last executing test programs: 8.743556622s ago: executing program 0 (id=875): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000181100", @ANYRES32, @ANYBLOB="000000000000007b8af8ff00000000bfa20000000000f507020000f8ffffffb703000008000000b70400000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) ioctl$USBDEVFS_CLEAR_HALT(r0, 0xc0105502, &(0x7f0000000300)={0x1, 0x1}) 8.170313597s ago: executing program 0 (id=879): bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) getpeername$packet(0xffffffffffffffff, 0x0, &(0x7f0000000040)) openat$sndseq(0xffffffffffffff9c, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r1, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x6}, 0x18) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, 0x0, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', 0x0}) r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001800)={0x6, 0x3, &(0x7f00000006c0)=@framed, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r5, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000240)={r6, r5, 0x25, 0x8, @val=@iter={0x0}}, 0x20) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, 0x0, 0xd3c, 0x2) 4.94855485s ago: executing program 1 (id=917): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendmsg$802154_raw(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)="0881c4d32299bbc0", 0x8}, 0x1, 0x0, 0x0, 0x4}, 0x20004844) 4.596541023s ago: executing program 1 (id=922): capset(&(0x7f0000000100)={0x19980330, 0xffffffffffffffff}, 0x0) r0 = gettid() r1 = eventfd2(0x0, 0x0) write$eventfd(r1, &(0x7f0000000140)=0xfffffffffffffff8, 0x8) write$eventfd(r1, &(0x7f0000000040)=0x8, 0x8) r2 = socket$nl_route(0x10, 0x3, 0x0) unshare(0x22000600) io_uring_setup(0x7d4, 0x0) setresuid(0x0, 0xee00, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newtaction={0x64, 0x30, 0xb, 0x0, 0x0, {}, [{0x50, 0x1, [@m_ct={0x4c, 0x1, 0x0, 0x0, {{0x7}, {0x24, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xfdb}}, @TCA_CT_MARK={0x8, 0x10}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x20004000}, 0x10000000) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff) 4.468073692s ago: executing program 0 (id=923): mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x3000002, 0x6031, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000a01000/0x4000)=nil, 0x4000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) munmap(&(0x7f0000ba0000/0x2000)=nil, 0x2000) mremap(&(0x7f000075e000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f00006a3000/0x1000)=nil) mremap(&(0x7f000054d000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f00003af000/0x2000)=nil) r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e) ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000001f00)) sendmmsg(r0, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000001c0)}], 0x1}}], 0x1, 0x0) syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0) 4.343406231s ago: executing program 5 (id=924): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) socket$inet_udp(0x2, 0x2, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=ANY=[], 0x64}}, 0x0) 4.065186398s ago: executing program 5 (id=928): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'tunl0\x00'}) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0) 3.563459505s ago: executing program 5 (id=930): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ipvlan1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)=ANY=[@ANYBLOB="8c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="0ffe0000000000005000128009000100766c616e0000000040000280060001000000000004000480280003800ca10100400000000600000089e678430004000000000000", @ANYRES32=r1], 0x8c}, 0x1, 0xba01}, 0x0) 3.444116651s ago: executing program 1 (id=931): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socket$nl_xfrm(0x10, 0x3, 0x6) socket$inet_udplite(0x2, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000840000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10) socket$inet_mptcp(0x2, 0x1, 0x106) socket(0xa, 0x3, 0x3a) socket$inet6(0xa, 0x3, 0x8000000003c) pipe(&(0x7f0000000140)) socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x8f) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r3, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r4], 0x3c}}, 0x0) 3.249674088s ago: executing program 3 (id=932): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) socket$packet(0x11, 0x3, 0x300) r3 = socket$inet(0x2, 0x2, 0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LIST_PHY(r5, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, 0x0, 0x30b}, 0x14}}, 0x40000) sendmsg$IEEE802154_LLSEC_SETPARAMS(r4, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x30, 0x0, 0x8, 0x70bd29, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x3}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x1}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x24000014) setsockopt$inet_msfilter(r3, 0x0, 0x29, 0x0, 0x1c) socket$netlink(0x10, 0x3, 0x0) r6 = dup(r0) ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e}}) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000072"], &(0x7f0000000200)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000480)='mm_page_alloc\x00', r7}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000300), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0) 3.099186295s ago: executing program 5 (id=934): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a300000000014000780050015000000000008001240000000000d000300686173683a6e657400000000050005000a000000050004"], 0x5c}}, 0x0) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040800}, 0x8d0) 2.945277391s ago: executing program 1 (id=936): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r0}, 0x18) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000002ac0)={0x0, 0x0, 0x0}, 0x20040051) 2.891454619s ago: executing program 2 (id=937): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1, 0xffffffffffffffff}, 0x4) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r3, 0x0, 0x1}, 0x18) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, 0x0, 0x1000f) 2.849953049s ago: executing program 5 (id=938): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffffcb9}]}) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f0000000200)={[{@max_batch_time={'max_batch_time', 0x3d, 0x358}}, {@resuid}, {@stripe={'stripe', 0x3d, 0x9}}]}, 0x3, 0x44b, &(0x7f00000004c0)="$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") r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12) write(r3, &(0x7f0000004200)='t', 0x1) sendfile(r3, r2, 0x0, 0x3ffff) sendfile(r3, r2, 0x0, 0x7ffff000) r4 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) ftruncate(r4, 0x2007ffc) sendfile(r4, r4, 0x0, 0x800000009) r5 = openat$tcp_congestion(0xffffffffffffff9c, 0x0, 0x1, 0x0) dup2(0xffffffffffffffff, r5) 2.780481898s ago: executing program 2 (id=940): getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, 0x0, 0x0) syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x2, 0x0, 0x0, 0x286ca06bbee933dc, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18) openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match', 0x0, 0x81) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000002d00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000004c0)={[{@acl}, {@barrier}, {@barrier_val}, {@sysvgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xfc, 0x587, &(0x7f0000002100)="$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") socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="020000000400000008000000010000008000", @ANYRES32, @ANYBLOB="000000000000001d8fb91a4d7389f9", @ANYRES32=0x0, @ANYRES32], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x3, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sync() ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0x0, 'queue1\x00'}) link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00') 2.594076816s ago: executing program 3 (id=941): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0x1d}, 0x18) socket$nl_route(0x10, 0x3, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000580)='f2fs_sync_fs\x00', r2, 0x0, 0x3b5}, 0x74) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10) r3 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xa8\xc4\xd2o\xae\xb4W`\xfd\x196\xa0Rd\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7', 0x42, 0x1f0, 0x0) mq_unlink(&(0x7f0000000000)='eth0\x00') close(r3) 2.299440681s ago: executing program 2 (id=943): capset(&(0x7f0000000100)={0x19980330, 0xffffffffffffffff}, 0x0) r0 = gettid() r1 = eventfd2(0x0, 0x0) write$eventfd(r1, &(0x7f0000000140)=0xfffffffffffffff8, 0x8) write$eventfd(r1, &(0x7f0000000040)=0x8, 0x8) r2 = socket$nl_route(0x10, 0x3, 0x0) unshare(0x22000600) io_uring_setup(0x7d4, 0x0) setresuid(0x0, 0xee00, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newtaction={0x64, 0x30, 0xb, 0x0, 0x0, {}, [{0x50, 0x1, [@m_ct={0x4c, 0x1, 0x0, 0x0, {{0x7}, {0x24, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xfdb}}, @TCA_CT_MARK={0x8, 0x10}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x20004000}, 0x10000000) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff) 2.197930597s ago: executing program 1 (id=944): pipe2$9p(0x0, 0x80000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x40) ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f00000083c0)={{0x1}}) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r4, 0x54a2) sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x84}, 0x4000) 1.942333725s ago: executing program 4 (id=945): r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x2d) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0) 1.809467648s ago: executing program 3 (id=946): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ipvlan1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)=ANY=[@ANYBLOB="8c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="0ffe0000000000005000128009000100766c616e0000000040000280060001000000000004000480280003800ca10100400000000600000089e6784300040000000000000c00010006000000090000", @ANYRES32=r1], 0x8c}, 0x1, 0xba01}, 0x0) 1.769725246s ago: executing program 0 (id=947): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff) r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x34, r0, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}]}, 0x34}}, 0xc800) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000020000000400000005"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r2, 0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000300)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10) sendmsg$SMC_PNETID_DEL(r1, 0x0, 0x0) 1.619332406s ago: executing program 4 (id=948): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xe}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000980)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10) r3 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) close(r2) 1.113152414s ago: executing program 4 (id=949): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socket$nl_xfrm(0x10, 0x3, 0x6) socket$inet_udplite(0x2, 0x2, 0x88) socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000009c0)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000840000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10) socket$inet_mptcp(0x2, 0x1, 0x106) socket(0xa, 0x3, 0x3a) socket$inet6(0xa, 0x3, 0x8000000003c) pipe(&(0x7f0000000140)) socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x8f) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3c0000001000030400000006000000005dcc0300", @ANYRES32=r3, @ANYBLOB="71e79fd800000000140012800c0001006d616376746170001400028008000500", @ANYRES32=r4], 0x3c}}, 0x0) 1.106236497s ago: executing program 0 (id=950): r0 = socket$inet(0x2, 0x801, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x3c}}, 0x10) sendto$inet(r0, &(0x7f0000000480), 0x0, 0x4004, 0x0, 0x0) pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) splice(r0, 0x0, r1, 0x0, 0x7ffff000, 0x0) 1.089882697s ago: executing program 2 (id=951): r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0) ioctl$EVIOCGMASK(r0, 0x80104592, &(0x7f0000000300)={0x11, 0x7, &(0x7f0000000200)='\x00\x00\x00\x00\x00\x00\x00'}) 1.062079885s ago: executing program 3 (id=952): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1, 0xffffffffffffffff}, 0x4) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r3, 0x0, 0x1}, 0x18) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, 0x0, 0x1000f) 951.326449ms ago: executing program 1 (id=953): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) socket$packet(0x11, 0x3, 0x300) r3 = socket$inet(0x2, 0x2, 0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LIST_PHY(r5, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000005c0)={0x14, 0x0, 0x30b}, 0x14}}, 0x40000) sendmsg$IEEE802154_LLSEC_SETPARAMS(r4, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x30, 0x0, 0x8, 0x70bd29, 0x25dfdbfb, {}, [@IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x3}, @IEEE802154_ATTR_LLSEC_KEY_SOURCE_SHORT={0x8, 0x2c, 0x1}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0302}}]}, 0x30}, 0x1, 0x0, 0x0, 0x40}, 0x24000014) setsockopt$inet_msfilter(r3, 0x0, 0x29, 0x0, 0x1c) socket$netlink(0x10, 0x3, 0x0) r6 = dup(r0) ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e}}) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000072"], &(0x7f0000000200)='GPL\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000480)='mm_page_alloc\x00', r7}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV") lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000300), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0) 893.468717ms ago: executing program 0 (id=954): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0) write$cgroup_int(r0, &(0x7f0000000000), 0xffffff6a) socket$netlink(0x10, 0x3, 0x0) truncate(&(0x7f00000000c0)='./file1\x00', 0x8008) 783.493746ms ago: executing program 5 (id=955): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000380)='rxrpc_call\x00', r3}, 0x10) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f00000002c0)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='rxrpc_call\x00', r4}, 0x10) r5 = socket$kcm(0x21, 0x2, 0xa) sendmsg$kcm(r5, &(0x7f0000000080)={&(0x7f0000000000)=@rxrpc=@in6={0x21, 0xfffc, 0x2, 0x1c, {0xa, 0x0, 0x4, @dev}}, 0x80, 0x0, 0x0, &(0x7f00000000c0)=[{0x18, 0x110, 0x1, "dc"}], 0x18}, 0xfc00) 770.27846ms ago: executing program 3 (id=956): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1af8ff00000000bfa100000000000007010000b8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r0}, 0x18) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000900)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) sendmsg$netlink(0xffffffffffffffff, &(0x7f0000002ac0)={0x0, 0x0, 0x0}, 0x20040051) 769.347468ms ago: executing program 2 (id=957): prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0) r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) r2 = socket(0x10, 0x803, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000280)={0xffffffffffffffff, 0x53, 0xd, 0x9}) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB='H\x00'], 0x48}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb7", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000180)={0x80000000}, 0x19a) r4 = socket(0x10, 0x3, 0x0) r5 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', 0x0}) sendmsg$nl_route_sched(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=@newqdisc={0x78, 0x24, 0x3fe3aa0262d8c783, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xa}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x3, 0x0, 0x7ff, 0x1}, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1e, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0xfffffffc, 0x0, 0xff}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x40}, 0x0) 316.730976ms ago: executing program 4 (id=958): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b000000000000"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000010850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0x1d}, 0x18) socket$nl_route(0x10, 0x3, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000580)='f2fs_sync_fs\x00', r2, 0x0, 0x3b5}, 0x74) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10) r3 = mq_open(&(0x7f0000001140)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xd3\xa7\xd8J\xfd\x94#KT\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\x88N\xb8\xde\xeb)\xcd\xc56m\n\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88|0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc\x02\xea\x91\xe8\xd8\x01YZy\xe6!\x89\x9c\xd1\xa6\x167\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1[\x84\x10aF\x9b\xda\xeb\xc4*\x02q\xb2\x92\x00\x8cv\xac AN\xb9\xaa\xe0\x9d\x97Te\x81\x98L\xfe\x97+u\xd3^\xb1\xf0\xe0\x1f\xbd\a\xbb\xe5\x18\x9ds\x12ha\x00\xeb\x84\x99\xc6\x0f\xf1\xd5LD\xa87\xa0DQ\x8a2\x16!8,\xbc%$\xf1\xf2\xd6\x9cy\xecK\xda\xc5\xdc\xfa\xdd\xf6\b\xc6\xb4\x14\x16\x9c\x7f\x92\x85\xb0\xa2%:\xf0\xf4\x150\x0f\xb4\xa6d\xb4\xe4L\x19W\xd5\x90\xf7l\x1b\xfe\xde\vh\x97=m\x82.\xac\vh\xa8\xc4\xd2o\xae\xb4W`\xfd\x196\xa0Rd\xfe\x84Q}\x838/\x83\xebP\xbe\xd6+:\xceE\\\x95\xd4\xac\x92\x87\xd7\x98\x97\xe3\xec\xad\xd5\xac\x80C\x84R\x88r^g\xbaQ(\x9a>\xe2\xba\xa8=\x17\f04\x8f\x1f\xf2\x88*@v\xe7\xd1\xee\xb3\xc2\x8dT\xda\x81g\xd9\x1a:hzW6s)x\x06\xae\x11\xf2\x1e\xcd\v\xe5L\x19\x96s\xbc\x9e\xf4\x10$\r\xa4\xd8\xa2\xa2\xfcM\xc5R3~$\xc0\xa5n\x9a W\xb1e\xcc<$\xdf\x15\f]\x15\xf5#G\xce\xaf\x88U\xfa\x80\xf24\xf6\xb5\xef\xe2z\xcf\x9eN\x92\xac\x81{\xe6\xbd\xd7\x16\xe6F\xe2\x9e\x91%\x94\v\xb9\xdc\xd6\x87\x8f\xcd\xc1\xb05\x81\x81\xf8\xe9X\xe8Kt9@\xf4\xe1\xa6=\xc9\xe1:p4\nP[f\x1d\xfd\xfa\x839\x8d\x0e\xd1\xf9\xa0\xd2^E\xe5\xedo.\xaa\xf2\xb4\xcdn\x14\f\xcd\x83_yk\xda\xc5\x89\xf0Z\xea\x1d\xbd\xc00\v\xa3\xb3\xbe\xe6\x8b\x18/\xa8\xaaY\xf2\x89\x0f\x9enOOr\x00\xb2\x01\x1f:Z\xb8\xee;\xe3;\x8aPV\xce\xee\xf8[\x16\n\xe6:z\xb8\x1dvk\a{\xc1\x14\xd9+\xdb\t\x11\x90y\xe8\\\xe6\xfc\xca\xb4\xcbC\xd6\xd0\xbeC\xce\xc0L\xdb\xcd\xb3\x907c\xb4\xa6\xce\xdb[\xce\x122N\xa3\xc7Q<\x1a\xa5\xb3)\xc5\x98\x84\x8a\x82\x19\xb0\t\xac\x10\\\x8c\xbe\xcb\raIYe[\xa8\xc4\xac\x0e\xbb\x0f\b^\xdag\xe2\xa9\"\xf5h\'\xcf\xd9\x1b\xef\xe3\xe7y\x82\x1e\xca\x7f\x02 \xcf\x9e\xe0\xd9TM\xb9\n\xa9\xad3\x91\xa5\xe6!\xcd\xa2\xa4\x14\x12\xf9\xbf\xa8b\xcec:\xd7', 0x42, 0x1f0, 0x0) mq_unlink(&(0x7f0000000000)='eth0\x00') close(r3) 313.958888ms ago: executing program 3 (id=959): mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x3000002, 0x6031, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000a01000/0x4000)=nil, 0x4000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) munmap(&(0x7f0000ba0000/0x2000)=nil, 0x2000) mremap(&(0x7f000075e000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f00006a3000/0x1000)=nil) mremap(&(0x7f000054d000/0x2000)=nil, 0x2000, 0x2000, 0x3, &(0x7f00003af000/0x2000)=nil) r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000400)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e) ioctl$PPPIOCGCHAN(r0, 0x80047437, &(0x7f0000001f00)) sendmmsg(r0, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000001c0)}], 0x1}}], 0x1, 0x0) syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0) 84.930929ms ago: executing program 2 (id=960): r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x2d) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0) 82.279237ms ago: executing program 4 (id=961): r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf64(r0, &(0x7f00000007c0)=ANY=[@ANYBLOB="7f454c4600040000ff7f00000040000003003e00ebffffff9402000000000000500000000000000000000000000000fb000000002c8f380001"], 0x78) close(r0) execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x1000) 0s ago: executing program 4 (id=962): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff) r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x34, r0, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}]}, 0x34}}, 0xc800) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000020000000400000005"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r2, 0xffffffffffffffff}, &(0x7f0000000340), &(0x7f0000000300)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10) sendmsg$SMC_PNETID_DEL(r1, 0x0, 0x0) kernel console output (not intermixed with test programs): : set [1, 0] type 2 family 0 port 6081 - 0 [ 116.247186][ T5847] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.257660][ T5847] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.266837][ T5847] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.350187][ T5948] loop1: detected capacity change from 0 to 128 [ 116.423384][ T5948] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 116.466634][ T5948] ext4 filesystem being mounted at /0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 116.563148][ T5833] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.600983][ T5833] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.620321][ T5833] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.662073][ T5833] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.736813][ T5827] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 116.739531][ T5953] syz.2.8 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 117.314185][ T5962] loop2: detected capacity change from 0 to 256 [ 117.422121][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.430044][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.711575][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.923107][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.137046][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.193426][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.286192][ T5908] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.309733][ T5908] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.477696][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.502301][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.661206][ T1134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.712108][ T1134] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 118.794655][ T5975] netlink: 4 bytes leftover after parsing attributes in process `syz.1.14'. [ 118.870766][ T5975] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 118.944072][ T5975] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 118.946436][ T5976] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14'. [ 119.000027][ T5975] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 119.018465][ T5974] loop4: detected capacity change from 0 to 2048 [ 119.030385][ T5975] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 119.073705][ T5984] syz.2.15 uses obsolete (PF_INET,SOCK_PACKET) [ 119.098099][ T5974] Alternate GPT is invalid, using primary GPT. [ 119.133180][ T5974] loop4: p1 p2 p3 [ 119.703813][ T5976] syz.1.14 (5976) used greatest stack depth: 18888 bytes left [ 119.788002][ T5991] process 'syz.4.16' launched '/dev/fd/7' with NULL argv: empty string added [ 119.860688][ T5991] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16'. [ 119.931050][ T5996] netlink: 12 bytes leftover after parsing attributes in process `syz.4.16'. [ 120.011802][ T5938] udevd[5938]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 120.014251][ T5958] udevd[5958]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 120.036062][ T5891] udevd[5891]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 120.168712][ T5991] netlink: 3 bytes leftover after parsing attributes in process `syz.4.16'. [ 120.214887][ T6003] netlink: 156 bytes leftover after parsing attributes in process `syz.4.16'. [ 120.282449][ T5991] 0ªX¹¦À: renamed from caif0 [ 120.295532][ T5991] 0ªX¹¦À: entered allmulticast mode [ 120.334204][ T5991] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 120.741233][ T6010] netlink: 28 bytes leftover after parsing attributes in process `syz.1.22'. [ 120.781807][ T6010] netlink: 108 bytes leftover after parsing attributes in process `syz.1.22'. [ 120.849390][ T6010] netlink: 28 bytes leftover after parsing attributes in process `syz.1.22'. [ 120.957500][ T6010] netlink: 108 bytes leftover after parsing attributes in process `syz.1.22'. [ 121.107771][ T6019] loop5: detected capacity change from 0 to 2048 [ 121.146028][ T6019] journal_path: Non-blockdev passed as './file1' [ 121.181902][ T6019] EXT4-fs: error: could not find journal device path [ 121.348514][ T6021] loop0: detected capacity change from 0 to 512 [ 121.392210][ T6021] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 121.499632][ T6021] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 121.573187][ T6023] smc: net device bond0 applied user defined pnetid SYZ2 [ 121.646517][ T6023] smc: net device bond0 erased user defined pnetid SYZ2 [ 121.676115][ T6021] EXT4-fs (loop0): 1 truncate cleaned up [ 121.706479][ T6021] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 122.216913][ T6037] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 122.240437][ T6037] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 122.283532][ T6043] loop4: detected capacity change from 0 to 256 [ 122.290938][ T6043] vfat: Unknown parameter '01777777777777777777777' [ 122.311113][ T6043] loop4: detected capacity change from 0 to 512 [ 122.339070][ T6043] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 122.395040][ T6043] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1129: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 122.426873][ T6043] EXT4-fs (loop4): 1 truncate cleaned up [ 122.434982][ T6043] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 123.189437][ T6037] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 123.262207][ T5842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 123.282458][ T6037] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 123.719649][ T6042] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12 [ 123.849688][ T6042] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12 [ 124.001878][ T6042] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 124.884249][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.980512][ T6062] __nla_validate_parse: 4 callbacks suppressed [ 124.980537][ T6062] netlink: 4 bytes leftover after parsing attributes in process `syz.0.38'. [ 125.040767][ T6062] netlink: 12 bytes leftover after parsing attributes in process `syz.0.38'. [ 125.291315][ T6070] netlink: 3 bytes leftover after parsing attributes in process `syz.0.38'. [ 126.371797][ T6076] program syz.2.42 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 126.617903][ T6067] netlink: 156 bytes leftover after parsing attributes in process `syz.0.38'. [ 126.681815][ T6070] 0ªX¹¦À: renamed from caif0 [ 126.732427][ T6070] 0ªX¹¦À: entered allmulticast mode [ 126.750868][ T6070] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 126.796924][ T6088] netlink: 12 bytes leftover after parsing attributes in process `syz.2.46'. [ 126.809455][ T6089] netlink: 4 bytes leftover after parsing attributes in process `syz.1.47'. [ 126.829117][ T6085] smc: net device bond0 applied user defined pnetid SYZ2 [ 126.863890][ T6085] smc: net device bond0 erased user defined pnetid SYZ2 [ 130.685207][ T6126] vlan2: entered allmulticast mode [ 130.690392][ T6126] veth0: entered allmulticast mode [ 130.847766][ T6134] netlink: 4 bytes leftover after parsing attributes in process `syz.2.60'. [ 130.900774][ T6134] netlink: 12 bytes leftover after parsing attributes in process `syz.2.60'. [ 131.013931][ T6134] netlink: 156 bytes leftover after parsing attributes in process `syz.2.60'. [ 131.053064][ T6134] netlink: 3 bytes leftover after parsing attributes in process `syz.2.60'. [ 131.063851][ T6134] 0ªX¹¦À: renamed from caif0 [ 131.119141][ T6134] 0ªX¹¦À: entered allmulticast mode [ 131.125751][ T6134] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 131.171744][ T6141] smc: net device bond0 applied user defined pnetid SYZ2 [ 131.375064][ T6148] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 131.432357][ T6148] infiniband srz1: RDMA CMA: cma_listen_on_dev, error -98 [ 131.840590][ T6146] smc: net device bond0 erased user defined pnetid SYZ2 [ 132.853360][ T6166] 9pnet_fd: Insufficient options for proto=fd [ 133.630910][ T6185] vlan2: entered allmulticast mode [ 133.666145][ T6185] veth0_to_bridge: entered allmulticast mode [ 133.733213][ T6190] netlink: 4 bytes leftover after parsing attributes in process `syz.1.80'. [ 133.750205][ T6190] netlink: 12 bytes leftover after parsing attributes in process `syz.1.80'. [ 133.855940][ T6195] netlink: 156 bytes leftover after parsing attributes in process `syz.1.80'. [ 133.950670][ T6188] loop4: detected capacity change from 0 to 2048 [ 133.953461][ T6190] netlink: 3 bytes leftover after parsing attributes in process `syz.1.80'. [ 133.983694][ T6188] EXT4-fs: Ignoring removed mblk_io_submit option [ 133.994316][ T30] kauditd_printk_skb: 10 callbacks suppressed [ 133.994338][ T30] audit: type=1326 audit(1746691869.970:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.0.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 134.001863][ T6190] 0ªX¹¦À: renamed from caif0 [ 134.055786][ T6197] mmap: syz.0.82 (6197) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 134.126079][ T30] audit: type=1326 audit(1746691870.010:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.0.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 134.197369][ T6188] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.204635][ T30] audit: type=1326 audit(1746691870.010:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.0.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 134.236014][ T30] audit: type=1326 audit(1746691870.010:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.0.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 134.259932][ T30] audit: type=1326 audit(1746691870.010:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.0.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 134.282560][ T30] audit: type=1326 audit(1746691870.010:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.0.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 134.305558][ T6190] 0ªX¹¦À: entered allmulticast mode [ 134.348667][ T6190] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 134.371709][ T30] audit: type=1326 audit(1746691870.010:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.0.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 134.395261][ T30] audit: type=1326 audit(1746691870.010:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.0.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 134.417971][ T30] audit: type=1326 audit(1746691870.020:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.0.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 134.442649][ T30] audit: type=1326 audit(1746691870.020:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.0.82" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 134.530111][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.561376][ T6206] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 137.058830][ T6235] loop3: detected capacity change from 0 to 512 [ 137.109065][ T6241] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 137.205533][ T6235] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 137.229857][ T6241] netlink: 4 bytes leftover after parsing attributes in process `syz.5.95'. [ 137.330491][ T6235] ext4 filesystem being mounted at /14/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 137.376423][ T6241] team_slave_0: entered promiscuous mode [ 137.382351][ T6241] team_slave_1: entered promiscuous mode [ 137.430550][ T6241] macvtap1: entered promiscuous mode [ 137.457104][ T6241] team0: entered promiscuous mode [ 137.486817][ T6241] macvtap1: entered allmulticast mode [ 137.511724][ T6241] team0: entered allmulticast mode [ 137.516875][ T6241] team_slave_0: entered allmulticast mode [ 137.551712][ T6241] team_slave_1: entered allmulticast mode [ 137.597905][ T6241] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 138.486920][ T6253] vlan2: entered allmulticast mode [ 138.542123][ T6253] veth0_to_batadv: entered allmulticast mode [ 138.584362][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.795458][ T6256] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 138.841120][ T6256] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 138.856772][ T6256] netdevsim netdevsim2: Falling back to sysfs fallback for: . [ 138.899135][ T6263] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.013363][ T6270] siw: device registration error -23 [ 139.208155][ T6263] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.286564][ T6280] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 140.504759][ T6263] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.798100][ T6263] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.835012][ T6309] netlink: 64 bytes leftover after parsing attributes in process `syz.5.114'. [ 140.870987][ T6311] netlink: 4 bytes leftover after parsing attributes in process `syz.4.116'. [ 140.882218][ T6304] netlink: 96 bytes leftover after parsing attributes in process `syz.0.113'. [ 140.940831][ T6311] veth1_virt_wifi: entered promiscuous mode [ 140.962117][ T6311] veth1_virt_wifi: entered allmulticast mode [ 142.479321][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 142.503159][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 142.954832][ T6344] netlink: 36 bytes leftover after parsing attributes in process `syz.0.129'. [ 143.050191][ T6348] usb usb8: usbfs: process 6348 (syz.2.130) did not claim interface 0 before use [ 143.344901][ T6356] tipc: Started in network mode [ 143.349958][ T6356] tipc: Node identity 68a, cluster identity 3 [ 143.397196][ T6356] tipc: Node number set to 1674 [ 143.403305][ T6356] tipc: Cannot configure node identity twice [ 143.408384][ T6353] loop0: detected capacity change from 0 to 4096 [ 143.463858][ T6358] netlink: 4 bytes leftover after parsing attributes in process `syz.2.135'. [ 143.564618][ T6353] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 143.587917][ T6358] team_slave_0: entered promiscuous mode [ 143.593685][ T6358] team_slave_1: entered promiscuous mode [ 143.616618][ T6358] macvtap1: entered promiscuous mode [ 143.622601][ T6358] team0: entered promiscuous mode [ 143.628755][ T6358] macvtap1: entered allmulticast mode [ 143.639145][ T6358] team0: entered allmulticast mode [ 143.647043][ T6358] team_slave_0: entered allmulticast mode [ 143.657795][ T6358] team_slave_1: entered allmulticast mode [ 143.671317][ T6358] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 143.719578][ T6353] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #15: comm syz.0.132: corrupted inode contents [ 143.736088][ T6359] team0: left allmulticast mode [ 143.757589][ T6353] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #15: comm syz.0.132: mark_inode_dirty error [ 143.765127][ T6359] team_slave_0: left allmulticast mode [ 143.783238][ T6353] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #15: comm syz.0.132: corrupted inode contents [ 143.795376][ T6359] team_slave_1: left allmulticast mode [ 143.801016][ T6359] team0: left promiscuous mode [ 143.807277][ T6372] loop3: detected capacity change from 0 to 2048 [ 143.821451][ T6359] team_slave_0: left promiscuous mode [ 143.827129][ T6359] team_slave_1: left promiscuous mode [ 143.849662][ T6353] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #15: comm syz.0.132: mark_inode_dirty error [ 143.873107][ T6372] EXT4-fs: Ignoring removed mblk_io_submit option [ 143.883099][ T6353] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #15: comm syz.0.132: corrupted inode contents [ 143.909977][ T6376] smc: net device bond0 applied user defined pnetid SYZ2 [ 143.935322][ T6376] smc: net device bond0 erased user defined pnetid SYZ2 [ 143.941496][ T6372] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 143.984787][ T6353] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #15: comm syz.0.132: mark_inode_dirty error [ 144.060382][ T6353] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #15: comm syz.0.132: corrupted inode contents [ 144.096049][ T6380] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.143592][ T6353] EXT4-fs error (device loop0): ext4_truncate:4255: inode #15: comm syz.0.132: mark_inode_dirty error [ 144.220734][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.230990][ T6353] EXT4-fs error (device loop0) in ext4_setattr:5628: Corrupt filesystem [ 144.376039][ T6380] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.440332][ T6353] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.505083][ T6380] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.524778][ T6388] netlink: 36 bytes leftover after parsing attributes in process `syz.2.145'. [ 144.806923][ T6380] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.891569][ T6402] capability: warning: `syz.2.147' uses 32-bit capabilities (legacy support in use) [ 145.077188][ T30] kauditd_printk_skb: 58 callbacks suppressed [ 145.077214][ T30] audit: type=1326 audit(1746691881.050:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.5.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 145.137846][ T6380] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.143632][ T30] audit: type=1326 audit(1746691881.090:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.5.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 145.170408][ T30] audit: type=1326 audit(1746691881.090:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.5.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 145.207384][ T30] audit: type=1326 audit(1746691881.090:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.5.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 145.266706][ T6380] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.289106][ T30] audit: type=1326 audit(1746691881.090:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.5.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 145.346277][ T6380] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.373962][ T6409] loop3: detected capacity change from 0 to 1024 [ 145.378737][ T30] audit: type=1326 audit(1746691881.090:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.5.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 145.402961][ T6409] EXT4-fs: Ignoring removed nobh option [ 145.403002][ T6409] EXT4-fs: Ignoring removed bh option [ 145.439085][ T6380] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 145.477618][ T6409] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 145.480453][ T30] audit: type=1326 audit(1746691881.090:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.5.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 145.596366][ T30] audit: type=1326 audit(1746691881.090:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.5.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 145.663565][ T30] audit: type=1326 audit(1746691881.090:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.5.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 145.729114][ T30] audit: type=1326 audit(1746691881.100:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6404 comm="syz.5.148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 145.733664][ T5908] EXT4-fs error (device loop3): mb_free_blocks:1945: group 0, inode 15: block 113:freeing already freed block (bit 7); block bitmap corrupt. [ 145.817552][ T6417] siw: device registration error -23 [ 145.928527][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.265092][ T6434] netlink: 4 bytes leftover after parsing attributes in process `syz.3.155'. [ 146.349731][ T6434] mac80211_hwsim hwsim13 wlan1: entered promiscuous mode [ 146.374305][ T6436] loop1: detected capacity change from 0 to 512 [ 146.467096][ T6434] mac80211_hwsim hwsim13 wlan1: entered allmulticast mode [ 147.084632][ T6436] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 147.469552][ T6432] loop0: detected capacity change from 0 to 4096 [ 147.487369][ T6436] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 147.556588][ T6436] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 147.673095][ T6432] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 147.800084][ T5897] hid-generic 0000:0004:0000.0001: hidraw0: HID v0.00 Device [syz0] on syz1 [ 147.803879][ T6432] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #15: comm syz.0.158: corrupted inode contents [ 147.905543][ T6432] EXT4-fs error (device loop0): ext4_dirty_inode:6103: inode #15: comm syz.0.158: mark_inode_dirty error [ 147.989351][ T6432] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #15: comm syz.0.158: corrupted inode contents [ 148.044996][ T6432] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #15: comm syz.0.158: mark_inode_dirty error [ 148.215301][ T6432] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #15: comm syz.0.158: corrupted inode contents [ 148.645457][ T6432] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #15: comm syz.0.158: mark_inode_dirty error [ 148.696004][ T6432] EXT4-fs error (device loop0): ext4_do_update_inode:5211: inode #15: comm syz.0.158: corrupted inode contents [ 148.748989][ T6432] EXT4-fs error (device loop0): ext4_truncate:4255: inode #15: comm syz.0.158: mark_inode_dirty error [ 148.822899][ T6454] fido_id[6454]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 148.852500][ T6432] EXT4-fs error (device loop0) in ext4_setattr:5628: Corrupt filesystem [ 148.864797][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.244874][ T6432] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.362754][ T6475] netlink: 28 bytes leftover after parsing attributes in process `syz.5.166'. [ 149.946136][ T6483] loop0: detected capacity change from 0 to 512 [ 150.371707][ T6483] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 150.510055][ T6490] ip6gre1: entered allmulticast mode [ 150.517838][ T6483] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2847: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 150.660450][ T6483] EXT4-fs (loop0): 1 truncate cleaned up [ 150.703754][ T6483] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 150.957583][ T6506] loop4: detected capacity change from 0 to 512 [ 151.016041][ T6506] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 151.111030][ T6506] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 151.144450][ T5842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 151.236848][ T6511] loop1: detected capacity change from 0 to 512 [ 151.244763][ T6511] EXT4-fs: Ignoring removed nomblk_io_submit option [ 151.251930][ T6506] EXT4-fs error (device loop4): ext4_iget_extra_inode:4692: inode #15: comm syz.4.175: corrupted in-inode xattr: e_value size too large [ 151.305125][ T6511] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 151.324872][ T6511] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842e01c, mo2=0102] [ 151.344408][ T6511] EXT4-fs (loop1): couldn't mount RDWR because of unsupported optional features (80) [ 151.362815][ T6511] EXT4-fs (loop1): Skipping orphan cleanup due to unknown ROCOMPAT features [ 151.383916][ T6511] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 151.474765][ T6506] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.175: couldn't read orphan inode 15 (err -117) [ 152.502691][ T6511] EXT4-fs warning (device loop1): dx_probe:861: inode #2: comm syz.1.176: dx entry: limit 65535 != root limit 120 [ 152.622064][ T6511] EXT4-fs warning (device loop1): dx_probe:935: inode #2: comm syz.1.176: Corrupt directory, running e2fsck is recommended [ 153.492993][ T6506] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 153.934469][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.967557][ T6528] netlink: 28 bytes leftover after parsing attributes in process `syz.3.182'. [ 154.028418][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.400905][ T6537] netlink: 'syz.3.186': attribute type 4 has an invalid length. [ 154.492420][ T6537] netlink: 'syz.3.186': attribute type 4 has an invalid length. [ 154.851780][ T30] kauditd_printk_skb: 64 callbacks suppressed [ 154.851805][ T30] audit: type=1326 audit(1746691890.820:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.0.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 154.912539][ T6551] openvswitch: netlink: Message has 8 unknown bytes. [ 154.957831][ T30] audit: type=1326 audit(1746691890.830:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.0.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 155.044713][ T6557] loop3: detected capacity change from 0 to 512 [ 155.055207][ T6557] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 155.075644][ T30] audit: type=1326 audit(1746691890.830:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.0.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 155.142049][ T6557] EXT4-fs (loop3): 1 truncate cleaned up [ 155.167437][ T6557] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 155.180120][ T6556] loop4: detected capacity change from 0 to 512 [ 155.195797][ T30] audit: type=1326 audit(1746691890.830:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.0.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 155.223841][ T30] audit: type=1326 audit(1746691890.830:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.0.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 155.246165][ T30] audit: type=1326 audit(1746691890.860:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.0.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 155.380153][ T30] audit: type=1326 audit(1746691890.860:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.0.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 155.395611][ T6556] Quota error (device loop4): v2_read_file_info: Can't read info structure [ 155.403058][ T30] audit: type=1326 audit(1746691890.900:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.0.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 155.403130][ T30] audit: type=1326 audit(1746691890.900:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6552 comm="syz.0.192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 155.511787][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 155.521802][ T6556] EXT4-fs warning (device loop4): ext4_enable_quotas:7166: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix. [ 155.571505][ T6556] EXT4-fs (loop4): mount failed [ 155.794713][ T6574] netlink: 28 bytes leftover after parsing attributes in process `syz.1.199'. [ 156.623863][ T6589] netlink: 'syz.4.203': attribute type 4 has an invalid length. [ 156.794738][ T6593] netlink: 'syz.4.203': attribute type 4 has an invalid length. [ 156.862148][ T6592] netlink: 4 bytes leftover after parsing attributes in process `syz.5.206'. [ 156.972741][ T6600] siw: device registration error -23 [ 157.205503][ T6592] macvtap2: entered promiscuous mode [ 157.212892][ T6592] macvtap2: entered allmulticast mode [ 157.230444][ T6592] 8021q: adding VLAN 0 to HW filter on device macvtap2 [ 157.358546][ T6613] loop0: detected capacity change from 0 to 512 [ 157.390178][ T6613] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 157.452546][ T6613] EXT4-fs (loop0): 1 truncate cleaned up [ 157.523861][ T6613] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 157.548054][ T6620] loop5: detected capacity change from 0 to 512 [ 157.555983][ T6620] EXT4-fs: Ignoring removed nobh option [ 157.625657][ T6620] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #4: comm syz.5.212: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 771, max 4(4), depth 0(0) [ 157.730106][ T6620] EXT4-fs error (device loop5): ext4_quota_enable:7128: comm syz.5.212: Bad quota inode: 4, type: 1 [ 157.787496][ T6620] EXT4-fs warning (device loop5): ext4_enable_quotas:7166: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 157.873486][ T6620] EXT4-fs (loop5): mount failed [ 158.082270][ T5842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.139748][ T6635] netlink: 28 bytes leftover after parsing attributes in process `syz.3.218'. [ 158.764295][ T6664] siw: device registration error -23 [ 159.136670][ T6669] netlink: 4 bytes leftover after parsing attributes in process `syz.5.225'. [ 160.056104][ T6669] macvtap3: entered promiscuous mode [ 160.061954][ T6669] macvtap3: entered allmulticast mode [ 160.069613][ T6669] 8021q: adding VLAN 0 to HW filter on device macvtap3 [ 160.183277][ T6681] netlink: 'syz.2.227': attribute type 4 has an invalid length. [ 160.244833][ T6682] netlink: 'syz.2.227': attribute type 4 has an invalid length. [ 160.318113][ T30] kauditd_printk_skb: 41 callbacks suppressed [ 160.318139][ T30] audit: type=1326 audit(1746691896.290:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6683 comm="syz.0.228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 160.482327][ T30] audit: type=1326 audit(1746691896.290:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6683 comm="syz.0.228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 160.569105][ T30] audit: type=1326 audit(1746691896.300:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6683 comm="syz.0.228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 160.592846][ T6687] netlink: 96 bytes leftover after parsing attributes in process `syz.3.229'. [ 160.671696][ T30] audit: type=1326 audit(1746691896.300:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6683 comm="syz.0.228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 160.738299][ T30] audit: type=1326 audit(1746691896.300:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6683 comm="syz.0.228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 160.811455][ T30] audit: type=1326 audit(1746691896.300:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6683 comm="syz.0.228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 160.819106][ T6690] loop5: detected capacity change from 0 to 512 [ 160.860438][ T30] audit: type=1326 audit(1746691896.330:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6683 comm="syz.0.228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 160.934447][ T6690] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 160.997862][ T6690] EXT4-fs (loop5): 1 truncate cleaned up [ 161.037385][ T30] audit: type=1326 audit(1746691896.330:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6683 comm="syz.0.228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f86fd385927 code=0x7ffc0000 [ 161.142272][ T6690] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.154307][ T30] audit: type=1326 audit(1746691896.330:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6683 comm="syz.0.228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f86fd32ab39 code=0x7ffc0000 [ 161.179960][ T30] audit: type=1326 audit(1746691896.330:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6683 comm="syz.0.228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 161.282797][ T6701] netlink: 4 bytes leftover after parsing attributes in process `syz.4.234'. [ 161.337073][ T6703] netlink: 28 bytes leftover after parsing attributes in process `syz.2.235'. [ 161.402552][ T6701] team_slave_0: entered promiscuous mode [ 161.408334][ T6701] team_slave_1: entered promiscuous mode [ 161.434765][ T6701] macvtap1: entered promiscuous mode [ 161.449123][ T6701] team0: entered promiscuous mode [ 161.469183][ T6701] macvtap1: entered allmulticast mode [ 161.504670][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.516758][ T6701] team0: entered allmulticast mode [ 161.529668][ T6701] team_slave_0: entered allmulticast mode [ 161.562391][ T6701] team_slave_1: entered allmulticast mode [ 161.608178][ T6701] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 161.958196][ T6716] veth0_macvtap: left promiscuous mode [ 161.978389][ T6715] netlink: 'syz.1.240': attribute type 4 has an invalid length. [ 162.014972][ T6718] netlink: 4 bytes leftover after parsing attributes in process `syz.4.242'. [ 162.029471][ T6716] macvtap0: refused to change device tx_queue_len [ 162.038104][ T6723] netlink: 'syz.1.240': attribute type 4 has an invalid length. [ 162.123188][ T6718] macvtap2: entered promiscuous mode [ 162.128728][ T6718] macvtap2: entered allmulticast mode [ 162.147646][ T6731] netlink: 'syz.5.245': attribute type 4 has an invalid length. [ 162.155947][ T6718] 8021q: adding VLAN 0 to HW filter on device macvtap2 [ 162.199034][ T6732] netlink: 'syz.5.245': attribute type 4 has an invalid length. [ 162.700347][ T6743] siw: device registration error -23 [ 162.770266][ T6745] loop5: detected capacity change from 0 to 512 [ 162.796606][ T6748] netlink: 4 bytes leftover after parsing attributes in process `syz.1.251'. [ 162.821748][ T6745] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 162.846944][ T6748] netlink: 12 bytes leftover after parsing attributes in process `syz.1.251'. [ 162.889265][ T6745] EXT4-fs (loop5): 1 truncate cleaned up [ 162.938253][ T6745] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 163.019910][ T6755] loop0: detected capacity change from 0 to 128 [ 163.093766][ T6755] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 163.230042][ T6748] netlink: 3 bytes leftover after parsing attributes in process `syz.1.251'. [ 163.281503][ T6755] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 163.364824][ T6762] netlink: 156 bytes leftover after parsing attributes in process `syz.1.251'. [ 164.242380][ T6748] 1ªX¹¦À: renamed from 60ªX¹¦À [ 164.281722][ T6748] A link change request failed with some changes committed already. Interface 61ªX¹¦À may have been left with an inconsistent configuration, please check. [ 164.379810][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.582868][ T6776] netlink: 4 bytes leftover after parsing attributes in process `syz.3.260'. [ 164.615369][ T6775] netlink: 'syz.1.262': attribute type 4 has an invalid length. [ 164.631854][ T6770] netlink: 4 bytes leftover after parsing attributes in process `syz.2.261'. [ 164.652989][ T6776] team_slave_0: entered promiscuous mode [ 164.658685][ T6776] team_slave_1: entered promiscuous mode [ 164.671771][ T6776] macvtap1: entered promiscuous mode [ 164.678684][ T6781] netlink: 'syz.1.262': attribute type 4 has an invalid length. [ 164.705974][ T6776] team0: entered promiscuous mode [ 164.731171][ T6776] macvtap1: entered allmulticast mode [ 164.754955][ T6776] team0: entered allmulticast mode [ 164.791453][ T6776] team_slave_0: entered allmulticast mode [ 164.797864][ T6776] team_slave_1: entered allmulticast mode [ 164.810065][ T6776] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 164.890839][ T6780] team0: left allmulticast mode [ 164.896258][ T6780] team_slave_0: left allmulticast mode [ 164.904127][ T6780] team_slave_1: left allmulticast mode [ 164.924553][ T6786] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 164.930611][ T6780] team0: left promiscuous mode [ 164.937572][ T6780] team_slave_0: left promiscuous mode [ 164.943078][ T6780] team_slave_1: left promiscuous mode [ 164.998385][ T6770] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 165.006119][ T6770] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 165.052605][ T6770] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 165.072599][ T6770] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 165.473175][ T6800] siw: device registration error -23 [ 165.797097][ T6807] loop2: detected capacity change from 0 to 1024 [ 165.934787][ T6811] loop5: detected capacity change from 0 to 512 [ 166.171141][ T6811] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 166.185540][ T6811] ext4 filesystem being mounted at /44/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 166.332442][ T6788] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 166.557010][ T6788] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 166.824818][ T6807] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 166.892324][ T6788] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 167.373148][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 167.758283][ T6840] netlink: 'syz.0.281': attribute type 4 has an invalid length. [ 167.780026][ T6840] netlink: 'syz.0.281': attribute type 4 has an invalid length. [ 167.841894][ T6823] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm syz.2.271: bg 0: block 88: padding at end of block bitmap is not set [ 167.879032][ T6788] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 167.982092][ T6788] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 168.088303][ T6788] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 168.139523][ T6788] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 168.179579][ T6788] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 168.238742][ T6788] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 168.264157][ T6788] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 168.281515][ T6788] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 168.305269][ T6788] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 168.322233][ T6788] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 168.344267][ T6788] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 168.365598][ T6788] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 168.395759][ T6788] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 168.425777][ T6788] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 168.466484][ T6788] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 168.478089][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.730763][ T6843] netlink: 14593 bytes leftover after parsing attributes in process `syz.3.285'. [ 168.795667][ T6847] netlink: 20 bytes leftover after parsing attributes in process `syz.1.283'. [ 168.820314][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.833872][ T6847] netlink: 36 bytes leftover after parsing attributes in process `syz.1.283'. [ 168.834308][ T6846] siw: device registration error -23 [ 169.233256][ T6856] netlink: 12 bytes leftover after parsing attributes in process `syz.2.287'. [ 169.451886][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 169.887034][ T6873] netlink: 36 bytes leftover after parsing attributes in process `syz.3.293'. [ 169.911826][ T6873] netlink: 36 bytes leftover after parsing attributes in process `syz.3.293'. [ 169.929946][ T6878] loop2: detected capacity change from 0 to 512 [ 169.936983][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 169.943420][ T6873] netlink: 36 bytes leftover after parsing attributes in process `syz.3.293'. [ 169.960902][ T6880] loop4: detected capacity change from 0 to 1024 [ 169.988159][ T6878] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 170.085934][ T6880] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 170.109076][ T6878] EXT4-fs (loop2): 1 truncate cleaned up [ 170.150234][ T6878] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.171764][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 170.198752][ T6880] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 170.293367][ T30] kauditd_printk_skb: 15 callbacks suppressed [ 170.293391][ T30] audit: type=1800 audit(1746691906.260:239): pid=6880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.296" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 170.341804][ T5840] Bluetooth: hci4: command 0x0c1a tx timeout [ 170.348183][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 170.402276][ T6873] netlink: 36 bytes leftover after parsing attributes in process `syz.3.293'. [ 170.414192][ T5840] Bluetooth: hci5: command 0x0c1a tx timeout [ 170.420739][ T6873] netlink: 36 bytes leftover after parsing attributes in process `syz.3.293'. [ 170.429913][ T6873] netlink: 36 bytes leftover after parsing attributes in process `syz.3.293'. [ 170.480766][ T5831] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.502603][ T6880] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.296: bg 0: block 393: padding at end of block bitmap is not set [ 170.545224][ T6880] EXT4-fs (loop4): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 186 with error 117 [ 170.581367][ T6880] EXT4-fs (loop4): This should not happen!! Data will be lost [ 170.581367][ T6880] [ 170.614917][ T6893] loop5: detected capacity change from 0 to 164 [ 170.669114][ T6893] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 170.685986][ T6877] loop1: detected capacity change from 0 to 8192 [ 170.956295][ T6893] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 170.972431][ T6440] loop1: p1 p2 p3 p4 [ 170.976471][ T6440] loop1: partition table partially beyond EOD, truncated [ 171.020144][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.022174][ T6440] loop1: p1 start 51379968 is beyond EOD, truncated [ 171.107848][ T6440] loop1: p2 size 131026 extends beyond EOD, truncated [ 171.182000][ T6440] loop1: p3 size 167771980 extends beyond EOD, truncated [ 171.300547][ T6440] loop1: p4 size 81920 extends beyond EOD, truncated [ 171.337088][ T6909] loop0: detected capacity change from 0 to 1024 [ 171.385526][ T6909] EXT4-fs: Ignoring removed nobh option [ 171.531746][ T5840] Bluetooth: hci0: command 0x0c1a tx timeout [ 171.603942][ T6909] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 171.797460][ T6877] loop1: p1 p2 p3 p4 [ 171.843178][ T6877] loop1: partition table partially beyond EOD, truncated [ 171.887212][ T6909] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4112: comm syz.0.304: Allocating blocks 385-513 which overlap fs metadata [ 171.952979][ T6877] loop1: p1 start 51379968 is beyond EOD, truncated [ 171.990927][ T6877] loop1: p2 size 131026 extends beyond EOD, truncated [ 172.011718][ T5840] Bluetooth: hci1: command 0x0c1a tx timeout [ 172.026963][ T6909] EXT4-fs (loop0): pa ffff88807ad7dbc8: logic 16, phys. 129, len 24 [ 172.035305][ T6909] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5363: group 0, free 0, pa_free 8 [ 172.187194][ T6877] loop1: p3 size 167771980 extends beyond EOD, truncated [ 172.260211][ T6929] smc: net device bond0 applied user defined pnetid SYZ2 [ 172.260480][ T6877] loop1: p4 size 81920 extends beyond EOD, [ 172.267679][ T5840] Bluetooth: hci2: command 0x0c1a tx timeout [ 172.291903][ T6931] smc: net device bond0 erased user defined pnetid SYZ2 [ 172.421726][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 172.422637][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout [ 172.427870][ T6877] truncated [ 172.493248][ T5834] Bluetooth: hci5: command 0x0c1a tx timeout [ 172.547771][ T5842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 174.050762][ T6948] netlink: 4 bytes leftover after parsing attributes in process `syz.0.310'. [ 174.093580][ T5834] Bluetooth: hci1: command 0x0c1a tx timeout [ 174.112941][ T6964] netlink: 12 bytes leftover after parsing attributes in process `syz.0.310'. [ 174.176381][ T6963] netlink: 4 bytes leftover after parsing attributes in process `syz.3.315'. [ 174.335016][ T5834] Bluetooth: hci2: command 0x0c1a tx timeout [ 174.353317][ T6948] netlink: 3 bytes leftover after parsing attributes in process `syz.0.310'. [ 174.442330][ T6963] team_slave_0: entered promiscuous mode [ 174.448094][ T6963] team_slave_1: entered promiscuous mode [ 174.456026][ T6963] macvtap2: entered promiscuous mode [ 174.459902][ T6972] netlink: 12 bytes leftover after parsing attributes in process `syz.5.317'. [ 174.471174][ T6963] team0: entered promiscuous mode [ 174.471998][ T6963] macvtap2: entered allmulticast mode [ 174.493441][ T5834] Bluetooth: hci4: command 0x0c1a tx timeout [ 174.493707][ T5840] Bluetooth: hci3: command 0x0c1a tx timeout [ 174.521850][ T6963] team0: entered allmulticast mode [ 174.547449][ T6963] team_slave_0: entered allmulticast mode [ 174.564183][ T5998] udevd[5998]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 174.567726][ T6963] team_slave_1: entered allmulticast mode [ 174.575581][ T5840] Bluetooth: hci5: command 0x0c1a tx timeout [ 174.590476][ T6440] udevd[6440]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 174.601923][ T6500] udevd[6500]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory [ 174.619183][ T6963] 8021q: adding VLAN 0 to HW filter on device macvtap2 [ 174.645795][ T5998] udevd[5998]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 174.669327][ T6500] udevd[6500]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory [ 174.680493][ T6440] udevd[6440]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 174.697539][ T6967] team0: left allmulticast mode [ 174.728572][ T6967] team_slave_0: left allmulticast mode [ 174.736356][ T6967] team_slave_1: left allmulticast mode [ 174.744793][ T6967] team0: left promiscuous mode [ 174.750391][ T6967] team_slave_0: left promiscuous mode [ 174.755928][ T6967] team_slave_1: left promiscuous mode [ 174.767877][ T6968] netlink: 156 bytes leftover after parsing attributes in process `syz.0.310'. [ 174.816384][ T6948] 1ªX¹¦À: renamed from 60ªX¹¦À [ 174.901849][ T6948] A link change request failed with some changes committed already. Interface 61ªX¹¦À may have been left with an inconsistent configuration, please check. [ 175.164081][ T6972] 8021q: adding VLAN 0 to HW filter on device bond1 [ 175.261911][ T6977] vlan2: entered allmulticast mode [ 175.277357][ T6977] bond1: entered allmulticast mode [ 175.382898][ T30] audit: type=1326 audit(1746691911.340:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6996 comm="syz.0.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 175.435980][ T6997] loop0: detected capacity change from 0 to 128 [ 175.497500][ T30] audit: type=1326 audit(1746691911.340:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6996 comm="syz.0.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 175.621249][ T30] audit: type=1326 audit(1746691911.340:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6996 comm="syz.0.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 175.647361][ T6986] syzkaller1: entered promiscuous mode [ 175.701701][ T6986] syzkaller1: entered allmulticast mode [ 175.740713][ T30] audit: type=1326 audit(1746691911.340:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6996 comm="syz.0.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 175.840822][ T30] audit: type=1326 audit(1746691911.340:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6996 comm="syz.0.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 175.867802][ T30] audit: type=1326 audit(1746691911.340:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6996 comm="syz.0.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 175.988244][ T30] audit: type=1326 audit(1746691911.340:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6996 comm="syz.0.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 176.037043][ T7013] smc: net device bond0 applied user defined pnetid SYZ2 [ 176.044889][ T7012] netlink: 'syz.4.328': attribute type 4 has an invalid length. [ 176.074792][ T7013] smc: net device bond0 erased user defined pnetid SYZ2 [ 176.077672][ T7012] netlink: 'syz.4.328': attribute type 4 has an invalid length. [ 176.092040][ T30] audit: type=1326 audit(1746691911.340:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6996 comm="syz.0.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 176.187858][ T30] audit: type=1326 audit(1746691911.340:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6996 comm="syz.0.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 176.305308][ T30] audit: type=1326 audit(1746691911.340:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6996 comm="syz.0.323" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 176.604736][ T7021] netlink: 4 bytes leftover after parsing attributes in process `syz.0.333'. [ 176.648553][ T7021] team_slave_0: entered promiscuous mode [ 176.654320][ T7021] team_slave_1: entered promiscuous mode [ 176.715733][ T7021] macvtap1: entered promiscuous mode [ 176.732707][ T7025] netlink: 4 bytes leftover after parsing attributes in process `syz.5.335'. [ 176.755036][ T7021] team0: entered promiscuous mode [ 176.760768][ T7021] macvtap1: entered allmulticast mode [ 176.781801][ T7021] team0: entered allmulticast mode [ 176.790557][ T7028] netlink: 12 bytes leftover after parsing attributes in process `syz.5.335'. [ 176.802095][ T7021] team_slave_0: entered allmulticast mode [ 176.832075][ T7021] team_slave_1: entered allmulticast mode [ 176.850594][ T7021] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 176.943815][ T7026] team0: left allmulticast mode [ 176.970289][ T7026] team_slave_0: left allmulticast mode [ 176.981655][ T7026] team_slave_1: left allmulticast mode [ 176.987175][ T7026] team0: left promiscuous mode [ 177.017176][ T7036] netlink: 3 bytes leftover after parsing attributes in process `syz.5.335'. [ 177.027542][ T7035] netlink: 'syz.2.338': attribute type 8 has an invalid length. [ 177.063442][ T7026] team_slave_0: left promiscuous mode [ 177.068957][ T7026] team_slave_1: left promiscuous mode [ 177.179686][ T7036] 0ªX¹¦À: renamed from caif0 [ 177.195791][ T7036] 0ªX¹¦À: entered allmulticast mode [ 177.221892][ T7036] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 177.279135][ T7035] bridge0: port 2(bridge_slave_1) entered disabled state [ 177.287959][ T7035] bridge0: port 1(bridge_slave_0) entered disabled state [ 177.339184][ T7035] bridge0: entered allmulticast mode [ 177.416166][ T7038] 8021q: adding VLAN 0 to HW filter on device bond1 [ 177.440842][ T7041] vlan2: entered allmulticast mode [ 177.446484][ T7041] bond1: entered allmulticast mode [ 177.588521][ T7044] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.804855][ T7044] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 177.909699][ T7055] smc: net device bond0 applied user defined pnetid SYZ2 [ 177.940440][ T7060] smc: net device bond0 erased user defined pnetid SYZ2 [ 178.045264][ T7044] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.152936][ T7064] siw: device registration error -23 [ 178.239918][ T7044] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.646719][ T7044] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.725326][ T7044] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.868384][ T7044] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 178.987021][ T7092] 0ªX¹¦À: left allmulticast mode [ 179.031671][ T7092] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 179.088520][ T7087] __nla_validate_parse: 7 callbacks suppressed [ 179.088541][ T7087] netlink: 156 bytes leftover after parsing attributes in process `syz.0.356'. [ 179.136617][ T7084] 0ªX¹¦À: renamed from 61ªX¹¦À [ 179.167171][ T7084] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 179.294921][ T7044] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.032111][ T5906] usb 1-1: new full-speed USB device number 2 using dummy_hcd [ 180.122499][ T7116] openvswitch: netlink: Flow key attr not present in new flow. [ 180.475563][ T5906] usb 1-1: config 0 has an invalid interface number: 175 but max is 0 [ 180.491818][ T5906] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 180.518371][ T5906] usb 1-1: config 0 has no interface number 0 [ 180.790238][ T5906] usb 1-1: config 0 interface 175 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 16 [ 181.142776][ T5906] usb 1-1: New USB device found, idVendor=05e0, idProduct=0600, bcdDevice=f9.9b [ 181.199353][ T5906] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 181.261104][ T5906] usb 1-1: Product: syz [ 181.296459][ T5906] usb 1-1: Manufacturer: syz [ 181.301143][ T5906] usb 1-1: SerialNumber: syz [ 181.348754][ T7132] netlink: 4 bytes leftover after parsing attributes in process `syz.4.377'. [ 181.362581][ T7132] netlink: 12 bytes leftover after parsing attributes in process `syz.4.377'. [ 181.420889][ T5906] usb 1-1: config 0 descriptor?? [ 181.475036][ T5906] symbolserial 1-1:0.175: required endpoints missing [ 181.480442][ T7130] Driver unsupported XDP return value 0 on prog (id 256) dev N/A, expect packet loss! [ 181.516079][ T7132] netlink: 156 bytes leftover after parsing attributes in process `syz.4.377'. [ 181.541286][ T7134] netlink: 3 bytes leftover after parsing attributes in process `syz.4.377'. [ 181.691103][ T7134] 1ªX¹¦À: renamed from 60ªX¹¦À [ 181.718614][ T7134] A link change request failed with some changes committed already. Interface 61ªX¹¦À may have been left with an inconsistent configuration, please check. [ 181.953562][ T10] usb 1-1: USB disconnect, device number 2 [ 182.628842][ T7166] netlink: 'syz.4.388': attribute type 3 has an invalid length. [ 182.923744][ T52] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 182.977769][ T52] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 182.996751][ T7178] netlink: 4 bytes leftover after parsing attributes in process `syz.1.393'. [ 183.002211][ T52] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 183.065091][ T52] hid-generic 0000:0004:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz1 [ 183.165376][ T7178] team_slave_0: entered promiscuous mode [ 183.171124][ T7178] team_slave_1: entered promiscuous mode [ 183.241995][ T7178] macvtap1: entered promiscuous mode [ 183.283198][ T7178] team0: entered promiscuous mode [ 183.288934][ T7178] macvtap1: entered allmulticast mode [ 183.332409][ T7178] team0: entered allmulticast mode [ 183.342663][ T7178] team_slave_0: entered allmulticast mode [ 183.381739][ T7178] team_slave_1: entered allmulticast mode [ 183.418908][ T7178] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 183.461238][ T7188] netlink: 192 bytes leftover after parsing attributes in process `syz.2.398'. [ 183.516928][ T7181] fido_id[7181]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 183.904460][ T7199] netlink: 8 bytes leftover after parsing attributes in process `syz.1.402'. [ 183.925247][ T30] kauditd_printk_skb: 77 callbacks suppressed [ 183.925274][ T30] audit: type=1326 audit(1746691919.900:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7197 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e7638e969 code=0x7ffc0000 [ 183.962395][ T7199] netlink: 8 bytes leftover after parsing attributes in process `syz.1.402'. [ 184.040648][ T30] audit: type=1326 audit(1746691919.930:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7197 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e7638e969 code=0x7ffc0000 [ 184.137689][ T30] audit: type=1326 audit(1746691919.930:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7197 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e7638e969 code=0x7ffc0000 [ 184.250861][ T30] audit: type=1326 audit(1746691919.930:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7197 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e7638e969 code=0x7ffc0000 [ 184.356739][ T30] audit: type=1326 audit(1746691919.930:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7197 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e7638e969 code=0x7ffc0000 [ 184.460340][ T30] audit: type=1326 audit(1746691919.930:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7197 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e7638e969 code=0x7ffc0000 [ 184.509715][ T30] audit: type=1326 audit(1746691919.930:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7197 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e7638e969 code=0x7ffc0000 [ 184.532491][ T30] audit: type=1326 audit(1746691919.930:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7197 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e7638e969 code=0x7ffc0000 [ 184.556699][ T30] audit: type=1326 audit(1746691919.930:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7197 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8e7638e969 code=0x7ffc0000 [ 184.580431][ T30] audit: type=1326 audit(1746691919.930:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7197 comm="syz.2.403" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8e7638e969 code=0x7ffc0000 [ 184.871727][ T7223] loop0: detected capacity change from 0 to 512 [ 184.978643][ T7223] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 185.057268][ T7223] EXT4-fs (loop0): orphan cleanup on readonly fs [ 185.079320][ T7223] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.410: Failed to acquire dquot type 1 [ 185.102532][ T7223] EXT4-fs (loop0): 1 truncate cleaned up [ 185.730241][ T7223] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 188.031452][ T5842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 189.662799][ T7277] siw: device registration error -23 [ 189.865286][ T7281] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 190.198312][ T7291] netlink: 4 bytes leftover after parsing attributes in process `syz.4.439'. [ 190.222482][ T7292] loop1: detected capacity change from 0 to 512 [ 190.230269][ T7291] netlink: 12 bytes leftover after parsing attributes in process `syz.4.439'. [ 190.254611][ T7287] loop0: detected capacity change from 0 to 512 [ 190.273512][ T30] kauditd_printk_skb: 46 callbacks suppressed [ 190.273536][ T30] audit: type=1326 audit(1746691926.250:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7290 comm="syz.5.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fea9df85927 code=0x7ffc0000 [ 190.288600][ T7292] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 190.314348][ T7295] netlink: 3 bytes leftover after parsing attributes in process `syz.4.439'. [ 190.387840][ T7287] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 190.399191][ T7295] 0ªX¹¦À: renamed from 61ªX¹¦À [ 190.401893][ T7287] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 190.409083][ T30] audit: type=1326 audit(1746691926.280:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7290 comm="syz.5.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea9df2ab39 code=0x7ffc0000 [ 190.449400][ T30] audit: type=1326 audit(1746691926.280:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7290 comm="syz.5.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 190.472092][ T30] audit: type=1326 audit(1746691926.280:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7290 comm="syz.5.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fea9df85927 code=0x7ffc0000 [ 190.504199][ T7292] EXT4-fs (loop1): 1 truncate cleaned up [ 190.513829][ T7292] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 190.545751][ T7295] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 190.601812][ T7287] System zones: 0-1, 15-15, 18-18, 34-34 [ 190.608023][ T7287] EXT4-fs (loop0): orphan cleanup on readonly fs [ 190.636749][ T30] audit: type=1326 audit(1746691926.280:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7290 comm="syz.5.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea9df2ab39 code=0x7ffc0000 [ 190.673256][ T7287] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=0 [ 190.701987][ T7287] EXT4-fs warning (device loop0): ext4_enable_quotas:7166: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 190.730877][ T7303] loop3: detected capacity change from 0 to 256 [ 190.744174][ T30] audit: type=1326 audit(1746691926.280:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7290 comm="syz.5.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 190.770318][ T7287] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 190.798059][ T7303] vfat: Unknown parameter '01777777777777777777777' [ 190.875376][ T7287] EXT4-fs error (device loop0): ext4_validate_block_bitmap:440: comm syz.0.437: bg 0: block 40: padding at end of block bitmap is not set [ 190.935320][ T7294] loop3: detected capacity change from 0 to 512 [ 190.976567][ T7294] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 191.012272][ T7287] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 191.053648][ T7287] EXT4-fs (loop0): 1 truncate cleaned up [ 191.088560][ T7287] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 191.134148][ T7294] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1129: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 191.226594][ T30] audit: type=1326 audit(1746691926.280:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7290 comm="syz.5.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fea9df85927 code=0x7ffc0000 [ 191.226756][ T7294] EXT4-fs (loop3): 1 truncate cleaned up [ 191.250275][ T30] audit: type=1326 audit(1746691926.280:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7290 comm="syz.5.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea9df2ab39 code=0x7ffc0000 [ 191.267362][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.280235][ T30] audit: type=1326 audit(1746691926.280:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7290 comm="syz.5.440" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 191.397345][ T7294] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 191.514750][ T5842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.716974][ T7322] netlink: 96 bytes leftover after parsing attributes in process `syz.5.447'. [ 191.784054][ T7326] netlink: 4 bytes leftover after parsing attributes in process `syz.4.450'. [ 191.822898][ T7326] macvtap3: entered promiscuous mode [ 191.839589][ T7326] macvtap3: entered allmulticast mode [ 191.863211][ T7326] 8021q: adding VLAN 0 to HW filter on device macvtap3 [ 191.954277][ T7332] loop1: detected capacity change from 0 to 1024 [ 191.987458][ T7322] bond2: entered promiscuous mode [ 191.992817][ T7322] bond2: entered allmulticast mode [ 191.998743][ T7322] 8021q: adding VLAN 0 to HW filter on device bond2 [ 191.999387][ T7335] usb usb8: usbfs: process 7335 (syz.2.453) did not claim interface 0 before use [ 192.217704][ T7332] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 192.434803][ T7345] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.452: bg 0: block 88: padding at end of block bitmap is not set [ 192.487095][ T7322] bond2 (unregistering): Released all slaves [ 192.621914][ T7344] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 192.735318][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 193.046755][ T7353] loop0: detected capacity change from 0 to 512 [ 193.119764][ T7353] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 193.170683][ T7353] EXT4-fs (loop0): 1 truncate cleaned up [ 193.195874][ T7353] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 193.459830][ T5842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.979819][ T7391] loop5: detected capacity change from 0 to 512 [ 195.025191][ T7391] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 195.087092][ T7391] EXT4-fs (loop5): 1 truncate cleaned up [ 195.098000][ T7391] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 195.211802][ T7397] wireguard0: entered promiscuous mode [ 195.234798][ T7397] wireguard0: entered allmulticast mode [ 195.349168][ T7404] bridge0: port 3(gretap0) entered blocking state [ 195.377864][ T7404] bridge0: port 3(gretap0) entered disabled state [ 195.414815][ T7404] gretap0: entered allmulticast mode [ 195.453286][ T7404] gretap0: entered promiscuous mode [ 195.459415][ T7404] bridge0: port 3(gretap0) entered blocking state [ 195.466544][ T7404] bridge0: port 3(gretap0) entered forwarding state [ 195.492002][ T7405] gretap0: left allmulticast mode [ 195.497176][ T7405] gretap0: left promiscuous mode [ 195.506793][ T7405] bridge0: port 3(gretap0) entered disabled state [ 195.809322][ T7413] futex_wake_op: syz.0.481 tries to shift op by -1; fix this program [ 195.874864][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.770665][ T7445] loop5: detected capacity change from 0 to 1024 [ 196.785386][ T7449] netlink: 4 bytes leftover after parsing attributes in process `syz.0.496'. [ 196.803200][ T7445] EXT4-fs: Ignoring removed nobh option [ 196.821808][ T7445] EXT4-fs: Ignoring removed bh option [ 196.909205][ T7445] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.922970][ T7449] team_slave_0: entered promiscuous mode [ 196.928689][ T7449] team_slave_1: entered promiscuous mode [ 196.962551][ T7449] macvtap2: entered promiscuous mode [ 196.971369][ T7449] team0: entered promiscuous mode [ 196.989149][ T7449] macvtap2: entered allmulticast mode [ 197.008313][ T7449] team0: entered allmulticast mode [ 197.015825][ T7449] team_slave_0: entered allmulticast mode [ 197.031701][ T7449] team_slave_1: entered allmulticast mode [ 197.046513][ T7449] 8021q: adding VLAN 0 to HW filter on device macvtap2 [ 197.078597][ T7450] team0: left allmulticast mode [ 197.086669][ T7450] team_slave_0: left allmulticast mode [ 197.092836][ T7450] team_slave_1: left allmulticast mode [ 197.101701][ T7450] team0: left promiscuous mode [ 197.109415][ T7450] team_slave_0: left promiscuous mode [ 197.114962][ T7450] team_slave_1: left promiscuous mode [ 197.148114][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.813188][ T7473] netlink: 4 bytes leftover after parsing attributes in process `syz.0.504'. [ 197.923536][ T7473] team_slave_0: entered promiscuous mode [ 197.929319][ T7473] team_slave_1: entered promiscuous mode [ 198.119883][ T7473] macvtap3: entered promiscuous mode [ 198.121544][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.136220][ T7473] team0: entered promiscuous mode [ 198.142043][ T7473] macvtap3: entered allmulticast mode [ 198.147544][ T7473] team0: entered allmulticast mode [ 198.154379][ T7473] team_slave_0: entered allmulticast mode [ 198.160242][ T7473] team_slave_1: entered allmulticast mode [ 198.173105][ T7473] 8021q: adding VLAN 0 to HW filter on device macvtap3 [ 198.271181][ T7482] capability: warning: `syz.2.508' uses deprecated v2 capabilities in a way that may be insecure [ 198.365205][ T7483] 1ªX¹¦À: left allmulticast mode [ 198.382692][ T7483] A link change request failed with some changes committed already. Interface 61ªX¹¦À may have been left with an inconsistent configuration, please check. [ 198.605269][ T7494] loop5: detected capacity change from 0 to 764 [ 198.655602][ T7494] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 198.674888][ T7497] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 198.713448][ T7497] veth0_to_bond: entered allmulticast mode [ 198.720921][ T7497] netlink: 4 bytes leftover after parsing attributes in process `syz.2.516'. [ 198.805074][ T7497] veth0_to_bond (unregistering): left allmulticast mode [ 198.886796][ T7497] bond0: (slave bond_slave_0): Releasing backup interface [ 199.381037][ T7527] netlink: 24 bytes leftover after parsing attributes in process `syz.5.525'. [ 199.833184][ T7538] loop4: detected capacity change from 0 to 512 [ 199.850622][ T7538] EXT4-fs: Ignoring removed nobh option [ 200.018899][ T7538] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #4: comm syz.4.530: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 771, max 4(4), depth 0(0) [ 200.086379][ T7538] EXT4-fs error (device loop4): ext4_quota_enable:7128: comm syz.4.530: Bad quota inode: 4, type: 1 [ 200.109788][ T7538] EXT4-fs warning (device loop4): ext4_enable_quotas:7166: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 200.128315][ T7538] EXT4-fs (loop4): mount failed [ 201.781183][ T7582] netlink: 4 bytes leftover after parsing attributes in process `syz.4.543'. [ 201.795740][ T7582] netlink: 4 bytes leftover after parsing attributes in process `syz.4.543'. [ 201.818309][ T7582] netlink: 4 bytes leftover after parsing attributes in process `syz.4.543'. [ 202.048772][ T7591] loop5: detected capacity change from 0 to 512 [ 202.080357][ T7591] EXT4-fs: Ignoring removed bh option [ 202.095034][ T7591] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 202.313179][ T7591] EXT4-fs (loop5): 1 truncate cleaned up [ 202.324304][ T7591] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 202.366368][ T7599] loop1: detected capacity change from 0 to 1024 [ 202.401017][ T30] kauditd_printk_skb: 22 callbacks suppressed [ 202.401045][ T30] audit: type=1800 audit(1746691938.370:412): pid=7591 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.546" name="file2" dev="loop5" ino=16 res=0 errno=0 [ 202.596501][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.699976][ T7599] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 202.801993][ T7608] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.549: bg 0: block 88: padding at end of block bitmap is not set [ 203.014955][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.045133][ T7619] netlink: 4 bytes leftover after parsing attributes in process `syz.2.557'. [ 203.090976][ T7619] team_slave_0: entered promiscuous mode [ 203.096832][ T7619] team_slave_1: entered promiscuous mode [ 203.125538][ T7619] macvtap2: entered promiscuous mode [ 203.136813][ T7619] team0: entered promiscuous mode [ 203.164631][ T7619] macvtap2: entered allmulticast mode [ 203.179120][ T7619] team0: entered allmulticast mode [ 203.192364][ T7619] team_slave_0: entered allmulticast mode [ 203.209587][ T7619] team_slave_1: entered allmulticast mode [ 203.230134][ T7619] 8021q: adding VLAN 0 to HW filter on device macvtap2 [ 203.238556][ T7629] netlink: 20 bytes leftover after parsing attributes in process `syz.0.560'. [ 203.268855][ T7629] netlink: 36 bytes leftover after parsing attributes in process `syz.0.560'. [ 203.280486][ T7622] team0: left allmulticast mode [ 203.291000][ T7622] team_slave_0: left allmulticast mode [ 203.300838][ T7622] team_slave_1: left allmulticast mode [ 203.306571][ T7622] team0: left promiscuous mode [ 203.315767][ T7622] team_slave_0: left promiscuous mode [ 203.321298][ T7622] team_slave_1: left promiscuous mode [ 203.743847][ T7640] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 203.856239][ T30] audit: type=1326 audit(1746691939.820:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7639 comm="syz.2.566" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8e7638e969 code=0x0 [ 203.864891][ T7640] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 203.886441][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 203.892981][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 203.902879][ T5896] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 203.929823][ T5896] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 204.680611][ T7655] loop1: detected capacity change from 0 to 1024 [ 204.713002][ T7655] EXT4-fs: Ignoring removed bh option [ 204.836742][ T7659] netlink: 16 bytes leftover after parsing attributes in process `syz.3.573'. [ 204.974433][ T7655] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 205.141831][ T5894] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 205.194408][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.322576][ T5894] usb 6-1: Using ep0 maxpacket: 32 [ 205.340362][ T7673] netlink: 20 bytes leftover after parsing attributes in process `syz.4.579'. [ 205.346048][ T5894] usb 6-1: New USB device found, idVendor=046d, idProduct=0960, bcdDevice=a5.af [ 205.358650][ T7673] netlink: 36 bytes leftover after parsing attributes in process `syz.4.579'. [ 205.383550][ T5894] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 205.391670][ T5894] usb 6-1: Product: syz [ 205.397428][ T5894] usb 6-1: Manufacturer: syz [ 205.425075][ T5894] usb 6-1: SerialNumber: syz [ 205.445986][ T5894] usb 6-1: config 0 descriptor?? [ 205.476869][ T5894] gspca_main: sunplus-2.14.0 probing 046d:0960 [ 205.633915][ T7683] netlink: 'syz.3.583': attribute type 10 has an invalid length. [ 205.681086][ T5894] gspca_sunplus: reg_w_riv err -71 [ 205.689362][ T5894] sunplus 6-1:0.0: probe with driver sunplus failed with error -71 [ 205.703637][ T7683] hsr_slave_0: left promiscuous mode [ 205.718366][ T7683] hsr_slave_1: left promiscuous mode [ 205.727232][ T5894] usb 6-1: USB disconnect, device number 2 [ 205.805790][ T7685] netlink: 'syz.0.584': attribute type 29 has an invalid length. [ 205.827443][ T7692] netlink: 'syz.0.584': attribute type 29 has an invalid length. [ 205.877488][ T7685] netlink: 500 bytes leftover after parsing attributes in process `syz.0.584'. [ 206.108431][ T7700] netlink: 4 bytes leftover after parsing attributes in process `syz.0.591'. [ 206.191552][ T7700] macvtap4: entered promiscuous mode [ 206.197794][ T7700] macvtap4: entered allmulticast mode [ 206.225312][ T7700] 8021q: adding VLAN 0 to HW filter on device macvtap4 [ 206.297021][ T7705] smc: net device bond0 applied user defined pnetid SYZ2 [ 206.335046][ T7705] smc: net device bond0 erased user defined pnetid SYZ2 [ 206.528563][ T7712] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 206.988054][ T7730] siw: device registration error -23 [ 207.430143][ T7740] loop1: detected capacity change from 0 to 512 [ 207.625731][ T7740] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 207.916351][ T7740] EXT4-fs (loop1): 1 truncate cleaned up [ 207.957784][ T7740] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.210559][ T7767] smc: net device bond0 applied user defined pnetid SYZ2 [ 208.221924][ T7768] smc: net device bond0 erased user defined pnetid SYZ2 [ 208.309613][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.393130][ T7776] usb usb8: usbfs: process 7776 (syz.3.613) did not claim interface 0 before use [ 208.493732][ T7778] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 208.909962][ T7789] wireguard0: entered promiscuous mode [ 209.011699][ T7789] wireguard0: entered allmulticast mode [ 209.193954][ T7797] loop0: detected capacity change from 0 to 512 [ 209.245663][ T7797] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 209.365004][ T7797] EXT4-fs (loop0): SIPHASH is not a valid default hash value [ 210.822983][ T7815] loop1: detected capacity change from 0 to 512 [ 210.881732][ T7815] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 210.993171][ T7815] EXT4-fs (loop1): 1 truncate cleaned up [ 211.001117][ T7815] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 211.047552][ T7817] smc: net device bond0 applied user defined pnetid SYZ2 [ 211.092274][ T7824] smc: net device bond0 erased user defined pnetid SYZ2 [ 211.234114][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 212.692732][ T7845] loop0: detected capacity change from 0 to 512 [ 212.785756][ T7845] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 212.863721][ T7845] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 213.816901][ T7855] loop3: detected capacity change from 0 to 1024 [ 213.882204][ T7855] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 214.061633][ T7867] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm syz.3.642: bg 0: block 88: padding at end of block bitmap is not set [ 214.347617][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 214.446077][ T5842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 215.610363][ T7902] loop4: detected capacity change from 0 to 128 [ 215.890917][ T6444] kworker/u8:13: attempt to access beyond end of device [ 215.890917][ T6444] loop4: rw=1, sector=193, nr_sectors = 1 limit=128 [ 215.935351][ T7917] netlink: 8 bytes leftover after parsing attributes in process `syz.5.663'. [ 216.136430][ T7919] xt_connbytes: Forcing CT accounting to be enabled [ 216.162817][ T7919] Cannot find add_set index 0 as target [ 216.182519][ T7923] netlink: 8 bytes leftover after parsing attributes in process `syz.0.664'. [ 216.240181][ T7925] loop3: detected capacity change from 0 to 512 [ 216.263830][ T7928] siw: device registration error -23 [ 216.271981][ T7925] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 216.309368][ T7925] EXT4-fs (loop3): 1 truncate cleaned up [ 216.337050][ T7925] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 216.414946][ T30] audit: type=1326 audit(1746691952.380:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7931 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 216.532576][ T30] audit: type=1326 audit(1746691952.380:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7931 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 216.556785][ T30] audit: type=1326 audit(1746691952.380:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7931 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 216.580424][ T30] audit: type=1326 audit(1746691952.380:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7931 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 216.617991][ T30] audit: type=1326 audit(1746691952.380:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7931 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 216.685809][ T30] audit: type=1326 audit(1746691952.380:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7931 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 216.721701][ T30] audit: type=1326 audit(1746691952.380:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7931 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f86fd38e969 code=0x7ffc0000 [ 216.807811][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 217.008906][ T7946] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 217.085222][ T7954] loop3: detected capacity change from 0 to 512 [ 217.121785][ T7954] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 217.134574][ T7946] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 217.149780][ T7954] EXT4-fs (loop3): 1 truncate cleaned up [ 217.159905][ T7954] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 217.215998][ T7963] usb usb8: usbfs: process 7963 (syz.2.679) did not claim interface 0 before use [ 217.221745][ T30] audit: type=1804 audit(1746691953.190:421): pid=7954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.674" name="/newroot/96/bus/bus" dev="loop3" ino=18 res=1 errno=0 [ 217.353906][ T7946] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 217.370459][ T30] audit: type=1800 audit(1746691953.340:422): pid=7968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.674" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 217.404367][ T7969] usb usb8: usbfs: process 7969 (syz.0.681) did not claim interface 0 before use [ 217.554184][ T7946] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 217.947621][ T7946] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 217.953100][ T7980] loop1: detected capacity change from 0 to 512 [ 217.995116][ T7980] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 218.011422][ T7946] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.063085][ T7982] loop4: detected capacity change from 0 to 512 [ 218.068049][ T7946] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.096596][ T7946] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.111760][ T7980] EXT4-fs (loop1): 1 truncate cleaned up [ 218.119650][ T7980] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.122678][ T7982] EXT4-fs: Ignoring removed nobh option [ 218.238418][ T7982] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #4: comm syz.4.687: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 771, max 4(4), depth 0(0) [ 218.311776][ T7982] EXT4-fs error (device loop4): ext4_quota_enable:7128: comm syz.4.687: Bad quota inode: 4, type: 1 [ 218.360073][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.373021][ T7982] EXT4-fs warning (device loop4): ext4_enable_quotas:7166: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 218.429556][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.436644][ T7982] EXT4-fs (loop4): mount failed [ 218.627393][ T7999] sctp: [Deprecated]: syz.1.692 (pid 7999) Use of int in max_burst socket option. [ 218.627393][ T7999] Use struct sctp_assoc_value instead [ 218.719499][ T30] audit: type=1326 audit(1746691954.690:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7998 comm="syz.3.693" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2bb5f85927 code=0x7ffc0000 [ 218.855345][ T8004] netlink: 4 bytes leftover after parsing attributes in process `syz.5.694'. [ 218.875696][ T8004] macvtap4: entered promiscuous mode [ 218.881337][ T8004] macvtap4: entered allmulticast mode [ 218.900065][ T8004] 8021q: adding VLAN 0 to HW filter on device macvtap4 [ 218.906940][ T8007] netlink: 4 bytes leftover after parsing attributes in process `syz.1.695'. [ 218.938920][ T8007] macvtap2: entered promiscuous mode [ 218.947634][ T8007] macvtap2: entered allmulticast mode [ 218.956133][ T8007] 8021q: adding VLAN 0 to HW filter on device macvtap2 [ 219.118476][ T8011] netlink: 20 bytes leftover after parsing attributes in process `syz.4.697'. [ 219.148232][ T8011] netlink: 36 bytes leftover after parsing attributes in process `syz.4.697'. [ 219.266566][ T8015] usb usb8: usbfs: process 8015 (syz.1.700) did not claim interface 0 before use [ 220.286430][ T8027] loop5: detected capacity change from 0 to 512 [ 220.361764][ T8027] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 220.523506][ T8031] loop1: detected capacity change from 0 to 1024 [ 220.644643][ T8027] EXT4-fs (loop5): 1 truncate cleaned up [ 220.664153][ T8031] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 220.696670][ T8027] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 221.121703][ T8043] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.705: bg 0: block 88: padding at end of block bitmap is not set [ 221.567994][ T8049] smc: net device bond0 applied user defined pnetid SYZ2 [ 221.619399][ T8049] smc: net device bond0 erased user defined pnetid SYZ2 [ 221.854851][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.917354][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.150686][ T8051] loop0: detected capacity change from 0 to 8192 [ 222.201914][ T8062] netlink: 4 bytes leftover after parsing attributes in process `syz.5.713'. [ 222.255399][ T8051] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 222.284342][ T8062] macvtap5: entered promiscuous mode [ 222.301085][ T8062] macvtap5: entered allmulticast mode [ 222.356583][ T8062] 8021q: adding VLAN 0 to HW filter on device macvtap5 [ 222.426357][ T8067] usb usb8: usbfs: process 8067 (syz.2.718) did not claim interface 0 before use [ 222.488324][ T30] kauditd_printk_skb: 3 callbacks suppressed [ 222.488350][ T30] audit: type=1326 audit(1746691958.460:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8066 comm="syz.3.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 222.567856][ T30] audit: type=1326 audit(1746691958.460:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8066 comm="syz.3.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 222.652477][ T30] audit: type=1326 audit(1746691958.460:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8066 comm="syz.3.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 222.748416][ T30] audit: type=1326 audit(1746691958.460:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8066 comm="syz.3.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 223.140148][ T30] audit: type=1326 audit(1746691958.460:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8066 comm="syz.3.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 223.181750][ T30] audit: type=1326 audit(1746691958.460:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8066 comm="syz.3.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 223.358549][ T30] audit: type=1326 audit(1746691958.470:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8066 comm="syz.3.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 223.879723][ T30] audit: type=1326 audit(1746691958.470:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8066 comm="syz.3.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 223.948898][ T30] audit: type=1326 audit(1746691958.470:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8066 comm="syz.3.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 223.984213][ T30] audit: type=1326 audit(1746691958.470:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8066 comm="syz.3.717" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 224.358181][ T8092] usb usb8: usbfs: process 8092 (syz.1.726) did not claim interface 0 before use [ 224.485092][ T8094] netdevsim netdevsim0: Direct firmware load for  failed with error -2 [ 224.534948][ T8094] netdevsim netdevsim0: Falling back to sysfs fallback for:  [ 224.551009][ T8100] smc: net device bond0 applied user defined pnetid SYZ2 [ 224.574130][ T8100] smc: net device bond0 erased user defined pnetid SYZ2 [ 224.681137][ T8102] A link change request failed with some changes committed already. Interface 61ªX¹¦À may have been left with an inconsistent configuration, please check. [ 224.730979][ T8105] netlink: 4 bytes leftover after parsing attributes in process `syz.5.733'. [ 224.795362][ T8105] macvtap6: entered promiscuous mode [ 224.811259][ T8105] macvtap6: entered allmulticast mode [ 224.834200][ T8105] 8021q: adding VLAN 0 to HW filter on device macvtap6 [ 224.877051][ T8108] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 224.908110][ T8111] usb usb8: usbfs: process 8111 (syz.1.735) did not claim interface 0 before use [ 224.933361][ T8112] loop3: detected capacity change from 0 to 512 [ 224.977861][ T8112] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 224.996565][ T8108] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 225.060681][ T8112] EXT4-fs (loop3): 1 truncate cleaned up [ 225.077345][ T8112] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 225.179115][ T8108] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 225.336813][ T8108] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 225.600402][ T8108] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 225.725494][ T8108] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 225.891103][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 227.209032][ T8150] loop5: detected capacity change from 0 to 1024 [ 227.478653][ T8150] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 227.499188][ T8157] smc: net device bond0 applied user defined pnetid SYZ2 [ 227.524677][ T8157] smc: net device bond0 erased user defined pnetid SYZ2 [ 227.601394][ T8161] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.744: bg 0: block 88: padding at end of block bitmap is not set [ 227.603138][ T8160] netlink: 4 bytes leftover after parsing attributes in process `syz.3.747'. [ 227.672444][ T8163] bridge0: port 2(bridge_slave_1) entered blocking state [ 227.679797][ T8163] bridge0: port 2(bridge_slave_1) entered forwarding state [ 227.688110][ T8163] bridge0: port 1(bridge_slave_0) entered blocking state [ 227.695312][ T8163] bridge0: port 1(bridge_slave_0) entered forwarding state [ 227.703784][ T8164] netlink: 12 bytes leftover after parsing attributes in process `syz.3.747'. [ 227.714289][ T8163] bridge0: left allmulticast mode [ 227.734549][ T8163] 0ªX¹¦À: left allmulticast mode [ 227.739721][ T8163] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 227.768830][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 227.860702][ T8160] netlink: 156 bytes leftover after parsing attributes in process `syz.3.747'. [ 227.890345][ T8160] netlink: 3 bytes leftover after parsing attributes in process `syz.3.747'. [ 227.923711][ T8160] 0ªX¹¦À: renamed from caif0 [ 227.971425][ T8160] 0ªX¹¦À: entered allmulticast mode [ 227.989430][ T8160] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 228.310287][ T8179] usb usb8: usbfs: process 8179 (syz.0.754) did not claim interface 0 before use [ 228.416401][ T30] kauditd_printk_skb: 15 callbacks suppressed [ 228.416427][ T30] audit: type=1326 audit(1746691964.390:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.5.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 228.491373][ T30] audit: type=1326 audit(1746691964.430:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.5.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 228.579536][ T30] audit: type=1326 audit(1746691964.430:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.5.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 228.656275][ T30] audit: type=1326 audit(1746691964.430:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.5.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 228.797527][ T30] audit: type=1326 audit(1746691964.430:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.5.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 228.861938][ T30] audit: type=1326 audit(1746691964.430:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.5.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 228.901770][ T30] audit: type=1326 audit(1746691964.430:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.5.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 229.024332][ T30] audit: type=1326 audit(1746691964.430:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.5.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 229.106244][ T8199] loop1: detected capacity change from 0 to 1024 [ 229.126104][ T30] audit: type=1326 audit(1746691964.440:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.5.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 229.178182][ T8203] siw: device registration error -23 [ 229.199760][ T8199] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 229.214378][ T30] audit: type=1326 audit(1746691964.440:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8185 comm="syz.5.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea9df8e969 code=0x7ffc0000 [ 229.331512][ T8199] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.763: bg 0: block 88: padding at end of block bitmap is not set [ 229.604639][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.589673][ T8234] netlink: 4 bytes leftover after parsing attributes in process `syz.1.770'. [ 231.625460][ T8234] netlink: 12 bytes leftover after parsing attributes in process `syz.1.770'. [ 231.659801][ T8238] loop5: detected capacity change from 0 to 512 [ 231.676536][ T8238] EXT4-fs: Ignoring removed nobh option [ 231.736921][ T8234] netlink: 156 bytes leftover after parsing attributes in process `syz.1.770'. [ 231.822995][ T8234] netlink: 3 bytes leftover after parsing attributes in process `syz.1.770'. [ 231.832520][ T8238] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #4: comm syz.5.772: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 771, max 4(4), depth 0(0) [ 231.862626][ T8234] 0ªX¹¦À: renamed from 61ªX¹¦À [ 231.868936][ T8238] EXT4-fs error (device loop5): ext4_quota_enable:7128: comm syz.5.772: Bad quota inode: 4, type: 1 [ 231.883254][ T8244] program syz.4.773 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 231.895754][ T8244] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 231.919251][ T8238] EXT4-fs warning (device loop5): ext4_enable_quotas:7166: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 231.943308][ T8234] 0ªX¹¦À: entered allmulticast mode [ 231.955985][ T8234] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 231.983849][ T8238] EXT4-fs (loop5): mount failed [ 232.531413][ T8264] siw: device registration error -23 [ 233.654650][ T8294] usb usb8: usbfs: process 8294 (syz.5.787) did not claim interface 0 before use [ 233.859455][ T8300] netlink: 4 bytes leftover after parsing attributes in process `syz.0.791'. [ 233.898665][ T8300] netlink: 12 bytes leftover after parsing attributes in process `syz.0.791'. [ 233.992880][ T8300] netlink: 156 bytes leftover after parsing attributes in process `syz.0.791'. [ 234.008771][ T8303] loop4: detected capacity change from 0 to 1024 [ 234.048594][ T8308] netlink: 3 bytes leftover after parsing attributes in process `syz.0.791'. [ 234.081791][ T8308] 1ªX¹¦À: renamed from 60ªX¹¦À [ 234.097490][ T8303] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.122518][ T8308] A link change request failed with some changes committed already. Interface 61ªX¹¦À may have been left with an inconsistent configuration, please check. [ 234.210786][ T8303] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.790: bg 0: block 88: padding at end of block bitmap is not set [ 234.237423][ T8319] netlink: 108 bytes leftover after parsing attributes in process `syz.2.797'. [ 234.307754][ T8323] loop5: detected capacity change from 0 to 512 [ 234.315152][ T8323] EXT4-fs: Ignoring removed nobh option [ 234.342233][ T8323] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #4: comm syz.5.795: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 771, max 4(4), depth 0(0) [ 234.347650][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.429920][ T8323] EXT4-fs error (device loop5): ext4_quota_enable:7128: comm syz.5.795: Bad quota inode: 4, type: 1 [ 234.479878][ T8323] EXT4-fs warning (device loop5): ext4_enable_quotas:7166: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 234.551288][ T8323] EXT4-fs (loop5): mount failed [ 234.731796][ T8336] netlink: 4 bytes leftover after parsing attributes in process `syz.4.802'. [ 236.314064][ T8363] loop3: detected capacity change from 0 to 1024 [ 236.327538][ T8363] EXT4-fs: Ignoring removed nomblk_io_submit option [ 236.334963][ T8363] /dev/loop3: Can't open blockdev [ 236.353742][ T30] kauditd_printk_skb: 19 callbacks suppressed [ 236.353765][ T30] audit: type=1326 audit(1746691972.330:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8362 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 236.382719][ T8366] netlink: 108 bytes leftover after parsing attributes in process `syz.2.811'. [ 236.452180][ T30] audit: type=1326 audit(1746691972.330:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8362 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 236.529269][ T30] audit: type=1326 audit(1746691972.330:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8362 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 236.602129][ T8368] netlink: 4 bytes leftover after parsing attributes in process `syz.5.813'. [ 236.641677][ T30] audit: type=1326 audit(1746691972.330:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8362 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2bb5f90887 code=0x7ffc0000 [ 236.700665][ T8368] netlink: 12 bytes leftover after parsing attributes in process `syz.5.813'. [ 236.761354][ T30] audit: type=1326 audit(1746691972.330:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8362 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f2bb5f907fc code=0x7ffc0000 [ 236.786603][ T30] audit: type=1326 audit(1746691972.330:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8362 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f2bb5f90734 code=0x7ffc0000 [ 236.808975][ T30] audit: type=1326 audit(1746691972.330:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8362 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f2bb5f90734 code=0x7ffc0000 [ 236.833167][ T30] audit: type=1326 audit(1746691972.330:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8362 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f2bb5f8d5ca code=0x7ffc0000 [ 236.912078][ T8368] netlink: 156 bytes leftover after parsing attributes in process `syz.5.813'. [ 236.921167][ T30] audit: type=1326 audit(1746691972.330:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8362 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 236.956138][ T8368] 1ªX¹¦À: renamed from 60ªX¹¦À [ 237.015209][ T30] audit: type=1326 audit(1746691972.330:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8362 comm="syz.3.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f2bb5f8e969 code=0x7ffc0000 [ 237.055355][ T8368] 1ªX¹¦À: entered allmulticast mode [ 237.064101][ T8368] A link change request failed with some changes committed already. Interface 61ªX¹¦À may have been left with an inconsistent configuration, please check. [ 237.274864][ T8389] batman_adv: batadv0: Adding interface: dummy0 [ 237.291840][ T8389] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 237.375680][ T8389] batman_adv: batadv0: Interface activated: dummy0 [ 237.466115][ T8391] batadv0: mtu less than device minimum [ 237.484524][ T8391] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 237.485488][ T8396] loop5: detected capacity change from 0 to 512 [ 237.496913][ T8391] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 237.513559][ T8391] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 237.525694][ T8391] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 237.537821][ T8391] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 237.543690][ T8396] EXT4-fs: Ignoring removed nobh option [ 237.549931][ T8391] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 237.551767][ T8391] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 237.578222][ T8391] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 237.688714][ T8396] EXT4-fs error (device loop5): ext4_ext_check_inode:524: inode #4: comm syz.5.822: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 771, max 4(4), depth 0(0) [ 237.749702][ T8396] EXT4-fs error (device loop5): ext4_quota_enable:7128: comm syz.5.822: Bad quota inode: 4, type: 1 [ 237.808001][ T8396] EXT4-fs warning (device loop5): ext4_enable_quotas:7166: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 237.876460][ T8396] EXT4-fs (loop5): mount failed [ 238.049741][ T8413] binfmt_misc: register: failed to install interpreter file ./file2 [ 238.296722][ T8423] siw: device registration error -23 [ 238.562577][ T8428] 1ªX¹¦À: renamed from 60ªX¹¦À [ 238.819439][ T8441] usb usb8: usbfs: process 8441 (syz.2.841) did not claim interface 0 before use [ 238.911398][ T8445] Invalid ELF header magic: != ELF [ 238.933902][ T8447] __nla_validate_parse: 5 callbacks suppressed [ 238.933931][ T8447] netlink: 4 bytes leftover after parsing attributes in process `syz.1.844'. [ 239.081913][ T8449] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 239.146750][ T8458] usb usb8: usbfs: process 8458 (syz.4.848) did not claim interface 0 before use [ 239.169604][ T8447] macvtap3: entered promiscuous mode [ 239.182903][ T8447] macvtap3: entered allmulticast mode [ 239.213697][ T8447] 8021q: adding VLAN 0 to HW filter on device macvtap3 [ 239.270135][ T8455] smc: net device bond0 applied user defined pnetid SYZ2 [ 239.303823][ T8460] smc: net device bond0 erased user defined pnetid SYZ2 [ 239.375680][ T8449] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 239.528297][ T8449] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 239.618427][ T8474] netlink: 28 bytes leftover after parsing attributes in process `syz.2.853'. [ 239.642486][ T8474] netlink: 8 bytes leftover after parsing attributes in process `syz.2.853'. [ 239.661056][ T8474] netlink: 36 bytes leftover after parsing attributes in process `syz.2.853'. [ 239.782661][ T8449] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 239.848172][ T8480] netlink: 4 bytes leftover after parsing attributes in process `syz.1.856'. [ 239.921179][ T8480] netlink: 12 bytes leftover after parsing attributes in process `syz.1.856'. [ 240.046147][ T8480] netlink: 156 bytes leftover after parsing attributes in process `syz.1.856'. [ 240.097528][ T8480] netlink: 3 bytes leftover after parsing attributes in process `syz.1.856'. [ 240.142709][ T8487] usb usb8: usbfs: process 8487 (syz.2.859) did not claim interface 0 before use [ 240.154679][ T8449] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.184492][ T8480] 1ªX¹¦À: renamed from 60ªX¹¦À [ 240.260372][ T8449] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.361796][ T8449] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.445704][ T8449] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.481827][ T8495] usb usb8: usbfs: process 8495 (syz.1.863) did not claim interface 0 before use [ 240.849540][ T8510] loop5: detected capacity change from 0 to 256 [ 240.857101][ T8510] vfat: Unknown parameter '01777777777777777777777' [ 240.877161][ T8510] loop5: detected capacity change from 0 to 512 [ 240.898969][ T8510] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 240.947102][ T8510] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1129: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 240.963319][ T8510] EXT4-fs (loop5): 1 truncate cleaned up [ 240.971272][ T8510] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 241.526987][ T30] kauditd_printk_skb: 54 callbacks suppressed [ 241.527013][ T30] audit: type=1326 audit(1746691977.500:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d4158e969 code=0x7ffc0000 [ 241.667644][ T8519] netlink: 28 bytes leftover after parsing attributes in process `syz.2.872'. [ 241.734337][ T30] audit: type=1326 audit(1746691977.550:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d4158e969 code=0x7ffc0000 [ 241.761049][ T8519] netlink: 8 bytes leftover after parsing attributes in process `syz.2.872'. [ 241.911678][ T30] audit: type=1326 audit(1746691977.550:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3d4158e969 code=0x7ffc0000 [ 242.107145][ T30] audit: type=1326 audit(1746691977.550:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d4158e969 code=0x7ffc0000 [ 242.202791][ T8526] usb usb8: usbfs: process 8526 (syz.0.875) did not claim interface 0 before use [ 242.232949][ T30] audit: type=1326 audit(1746691977.550:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3d4158e969 code=0x7ffc0000 [ 242.282026][ T30] audit: type=1326 audit(1746691977.550:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d4158e969 code=0x7ffc0000 [ 242.433690][ T30] audit: type=1326 audit(1746691977.560:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3d4158e969 code=0x7ffc0000 [ 242.581413][ T30] audit: type=1326 audit(1746691977.560:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d4158e969 code=0x7ffc0000 [ 242.742338][ T30] audit: type=1326 audit(1746691977.560:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3d4158e969 code=0x7ffc0000 [ 242.841368][ T8536] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 242.844840][ T30] audit: type=1326 audit(1746691977.560:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8514 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3d4158e969 code=0x7ffc0000 [ 242.884481][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 242.947016][ T8540] team_slave_0: entered promiscuous mode [ 242.952774][ T8540] team_slave_1: entered promiscuous mode [ 242.977321][ T8540] macvtap3: entered promiscuous mode [ 242.994199][ T8540] team0: entered promiscuous mode [ 242.999912][ T8540] macvtap3: entered allmulticast mode [ 243.015756][ T8540] team0: entered allmulticast mode [ 243.021823][ T8540] team_slave_0: entered allmulticast mode [ 243.027654][ T8540] team_slave_1: entered allmulticast mode [ 243.035263][ T8540] 8021q: adding VLAN 0 to HW filter on device macvtap3 [ 243.109319][ T8536] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.247034][ T8545] team0: left allmulticast mode [ 243.252213][ T8545] team_slave_0: left allmulticast mode [ 243.260733][ T8545] team_slave_1: left allmulticast mode [ 243.271847][ T8545] team0: left promiscuous mode [ 243.309295][ T8545] team_slave_0: left promiscuous mode [ 243.314891][ T8545] team_slave_1: left promiscuous mode [ 243.387596][ T8536] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.469340][ T8536] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 243.872025][ T8577] usb usb8: usbfs: process 8577 (syz.4.892) did not claim interface 0 before use [ 244.050916][ T8583] smc: net device bond0 applied user defined pnetid SYZ2 [ 244.111514][ T8583] smc: net device bond0 erased user defined pnetid SYZ2 [ 244.187698][ T8589] __nla_validate_parse: 3 callbacks suppressed [ 244.187724][ T8589] netlink: 4 bytes leftover after parsing attributes in process `syz.3.899'. [ 244.254977][ T8589] team_slave_0: entered promiscuous mode [ 244.260771][ T8589] team_slave_1: entered promiscuous mode [ 244.277212][ T8589] macvtap3: entered promiscuous mode [ 244.283187][ T8589] team0: entered promiscuous mode [ 244.289516][ T8589] macvtap3: entered allmulticast mode [ 244.295120][ T8589] team0: entered allmulticast mode [ 244.300437][ T8589] team_slave_0: entered allmulticast mode [ 244.310683][ T8589] team_slave_1: entered allmulticast mode [ 244.321398][ T8589] 8021q: adding VLAN 0 to HW filter on device macvtap3 [ 244.383225][ T8592] loop4: detected capacity change from 0 to 1024 [ 244.446911][ T8592] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 244.547079][ T8601] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.900: bg 0: block 88: padding at end of block bitmap is not set [ 244.725788][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.889525][ T8606] loop5: detected capacity change from 0 to 2048 [ 245.114055][ T8606] loop5: detected capacity change from 0 to 512 [ 245.201072][ T8606] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 245.286278][ T8606] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 245.358111][ T8622] smc: net device bond0 applied user defined pnetid SYZ2 [ 245.361528][ T8606] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 245.480073][ T8628] netlink: 28 bytes leftover after parsing attributes in process `syz.1.911'. [ 245.499209][ T8622] smc: net device bond0 erased user defined pnetid SYZ2 [ 245.666463][ T8536] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 245.765357][ T8536] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 245.844638][ T8634] usb usb8: usbfs: process 8634 (syz.5.916) did not claim interface 0 before use [ 245.981813][ T8639] ieee802154 phy0 wpan0: encryption failed: -22 [ 246.008786][ T8637] loop4: detected capacity change from 0 to 1024 [ 246.063282][ T8536] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.102053][ T8637] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 246.132657][ T8536] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.170408][ T8646] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.918: bg 0: block 88: padding at end of block bitmap is not set [ 246.783339][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 247.300778][ T8671] netlink: 28 bytes leftover after parsing attributes in process `syz.5.930'. [ 247.320201][ T8671] netlink: 8 bytes leftover after parsing attributes in process `syz.5.930'. [ 247.351250][ T8671] netlink: 36 bytes leftover after parsing attributes in process `syz.5.930'. [ 247.413006][ T8673] smc: net device bond0 applied user defined pnetid SYZ2 [ 247.472900][ T8673] smc: net device bond0 erased user defined pnetid SYZ2 [ 247.504904][ T8675] netlink: 4 bytes leftover after parsing attributes in process `syz.1.931'. [ 247.613614][ T8675] macvtap4: entered promiscuous mode [ 247.619297][ T8675] macvtap4: entered allmulticast mode [ 247.626494][ T8675] 8021q: adding VLAN 0 to HW filter on device macvtap4 [ 247.718195][ T8678] loop3: detected capacity change from 0 to 512 [ 247.764426][ T8678] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 247.838318][ T8678] EXT4-fs (loop3): 1 truncate cleaned up [ 247.906388][ T8678] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 248.045150][ T8694] loop5: detected capacity change from 0 to 512 [ 248.114377][ T8694] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 248.129930][ T5847] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.136758][ T8694] EXT4-fs (loop5): 1 truncate cleaned up [ 248.177061][ T8694] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 248.292301][ T30] kauditd_printk_skb: 12 callbacks suppressed [ 248.292326][ T30] audit: type=1804 audit(1746691984.270:567): pid=8694 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.938" name="/newroot/146/bus/bus" dev="loop5" ino=18 res=1 errno=0 [ 248.418606][ T30] audit: type=1800 audit(1746691984.390:568): pid=8704 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.938" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 248.594884][ T8710] usb usb8: usbfs: process 8710 (syz.4.942) did not claim interface 0 before use [ 249.097982][ T8719] netlink: 28 bytes leftover after parsing attributes in process `syz.3.946'. [ 249.242946][ T8719] netlink: 8 bytes leftover after parsing attributes in process `syz.3.946'. [ 249.266208][ T8721] smc: net device bond0 applied user defined pnetid SYZ2 [ 249.304897][ T8719] netlink: 36 bytes leftover after parsing attributes in process `syz.3.946'. [ 249.872638][ T8733] netlink: 4 bytes leftover after parsing attributes in process `syz.4.949'. [ 249.888772][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 249.966632][ T8737] loop0: detected capacity change from 0 to 512 [ 249.998018][ T8736] loop1: detected capacity change from 0 to 512 [ 250.008241][ T8733] macvtap4: entered promiscuous mode [ 250.031961][ T8733] macvtap4: entered allmulticast mode [ 250.034961][ T8737] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 250.049133][ T8733] 8021q: adding VLAN 0 to HW filter on device macvtap4 [ 250.056282][ T8736] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 250.283775][ T8736] EXT4-fs (loop1): 1 truncate cleaned up [ 250.323885][ T8736] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 250.491086][ T8737] EXT4-fs (loop0): 1 truncate cleaned up [ 250.504043][ T8737] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 250.642693][ T8756] [ 250.645082][ T8756] ====================================================== [ 250.652110][ T8756] WARNING: possible circular locking dependency detected [ 250.659140][ T8756] 6.15.0-rc5-syzkaller-00043-gd76bb1ebb558 #0 Not tainted [ 250.666262][ T8756] ------------------------------------------------------ [ 250.673291][ T8756] syz.0.954/8756 is trying to acquire lock: [ 250.679200][ T8756] ffff88807ae65d60 (&sb->s_type->i_mutex_key#9/1){+.+.}-{4:4}, at: ext4_xattr_inode_lookup_create+0x1052/0x1950 [ 250.691149][ T8756] [ 250.691149][ T8756] but task is already holding lock: [ 250.698525][ T8756] ffff88807aec2080 (&ei->i_data_sem/3){++++}-{4:4}, at: ext4_setattr+0x1250/0x2b70 [ 250.707944][ T8756] [ 250.707944][ T8756] which lock already depends on the new lock. [ 250.707944][ T8756] [ 250.718365][ T8756] [ 250.718365][ T8756] the existing dependency chain (in reverse order) is: [ 250.727397][ T8756] [ 250.727397][ T8756] -> #1 (&ei->i_data_sem/3){++++}-{4:4}: [ 250.735293][ T8756] down_write+0x92/0x200 [ 250.740124][ T8756] ext4_xattr_inode_lookup_create+0x1413/0x1950 [ 250.746926][ T8756] ext4_xattr_ibody_set+0x1e9/0x5d0 [ 250.752683][ T8756] ext4_xattr_set_handle+0x93c/0x1480 [ 250.758603][ T8756] ext4_xattr_set+0x14d/0x360 [ 250.763823][ T8756] __vfs_setxattr+0x175/0x1e0 [ 250.769054][ T8756] __vfs_setxattr_noperm+0x127/0x660 [ 250.774896][ T8756] __vfs_setxattr_locked+0x182/0x260 [ 250.780737][ T8756] vfs_setxattr+0x145/0x360 [ 250.785791][ T8756] do_setxattr+0x145/0x180 [ 250.790755][ T8756] filename_setxattr+0x16b/0x1d0 [ 250.796245][ T8756] path_setxattrat+0x1de/0x2a0 [ 250.801560][ T8756] __x64_sys_lsetxattr+0xc9/0x140 [ 250.807164][ T8756] do_syscall_64+0xcd/0x260 [ 250.812222][ T8756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.818651][ T8756] [ 250.818651][ T8756] -> #0 (&sb->s_type->i_mutex_key#9/1){+.+.}-{4:4}: [ 250.827488][ T8756] __lock_acquire+0x1173/0x1ba0 [ 250.832906][ T8756] lock_acquire+0x179/0x350 [ 250.837963][ T8756] down_write+0x92/0x200 [ 250.842761][ T8756] ext4_xattr_inode_lookup_create+0x1052/0x1950 [ 250.849541][ T8756] ext4_xattr_block_set+0x818/0x3650 [ 250.855370][ T8756] ext4_expand_extra_isize_ea+0x143d/0x1ab0 [ 250.861813][ T8756] __ext4_expand_extra_isize+0x346/0x480 [ 250.867994][ T8756] __ext4_mark_inode_dirty+0x544/0x870 [ 250.874009][ T8756] ext4_setattr+0x12d2/0x2b70 [ 250.879238][ T8756] notify_change+0x6a9/0x1230 [ 250.884455][ T8756] do_truncate+0x15b/0x220 [ 250.889418][ T8756] vfs_truncate+0x5d6/0x6e0 [ 250.894469][ T8756] __x64_sys_truncate+0x172/0x1e0 [ 250.900041][ T8756] do_syscall_64+0xcd/0x260 [ 250.905097][ T8756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 250.911525][ T8756] [ 250.911525][ T8756] other info that might help us debug this: [ 250.911525][ T8756] [ 250.921754][ T8756] Possible unsafe locking scenario: [ 250.921754][ T8756] [ 250.929205][ T8756] CPU0 CPU1 [ 250.934568][ T8756] ---- ---- [ 250.939933][ T8756] lock(&ei->i_data_sem/3); [ 250.944553][ T8756] lock(&sb->s_type->i_mutex_key#9/1); [ 250.952752][ T8756] lock(&ei->i_data_sem/3); [ 250.959892][ T8756] lock(&sb->s_type->i_mutex_key#9/1); [ 250.965485][ T8756] [ 250.965485][ T8756] *** DEADLOCK *** [ 250.965485][ T8756] [ 250.973632][ T8756] 5 locks held by syz.0.954/8756: [ 250.978660][ T8756] #0: ffff8880340f8420 (sb_writers#4){.+.+}-{0:0}, at: vfs_truncate+0x336/0x6e0 [ 250.987892][ T8756] #1: ffff88807aec21f0 (&sb->s_type->i_mutex_key#9){++++}-{4:4}, at: do_truncate+0x14a/0x220 [ 250.998251][ T8756] #2: ffff88807aec2390 (mapping.invalidate_lock#2){++++}-{4:4}, at: ext4_setattr+0xe07/0x2b70 [ 251.008712][ T8756] #3: ffff88807aec2080 (&ei->i_data_sem/3){++++}-{4:4}, at: ext4_setattr+0x1250/0x2b70 [ 251.018557][ T8756] #4: ffff88807aec1e80 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x4ba/0x870 [ 251.028959][ T8756] [ 251.028959][ T8756] stack backtrace: [ 251.034859][ T8756] CPU: 0 UID: 0 PID: 8756 Comm: syz.0.954 Not tainted 6.15.0-rc5-syzkaller-00043-gd76bb1ebb558 #0 PREEMPT(full) [ 251.034904][ T8756] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025 [ 251.034925][ T8756] Call Trace: [ 251.034937][ T8756] [ 251.034950][ T8756] dump_stack_lvl+0x116/0x1f0 [ 251.035004][ T8756] print_circular_bug+0x275/0x350 [ 251.035058][ T8756] check_noncircular+0x14c/0x170 [ 251.035117][ T8756] __lock_acquire+0x1173/0x1ba0 [ 251.035179][ T8756] lock_acquire+0x179/0x350 [ 251.035232][ T8756] ? ext4_xattr_inode_lookup_create+0x1052/0x1950 [ 251.035276][ T8756] ? __pfx___might_resched+0x10/0x10 [ 251.035322][ T8756] ? __pfx_dquot_free_inode+0x10/0x10 [ 251.035382][ T8756] ? rcu_is_watching+0x12/0xc0 [ 251.035425][ T8756] down_write+0x92/0x200 [ 251.035478][ T8756] ? ext4_xattr_inode_lookup_create+0x1052/0x1950 [ 251.035518][ T8756] ? __pfx_down_write+0x10/0x10 [ 251.035570][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.035616][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.035660][ T8756] ext4_xattr_inode_lookup_create+0x1052/0x1950 [ 251.035699][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.035745][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.035787][ T8756] ? find_held_lock+0x2b/0x80 [ 251.035827][ T8756] ? __pfx_ext4_xattr_inode_lookup_create+0x10/0x10 [ 251.035870][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.035911][ T8756] ? const_folio_flags+0x5b/0x100 [ 251.035965][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.036009][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.036050][ T8756] ? __lock_acquire+0xaa4/0x1ba0 [ 251.036107][ T8756] ext4_xattr_block_set+0x818/0x3650 [ 251.036144][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.036198][ T8756] ? __pfx_ext4_xattr_block_set+0x10/0x10 [ 251.036237][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.036279][ T8756] ? check_xattrs+0x10a/0xba0 [ 251.036311][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.036356][ T8756] ? xattr_find_entry+0x2c9/0x3a0 [ 251.036394][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.036435][ T8756] ? ext4_xattr_block_find+0x59/0x430 [ 251.036473][ T8756] ext4_expand_extra_isize_ea+0x143d/0x1ab0 [ 251.036531][ T8756] ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10 [ 251.036581][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.036623][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.036664][ T8756] ? dquot_initialize_needed+0x183/0x2a0 [ 251.036717][ T8756] __ext4_expand_extra_isize+0x346/0x480 [ 251.036762][ T8756] __ext4_mark_inode_dirty+0x544/0x870 [ 251.036818][ T8756] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 251.036872][ T8756] ? __pfx___might_resched+0x10/0x10 [ 251.036920][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.036966][ T8756] ? __pfx_down_write+0x10/0x10 [ 251.037025][ T8756] ext4_setattr+0x12d2/0x2b70 [ 251.037089][ T8756] ? __pfx_ext4_setattr+0x10/0x10 [ 251.037142][ T8756] notify_change+0x6a9/0x1230 [ 251.037187][ T8756] do_truncate+0x15b/0x220 [ 251.037233][ T8756] ? __pfx_do_truncate+0x10/0x10 [ 251.037279][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.037326][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.037372][ T8756] ? mnt_get_write_access+0x20c/0x300 [ 251.037412][ T8756] vfs_truncate+0x5d6/0x6e0 [ 251.037458][ T8756] ? __pfx_vfs_truncate+0x10/0x10 [ 251.037506][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.037547][ T8756] ? putname+0x154/0x1a0 [ 251.037604][ T8756] __x64_sys_truncate+0x172/0x1e0 [ 251.037653][ T8756] ? __pfx___x64_sys_truncate+0x10/0x10 [ 251.037699][ T8756] ? rcu_is_watching+0x12/0xc0 [ 251.037739][ T8756] ? srso_alias_return_thunk+0x5/0xfbef5 [ 251.037787][ T8756] do_syscall_64+0xcd/0x260 [ 251.037839][ T8756] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 251.037874][ T8756] RIP: 0033:0x7f86fd38e969 [ 251.037899][ T8756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 251.037933][ T8756] RSP: 002b:00007f86fe2b6038 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 251.037965][ T8756] RAX: ffffffffffffffda RBX: 00007f86fd5b6080 RCX: 00007f86fd38e969 [ 251.037989][ T8756] RDX: 0000000000000000 RSI: 0000000000008008 RDI: 00002000000000c0 [ 251.038010][ T8756] RBP: 00007f86fd410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 251.038032][ T8756] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 251.038053][ T8756] R13: 0000000000000000 R14: 00007f86fd5b6080 R15: 00007ffcd2462d88 [ 251.038087][ T8756] [ 251.558084][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.687938][ T5842] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.