire dquot type 0 [ 117.746212][ T4792] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 117.767941][ T4792] EXT4-fs (loop4): 1 truncate cleaned up [ 117.774911][ T4792] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 117.889836][ T27] audit: type=1326 audit(1747187566.655:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4793 comm="syz.0.161" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x0 [ 117.901109][ T4807] loop3: detected capacity change from 0 to 512 [ 117.923961][ T4807] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 118.180085][ T4807] EXT4-fs (loop3): 1 orphan inode deleted [ 118.216097][ T4807] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 118.288948][ T4807] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 118.865025][ T4622] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 118.895698][ T4622] EXT4-fs error (device loop3): ext4_release_dquot:6838: comm kworker/u4:11: Failed to release dquot type 1 [ 118.985767][ T4807] EXT4-fs (loop3): unmounting filesystem. [ 119.052390][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 119.374796][ T4830] loop3: detected capacity change from 0 to 512 [ 119.799108][ T4830] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.172: inode #1: comm syz.3.172: iget: illegal inode # [ 120.129963][ T4830] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.172: error while reading EA inode 1 err=-117 [ 120.235733][ T4830] EXT4-fs (loop3): 1 orphan inode deleted [ 120.244990][ T4830] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 120.269057][ T4835] rdma_rxe: rxe_register_device failed with error -23 [ 120.290427][ T4835] rdma_rxe: failed to add team_slave_0 [ 121.278111][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 121.703043][ T4849] netlink: 96 bytes leftover after parsing attributes in process `syz.4.168'. [ 122.862648][ T4859] netlink: 8 bytes leftover after parsing attributes in process `syz.2.180'. [ 122.876970][ T4859] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 122.921642][ T4859] netlink: 4 bytes leftover after parsing attributes in process `syz.2.180'. [ 123.291532][ T4861] loop0: detected capacity change from 0 to 40427 [ 123.343220][ T4861] F2FS-fs (loop0): Found nat_bits in checkpoint [ 123.469720][ T4861] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 123.645274][ T4882] bridge: RTM_NEWNEIGH with invalid ether address [ 124.555131][ T4886] loop4: detected capacity change from 0 to 512 [ 124.604506][ T4886] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.189: inode #1: comm syz.4.189: iget: illegal inode # [ 124.677667][ T4886] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.189: error while reading EA inode 1 err=-117 [ 124.714233][ T4886] EXT4-fs (loop4): 1 orphan inode deleted [ 124.729475][ T4886] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 126.110948][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 126.413776][ T27] audit: type=1326 audit(1747187575.175:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.3.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 126.462004][ T27] audit: type=1326 audit(1747187575.175:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.3.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 126.505368][ T27] audit: type=1326 audit(1747187575.175:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.3.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 126.703684][ T27] audit: type=1326 audit(1747187575.175:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.3.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 126.915756][ T4920] netlink: 96 bytes leftover after parsing attributes in process `syz.2.196'. [ 127.689337][ C0] sched: RT throttling activated [ 127.919432][ T27] audit: type=1326 audit(1747187575.175:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.3.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 128.049484][ T27] audit: type=1326 audit(1747187575.185:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.3.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 128.107020][ T27] audit: type=1326 audit(1747187575.185:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.3.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 128.129821][ T27] audit: type=1326 audit(1747187575.185:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.3.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 128.152548][ T27] audit: type=1326 audit(1747187575.185:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.3.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 128.159034][ T4927] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 128.177442][ T27] audit: type=1326 audit(1747187575.185:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.3.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 128.181740][ T4927] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 128.330972][ T4933] loop1: detected capacity change from 0 to 512 [ 128.389683][ T4933] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.204: inode #1: comm syz.1.204: iget: illegal inode # [ 128.437956][ T4933] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.204: error while reading EA inode 1 err=-117 [ 128.487937][ T4933] EXT4-fs (loop1): 1 orphan inode deleted [ 128.493954][ T4933] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 129.351201][ T4927] infiniband syz2: set active [ 129.387818][ T4927] infiniband syz2: added veth0_to_bond [ 129.408574][ T4927] rdma_rxe: unable to create cq [ 129.435514][ T4927] infiniband syz2: Couldn't create ib_mad CQ [ 129.469649][ T4927] infiniband syz2: Couldn't open port 1 [ 129.546264][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 129.565867][ T4950] syz.2.210[4950] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 129.565987][ T4950] syz.2.210[4950] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 129.600495][ T4927] RDS/IB: syz2: added [ 129.628883][ T4927] smc: adding ib device syz2 with port count 1 [ 129.635598][ T4927] smc: ib device syz2 port 1 has pnetid [ 130.361558][ T4963] loop1: detected capacity change from 0 to 256 [ 130.441161][ T4963] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 130.670201][ T4965] Zero length message leads to an empty skb [ 131.083529][ T4973] loop0: detected capacity change from 0 to 40427 [ 131.114548][ T4973] F2FS-fs (loop0): Found nat_bits in checkpoint [ 131.166477][ T4973] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 131.383677][ T4987] loop1: detected capacity change from 0 to 512 [ 131.696743][ T4987] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.219: inode #1: comm syz.1.219: iget: illegal inode # [ 131.754437][ T4987] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.219: error while reading EA inode 1 err=-117 [ 131.824697][ T4987] EXT4-fs (loop1): 1 orphan inode deleted [ 131.927909][ T4987] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 132.995123][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.015700][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.467407][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 134.084738][ T27] kauditd_printk_skb: 6 callbacks suppressed [ 134.084754][ T27] audit: type=1326 audit(1747187582.855:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5018 comm="syz.4.230" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f346b98e969 code=0x0 [ 134.276174][ T27] audit: type=1326 audit(1747187582.995:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5034 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 134.389199][ T27] audit: type=1326 audit(1747187582.995:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5034 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 134.488571][ T5038] loop3: detected capacity change from 0 to 512 [ 134.499839][ T27] audit: type=1326 audit(1747187582.995:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5034 comm="syz.3.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 134.538143][ T5038] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 134.571416][ T5038] EXT4-fs (loop3): 1 truncate cleaned up [ 134.577285][ T5038] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 134.645708][ T5038] EXT4-fs error (device loop3): mb_free_blocks:1815: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 134.956799][ T5038] EXT4-fs (loop3): Remounting filesystem read-only [ 135.338882][ T5055] fuse: Bad value for 'fd' [ 135.851715][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 135.988962][ T5063] loop2: detected capacity change from 0 to 512 [ 136.096479][ T5063] EXT4-fs (loop2): 1 orphan inode deleted [ 136.109610][ T5063] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 136.121952][ T4622] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 136.129075][ T5063] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 136.152830][ T4622] EXT4-fs error (device loop2): ext4_release_dquot:6838: comm kworker/u4:11: Failed to release dquot type 1 [ 136.205187][ T5076] netlink: 'syz.4.251': attribute type 16 has an invalid length. [ 136.239666][ T5076] netlink: 'syz.4.251': attribute type 17 has an invalid length. [ 136.240625][ T5063] EXT4-fs (loop2): unmounting filesystem. [ 136.282462][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 136.319839][ T5076] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 136.343810][ T5076] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 136.408925][ T5076] netlink: 4 bytes leftover after parsing attributes in process `syz.4.251'. [ 136.464427][ T27] audit: type=1326 audit(1747187585.235:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5079 comm="syz.1.253" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x0 [ 137.126660][ T5102] 9pnet: p9_errstr2errno: server reported unknown error [ 138.291053][ T5120] loop0: detected capacity change from 0 to 512 [ 138.312412][ T5120] EXT4-fs: Ignoring removed oldalloc option [ 138.352819][ T5120] EXT4-fs error (device loop0): ext4_xattr_inode_iget:400: comm syz.0.265: Parent and EA inode have the same ino 15 [ 138.368713][ T5120] EXT4-fs (loop0): Remounting filesystem read-only [ 138.375675][ T5120] EXT4-fs error (device loop0): ext4_xattr_inode_iget:400: comm syz.0.265: Parent and EA inode have the same ino 15 [ 138.394686][ T5120] EXT4-fs (loop0): Remounting filesystem read-only [ 138.402758][ T5120] EXT4-fs (loop0): 1 orphan inode deleted [ 138.408635][ T5120] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 138.432412][ T27] audit: type=1326 audit(1747187587.205:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5119 comm="syz.0.265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 138.460490][ T27] audit: type=1326 audit(1747187587.205:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5119 comm="syz.0.265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 138.505240][ T27] audit: type=1326 audit(1747187587.225:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5119 comm="syz.0.265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 138.529097][ T27] audit: type=1326 audit(1747187587.225:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5119 comm="syz.0.265" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 138.604591][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 138.817361][ T5139] loop0: detected capacity change from 0 to 2048 [ 138.890885][ T5139] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 139.738390][ T27] kauditd_printk_skb: 22 callbacks suppressed [ 139.738405][ T27] audit: type=1326 audit(1747187588.505:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.3.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 139.768417][ T27] audit: type=1326 audit(1747187588.535:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.3.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 139.793339][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 139.829705][ T27] audit: type=1326 audit(1747187588.595:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.3.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 139.910192][ T27] audit: type=1326 audit(1747187588.605:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.3.274" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 141.042990][ T5179] loop0: detected capacity change from 0 to 2048 [ 141.740522][ T5179] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 141.966093][ T27] audit: type=1326 audit(1747187590.735:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5187 comm="syz.4.287" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f346b98e969 code=0x0 [ 142.042243][ T5194] loop1: detected capacity change from 0 to 8192 [ 142.061296][ T5194] FAT-fs (loop1): Unrecognized mount option "&ó #ó0»!T—.yÕ„¯÷—Ž£ ÎÆ°*Æì ì#Ë" or missing value [ 142.121454][ T4374] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 142.141624][ T4374] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 142.155900][ T4374] EXT4-fs (loop0): This should not happen!! Data will be lost [ 142.155900][ T4374] [ 142.166407][ T4374] EXT4-fs (loop0): Total free blocks count 0 [ 142.172559][ T4374] EXT4-fs (loop0): Free/Dirty block details [ 142.178788][ T4374] EXT4-fs (loop0): free_blocks=2415919104 [ 142.184623][ T4374] EXT4-fs (loop0): dirty_blocks=1920 [ 142.191257][ T4374] EXT4-fs (loop0): Block reservation details [ 142.197289][ T4374] EXT4-fs (loop0): i_reserved_data_blocks=120 [ 142.208593][ T4374] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 1890 with error 28 [ 142.748577][ T5213] netlink: 4 bytes leftover after parsing attributes in process `syz.3.296'. [ 142.985675][ T5218] xt_connbytes: Forcing CT accounting to be enabled [ 143.009929][ T5218] Cannot find set identified by id 0 to match [ 143.245936][ T5218] netlink: 4 bytes leftover after parsing attributes in process `syz.0.298'. [ 143.856895][ T5231] loop4: detected capacity change from 0 to 2048 [ 143.958987][ T5231] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 144.065341][ T5218] device hsr_slave_1 left promiscuous mode [ 144.100470][ T5238] netlink: 'syz.2.304': attribute type 4 has an invalid length. [ 144.313148][ T5249] netlink: 12 bytes leftover after parsing attributes in process `syz.2.308'. [ 144.430508][ T27] audit: type=1326 audit(1747187593.205:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5244 comm="syz.3.306" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x0 [ 144.595317][ T5255] netlink: 388 bytes leftover after parsing attributes in process `syz.2.309'. [ 144.721048][ T5255] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.770453][ T4321] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 144.806396][ T4321] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 144.824247][ T4321] EXT4-fs (loop4): This should not happen!! Data will be lost [ 144.824247][ T4321] [ 144.837687][ T4321] EXT4-fs (loop4): Total free blocks count 0 [ 144.844891][ T4321] EXT4-fs (loop4): Free/Dirty block details [ 144.851916][ T4321] EXT4-fs (loop4): free_blocks=2415919104 [ 144.857792][ T4321] EXT4-fs (loop4): dirty_blocks=6304 [ 144.863229][ T4321] EXT4-fs (loop4): Block reservation details [ 144.869380][ T4321] EXT4-fs (loop4): i_reserved_data_blocks=394 [ 144.880130][ T4321] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28 [ 144.920255][ T5255] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.061684][ T5255] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.113081][ T5260] loop1: detected capacity change from 0 to 164 [ 145.213074][ T5260] process 'syz.1.311' launched '/dev/fd/4' with NULL argv: empty string added [ 145.253717][ T5255] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.288270][ T5260] syz.1.311: attempt to access beyond end of device [ 145.288270][ T5260] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 145.326602][ T5260] syz.1.311: attempt to access beyond end of device [ 145.326602][ T5260] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 146.239378][ T5255] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 146.342114][ T5277] netlink: 8 bytes leftover after parsing attributes in process `syz.4.317'. [ 146.346278][ T5255] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 146.400407][ T5255] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 146.439123][ T5255] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 146.743123][ T5280] loop0: detected capacity change from 0 to 40427 [ 146.796896][ T5287] loop3: detected capacity change from 0 to 2048 [ 146.841707][ T5280] F2FS-fs (loop0): Found nat_bits in checkpoint [ 146.896316][ T5280] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 147.128113][ T5287] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 147.153923][ T5305] netlink: 8 bytes leftover after parsing attributes in process `wÞ£ÿ'. [ 147.605614][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 147.849601][ T5311] loop4: detected capacity change from 0 to 512 [ 147.888752][ T5311] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.327: inode #1: comm syz.4.327: iget: illegal inode # [ 148.288051][ T5311] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.327: error while reading EA inode 1 err=-117 [ 148.617820][ T5311] EXT4-fs (loop4): 1 orphan inode deleted [ 148.639899][ T5311] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 149.417188][ T5325] loop1: detected capacity change from 0 to 1024 [ 149.445624][ T5325] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (12806!=20869) [ 149.501253][ T5325] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c018, mo2=0002] [ 149.539494][ T5325] System zones: 0-1, 3-36 [ 149.566404][ T5325] EXT4-fs (loop1): orphan cleanup on readonly fs [ 149.578960][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 149.641391][ T5325] EXT4-fs (loop1): 1 orphan inode deleted [ 149.656606][ T5325] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 149.675831][ T27] audit: type=1326 audit(1747187598.445:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5330 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 149.734522][ T27] audit: type=1326 audit(1747187598.445:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5330 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 149.770641][ T27] audit: type=1326 audit(1747187598.445:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5330 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 149.820848][ T5336] xt_CT: You must specify a L4 protocol and not use inversions on it [ 149.849811][ T27] audit: type=1326 audit(1747187598.445:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5330 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 149.921521][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 149.966265][ T27] audit: type=1326 audit(1747187598.445:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5330 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 150.066503][ T27] audit: type=1326 audit(1747187598.445:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5330 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 150.116149][ T5344] netlink: 32 bytes leftover after parsing attributes in process `syz.0.338'. [ 150.126868][ T27] audit: type=1326 audit(1747187598.445:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5330 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 150.242867][ T5347] loop1: detected capacity change from 0 to 512 [ 150.320465][ T5347] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 150.344130][ T27] audit: type=1326 audit(1747187598.445:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5330 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 150.387685][ T5347] ext4 filesystem being mounted at /73/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 150.577224][ T27] audit: type=1326 audit(1747187598.445:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5330 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 150.602876][ T27] audit: type=1326 audit(1747187598.445:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5330 comm="syz.3.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 151.637950][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 151.645339][ T5367] bridge: RTM_NEWNEIGH with invalid ether address [ 153.156285][ T5394] netlink: 16 bytes leftover after parsing attributes in process `syz.0.357'. [ 153.238418][ T5393] loop1: detected capacity change from 0 to 164 [ 153.316218][ T5393] syz.1.356: attempt to access beyond end of device [ 153.316218][ T5393] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 153.365548][ T5393] syz.1.356: attempt to access beyond end of device [ 153.365548][ T5393] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 153.717384][ T5414] netlink: 4 bytes leftover after parsing attributes in process `syz.4.367'. [ 153.735274][ T5414] netlink: 4 bytes leftover after parsing attributes in process `syz.4.367'. [ 153.824938][ T5420] netlink: 16 bytes leftover after parsing attributes in process `syz.0.370'. [ 154.829138][ T27] kauditd_printk_skb: 19 callbacks suppressed [ 154.829155][ T27] audit: type=1326 audit(1747187603.595:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5426 comm="syz.2.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 154.882896][ T27] audit: type=1326 audit(1747187603.655:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5426 comm="syz.2.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 154.930095][ T27] audit: type=1326 audit(1747187603.675:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5426 comm="syz.2.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 155.841437][ T27] audit: type=1326 audit(1747187604.615:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5426 comm="syz.2.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 155.939613][ T27] audit: type=1326 audit(1747187604.615:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5426 comm="syz.2.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 156.026434][ T27] audit: type=1326 audit(1747187604.635:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5439 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 156.094271][ T27] audit: type=1326 audit(1747187604.635:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5439 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 156.124028][ T5449] netlink: 8 bytes leftover after parsing attributes in process `syz.3.383'. [ 156.159941][ T27] audit: type=1326 audit(1747187604.675:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5426 comm="syz.2.373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 156.229387][ T27] audit: type=1326 audit(1747187604.695:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5439 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 156.302995][ T27] audit: type=1326 audit(1747187604.695:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5439 comm="syz.3.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 156.345336][ T5457] usb usb7: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 156.364262][ T5459] syz.0.387[5459] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 156.364374][ T5459] syz.0.387[5459] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 157.844801][ T5491] loop1: detected capacity change from 0 to 512 [ 157.901144][ T5491] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 157.946177][ T5491] ext4 filesystem being mounted at /86/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 158.080540][ T5498] netlink: 4 bytes leftover after parsing attributes in process `syz.0.397'. [ 158.306224][ T5510] loop4: detected capacity change from 0 to 512 [ 158.323069][ T5510] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 158.355357][ T5510] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 158.386612][ T5510] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2195: inode #15: comm syz.4.402: corrupted in-inode xattr [ 158.409506][ T5510] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.402: couldn't read orphan inode 15 (err -117) [ 158.460459][ T5510] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 158.534958][ T5518] netlink: 4 bytes leftover after parsing attributes in process `syz.2.404'. [ 158.566280][ T5518] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 158.587811][ T5518] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 158.596670][ T5518] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 158.604296][ T5518] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 159.468219][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 159.536553][ T5527] device wireguard0 entered promiscuous mode [ 159.669683][ T5534] loop1: detected capacity change from 0 to 256 [ 159.750556][ T5534] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 159.784461][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 160.322804][ T5554] loop0: detected capacity change from 0 to 4096 [ 160.332586][ T5558] loop2: detected capacity change from 0 to 512 [ 160.591949][ T5554] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 160.610101][ T5558] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 160.783215][ T5558] ext4 filesystem being mounted at /87/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 161.103217][ T27] kauditd_printk_skb: 3 callbacks suppressed [ 161.103233][ T27] audit: type=1800 audit(1747187609.875:136): pid=5558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.418" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 161.197005][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 161.467488][ T27] audit: type=1326 audit(1747187610.235:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5573 comm="syz.4.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346b98e969 code=0x7ffc0000 [ 161.473961][ T5572] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.519960][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 161.560264][ T27] audit: type=1326 audit(1747187610.235:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5573 comm="syz.4.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f346b98e969 code=0x7ffc0000 [ 161.604834][ T27] audit: type=1326 audit(1747187610.245:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5573 comm="syz.4.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346b98e969 code=0x7ffc0000 [ 161.608239][ T5580] loop4: detected capacity change from 0 to 2048 [ 161.659793][ T5584] syz.3.429[5584] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 161.659892][ T5584] syz.3.429[5584] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 161.666167][ T27] audit: type=1326 audit(1747187610.245:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5573 comm="syz.4.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f346b98e969 code=0x7ffc0000 [ 161.725774][ T27] audit: type=1326 audit(1747187610.245:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5573 comm="syz.4.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346b98e969 code=0x7ffc0000 [ 161.753016][ T5579] Falling back ldisc for ttyS3. [ 161.761813][ T27] audit: type=1326 audit(1747187610.245:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5573 comm="syz.4.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f346b98e969 code=0x7ffc0000 [ 161.788148][ T5572] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 161.801901][ T27] audit: type=1326 audit(1747187610.245:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5573 comm="syz.4.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346b98e969 code=0x7ffc0000 [ 161.858647][ T27] audit: type=1326 audit(1747187610.245:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5573 comm="syz.4.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f346b98e969 code=0x7ffc0000 [ 161.885030][ T27] audit: type=1326 audit(1747187610.565:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5573 comm="syz.4.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f346b98e969 code=0x7ffc0000 [ 162.012702][ T5572] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 162.222017][ T5595] loop2: detected capacity change from 0 to 256 [ 162.251245][ T5572] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 162.285567][ T5595] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 163.066520][ T5572] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.156544][ T5572] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.232479][ T5572] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.262750][ T5604] syz.2.434 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 163.286895][ T5572] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.368983][ T5608] loop3: detected capacity change from 0 to 512 [ 163.402960][ T5607] loop0: detected capacity change from 0 to 1024 [ 163.470543][ T5607] EXT4-fs error (device loop0): ext4_acquire_dquot:6802: comm syz.0.436: Failed to acquire dquot type 0 [ 163.487245][ T5608] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 163.524595][ T5608] ext4 filesystem being mounted at /93/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 163.541763][ T5607] EXT4-fs (loop0): 1 truncate cleaned up [ 163.567329][ T5607] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 163.610120][ T5607] EXT4-fs (loop0): unmounting filesystem. [ 163.623524][ T5614] loop1: detected capacity change from 0 to 2048 [ 163.712688][ T5614] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 164.068620][ T5626] loop2: detected capacity change from 0 to 512 [ 164.271199][ T5626] EXT4-fs (loop2): 1 orphan inode deleted [ 164.299674][ T5626] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 164.319712][ T4764] EXT4-fs error (device loop2): ext4_release_dquot:6838: comm kworker/u4:17: Failed to release dquot type 1 [ 164.358918][ T5626] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 164.370839][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 165.225893][ T4321] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 165.280453][ T4321] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 165.293646][ T5626] EXT4-fs (loop2): unmounting filesystem. [ 165.314881][ T4321] EXT4-fs (loop1): This should not happen!! Data will be lost [ 165.314881][ T4321] [ 165.394312][ T4321] EXT4-fs (loop1): Total free blocks count 0 [ 165.424592][ T4321] EXT4-fs (loop1): Free/Dirty block details [ 165.430692][ T4321] EXT4-fs (loop1): free_blocks=2415919104 [ 165.437381][ T4321] EXT4-fs (loop1): dirty_blocks=3248 [ 165.445545][ T4321] EXT4-fs (loop1): Block reservation details [ 165.451747][ T4321] EXT4-fs (loop1): i_reserved_data_blocks=203 [ 165.468388][ T4321] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 2048 with error 28 [ 165.487894][ T5637] loop3: detected capacity change from 0 to 256 [ 165.585189][ T5637] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 166.149444][ T5650] device wireguard0 entered promiscuous mode [ 167.084142][ T27] kauditd_printk_skb: 5 callbacks suppressed [ 167.084156][ T27] audit: type=1326 audit(1747187615.855:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5658 comm="syz.1.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 167.173837][ T27] audit: type=1326 audit(1747187615.895:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5658 comm="syz.1.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 167.240251][ T27] audit: type=1326 audit(1747187615.895:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5658 comm="syz.1.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 167.332859][ T27] audit: type=1326 audit(1747187615.895:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5658 comm="syz.1.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 167.437427][ T27] audit: type=1326 audit(1747187615.895:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5658 comm="syz.1.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 167.485249][ T5673] loop4: detected capacity change from 0 to 512 [ 167.498330][ T27] audit: type=1326 audit(1747187615.915:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5658 comm="syz.1.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 167.559570][ T27] audit: type=1326 audit(1747187615.915:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5658 comm="syz.1.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 167.590616][ T27] audit: type=1326 audit(1747187615.915:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5658 comm="syz.1.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 167.650035][ T27] audit: type=1326 audit(1747187615.915:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5658 comm="syz.1.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 167.654508][ T5673] EXT4-fs (loop4): 1 orphan inode deleted [ 167.678706][ T4706] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 167.707889][ T4706] EXT4-fs error (device loop4): ext4_release_dquot:6838: comm kworker/u4:14: Failed to release dquot type 1 [ 167.723011][ T5673] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 167.730896][ T5687] syz.2.462[5687] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.732016][ T5687] syz.2.462[5687] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 167.739429][ T5673] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 167.818180][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 169.111884][ T5704] netlink: 28 bytes leftover after parsing attributes in process `syz.4.470'. [ 169.131069][ T5704] netlink: 108 bytes leftover after parsing attributes in process `syz.4.470'. [ 169.152073][ T5704] netlink: 28 bytes leftover after parsing attributes in process `syz.4.470'. [ 169.195436][ T5704] netlink: 108 bytes leftover after parsing attributes in process `syz.4.470'. [ 169.215011][ T5704] netlink: 84 bytes leftover after parsing attributes in process `syz.4.470'. [ 169.717834][ T5731] syz.3.478[5731] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 169.717940][ T5731] syz.3.478[5731] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 169.854731][ T5735] loop0: detected capacity change from 0 to 8192 [ 169.877229][ T5735] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 169.955968][ T5735] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.056030][ T5735] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.165156][ T5735] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.298824][ T5735] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.630163][ T5745] netlink: 96 bytes leftover after parsing attributes in process `syz.2.481'. [ 171.292114][ T5735] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.350704][ T5735] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.375821][ T5735] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.396614][ T5735] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 171.894056][ T5774] syz.4.495[5774] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 171.894164][ T5774] syz.4.495[5774] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 171.916688][ T5773] loop3: detected capacity change from 0 to 512 [ 171.964750][ T5773] EXT4-fs (loop3): 1 orphan inode deleted [ 171.973891][ T5773] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 171.990344][ T4374] EXT4-fs error (device loop3): ext4_release_dquot:6838: comm kworker/u4:7: Failed to release dquot type 1 [ 172.006019][ T5773] ext4 filesystem being mounted at /103/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 172.120299][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 172.168067][ T27] kauditd_printk_skb: 38 callbacks suppressed [ 172.168083][ T27] audit: type=1326 audit(1747187620.935:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5780 comm="syz.0.496" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x0 [ 173.199059][ T5789] netlink: 96 bytes leftover after parsing attributes in process `syz.3.497'. [ 174.003859][ T5812] netlink: 36 bytes leftover after parsing attributes in process `syz.0.506'. [ 174.188985][ T5815] loop2: detected capacity change from 0 to 512 [ 174.274256][ T5815] EXT4-fs (loop2): 1 orphan inode deleted [ 174.280633][ T5815] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 174.290993][ T5479] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 174.301695][ T5479] EXT4-fs error (device loop2): ext4_release_dquot:6838: comm kworker/u4:19: Failed to release dquot type 1 [ 174.324073][ T5815] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 174.366475][ T5815] EXT4-fs (loop2): unmounting filesystem. [ 175.194368][ T27] audit: type=1326 audit(1747187623.965:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5828 comm="syz.1.512" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x0 [ 175.341293][ T5831] loop3: detected capacity change from 0 to 4096 [ 175.398788][ T5831] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 175.445407][ T5838] loop0: detected capacity change from 0 to 1024 [ 175.606017][ T5846] loop2: detected capacity change from 0 to 256 [ 175.627067][ T5838] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 175.688291][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 175.707502][ T5846] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 176.432069][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 176.793720][ T27] audit: type=1326 audit(1747187625.565:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5858 comm="syz.0.521" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x0 [ 177.642518][ T5874] loop3: detected capacity change from 0 to 512 [ 177.754856][ T5874] EXT4-fs (loop3): 1 orphan inode deleted [ 177.755304][ T5882] netlink: 4 bytes leftover after parsing attributes in process `syz.0.530'. [ 177.770319][ T5882] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 177.777917][ T5882] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 177.787027][ T4622] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 177.787923][ T5882] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 177.803868][ T5874] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 177.820499][ T5882] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 177.854958][ T4622] EXT4-fs error (device loop3): ext4_release_dquot:6838: comm kworker/u4:11: Failed to release dquot type 1 [ 177.923035][ T5887] syz.2.531[5887] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.923152][ T5887] syz.2.531[5887] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.940063][ T5874] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 178.007794][ T5884] loop4: detected capacity change from 0 to 512 [ 178.015007][ T5884] EXT4-fs: Ignoring removed nobh option [ 178.030521][ T5874] EXT4-fs (loop3): unmounting filesystem. [ 178.048176][ T5884] EXT4-fs error (device loop4): ext4_do_update_inode:5253: inode #3: comm syz.4.528: corrupted inode contents [ 178.093491][ T5884] EXT4-fs error (device loop4): ext4_dirty_inode:6118: inode #3: comm syz.4.528: mark_inode_dirty error [ 178.372062][ T5884] EXT4-fs error (device loop4): ext4_do_update_inode:5253: inode #3: comm syz.4.528: corrupted inode contents [ 178.496139][ T5884] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #3: comm syz.4.528: mark_inode_dirty error [ 178.695561][ T5884] Quota error (device loop4): write_blk: dquota write failed [ 178.728821][ T5884] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 178.766625][ T5884] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.528: Failed to acquire dquot type 0 [ 178.802220][ T5884] EXT4-fs error (device loop4): ext4_do_update_inode:5253: inode #16: comm syz.4.528: corrupted inode contents [ 178.841824][ T5884] EXT4-fs error (device loop4): ext4_dirty_inode:6118: inode #16: comm syz.4.528: mark_inode_dirty error [ 178.873317][ T5884] EXT4-fs error (device loop4): ext4_do_update_inode:5253: inode #16: comm syz.4.528: corrupted inode contents [ 178.915255][ T5884] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #16: comm syz.4.528: mark_inode_dirty error [ 178.956775][ T5884] EXT4-fs error (device loop4): ext4_do_update_inode:5253: inode #16: comm syz.4.528: corrupted inode contents [ 178.982387][ T5884] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 178.997134][ T5884] EXT4-fs error (device loop4): ext4_do_update_inode:5253: inode #16: comm syz.4.528: corrupted inode contents [ 179.015472][ T5884] EXT4-fs error (device loop4): ext4_truncate:4312: inode #16: comm syz.4.528: mark_inode_dirty error [ 179.027171][ T5884] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 179.042825][ T5884] EXT4-fs (loop4): 1 truncate cleaned up [ 179.048806][ T5884] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 179.077484][ T5884] ext4 filesystem being mounted at /90/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 179.136264][ T5902] loop3: detected capacity change from 0 to 256 [ 179.156268][ T5902] FAT-fs (loop3): Unrecognized mount option "ÿÿÿÿÿÿÿÿ" or missing value [ 179.952329][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 180.187572][ T5915] loop1: detected capacity change from 0 to 2048 [ 180.267776][ T5914] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.292566][ T5915] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 181.926406][ T27] audit: type=1800 audit(1747187630.695:197): pid=5927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.542" name="kmem_cache_free" dev="loop1" ino=18 res=0 errno=0 [ 182.321500][ T5914] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 182.346105][ T9] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 182.362145][ T9] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 182.376598][ T9] EXT4-fs (loop1): This should not happen!! Data will be lost [ 182.376598][ T9] [ 182.387005][ T9] EXT4-fs (loop1): Total free blocks count 0 [ 182.393175][ T9] EXT4-fs (loop1): Free/Dirty block details [ 182.399161][ T9] EXT4-fs (loop1): free_blocks=2415919104 [ 182.405097][ T9] EXT4-fs (loop1): dirty_blocks=1520 [ 182.416567][ T9] EXT4-fs (loop1): Block reservation details [ 182.422850][ T9] EXT4-fs (loop1): i_reserved_data_blocks=95 [ 182.444337][ T5930] loop3: detected capacity change from 0 to 128 [ 182.445152][ T9] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 1496 with error 28 [ 182.478210][ T5914] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 182.497820][ T5930] EXT4-fs: Ignoring removed nobh option [ 182.534763][ T5930] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 182.548742][ T5930] ext4 filesystem being mounted at /116/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 182.599994][ T27] audit: type=1326 audit(1747187631.365:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 182.622754][ T27] audit: type=1326 audit(1747187631.365:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 182.646716][ T27] audit: type=1326 audit(1747187631.365:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 182.671634][ T5914] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 182.686448][ T27] audit: type=1326 audit(1747187631.365:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 182.709247][ T27] audit: type=1326 audit(1747187631.365:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 182.731849][ T27] audit: type=1326 audit(1747187631.365:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 182.753729][ T5937] loop1: detected capacity change from 0 to 256 [ 182.794089][ T27] audit: type=1326 audit(1747187631.365:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 182.822364][ T27] audit: type=1326 audit(1747187631.365:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 182.868271][ T27] audit: type=1326 audit(1747187631.365:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f31f798d1d7 code=0x7ffc0000 [ 182.891595][ T27] audit: type=1326 audit(1747187631.395:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 182.914285][ T27] audit: type=1326 audit(1747187631.395:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 182.931620][ T5914] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.936867][ T27] audit: type=1326 audit(1747187631.395:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 182.977349][ T5914] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.002554][ T27] audit: type=1326 audit(1747187631.395:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 183.035938][ T5914] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.047373][ T5942] loop1: detected capacity change from 0 to 512 [ 183.058348][ T27] audit: type=1326 audit(1747187631.395:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 183.087068][ T5914] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.108555][ T27] audit: type=1326 audit(1747187631.415:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 183.140503][ T5942] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.549: inode #1: comm syz.1.549: iget: illegal inode # [ 183.159517][ T27] audit: type=1326 audit(1747187631.415:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5929 comm="syz.3.546" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x7ffc0000 [ 183.179561][ T5942] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.549: error while reading EA inode 1 err=-117 [ 183.235790][ T5942] EXT4-fs (loop1): 1 orphan inode deleted [ 183.277713][ T5942] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 184.598950][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 184.846595][ T5963] sd 0:0:1:0: device reset [ 185.673004][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 185.769049][ T5975] syz.3.559[5975] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 185.769157][ T5975] syz.3.559[5975] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 185.868492][ T5979] loop4: detected capacity change from 0 to 1024 [ 185.924116][ T5979] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 185.976663][ T5979] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 186.033022][ T5988] loop1: detected capacity change from 0 to 512 [ 186.043348][ T5990] loop0: detected capacity change from 0 to 2048 [ 186.082873][ T5990] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 186.095939][ T5988] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.564: inode #1: comm syz.1.564: iget: illegal inode # [ 186.103980][ T5979] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 186.114869][ T5988] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.564: error while reading EA inode 1 err=-117 [ 186.161996][ T5979] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 483 with error 28 [ 186.176276][ T5979] EXT4-fs (loop4): This should not happen!! Data will be lost [ 186.176276][ T5979] [ 186.186170][ T5979] EXT4-fs (loop4): Total free blocks count 0 [ 186.192372][ T5979] EXT4-fs (loop4): Free/Dirty block details [ 186.198593][ T5979] EXT4-fs (loop4): free_blocks=20480 [ 186.204175][ T5979] EXT4-fs (loop4): dirty_blocks=496 [ 186.209527][ T5979] EXT4-fs (loop4): Block reservation details [ 186.215686][ T5979] EXT4-fs (loop4): i_reserved_data_blocks=31 [ 186.298882][ T4622] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 186.321966][ T5988] EXT4-fs (loop1): 1 orphan inode deleted [ 186.331313][ T5988] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 188.234186][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 188.248618][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 188.477755][ T27] kauditd_printk_skb: 9 callbacks suppressed [ 188.477770][ T27] audit: type=1326 audit(1747187637.245:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6013 comm="syz.0.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 188.543379][ T27] audit: type=1326 audit(1747187637.265:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6013 comm="syz.0.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 188.543424][ T27] audit: type=1326 audit(1747187637.295:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6013 comm="syz.0.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 188.543458][ T27] audit: type=1326 audit(1747187637.295:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6013 comm="syz.0.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 188.543492][ T27] audit: type=1326 audit(1747187637.295:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6013 comm="syz.0.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 188.543525][ T27] audit: type=1326 audit(1747187637.295:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6013 comm="syz.0.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 188.543559][ T27] audit: type=1326 audit(1747187637.295:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6013 comm="syz.0.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 188.543593][ T27] audit: type=1326 audit(1747187637.295:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6013 comm="syz.0.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 188.543626][ T27] audit: type=1326 audit(1747187637.295:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6013 comm="syz.0.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 188.543659][ T27] audit: type=1326 audit(1747187637.295:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6013 comm="syz.0.569" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 188.746356][ C0] vkms_vblank_simulate: vblank timer overrun [ 189.245913][ C0] vkms_vblank_simulate: vblank timer overrun [ 189.544380][ T6030] loop2: detected capacity change from 0 to 128 [ 189.576048][ T6031] loop4: detected capacity change from 0 to 512 [ 189.577372][ T6030] FAT-fs (loop2): invalid media value (0x00) [ 189.577432][ T6030] FAT-fs (loop2): This doesn't look like a DOS 1.x volume; no bootstrapping code [ 189.577448][ T6030] FAT-fs (loop2): Can't find a valid FAT filesystem [ 189.582965][ T6024] loop3: detected capacity change from 0 to 40427 [ 189.649251][ T6031] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 189.682256][ T6031] ext4 filesystem being mounted at /98/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 189.698022][ T6024] F2FS-fs (loop3): Found nat_bits in checkpoint [ 189.735720][ T6031] syz.4.577[6031] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 189.735819][ T6031] syz.4.577[6031] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 189.738856][ T6024] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 189.750577][ T6031] hub 4-0:1.0: USB hub found [ 189.750844][ T6031] hub 4-0:1.0: 1 port detected [ 189.946672][ T6041] netlink: 40 bytes leftover after parsing attributes in process `syz.0.579'. [ 190.241711][ T6047] loop0: detected capacity change from 0 to 512 [ 190.292240][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 190.349136][ T6047] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.581: inode #1: comm syz.0.581: iget: illegal inode # [ 190.398881][ T6047] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.581: error while reading EA inode 1 err=-117 [ 190.436828][ T6047] EXT4-fs (loop0): 1 orphan inode deleted [ 190.462134][ T6052] xt_hashlimit: max too large, truncated to 1048576 [ 190.521851][ T6047] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 190.760857][ T6050] loop2: detected capacity change from 0 to 40427 [ 191.016168][ T6050] F2FS-fs (loop2): Found nat_bits in checkpoint [ 191.200239][ T6050] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 191.932419][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 192.697180][ T6080] loop3: detected capacity change from 0 to 128 [ 192.736115][ T6080] ext4: Unknown parameter 'seclabel' [ 193.458465][ T6086] atomic_op ffff88807b448998 conn xmit_atomic 0000000000000000 [ 193.607701][ T27] kauditd_printk_skb: 14 callbacks suppressed [ 193.607715][ T27] audit: type=1326 audit(1747187642.375:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.0.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 193.694931][ T27] audit: type=1326 audit(1747187642.415:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.0.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 193.843893][ T27] audit: type=1326 audit(1747187642.415:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.0.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 193.930291][ T6094] loop3: detected capacity change from 0 to 512 [ 193.972400][ T6090] loop4: detected capacity change from 0 to 40427 [ 193.982701][ T27] audit: type=1326 audit(1747187642.415:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.0.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 194.006586][ T27] audit: type=1326 audit(1747187642.415:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.0.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc137d8e969 code=0x7ffc0000 [ 194.036529][ T6094] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.597: inode #1: comm syz.3.597: iget: illegal inode # [ 194.076939][ T6090] F2FS-fs (loop4): Found nat_bits in checkpoint [ 194.082740][ T6094] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.597: error while reading EA inode 1 err=-117 [ 194.168749][ T6094] EXT4-fs (loop3): 1 orphan inode deleted [ 194.175967][ T6094] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 194.424923][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.431550][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.439876][ T6102] loop2: detected capacity change from 0 to 40427 [ 194.448706][ T6090] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 195.197409][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 195.351198][ T6102] F2FS-fs (loop2): Found nat_bits in checkpoint [ 195.398186][ T6102] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 196.067306][ T6122] netlink: 36 bytes leftover after parsing attributes in process `syz.0.603'. [ 196.102952][ T6123] loop0: detected capacity change from 0 to 512 [ 196.139818][ T6123] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 196.227349][ T6123] EXT4-fs (loop0): 1 truncate cleaned up [ 196.279408][ T6123] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 196.296945][ T6127] syz.1.606[6127] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 196.297053][ T6127] syz.1.606[6127] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 196.401651][ T6122] EXT4-fs error (device loop0): mb_free_blocks:1815: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 196.478704][ T6122] EXT4-fs (loop0): Remounting filesystem read-only [ 196.602708][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 196.672247][ T27] audit: type=1326 audit(1747187645.435:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6133 comm="syz.2.605" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f375c78e969 code=0x0 [ 196.756428][ T27] audit: type=1326 audit(1747187645.515:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6133 comm="syz.2.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 197.256490][ T27] audit: type=1326 audit(1747187645.515:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6133 comm="syz.2.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 197.506030][ T27] audit: type=1326 audit(1747187645.515:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6133 comm="syz.2.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 197.590197][ T6149] bond0: (slave bond_slave_0): Slave does not support ipsec offload [ 197.632415][ T27] audit: type=1326 audit(1747187645.515:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6133 comm="syz.2.605" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 197.648445][ T6153] loop2: detected capacity change from 0 to 512 [ 197.699947][ T6153] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.612: inode #1: comm syz.2.612: iget: illegal inode # [ 197.748085][ T6153] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.612: error while reading EA inode 1 err=-117 [ 197.756123][ T6158] loop0: detected capacity change from 0 to 512 [ 197.768521][ T6153] EXT4-fs (loop2): 1 orphan inode deleted [ 197.778262][ T6153] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 197.828356][ T6162] loop4: detected capacity change from 0 to 512 [ 197.857343][ T6162] EXT4-fs (loop4): 1 orphan inode deleted [ 197.867969][ T6162] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 197.878630][ T4814] EXT4-fs error (device loop4): ext4_release_dquot:6838: comm kworker/u4:18: Failed to release dquot type 1 [ 197.897082][ T6162] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 197.924346][ T6162] EXT4-fs (loop4): unmounting filesystem. [ 197.968436][ T6158] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.616: bg 0: block 248: padding at end of block bitmap is not set [ 198.020314][ T6169] netlink: '+}[@': attribute type 10 has an invalid length. [ 198.028039][ T6169] device hsr_slave_0 left promiscuous mode [ 198.035916][ T6169] device hsr_slave_1 left promiscuous mode [ 198.298042][ T6158] EXT4-fs error (device loop0): ext4_acquire_dquot:6802: comm syz.0.616: Failed to acquire dquot type 1 [ 198.550068][ T6158] EXT4-fs (loop0): 1 truncate cleaned up [ 198.609390][ T6158] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 198.645685][ T6158] ext4 filesystem being mounted at /124/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 198.708004][ T6172] syz.1.620[6172] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 198.708119][ T6172] syz.1.620[6172] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 198.797932][ T6158] EXT4-fs (loop0): unmounting filesystem. [ 198.829052][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 198.998688][ T6179] smc: net device bond0 applied user defined pnetid SYZ0 [ 199.134640][ T6185] loop0: detected capacity change from 0 to 2048 [ 199.176578][ T6189] bond0: (slave bond_slave_0): Slave does not support ipsec offload [ 199.199746][ T6185] loop0: p1 < > p4 [ 199.206202][ T6185] loop0: p4 size 8388608 extends beyond EOD, truncated [ 199.275169][ T6185] netlink: 4 bytes leftover after parsing attributes in process `syz.0.626'. [ 199.344117][ T6198] loop2: detected capacity change from 0 to 256 [ 199.412270][ T6198] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 199.817710][ T6213] syz.1.639[6213] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 199.817817][ T6213] syz.1.639[6213] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 200.957456][ T6228] bond0: (slave bond_slave_0): Slave does not support ipsec offload [ 201.194828][ T27] kauditd_printk_skb: 38 callbacks suppressed [ 201.194845][ T27] audit: type=1326 audit(1747187649.965:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 201.289397][ T27] audit: type=1326 audit(1747187649.965:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 201.346902][ T6245] netlink: 'syz.3.650': attribute type 16 has an invalid length. [ 201.359812][ T27] audit: type=1326 audit(1747187649.995:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 201.379647][ T6245] netlink: 'syz.3.650': attribute type 17 has an invalid length. [ 201.403884][ T6248] loop4: detected capacity change from 0 to 2048 [ 201.410993][ T27] audit: type=1326 audit(1747187649.995:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 201.431814][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 201.439196][ T27] audit: type=1326 audit(1747187649.995:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 201.469588][ T6248] loop4: p1 < > p4 [ 201.476678][ T6248] loop4: p4 size 8388608 extends beyond EOD, truncated [ 201.522271][ T6256] loop2: detected capacity change from 0 to 2048 [ 201.524784][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 201.538719][ T27] audit: type=1326 audit(1747187649.995:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 201.579555][ T6245] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 201.601861][ T27] audit: type=1326 audit(1747187649.995:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 201.640365][ T6256] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 201.667065][ T6248] netlink: 4 bytes leftover after parsing attributes in process `syz.4.651'. [ 201.704461][ T6248] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 201.716918][ T27] audit: type=1326 audit(1747187649.995:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 201.740240][ T27] audit: type=1326 audit(1747187649.995:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 201.762792][ T27] audit: type=1326 audit(1747187650.005:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6238 comm="syz.2.648" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x7ffc0000 [ 201.819473][ T6265] syz.1.655[6265] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 201.820066][ T6265] syz.1.655[6265] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 202.812525][ T4814] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 202.840751][ T4814] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 202.853184][ T4814] EXT4-fs (loop2): This should not happen!! Data will be lost [ 202.853184][ T4814] [ 202.863137][ T4814] EXT4-fs (loop2): Total free blocks count 0 [ 202.869260][ T4814] EXT4-fs (loop2): Free/Dirty block details [ 202.875316][ T4814] EXT4-fs (loop2): free_blocks=2415919104 [ 202.881249][ T4814] EXT4-fs (loop2): dirty_blocks=384 [ 202.886559][ T4814] EXT4-fs (loop2): Block reservation details [ 202.895650][ T6248] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 202.907389][ T6271] netlink: 40 bytes leftover after parsing attributes in process `syz.3.656'. [ 202.918334][ T4814] EXT4-fs (loop2): i_reserved_data_blocks=24 [ 202.926788][ T4814] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 366 with error 28 [ 203.134725][ T6281] rdma_rxe: rxe_register_device failed with error -23 [ 203.159895][ T6281] rdma_rxe: failed to add team_slave_0 [ 203.518311][ T6297] netlink: 'syz.0.666': attribute type 16 has an invalid length. [ 203.545708][ T6297] netlink: 'syz.0.666': attribute type 17 has an invalid length. [ 203.560977][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 203.569119][ T6297] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 203.587245][ T6297] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 203.607186][ T6300] syz.4.670[6300] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 203.607291][ T6300] syz.4.670[6300] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 203.930803][ T6303] netlink: 40 bytes leftover after parsing attributes in process `syz.3.671'. [ 204.779914][ T6329] netlink: 20 bytes leftover after parsing attributes in process `syz.2.680'. [ 204.873433][ T6331] kernel profiling enabled (shift: 9) [ 204.940897][ T6334] netlink: 40 bytes leftover after parsing attributes in process `syz.1.683'. [ 207.245274][ T4260] Bluetooth: hci0: command 0x0406 tx timeout [ 207.251425][ T4260] Bluetooth: hci4: command 0x0406 tx timeout [ 207.257452][ T4260] Bluetooth: hci3: command 0x0406 tx timeout [ 207.269436][ T4270] Bluetooth: hci1: command 0x0406 tx timeout [ 207.275507][ T4270] Bluetooth: hci2: command 0x0406 tx timeout [ 207.507597][ T6351] syz.2.689[6351] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 207.507708][ T6351] syz.2.689[6351] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 207.914331][ T6370] loop0: detected capacity change from 0 to 4096 [ 207.941943][ T6375] netlink: 20 bytes leftover after parsing attributes in process `syz.3.700'. [ 207.954729][ T6375] netlink: 32 bytes leftover after parsing attributes in process `syz.3.700'. [ 207.977568][ T6378] loop4: detected capacity change from 0 to 512 [ 207.985904][ T6370] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 208.027638][ T6370] EXT4-fs error (device loop0): ext4_do_update_inode:5253: inode #15: comm syz.0.699: corrupted inode contents [ 208.076618][ T6370] EXT4-fs error (device loop0): ext4_dirty_inode:6118: inode #15: comm syz.0.699: mark_inode_dirty error [ 208.090606][ T6378] EXT4-fs (loop4): 1 orphan inode deleted [ 208.099581][ T6378] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 208.109244][ T6378] ext4 filesystem being mounted at /123/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 208.121018][ T75] __quota_error: 18 callbacks suppressed [ 208.121035][ T75] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 208.137880][ T75] EXT4-fs error (device loop4): ext4_release_dquot:6838: comm kworker/u4:4: Failed to release dquot type 1 [ 208.152788][ T6370] EXT4-fs error (device loop0): ext4_do_update_inode:5253: inode #15: comm syz.0.699: corrupted inode contents [ 208.155500][ T6378] EXT4-fs (loop4): unmounting filesystem. [ 208.187848][ T6370] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #15: comm syz.0.699: mark_inode_dirty error [ 208.209901][ T6370] EXT4-fs error (device loop0): ext4_do_update_inode:5253: inode #15: comm syz.0.699: corrupted inode contents [ 208.238907][ T6370] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #15: comm syz.0.699: mark_inode_dirty error [ 208.279696][ T6370] EXT4-fs error (device loop0): ext4_do_update_inode:5253: inode #15: comm syz.0.699: corrupted inode contents [ 208.317645][ T6394] syz.3.706[6394] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 208.317750][ T6394] syz.3.706[6394] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 208.332805][ T6370] EXT4-fs error (device loop0): ext4_truncate:4312: inode #15: comm syz.0.699: mark_inode_dirty error [ 208.393342][ T6370] EXT4-fs error (device loop0): ext4_evict_inode:290: comm syz.0.699: couldn't truncate inode 15 (err -117) [ 208.547890][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 208.833812][ T6414] netlink: 'syz.4.714': attribute type 16 has an invalid length. [ 208.846615][ T6414] netlink: 'syz.4.714': attribute type 17 has an invalid length. [ 208.860952][ T6414] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 208.871467][ T6414] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 209.244657][ T6431] loop4: detected capacity change from 0 to 1024 [ 209.272123][ T6435] netlink: 27 bytes leftover after parsing attributes in process `syz.1.722'. [ 209.306414][ T6431] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 209.568489][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 210.818876][ T6465] syz.0.733[6465] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 210.818986][ T6465] syz.0.733[6465] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 210.887791][ T6467] loop4: detected capacity change from 0 to 1024 [ 211.045416][ T6473] netlink: 4 bytes leftover after parsing attributes in process `syz.3.736'. [ 211.141030][ T6473] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 211.148525][ T6473] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 211.169806][ T6467] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 211.331036][ T6473] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 213.490377][ T6473] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 213.525662][ T6467] EXT4-fs error (device loop4): ext4_check_all_de:666: inode #12: block 7: comm syz.4.734: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 213.737942][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 213.774643][ T6493] netlink: 12 bytes leftover after parsing attributes in process `syz.1.741'. [ 213.807488][ T6495] loop0: detected capacity change from 0 to 512 [ 213.830037][ T6495] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 213.870288][ T6495] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 213.929549][ T6495] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2195: inode #15: comm syz.0.742: corrupted in-inode xattr [ 214.007697][ T6495] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.742: couldn't read orphan inode 15 (err -117) [ 214.042670][ T6495] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 214.136623][ T6510] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 214.164948][ T6510] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 214.243177][ T6510] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 214.259719][ T6513] loop4: detected capacity change from 0 to 512 [ 214.288169][ T6510] device bridge_slave_0 left promiscuous mode [ 214.296913][ T6510] bridge0: port 1(bridge_slave_0) entered disabled state [ 214.314668][ T6510] device bridge_slave_1 left promiscuous mode [ 214.321081][ T6510] bridge0: port 2(bridge_slave_1) entered disabled state [ 214.321513][ T6513] EXT4-fs (loop4): 1 orphan inode deleted [ 214.337780][ T6513] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 214.338003][ T6510] bond0: (slave bond_slave_0): Releasing backup interface [ 214.349745][ T6513] ext4 filesystem being mounted at /136/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 214.370951][ T4582] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 214.509187][ T4582] EXT4-fs error (device loop4): ext4_release_dquot:6838: comm kworker/u4:10: Failed to release dquot type 1 [ 214.732431][ T6513] EXT4-fs (loop4): unmounting filesystem. [ 215.115017][ T6510] bond0: (slave bond_slave_1): Releasing backup interface [ 215.369119][ T6510] team0: Port device team_slave_0 removed [ 215.757708][ T6510] team0: Port device team_slave_1 removed [ 215.926416][ T6510] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 216.078229][ T6510] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 216.087467][ T6510] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 216.095277][ T6510] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 216.155497][ T6527] netlink: 96 bytes leftover after parsing attributes in process `syz.2.750'. [ 216.303816][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 216.575015][ T27] audit: type=1326 audit(1747187665.345:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6544 comm="syz.4.760" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f346b98e969 code=0x0 [ 216.811531][ T6558] syz.3.765[6558] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 216.811647][ T6558] syz.3.765[6558] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 217.659603][ T6566] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0000 with DS=0x3 [ 217.705349][ T6568] loop4: detected capacity change from 0 to 512 [ 217.713132][ T6568] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 217.740069][ T6568] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 217.754137][ T6568] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2195: inode #15: comm syz.4.769: corrupted in-inode xattr [ 217.857587][ T6568] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.769: couldn't read orphan inode 15 (err -117) [ 217.903055][ T6576] loop1: detected capacity change from 0 to 1024 [ 217.933688][ T6568] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 217.993579][ T6576] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 218.116126][ T6584] netlink: 96 bytes leftover after parsing attributes in process `syz.3.768'. [ 218.393990][ T6576] EXT4-fs error (device loop1): ext4_check_all_de:666: inode #12: block 7: comm syz.1.772: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 219.012486][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 219.025470][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 219.287706][ T6598] syz.3.779[6598] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 219.287812][ T6598] syz.3.779[6598] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 219.329535][ T27] audit: type=1326 audit(1747187668.095:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6601 comm="syz.4.780" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f346b98e969 code=0x0 [ 219.850626][ T6625] loop1: detected capacity change from 0 to 512 [ 219.895457][ T6625] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 219.928477][ T6625] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 219.944518][ T6625] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2195: inode #15: comm syz.1.787: corrupted in-inode xattr [ 220.002997][ T6625] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.787: couldn't read orphan inode 15 (err -117) [ 220.049780][ T6625] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 220.311975][ T6640] syz.4.794[6640] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 220.312084][ T6640] syz.4.794[6640] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 220.654453][ T6642] loop2: detected capacity change from 0 to 40427 [ 220.728108][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 220.736943][ T6642] F2FS-fs (loop2): Found nat_bits in checkpoint [ 220.823911][ T6642] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 220.999630][ T6658] loop1: detected capacity change from 0 to 512 [ 221.050936][ T6658] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 221.087450][ T6658] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 221.344747][ T6658] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 221.392647][ T6658] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 221.428062][ T6658] System zones: 0-2, 18-18, 34-34 [ 221.465868][ T6658] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 221.510462][ T27] audit: type=1326 audit(1747187670.285:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6667 comm="syz.3.804" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f31f798e969 code=0x0 [ 221.570940][ T6658] EXT4-fs (loop1): 1 truncate cleaned up [ 221.591647][ T6658] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 221.770633][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 222.125435][ T6692] syz.2.808[6692] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 222.125553][ T6692] syz.2.808[6692] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 222.274039][ T6697] loop4: detected capacity change from 0 to 164 [ 222.311628][ T6697] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 222.860832][ T6706] loop4: detected capacity change from 0 to 40427 [ 222.892803][ T6706] F2FS-fs (loop4): Found nat_bits in checkpoint [ 222.949454][ T6706] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 223.143812][ T6727] syz.0.826[6727] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 223.143921][ T6727] syz.0.826[6727] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 223.197433][ T27] audit: type=1326 audit(1747187671.965:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6728 comm="syz.2.827" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f375c78e969 code=0x0 [ 223.917890][ T6741] capability: warning: `syz.0.830' uses 32-bit capabilities (legacy support in use) [ 224.445679][ T27] audit: type=1326 audit(1747187673.215:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.4.835" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f346b98e969 code=0x0 [ 224.564326][ T6764] loop3: detected capacity change from 0 to 512 [ 224.714176][ T6764] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 224.727746][ T6764] ext4 filesystem being mounted at /186/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 224.881756][ T27] audit: type=1800 audit(1747187673.655:325): pid=6764 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.839" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 224.964853][ T27] audit: type=1800 audit(1747187673.685:326): pid=6779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.839" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 224.980731][ T6769] loop0: detected capacity change from 0 to 40427 [ 224.993229][ T27] audit: type=1326 audit(1747187673.715:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6778 comm="syz.1.844" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x0 [ 225.037299][ T6769] F2FS-fs (loop0): Found nat_bits in checkpoint [ 225.084616][ T4257] EXT4-fs (loop3): unmounting filesystem. [ 225.103249][ T6769] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 225.401621][ T6791] netlink: 96 bytes leftover after parsing attributes in process `syz.2.845'. [ 225.903862][ T6803] netlink: 'syz.2.849': attribute type 16 has an invalid length. [ 225.960751][ T6803] netlink: 'syz.2.849': attribute type 17 has an invalid length. [ 226.045662][ T6803] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 226.089054][ T6803] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 226.122182][ T6803] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 226.212867][ T6803] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready [ 226.269651][ T6803] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready [ 226.294352][ T6803] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 226.334541][ T6803] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 226.379565][ T6803] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 226.563170][ T27] audit: type=1326 audit(1747187675.335:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 226.623511][ T27] audit: type=1326 audit(1747187675.365:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 226.647117][ T6823] loop1: detected capacity change from 0 to 512 [ 226.667918][ T6825] loop2: detected capacity change from 0 to 512 [ 226.690419][ T27] audit: type=1326 audit(1747187675.365:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 226.717473][ T6823] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 226.749538][ T6823] EXT4-fs (loop1): 1 truncate cleaned up [ 226.749845][ T6825] EXT4-fs (loop2): 1 orphan inode deleted [ 226.755533][ T6825] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 226.769475][ T27] audit: type=1326 audit(1747187675.365:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 226.779489][ T6825] ext4 filesystem being mounted at /177/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 226.793205][ T27] audit: type=1326 audit(1747187675.365:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 226.826363][ T27] audit: type=1326 audit(1747187675.365:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 226.826406][ T4763] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 226.848957][ T27] audit: type=1326 audit(1747187675.365:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 226.881490][ T27] audit: type=1326 audit(1747187675.365:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 226.899377][ T6823] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 226.905183][ T27] audit: type=1326 audit(1747187675.365:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f72ea38e969 code=0x7ffc0000 [ 226.940150][ T4763] EXT4-fs error (device loop2): ext4_release_dquot:6838: comm kworker/u4:16: Failed to release dquot type 1 [ 226.955067][ T6825] EXT4-fs (loop2): unmounting filesystem. [ 227.320388][ T6843] netlink: 96 bytes leftover after parsing attributes in process `syz.3.859'. [ 228.370319][ T4263] EXT4-fs (loop1): unmounting filesystem. [ 228.956285][ T6862] netlink: 'syz.1.866': attribute type 16 has an invalid length. [ 228.966933][ T6862] netlink: 'syz.1.866': attribute type 17 has an invalid length. [ 228.998561][ T6862] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 229.015137][ T6862] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 229.053539][ T6862] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 229.058796][ T6864] loop2: detected capacity change from 0 to 1024 [ 229.077433][ T6864] EXT4-fs: Ignoring removed nobh option [ 229.086130][ T6864] EXT4-fs: Ignoring removed bh option [ 229.092613][ T6864] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 229.158826][ T6864] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 229.202805][ T6864] EXT4-fs (loop2): unmounting filesystem. [ 229.258833][ T6864] netlink: 20 bytes leftover after parsing attributes in process `syz.2.867'. [ 229.626693][ T6879] netlink: 96 bytes leftover after parsing attributes in process `syz.4.871'. [ 230.243902][ T6905] tipc: Enabling of bearer rejected, failed to enable media [ 230.517644][ T6912] loop1: detected capacity change from 0 to 512 [ 230.585699][ T6912] EXT4-fs (loop1): 1 orphan inode deleted [ 230.601913][ T11] EXT4-fs error (device loop1): ext4_release_dquot:6838: comm kworker/u4:1: Failed to release dquot type 1 [ 230.622621][ T6912] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 230.642880][ T6912] ext4 filesystem being mounted at /174/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 230.679167][ T6912] EXT4-fs (loop1): unmounting filesystem. [ 231.018017][ T6936] netlink: 4 bytes leftover after parsing attributes in process `syz.2.892'. [ 231.043088][ T6936] device gretap0 entered promiscuous mode [ 231.058221][ T6936] device macvtap1 entered promiscuous mode [ 231.539048][ T6941] loop2: detected capacity change from 0 to 40427 [ 231.586051][ T6941] F2FS-fs (loop2): Found nat_bits in checkpoint [ 231.639456][ T6941] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 232.898492][ T6967] loop1: detected capacity change from 0 to 8192 [ 232.928836][ T6967] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 233.327971][ T6987] loop0: detected capacity change from 0 to 2048 [ 233.346187][ T6987] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 233.461371][ T6991] [ 233.463756][ T6991] ====================================================== [ 233.470790][ T6991] WARNING: possible circular locking dependency detected [ 233.477834][ T6991] 6.1.138-syzkaller #0 Not tainted [ 233.482957][ T6991] ------------------------------------------------------ [ 233.489990][ T6991] syz.2.908/6991 is trying to acquire lock: [ 233.495903][ T6991] ffff88807bf06de0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: process_measurement+0x33c/0x1a10 [ 233.506730][ T6991] [ 233.506730][ T6991] but task is already holding lock: [ 233.514102][ T6991] ffff88807d9f71d8 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770 [ 233.524255][ T6991] [ 233.524255][ T6991] which lock already depends on the new lock. [ 233.524255][ T6991] [ 233.534684][ T6991] [ 233.534684][ T6991] the existing dependency chain (in reverse order) is: [ 233.543712][ T6991] [ 233.543712][ T6991] -> #1 (&mm->mmap_lock){++++}-{3:3}: [ 233.551303][ T6991] down_read_killable+0x4c/0x340 [ 233.556798][ T6991] mmap_read_lock_killable+0x1d/0x60 [ 233.562641][ T6991] lock_mm_and_find_vma+0x2b1/0x2f0 [ 233.568380][ T6991] do_user_addr_fault+0x2db/0xb10 [ 233.573949][ T6991] exc_page_fault+0x60/0x100 [ 233.579113][ T6991] asm_exc_page_fault+0x22/0x30 [ 233.584604][ T6991] fault_in_readable+0xf3/0x1f0 [ 233.590011][ T6991] fault_in_iov_iter_readable+0xbb/0x2e0 [ 233.596202][ T6991] generic_perform_write+0x3da/0x560 [ 233.602049][ T6991] __generic_file_write_iter+0x172/0x430 [ 233.608235][ T6991] generic_file_write_iter+0xab/0x2e0 [ 233.614158][ T6991] vfs_write+0x44c/0x960 [ 233.618933][ T6991] ksys_write+0x143/0x240 [ 233.623918][ T6991] do_syscall_64+0x4c/0xa0 [ 233.628972][ T6991] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 233.635428][ T6991] [ 233.635428][ T6991] -> #0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}: [ 233.644153][ T6991] __lock_acquire+0x2cf8/0x7c50 [ 233.649570][ T6991] lock_acquire+0x1b4/0x490 [ 233.654636][ T6991] down_write+0x36/0x60 [ 233.659343][ T6991] process_measurement+0x33c/0x1a10 [ 233.665083][ T6991] ima_file_mmap+0x104/0x150 [ 233.670217][ T6991] __se_sys_remap_file_pages+0x53e/0x770 [ 233.676408][ T6991] do_syscall_64+0x4c/0xa0 [ 233.681373][ T6991] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 233.687828][ T6991] [ 233.687828][ T6991] other info that might help us debug this: [ 233.687828][ T6991] [ 233.698069][ T6991] Possible unsafe locking scenario: [ 233.698069][ T6991] [ 233.705556][ T6991] CPU0 CPU1 [ 233.710945][ T6991] ---- ---- [ 233.716334][ T6991] lock(&mm->mmap_lock); [ 233.720693][ T6991] lock(&sb->s_type->i_mutex_key#12); [ 233.728813][ T6991] lock(&mm->mmap_lock); [ 233.735707][ T6991] lock(&sb->s_type->i_mutex_key#12); [ 233.741214][ T6991] [ 233.741214][ T6991] *** DEADLOCK *** [ 233.741214][ T6991] [ 233.749469][ T6991] 1 lock held by syz.2.908/6991: [ 233.754435][ T6991] #0: ffff88807d9f71d8 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770 [ 233.765134][ T6991] [ 233.765134][ T6991] stack backtrace: [ 233.771072][ T6991] CPU: 0 PID: 6991 Comm: syz.2.908 Not tainted 6.1.138-syzkaller #0 [ 233.779093][ T6991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 233.790097][ T6991] Call Trace: [ 233.793471][ T6991] [ 233.796417][ T6991] dump_stack_lvl+0x168/0x22e [ 233.801224][ T6991] ? load_image+0x3b0/0x3b0 [ 233.805763][ T6991] ? show_regs_print_info+0x12/0x12 [ 233.810983][ T6991] ? print_circular_bug+0x12b/0x1a0 [ 233.816207][ T6991] check_noncircular+0x274/0x310 [ 233.821181][ T6991] ? add_chain_block+0x940/0x940 [ 233.826239][ T6991] ? lockdep_lock+0xdc/0x1e0 [ 233.830875][ T6991] ? lock_chain_count+0x20/0x20 [ 233.835739][ T6991] ? _find_first_zero_bit+0xcf/0x100 [ 233.841051][ T6991] __lock_acquire+0x2cf8/0x7c50 [ 233.845953][ T6991] ? lockdep_hardirqs_on+0x94/0x140 [ 233.851278][ T6991] ? verify_lock_unused+0x140/0x140 [ 233.856505][ T6991] ? release_firmware_map_entry+0x18a/0x18a [ 233.862423][ T6991] ? lock_chain_count+0x20/0x20 [ 233.867305][ T6991] lock_acquire+0x1b4/0x490 [ 233.871841][ T6991] ? process_measurement+0x33c/0x1a10 [ 233.877246][ T6991] ? __might_sleep+0xd0/0xd0 [ 233.881950][ T6991] ? lockdep_hardirqs_on+0x94/0x140 [ 233.887172][ T6991] ? read_lock_is_recursive+0x10/0x10 [ 233.892562][ T6991] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 233.898379][ T6991] ? process_measurement+0x279/0x1a10 [ 233.903845][ T6991] down_write+0x36/0x60 [ 233.908010][ T6991] ? process_measurement+0x33c/0x1a10 [ 233.913385][ T6991] process_measurement+0x33c/0x1a10 [ 233.918685][ T6991] ? ima_file_mmap+0x150/0x150 [ 233.923453][ T6991] ? aa_file_perm+0x117/0xec0 [ 233.928148][ T6991] ? mtree_load+0xeb/0xa40 [ 233.932600][ T6991] ? mtree_load+0x90a/0xa40 [ 233.937112][ T6991] ? aa_get_current_label+0x110/0x1d0 [ 233.942503][ T6991] ? apparmor_current_getsecid_subj+0xb1/0x110 [ 233.948689][ T6991] ima_file_mmap+0x104/0x150 [ 233.953319][ T6991] ? ima_file_free+0x3e0/0x3e0 [ 233.958118][ T6991] ? common_file_perm+0x171/0x1c0 [ 233.963169][ T6991] ? bpf_lsm_mmap_file+0x5/0x10 [ 233.968226][ T6991] ? security_mmap_file+0x11b/0x180 [ 233.973469][ T6991] __se_sys_remap_file_pages+0x53e/0x770 [ 233.979128][ T6991] ? __se_sys_futex+0x14a/0x440 [ 233.983999][ T6991] ? __x64_sys_remap_file_pages+0xc0/0xc0 [ 233.989735][ T6991] ? lock_chain_count+0x20/0x20 [ 233.994599][ T6991] ? lockdep_hardirqs_on+0x94/0x140 [ 233.999814][ T6991] ? __x64_sys_remap_file_pages+0x1c/0xc0 [ 234.005551][ T6991] do_syscall_64+0x4c/0xa0 [ 234.009979][ T6991] ? clear_bhb_loop+0x45/0xa0 [ 234.014679][ T6991] ? clear_bhb_loop+0x45/0xa0 [ 234.019361][ T6991] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 234.025267][ T6991] RIP: 0033:0x7f375c78e969 [ 234.029706][ T6991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 234.049601][ T6991] RSP: 002b:00007f375d646038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8 [ 234.058118][ T6991] RAX: ffffffffffffffda RBX: 00007f375c9b6160 RCX: 00007f375c78e969 [ 234.066104][ T6991] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000200000603000 [ 234.074080][ T6991] RBP: 00007f375c810ab1 R08: 00000000001c0000 R09: 0000000000000000 [ 234.082069][ T6991] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000000 [ 234.090044][ T6991] R13: 0000000000000000 R14: 00007f375c9b6160 R15: 00007ffe72cd7c48 [ 234.098041][ T6991] [ 234.122628][ T4253] EXT4-fs (loop0): unmounting filesystem. [ 234.351894][ T6999] loop0: detected capacity change from 0 to 40427 [ 234.362361][ T6999] F2FS-fs (loop0): Found nat_bits in checkpoint [ 234.391029][ T6999] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5