last executing test programs: 6.582454072s ago: executing program 1 (id=768): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000980)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@i_version}, {@nogrpid}, {@bh}]}, 0x1, 0x51d, &(0x7f0000000200)="$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") openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148) openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x107b42, 0x32) 5.636186057s ago: executing program 3 (id=773): syz_clone3(&(0x7f0000000740)={0x8180080, 0x0, 0x0, 0x0, {0x39}, 0x0, 0x0, 0x0, 0x0}, 0x58) 5.487974752s ago: executing program 1 (id=775): socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50) syz_emit_ethernet(0x46, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x20000023896) close(r0) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="01000000040000000800000005"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) 5.241624686s ago: executing program 3 (id=776): r0 = syz_open_dev$usbfs(&(0x7f00000001c0), 0x800000001fe, 0x2) ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000040)={0x20, 0x3, 0x8, 0x9, 0x0, 0x0, 0x0}) 5.186448052s ago: executing program 2 (id=777): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={0xffffffffffffffff}, 0x111}}, 0x20) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=@newtaction={0xfe8, 0x30, 0xffff, 0x70bd2d, 0x20000000, {}, [{0xfd4, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10001, 0x5, 0x0, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x6}}}]]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x2b9, 0xf, 0x4, 0xfffffff8, 0x2e3}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_bpf={0xf1c, 0x3, 0x0, 0x0, {{0x8}, {0xef4, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_NAME={0xeed, 0x6, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xfe8}}, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0xfffc, 0x2, @loopback, 0xa09c}, {0xa, 0x2, 0xfffffffe, @dev={0xfe, 0x80, '\x00', 0x39}}, r2, 0x40099d}}, 0x48) memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r5 = syz_init_net_socket$ax25(0x3, 0x5, 0x0) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) listen(r5, 0x3) syz_open_dev$vim2m(&(0x7f0000001600), 0x3, 0x2) accept4(r5, 0x0, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='net/nf_conntrack_expect\x00') ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)) sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c01c}, 0x0) syz_emit_ethernet(0x32, &(0x7f0000000380)={@random="591a1d9a2bdb", @link_local={0x1, 0x80, 0xc2, 0x25}, @val={@void}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x64, 0x0, 0x0, 0x29, 0x0, @empty=0xe0, @multicast1}, {0x0, 0x10, 0xc, 0x0, @gue={{0x1, 0x0, 0x3, 0xd, 0x100, @void}}}}}}}, 0x0) 4.136000997s ago: executing program 3 (id=778): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = socket$netlink(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800e0001007769726567756172640000000400028008000a00b8"], 0x40}}, 0x0) 4.022218328s ago: executing program 1 (id=779): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = syz_open_dev$tty1(0xc, 0x4, 0x4) write(r0, &(0x7f0000000280)="e8bd8a4c56281ba2ba42cfa5b9fe5fc6dcde2ee431f5595ceadb9a2c95e57f15ee4a83f9e7d78ea996f78bd588bedcdbc730d6d15df6d2a26ca4e55e97ed0522a190ce241a37bad3317fba7e4be3dbbfec5e2f401b5658cc8fda", 0xffffffe5) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000440)={0x8, 0x9, 0x4, 0x9, 0x7, "efc64a26a83c8ffa332b3a5419e8ab2543c4ec"}) 3.940573976s ago: executing program 4 (id=780): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10) r1 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000500)={'team0\x00', 0x0}) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r2, {0x0, 0xfff2}, {0xffff, 0xffff}, {0x3}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400], [0x0, 0x8, 0x0, 0x0, 0xf]}}]}}]}, 0xa4}}, 0x48004) 3.886679262s ago: executing program 2 (id=781): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18) bpf$OBJ_GET_MAP(0x7, 0x0, 0x0) getsockopt$netlink(0xffffffffffffffff, 0x10e, 0x9, 0x0, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x2) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x3) ioctl$TIOCVHANGUP(r1, 0x5437, 0x2) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x802) 3.625986148s ago: executing program 4 (id=783): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001c40)=ANY=[@ANYBLOB="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"/3590], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000380)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x50) r5 = creat(&(0x7f0000000000)='./file0\x00', 0x10) ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f00000010c0)=0x40) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001880)={0x0, 0x0, &(0x7f0000000240), &(0x7f0000001780), 0x8, r4}, 0x38) setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8000000, 0x3, 0x2d0, 0x0, 0xffffffff, 0xffffffff, 0x110, 0xffffffff, 0x200, 0xffffffff, 0xffffffff, 0x200, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast1, [], [], 'ip6tnl0\x00', 'nicvf0\x00', {}, {}, 0x3a}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz1\x00'}}}, {{@ipv6={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast1, [], [], 'veth1\x00', 'veth0_to_hsr\x00'}, 0x0, 0xa8, 0xf0}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x386) mount(0x0, &(0x7f0000000800)='.\x00', &(0x7f0000000000)='cifs\x00', 0x0, &(0x7f00000006c0)='=\n\x9b\xa1Q\a\x00\n@\xf6\"2a\xd7\x1fch\x1a}#\x1f\xff\xff\xffIT\xe4\x8c&\xac\xe6:\xc5\xe8\xd9\"\x82\xd5\xeb\x90\xef1:\xba\xc3\xc3\xd3\xad\'\xc44\x17,,\x8dZz\x04\x17-#F\xc7<\xe6\xf5]%gC\x9e\xca\nR\xc3\xc8\x98\xd8\xc8\x9eZ\xa76\x9f\xc2=\xaa\xcet7\xb9\xbd\xd47\xe3\xc8@$8\v\x9f\xfd\xe1!\x11\x19Y\x06J\x8f\x80\xef9Tw8\x1b\xe2\xf3\x85\xd5}\xa5\xb7\xd5|\xd8ZE\x92\xb4\x18|\x14\xc8\x14\xab\xe3\xd2\xb8\xf9J\x13\xbc\xea\xccp;\xa5\xe8\r=\n\x9e\xfb\x17\"\xc4QJ\xdf\xa9\x02BQ\x11\b\xab\x14\xf7\x16\xde\xc3\x89\xc6d\xdd\x18\x01\xdd\xf3\xe2\xa5\xef\x02\x17T\x94\xb9\xd4v\xb1\xe3\xb7L\xe6>*\x11e\x18\xe7-\b\xe9\x87\x81,N\x1f\x94\xa4\xe5\xd6\xd4m\x92\xccg3jNvd\xd2O|c\xb3\xa0\xf2\xc6\\\x8a\'\xb3\x81S\x9b6\xf5\xb7\x93\v\xb0\aD\xb9\xf7>\xcf?\xea\xfb\xfc\xb9\x9d\xa5\xb5\xbc\xe2\xddUJN\xb2\xb7\x9c\xc3qk\x06\xdb\xd69\x8b\x00'/288) r6 = syz_open_dev$vbi(&(0x7f00000001c0), 0x0, 0x2) ioctl$VIDIOC_S_INPUT(r6, 0xc0045627, &(0x7f0000000100)=0x3) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) poll(&(0x7f0000000080)=[{}], 0x1, 0xda90) 3.567930264s ago: executing program 2 (id=784): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4) connect$inet6(r0, &(0x7f0000000340)={0xa, 0x5, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000040)=@gcm_128={{0x304}, "db748d6b120426ad", "4fe429faa1e90c473725b5e429ac42fa", "917e060b", "92816af8b4efb2ad"}, 0x28) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000080)=@gcm_128={{0x304}, "a634f500", "1fd33c81cf7995313c09de00fd6ded74", "62266bd8", "1e00040000000100"}, 0x28) 3.274617273s ago: executing program 2 (id=785): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0700000004000000000100000100000028"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000780)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) flock(0xffffffffffffffff, 0x1) 2.547107096s ago: executing program 3 (id=786): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff47}, 0x90) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r2}, 0x10) pipe2$9p(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000540)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r4]) 2.346097126s ago: executing program 2 (id=787): bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="180000000200"/16], 0x0}, 0x94) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90) syz_emit_ethernet(0xfffffcaa, &(0x7f0000000000)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x3404, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10, 0x20, 0x0, 0x684}}}}}}, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 2.245997426s ago: executing program 4 (id=788): r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='\x00\"\a\x00\x00\x00'], 0x0}, 0x0) write$UHID_CREATE(r0, &(0x7f00000003c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f00000000c0)=""/43, 0x2b}}, 0x120) write$UHID_DESTROY(r0, &(0x7f0000000080), 0x4) 2.110647779s ago: executing program 0 (id=789): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='cdg', 0x3) r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000b80)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e1e, @dev={0xac, 0x14, 0x14, 0x1a}}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000400)='veno', 0x4) 1.973309333s ago: executing program 2 (id=790): bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet6(0xa, 0x80002, 0x0) unshare(0x6c000200) r1 = msgget$private(0x0, 0x0) msgsnd(r1, &(0x7f0000000480)=ANY=[@ANYRESDEC], 0x2000, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e2a, 0xffffffff, @mcast2, 0x9}, 0x1c) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@newtaction={0x44, 0x30, 0x1, 0x0, 0x0, {}, [{0x30, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4, 0x2}, {0xc}, {0xc}}}]}]}, 0x44}}, 0x0) setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x8, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ipvs(0x0, r3) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') r4 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x4}, &(0x7f00000001c0)=0x0, &(0x7f0000000580)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) syz_io_uring_submit(r5, r6, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1}) io_uring_enter(r4, 0x6e2, 0x3900, 0x1, 0x0, 0xe00) 1.912731639s ago: executing program 3 (id=791): socket$nl_route(0x10, 0x3, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000001400), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000080)={0xffffffffffffffff}, 0x111}}, 0x20) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=@newtaction={0xfe8, 0x30, 0xffff, 0x70bd2d, 0x20000000, {}, [{0xfd4, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x10001, 0x5, 0x0, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x6}}}]]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_gact={0x48, 0x2, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x2b9, 0xf, 0x4, 0xfffffff8, 0x2e3}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}, @m_bpf={0xf1c, 0x3, 0x0, 0x0, {{0x8}, {0xef4, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_NAME={0xeed, 0x6, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00'}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0xfe8}}, 0x0) write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0xa, 0xfffc, 0x2, @loopback, 0xa09c}, {0xa, 0x2, 0xfffffffe, @dev={0xfe, 0x80, '\x00', 0x39}}, r2, 0x40099d}}, 0x48) memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102) writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2) syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff) r5 = syz_init_net_socket$ax25(0x3, 0x5, 0x0) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) listen(r5, 0x3) syz_open_dev$vim2m(&(0x7f0000001600), 0x3, 0x2) accept4(r5, 0x0, 0x0, 0x0) syz_open_procfs(0x0, &(0x7f0000000000)='net/nf_conntrack_expect\x00') ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000140)) sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, &(0x7f0000004340)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x400c01c}, 0x0) syz_emit_ethernet(0x32, &(0x7f0000000380)={@random="591a1d9a2bdb", @link_local={0x1, 0x80, 0xc2, 0x25}, @val={@void}, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x64, 0x0, 0x0, 0x29, 0x0, @empty=0xe0, @multicast1}, {0x0, 0x10, 0xc, 0x0, @gue={{0x1, 0x0, 0x3, 0xd, 0x100, @void}}}}}}}, 0x0) 1.826613358s ago: executing program 0 (id=792): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000600)=ANY=[@ANYBLOB="90000000", @ANYRES16=r1, @ANYBLOB="0100000000000002000005000000180001801400020073797a5f74756e000000000000000000080005000a0f00005c00038004"], 0x90}}, 0x4000000) 1.611423109s ago: executing program 0 (id=793): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r0}, 0x10) r1 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000500)={'team0\x00', 0x0}) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000002c0)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r2, {0x0, 0xfff2}, {0xffff, 0xffff}, {0x3}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}, @TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400], [0x0, 0x8, 0x0, 0x0, 0xf]}}]}}]}, 0xa4}}, 0x48004) 1.461542994s ago: executing program 4 (id=794): socket$kcm(0xa, 0x3, 0x87) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000000)={"94e9aa2e2d4bfdbb784e474a691b5107", 0x0, 0x0, {0x3, 0xe926}, {0xae0, 0x1}, 0x5, [0x0, 0x10, 0x80000000000004, 0x9, 0x0, 0x400000000000203, 0x4, 0x5, 0x6, 0x801, 0x8e, 0x0, 0x0, 0x6995, 0x1, 0x4]}) r0 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYBLOB="034886dd010000000000140000006000000003088700fe88a43de1a400000000000000007d01ff020000000000000000000000000001"], 0xfdef) 1.447827626s ago: executing program 1 (id=795): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000024c0), 0x1, 0x0) pwritev(r2, &(0x7f0000002600)=[{&(0x7f0000002500)="3f91a19e", 0x4}], 0x1, 0x800, 0x0) 1.378298193s ago: executing program 0 (id=796): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000b80)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000010000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x18) inotify_init() 625.818108ms ago: executing program 1 (id=797): syz_emit_ethernet(0x32, &(0x7f00000007c0)={@random="e90c610faca2", @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0xe000, 0x3, 0x11, 0x0, @empty, @empty}, {0x0, 0xfffe, 0x27, 0x0, @gue={{0x2, 0x0, 0x2, 0x1}}}}}}}, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x80}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000800)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1d}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x2, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e22, 0x4e22, 0x8}}}}}, 0x0) 315.979219ms ago: executing program 0 (id=798): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000800000000000000000000850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) ioprio_get$pid(0x2, 0x0) 288.106852ms ago: executing program 1 (id=799): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18) prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00') r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x11) capset(&(0x7f0000000240)={0x20080522}, &(0x7f0000000080)={0x200000, 0x200000, 0x5, 0x0, 0x3, 0x3ff}) ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x1) 242.675686ms ago: executing program 4 (id=800): bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x94) r0 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) syz_emit_ethernet(0xfffffcaa, &(0x7f0000000000)={@local, @dev, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x3404, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x1, 0x0}, @broadcast}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x10, 0x20, 0x0, 0x684}}}}}}, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x300, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 149.145195ms ago: executing program 3 (id=801): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000ac0)=@delchain={0x234, 0x65, 0x2, 0x70bd27, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0xc}, {0x0, 0x8}, {0x9, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0x8000}, @TCA_CHAIN={0x8, 0xb, 0x6}, @filter_kind_options=@f_bpf={{0x8}, {0x1f8, 0x2, [@TCA_BPF_FD={0x8}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_ACT={0x1e0, 0x1, [@m_tunnel_key={0xcc, 0x18, 0x0, 0x0, {{0xf}, {0x90, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @mcast1}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6, 0x9, 0x4e20}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x182}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8, 0x7, 0x2f34a4e8}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @dev={0xfe, 0x80, '\x00', 0xa}}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x2, 0x4, 0x0, 0x6}, 0x2}}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, {0xd, 0x6, "67a638128ad3f52f2e"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_simple={0x48, 0x1e, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x8, 0x3, 'bpf\x00'}]}, {0x11, 0x6, "9787c29d6ac649e7ec160dfef7"}, {0xc, 0x7, {0x0, 0x79d0f023c2b305dd}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_connmark={0xc8, 0x5, 0x0, 0x0, {{0xd}, {0x4}, {0x95, 0x6, "0ef6a460a5bbda16e826eafe044d3376872c48b74ae60f057b238fb15e2207986c5639bfbc3d91ee00b5a433e95b6b3527d9711d16abc0abaea927bcdffe4d3ec14fb6fca0407429934982873a3f054bcbf1e53f85fe7aee4ccd90229e6ba2b45bd165ebd7929c21abcdf0b8d47ff6a950009bf4b1ef96863b19aaa1c52a12b02f39c0816b2c6136341ed251c3b6f6af93"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}]}}]}, 0x234}, 0x1, 0x0, 0x0, 0x8801}, 0x20000080) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x64}, {&(0x7f0000000280)=""/85, 0x55}, {&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000000400)=""/106, 0x6a}, {&(0x7f0000000980)=""/73, 0x49}, {&(0x7f0000000200)=""/77, 0x4d}, {&(0x7f00000001c0)=""/17, 0x11}], 0x7, &(0x7f0000000600)=""/191, 0xbf}}], 0x1, 0x2040000, &(0x7f0000003700)={0x77359400}) 69.683903ms ago: executing program 0 (id=802): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x46f, &(0x7f0000001040)="$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") 0s ago: executing program 4 (id=803): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x7, 0x4, 0x100, 0x4}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x9, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000070000850000001b000000b700000000000000850000000700000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$rds(0x15, 0x5, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) set_mempolicy(0x1, &(0x7f00000004c0)=0x3, 0x2) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2, 0x0, 0x97}, 0x18) bind$rds(r1, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) sendmsg$rds(r1, &(0x7f0000000080)={&(0x7f0000000180)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0) sendmsg$rds(r1, &(0x7f0000000680)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r1, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000000)={'syztnl0\x00', &(0x7f0000000080)={'ip6gre0\x00', 0x0, 0x6, 0x11, 0x7, 0x9142, 0x1, @empty, @local, 0x8000, 0x80, 0x3ff, 0x1}}) r4 = dup2(r0, r0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0200000004000800000007800000800000000000", @ANYRES32=r0, @ANYBLOB="8000"/20, @ANYRES32=r3, @ANYRES32=r4, @ANYBLOB="04000000010000000300"/28], 0x50) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1c, 0x0, 0x0, 0x8000}, 0xfdc1) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r5}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r5}, &(0x7f0000000000), &(0x7f0000000040)=r6}, 0x20) r7 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0xffffffff80000001, r7, &(0x7f00000000c0)={0x30000000}) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000002040), 0xc2001, 0x0) ptrace(0x10, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r8 = gettid() timer_create(0x0, &(0x7f0000000180)={0x0, 0x21, 0x800000000004, @tid=r8}, &(0x7f0000bbdffc)=0x0) timer_settime(r9, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r10 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000200), 0x100) readv(r10, &(0x7f0000000300)=[{&(0x7f0000000000)=""/47, 0x2f}], 0x1) kernel console output (not intermixed with test programs): ] device veth0_macvtap entered promiscuous mode [ 83.726687][ T4382] syz.1.2[4382] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 83.745874][ T4382] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2'. [ 83.751060][ T4274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.781168][ T4274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.792018][ T4274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.803175][ T4274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.816034][ T4274] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.839624][ T4277] device veth1_macvtap entered promiscuous mode [ 83.851727][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 83.862636][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 83.871737][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 83.908637][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 83.921441][ T4274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.935351][ T4274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.946118][ T4274] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 83.960301][ T4274] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 83.972325][ T4274] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 83.986005][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 83.999952][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.010153][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.022638][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.032858][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.043707][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.056061][ T4273] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.073167][ T4348] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 84.082213][ T4348] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 84.091841][ T4348] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 84.101709][ T4348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 84.118032][ T4389] lo speed is unknown, defaulting to 1000 [ 84.124741][ T4389] lo speed is unknown, defaulting to 1000 [ 84.132073][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.146807][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.157533][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.169115][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.179977][ T4273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.191091][ T4273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.203700][ T4273] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.261435][ T4389] lo speed is unknown, defaulting to 1000 [ 84.273577][ T4389] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 84.287818][ T4389] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 84.310896][ T4274] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.334484][ T4274] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.354733][ T4274] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.364155][ T4274] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.387843][ T4348] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 84.397419][ T4348] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 84.435945][ T4389] lo speed is unknown, defaulting to 1000 [ 84.440418][ T4277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.454196][ T4277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.465813][ T4277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.478610][ T4277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.521563][ T4277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.535368][ T4277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.546234][ T4277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.566834][ T4277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.614679][ T4277] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.669703][ T4389] lo speed is unknown, defaulting to 1000 [ 84.677006][ T4389] lo speed is unknown, defaulting to 1000 [ 84.684262][ T4389] lo speed is unknown, defaulting to 1000 [ 84.691374][ T4389] lo speed is unknown, defaulting to 1000 [ 84.736833][ T4266] Bluetooth: hci1: command 0x0419 tx timeout [ 84.817321][ T4272] Bluetooth: hci0: command 0x0419 tx timeout [ 84.833263][ T4277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.864076][ T4277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.879720][ T4277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.896641][ T4272] Bluetooth: hci4: command 0x0419 tx timeout [ 84.902765][ T4272] Bluetooth: hci2: command 0x0419 tx timeout [ 84.916602][ T4266] Bluetooth: hci3: command 0x0419 tx timeout [ 84.933228][ T27] audit: type=1326 audit(1763026097.703:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4397 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 84.937267][ T4277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.965252][ T4277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.975795][ T4277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.988150][ T27] audit: type=1326 audit(1763026097.763:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4397 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 84.989165][ T4277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 85.014826][ T27] audit: type=1326 audit(1763026097.763:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4397 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 85.023660][ T4277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.042801][ T27] audit: type=1326 audit(1763026097.763:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4397 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 85.062970][ T4277] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.075429][ T27] audit: type=1326 audit(1763026097.763:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4397 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 85.106185][ T4273] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.115630][ T27] audit: type=1326 audit(1763026097.793:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4397 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 85.129764][ T4273] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.139250][ T27] audit: type=1326 audit(1763026097.793:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4397 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 85.153343][ T4273] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.171904][ T27] audit: type=1326 audit(1763026097.793:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4397 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 85.185562][ T4273] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.252118][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 85.270558][ T27] audit: type=1326 audit(1763026097.793:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4397 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 85.307545][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 85.340297][ T27] audit: type=1326 audit(1763026097.793:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4397 comm="syz.1.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 85.378292][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 85.405669][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 85.437666][ T4277] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.451287][ T4277] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.463698][ T4277] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.472909][ T4277] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.680951][ T4368] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.707428][ T4368] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.733464][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 85.789380][ T4368] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.802707][ T4368] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.869695][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 85.888068][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.903335][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.955660][ T4348] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 85.964885][ T4368] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.993396][ T4368] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.047736][ T4368] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 86.084044][ T4348] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.110451][ T4415] loop4: detected capacity change from 0 to 1024 [ 86.140202][ T4415] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 86.144874][ T4348] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.151527][ T4415] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 86.178873][ T4415] EXT4-fs (loop4): corrupt root inode, run e2fsck [ 86.186010][ T4415] EXT4-fs (loop4): mount failed [ 86.188914][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 86.228240][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 86.260270][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.285364][ T4360] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 86.533131][ T4368] Bluetooth: hci5: Frame reassembly failed (-84) [ 86.612289][ T4426] loop1: detected capacity change from 0 to 1024 [ 86.644597][ T4426] EXT4-fs: Ignoring removed nomblk_io_submit option [ 86.663147][ T4426] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 86.689428][ T4426] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 86.714258][ T4426] System zones: 0-1, 3-36 [ 86.774766][ T4426] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 86.819584][ T4432] loop2: detected capacity change from 0 to 1024 [ 86.829237][ T4432] EXT4-fs: inline encryption not supported [ 86.836381][ T4432] EXT4-fs: Ignoring removed orlov option [ 86.895268][ T4432] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a800c019, mo2=0002] [ 86.911046][ T4432] System zones: 0-1, 3-12 [ 86.917246][ T4426] capability: warning: `syz.1.15' uses 32-bit capabilities (legacy support in use) [ 86.939955][ T7] cfg80211: failed to load regulatory.db [ 86.949169][ T4432] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 87.232832][ T4432] lo speed is unknown, defaulting to 1000 [ 87.242645][ T4443] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check. [ 87.774737][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 87.834564][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 88.165046][ T4463] syz.0.26 (4463): /proc/4462/oom_adj is deprecated, please use /proc/4462/oom_score_adj instead. [ 88.214492][ T4464] netlink: 'syz.2.27': attribute type 13 has an invalid length. [ 88.586656][ T4276] Bluetooth: hci5: command 0x1003 tx timeout [ 88.593970][ T4272] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 88.999999][ T4482] loop0: detected capacity change from 0 to 256 [ 89.094549][ T4482] FAT-fs (loop0): error, corrupted file size (i_pos 196, 2097152) [ 89.107007][ T4464] bridge0: port 2(bridge_slave_1) entered disabled state [ 89.112658][ T4482] FAT-fs (loop0): Filesystem has been set read-only [ 89.115807][ T4464] bridge0: port 1(bridge_slave_0) entered disabled state [ 89.121629][ T4482] FAT-fs (loop0): error, corrupted file size (i_pos 196, 2097152) [ 89.918722][ T4464] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 90.007951][ T4464] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 90.412457][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 90.582407][ T4464] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.600262][ T4464] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.615836][ T4464] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.640573][ T4464] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.845150][ T4466] lo speed is unknown, defaulting to 1000 [ 90.911110][ T4466] lo speed is unknown, defaulting to 1000 [ 90.930434][ T4466] lo speed is unknown, defaulting to 1000 [ 90.980450][ T4466] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 91.049891][ T4466] lo speed is unknown, defaulting to 1000 [ 91.080229][ T4512] loop2: detected capacity change from 0 to 512 [ 91.095687][ T4515] syz.4.41 uses obsolete (PF_INET,SOCK_PACKET) [ 91.102732][ T4466] lo speed is unknown, defaulting to 1000 [ 91.122839][ T4512] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.40: inode has both inline data and extents flags [ 91.155335][ T4512] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.40: couldn't read orphan inode 15 (err -117) [ 91.196784][ T4519] syz.3.43[4519] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 91.196934][ T4519] syz.3.43[4519] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 91.248253][ T4512] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 91.287133][ T4466] lo speed is unknown, defaulting to 1000 [ 91.320637][ T4466] lo speed is unknown, defaulting to 1000 [ 91.334827][ T4466] lo speed is unknown, defaulting to 1000 [ 91.372814][ T4466] lo speed is unknown, defaulting to 1000 [ 91.668391][ T4526] netlink: 4 bytes leftover after parsing attributes in process `syz.1.46'. [ 92.054077][ T4542] capability: warning: `syz.4.50' uses deprecated v2 capabilities in a way that may be insecure [ 92.241008][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 92.255553][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 92.580517][ T4554] loop1: detected capacity change from 0 to 512 [ 92.584574][ T4552] loop2: detected capacity change from 0 to 2048 [ 92.608062][ T4554] EXT4-fs: Ignoring removed oldalloc option [ 92.637111][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 92.668606][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 92.693607][ T4554] EXT4-fs (loop1): too many log groups per flexible block group [ 92.707906][ T4554] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 92.710368][ T4552] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 92.715089][ T4554] EXT4-fs (loop1): mount failed [ 92.964450][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 93.527163][ T4574] process 'syz.0.64' launched '/dev/fd/-1' with NULL argv: empty string added [ 93.902993][ T4583] Driver unsupported XDP return value 0 on prog (id 28) dev N/A, expect packet loss! [ 94.023403][ T4585] loop3: detected capacity change from 0 to 1024 [ 94.084195][ T4585] ======================================================= [ 94.084195][ T4585] WARNING: The mand mount option has been deprecated and [ 94.084195][ T4585] and is ignored by this kernel. Remove the mand [ 94.084195][ T4585] option from the mount to silence this warning. [ 94.084195][ T4585] ======================================================= [ 94.204609][ T4580] lo speed is unknown, defaulting to 1000 [ 94.216635][ T4585] EXT4-fs: Ignoring removed mblk_io_submit option [ 94.248265][ T4580] lo speed is unknown, defaulting to 1000 [ 94.254358][ T4585] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 94.310504][ T4585] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #11: comm syz.3.69: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 94.352035][ T4585] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.69: couldn't read orphan inode 11 (err -117) [ 94.381711][ T4585] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 94.637180][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 94.777816][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 94.818514][ T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!! [ 96.299466][ T4616] loop2: detected capacity change from 0 to 512 [ 96.355593][ T4616] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 96.442861][ T4616] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 96.545335][ T4615] hub 5-0:1.0: USB hub found [ 96.559673][ T4615] hub 5-0:1.0: 1 port detected [ 96.586787][ T4616] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 96.661790][ T27] kauditd_printk_skb: 120 callbacks suppressed [ 96.661805][ T27] audit: type=1326 audit(1763026109.433:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4613 comm="syz.2.80" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 96.744705][ T27] audit: type=1326 audit(1763026109.433:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4613 comm="syz.2.80" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 96.768674][ T27] audit: type=1326 audit(1763026109.433:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4613 comm="syz.2.80" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 96.792934][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 97.181442][ T27] audit: type=1326 audit(1763026109.953:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4630 comm="syz.2.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 97.249935][ T27] audit: type=1326 audit(1763026109.973:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4630 comm="syz.2.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 97.365370][ T27] audit: type=1326 audit(1763026109.983:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4630 comm="syz.2.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 97.388871][ T27] audit: type=1326 audit(1763026109.983:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4630 comm="syz.2.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 97.411508][ T27] audit: type=1326 audit(1763026109.983:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4630 comm="syz.2.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 97.434832][ T27] audit: type=1326 audit(1763026109.983:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4630 comm="syz.2.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 97.467942][ T27] audit: type=1326 audit(1763026109.983:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4630 comm="syz.2.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 97.558218][ T4636] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 97.710992][ T4644] loop1: detected capacity change from 0 to 512 [ 97.731474][ T4636] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 97.800501][ T4644] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 97.827773][ T4644] EXT4-fs (loop1): invalid journal inode [ 97.867378][ T4644] EXT4-fs (loop1): can't get journal size [ 97.913027][ T4636] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 97.955777][ T4644] EXT4-fs (loop1): 1 truncate cleaned up [ 98.001209][ T4644] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 98.275417][ T4644] ipt_CLUSTERIP: Please specify destination IP [ 98.492700][ T4648] random: crng reseeded on system resumption [ 98.624555][ T4636] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 98.929163][ T4636] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 98.974942][ T4636] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.045360][ T4636] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.089872][ T4636] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 99.855559][ T4660] netlink: 32 bytes leftover after parsing attributes in process `syz.2.94'. [ 99.886697][ T4660] netlink: 32 bytes leftover after parsing attributes in process `syz.2.94'. [ 100.955108][ T4675] loop0: detected capacity change from 0 to 512 [ 101.074023][ T4675] EXT4-fs warning (device loop0): ext4_xattr_inode_get:509: inode #11: comm syz.0.100: EA inode hash validation failed [ 101.092480][ T4675] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2819: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 101.114731][ T4675] EXT4-fs error (device loop0): ext4_do_update_inode:5268: inode #15: comm syz.0.100: corrupted inode contents [ 101.159040][ T4675] EXT4-fs error (device loop0): ext4_dirty_inode:6133: inode #15: comm syz.0.100: mark_inode_dirty error [ 101.231475][ T4675] EXT4-fs error (device loop0): ext4_do_update_inode:5268: inode #15: comm syz.0.100: corrupted inode contents [ 101.269268][ T4675] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2964: inode #15: comm syz.0.100: mark_inode_dirty error [ 101.290296][ T4675] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2967: inode #15: comm syz.0.100: mark inode dirty (error -117) [ 101.351190][ T4675] EXT4-fs warning (device loop0): ext4_evict_inode:299: xattr delete (err -117) [ 101.368872][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 101.402940][ T4675] EXT4-fs (loop0): 1 orphan inode deleted [ 101.433561][ T4675] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 101.621828][ T4277] EXT4-fs (loop0): unmounting filesystem. [ 101.719236][ T27] kauditd_printk_skb: 63 callbacks suppressed [ 101.719251][ T27] audit: type=1326 audit(1763026114.493:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 101.814056][ T27] audit: type=1326 audit(1763026114.493:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 101.916786][ T27] audit: type=1326 audit(1763026114.493:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 102.006744][ T27] audit: type=1326 audit(1763026114.493:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 102.055554][ T7] kernel write not supported for file bpf-prog (pid: 7 comm: kworker/0:0) [ 102.056708][ T27] audit: type=1326 audit(1763026114.493:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 102.109664][ T4685] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 102.202116][ T27] audit: type=1326 audit(1763026114.493:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 102.286539][ T27] audit: type=1326 audit(1763026114.493:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 102.585689][ T27] audit: type=1326 audit(1763026114.503:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 102.682301][ T27] audit: type=1326 audit(1763026114.503:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 102.760611][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 102.769759][ T27] audit: type=1326 audit(1763026114.503:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.3.101" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 105.597700][ T4743] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 105.626569][ T4743] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 105.646602][ T4743] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 105.661734][ T4743] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 105.683574][ T4743] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 105.727333][ T4743] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 105.756537][ T4743] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 105.798622][ T4743] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 106.098137][ T4751] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 106.124466][ T4751] CIFS mount error: No usable UNC path provided in device string! [ 106.124466][ T4751] [ 106.134844][ T4751] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 106.160248][ T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!! [ 106.177247][ T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!! [ 106.193242][ T0] NOHZ tick-stop error: local softirq work is pending, handler #182!!! [ 107.209929][ T4761] loop1: detected capacity change from 0 to 512 [ 107.225019][ T4761] EXT4-fs: Ignoring removed i_version option [ 107.231377][ T4761] EXT4-fs: Ignoring removed bh option [ 107.447371][ T4761] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 107.458569][ T4761] ext4 filesystem being mounted at /26/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 107.956265][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 108.048171][ T4770] netlink: 8 bytes leftover after parsing attributes in process `syz.3.125'. [ 108.097249][ T4770] netlink: 8 bytes leftover after parsing attributes in process `syz.3.125'. [ 109.013580][ T27] kauditd_printk_skb: 190 callbacks suppressed [ 109.013595][ T27] audit: type=1326 audit(1763026121.783:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4793 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 109.120307][ T4795] loop3: detected capacity change from 0 to 2048 [ 109.127285][ T27] audit: type=1326 audit(1763026121.823:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4793 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 109.240368][ T4795] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 109.279715][ T27] audit: type=1326 audit(1763026121.823:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4793 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 109.334435][ T27] audit: type=1326 audit(1763026121.823:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4793 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 109.376986][ T27] audit: type=1326 audit(1763026121.823:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4793 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 109.472608][ T4801] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 109.504820][ T27] audit: type=1326 audit(1763026121.833:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4793 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 109.586225][ T4803] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 109.630015][ T27] audit: type=1326 audit(1763026121.833:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4793 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 109.690847][ T4803] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 394 with error 28 [ 109.724451][ T4803] EXT4-fs (loop3): This should not happen!! Data will be lost [ 109.724451][ T4803] [ 109.762734][ T4803] EXT4-fs (loop3): Total free blocks count 0 [ 109.766545][ T27] audit: type=1326 audit(1763026121.833:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4793 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 109.803284][ T4803] EXT4-fs (loop3): Free/Dirty block details [ 109.821661][ T4803] EXT4-fs (loop3): free_blocks=2415919104 [ 109.839588][ T4803] EXT4-fs (loop3): dirty_blocks=400 [ 109.842667][ T4814] loop2: detected capacity change from 0 to 512 [ 109.855926][ T4803] EXT4-fs (loop3): Block reservation details [ 109.882511][ T4803] EXT4-fs (loop3): i_reserved_data_blocks=25 [ 109.899842][ T4814] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 109.923585][ T27] audit: type=1326 audit(1763026121.833:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4793 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 109.962228][ T4814] EXT4-fs (loop2): invalid journal inode [ 109.989310][ T4814] EXT4-fs (loop2): can't get journal size [ 110.021709][ T27] audit: type=1326 audit(1763026121.833:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4793 comm="syz.3.132" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 110.036500][ T4814] EXT4-fs (loop2): 1 truncate cleaned up [ 110.056211][ T4796] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 110.149567][ T4814] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 110.236071][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 110.355625][ T4814] ipt_CLUSTERIP: Please specify destination IP [ 114.170339][ T4876] DRBG: could not allocate digest TFM handle: hmac(sha512) [ 114.380452][ T27] kauditd_printk_skb: 36 callbacks suppressed [ 114.380467][ T27] audit: type=1326 audit(1763026127.153:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.4.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 114.457795][ T27] audit: type=1326 audit(1763026127.183:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.4.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 114.482028][ T27] audit: type=1326 audit(1763026127.183:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.4.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 114.507314][ T27] audit: type=1326 audit(1763026127.183:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.4.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 114.540065][ T27] audit: type=1326 audit(1763026127.183:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.4.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 114.568508][ T27] audit: type=1326 audit(1763026127.183:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.4.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 114.601700][ T27] audit: type=1326 audit(1763026127.183:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.4.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1ff3d86567 code=0x7ffc0000 [ 114.632439][ T27] audit: type=1326 audit(1763026127.183:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.4.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1ff3d2b779 code=0x7ffc0000 [ 114.686588][ T27] audit: type=1326 audit(1763026127.183:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.4.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 114.754608][ T27] audit: type=1326 audit(1763026127.183:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4906 comm="syz.4.165" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 114.803887][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 115.415568][ T4919] loop0: detected capacity change from 0 to 8192 [ 115.480964][ T4927] netlink: 32 bytes leftover after parsing attributes in process `syz.3.171'. [ 115.961288][ T4936] loop9: detected capacity change from 0 to 7 [ 116.002087][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 116.012107][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 116.021131][ C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 116.030424][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 116.044438][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 116.053729][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 116.098893][ C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 116.108191][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 116.123666][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 116.132979][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 116.191463][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 116.200793][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 116.218482][ C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 116.227767][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 116.236095][ T4439] ldm_validate_partition_table(): Disk read failed. [ 116.282005][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 116.291309][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 116.324758][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 116.334069][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 116.378384][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 116.387687][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 116.435046][ T4439] Dev loop9: unable to read RDB block 0 [ 116.449624][ T4439] loop9: unable to read partition table [ 116.467964][ T4439] loop9: partition table beyond EOD, truncated [ 116.500129][ T4936] ldm_validate_partition_table(): Disk read failed. [ 116.525697][ T4936] Dev loop9: unable to read RDB block 0 [ 116.557990][ T4936] loop9: unable to read partition table [ 116.578796][ T4936] loop9: partition table beyond EOD, truncated [ 116.600750][ T4936] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ â·û [ 116.600750][ T4936] ) failed (rc=-5) [ 118.352160][ T4986] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 118.380455][ T4986] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 118.401742][ T4986] device gre1 entered promiscuous mode [ 118.660015][ T4992] loop1: detected capacity change from 0 to 128 [ 118.716585][ T4992] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 119.038472][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.067548][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.075021][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.093628][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.103106][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.111002][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.151820][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.164961][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.179853][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.193031][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.203489][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.219194][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.230292][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.240387][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.251729][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.261743][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.272787][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.282823][ T4316] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 119.351243][ T4316] hid-generic 0003:0004:0000.0001: hidraw0: USB HID v0.00 Device [syz1] on syz1 [ 119.743654][ T5009] fido_id[5009]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 119.924089][ T5020] loop0: detected capacity change from 0 to 512 [ 119.985959][ T5020] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 120.025944][ T5020] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 120.049011][ T5020] EXT4-fs (loop0): orphan cleanup on readonly fs [ 120.057517][ T5020] __quota_error: 149 callbacks suppressed [ 120.057532][ T5020] Quota error (device loop0): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6). [ 120.076680][ T5020] EXT4-fs warning (device loop0): ext4_enable_quotas:7061: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 120.094145][ T5020] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 120.102391][ T5020] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #16: comm syz.0.211: iget: immutable or append flags not allowed on symlinks [ 120.122075][ T5020] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.211: couldn't read orphan inode 16 (err -117) [ 120.149639][ T5020] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 120.221883][ T4277] EXT4-fs (loop0): unmounting filesystem. [ 120.439404][ T5030] random: crng reseeded on system resumption [ 120.540860][ T5034] netlink: 8 bytes leftover after parsing attributes in process `syz.0.215'. [ 122.155584][ T5051] netlink: 20 bytes leftover after parsing attributes in process `syz.0.222'. [ 123.018911][ T5065] loop0: detected capacity change from 0 to 512 [ 123.236377][ T5065] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 123.426791][ T5065] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 123.642904][ T5065] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=200ec018, mo2=0002] [ 123.736834][ T5065] System zones: 1-12 [ 123.759607][ T5065] EXT4-fs (loop0): 1 truncate cleaned up [ 123.765625][ T5065] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 123.941407][ T4277] EXT4-fs (loop0): unmounting filesystem. [ 124.163439][ T5074] loop0: detected capacity change from 0 to 1024 [ 124.205070][ T5074] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 124.242078][ T27] audit: type=1800 audit(1763026137.013:610): pid=5074 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.230" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 124.409864][ T5083] random: crng reseeded on system resumption [ 124.449260][ T5074] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:3836: comm syz.0.230: Allocating blocks 449-513 which overlap fs metadata [ 124.514554][ T5085] loop1: detected capacity change from 0 to 128 [ 124.546186][ T5073] EXT4-fs (loop0): pa ffff888054e5d620: logic 48, phys. 177, len 21 [ 124.554852][ T5073] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 4 [ 124.578494][ T5085] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 124.637175][ T5085] ext4 filesystem being mounted at /51/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 124.706756][ T4277] EXT4-fs (loop0): unmounting filesystem. [ 124.877901][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 125.258009][ T5100] netlink: 8 bytes leftover after parsing attributes in process `syz.4.240'. [ 125.308575][ T5100] netlink: 8 bytes leftover after parsing attributes in process `syz.4.240'. [ 126.170044][ T5119] loop2: detected capacity change from 0 to 128 [ 126.313469][ T5119] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 126.383545][ T5119] ext4 filesystem being mounted at /52/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 126.645481][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 126.845376][ T5131] autofs4:pid:5131:autofs_fill_super: called with bogus options [ 127.093891][ T5120] netlink: 68 bytes leftover after parsing attributes in process `syz.4.248'. [ 127.115094][ T5120] netlink: 16 bytes leftover after parsing attributes in process `syz.4.248'. [ 127.855091][ T5144] netlink: 'syz.0.256': attribute type 6 has an invalid length. [ 128.633255][ T5164] loop2: detected capacity change from 0 to 128 [ 128.674538][ T5164] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 128.724717][ T5164] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 128.859562][ T5172] netlink: 144 bytes leftover after parsing attributes in process `syz.4.266'. [ 128.925532][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 128.965186][ T5174] netlink: 8 bytes leftover after parsing attributes in process `syz.4.268'. [ 129.647669][ T27] audit: type=1326 audit(1763026142.423:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5177 comm="syz.1.270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 129.708376][ T27] audit: type=1326 audit(1763026142.423:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5177 comm="syz.1.270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 129.781163][ T27] audit: type=1326 audit(1763026142.443:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5177 comm="syz.1.270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 129.854673][ T27] audit: type=1326 audit(1763026142.443:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5177 comm="syz.1.270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 129.932349][ T27] audit: type=1326 audit(1763026142.443:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5177 comm="syz.1.270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 130.015503][ T27] audit: type=1326 audit(1763026142.443:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5177 comm="syz.1.270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 130.089513][ T27] audit: type=1326 audit(1763026142.443:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5177 comm="syz.1.270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 130.142905][ T27] audit: type=1326 audit(1763026142.443:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5177 comm="syz.1.270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 130.763576][ T5199] loop4: detected capacity change from 0 to 2048 [ 130.852851][ T5199] Alternate GPT is invalid, using primary GPT. [ 130.881324][ T5199] loop4: p1 p2 p3 [ 130.892272][ T5199] loop4: partition table partially beyond EOD, truncated [ 131.414825][ T5210] loop1: detected capacity change from 0 to 512 [ 131.465741][ T5210] EXT4-fs: inline encryption not supported [ 131.504393][ T5210] EXT4-fs: Ignoring removed orlov option [ 131.545720][ T5210] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 131.628927][ T4417] udevd[4417]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 131.643316][ T4441] udevd[4441]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 131.663321][ T4376] udevd[4376]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 131.664622][ T5210] EXT4-fs (loop1): 1 truncate cleaned up [ 131.689181][ T5210] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 132.103472][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 132.250370][ T5228] loop1: detected capacity change from 0 to 512 [ 132.362798][ T5228] EXT4-fs (loop1): too many log groups per flexible block group [ 132.401204][ T5228] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 132.466692][ T5228] EXT4-fs (loop1): mount failed [ 133.301462][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.308550][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.593085][ T5246] loop3: detected capacity change from 0 to 128 [ 133.703525][ T5246] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 133.703904][ T5246] ext4 filesystem being mounted at /47/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 133.755689][ T5251] loop0: detected capacity change from 0 to 512 [ 133.780623][ T5253] loop1: detected capacity change from 0 to 512 [ 133.826864][ T5253] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 133.850047][ T5251] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 133.852162][ T5251] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 133.852186][ T5251] EXT4-fs (loop0): group descriptors corrupted! [ 133.918687][ T5253] EXT4-fs (loop1): 1 truncate cleaned up [ 133.918718][ T5253] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 133.972354][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 134.273551][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 134.396285][ T27] audit: type=1326 audit(1763026147.163:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5263 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 134.396498][ T27] audit: type=1326 audit(1763026147.163:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5263 comm="syz.3.299" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 134.874565][ T5279] Zero length message leads to an empty skb [ 135.135969][ T5287] loop4: detected capacity change from 0 to 1024 [ 135.175249][ T5287] EXT4-fs: Ignoring removed bh option [ 135.208403][ T5287] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 135.254606][ T5287] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0100] [ 135.284629][ T5290] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 135.319771][ T5287] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #3: block 2: comm syz.4.307: lblock 2 mapped to illegal pblock 2 (length 1) [ 135.368205][ T5292] netlink: 24 bytes leftover after parsing attributes in process `syz.2.309'. [ 135.389652][ T5287] __quota_error: 5 callbacks suppressed [ 135.389668][ T5287] Quota error (device loop4): qtree_write_dquot: dquota write failed [ 135.428110][ T5287] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #3: block 48: comm syz.4.307: lblock 0 mapped to illegal pblock 48 (length 1) [ 135.444005][ T5287] Quota error (device loop4): v2_write_file_info: Can't write info structure [ 135.469126][ T5287] EXT4-fs error (device loop4): ext4_acquire_dquot:6809: comm syz.4.307: Failed to acquire dquot type 0 [ 135.490184][ T5287] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5929: Corrupt filesystem [ 135.512244][ T5287] EXT4-fs error (device loop4): ext4_evict_inode:279: inode #11: comm syz.4.307: mark_inode_dirty error [ 135.529985][ T5287] EXT4-fs warning (device loop4): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 135.549932][ T5287] EXT4-fs (loop4): 1 orphan inode deleted [ 135.562510][ T5287] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 135.571655][ T4368] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:7: lblock 1 mapped to illegal pblock 1 (length 1) [ 135.580653][ T4368] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 135.595821][ T4368] EXT4-fs error (device loop4): ext4_release_dquot:6845: comm kworker/u4:7: Failed to release dquot type 0 [ 135.608044][ T27] audit: type=1326 audit(1763026148.373:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5293 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 135.634480][ T27] audit: type=1326 audit(1763026148.373:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5293 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 135.715344][ T27] audit: type=1326 audit(1763026148.383:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5293 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 135.819325][ T27] audit: type=1326 audit(1763026148.383:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5293 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 135.936166][ T27] audit: type=1326 audit(1763026148.383:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5293 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 136.029806][ T27] audit: type=1326 audit(1763026148.383:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5293 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 136.124201][ T27] audit: type=1326 audit(1763026148.383:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5293 comm="syz.2.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 136.331237][ T5310] netlink: 32 bytes leftover after parsing attributes in process `syz.2.316'. [ 136.402052][ T5313] netlink: 4 bytes leftover after parsing attributes in process `syz.1.318'. [ 136.447455][ T5313] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 136.757052][ T5313] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 137.839832][ T5332] loop0: detected capacity change from 0 to 128 [ 137.909565][ T5334] loop9: detected capacity change from 0 to 7 [ 137.928160][ T5332] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 137.953526][ C0] blk_print_req_error: 23 callbacks suppressed [ 137.953546][ C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 137.969137][ C0] buffer_io_error: 23 callbacks suppressed [ 137.969151][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 138.029347][ C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 138.038664][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 138.049650][ T5332] ext4 filesystem being mounted at /74/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 138.115810][ C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 138.125096][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 138.173271][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 138.182735][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 138.237832][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 138.247175][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 138.293063][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 138.302366][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 138.344701][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 138.354058][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 138.365571][ T5334] ldm_validate_partition_table(): Disk read failed. [ 138.390338][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 138.399768][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 138.426932][ T4277] EXT4-fs (loop0): unmounting filesystem. [ 138.429287][ C1] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 138.442120][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 138.450472][ C0] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 138.459694][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 138.486681][ T5334] Dev loop9: unable to read RDB block 0 [ 138.515469][ T5334] loop9: unable to read partition table [ 138.546726][ T5334] loop9: partition table beyond EOD, truncated [ 138.556903][ T5334] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dG¤´à–ƒÝ¡¯ â·û [ 138.556903][ T5334] ) failed (rc=-5) [ 138.902384][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902441][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x2 [ 138.902463][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902484][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902633][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902654][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902675][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902696][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902716][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902737][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902758][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902778][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902799][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902820][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902847][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902868][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902889][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902910][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902930][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902951][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902972][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.902992][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903013][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903034][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903055][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903076][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903099][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903120][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903140][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903161][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903182][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903203][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903223][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.903244][ T4504] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 138.905651][ T4504] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz0 [ 139.127132][ T5353] fido_id[5353]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 140.323672][ T5361] loop2: detected capacity change from 0 to 128 [ 140.749798][ T5365] loop1: detected capacity change from 0 to 8192 [ 140.892083][ T5373] loop0: detected capacity change from 0 to 128 [ 140.965510][ T5375] netlink: 8 bytes leftover after parsing attributes in process `syz.3.339'. [ 141.022613][ T5373] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 141.126214][ T5373] ext4 filesystem being mounted at /78/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 141.355855][ T4277] EXT4-fs (loop0): unmounting filesystem. [ 141.913595][ T5396] CIFS mount error: No usable UNC path provided in device string! [ 141.913595][ T5396] [ 141.924268][ T5396] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 143.243376][ T27] kauditd_printk_skb: 13 callbacks suppressed [ 143.243391][ T27] audit: type=1326 audit(1763026156.013:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5405 comm="syz.3.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 143.376932][ T27] audit: type=1326 audit(1763026156.063:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5405 comm="syz.3.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 143.439422][ T27] audit: type=1326 audit(1763026156.063:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5405 comm="syz.3.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 143.533871][ T27] audit: type=1326 audit(1763026156.063:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5405 comm="syz.3.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 143.586741][ T5416] loop3: detected capacity change from 0 to 128 [ 143.613807][ T27] audit: type=1326 audit(1763026156.063:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5405 comm="syz.3.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 143.737488][ T5416] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 143.816657][ T5416] ext4 filesystem being mounted at /65/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 144.102408][ T5286] Set syz1 is full, maxelem 65536 reached [ 144.170223][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 144.181482][ T4274] EXT4-fs (loop4): unmounting filesystem. [ 144.197767][ T4274] EXT4-fs error (device loop4): __ext4_get_inode_loc:4513: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 144.251915][ T4274] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5929: Corrupt filesystem [ 144.283854][ T4274] EXT4-fs error (device loop4): ext4_quota_off:7115: inode #3: comm syz-executor: mark_inode_dirty error [ 144.449008][ T5427] loop3: detected capacity change from 0 to 8192 [ 144.523890][ T27] audit: type=1804 audit(1763026157.293:651): pid=5427 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.357" name="/newroot/66/file0/bus" dev="loop3" ino=1048598 res=1 errno=0 [ 144.849350][ T5435] loop2: detected capacity change from 0 to 512 [ 144.913011][ T5435] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 144.966298][ T5435] EXT4-fs (loop2): invalid journal inode [ 145.003368][ T5435] EXT4-fs (loop2): can't get journal size [ 145.077077][ T5435] EXT4-fs (loop2): 1 truncate cleaned up [ 145.093108][ T5435] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 145.389771][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 145.627877][ T5446] netlink: 12 bytes leftover after parsing attributes in process `syz.2.363'. [ 145.983562][ T5452] loop2: detected capacity change from 0 to 128 [ 146.095475][ T5452] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 146.131608][ T5452] ext4 filesystem being mounted at /81/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 146.278183][ T27] audit: type=1326 audit(1763026159.053:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5462 comm="syz.3.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 146.306729][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 146.425957][ T27] audit: type=1326 audit(1763026159.053:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5462 comm="syz.3.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 146.552538][ T27] audit: type=1326 audit(1763026159.053:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5462 comm="syz.3.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 146.563809][ T5467] loop2: detected capacity change from 0 to 512 [ 146.656941][ T27] audit: type=1326 audit(1763026159.073:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5462 comm="syz.3.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 146.702723][ T5467] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 146.743527][ T5467] EXT4-fs (loop2): invalid journal inode [ 146.764979][ T5467] EXT4-fs (loop2): can't get journal size [ 146.812223][ T5467] EXT4-fs (loop2): 1 truncate cleaned up [ 146.825193][ T5467] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 147.019100][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 147.038870][ T5478] netlink: 36 bytes leftover after parsing attributes in process `syz.4.378'. [ 147.645582][ T5492] netlink: 'syz.1.383': attribute type 21 has an invalid length. [ 147.661285][ T5492] netlink: 132 bytes leftover after parsing attributes in process `syz.1.383'. [ 148.307232][ T5506] loop1: detected capacity change from 0 to 512 [ 148.356780][ T5506] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 148.406892][ T5506] EXT4-fs (loop1): invalid journal inode [ 148.427392][ T5506] EXT4-fs (loop1): can't get journal size [ 148.476086][ T5506] EXT4-fs (loop1): 1 truncate cleaned up [ 148.566938][ T5506] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 148.892270][ T5522] netlink: 24 bytes leftover after parsing attributes in process `syz.0.394'. [ 149.108460][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 149.609895][ T5539] lo speed is unknown, defaulting to 1000 [ 149.755144][ T5539] lo speed is unknown, defaulting to 1000 [ 149.760778][ T5543] lo speed is unknown, defaulting to 1000 [ 149.822465][ T5544] mmap: syz.2.404 (5544) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 149.875224][ T5543] lo speed is unknown, defaulting to 1000 [ 150.270279][ T5556] 8021q: adding VLAN 0 to HW filter on device bond1 [ 150.301305][ T5560] netlink: 24 bytes leftover after parsing attributes in process `syz.3.410'. [ 150.595859][ T5568] netlink: 19 bytes leftover after parsing attributes in process `syz.0.414'. [ 150.843034][ T5579] loop2: detected capacity change from 0 to 512 [ 150.891761][ T5579] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 150.945942][ T5579] EXT4-fs (loop2): invalid journal inode [ 150.976890][ T5579] EXT4-fs (loop2): can't get journal size [ 151.029565][ T5579] EXT4-fs (loop2): 1 truncate cleaned up [ 151.057035][ T5579] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 151.145140][ T5587] lo speed is unknown, defaulting to 1000 [ 151.152216][ T5587] lo speed is unknown, defaulting to 1000 [ 151.347773][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 151.355220][ T3637] udevd[3637]: worker [4441] terminated by signal 33 (Unknown signal 33) [ 151.386182][ T3637] udevd[3637]: worker [4441] failed while handling '/devices/virtual/block/loop2' [ 151.429449][ T5588] lo speed is unknown, defaulting to 1000 [ 151.467594][ T5588] lo speed is unknown, defaulting to 1000 [ 152.577764][ T27] audit: type=1326 audit(1763026165.353:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5611 comm="syz.3.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 152.656513][ T27] audit: type=1326 audit(1763026165.353:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5611 comm="syz.3.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 152.756585][ T27] audit: type=1326 audit(1763026165.353:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5611 comm="syz.3.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 152.784018][ T5614] lo speed is unknown, defaulting to 1000 [ 152.835657][ T27] audit: type=1326 audit(1763026165.353:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5611 comm="syz.3.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 152.918294][ T27] audit: type=1326 audit(1763026165.363:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5611 comm="syz.3.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 153.123026][ T27] audit: type=1326 audit(1763026165.363:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5611 comm="syz.3.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 153.145812][ T27] audit: type=1326 audit(1763026165.363:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5611 comm="syz.3.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 153.149385][ T5624] loop3: detected capacity change from 0 to 512 [ 153.426572][ T5627] CIFS mount error: No usable UNC path provided in device string! [ 153.426572][ T5627] [ 153.436796][ T5627] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 153.783393][ T27] audit: type=1326 audit(1763026165.363:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5611 comm="syz.3.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 153.830971][ T5624] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 153.862542][ T5624] EXT4-fs (loop3): invalid journal inode [ 153.909494][ T5624] EXT4-fs (loop3): can't get journal size [ 153.957564][ T27] audit: type=1326 audit(1763026165.363:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5611 comm="syz.3.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 154.005597][ T5624] EXT4-fs (loop3): 1 truncate cleaned up [ 154.011797][ T5624] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 154.133168][ T27] audit: type=1326 audit(1763026165.363:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5611 comm="syz.3.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 154.422970][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 154.432966][ T5614] lo speed is unknown, defaulting to 1000 [ 155.140470][ T5662] loop1: detected capacity change from 0 to 128 [ 155.180639][ T5665] loop3: detected capacity change from 0 to 512 [ 155.242101][ T5665] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 155.276884][ T5665] EXT4-fs (loop3): invalid journal inode [ 155.326561][ T5665] EXT4-fs (loop3): can't get journal size [ 155.344417][ T5662] syz.1.451: attempt to access beyond end of device [ 155.344417][ T5662] loop1: rw=2049, sector=138, nr_sectors = 112 limit=128 [ 155.375581][ T5665] EXT4-fs (loop3): 1 truncate cleaned up [ 155.425879][ T5665] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 156.069614][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 156.185335][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.206265][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.223229][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.242609][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.260339][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.281992][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.297802][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.310574][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.326571][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.339900][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.348223][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.355814][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.364719][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.374873][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.385783][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.396658][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.404273][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.413930][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.421669][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.429467][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.437128][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.444874][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.452903][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.461722][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.469448][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.477295][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.484938][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.492765][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.500475][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.508286][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.516023][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.532743][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.554047][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.566885][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.574742][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.582480][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.590374][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.598112][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.605956][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.621689][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.635231][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.649933][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.663594][ T4338] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 156.715584][ T4338] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz0] on syz0 [ 156.720868][ T5707] loop2: detected capacity change from 0 to 128 [ 156.770814][ T5707] FAT-fs (loop2): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 156.868262][ T5707] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 156.896576][ T5707] FAT-fs (loop2): Filesystem has been set read-only [ 156.957776][ T5707] syz.2.467: attempt to access beyond end of device [ 156.957776][ T5707] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 157.057312][ T5707] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 157.112049][ T5707] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 157.137596][ T5708] fido_id[5708]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 157.180608][ T5707] syz.2.467: attempt to access beyond end of device [ 157.180608][ T5707] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 157.358714][ T5707] syz.2.467 (5707) used greatest stack depth: 20096 bytes left [ 157.475632][ T5724] CIFS mount error: No usable UNC path provided in device string! [ 157.475632][ T5724] [ 157.486514][ T5724] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 158.832266][ T5738] netlink: 4 bytes leftover after parsing attributes in process `syz.1.476'. [ 158.942047][ T5742] netlink: 8 bytes leftover after parsing attributes in process `syz.0.478'. [ 159.013363][ T5743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.478'. [ 159.121850][ T5738] device hsr_slave_0 left promiscuous mode [ 159.144844][ T5745] loop2: detected capacity change from 0 to 512 [ 159.194681][ T5745] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 159.283187][ T5745] EXT4-fs (loop2): 1 truncate cleaned up [ 159.328645][ T5745] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 159.604423][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 159.903983][ T5758] loop2: detected capacity change from 0 to 128 [ 159.931329][ T5763] netlink: 12 bytes leftover after parsing attributes in process `syz.3.486'. [ 159.966485][ T5758] FAT-fs (loop2): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1) [ 160.127488][ T5770] loop1: detected capacity change from 0 to 2048 [ 160.203637][ T5770] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 160.300547][ T5770] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 160.436712][ T126] usb 3-1: new full-speed USB device number 2 using dummy_hcd [ 160.515580][ T5777] loop3: detected capacity change from 0 to 1024 [ 160.540765][ T5777] EXT4-fs: Ignoring removed orlov option [ 160.606646][ T126] usb 3-1: device descriptor read/64, error -71 [ 160.621483][ T5777] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 160.721443][ T27] kauditd_printk_skb: 4 callbacks suppressed [ 160.721458][ T27] audit: type=1326 audit(1763026173.493:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5779 comm="syz.4.492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 160.740051][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 160.789245][ T27] audit: type=1800 audit(1763026173.493:671): pid=5777 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.490" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 160.817006][ T27] audit: type=1326 audit(1763026173.523:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5779 comm="syz.4.492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 160.873103][ T27] audit: type=1326 audit(1763026173.533:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5779 comm="syz.4.492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 160.906543][ T126] usb 3-1: new full-speed USB device number 3 using dummy_hcd [ 160.949146][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 160.997179][ T27] audit: type=1326 audit(1763026173.533:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5779 comm="syz.4.492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 161.096542][ T126] usb 3-1: device descriptor read/64, error -71 [ 161.105937][ T27] audit: type=1326 audit(1763026173.533:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5779 comm="syz.4.492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 161.163976][ T27] audit: type=1326 audit(1763026173.533:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5779 comm="syz.4.492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1ff3d8df10 code=0x7ffc0000 [ 161.216305][ T27] audit: type=1326 audit(1763026173.533:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5779 comm="syz.4.492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 161.239808][ T126] usb usb3-port1: attempt power cycle [ 161.292798][ T27] audit: type=1326 audit(1763026173.533:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5779 comm="syz.4.492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=295 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 161.322572][ T5795] netlink: 8 bytes leftover after parsing attributes in process `syz.0.498'. [ 161.355633][ T27] audit: type=1326 audit(1763026173.533:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5779 comm="syz.4.492" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 162.465900][ T126] usb 3-1: new full-speed USB device number 4 using dummy_hcd [ 162.497597][ T126] usb 3-1: device descriptor read/8, error -71 [ 162.816661][ T126] usb 3-1: new full-speed USB device number 5 using dummy_hcd [ 163.025192][ T126] usb 3-1: device descriptor read/8, error -71 [ 163.112050][ T5824] lo speed is unknown, defaulting to 1000 [ 163.123145][ T5824] lo speed is unknown, defaulting to 1000 [ 163.209495][ T5826] CIFS mount error: No usable UNC path provided in device string! [ 163.209495][ T5826] [ 163.220427][ T5826] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 163.232702][ T126] usb usb3-port1: unable to enumerate USB device [ 163.345578][ T4368] FAT-fs (loop2): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1) [ 163.470412][ T5829] netlink: 8 bytes leftover after parsing attributes in process `syz.0.508'. [ 163.600656][ T5827] netlink: 8 bytes leftover after parsing attributes in process `syz.0.508'. [ 163.904346][ T5843] netlink: 'syz.4.515': attribute type 153 has an invalid length. [ 165.017304][ T5854] netlink: 28 bytes leftover after parsing attributes in process `syz.3.517'. [ 165.037391][ T5854] netlink: 28 bytes leftover after parsing attributes in process `syz.3.517'. [ 165.521487][ T5874] netlink: 8 bytes leftover after parsing attributes in process `syz.0.524'. [ 165.534649][ T5875] loop1: detected capacity change from 0 to 128 [ 165.699679][ T5879] syz.4.527[5879] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 165.699786][ T5879] syz.4.527[5879] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 165.713091][ T5877] netlink: 8 bytes leftover after parsing attributes in process `syz.0.524'. [ 165.799536][ T5884] CIFS mount error: No usable UNC path provided in device string! [ 165.799536][ T5884] [ 165.809755][ T5884] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 165.888678][ T5864] loop3: detected capacity change from 0 to 512 [ 166.299546][ T5875] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 166.400826][ T27] kauditd_printk_skb: 26 callbacks suppressed [ 166.400841][ T27] audit: type=1107 audit(1763026179.173:706): pid=5876 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 166.458723][ T5875] ext4 filesystem being mounted at /103/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 166.513993][ T5864] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 166.554788][ T5864] ext4 filesystem being mounted at /100/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 166.907069][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 166.949789][ T5895] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 166.957388][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 167.343698][ T27] audit: type=1326 audit(1763026180.113:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5910 comm="syz.1.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 167.400135][ T27] audit: type=1326 audit(1763026180.163:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5910 comm="syz.1.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 167.566300][ T5912] loop1: detected capacity change from 0 to 1024 [ 167.590013][ T27] audit: type=1326 audit(1763026180.163:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5910 comm="syz.1.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 167.643887][ T5912] EXT4-fs: Ignoring removed orlov option [ 167.847650][ T5920] CIFS mount error: No usable UNC path provided in device string! [ 167.847650][ T5920] [ 167.857789][ T5920] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 168.134615][ T27] audit: type=1326 audit(1763026180.163:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5910 comm="syz.1.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f82b498f703 code=0x7ffc0000 [ 168.296946][ T27] audit: type=1326 audit(1763026180.163:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5910 comm="syz.1.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f82b498e17f code=0x7ffc0000 [ 168.391370][ T27] audit: type=1326 audit(1763026180.333:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5910 comm="syz.1.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f82b498f757 code=0x7ffc0000 [ 168.537713][ T5912] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 168.607126][ T27] audit: type=1326 audit(1763026180.333:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5910 comm="syz.1.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f82b498df10 code=0x7ffc0000 [ 168.716530][ T27] audit: type=1326 audit(1763026180.333:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5910 comm="syz.1.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f82b498f2cb code=0x7ffc0000 [ 168.800325][ T27] audit: type=1326 audit(1763026180.403:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5910 comm="syz.1.538" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f82b498e32a code=0x7ffc0000 [ 168.912823][ T5937] xt_CT: You must specify a L4 protocol and not use inversions on it [ 169.376198][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 169.953393][ T5956] loop3: detected capacity change from 0 to 128 [ 169.990886][ T5956] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 170.007178][ T5956] ext4 filesystem being mounted at /106/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 170.248736][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 171.312962][ T5985] netlink: 'syz.1.564': attribute type 11 has an invalid length. [ 171.351984][ T5985] netlink: 224 bytes leftover after parsing attributes in process `syz.1.564'. [ 171.390096][ T5981] lo speed is unknown, defaulting to 1000 [ 171.430274][ T5981] lo speed is unknown, defaulting to 1000 [ 171.469711][ T5989] loop1: detected capacity change from 0 to 1024 [ 171.508206][ T5989] EXT4-fs: Ignoring removed nomblk_io_submit option [ 171.591813][ T5989] EXT4-fs: Ignoring removed orlov option [ 171.630642][ T5999] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22 [ 171.676691][ T5999] netdevsim netdevsim4: Direct firmware load for . failed with error -22 [ 171.685377][ T5989] ext2: Bad value for 'mb_optimize_scan' [ 171.696767][ T5999] netdevsim netdevsim4: Falling back to sysfs fallback for: . [ 171.863556][ T56] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.977132][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 171.999287][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.018334][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.036203][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.074796][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.095980][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.112496][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.120204][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.136550][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.144040][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.151699][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.159324][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.166861][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.174333][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.181873][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.189407][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.196238][ T6006] netlink: 8 bytes leftover after parsing attributes in process `syz.0.573'. [ 172.197724][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.213357][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.220853][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.228354][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.236502][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.243985][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.251488][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.260751][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.268320][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.275763][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.283316][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.290815][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.298325][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.305751][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.313330][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.320895][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.328419][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.337536][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.344994][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.352589][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.360085][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.367623][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.375074][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.382613][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.390131][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.397677][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.405117][ T4316] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 172.435873][ T4316] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz0] on syz0 [ 172.465330][ T6007] netlink: 8 bytes leftover after parsing attributes in process `syz.0.573'. [ 172.752394][ T6012] fido_id[6012]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 173.272251][ T6026] device macvtap0 entered promiscuous mode [ 173.273968][ T6026] device macvtap0 left promiscuous mode [ 173.455538][ T6034] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5) [ 173.455650][ T6034] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 173.461691][ T6034] vhci_hcd vhci_hcd.0: Device attached [ 173.479494][ T6035] vhci_hcd: connection closed [ 173.484069][ T9] vhci_hcd: stop threads [ 173.485123][ T9] vhci_hcd: release socket [ 173.500503][ T9] vhci_hcd: disconnect device [ 173.654851][ T6042] netlink: 8 bytes leftover after parsing attributes in process `syz.0.588'. [ 173.678200][ T6042] netlink: 8 bytes leftover after parsing attributes in process `syz.0.588'. [ 173.851417][ T27] kauditd_printk_skb: 20 callbacks suppressed [ 173.851433][ T27] audit: type=1326 audit(1763026186.623:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6049 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 173.924172][ T27] audit: type=1326 audit(1763026186.623:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6049 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 174.083448][ T27] audit: type=1326 audit(1763026186.623:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6049 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 174.183222][ T6056] netlink: 'syz.1.594': attribute type 1 has an invalid length. [ 174.218375][ T27] audit: type=1326 audit(1763026186.623:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6049 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 174.331569][ T27] audit: type=1326 audit(1763026186.623:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6049 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 174.432384][ T27] audit: type=1326 audit(1763026186.623:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6049 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 174.463813][ T27] audit: type=1326 audit(1763026186.623:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6049 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 174.886618][ T6072] CIFS mount error: No usable UNC path provided in device string! [ 174.886618][ T6072] [ 174.896746][ T6072] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 175.109010][ T27] audit: type=1326 audit(1763026186.623:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6049 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 175.205396][ T27] audit: type=1326 audit(1763026186.623:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6049 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 175.414422][ T27] audit: type=1326 audit(1763026186.653:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6049 comm="syz.4.591" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 175.618089][ T6077] netlink: 12 bytes leftover after parsing attributes in process `syz.3.602'. [ 176.149974][ T6092] mmap: syz.2.607 (6092): VmData 37453824 exceed data ulimit 1023. Update limits or use boot option ignore_rlimit_data. [ 177.307436][ T6110] CIFS mount error: No usable UNC path provided in device string! [ 177.307436][ T6110] [ 177.317560][ T6110] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 178.802019][ T6131] IPv6: NLM_F_CREATE should be specified when creating new route [ 178.844573][ T6131] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 178.852388][ T6131] IPv6: NLM_F_CREATE should be set when creating new route [ 179.383634][ T27] kauditd_printk_skb: 10 callbacks suppressed [ 179.383651][ T27] audit: type=1326 audit(1763026192.153:756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6136 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 179.400203][ T6146] netlink: 8 bytes leftover after parsing attributes in process `syz.2.627'. [ 179.430749][ T6145] loop0: detected capacity change from 0 to 512 [ 179.438251][ T6145] EXT4-fs: Ignoring removed i_version option [ 179.444312][ T6145] EXT4-fs: Ignoring removed bh option [ 179.469264][ T27] audit: type=1326 audit(1763026192.153:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6136 comm="syz.3.626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe33f18f6c9 code=0x7ffc0000 [ 179.494126][ T6142] netlink: 8 bytes leftover after parsing attributes in process `syz.2.627'. [ 179.514574][ T6145] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 179.525225][ T6145] ext4 filesystem being mounted at /136/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 180.075326][ T4277] EXT4-fs (loop0): unmounting filesystem. [ 180.083490][ T6169] netlink: 4 bytes leftover after parsing attributes in process `syz.4.633'. [ 181.248267][ T27] audit: type=1326 audit(1763026194.023:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6182 comm="syz.1.639" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x0 [ 182.108152][ T6205] netlink: 4 bytes leftover after parsing attributes in process `syz.1.647'. [ 182.232720][ T6207] netlink: 4 bytes leftover after parsing attributes in process `syz.1.649'. [ 182.289561][ T6209] loop2: detected capacity change from 0 to 128 [ 182.419009][ T6212] syz.2.648: attempt to access beyond end of device [ 182.419009][ T6212] loop2: rw=2049, sector=145, nr_sectors = 144 limit=128 [ 182.447865][ T6207] team0: Port device team_slave_1 removed [ 182.476173][ T6209] syz.2.648: attempt to access beyond end of device [ 182.476173][ T6209] loop2: rw=524288, sector=145, nr_sectors = 144 limit=128 [ 182.479767][ T6209] syz.2.648: attempt to access beyond end of device [ 182.479767][ T6209] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 182.479914][ T6209] syz.2.648: attempt to access beyond end of device [ 182.479914][ T6209] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 182.480000][ T6209] syz.2.648: attempt to access beyond end of device [ 182.480000][ T6209] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 182.480084][ T6209] syz.2.648: attempt to access beyond end of device [ 182.480084][ T6209] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 182.480166][ T6209] syz.2.648: attempt to access beyond end of device [ 182.480166][ T6209] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 182.480258][ T6209] syz.2.648: attempt to access beyond end of device [ 182.480258][ T6209] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 182.481593][ T6209] syz.2.648: attempt to access beyond end of device [ 182.481593][ T6209] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 182.481689][ T6209] syz.2.648: attempt to access beyond end of device [ 182.481689][ T6209] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 182.583203][ T6214] loop0: detected capacity change from 0 to 764 [ 183.047648][ T6224] lo speed is unknown, defaulting to 1000 [ 183.055146][ T6224] lo speed is unknown, defaulting to 1000 [ 183.203642][ T6228] loop1: detected capacity change from 0 to 128 [ 183.270819][ T6228] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 183.290033][ T6228] ext4 filesystem being mounted at /129/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 183.374677][ T6233] loop2: detected capacity change from 0 to 512 [ 183.405885][ T6233] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 184.645604][ T4348] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 184.686215][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 185.304911][ T6254] netlink: 12 bytes leftover after parsing attributes in process `syz.1.665'. [ 186.388718][ T6273] loop0: detected capacity change from 0 to 128 [ 186.448712][ T6273] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 186.449042][ T6273] ext4 filesystem being mounted at /148/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 186.629579][ T4277] EXT4-fs (loop0): unmounting filesystem. [ 186.878896][ T27] audit: type=1326 audit(1763026199.653:759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6280 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 186.961970][ T27] audit: type=1326 audit(1763026199.683:760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6280 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 187.084327][ T27] audit: type=1326 audit(1763026199.683:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6280 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 187.176574][ T27] audit: type=1326 audit(1763026199.683:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6280 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 187.268010][ T27] audit: type=1326 audit(1763026199.683:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6280 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 187.313448][ T6271] sched: RT throttling activated [ 187.499718][ T27] audit: type=1326 audit(1763026199.683:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6280 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 187.634841][ T27] audit: type=1326 audit(1763026199.683:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6280 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 187.829441][ T27] audit: type=1326 audit(1763026199.683:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6280 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 187.993334][ T27] audit: type=1326 audit(1763026199.683:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6280 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 188.128593][ T27] audit: type=1326 audit(1763026199.683:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6280 comm="syz.2.675" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 188.243371][ T6303] loop3: detected capacity change from 0 to 128 [ 188.332902][ T6303] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 188.372286][ T6303] ext4 filesystem being mounted at /125/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 188.571015][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 188.856253][ T6323] netlink: 12 bytes leftover after parsing attributes in process `syz.0.691'. [ 188.880447][ T6327] loop1: detected capacity change from 0 to 128 [ 188.885966][ T6324] loop3: detected capacity change from 0 to 1024 [ 188.904532][ T6324] EXT4-fs: Ignoring removed bh option [ 188.944460][ T6324] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 188.967913][ T6323] netlink: 4 bytes leftover after parsing attributes in process `syz.0.691'. [ 189.002436][ T6324] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0100] [ 189.119645][ T6324] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 2: comm syz.3.689: lblock 2 mapped to illegal pblock 2 (length 1) [ 189.144733][ T6324] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 48: comm syz.3.689: lblock 0 mapped to illegal pblock 48 (length 1) [ 189.285665][ T6324] EXT4-fs error (device loop3): ext4_acquire_dquot:6809: comm syz.3.689: Failed to acquire dquot type 0 [ 189.305244][ T4348] bio_check_eod: 207 callbacks suppressed [ 189.305257][ T4348] kworker/u4:5: attempt to access beyond end of device [ 189.305257][ T4348] loop1: rw=1, sector=145, nr_sectors = 896 limit=128 [ 189.362083][ T6324] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5929: Corrupt filesystem [ 189.395948][ T6324] EXT4-fs error (device loop3): ext4_evict_inode:279: inode #11: comm syz.3.689: mark_inode_dirty error [ 189.442655][ T6324] EXT4-fs warning (device loop3): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 189.481740][ T6324] EXT4-fs (loop3): 1 orphan inode deleted [ 189.499647][ T5398] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:13: lblock 1 mapped to illegal pblock 1 (length 1) [ 189.538190][ T6324] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 189.582236][ T5398] EXT4-fs error (device loop3): ext4_release_dquot:6845: comm kworker/u4:13: Failed to release dquot type 0 [ 189.870369][ T6347] loop0: detected capacity change from 0 to 128 [ 189.912393][ T6347] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 189.931186][ T6347] ext4 filesystem being mounted at /153/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 190.234027][ T4277] EXT4-fs (loop0): unmounting filesystem. [ 191.729319][ T6376] netlink: 188 bytes leftover after parsing attributes in process `syz.2.712'. [ 191.801037][ T6378] loop0: detected capacity change from 0 to 128 [ 191.854475][ T6378] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 191.854910][ T6378] ext4 filesystem being mounted at /158/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 191.955859][ T6382] netlink: 4 bytes leftover after parsing attributes in process `syz.2.715'. [ 192.077969][ T4277] EXT4-fs (loop0): unmounting filesystem. [ 192.959273][ T6396] loop1: detected capacity change from 0 to 512 [ 192.966525][ T6396] EXT4-fs: Ignoring removed i_version option [ 192.972580][ T6396] EXT4-fs: Ignoring removed bh option [ 193.072088][ T6396] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 193.081671][ T6396] ext4 filesystem being mounted at /143/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 193.805284][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 194.433582][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.440900][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.524630][ T6411] random: crng reseeded on system resumption [ 194.615483][ T27] kauditd_printk_skb: 328 callbacks suppressed [ 194.615498][ T27] audit: type=1326 audit(1763026207.383:1094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.1.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 194.717726][ T27] audit: type=1326 audit(1763026207.383:1095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.1.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 194.782840][ T27] audit: type=1326 audit(1763026207.383:1096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.1.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 194.842318][ T27] audit: type=1326 audit(1763026207.383:1097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.1.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 194.994659][ T27] audit: type=1326 audit(1763026207.383:1098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.1.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 195.095210][ T27] audit: type=1326 audit(1763026207.383:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.1.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 195.201374][ T27] audit: type=1326 audit(1763026207.383:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.1.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f82b4986567 code=0x7ffc0000 [ 195.425129][ T27] audit: type=1326 audit(1763026207.383:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.1.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f82b492b779 code=0x7ffc0000 [ 195.481971][ T27] audit: type=1326 audit(1763026207.383:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.1.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 195.518352][ T6422] CIFS mount error: No usable UNC path provided in device string! [ 195.518352][ T6422] [ 195.528484][ T6422] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 196.262995][ T27] audit: type=1326 audit(1763026207.383:1103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.1.724" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 196.822748][ T6430] loop1: detected capacity change from 0 to 1024 [ 196.843143][ T6430] EXT4-fs: Ignoring removed bh option [ 196.948134][ T6430] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 197.129716][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 197.325961][ T6445] netlink: 20 bytes leftover after parsing attributes in process `syz.2.733'. [ 197.672854][ T6450] loop1: detected capacity change from 0 to 512 [ 197.680188][ T6450] EXT4-fs: Ignoring removed i_version option [ 197.686236][ T6450] EXT4-fs: Ignoring removed bh option [ 198.216295][ T6450] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 198.225814][ T6450] ext4 filesystem being mounted at /146/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 198.519029][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 198.631088][ T6322] Set syz1 is full, maxelem 65536 reached [ 198.785450][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 198.801753][ T4264] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 198.845848][ T4264] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5929: Corrupt filesystem [ 198.871585][ T4264] EXT4-fs error (device loop3): ext4_quota_off:7115: inode #3: comm syz-executor: mark_inode_dirty error [ 199.010025][ T6459] netlink: 4 bytes leftover after parsing attributes in process `syz.0.739'. [ 199.409551][ T6468] netlink: 20 bytes leftover after parsing attributes in process `syz.4.742'. [ 199.738848][ T6468] netlink: 20 bytes leftover after parsing attributes in process `syz.4.742'. [ 200.254636][ T6475] device syzkaller0 entered promiscuous mode [ 200.808460][ T6503] loop0: detected capacity change from 0 to 512 [ 200.815824][ T6503] EXT4-fs: Ignoring removed i_version option [ 200.821974][ T6503] EXT4-fs: Ignoring removed bh option [ 200.908608][ T6503] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 200.918146][ T6503] ext4 filesystem being mounted at /166/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 201.132898][ T6502] netlink: 28 bytes leftover after parsing attributes in process `syz.1.749'. [ 201.444087][ T4277] EXT4-fs (loop0): unmounting filesystem. [ 201.479946][ T27] kauditd_printk_skb: 78 callbacks suppressed [ 201.479962][ T27] audit: type=1326 audit(1763026214.253:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.1.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 201.506961][ T6522] loop3: detected capacity change from 0 to 164 [ 201.528680][ T27] audit: type=1326 audit(1763026214.283:1183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.1.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 201.562750][ T6522] Unable to read rock-ridge attributes [ 201.575730][ T6522] Unable to read rock-ridge attributes [ 201.616930][ T4266] Bluetooth: hci2: command 0x0406 tx timeout [ 201.623668][ T4272] Bluetooth: hci1: command 0x0406 tx timeout [ 201.633835][ T4276] Bluetooth: hci3: command 0x0406 tx timeout [ 201.636604][ T4268] Bluetooth: hci4: command 0x0406 tx timeout [ 201.696181][ T27] audit: type=1326 audit(1763026214.283:1184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.1.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 201.700506][ T6527] netlink: 'syz.0.757': attribute type 11 has an invalid length. [ 201.731235][ T27] audit: type=1326 audit(1763026214.303:1185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.1.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 201.754342][ T27] audit: type=1326 audit(1763026214.303:1186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.1.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 201.806630][ T6527] netlink: 224 bytes leftover after parsing attributes in process `syz.0.757'. [ 201.837527][ T27] audit: type=1326 audit(1763026214.343:1187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.1.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 201.921948][ T27] audit: type=1326 audit(1763026214.343:1188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.1.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 201.946821][ T27] audit: type=1326 audit(1763026214.343:1189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.1.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 202.034108][ T27] audit: type=1326 audit(1763026214.343:1190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.1.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 202.082724][ T6530] bridge0: port 3(gretap0) entered blocking state [ 202.090694][ T6530] bridge0: port 3(gretap0) entered disabled state [ 202.098164][ T27] audit: type=1326 audit(1763026214.343:1191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6516 comm="syz.1.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f82b498f6c9 code=0x7ffc0000 [ 202.157985][ T6530] device gretap0 entered promiscuous mode [ 202.169704][ T6530] bridge0: port 3(gretap0) entered blocking state [ 202.176864][ T6530] bridge0: port 3(gretap0) entered forwarding state [ 202.205932][ T6527] lo speed is unknown, defaulting to 1000 [ 202.236315][ T6527] lo speed is unknown, defaulting to 1000 [ 202.482964][ T6539] loop2: detected capacity change from 0 to 128 [ 202.559842][ T6539] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 202.577063][ T6539] ext4 filesystem being mounted at /169/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 202.946589][ T4273] EXT4-fs (loop2): unmounting filesystem. [ 203.424325][ T6560] loop1: detected capacity change from 0 to 512 [ 203.432660][ T6560] EXT4-fs: Ignoring removed i_version option [ 203.439618][ T6560] EXT4-fs: Ignoring removed bh option [ 203.517111][ T6560] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 203.526901][ T6560] ext4 filesystem being mounted at /154/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 203.723729][ T6564] team0: Port device veth0_to_bridge added [ 204.107452][ T4265] EXT4-fs (loop1): unmounting filesystem. [ 205.820111][ T6596] syz.2.781[6596] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 205.820214][ T6596] syz.2.781[6596] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 206.367674][ T6604] CIFS mount error: No usable UNC path provided in device string! [ 206.367674][ T6604] [ 206.367741][ T6604] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 207.007519][ T27] kauditd_printk_skb: 115 callbacks suppressed [ 207.007536][ T27] audit: type=1326 audit(1763026219.783:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.2.785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 207.036826][ T27] audit: type=1326 audit(1763026219.813:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.2.785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 207.037166][ T27] audit: type=1326 audit(1763026219.813:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.2.785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 207.037366][ T27] audit: type=1326 audit(1763026219.813:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.2.785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 207.037743][ T27] audit: type=1326 audit(1763026219.813:1311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6605 comm="syz.2.785" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca6618f6c9 code=0x7ffc0000 [ 207.423084][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423117][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x2 [ 207.423138][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423157][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423176][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423195][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423216][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423237][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423259][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423281][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423303][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423323][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423344][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423365][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423387][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423408][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423430][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423451][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423472][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423494][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423516][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423537][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423559][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423581][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423602][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423639][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423659][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423679][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423700][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423721][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423743][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423764][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423786][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423807][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423828][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423850][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423872][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423893][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423914][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423935][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.423957][ T22] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0 [ 207.425460][ T22] hid-generic 0000:0000:0000.0005: hidraw0: HID v0.00 Device [syz0] on syz0 [ 207.735627][ T6617] lo speed is unknown, defaulting to 1000 [ 207.745136][ T6613] fido_id[6613]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 207.916098][ T6617] lo speed is unknown, defaulting to 1000 [ 209.454877][ T6643] can0: slcan on ptm0. [ 209.558112][ T6643] can0 (unregistered): slcan off ptm0. [ 209.639060][ T6652] loop0: detected capacity change from 0 to 512 [ 209.675815][ T6651] random: crng reseeded on system resumption [ 209.723268][ T6652] [ 209.723295][ T6651] PM: hibernation: Marking nosave pages: [mem 0x00000000-0x00000fff] [ 209.725656][ T6652] ====================================================== [ 209.725665][ T6652] WARNING: possible circular locking dependency detected [ 209.735302][ T6651] PM: hibernation: Marking nosave pages: [mem 0x0009f000-0x000fffff] [ 209.740951][ T6652] syzkaller #0 Not tainted [ 209.740966][ T6652] ------------------------------------------------------ [ 209.740973][ T6652] syz.0.802/6652 is trying to acquire lock: [ 209.740985][ T6652] ffff888076254b98 (&sbi->s_writepages_rwsem){++++}-{0:0} [ 209.748236][ T6651] PM: hibernation: Marking nosave pages: [mem 0xbfffd000-0xffffffff] [ 209.756105][ T6652] , at: ext4_writepages+0x1c0/0x2e50 [ 209.756137][ T6652] [ 209.756137][ T6652] but task is already holding lock: [ 209.756143][ T6652] ffff888076252650 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x436/0x1100 [ 209.810566][ T6652] [ 209.810566][ T6652] which lock already depends on the new lock. [ 209.810566][ T6652] [ 209.821014][ T6652] [ 209.821014][ T6652] the existing dependency chain (in reverse order) is: [ 209.830143][ T6652] [ 209.830143][ T6652] -> #1 (sb_internal){.+.+}-{0:0}: [ 209.837574][ T6652] percpu_down_read+0x44/0x1a0 [ 209.842898][ T6652] ext4_evict_inode+0x436/0x1100 [ 209.848403][ T6652] evict+0x485/0x870 [ 209.852862][ T6652] ext4_ext_migrate+0xc0a/0xe50 [ 209.858270][ T6652] ext4_ioctl+0x1c1e/0x3dd0 [ 209.863331][ T6652] __se_sys_ioctl+0xfa/0x170 [ 209.868471][ T6652] do_syscall_64+0x4c/0xa0 [ 209.873441][ T6652] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 209.879900][ T6652] [ 209.879900][ T6652] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 209.888391][ T6652] __lock_acquire+0x2cf8/0x7c50 [ 209.893805][ T6652] lock_acquire+0x1b4/0x490 [ 209.898872][ T6652] percpu_down_read+0x44/0x1a0 [ 209.904289][ T6652] ext4_writepages+0x1c0/0x2e50 [ 209.909713][ T6652] do_writepages+0x3b7/0x610 [ 209.914874][ T6652] __writeback_single_inode+0x156/0x1160 [ 209.921203][ T6652] writeback_single_inode+0x221/0x8b0 [ 209.927142][ T6652] write_inode_now+0x15d/0x1d0 [ 209.932478][ T6652] iput+0x613/0x980 [ 209.936856][ T6652] ext4_xattr_block_set+0x2736/0x32a0 [ 209.942799][ T6652] ext4_expand_extra_isize_ea+0x109b/0x19b0 [ 209.949438][ T6652] __ext4_expand_extra_isize+0x301/0x3e0 [ 209.955635][ T6652] __ext4_mark_inode_dirty+0x47f/0x770 [ 209.961765][ T6652] ext4_evict_inode+0xa73/0x1100 [ 209.967291][ T6652] evict+0x485/0x870 [ 209.971763][ T6652] ext4_orphan_cleanup+0xbd3/0x1400 [ 209.977531][ T6652] ext4_fill_super+0x7bdf/0x8150 [ 209.983034][ T6652] get_tree_bdev+0x3f1/0x610 [ 209.988185][ T6652] vfs_get_tree+0x88/0x270 [ 209.993172][ T6652] do_new_mount+0x24a/0xa40 [ 209.998234][ T6652] __se_sys_mount+0x2d6/0x3c0 [ 210.003548][ T6652] do_syscall_64+0x4c/0xa0 [ 210.008504][ T6652] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 210.014967][ T6652] [ 210.014967][ T6652] other info that might help us debug this: [ 210.014967][ T6652] [ 210.025204][ T6652] Possible unsafe locking scenario: [ 210.025204][ T6652] [ 210.032668][ T6652] CPU0 CPU1 [ 210.038131][ T6652] ---- ---- [ 210.043508][ T6652] lock(sb_internal); [ 210.047774][ T6652] lock(&sbi->s_writepages_rwsem); [ 210.055595][ T6652] lock(sb_internal); [ 210.062205][ T6652] lock(&sbi->s_writepages_rwsem); [ 210.067418][ T6652] [ 210.067418][ T6652] *** DEADLOCK *** [ 210.067418][ T6652] [ 210.075569][ T6652] 3 locks held by syz.0.802/6652: [ 210.080632][ T6652] #0: ffff8880762520e0 (&type->s_umount_key#27/1){+.+.}-{3:3}, at: alloc_super+0x1fa/0x930 [ 210.090766][ T6652] #1: ffff888076252650 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x436/0x1100 [ 210.100287][ T6652] #2: ffff888071f9ef20 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3fe/0x770 [ 210.110583][ T6652] [ 210.110583][ T6652] stack backtrace: [ 210.116498][ T6652] CPU: 0 PID: 6652 Comm: syz.0.802 Not tainted syzkaller #0 [ 210.123797][ T6652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 210.133898][ T6652] Call Trace: [ 210.137209][ T6652] [ 210.140151][ T6652] dump_stack_lvl+0x168/0x22e [ 210.144855][ T6652] ? load_image+0x3b0/0x3b0 [ 210.149396][ T6652] ? show_regs_print_info+0x12/0x12 [ 210.154644][ T6652] ? print_circular_bug+0x12b/0x1a0 [ 210.159875][ T6652] check_noncircular+0x274/0x310 [ 210.164842][ T6652] ? add_chain_block+0x940/0x940 [ 210.169807][ T6652] ? _find_first_zero_bit+0xcf/0x100 [ 210.175122][ T6652] ? add_lock_to_list+0x191/0x280 [ 210.180204][ T6652] __lock_acquire+0x2cf8/0x7c50 [ 210.185085][ T6652] ? verify_lock_unused+0x140/0x140 [ 210.190318][ T6652] lock_acquire+0x1b4/0x490 [ 210.194840][ T6652] ? ext4_writepages+0x1c0/0x2e50 [ 210.199887][ T6652] ? __might_sleep+0xd0/0xd0 [ 210.204501][ T6652] ? read_lock_is_recursive+0x10/0x10 [ 210.209903][ T6652] ? mark_lock+0x94/0x320 [ 210.214259][ T6652] percpu_down_read+0x44/0x1a0 [ 210.219038][ T6652] ? ext4_writepages+0x1c0/0x2e50 [ 210.224082][ T6652] ext4_writepages+0x1c0/0x2e50 [ 210.228961][ T6652] ? verify_lock_unused+0x140/0x140 [ 210.234191][ T6652] ? mark_lock+0x94/0x320 [ 210.238545][ T6652] ? ext4_read_folio+0x370/0x370 [ 210.243500][ T6652] ? __lock_acquire+0x13c0/0x7c50 [ 210.248554][ T6652] ? __lock_acquire+0x7c50/0x7c50 [ 210.253795][ T6652] ? do_raw_spin_lock+0x11d/0x280 [ 210.258858][ T6652] ? do_raw_spin_unlock+0x11d/0x230 [ 210.264341][ T6652] ? ext4_read_folio+0x370/0x370 [ 210.269472][ T6652] do_writepages+0x3b7/0x610 [ 210.274179][ T6652] ? __writepage+0x130/0x130 [ 210.279069][ T6652] ? writeback_single_inode+0x216/0x8b0 [ 210.285026][ T6652] ? __lock_acquire+0x7c50/0x7c50 [ 210.290092][ T6652] ? do_raw_spin_lock+0x11d/0x280 [ 210.295166][ T6652] ? __ext4_expand_extra_isize+0x301/0x3e0 [ 210.300995][ T6652] __writeback_single_inode+0x156/0x1160 [ 210.306679][ T6652] writeback_single_inode+0x221/0x8b0 [ 210.312082][ T6652] ? write_inode_now+0x1d0/0x1d0 [ 210.317051][ T6652] write_inode_now+0x15d/0x1d0 [ 210.321839][ T6652] ? bdi_split_work_to_wbs+0x890/0x890 [ 210.327332][ T6652] ? rcu_is_watching+0x11/0xa0 [ 210.332174][ T6652] ? do_raw_spin_unlock+0x11d/0x230 [ 210.337401][ T6652] iput+0x613/0x980 [ 210.341232][ T6652] ext4_xattr_block_set+0x2736/0x32a0 [ 210.346634][ T6652] ? __might_sleep+0xd0/0xd0 [ 210.351283][ T6652] ? xattr_find_entry+0x12b/0x2f0 [ 210.356425][ T6652] ? ext4_xattr_block_find+0x2b0/0x2b0 [ 210.361932][ T6652] ? ext4_xattr_block_find+0x241/0x2b0 [ 210.367484][ T6652] ext4_expand_extra_isize_ea+0x109b/0x19b0 [ 210.373417][ T6652] __ext4_expand_extra_isize+0x301/0x3e0 [ 210.379075][ T6652] __ext4_mark_inode_dirty+0x47f/0x770 [ 210.384566][ T6652] ext4_evict_inode+0xa73/0x1100 [ 210.389641][ T6652] ? _raw_spin_unlock+0x24/0x40 [ 210.394535][ T6652] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 210.400485][ T6652] ? do_raw_spin_unlock+0x11d/0x230 [ 210.405729][ T6652] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 210.411655][ T6652] evict+0x485/0x870 [ 210.415575][ T6652] ? __lock_acquire+0x7c50/0x7c50 [ 210.420628][ T6652] ? proc_nr_inodes+0x2f0/0x2f0 [ 210.425553][ T6652] ? do_raw_spin_unlock+0x11d/0x230 [ 210.430790][ T6652] ? _raw_spin_unlock+0x24/0x40 [ 210.435671][ T6652] ? iput+0x768/0x980 [ 210.439958][ T6652] ext4_orphan_cleanup+0xbd3/0x1400 [ 210.445312][ T6652] ? ext4_orphan_del+0xb90/0xb90 [ 210.450288][ T6652] ? errseq_check_and_advance+0x62/0x120 [ 210.455950][ T6652] ext4_fill_super+0x7bdf/0x8150 [ 210.460990][ T6652] ? bdev_name+0x2c1/0x3f0 [ 210.465480][ T6652] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 210.471763][ T6652] ? snprintf+0xd7/0x120 [ 210.476147][ T6652] ? preempt_count_add+0x8d/0x190 [ 210.481343][ T6652] ? vscnprintf+0x80/0x80 [ 210.485709][ T6652] ? set_blocksize+0x1d3/0x350 [ 210.490528][ T6652] ? sb_set_blocksize+0xa5/0xe0 [ 210.495456][ T6652] get_tree_bdev+0x3f1/0x610 [ 210.500070][ T6652] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 210.506332][ T6652] vfs_get_tree+0x88/0x270 [ 210.510775][ T6652] do_new_mount+0x24a/0xa40 [ 210.515301][ T6652] __se_sys_mount+0x2d6/0x3c0 [ 210.520005][ T6652] ? __x64_sys_mount+0xc0/0xc0 [ 210.524790][ T6652] ? lockdep_hardirqs_on+0x94/0x140 [ 210.530020][ T6652] ? __x64_sys_mount+0x1c/0xc0 [ 210.534801][ T6652] do_syscall_64+0x4c/0xa0 [ 210.539243][ T6652] ? clear_bhb_loop+0x60/0xb0 [ 210.543936][ T6652] ? clear_bhb_loop+0x60/0xb0 [ 210.548641][ T6652] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 210.554563][ T6652] RIP: 0033:0x7fb06c790e6a [ 210.559019][ T6652] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 210.578678][ T6652] RSP: 002b:00007fb06d66be68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 210.587206][ T6652] RAX: ffffffffffffffda RBX: 00007fb06d66bef0 RCX: 00007fb06c790e6a [ 210.595244][ T6652] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fb06d66beb0 [ 210.603260][ T6652] RBP: 0000200000000180 R08: 00007fb06d66bef0 R09: 0000000000800718 [ 210.611252][ T6652] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0 [ 210.619242][ T6652] R13: 00007fb06d66beb0 R14: 000000000000046f R15: 0000200000000200 [ 210.627238][ T6652] [ 210.686971][ T6652] ------------[ cut here ]------------ [ 210.692545][ T6652] EA inode 11 i_nlink=2 [ 210.695116][ T6652] WARNING: CPU: 1 PID: 6652 at fs/ext4/xattr.c:1022 ext4_xattr_inode_update_ref+0x4be/0x520 [ 210.709600][ T6652] Modules linked in: [ 210.713532][ T6652] CPU: 1 PID: 6652 Comm: syz.0.802 Not tainted syzkaller #0 [ 210.720945][ T6652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 210.731094][ T6652] RIP: 0010:ext4_xattr_inode_update_ref+0x4be/0x520 [ 210.738453][ T27] audit: type=1326 audit(1763026223.513:1312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6649 comm="syz.4.803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 210.738495][ T27] audit: type=1326 audit(1763026223.513:1313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6649 comm="syz.4.803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1ff3d8f6c9 code=0x7ffc0000 [ 210.783528][ T6652] Code: 8d 7d 40 4c 89 f8 48 c1 e8 03 42 80 3c 30 00 74 08 4c 89 ff e8 63 ef 9c ff 49 8b 37 48 c7 c7 40 91 a0 8a 89 da e8 32 e5 18 ff <0f> 0b 49 be 00 00 00 00 00 fc ff df 4c 8b 6c 24 10 4c 8b 7c 24 08 [ 210.803252][ T6652] RSP: 0018:ffffc90005f97200 EFLAGS: 00010246 [ 210.809421][ T6652] RAX: 85678f1d3ea46600 RBX: 0000000000000002 RCX: 0000000000080000 [ 210.817483][ T6652] RDX: ffffc900056ba000 RSI: 000000000007ffff RDI: 0000000000080000 [ 210.825510][ T6652] RBP: ffffc90005f972e8 R08: dffffc0000000000 R09: ffffed10171e4f34 [ 210.833636][ T6652] R10: ffffed10171e4f34 R11: 1ffff110171e4f33 R12: ffffc90005f97260 [ 210.841689][ T6652] R13: ffff888054e16700 R14: dffffc0000000000 R15: ffff888054e16740 [ 210.849798][ T6652] FS: 00007fb06d66c6c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 210.858812][ T6652] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 210.865535][ T6652] CR2: 00007f325dd8f440 CR3: 000000007b2b4000 CR4: 00000000003506e0 [ 210.873603][ T6652] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 210.881666][ T6652] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 210.889737][ T6652] Call Trace: [ 210.893068][ T6652] [ 210.896062][ T6652] ? ext4_xattr_block_csum+0x500/0x500 [ 210.901634][ T6652] ? ext4_xattr_inode_iget+0x3f0/0x600 [ 210.907291][ T6652] ext4_xattr_set_entry+0xb33/0x1e90 [ 210.912644][ T6652] ext4_xattr_ibody_set+0x250/0x690 [ 210.917981][ T6652] ext4_expand_extra_isize_ea+0x10e5/0x19b0 [ 210.923950][ T6652] __ext4_expand_extra_isize+0x301/0x3e0 [ 210.929694][ T6652] __ext4_mark_inode_dirty+0x47f/0x770 [ 210.935223][ T6652] ext4_evict_inode+0xa73/0x1100 [ 210.940290][ T6652] ? _raw_spin_unlock+0x24/0x40 [ 210.945215][ T6652] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 210.945404][ T6651] PM: hibernation: Basic memory bitmaps created [ 210.951664][ T6652] ? do_raw_spin_unlock+0x11d/0x230 [ 210.951700][ T6652] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 210.951730][ T6652] evict+0x485/0x870 [ 210.951753][ T6652] ? __lock_acquire+0x7c50/0x7c50 [ 210.951783][ T6652] ? proc_nr_inodes+0x2f0/0x2f0 [ 210.983310][ T6652] ? do_raw_spin_unlock+0x11d/0x230 [ 210.989166][ T6652] ? _raw_spin_unlock+0x24/0x40 [ 210.994070][ T6652] ? iput+0x768/0x980 [ 210.998138][ T6652] ext4_orphan_cleanup+0xbd3/0x1400 [ 211.003410][ T6652] ? ext4_orphan_del+0xb90/0xb90 [ 211.008503][ T6652] ? errseq_check_and_advance+0x62/0x120 [ 211.014250][ T6652] ext4_fill_super+0x7bdf/0x8150 [ 211.019336][ T6652] ? bdev_name+0x2c1/0x3f0 [ 211.023830][ T6652] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 211.030187][ T6652] ? snprintf+0xd7/0x120 [ 211.034540][ T6652] ? preempt_count_add+0x8d/0x190 [ 211.039668][ T6652] ? vscnprintf+0x80/0x80 [ 211.044073][ T6652] ? set_blocksize+0x1d3/0x350 [ 211.048940][ T6652] ? sb_set_blocksize+0xa5/0xe0 [ 211.053866][ T6652] get_tree_bdev+0x3f1/0x610 [ 211.058592][ T6652] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 211.064892][ T6652] vfs_get_tree+0x88/0x270 [ 211.069421][ T6652] do_new_mount+0x24a/0xa40 [ 211.070396][ T6649] PM: hibernation: Basic memory bitmaps freed [ 211.073958][ T6652] __se_sys_mount+0x2d6/0x3c0 [ 211.084901][ T6652] ? __x64_sys_mount+0xc0/0xc0 [ 211.089764][ T6652] ? lockdep_hardirqs_on+0x94/0x140 [ 211.095026][ T6652] ? __x64_sys_mount+0x1c/0xc0 [ 211.099908][ T6652] do_syscall_64+0x4c/0xa0 [ 211.104389][ T6652] ? clear_bhb_loop+0x60/0xb0 [ 211.109175][ T6652] ? clear_bhb_loop+0x60/0xb0 [ 211.113907][ T6652] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 211.119910][ T6652] RIP: 0033:0x7fb06c790e6a [ 211.124377][ T6652] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 211.144520][ T6652] RSP: 002b:00007fb06d66be68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 211.154029][ T6652] RAX: ffffffffffffffda RBX: 00007fb06d66bef0 RCX: 00007fb06c790e6a [ 211.162537][ T6652] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fb06d66beb0 [ 211.170594][ T6652] RBP: 0000200000000180 R08: 00007fb06d66bef0 R09: 0000000000800718 [ 211.178648][ T6652] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0 [ 211.186875][ T6652] R13: 00007fb06d66beb0 R14: 000000000000046f R15: 0000200000000200 [ 211.194983][ T6652] [ 211.198102][ T6652] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 211.205453][ T6652] CPU: 1 PID: 6652 Comm: syz.0.802 Not tainted syzkaller #0 [ 211.212755][ T6652] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 211.222826][ T6652] Call Trace: [ 211.226117][ T6652] [ 211.229059][ T6652] dump_stack_lvl+0x168/0x22e [ 211.233759][ T6652] ? memcpy+0x3c/0x60 [ 211.237883][ T6652] ? show_regs_print_info+0x12/0x12 [ 211.243124][ T6652] ? load_image+0x3b0/0x3b0 [ 211.247666][ T6652] panic+0x2c9/0x710 [ 211.251597][ T6652] ? bpf_jit_dump+0xd0/0xd0 [ 211.256130][ T6652] __warn+0x2f8/0x4f0 [ 211.260137][ T6652] ? ext4_xattr_inode_update_ref+0x4be/0x520 [ 211.266165][ T6652] ? ext4_xattr_inode_update_ref+0x4be/0x520 [ 211.272183][ T6652] report_bug+0x2ba/0x4f0 [ 211.276539][ T6652] ? ext4_xattr_inode_update_ref+0x4be/0x520 [ 211.282570][ T6652] handle_bug+0x3a/0x70 [ 211.286759][ T6652] exc_invalid_op+0x16/0x40 [ 211.291292][ T6652] asm_exc_invalid_op+0x16/0x20 [ 211.296196][ T6652] RIP: 0010:ext4_xattr_inode_update_ref+0x4be/0x520 [ 211.302809][ T6652] Code: 8d 7d 40 4c 89 f8 48 c1 e8 03 42 80 3c 30 00 74 08 4c 89 ff e8 63 ef 9c ff 49 8b 37 48 c7 c7 40 91 a0 8a 89 da e8 32 e5 18 ff <0f> 0b 49 be 00 00 00 00 00 fc ff df 4c 8b 6c 24 10 4c 8b 7c 24 08 [ 211.322518][ T6652] RSP: 0018:ffffc90005f97200 EFLAGS: 00010246 [ 211.328607][ T6652] RAX: 85678f1d3ea46600 RBX: 0000000000000002 RCX: 0000000000080000 [ 211.336598][ T6652] RDX: ffffc900056ba000 RSI: 000000000007ffff RDI: 0000000000080000 [ 211.344608][ T6652] RBP: ffffc90005f972e8 R08: dffffc0000000000 R09: ffffed10171e4f34 [ 211.352625][ T6652] R10: ffffed10171e4f34 R11: 1ffff110171e4f33 R12: ffffc90005f97260 [ 211.360625][ T6652] R13: ffff888054e16700 R14: dffffc0000000000 R15: ffff888054e16740 [ 211.368628][ T6652] ? ext4_xattr_block_csum+0x500/0x500 [ 211.374113][ T6652] ? ext4_xattr_inode_iget+0x3f0/0x600 [ 211.379595][ T6652] ext4_xattr_set_entry+0xb33/0x1e90 [ 211.384920][ T6652] ext4_xattr_ibody_set+0x250/0x690 [ 211.390164][ T6652] ext4_expand_extra_isize_ea+0x10e5/0x19b0 [ 211.396087][ T6652] __ext4_expand_extra_isize+0x301/0x3e0 [ 211.401744][ T6652] __ext4_mark_inode_dirty+0x47f/0x770 [ 211.407263][ T6652] ext4_evict_inode+0xa73/0x1100 [ 211.412312][ T6652] ? _raw_spin_unlock+0x24/0x40 [ 211.417191][ T6652] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 211.423138][ T6652] ? do_raw_spin_unlock+0x11d/0x230 [ 211.428380][ T6652] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 211.434335][ T6652] evict+0x485/0x870 [ 211.438335][ T6652] ? __lock_acquire+0x7c50/0x7c50 [ 211.443653][ T6652] ? proc_nr_inodes+0x2f0/0x2f0 [ 211.448526][ T6652] ? do_raw_spin_unlock+0x11d/0x230 [ 211.453757][ T6652] ? _raw_spin_unlock+0x24/0x40 [ 211.458637][ T6652] ? iput+0x768/0x980 [ 211.462638][ T6652] ext4_orphan_cleanup+0xbd3/0x1400 [ 211.467892][ T6652] ? ext4_orphan_del+0xb90/0xb90 [ 211.472863][ T6652] ? errseq_check_and_advance+0x62/0x120 [ 211.478626][ T6652] ext4_fill_super+0x7bdf/0x8150 [ 211.483778][ T6652] ? bdev_name+0x2c1/0x3f0 [ 211.488406][ T6652] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 211.494671][ T6652] ? snprintf+0xd7/0x120 [ 211.498959][ T6652] ? preempt_count_add+0x8d/0x190 [ 211.504027][ T6652] ? vscnprintf+0x80/0x80 [ 211.508401][ T6652] ? set_blocksize+0x1d3/0x350 [ 211.513188][ T6652] ? sb_set_blocksize+0xa5/0xe0 [ 211.518073][ T6652] get_tree_bdev+0x3f1/0x610 [ 211.522683][ T6652] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 211.528965][ T6652] vfs_get_tree+0x88/0x270 [ 211.533408][ T6652] do_new_mount+0x24a/0xa40 [ 211.537930][ T6652] __se_sys_mount+0x2d6/0x3c0 [ 211.542625][ T6652] ? __x64_sys_mount+0xc0/0xc0 [ 211.547407][ T6652] ? lockdep_hardirqs_on+0x94/0x140 [ 211.552628][ T6652] ? __x64_sys_mount+0x1c/0xc0 [ 211.557422][ T6652] do_syscall_64+0x4c/0xa0 [ 211.561871][ T6652] ? clear_bhb_loop+0x60/0xb0 [ 211.566564][ T6652] ? clear_bhb_loop+0x60/0xb0 [ 211.571271][ T6652] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 211.577273][ T6652] RIP: 0033:0x7fb06c790e6a [ 211.581707][ T6652] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 211.601330][ T6652] RSP: 002b:00007fb06d66be68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 211.609762][ T6652] RAX: ffffffffffffffda RBX: 00007fb06d66bef0 RCX: 00007fb06c790e6a [ 211.617772][ T6652] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fb06d66beb0 [ 211.625787][ T6652] RBP: 0000200000000180 R08: 00007fb06d66bef0 R09: 0000000000800718 [ 211.633822][ T6652] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0 [ 211.641817][ T6652] R13: 00007fb06d66beb0 R14: 000000000000046f R15: 0000200000000200 [ 211.649907][ T6652] [ 211.653190][ T6652] Kernel Offset: disabled [ 211.657563][ T6652] Rebooting in 86400 seconds..