last executing test programs: 7.43038416s ago: executing program 3 (id=330): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000005600)='sys_enter\x00', r1, 0x0, 0x2}, 0x18) utime(0x0, 0x0) 7.287994106s ago: executing program 3 (id=331): r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r0}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000"], 0x48) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_DEAUTHENTICATE(r2, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000"], 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200}, 0x94) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94) r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x10) r6 = socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000680)=ANY=[@ANYBLOB="ff010000", @ANYRES16=r7, @ANYBLOB="8b332ebd7000feffffff1500000090001d808c00008088000d8004000280680001800500040000000000230001000448120b0318160c00033005011224050330036c03241618020d12363030180014000300060009000700c800001008000100008014000500530649006d3001000400050004000200050007000100000005000400010000001800028005000400010000000a000100606c096c12300000"], 0xa4}}, 0x40000) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={0x0, r3}, 0x18) kexec_load(0x3e00, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0) rseq(&(0x7f0000000300), 0x20, 0x0, 0x0) r8 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0) r9 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r9, 0x0, 0x0) ioctl$TIOCVHANGUP(r8, 0x5437, 0x2) 6.248677909s ago: executing program 3 (id=336): r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000180)=0x7fd, 0x4) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42400) mknodat(0xffffffffffffffff, 0x0, 0x10, 0x3) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x8, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000000)='kmem_cache_free\x00', r1, 0x0, 0xd4}, 0x18) r2 = getpid() r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), r3) sendmsg$DEVLINK_CMD_RELOAD(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r4, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r2}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0xb0) 4.110689679s ago: executing program 3 (id=346): capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7}) r0 = syz_open_dev$sg(&(0x7f00000008c0), 0x0, 0x1) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000480)={0x53, 0xfffffffffffffffb, 0x6, 0x10, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000380)="bcd3b6d90727", 0x0, 0x2, 0x22, 0x1, 0x0}) 3.942794266s ago: executing program 3 (id=349): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000001c0)='sched_switch\x00', r0}, 0x18) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000003, 0x4031, 0xffffffffffffffff, 0x0) madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17) 3.579624671s ago: executing program 1 (id=352): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) dup(0xffffffffffffffff) write$tun(0xffffffffffffffff, &(0x7f0000000380)={@val={0x0, 0x1a}, @void, @eth={@link_local, @local, @void, {@generic={0x88fb}}}}, 0x12) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2000000000000015000200071b1750bd030100000000009500000000000000bc26080000000000bf67000000000000070300000fff0700670200000300000016060a000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a82983d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf719506d2d6b05fe7030586"], &(0x7f0000000100)='GPL\x00'}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000300)='sched_switch\x00', r1, 0x0, 0x80000001}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r5, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6) io_setup(0x8f0, &(0x7f0000002400)=0x0) io_submit(r6, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r5, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}]) unshare(0x62040200) ptrace$setsig(0x4203, r2, 0x81, &(0x7f0000000580)={0x13, 0x1, 0x6c}) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000002000000e27f000001"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) 3.228608505s ago: executing program 3 (id=354): socket$inet6_sctp(0xa, 0x1, 0x84) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) io_uring_setup(0x68af, 0x0) socket$kcm(0x21, 0x2, 0x2) syz_mount_image$ext4(&(0x7f0000000040)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@noload}]}, 0xea, 0x472, &(0x7f0000000f40)="$eJzs3E1sVEUcAPD/e/3kSyriBwhaRSPxo4XyIQcvGk08aGKiB4yn2haCFGpoTYQQrR7waEi8G48m3k086cWoB2PiVe+GhBguoKc1s/te2S67S0s/tri/X/K2M+9NM/PfebM7O7NtAF1rOD1kEVsj4o+I2F7LLi4wXPtx49rFiX+uXZzIolJ58++sWu76tYsTZdHy97bUMpVKxEBKDjSp99I7EePT01Pnivzo3Jn3R2fPX3ju1Jnxk1Mnp86OHTt2+NDe/qNjR1YUX178THFd3/3RzJ5dr759+fWJ45ff/fmbdH5rcb0+jjuSom0wXHt2Gz2aHp5cUWUbyq/pYVvdiay3deGRdWgQS9cTEam7+qrjf3v0xKaFa9vjlU872jhgTVUqlUqz9+fCfAX4H8ui0y0AOqN8o0+ff8tjnaYeG8LVF2sfgFLcN4qjdqV3Ye2gr+Hz7Woajojj8/9+mY5YjXUIAIDb+D7Nf55tNv/L44G6cvcUeyhDEXFvROyIiPsiYmdE3B9RLftgRDy0zPobd0hunf/kV+4osCVK878Xir2txfO/cvYXQz1Fbls1/r7sxKnpqQPFc7I/+gZS/mCbOn54+ffPy/Rgw7X6+V86Uv3lXLBox5XehgW6yfG58ZXGXbr6ScTu3mbxZ1Fu42QRsSsidt9hHaee/npPq2tN4h9cHH8bbfaZlqryVcRTtf6fj0Xx3+yqrOX+5MHnj44dGR2M6akDo+Vdcatffrv0Rqv6b9//ayv1/+am9//CLvBQNhgxe/7C6ep+7ezy67j052d1Y3rR7nKKP/82Ytn3f3/2VjXdX5z7cHxu7tzBiP7stVvPj9383TJflk/x79/XfPzvqGvxwxGRbuK9EfFIsYmb+u6xiHg8Iva1if+nl554r9W11v3fZlV+FaX4J2/X/1Hf/8tP9Jz+8bvlx19K/X+4mtpfNGopr39LbeAKnz4AAAC4K+TV78Bn+chCOs9HRmrf4d8Zm/Ppmdm5Z07MfHB2svZd+aHoy8uVrmI9OCvXP4fq1kfHGvKHinXjL3o2VfMjEzPTk50OHrrclhbjP/mrp9OtA9bcKuyjAXcp4x+6VGb8Qzcz/qF7Gf/QvZqN/4870A5g/Xn/h+5l/EP3Mv6hexn/0JVa/m18vqI/+e9wovzfCRulPR1KbFrLKiLvfIBdkehd69t4oOmlti8b8+vy4gQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALAK/gsAAP//gF3i6g==") prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x14) r4 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x1}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000280)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x10}, 0x94) 2.335672493s ago: executing program 1 (id=357): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x7f}, 0x18) mknod$loop(0x0, 0x6000, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$smc(&(0x7f00000033c0), 0xffffffffffffffff) sendmsg$SMC_PNETID_ADD(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)={0x34, r3, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz2\x00'}, @SMC_PNETID_ETHNAME={0x14, 0x2, 'ip6gretap0\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x24040000}, 0x800) sendmsg$SMC_PNETID_FLUSH(r2, &(0x7f0000001a80)={0x0, 0x0, &(0x7f0000001a40)={&(0x7f00000019c0)={0x14, r3, 0x1, 0x70bd28, 0x25dfdbfb}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x800) 2.104872622s ago: executing program 1 (id=360): bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180200000000000000000000000002001801000020646c4300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x3a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001240)={&(0x7f0000000200)='kfree\x00', r0, 0x0, 0x9}, 0x18) syz_mount_image$iso9660(&(0x7f0000000cc0), &(0x7f0000000180)='./file3\x00', 0x1004081, &(0x7f0000000500)=ANY=[@ANYRES16=0x0, @ANYRES32], 0x10, 0x7f4, &(0x7f0000000d80)="$eJzs3U9oHOfZAPBnFMl2FD5/Id9HPmMcZ2znA5s6ymqVKBU5pJvVSJ5ktSt2V8WmlMTEcjCWk5AQ0pjS1JekLS2lpx7TXEMuubUUWuih7anQHHrpoRDIpSUtLZSWUnDZ2V1r9Wcl/5HlNP39RPadfeeZd953drLPznpnJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACASKqzpdJkErW8vnQ6Ha4622wsbDG/395P1xRbrDci6fwX+/bFgW7Vgf9dnX1/5+FoHOo+OxT7OsW+uHzP/fc+8T+jI/3lt+jQzToyfNbY4JMk4uudTl08u7Ky/Mpt6Mgu+taPexP7rnuRv1/tPM5n9bzVyBcq81matxrpzPR06ZFTc610Lq9lrTOtdraQVptZpd1opserJ9LJmZmpNJs401iqz89Walm/8vGHy6XSdPr0xGJWabYa9UeenmhVT+W1Wl6fL2LKpdejE/N4Z0d8Jm+n7ayykKbnL6wsT23X1U7Q5JqavWt2nEMP3fvxax/95cJyZ4cc1kjS2zHLk5Pl8uT0YzOPPV4qjZZL5bUVpXXiWkSMRHQibstOy511zyZ1o709ZsOMiKv/vTNv3nCLRnr5P2qRRz2W4nSkkcZI8bj6NxbVmI1mNGKh8/w3Y+vmb8j////IH3+11XoH838/yx9YnX0wivx/uPvs8LD8v6EXO/A3OqzV+vvd3gzWvRpvxOW4GGdjJVZiOV65mTXuWd/qbfwb2dn25iOLeuTRikbksRCVoibt1aQxE9MxHaV4Nk7FXLQijbnIoxZZtOJMtKIdWbFHVaMZWVSiHY1oRhrHoxonIo3JmImZmIo0spiIM9GIpajHfMxGpWjlfFwotvvUun7d/7XnfvTCrz9+pzN9LWhyi4EknQ9znaA/bxG0Id3fQP7vRIz09u5dyUnskn03+Kru0Ds33LqrRf4fvdPdAAAAAG6jpPj2PYmIsXigmJrLa9mX7nS3AAAAgB1U/K75UKcY60w9EEnn+L+0SeSHu943AAAAYGckxTl2SUSMx4Pdqf7pUpt9CQAAAAD8Gyr+/f9wpxiPeLOocPwPAAAAnzHfGHaN/Y/29K6x21rcm/zkT9FsjiVXFk8/lFyqdOIql+7qLtcrvnitxfbcwWR/r5GimB69fE8SEaPV7FDSv/rlP/d2y0+Kx4OrFyAcdq3/ZJsOxNYdKJ7Ft+NIN+bIuW55rj+nu5bxubyWTVQbtScmk96XI+3XXrzwlSiG/836wv4kzl9YWZ54/qWVc0VfrnRauXKpd3n4pL9URPeEii36crW3BeKBzUc8VpyI0VvveHe9pcHx964mO7L1+JPBdb4VR7sxR8e75fja8e/rrHNy4onJqFT2j7Sz0+3Xrg6MvteLydWR7+2PNrmBV+GtONaNOXb8WLfYpBflNb14cWMvyoPb//q2xXX34p0jb57+688bSTa1XS+mbrEXAHfK+eKqP6tZ6O4iC/3jalcnoa3Lu3f3l7yRd7nzq58y+ssP5LrR2JDd05vJ7m/F8W7M8e7nidGDm+SV0ibv6C9fePkXvXf0R9/7/g++fPiXH6zL6zfQi/fiRDemV8R9PxuSYztj/s66rPpuZ4l3h663VSsnr++dGku6Nx+Kyw9fuHT2heUXll8sl6emS4+WSo+VY6z4qNArhvRU5gH4z7bdPXY++Oq10GF34Uke3eao+r5rPymYiOfjpViJc3GyONsgIh7cvNXxgZ8hnNzmqHV84A4vJ7c5tlyNLa+P3XssiSGxUwNb7P++VxR/u00vCADsgqPb5OEk7u3Of/2/ekusi7grSU5uc9y9Npef6N44t390HMNz+aDf98rP3/YtAgCffVnzk2S8/XbSbOaLz07OzExW2qeytNmoPpM289n5LM3r7axZPVWpz2fpYrPRblT7Xx3PZq20tbS42Gi207lGM11stPLTxZ3f096t31vZQqXezqutxVpWaWVptVFvV6rtdDZvVdPFpadqeetU1iwWbi1m1Xwur1baeaOethpLzWo2kaatLBsIzGezejufy7OxNK+ni818odK8EhG1pYUsnc1a1Wa+2G50G+yvK6/PNZoLRbMTG4f/h93e3gDwafDqG5cvnl1ZWX7l5iZ+ez3Bd3qMAMBasjQAAAAAAAAAAAAAAHz6bTxdr1N7QycCjsVNnz746t64lbMPP3sTn3u/+7LsRIO30s7da17TPb2d5c5vnxueeO7JJy+u1iSjg5v3qTcPnPpdFv3RbdHO5v+nbHaq69v7I/b88Lvdmi8MCU5Gd3ikH0bETSx+NdkiZvffiwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgO/8KAAD//wifUTs=") 2.097275243s ago: executing program 2 (id=361): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f00000001c0)='w\xde\xa3\x05\xff\a\x00\x00\x00\x00\x00\x00\x8f\xc0\x9b\x86\xef\\\xc0\x89\av\x9f\xd6\xd1\x98,\xc8\x18E/\x8c\x1a\xe3\xbd') ptrace(0x10, r0) ptrace$pokeuser(0x6, r0, 0x388, 0x202599ca) 1.968146078s ago: executing program 0 (id=362): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) ioctl$FS_IOC_GETFSSYSFSPATH(r0, 0x80811501, 0x0) 1.822859545s ago: executing program 2 (id=363): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0x1fffffffffffffcd, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='block_bio_remap\x00', r1}, 0x10) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 1.806248525s ago: executing program 1 (id=364): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000400018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x18) fsetxattr$security_capability(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) 1.68806943s ago: executing program 0 (id=365): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000340)={'netdevsim0\x00', &(0x7f0000000700)=@ethtool_flash={0x33, 0xea6, '.\x00'}}) 1.584245104s ago: executing program 2 (id=366): r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000004040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x200000, &(0x7f0000000500), 0x3, 0x56a, &(0x7f00000015c0)="$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") setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000180)='./file1\x00') signalfd(r0, &(0x7f0000000000)={[0xffffffffffffa896]}, 0x8) socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) r3 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0) flock(r3, 0x2) r4 = open(&(0x7f0000000300)='.\x00', 0x102000, 0x0) flock(r4, 0x1) r5 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0) flock(r5, 0x2) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d6, 0x5}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000240)='io_uring_submit_sqe\x00', r3}, 0x18) statx(0xffffffffffffff9c, &(0x7f0000000440)='./file0/../file0\x00', 0x0, 0x7ff, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r2, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="1808000000000100000000000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000040)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94) symlinkat(&(0x7f0000002040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') removexattr(&(0x7f0000000080)='./file0\x00', 0x0) 1.490411888s ago: executing program 1 (id=367): openat$tun(0xffffffffffffff9c, 0x0, 0x2241, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r1}, 0x10) r2 = socket(0x8000000010, 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb77, &(0x7f0000000c40)="$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") r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000b40)='neigh_create\x00', r3}, 0x10) write(r2, &(0x7f00000002c0)="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", 0xfc) 580.028736ms ago: executing program 2 (id=368): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000003bc0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x80}, 0x18) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000300)=[0x5], 0x0, 0x0, 0x1, 0x1}}, 0x40) 579.874946ms ago: executing program 0 (id=369): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) mount_setattr(0xffffffffffffffff, &(0x7f0000001d80)='.\x00', 0x8800, &(0x7f0000001dc0)={0x0, 0x0, 0x80000}, 0x20) 433.556212ms ago: executing program 0 (id=370): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)={0x114, 0x29, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x103, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac0b}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @loopback}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8", @typed={0x8, 0x145, 0x0, 0x0, @ipv4=@remote}]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0) 400.202184ms ago: executing program 1 (id=371): r0 = syz_mount_image$ext4(&(0x7f0000000880)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000200), 0x1, 0x569, &(0x7f00000002c0)="$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") lsetxattr$trusted_overlay_upper(&(0x7f0000000000)='./file1\x00', &(0x7f0000000840), &(0x7f0000000940)=ANY=[], 0x361, 0x0) setxattr$security_ima(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140), &(0x7f00000013c0)=ANY=[], 0x700, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000010000000000000000000018", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\b'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="640000000206010200000000000000000000000015000300686173683a69702c706f72742c6e6574000000000900020073797a3200000000050004000000000014000780080012400000000005001500220000000500050002"], 0x64}}, 0x0) lsetxattr$trusted_overlay_upper(&(0x7f0000000280)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000100)=ANY=[@ANYRESHEX=r0, @ANYRESHEX], 0xfe37, 0x0) 288.159868ms ago: executing program 2 (id=372): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x8}, 0x18) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0) pwritev(r1, &(0x7f00000000c0)=[{0x0, 0x4f}, {&(0x7f0000000140)="de", 0x1}], 0x2, 0x0, 0x0) 244.02369ms ago: executing program 0 (id=373): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000007c0)={{{@in=@remote, @in6=@dev={0xfe, 0x80, '\x00', 0x16}, 0x4e24, 0xffff, 0x4e22, 0x0, 0x2}, {0xffffffffffffffff, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x4000}, {0x9}}, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x6c}, 0x0, @in6=@dev={0xfe, 0x80, '\x00', 0x2f}, 0x200000, 0x2, 0x0, 0x0, 0x0, 0x5, 0x4}}, 0xe8) syz_emit_ethernet(0x3e, &(0x7f0000000500)={@local, @random="f368656e065b", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, @time_exceeded={0x4, 0x0, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @dev, @dev}}}}}}, 0x0) 101.340286ms ago: executing program 2 (id=374): mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xdbd76c996685eb82, 0x41071, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000001080)) ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f0000000140)={0x60, 0x0, &(0x7f0000001000/0x3000)=nil, &(0x7f0000ca5000/0x4000)=nil, 0x0, &(0x7f00000000c0)=[{0x10800000000}, {0x0, 0x8, 0xa}], 0x2, 0xbff, 0x38, 0x10, 0x0, 0xa}) 0s ago: executing program 0 (id=375): socketpair$unix(0x1, 0x2, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, 0x0, &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r1}, 0x18) io_uring_setup(0x1de0, 0x0) r2 = socket$inet6_sctp(0xa, 0x1, 0x84) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='kmem_cache_free\x00', r3}, 0x18) r4 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xc, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r2, 0x84, 0x7c, &(0x7f0000000080), 0x8) io_uring_register$IORING_REGISTER_PROBE(0xffffffffffffffff, 0x8, &(0x7f0000000380), 0x0) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000440)={0xffffffffffffffff, &(0x7f00000001c0), 0x0}, 0x20) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) semctl$SEM_STAT(0x0, 0x0, 0x12, &(0x7f0000000900)=""/197) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.77' (ED25519) to the list of known hosts. [ 73.944692][ T5778] cgroup: Unknown subsys name 'net' [ 74.078639][ T5778] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 75.762517][ T5778] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 77.517777][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 77.526060][ T5797] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 77.527517][ T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 77.552968][ T5800] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 77.561033][ T5800] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 77.569326][ T5800] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 77.575802][ T5799] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 77.577049][ T5800] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 77.583950][ T5799] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 77.591130][ T5800] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 77.597399][ T5797] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 77.613032][ T5797] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 77.614650][ T5800] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 77.624508][ T5797] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 77.628294][ T5800] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 77.641910][ T5800] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 77.650298][ T5800] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 77.651819][ T5797] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 77.658888][ T5800] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 77.665164][ T5797] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 77.671862][ T5800] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 77.679579][ T5797] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 77.693692][ T5797] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 77.701115][ T5797] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 78.182572][ T5795] chnl_net:caif_netlink_parms(): no params data found [ 78.277451][ T5791] chnl_net:caif_netlink_parms(): no params data found [ 78.370696][ T5788] chnl_net:caif_netlink_parms(): no params data found [ 78.380324][ T5787] chnl_net:caif_netlink_parms(): no params data found [ 78.418882][ T5795] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.426230][ T5795] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.433759][ T5795] bridge_slave_0: entered allmulticast mode [ 78.440677][ T5795] bridge_slave_0: entered promiscuous mode [ 78.485829][ T5795] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.493197][ T5795] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.500350][ T5795] bridge_slave_1: entered allmulticast mode [ 78.508050][ T5795] bridge_slave_1: entered promiscuous mode [ 78.565882][ T5791] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.573258][ T5791] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.580566][ T5791] bridge_slave_0: entered allmulticast mode [ 78.588605][ T5791] bridge_slave_0: entered promiscuous mode [ 78.609001][ T5795] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.623332][ T5795] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.637143][ T5791] bridge0: port 2(bridge_slave_1) entered blocking state [ 78.644813][ T5791] bridge0: port 2(bridge_slave_1) entered disabled state [ 78.652999][ T5791] bridge_slave_1: entered allmulticast mode [ 78.659780][ T5791] bridge_slave_1: entered promiscuous mode [ 78.722744][ T5795] team0: Port device team_slave_0 added [ 78.749843][ T5791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 78.772157][ T5795] team0: Port device team_slave_1 added [ 78.792804][ T5791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 78.861044][ T5788] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.869280][ T5788] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.876706][ T5788] bridge_slave_0: entered allmulticast mode [ 78.883809][ T5788] bridge_slave_0: entered promiscuous mode [ 78.904937][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 78.912050][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 78.938271][ T5795] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 78.950672][ T5787] bridge0: port 1(bridge_slave_0) entered blocking state [ 78.958038][ T5787] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.967052][ T5787] bridge_slave_0: entered allmulticast mode [ 78.974902][ T5787] bridge_slave_0: entered promiscuous mode [ 78.984924][ T5791] team0: Port device team_slave_0 added [ 78.993036][ T5788] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.000174][ T5788] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.007796][ T5788] bridge_slave_1: entered allmulticast mode [ 79.014924][ T5788] bridge_slave_1: entered promiscuous mode [ 79.035068][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.042118][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.068139][ T5795] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.079366][ T5787] bridge0: port 2(bridge_slave_1) entered blocking state [ 79.086689][ T5787] bridge0: port 2(bridge_slave_1) entered disabled state [ 79.094237][ T5787] bridge_slave_1: entered allmulticast mode [ 79.101065][ T5787] bridge_slave_1: entered promiscuous mode [ 79.120971][ T5791] team0: Port device team_slave_1 added [ 79.146536][ T5788] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.198165][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.206267][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.232252][ T5791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.245070][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.253099][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.279065][ T5791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.293745][ T5788] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.305460][ T5787] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 79.318847][ T5787] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 79.415327][ T5795] hsr_slave_0: entered promiscuous mode [ 79.423692][ T5795] hsr_slave_1: entered promiscuous mode [ 79.442129][ T5788] team0: Port device team_slave_0 added [ 79.451100][ T5787] team0: Port device team_slave_0 added [ 79.459551][ T5787] team0: Port device team_slave_1 added [ 79.478838][ T5788] team0: Port device team_slave_1 added [ 79.539631][ T5791] hsr_slave_0: entered promiscuous mode [ 79.546414][ T5791] hsr_slave_1: entered promiscuous mode [ 79.554073][ T5791] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.562750][ T5791] Cannot create hsr debugfs directory [ 79.580502][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.587539][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.613850][ T5788] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.625554][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 79.632818][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.658838][ T5787] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 79.671765][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.678751][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.705368][ T5787] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.705492][ T5797] Bluetooth: hci2: command tx timeout [ 79.735225][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 79.742421][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 79.768592][ T5797] Bluetooth: hci3: command tx timeout [ 79.768854][ T5788] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 79.774671][ T5798] Bluetooth: hci0: command tx timeout [ 79.785059][ T5790] Bluetooth: hci1: command tx timeout [ 79.887193][ T5787] hsr_slave_0: entered promiscuous mode [ 79.894235][ T5787] hsr_slave_1: entered promiscuous mode [ 79.900299][ T5787] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 79.908562][ T5787] Cannot create hsr debugfs directory [ 79.993542][ T5788] hsr_slave_0: entered promiscuous mode [ 80.000086][ T5788] hsr_slave_1: entered promiscuous mode [ 80.006380][ T5788] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 80.014724][ T5788] Cannot create hsr debugfs directory [ 80.285220][ T5791] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 80.308505][ T5791] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 80.320584][ T5791] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 80.349690][ T5791] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 80.444102][ T5795] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 80.460032][ T5795] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 80.477438][ T5795] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 80.486889][ T5795] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 80.566011][ T5787] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 80.597744][ T5787] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 80.608196][ T5787] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 80.631330][ T5787] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 80.704570][ T5788] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 80.716108][ T5788] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 80.726504][ T5788] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 80.752049][ T5788] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 80.826966][ T5791] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.885904][ T5795] 8021q: adding VLAN 0 to HW filter on device bond0 [ 80.899858][ T5791] 8021q: adding VLAN 0 to HW filter on device team0 [ 80.941141][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 80.948598][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 80.973784][ T5787] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.009888][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.017095][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.033372][ T5795] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.068578][ T1122] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.075739][ T1122] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.096025][ T5787] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.109292][ T1122] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.116488][ T1122] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.170588][ T1139] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.177857][ T1139] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.309807][ T1139] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.317096][ T1139] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.375209][ T5788] 8021q: adding VLAN 0 to HW filter on device bond0 [ 81.456870][ T5788] 8021q: adding VLAN 0 to HW filter on device team0 [ 81.487294][ T5791] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.508106][ T1139] bridge0: port 1(bridge_slave_0) entered blocking state [ 81.515344][ T1139] bridge0: port 1(bridge_slave_0) entered forwarding state [ 81.550149][ T1139] bridge0: port 2(bridge_slave_1) entered blocking state [ 81.557369][ T1139] bridge0: port 2(bridge_slave_1) entered forwarding state [ 81.733188][ T5791] veth0_vlan: entered promiscuous mode [ 81.766493][ T5790] Bluetooth: hci2: command tx timeout [ 81.783238][ T5791] veth1_vlan: entered promiscuous mode [ 81.842865][ T5790] Bluetooth: hci0: command tx timeout [ 81.848346][ T5790] Bluetooth: hci3: command tx timeout [ 81.851860][ T5798] Bluetooth: hci1: command tx timeout [ 81.916756][ T5791] veth0_macvtap: entered promiscuous mode [ 81.939001][ T5795] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 81.968078][ T5791] veth1_macvtap: entered promiscuous mode [ 82.017239][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.047327][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.077957][ T5787] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.097583][ T5791] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.122555][ T5791] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.141328][ T5791] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.150108][ T5791] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 82.240276][ T5788] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.340025][ T5787] veth0_vlan: entered promiscuous mode [ 82.354839][ T5795] veth0_vlan: entered promiscuous mode [ 82.387499][ T5787] veth1_vlan: entered promiscuous mode [ 82.459398][ T5795] veth1_vlan: entered promiscuous mode [ 82.509537][ T1120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.531548][ T1120] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.637967][ T5795] veth0_macvtap: entered promiscuous mode [ 82.666881][ T5795] veth1_macvtap: entered promiscuous mode [ 82.675096][ T5787] veth0_macvtap: entered promiscuous mode [ 82.695349][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 82.703354][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 82.713165][ T5787] veth1_macvtap: entered promiscuous mode [ 82.736422][ T5788] veth0_vlan: entered promiscuous mode [ 82.789867][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.812457][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.829336][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.847960][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.871551][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.883026][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 82.893524][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.913660][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 82.940345][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 82.953109][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 82.983552][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 82.992891][ T5788] veth1_vlan: entered promiscuous mode [ 83.015684][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.029576][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.044756][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.059801][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.092946][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.118701][ T5787] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.128515][ T5787] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.137870][ T5787] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.147316][ T5787] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.198751][ T5795] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.212865][ T5795] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.224662][ T5795] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.234627][ T5795] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.435270][ T1120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.439023][ T5788] veth0_macvtap: entered promiscuous mode [ 83.464637][ T1120] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.486958][ T5788] veth1_macvtap: entered promiscuous mode [ 83.595275][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.607057][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.620828][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.636809][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.648693][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.662215][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.674590][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.707772][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.711551][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.719952][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.734941][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.752720][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.764153][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.782122][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.802209][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.820442][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.826049][ T5886] syz.0.7[5886]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 83.841075][ T1094] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 83.851355][ T5797] Bluetooth: hci2: command tx timeout [ 83.875306][ T5886] loop0: detected capacity change from 0 to 128 [ 83.876405][ T1094] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 83.920457][ T5788] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.930378][ T5797] Bluetooth: hci1: command tx timeout [ 83.936664][ T5798] Bluetooth: hci3: command tx timeout [ 83.936673][ T5790] Bluetooth: hci0: command tx timeout [ 83.949047][ T5788] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.959282][ T5788] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 83.968537][ T5788] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.015414][ T5886] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 84.043913][ T1139] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.062965][ T1139] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.073072][ T5886] ext4 filesystem being mounted at /3/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 84.314461][ T1122] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.345033][ T1122] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.370038][ T5791] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 84.514501][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.515922][ T5894] syz.1.8[5894] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 84.523929][ T5894] syz.1.8[5894] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 84.536320][ T28] audit: type=1326 audit(1764533205.946:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe96dd8f749 code=0x7ffc0000 [ 84.539067][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.559874][ T28] audit: type=1326 audit(1764533205.946:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7fe96dd8f749 code=0x7ffc0000 [ 84.618847][ T28] audit: type=1326 audit(1764533205.946:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe96dd8f749 code=0x7ffc0000 [ 84.674998][ T28] audit: type=1326 audit(1764533205.946:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe96dd8f749 code=0x7ffc0000 [ 84.952292][ T5904] loop3: detected capacity change from 0 to 2048 [ 85.034947][ T5904] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 85.189529][ T5904] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 85.272637][ T5904] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 22 with error 28 [ 85.314030][ T5904] EXT4-fs (loop3): This should not happen!! Data will be lost [ 85.314030][ T5904] [ 85.324016][ T5904] EXT4-fs (loop3): Total free blocks count 0 [ 85.330051][ T5904] EXT4-fs (loop3): Free/Dirty block details [ 85.337820][ T5904] EXT4-fs (loop3): free_blocks=2415919504 [ 85.344790][ T5904] EXT4-fs (loop3): dirty_blocks=32 [ 85.346524][ T5914] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 85.350064][ T5904] EXT4-fs (loop3): Block reservation details [ 85.533928][ T5914] EXT4-fs (loop3): This should not happen!! Data will be lost [ 85.533928][ T5914] [ 85.973021][ T5797] Bluetooth: hci2: command tx timeout [ 86.001839][ T5797] Bluetooth: hci0: command tx timeout [ 86.007344][ T5798] Bluetooth: hci1: command tx timeout [ 86.012894][ T5798] Bluetooth: hci3: command tx timeout [ 86.443304][ T5924] mmap: syz.3.18 (5924) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 86.777046][ T5936] syz.3.24 uses obsolete (PF_INET,SOCK_PACKET) [ 87.150126][ T1899] cfg80211: failed to load regulatory.db [ 87.830203][ T28] audit: type=1326 audit(1764533209.246:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.3.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe96dd8f749 code=0x7ffc0000 [ 87.857243][ T28] audit: type=1326 audit(1764533209.276:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.3.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe96dd8f749 code=0x7ffc0000 [ 87.901419][ T28] audit: type=1326 audit(1764533209.306:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.3.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe96dd8f749 code=0x7ffc0000 [ 87.962067][ T28] audit: type=1326 audit(1764533209.306:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.3.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe96dd8f749 code=0x7ffc0000 [ 88.015893][ T28] audit: type=1326 audit(1764533209.306:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.3.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe96dd8f749 code=0x7ffc0000 [ 88.061445][ T28] audit: type=1326 audit(1764533209.306:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5953 comm="syz.3.32" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe96dd8f749 code=0x7ffc0000 [ 88.335147][ T5960] loop3: detected capacity change from 0 to 164 [ 88.351084][ T5960] ISOFS: unable to read i-node block [ 88.356998][ T5960] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 88.677100][ T5964] syzkaller0: entered promiscuous mode [ 88.737699][ T5964] syzkaller0: entered allmulticast mode [ 88.869653][ T5969] loop1: detected capacity change from 0 to 512 [ 89.007164][ T5969] EXT4-fs (loop1): 1 truncate cleaned up [ 89.113238][ T5969] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 89.236592][ T5969] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.38: bg 0: block 465: padding at end of block bitmap is not set [ 89.425399][ T5985] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.43'. [ 89.467829][ T5987] loop3: detected capacity change from 0 to 1024 [ 89.513531][ T5987] ======================================================= [ 89.513531][ T5987] WARNING: The mand mount option has been deprecated and [ 89.513531][ T5987] and is ignored by this kernel. Remove the mand [ 89.513531][ T5987] option from the mount to silence this warning. [ 89.513531][ T5987] ======================================================= [ 89.708157][ T5987] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 89.812062][ T5987] ext4 filesystem being mounted at /13/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 89.845244][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 90.351029][ T6011] veth0: entered promiscuous mode [ 90.437450][ T6011] netlink: 4 bytes leftover after parsing attributes in process `syz.0.55'. [ 90.523837][ T6016] loop2: detected capacity change from 0 to 1024 [ 90.586750][ T6016] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 90.687365][ T6020] loop1: detected capacity change from 0 to 512 [ 90.717429][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 90.728323][ T6020] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.57: invalid indirect mapped block 4294967295 (level 1) [ 90.793564][ T6020] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.57: invalid indirect mapped block 4294967295 (level 1) [ 90.857005][ T6020] EXT4-fs (loop1): 2 truncates cleaned up [ 90.882219][ T6020] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 91.032545][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.152735][ T6027] loop3: detected capacity change from 0 to 512 [ 91.177128][ T6027] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 91.202808][ T6029] tipc: Started in network mode [ 91.204144][ T6027] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 91.210076][ T6029] tipc: Node identity ac14140f, cluster identity 4711 [ 91.252458][ T6027] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 91.266749][ T6027] EXT4-fs (loop3): 1 truncate cleaned up [ 91.272941][ T6029] tipc: New replicast peer: 255.255.255.255 [ 91.280860][ T6027] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 91.302602][ T6029] tipc: Enabled bearer , priority 10 [ 91.316357][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 91.392090][ T6029] netlink: 20 bytes leftover after parsing attributes in process `syz.0.59'. [ 91.476655][ T6034] netlink: 48 bytes leftover after parsing attributes in process `syz.1.62'. [ 92.040446][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.460127][ T5176] tipc: Node number set to 2886997007 [ 93.837068][ T6073] loop2: detected capacity change from 0 to 128 [ 93.856059][ T6075] loop3: detected capacity change from 0 to 128 [ 93.891931][ T6073] tipc: Started in network mode [ 93.896880][ T6073] tipc: Node identity ac14140f, cluster identity 4711 [ 93.926027][ T6073] tipc: New replicast peer: 255.255.255.255 [ 93.933954][ T6073] tipc: Enabled bearer , priority 10 [ 93.949474][ T5805] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 94.383552][ T6087] netlink: 8 bytes leftover after parsing attributes in process `syz.2.87'. [ 94.398632][ T6087] netlink: 8 bytes leftover after parsing attributes in process `syz.2.87'. [ 94.411137][ T6087] netlink: 8 bytes leftover after parsing attributes in process `syz.2.87'. [ 94.424548][ T6087] netlink: 8 bytes leftover after parsing attributes in process `syz.2.87'. [ 95.056792][ T6102] netlink: 12 bytes leftover after parsing attributes in process `wg1'. [ 95.062781][ T5875] tipc: Node number set to 2886997007 [ 95.136863][ T6102] : entered promiscuous mode [ 95.198050][ T5875] IPVS: starting estimator thread 0... [ 95.217891][ T6108] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 95.341462][ T6110] IPVS: using max 18 ests per chain, 43200 per kthread [ 95.462145][ T6116] netlink: 72 bytes leftover after parsing attributes in process `syz.2.97'. [ 95.837500][ T6130] syz.2.102[6130] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 95.839722][ T6130] syz.2.102[6130] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 95.898580][ T6127] loop1: detected capacity change from 0 to 764 [ 95.960873][ T28] kauditd_printk_skb: 16 callbacks suppressed [ 95.960887][ T28] audit: type=1326 audit(1764533217.376:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 95.999426][ T6127] Symlink component flag not implemented [ 96.019250][ T6127] Symlink component flag not implemented [ 96.046138][ T6127] Symlink component flag not implemented (129) [ 96.088303][ T28] audit: type=1326 audit(1764533217.416:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 96.113605][ T6135] loop0: detected capacity change from 0 to 1024 [ 96.148482][ T6127] Symlink component flag not implemented (6) [ 96.156057][ T6135] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 96.181337][ T28] audit: type=1326 audit(1764533217.416:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 96.207342][ T6127] rock: directory entry would overflow storage [ 96.231937][ T6127] rock: sig=0x4f50, size=4, remaining=3 [ 96.237707][ T28] audit: type=1326 audit(1764533217.416:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 96.260778][ T28] audit: type=1326 audit(1764533217.416:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 96.285644][ T6127] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 96.294802][ T28] audit: type=1326 audit(1764533217.716:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 96.317919][ T28] audit: type=1326 audit(1764533217.716:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6126 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 96.354928][ T6135] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:478: comm syz.0.101: Invalid block bitmap block 0 in block_group 0 [ 96.434111][ T6135] Quota error (device loop0): write_blk: dquota write failed [ 96.451443][ T6135] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 96.509834][ T6135] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.101: Failed to acquire dquot type 0 [ 96.578309][ T6135] EXT4-fs error (device loop0): ext4_free_blocks:6676: comm syz.0.101: Freeing blocks not in datazone - block = 0, count = 4096 [ 96.667384][ T6135] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz.0.101: Invalid inode bitmap blk 0 in block_group 0 [ 96.704025][ T59] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-7 [ 96.733610][ T6135] EXT4-fs error (device loop0) in ext4_free_inode:363: Corrupt filesystem [ 96.750051][ T59] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u4:4: Failed to release dquot type 0 [ 96.763384][ T6135] EXT4-fs (loop0): 1 orphan inode deleted [ 96.802701][ T6135] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.175256][ T6135] syz.0.101 (6135) used greatest stack depth: 20560 bytes left [ 98.277609][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.416571][ T6174] netlink: 660 bytes leftover after parsing attributes in process `syz.2.107'. [ 99.333696][ T6195] netlink: 16 bytes leftover after parsing attributes in process `syz.1.115'. [ 99.455266][ T6203] xt_TPROXY: Can be used only with -p tcp or -p udp [ 99.543242][ T6205] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 99.555755][ T6203] loop1: detected capacity change from 0 to 1024 [ 99.581521][ T6203] EXT4-fs (loop1): couldn't mount as ext2 due to feature incompatibilities [ 99.867717][ T6213] loop2: detected capacity change from 0 to 2048 [ 99.886047][ T6213] EXT4-fs (loop2): cluster size (2048) smaller than block size (4096) [ 102.106774][ T6244] loop0: detected capacity change from 0 to 512 [ 102.140217][ T6244] EXT4-fs: Ignoring removed i_version option [ 102.169700][ T6244] EXT4-fs: Ignoring removed bh option [ 102.233593][ T6244] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.271606][ T6244] ext4 filesystem being mounted at /34/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 102.340772][ T28] kauditd_printk_skb: 36 callbacks suppressed [ 102.340788][ T28] audit: type=1326 audit(1764533223.756:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.1.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 102.451258][ T28] audit: type=1326 audit(1764533223.796:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.1.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 102.476097][ T28] audit: type=1800 audit(1764533223.806:73): pid=6244 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.135" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 102.523919][ T28] audit: type=1326 audit(1764533223.826:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.1.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 102.547982][ T28] audit: type=1326 audit(1764533223.826:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.1.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 102.571227][ T28] audit: type=1326 audit(1764533223.836:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.1.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 102.594017][ T28] audit: type=1326 audit(1764533223.836:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.1.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 102.618705][ T28] audit: type=1326 audit(1764533223.836:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.1.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 102.646908][ T28] audit: type=1326 audit(1764533223.846:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.1.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 102.680767][ T28] audit: type=1326 audit(1764533223.846:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6250 comm="syz.1.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 102.686111][ T6075] Set syz1 is full, maxelem 65536 reached [ 102.878587][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.005421][ T6286] netlink: 4 bytes leftover after parsing attributes in process `syz.0.152'. [ 104.035923][ T6286] netlink: 4 bytes leftover after parsing attributes in process `syz.0.152'. [ 105.165410][ T6317] pimreg: entered allmulticast mode [ 105.202338][ T6320] pimreg: left allmulticast mode [ 105.244396][ T6319] loop3: detected capacity change from 0 to 1024 [ 105.280903][ T6319] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 105.307654][ T6319] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869) [ 105.335314][ T6319] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 105.358512][ T6319] EXT4-fs (loop3): invalid journal inode [ 105.371586][ T6319] EXT4-fs (loop3): can't get journal size [ 105.402305][ T6319] EXT4-fs error (device loop3): ext4_protect_reserved_inode:182: inode #3: comm syz.3.168: blocks 2-2 from inode overlap system zone [ 105.433932][ T6319] EXT4-fs (loop3): failed to initialize system zone (-117) [ 105.467196][ T6319] EXT4-fs (loop3): mount failed [ 105.829689][ T6335] loop3: detected capacity change from 0 to 128 [ 105.958618][ T6338] Zero length message leads to an empty skb [ 106.475975][ T6351] loop3: detected capacity change from 0 to 512 [ 106.560874][ T6351] EXT4-fs error (device loop3): ext4_xattr_inode_iget:449: comm syz.3.180: error while reading EA inode 32 err=-116 [ 106.663424][ T6351] EXT4-fs (loop3): Remounting filesystem read-only [ 106.670517][ T6351] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -5) [ 106.689745][ T6340] loop2: detected capacity change from 0 to 512 [ 106.722856][ T6351] EXT4-fs (loop3): 1 orphan inode deleted [ 106.753430][ T6351] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 106.804772][ T6340] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.177: bad orphan inode 11862016 [ 106.930935][ T6340] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 106.977085][ T6365] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 106.986979][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.014050][ T6340] ext4 filesystem being mounted at /45/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 107.026831][ T6366] tipc: Enabled bearer , priority 0 [ 107.077362][ T6361] syzkaller0: entered promiscuous mode [ 107.087813][ T6340] capability: warning: `syz.2.177' uses deprecated v2 capabilities in a way that may be insecure [ 107.092877][ T6361] syzkaller0: entered allmulticast mode [ 107.268430][ T6361] tipc: Resetting bearer [ 107.296690][ T6358] tipc: Resetting bearer [ 107.342379][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 107.379316][ T6358] tipc: Disabling bearer [ 107.513854][ T28] kauditd_printk_skb: 22 callbacks suppressed [ 107.513869][ T28] audit: type=1326 audit(1764533228.926:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6375 comm="syz.1.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 107.599181][ T28] audit: type=1326 audit(1764533228.926:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6375 comm="syz.1.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 107.668451][ T28] audit: type=1326 audit(1764533228.936:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6375 comm="syz.1.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 107.765633][ T6382] loop0: detected capacity change from 0 to 512 [ 107.794492][ T28] audit: type=1326 audit(1764533228.936:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6375 comm="syz.1.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 107.824070][ T6382] journal_path: Lookup failure for './file0' [ 107.861465][ T6382] EXT4-fs: error: could not find journal device path [ 107.875291][ T28] audit: type=1326 audit(1764533228.936:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6375 comm="syz.1.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 107.976572][ T28] audit: type=1326 audit(1764533228.936:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6375 comm="syz.1.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 108.079003][ T28] audit: type=1326 audit(1764533228.936:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6375 comm="syz.1.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 108.145183][ T28] audit: type=1326 audit(1764533228.936:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6375 comm="syz.1.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 108.209109][ T6391] loop0: detected capacity change from 0 to 164 [ 108.218267][ T28] audit: type=1326 audit(1764533228.936:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6375 comm="syz.1.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 108.268168][ T28] audit: type=1326 audit(1764533228.936:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6375 comm="syz.1.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 108.341547][ T6391] tmpfs: Bad value for 'mpol' [ 108.672862][ T6395] vlan2: entered allmulticast mode [ 108.782779][ T6397] 9pnet: Could not find request transport: t [ 108.916858][ T6402] loop2: detected capacity change from 0 to 1024 [ 109.003051][ T6402] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 109.111508][ T6402] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 109.271059][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 109.654351][ T6420] Driver unsupported XDP return value 0 on prog (id 140) dev N/A, expect packet loss! [ 109.947735][ T6433] loop1: detected capacity change from 0 to 256 [ 109.975066][ T6433] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 110.038343][ T6433] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 110.506454][ T6442] loop1: detected capacity change from 0 to 512 [ 110.599139][ T6442] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.630594][ T6442] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 110.847991][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.987781][ T6428] loop3: detected capacity change from 0 to 1024 [ 111.010217][ T6428] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 111.058986][ T6428] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 111.809808][ T6457] loop0: detected capacity change from 0 to 512 [ 111.874264][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.884936][ T6457] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 111.928559][ T6457] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 112.112829][ T6461] loop3: detected capacity change from 0 to 164 [ 112.207170][ T6461] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 112.265010][ T6463] loop2: detected capacity change from 0 to 512 [ 112.295395][ T6461] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 112.327174][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.342156][ T6461] rock: directory entry would overflow storage [ 112.352843][ T6461] rock: sig=0x4f50, size=4, remaining=3 [ 112.358466][ T6461] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 112.373036][ T6463] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 112.416254][ T6463] EXT4-fs (loop2): 1 truncate cleaned up [ 112.470881][ T6463] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 112.817046][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.540382][ T6488] loop0: detected capacity change from 0 to 128 [ 113.632359][ T6488] syz.0.232: attempt to access beyond end of device [ 113.632359][ T6488] loop0: rw=2049, sector=138, nr_sectors = 112 limit=128 [ 115.472785][ T6531] syz.1.247[6531] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 115.472932][ T6531] syz.1.247[6531] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 115.867159][ T6543] netlink: 4 bytes leftover after parsing attributes in process `syz.1.251'. [ 116.049935][ T6547] xt_hashlimit: max too large, truncated to 1048576 [ 116.148121][ T6549] loop2: detected capacity change from 0 to 128 [ 116.494090][ T6557] loop0: detected capacity change from 0 to 512 [ 116.582210][ T5805] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 116.832390][ T6562] tipc: Enabling of bearer rejected, already enabled [ 117.212125][ T6570] loop1: detected capacity change from 0 to 128 [ 117.273181][ T6570] syz.1.261: attempt to access beyond end of device [ 117.273181][ T6570] loop1: rw=2049, sector=138, nr_sectors = 112 limit=128 [ 117.462854][ T6571] syz.1.261: attempt to access beyond end of device [ 117.462854][ T6571] loop1: rw=2049, sector=138, nr_sectors = 8 limit=128 [ 117.971644][ T6581] netlink: 16 bytes leftover after parsing attributes in process `syz.1.265'. [ 118.129138][ T28] kauditd_printk_skb: 74 callbacks suppressed [ 118.129155][ T28] audit: type=1326 audit(1764533239.546:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6583 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 118.191283][ T28] audit: type=1326 audit(1764533239.586:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6583 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 118.213879][ T28] audit: type=1326 audit(1764533239.586:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6583 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 118.243892][ T28] audit: type=1326 audit(1764533239.586:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6583 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 118.267074][ T28] audit: type=1326 audit(1764533239.586:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6583 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 118.294808][ T28] audit: type=1326 audit(1764533239.646:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6583 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 118.329298][ T6586] loop1: detected capacity change from 0 to 128 [ 118.359037][ T6586] syz.1.266: attempt to access beyond end of device [ 118.359037][ T6586] loop1: rw=2049, sector=138, nr_sectors = 112 limit=128 [ 118.386373][ T28] audit: type=1326 audit(1764533239.646:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6583 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 118.440103][ T28] audit: type=1326 audit(1764533239.666:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6585 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f44ecdc2005 code=0x7ffc0000 [ 118.502446][ T28] audit: type=1326 audit(1764533239.676:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6583 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 118.530827][ T28] audit: type=1326 audit(1764533239.676:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6583 comm="syz.1.266" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 118.552696][ T6584] syz.1.266: attempt to access beyond end of device [ 118.552696][ T6584] loop1: rw=524288, sector=146, nr_sectors = 104 limit=128 [ 118.696865][ T6587] syz.1.266: attempt to access beyond end of device [ 118.696865][ T6587] loop1: rw=2049, sector=138, nr_sectors = 8 limit=128 [ 118.945282][ T6594] loop3: detected capacity change from 0 to 4096 [ 119.000072][ T6594] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 119.445642][ T6610] loop2: detected capacity change from 0 to 2048 [ 119.451577][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.465448][ T6610] EXT4-fs: Ignoring removed bh option [ 119.572939][ T6610] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 119.825506][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.060821][ T6631] loop2: detected capacity change from 0 to 1024 [ 120.124732][ T6631] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 120.138501][ T6634] netlink: 20 bytes leftover after parsing attributes in process `syz.1.282'. [ 120.241040][ T6631] EXT4-fs (loop2): shut down requested (2) [ 120.378791][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.409195][ T6640] loop4: detected capacity change from 0 to 7 [ 120.446991][ T6640] Dev loop4: unable to read RDB block 7 [ 120.479981][ T6640] loop4: unable to read partition table [ 120.496749][ T6640] loop4: partition table beyond EOD, truncated [ 120.519133][ T6640] loop_reread_partitions: partition scan of loop4 (Sj̖P=ý?}X %`ր5) failed (rc=-5) [ 120.725063][ T6648] loop2: detected capacity change from 0 to 512 [ 120.756381][ T6648] FAT-fs (loop2): Unrecognized mount option "" or missing value [ 120.939778][ T6652] netlink: 12 bytes leftover after parsing attributes in process `syz.1.290'. [ 121.351792][ T6668] netlink: 'syz.0.297': attribute type 10 has an invalid length. [ 121.418378][ T6675] Cannot find add_set index 0 as target [ 121.440640][ T11] nci: nci_rf_intf_activated_ntf_packet: unsupported activation_rf_tech_and_mode 0xe6 [ 121.456247][ T6668] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 121.705702][ T42] Bluetooth: hci4: Frame reassembly failed (-84) [ 121.810354][ T6690] loop3: detected capacity change from 0 to 1024 [ 121.817972][ T6690] EXT4-fs: Ignoring removed orlov option [ 121.840364][ T6690] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 122.073132][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.316070][ T6698] netlink: 16 bytes leftover after parsing attributes in process `syz.3.307'. [ 122.481000][ T6705] loop3: detected capacity change from 0 to 512 [ 122.745780][ T6705] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 123.675839][ T28] kauditd_printk_skb: 22 callbacks suppressed [ 123.675856][ T28] audit: type=1326 audit(1764533245.096:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6715 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 123.762157][ T5797] Bluetooth: hci4: command 0x1003 tx timeout [ 123.769547][ T5790] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 123.791388][ T28] audit: type=1326 audit(1764533245.126:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6715 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 123.839862][ T28] audit: type=1326 audit(1764533245.126:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6715 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 123.898396][ T6718] netlink: 'syz.2.312': attribute type 10 has an invalid length. [ 123.925689][ T28] audit: type=1326 audit(1764533245.126:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6715 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 123.953377][ T28] audit: type=1326 audit(1764533245.126:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6715 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 123.983641][ T28] audit: type=1326 audit(1764533245.126:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6715 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 123.995720][ T6718] team0: Port device dummy0 added [ 124.015720][ T28] audit: type=1326 audit(1764533245.136:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6715 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 124.058554][ T6721] netlink: 'syz.2.312': attribute type 10 has an invalid length. [ 124.086205][ T28] audit: type=1326 audit(1764533245.136:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6715 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 124.119098][ T6721] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 124.135111][ T6705] netlink: 176 bytes leftover after parsing attributes in process `syz.3.310'. [ 124.145060][ T28] audit: type=1326 audit(1764533245.136:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6715 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 124.168773][ T28] audit: type=1326 audit(1764533245.136:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6715 comm="syz.1.313" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44ecd8f749 code=0x7ffc0000 [ 124.203878][ T6721] team0: Failed to send options change via netlink (err -105) [ 124.211954][ T6721] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 124.225160][ T6721] team0: Port device dummy0 removed [ 124.363898][ T5795] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.569324][ T6734] netlink: 12 bytes leftover after parsing attributes in process `syz.1.318'. [ 124.670460][ T6739] netlink: 24 bytes leftover after parsing attributes in process `syz.2.320'. [ 125.111227][ T6754] syz.0.325[6754] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 125.111469][ T6754] syz.0.325[6754] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 125.229830][ T6754] loop0: detected capacity change from 0 to 1024 [ 125.347717][ T6754] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 125.394300][ T6754] EXT4-fs (loop0): shut down requested (0) [ 125.585039][ T6754] lo speed is unknown, defaulting to 1000 [ 125.598847][ T6754] lo speed is unknown, defaulting to 1000 [ 125.618626][ T6754] lo speed is unknown, defaulting to 1000 [ 125.647991][ T6754] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 125.689996][ T6754] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 125.808397][ T6754] lo speed is unknown, defaulting to 1000 [ 125.825739][ T6754] lo speed is unknown, defaulting to 1000 [ 125.875717][ T6754] lo speed is unknown, defaulting to 1000 [ 125.906604][ T6754] lo speed is unknown, defaulting to 1000 [ 126.215496][ T6776] loop2: detected capacity change from 0 to 1024 [ 126.223935][ T6776] EXT4-fs: Ignoring removed bh option [ 126.229422][ T6776] EXT4-fs: inline encryption not supported [ 126.278405][ T6776] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 126.309527][ T6776] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000] [ 126.329589][ T6776] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm syz.2.334: lblock 2 mapped to illegal pblock 2 (length 1) [ 126.357895][ T6776] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 48: comm syz.2.334: lblock 0 mapped to illegal pblock 48 (length 1) [ 126.374758][ T6776] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.334: Failed to acquire dquot type 0 [ 126.386588][ T6776] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 126.397122][ T6776] EXT4-fs error (device loop2): ext4_evict_inode:252: inode #11: comm syz.2.334: mark_inode_dirty error [ 126.429529][ T6776] EXT4-fs warning (device loop2): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 126.454983][ T6776] EXT4-fs (loop2): 1 orphan inode deleted [ 126.518530][ T6776] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 126.615132][ T42] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:2: lblock 1 mapped to illegal pblock 1 (length 1) [ 126.702554][ T42] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u4:2: Failed to release dquot type 0 [ 126.745445][ T6776] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 126.780540][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.899966][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.920612][ T6781] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.158507][ T6781] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.275296][ T6781] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.409049][ T6781] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 127.636324][ T6781] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 127.655751][ T6781] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 127.670186][ T6781] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 127.757611][ T6803] random: crng reseeded on system resumption [ 128.697348][ T6781] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 128.970163][ T6810] netlink: 'syz.0.348': attribute type 10 has an invalid length. [ 128.990824][ T6810] batadv0: entered allmulticast mode [ 129.034798][ T6810] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 129.060319][ T6810] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 129.085068][ T6813] netlink: 'syz.0.348': attribute type 10 has an invalid length. [ 129.098206][ T6813] netlink: 40 bytes leftover after parsing attributes in process `syz.0.348'. [ 129.116199][ T6813] batadv0: entered promiscuous mode [ 129.128861][ T6813] bond0: (slave batadv0): Releasing backup interface [ 129.155843][ T6813] bridge0: port 3(batadv0) entered blocking state [ 129.171004][ T6813] bridge0: port 3(batadv0) entered disabled state [ 129.282492][ T5790] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 129.347553][ T59] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 129.357455][ T59] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 129.784321][ T6820] lo speed is unknown, defaulting to 1000 [ 129.954840][ T6825] loop3: detected capacity change from 0 to 512 [ 130.031870][ T6825] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 130.094836][ T6825] EXT4-fs (loop3): invalid journal inode [ 130.132368][ T6825] EXT4-fs (loop3): can't get journal size [ 130.187035][ T6825] EXT4-fs (loop3): 1 truncate cleaned up [ 130.206484][ T6825] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 130.549819][ T6836] netlink: 28 bytes leftover after parsing attributes in process `syz.0.356'. [ 130.607109][ T6838] smc: net device ip6gretap0 applied user defined pnetid SYZ2 [ 130.650410][ T6838] smc: net device ip6gretap0 erased user defined pnetid SYZ2 [ 130.919490][ T6846] loop1: detected capacity change from 0 to 764 [ 130.972466][ T6846] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 131.229772][ T6854] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22 [ 131.248026][ T6854] netdevsim netdevsim0: Direct firmware load for . failed with error -22 [ 131.289064][ T6854] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 131.368918][ T6857] loop2: detected capacity change from 0 to 1024 [ 131.438760][ T5792] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 132.086150][ T6859] loop1: detected capacity change from 0 to 4096 [ 132.285926][ T6859] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 132.317033][ T6859] netlink: 'syz.1.367': attribute type 12 has an invalid length. [ 132.459779][ T6869] netlink: 'syz.0.370': attribute type 1 has an invalid length. [ 132.466456][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 132.469397][ T6869] netlink: 224 bytes leftover after parsing attributes in process `syz.0.370'. [ 132.624930][ T6871] syz.2.372[6871] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 132.625084][ T6871] syz.2.372[6871] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 132.699896][ T6873] loop1: detected capacity change from 0 to 1024 [ 132.760032][ T6873] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 132.855264][ T6873] ================================================================== [ 132.863402][ T6873] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x94b/0x1e90 [ 132.871171][ T6873] Read of size 18446744073709551588 at addr ffff8880787c4840 by task syz.1.371/6873 [ 132.880566][ T6873] [ 132.882903][ T6873] CPU: 1 PID: 6873 Comm: syz.1.371 Not tainted syzkaller #0 [ 132.890198][ T6873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 132.900260][ T6873] Call Trace: [ 132.903553][ T6873] [ 132.906493][ T6873] dump_stack_lvl+0x16c/0x230 [ 132.911202][ T6873] ? read_lock_is_recursive+0x20/0x20 [ 132.916589][ T6873] ? show_regs_print_info+0x20/0x20 [ 132.921801][ T6873] ? load_image+0x3b0/0x3b0 [ 132.926316][ T6873] ? _raw_spin_lock_irqsave+0xb4/0xf0 [ 132.931703][ T6873] ? __virt_addr_valid+0x18c/0x540 [ 132.936821][ T6873] ? __virt_addr_valid+0x469/0x540 [ 132.941943][ T6873] print_report+0xac/0x220 [ 132.946372][ T6873] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 132.951931][ T6873] kasan_report+0x117/0x150 [ 132.956446][ T6873] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 132.961920][ T6873] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 132.967388][ T6873] kasan_check_range+0x288/0x290 [ 132.972338][ T6873] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 132.977809][ T6873] __asan_memmove+0x29/0x70 [ 132.982324][ T6873] ext4_xattr_set_entry+0x94b/0x1e90 [ 132.987626][ T6873] ext4_xattr_block_set+0xae3/0x32a0 [ 132.992948][ T6873] ? ext4_destroy_inode+0x200/0x200 [ 132.998163][ T6873] ? proc_nr_inodes+0x230/0x230 [ 133.003022][ T6873] ? do_raw_spin_unlock+0x121/0x230 [ 133.008232][ T6873] ? _raw_spin_unlock+0x28/0x40 [ 133.013104][ T6873] ? ext4_xattr_block_find+0x350/0x350 [ 133.018573][ T6873] ? ext4_xattr_ibody_set+0x50d/0x6a0 [ 133.023959][ T6873] ext4_xattr_set_handle+0xbff/0x1290 [ 133.029351][ T6873] ? ext4_xattr_inode_free_quota+0x1b0/0x1b0 [ 133.035389][ T6873] ? __ext4_journal_start_sb+0x259/0x570 [ 133.041042][ T6873] ext4_xattr_set+0x22d/0x320 [ 133.045735][ T6873] ? ext4_xattr_set_credits+0x2f0/0x2f0 [ 133.051292][ T6873] ? evm_protected_xattr_common+0x170/0x190 [ 133.057202][ T6873] ? evm_protect_xattr+0x534/0x7a0 [ 133.062331][ T6873] ? ext4_xattr_security_get+0x40/0x40 [ 133.067803][ T6873] __vfs_setxattr+0x431/0x470 [ 133.072497][ T6873] __vfs_setxattr_noperm+0x12d/0x5e0 [ 133.077792][ T6873] vfs_setxattr+0x16c/0x2f0 [ 133.082309][ T6873] ? xattr_permission+0x470/0x470 [ 133.087338][ T6873] ? __mnt_want_write+0x223/0x2a0 [ 133.092380][ T6873] ? path_setxattr+0x314/0x550 [ 133.097153][ T6873] path_setxattr+0x362/0x550 [ 133.101755][ T6873] ? simple_xattrs_free+0x150/0x150 [ 133.107147][ T6873] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 133.113136][ T6873] ? lock_chain_count+0x20/0x20 [ 133.118010][ T6873] __x64_sys_setxattr+0xbb/0xd0 [ 133.122870][ T6873] do_syscall_64+0x55/0xb0 [ 133.127302][ T6873] ? clear_bhb_loop+0x40/0x90 [ 133.132096][ T6873] ? clear_bhb_loop+0x40/0x90 [ 133.136783][ T6873] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 133.142688][ T6873] RIP: 0033:0x7f44ecd8f749 [ 133.147111][ T6873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.166728][ T6873] RSP: 002b:00007f44edd0f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 133.175169][ T6873] RAX: ffffffffffffffda RBX: 00007f44ecfe5fa0 RCX: 00007f44ecd8f749 [ 133.183147][ T6873] RDX: 00002000000013c0 RSI: 0000200000000140 RDI: 0000200000000100 [ 133.191148][ T6873] RBP: 00007f44ece13f91 R08: 0000000000000000 R09: 0000000000000000 [ 133.199155][ T6873] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000000 [ 133.207151][ T6873] R13: 00007f44ecfe6038 R14: 00007f44ecfe5fa0 R15: 00007fff6d9a1948 [ 133.215230][ T6873] [ 133.218257][ T6873] [ 133.220587][ T6873] Allocated by task 6873: [ 133.224918][ T6873] kasan_set_track+0x4e/0x70 [ 133.229527][ T6873] __kasan_kmalloc+0x8f/0xa0 [ 133.234126][ T6873] __kmalloc_node_track_caller+0xb2/0x230 [ 133.239859][ T6873] kmemdup+0x2b/0x70 [ 133.243764][ T6873] ext4_xattr_block_set+0x9e5/0x32a0 [ 133.249064][ T6873] ext4_xattr_set_handle+0xbff/0x1290 [ 133.254454][ T6873] ext4_xattr_set+0x22d/0x320 [ 133.259141][ T6873] __vfs_setxattr+0x431/0x470 [ 133.263826][ T6873] __vfs_setxattr_noperm+0x12d/0x5e0 [ 133.269125][ T6873] vfs_setxattr+0x16c/0x2f0 [ 133.273637][ T6873] path_setxattr+0x362/0x550 [ 133.278235][ T6873] __x64_sys_setxattr+0xbb/0xd0 [ 133.283099][ T6873] do_syscall_64+0x55/0xb0 [ 133.287528][ T6873] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 133.293431][ T6873] [ 133.295758][ T6873] The buggy address belongs to the object at ffff8880787c4800 [ 133.295758][ T6873] which belongs to the cache kmalloc-1k of size 1024 [ 133.309813][ T6873] The buggy address is located 64 bytes inside of [ 133.309813][ T6873] 1024-byte region [ffff8880787c4800, ffff8880787c4c00) [ 133.323445][ T6873] [ 133.325774][ T6873] The buggy address belongs to the physical page: [ 133.332188][ T6873] page:ffffea0001e1f000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x787c0 [ 133.342774][ T6873] head:ffffea0001e1f000 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 133.351708][ T6873] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 133.359687][ T6873] page_type: 0xffffffff() [ 133.364019][ T6873] raw: 00fff00000000840 ffff888017841dc0 ffffea0001e00600 dead000000000002 [ 133.372605][ T6873] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000 [ 133.381189][ T6873] page dumped because: kasan: bad access detected [ 133.387623][ T6873] page_owner tracks the page as allocated [ 133.393351][ T6873] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x52820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 42, tgid 42 (kworker/u4:2), ts 81685330567, free_ts 81613853241 [ 133.412296][ T6873] post_alloc_hook+0x1cd/0x210 [ 133.417077][ T6873] get_page_from_freelist+0x195c/0x19f0 [ 133.422636][ T6873] __alloc_pages+0x1e3/0x460 [ 133.427237][ T6873] alloc_slab_page+0x5d/0x170 [ 133.431929][ T6873] new_slab+0x87/0x2e0 [ 133.436006][ T6873] ___slab_alloc+0xc6d/0x1300 [ 133.440696][ T6873] __kmem_cache_alloc_node+0x1a2/0x260 [ 133.446164][ T6873] __kmalloc+0xa4/0x240 [ 133.450443][ T6873] ___neigh_create+0x6d2/0x2440 [ 133.455332][ T6873] ip6_finish_output2+0x159e/0x1650 [ 133.460556][ T6873] ndisc_send_skb+0xbed/0x14b0 [ 133.465338][ T6873] ndisc_send_ns+0xcc/0x150 [ 133.469878][ T6873] addrconf_dad_work+0xa25/0x14e0 [ 133.474930][ T6873] process_scheduled_works+0xa45/0x15b0 [ 133.480489][ T6873] worker_thread+0xa55/0xfc0 [ 133.485088][ T6873] kthread+0x2fa/0x390 [ 133.489246][ T6873] page last free stack trace: [ 133.494010][ T6873] free_unref_page_prepare+0x7ce/0x8e0 [ 133.499478][ T6873] free_unref_page+0x32/0x2e0 [ 133.504168][ T6873] __slab_free+0x35e/0x410 [ 133.508599][ T6873] qlist_free_all+0x75/0xe0 [ 133.513110][ T6873] kasan_quarantine_reduce+0x143/0x160 [ 133.518577][ T6873] __kasan_slab_alloc+0x22/0x80 [ 133.523432][ T6873] slab_post_alloc_hook+0x6e/0x4d0 [ 133.528577][ T6873] kmem_cache_alloc+0x11e/0x2e0 [ 133.533472][ T6873] vm_area_dup+0x27/0x270 [ 133.537820][ T6873] __split_vma+0x19f/0xc00 [ 133.542248][ T6873] do_vmi_align_munmap+0x377/0x1660 [ 133.547457][ T6873] do_vmi_munmap+0x252/0x2d0 [ 133.552055][ T6873] mmap_region+0x741/0x2020 [ 133.556568][ T6873] do_mmap+0x92f/0x10a0 [ 133.560733][ T6873] vm_mmap_pgoff+0x1c0/0x400 [ 133.565335][ T6873] ksys_mmap_pgoff+0x520/0x700 [ 133.570104][ T6873] [ 133.572434][ T6873] Memory state around the buggy address: [ 133.578067][ T6873] ffff8880787c4700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 133.586130][ T6873] ffff8880787c4780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 133.594200][ T6873] >ffff8880787c4800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 133.602262][ T6873] ^ [ 133.608415][ T6873] ffff8880787c4880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 133.616485][ T6873] ffff8880787c4900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 133.624546][ T6873] ================================================================== [ 133.640576][ T1291] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.647616][ T1291] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.656857][ T6873] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 133.664108][ T6873] CPU: 0 PID: 6873 Comm: syz.1.371 Not tainted syzkaller #0 [ 133.671431][ T6873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 133.681532][ T6873] Call Trace: [ 133.684838][ T6873] [ 133.687794][ T6873] dump_stack_lvl+0x16c/0x230 [ 133.692505][ T6873] ? show_regs_print_info+0x20/0x20 [ 133.697719][ T6873] ? load_image+0x3b0/0x3b0 [ 133.702243][ T6873] panic+0x2c0/0x710 [ 133.706143][ T6873] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 133.712315][ T6873] ? bpf_jit_dump+0xd0/0xd0 [ 133.716829][ T6873] ? _raw_spin_unlock_irqrestore+0xfa/0x110 [ 133.722729][ T6873] ? _raw_spin_unlock+0x40/0x40 [ 133.727587][ T6873] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 133.733061][ T6873] check_panic_on_warn+0x84/0xa0 [ 133.738013][ T6873] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 133.743504][ T6873] end_report+0x6f/0x140 [ 133.747758][ T6873] kasan_report+0x128/0x150 [ 133.752273][ T6873] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 133.757745][ T6873] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 133.763213][ T6873] kasan_check_range+0x288/0x290 [ 133.768160][ T6873] ? ext4_xattr_set_entry+0x94b/0x1e90 [ 133.773634][ T6873] __asan_memmove+0x29/0x70 [ 133.778148][ T6873] ext4_xattr_set_entry+0x94b/0x1e90 [ 133.783451][ T6873] ext4_xattr_block_set+0xae3/0x32a0 [ 133.788746][ T6873] ? ext4_destroy_inode+0x200/0x200 [ 133.793958][ T6873] ? proc_nr_inodes+0x230/0x230 [ 133.798822][ T6873] ? do_raw_spin_unlock+0x121/0x230 [ 133.804030][ T6873] ? _raw_spin_unlock+0x28/0x40 [ 133.808899][ T6873] ? ext4_xattr_block_find+0x350/0x350 [ 133.814366][ T6873] ? ext4_xattr_ibody_set+0x50d/0x6a0 [ 133.819753][ T6873] ext4_xattr_set_handle+0xbff/0x1290 [ 133.825141][ T6873] ? ext4_xattr_inode_free_quota+0x1b0/0x1b0 [ 133.831136][ T6873] ? __ext4_journal_start_sb+0x259/0x570 [ 133.836787][ T6873] ext4_xattr_set+0x22d/0x320 [ 133.841488][ T6873] ? ext4_xattr_set_credits+0x2f0/0x2f0 [ 133.847048][ T6873] ? evm_protected_xattr_common+0x170/0x190 [ 133.852955][ T6873] ? evm_protect_xattr+0x534/0x7a0 [ 133.858075][ T6873] ? ext4_xattr_security_get+0x40/0x40 [ 133.863552][ T6873] __vfs_setxattr+0x431/0x470 [ 133.868243][ T6873] __vfs_setxattr_noperm+0x12d/0x5e0 [ 133.873540][ T6873] vfs_setxattr+0x16c/0x2f0 [ 133.878059][ T6873] ? xattr_permission+0x470/0x470 [ 133.883173][ T6873] ? __mnt_want_write+0x223/0x2a0 [ 133.888205][ T6873] ? path_setxattr+0x314/0x550 [ 133.892979][ T6873] path_setxattr+0x362/0x550 [ 133.897580][ T6873] ? simple_xattrs_free+0x150/0x150 [ 133.902796][ T6873] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 133.908783][ T6873] ? lock_chain_count+0x20/0x20 [ 133.913686][ T6873] __x64_sys_setxattr+0xbb/0xd0 [ 133.918548][ T6873] do_syscall_64+0x55/0xb0 [ 133.923495][ T6873] ? clear_bhb_loop+0x40/0x90 [ 133.928182][ T6873] ? clear_bhb_loop+0x40/0x90 [ 133.932872][ T6873] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 133.938780][ T6873] RIP: 0033:0x7f44ecd8f749 [ 133.943206][ T6873] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.962824][ T6873] RSP: 002b:00007f44edd0f038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 133.971247][ T6873] RAX: ffffffffffffffda RBX: 00007f44ecfe5fa0 RCX: 00007f44ecd8f749 [ 133.979229][ T6873] RDX: 00002000000013c0 RSI: 0000200000000140 RDI: 0000200000000100 [ 133.987204][ T6873] RBP: 00007f44ece13f91 R08: 0000000000000000 R09: 0000000000000000 [ 133.995180][ T6873] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000000 [ 134.003157][ T6873] R13: 00007f44ecfe6038 R14: 00007f44ecfe5fa0 R15: 00007fff6d9a1948 [ 134.011138][ T6873] [ 134.014419][ T6873] Kernel Offset: disabled [ 134.018740][ T6873] Rebooting in 86400 seconds..