last executing test programs: 5.29967825s ago: executing program 2 (id=1284): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32}) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r1, &(0x7f0000000200)={@void, @void, @eth={@multicast, @remote, @val={@val={0x88a8, 0x4, 0x1}, {0x8100, 0x1, 0x1, 0x3}}, {@ipv6={0x86dd, @udp={0xd, 0x6, '\x00', 0x8, 0x11, 0x0, @empty, @private2, {[], {0x4f1c, 0x4e20, 0x8}}}}}}}, 0x46) 3.9359325s ago: executing program 4 (id=1291): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000005f80)=@newtfilter={0x90, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {}, {0x8}}, [@filter_kind_options=@f_flow={{0x9}, {0x58, 0x2, [@TCA_FLOW_ACT={0x54, 0x9, 0x0, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x20000001, 0x4, 0x2}, 0x1, r4}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}, @TCA_RATE={0x5, 0x5, {0xff, 0x5}}]}, 0x90}}, 0x0) 3.900151563s ago: executing program 2 (id=1292): setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8000}, 0x8) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r0, &(0x7f0000001700)=[{{&(0x7f0000001140)={0xa, 0x4e23, 0x0, @private2}, 0x1c, &(0x7f0000001280)=[{&(0x7f00000011c0)="99", 0x1}], 0x1}}], 0x1, 0x80) shutdown(r0, 0x1) getsockopt$bt_hci(r0, 0x84, 0x7f, &(0x7f0000000080)=""/4057, 0x0) 3.792470041s ago: executing program 3 (id=1296): prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) r5 = socket(0x2, 0x5, 0x0) sendmmsg$inet_sctp(r5, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x880) sendmmsg$inet_sctp(r5, &(0x7f0000000bc0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000001c0)=[{0x0, 0x2}], 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c0000000000000002002b0388edb6556900"/51, @ANYRES32=0x0], 0x30}], 0x1, 0x0) 3.792341821s ago: executing program 1 (id=1297): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[@ANYBLOB="540100001a001307000000000000001cac141400"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac141417000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c"], 0x154}}, 0x0) 3.713771987s ago: executing program 2 (id=1298): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000072000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)=@migrate={0x27c, 0x21, 0x1, 0x0, 0x1, {{@in, @in6=@remote}}, [@migrate={0x219, 0x11, [{@in=@multicast1, @in=@local, @in=@local, @in=@broadcast, 0x3c, 0x4, 0x0, 0x3505, 0xa, 0x2}, {@in=@empty, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, @in=@multicast2, @in6=@empty, 0x6c, 0x1, 0x0, 0x3506, 0x2, 0x2}, {@in=@empty, @in=@private=0xa010100, @in6=@remote, @in6=@mcast2, 0x33, 0x2, 0x0, 0x0, 0xa, 0xa}, {@in=@local, @in6=@local, @in6=@empty, @in6=@private2, 0xff, 0x3, 0x0, 0x3503, 0x8, 0x2}, {@in=@broadcast, @in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in=@private, @in=@dev, 0x0, 0x1, 0x0, 0x3506, 0x2, 0xf}, {@in6=@mcast2, @in=@broadcast, @in6=@private2, @in6=@remote}]}, @policy_type={0xa}, @replay_esn_val={0x40, 0x17, {0x9, 0x70bd29, 0x70bd2d, 0x70bd27, 0x70bd28, 0x7f, [0x0, 0x7, 0x7, 0x5, 0x80, 0x0, 0x5, 0xfffffff7, 0x6]}}, @proto={0x5, 0x19, 0x6c}, @mark={0xc, 0x15, {0x35075d, 0x3}}]}, 0x27c}}, 0x0) 3.605231195s ago: executing program 0 (id=1299): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) syz_emit_ethernet(0x7e, &(0x7f0000000040)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x24, 0x0, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local, {[@cipso={0x86, 0x6}, @lsrr={0x83, 0x13, 0x0, [@dev, @loopback, @loopback, @multicast2]}, @cipso={0x86, 0x20, 0x0, [{0x0, 0x5, "4b6cef"}, {0x0, 0xc, "df61168c24ac88ad078c"}, {0x0, 0x9, "2189ea43a2149b"}]}, @timestamp={0x44, 0x4, 0x56}]}}}}}}}, 0x0) 2.759133027s ago: executing program 4 (id=1300): sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x10004, &(0x7f00000000c0), 0x0, 0x4c0, &(0x7f0000000540)="$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") r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1, 0xa, 0x7, 0x209, 0x40, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000180), 0x3ff, r0}, 0x38) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000080), 0x7c9, r0}, 0x38) 2.703982291s ago: executing program 1 (id=1301): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x6, 0x5, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2) r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x8002) write$binfmt_aout(r1, &(0x7f0000000380)=ANY=[@ANYBLOB="03070000b5"], 0xc8) write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="03040000b500000001008aea0000feff"], 0xc8) dup3(r1, r0, 0x0) 2.701988871s ago: executing program 3 (id=1302): r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000640)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) add_key(&(0x7f00000003c0)='ceph\x00', 0x0, &(0x7f0000000400)="010000000037a788a11d1f000000000000006923c63a4541062101a59ea9cba39a989ca8c70b3692930208", 0x2b, r0) 2.596431869s ago: executing program 0 (id=1303): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000740)='scsi_dispatch_cmd_start\x00', r2}, 0x10) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) r3 = accept$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0x0, 0x0, @dev}, &(0x7f0000000380)=0x1c) setsockopt$inet6_group_source_req(r3, 0x29, 0x2f, &(0x7f0000000600)={0x6, {{0xa, 0x4e23, 0x5, @empty}}, {{0xa, 0x4e23, 0x8, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x9}}}, 0x108) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) unshare(0x2040400) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r5}, 0x10) r6 = socket(0xa, 0x3, 0x3a) setsockopt$MRT6_ADD_MIF(r6, 0x29, 0xca, &(0x7f00000002c0)={0x1, 0x1, 0x0, 0x0, 0x1}, 0xc) setsockopt$MRT6_FLUSH(r6, 0x29, 0xd4, &(0x7f00000000c0)=0xb, 0x4) open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0) r7 = open(&(0x7f00000005c0)='./bus\x00', 0x343c01, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r1, 0x0, 0x42, &(0x7f00000001c0)={'ipvs\x00'}, &(0x7f0000000240)=0x1e) pwritev2(r7, 0x0, 0x0, 0x0, 0x0, 0x0) unshare(0x100) r8 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r8, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="0203000910000000000000000000000005000600000000000a00000000000000000000000000000000000000000000000000000000000000020001000000000000000702000000ff05000500000000000a00000000000000ff01000000000000000000000000000100000000000000000200080008"], 0x80}}, 0x0) 2.596199009s ago: executing program 2 (id=1304): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) mount(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='ext2\x00', 0x4000a, &(0x7f0000000380)='ife\x00') sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) inotify_init1(0x0) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c) sendto$inet6(r3, &(0x7f0000000040), 0x0, 0x7ddfdbdfafa51cdd, &(0x7f0000000100)={0xa, 0x4e23, 0x2, @loopback, 0xffffffff}, 0x1c) shutdown(r3, 0x1) getpeername$inet6(r3, &(0x7f0000000300)={0xa, 0x0, 0x0, @dev}, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000000000)=""/92) write$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000040)='FROZEN\x00', 0x7) 2.542851523s ago: executing program 3 (id=1305): syz_read_part_table(0x60d, &(0x7f0000002240)="$eJzs3D9olHcYB/DvJbmcUTAdnFxqHDoJRXE0Q5XkqlgIp1IIDvYfIs0UIXDSw5Q4tBkUM0jHLlK4DhonYwYnRaFzEQeLkMGlYBepHXLl7l6SOyjF0oRS/HyGe353PDzf94F3/V34XxtIuTi1Kp3y/qd/298a3TzP50xzYvJ4q9VqnU5KOZtyxsq7l5MMpX9q9icZ7plz8/udq9/+9mG5+fTUq/fOPVgc2JhZyTtJdvU2Z+SvHqXyzzZlO9wafzi6cGW2erX9pdpYW/84uf1yorZycnFp+UT52Oft3y8nj4r+7osxkoup51K+zCdDbxz19eax1Jc/386vj194Um2sfdd8fnB9b3Xw7vkjr/etXrt/KJlrR0yl87JvGv6Xi/fkL/Tkz41dn15qHD1wZ8+Nw/V7j2svBn9vdRWR5a3JBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABge9xqf1yZrV6tj194Um2sffPzTx/dfjlRWzm5uLR8YvjYs6LvUVGHinox9VxKOclMZvJFZt88crrUmz/+cHRhI/+Pncnzg+t7q82754+8nly9dv9Qp6uUqXYZ2IqN+/XnN9bmxq5PLzWOHriz58bh+r3HtReD3b6ZSj7rrJuksvWPAQAAAAAAAAAAAAAAAAAAwFtuYvL4vqkPaqeTUs7uSPLrV51b9q3KyI/p3Lzv2l/UZ5Vkd5KbO7r/BdB8eurV8LkHi78Ul+LnU8l8kl0/rJxJ3t3IudwfW96czH/pzwAAAP//gTiR5w==") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r0, 0x3, 0x1, 0x8000c62) 2.514411335s ago: executing program 1 (id=1306): munmap(&(0x7f00003fe000/0xc00000)=nil, 0xc00000) prctl$PR_SET_MM(0x23, 0x7, &(0x7f0000ffc000/0x4000)=nil) brk(0x400000ff9000) 1.62846252s ago: executing program 1 (id=1307): socket(0x28, 0x5, 0x0) unshare(0x8040600) mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}}) 1.62718981s ago: executing program 2 (id=1308): setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8000}, 0x8) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r0, &(0x7f0000001700)=[{{&(0x7f0000001140)={0xa, 0x4e23, 0x0, @private2}, 0x1c, &(0x7f0000001280)=[{&(0x7f00000011c0)="99", 0x1}], 0x1}}], 0x1, 0x80) shutdown(r0, 0x1) getsockopt$bt_hci(r0, 0x84, 0x7f, &(0x7f0000000080)=""/4057, 0x0) 1.555906046s ago: executing program 4 (id=1309): bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) pipe2$watch_queue(0x0, 0x80) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$sock_SIOCADDRT(0xffffffffffffffff, 0x890b, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000500)='hrtimer_start\x00', r1}, 0x10) timer_create(0x0, 0x0, &(0x7f0000000000)) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000500)='hrtimer_start\x00', r2}, 0x10) timer_settime(0x0, 0x0, &(0x7f0000000200)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0) 1.546658226s ago: executing program 3 (id=1310): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000005f80)=@newtfilter={0x90, 0x2c, 0xd27, 0x70bd25, 0x2, {0x0, 0x0, 0x0, r4, {0x0, 0x1}, {}, {0x8}}, [@filter_kind_options=@f_flow={{0x9}, {0x58, 0x2, [@TCA_FLOW_ACT={0x54, 0x9, 0x0, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x20000001, 0x4, 0x2}, 0x1, r4}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}}, @TCA_RATE={0x5, 0x5, {0xff, 0x5}}]}, 0x90}}, 0x0) 1.513526358s ago: executing program 1 (id=1311): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = socket(0x10, 0x803, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r1, 0x0, 0x20040054) 1.512530079s ago: executing program 2 (id=1312): bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd7, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000640)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000c00)=ANY=[@ANYRES8, @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00'}, 0x10) sync() bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000001c0)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32, @ANYBLOB="0000000000000000b70200d0d8e311cc8813e8a4c419ef0003"], &(0x7f0000000200)='GPL\x00', 0x200000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6826b8d1d7fb627b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x6}, 0x18) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000000080)=@ipv6_newroute={0x24, 0x18, 0x10b, 0x0, 0x0, {}, [@RTA_METRICS={0x8, 0x8, 0x0, 0x1, "0400b363"}]}, 0x24}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10) ioctl$USBDEVFS_ALLOC_STREAMS(0xffffffffffffffff, 0x8008551c, &(0x7f0000000300)=ANY=[@ANYBLOB="fe2f00000100000081c6442138efae03d4a7b5c2619b459e7f7f040dfe2c3576d68515602bf2541c30d22b5b0cad2f1643f1ed33828bf2bc8ffa9a2c06420318e64a217889af8d1c32bc6ac3c8cff4a15040b0a717140d875eb6b098b948"]) r5 = inotify_add_watch(0xffffffffffffffff, 0x0, 0x81000000) inotify_rm_watch(0xffffffffffffffff, r5) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) r6 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00') pread64(r6, &(0x7f0000001240)=""/102400, 0x200000, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) r7 = getegid() fchownat(0xffffffffffffffff, 0x0, 0x0, r7, 0x800) syz_clone(0x10eb22b000, 0x0, 0x0, 0x0, 0x0, 0x0) 1.408585866s ago: executing program 0 (id=1313): r0 = socket$kcm(0x2, 0x200000000000001, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @dev}, 0x10, 0x0}, 0x30004081) 1.408395826s ago: executing program 4 (id=1314): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000001c0)='kfree\x00', r1}, 0x10) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, 0xffffffffffffffff, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c000000100003040400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001c0012800b0001006970766c616e00000c000280060001000200000008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r4], 0x4c}, 0x1, 0xba01}, 0x810) 1.263186107s ago: executing program 0 (id=1315): r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_vs\x00') fsetxattr$system_posix_acl(r0, &(0x7f0000000000)='system.posix_acl_default\x00', 0x0, 0x0, 0x2) 1.228330439s ago: executing program 1 (id=1316): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000002c0)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000100)={0x3, 0x40, 0xfa00, {{0x2, 0x4e21, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0xa, 0x0, 0x0, @mcast2}, r1}}, 0x48) bpf$MAP_CREATE(0x0, 0x0, 0x50) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r4}, 0x10) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r3, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054) r5 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffdff}, {}, {}, {0x85, 0x0, 0x0, 0xc7}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xa0) write$RDMA_USER_CM_CMD_CREATE_ID(r5, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0)={0xffffffffffffffff}, 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r5, &(0x7f0000000380)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000580)=0x1, r6, 0x0, 0x2, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r5, &(0x7f0000000100)={0x3, 0x40, 0xfa3f, {{0xa, 0x4e21, 0x0, @empty, 0xfffffffe}, {0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x4}, r6, 0x3}}, 0x48) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7ffffdbe}]}) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f00000004c0)='./file0\x00', 0x10, &(0x7f0000000b40)=ANY=[@ANYBLOB="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", @ANYRESOCT], 0x1, 0x11dc, &(0x7f0000002840)="$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") r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141b82, 0x0) r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r8, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r9 = socket(0x10, 0x803, 0x0) r10 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r10, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r9, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r11, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r9, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000019c0)=@newtfilter={0x80, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r11, {0xc, 0x4}, {}, {0x3, 0xf}}, [@filter_kind_options=@f_flow={{0x9}, {0x50, 0x2, [@TCA_FLOW_EMATCHES={0x4c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x40, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_META={0x18, 0x2, 0x0, 0x0, {{0xfffb, 0x4, 0x2}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x2}, {0x0, 0x7, 0x2}}}]}}, @TCF_EM_NBYTE={0x10, 0x3, 0x0, 0x0, {{0x1, 0x2, 0x1000}, {0x397f}}}]}]}]}}]}, 0x80}}, 0x20040054) write$cgroup_int(r7, &(0x7f0000000000)=0x700, 0x12) write$RDMA_USER_CM_CMD_MIGRATE_ID(r7, &(0x7f0000000040)={0x12, 0x10, 0xfa00, {&(0x7f0000000000), r1, r0}}, 0x18) 1.123013807s ago: executing program 0 (id=1317): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000040)=0x213a, 0x4) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000100)=0x4a4b, 0x4) 1.122039117s ago: executing program 3 (id=1318): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18) pidfd_send_signal(0xffffffffffffffff, 0x2, 0x0, 0x0) 1.004594006s ago: executing program 4 (id=1319): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) mount(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000340)='ext2\x00', 0x4000a, &(0x7f0000000380)='ife\x00') sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) inotify_init1(0x0) r3 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty, 0x4}], 0x1c) sendto$inet6(r3, &(0x7f0000000040)='l', 0x1, 0x7ddfdbdfafa51cdd, 0x0, 0x0) shutdown(r3, 0x1) getpeername$inet6(r3, &(0x7f0000000300)={0xa, 0x0, 0x0, @dev}, 0x0) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000000000)=""/92) write$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000040)='FROZEN\x00', 0x7) 1.004404456s ago: executing program 0 (id=1320): sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x10004, &(0x7f00000000c0), 0x0, 0x4c0, &(0x7f0000000540)="$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") r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1, 0xa, 0x7, 0x209, 0x40, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000180), 0x3ff, r0}, 0x38) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000080), 0x7c9, r0}, 0x38) 888.578324ms ago: executing program 3 (id=1321): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000540)={r1, 0x0, 0xe40, 0xfffffe6d, &(0x7f0000000100)="5c71f91b05c413550230b4c817a628", 0x0, 0x1, 0x0, 0x302, 0x0, &(0x7f0000000180)='\x00', 0x0}, 0x48) 0s ago: executing program 4 (id=1322): setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8000}, 0x8) syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r0, &(0x7f0000001700)=[{{&(0x7f0000001140)={0xa, 0x4e23, 0x0, @private2}, 0x1c, &(0x7f0000001280)=[{&(0x7f00000011c0)="99", 0x1}], 0x1}}], 0x1, 0x80) shutdown(r0, 0x1) getsockopt$bt_hci(r0, 0x84, 0x7f, &(0x7f0000000080)=""/4057, 0x0) kernel console output (not intermixed with test programs): e space tree [ 57.712774][ T4755] BTRFS info (device loop2): enabling ssd optimizations [ 57.722639][ T4304] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 57.950195][ T4305] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 58.385711][ T4817] netlink: 12 bytes leftover after parsing attributes in process `syz.4.68'. [ 59.207263][ T4826] loop3: detected capacity change from 0 to 1024 [ 59.293197][ T9] hfsplus: b-tree write err: -5, ino 4 [ 59.293738][ T4827] netlink: 12 bytes leftover after parsing attributes in process `syz.2.70'. [ 59.664473][ T4838] netlink: 'syz.1.76': attribute type 1 has an invalid length. [ 59.769386][ T4838] device veth3 entered promiscuous mode [ 60.619148][ T4843] loop1: detected capacity change from 0 to 32768 [ 60.659492][ T4843] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.78 (4843) [ 60.671572][ T4843] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 60.680347][ T4843] BTRFS info (device loop1): using crc32c (crc32c-generic) checksum algorithm [ 60.682920][ T4843] BTRFS info (device loop1): metadata ratio 2 [ 60.685037][ T4843] BTRFS info (device loop1): allowing degraded mounts [ 60.686791][ T4843] BTRFS info (device loop1): force zlib compression, level 3 [ 60.688694][ T4843] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 60.690945][ T4843] BTRFS info (device loop1): use zstd compression, level 3 [ 60.692823][ T4843] BTRFS info (device loop1): force clearing of disk cache [ 60.731432][ T4843] BTRFS info (device loop1): max_inline at 0 [ 60.732956][ T4843] BTRFS info (device loop1): using free space tree [ 61.122270][ T4843] BTRFS info (device loop1): enabling ssd optimizations [ 61.171889][ T4843] BTRFS info (device loop1): rebuilding free space tree [ 61.193396][ T4871] loop4: detected capacity change from 0 to 32768 [ 61.196955][ T4871] BTRFS warning: duplicate device /dev/loop4 devid 1 generation 8 scanned by syz.4.81 (4871) [ 61.368933][ T4299] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 61.472884][ T4850] loop3: detected capacity change from 0 to 32768 [ 61.487562][ T4850] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.79 (4850) [ 61.522557][ T4850] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 61.535131][ T4850] BTRFS info (device loop3): using sha256 (sha256-ce) checksum algorithm [ 61.539840][ T4850] BTRFS info (device loop3): using free space tree [ 61.675684][ T4897] loop1: detected capacity change from 0 to 1024 [ 61.712187][ T4518] hfsplus: b-tree write err: -5, ino 4 [ 61.733630][ T4850] BTRFS info (device loop3): enabling ssd optimizations [ 61.956750][ T4307] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 62.276650][ T4876] loop2: detected capacity change from 0 to 32768 [ 62.334938][ T4876] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 62.506879][ T4305] ocfs2: Unmounting device (7,2) on (node local) [ 63.001715][ T4918] netlink: 12 bytes leftover after parsing attributes in process `syz.0.90'. [ 64.052831][ T4928] netlink: 12 bytes leftover after parsing attributes in process `syz.3.93'. [ 64.280039][ T4922] loop2: detected capacity change from 0 to 32768 [ 64.317947][ T4922] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop2 scanned by syz.2.91 (4922) [ 64.344105][ T4922] BTRFS info (device loop2): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 64.346812][ T4922] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm [ 64.349061][ T4922] BTRFS info (device loop2): using free space tree [ 64.411767][ T4924] loop4: detected capacity change from 0 to 32768 [ 64.464663][ T4924] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.92 (4924) [ 64.483128][ T4924] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 64.483506][ T4936] loop1: detected capacity change from 0 to 1024 [ 64.513625][ T4924] BTRFS info (device loop4): using crc32c (crc32c-generic) checksum algorithm [ 64.516432][ T4924] BTRFS info (device loop4): metadata ratio 2 [ 64.518017][ T4924] BTRFS info (device loop4): allowing degraded mounts [ 64.520092][ T4924] BTRFS info (device loop4): force zlib compression, level 3 [ 64.522424][ T4924] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 64.527262][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 64.529046][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.529727][ T4924] BTRFS info (device loop4): use zstd compression, level 3 [ 64.532941][ T4924] BTRFS info (device loop4): force clearing of disk cache [ 64.535143][ T4924] BTRFS info (device loop4): max_inline at 0 [ 64.536668][ T4924] BTRFS info (device loop4): using free space tree [ 64.548558][ T4936] hfsplus: bad catalog entry type [ 64.649735][ T4518] hfsplus: b-tree write err: -5, ino 4 [ 64.713979][ T4922] BTRFS info (device loop2): enabling ssd optimizations [ 64.808625][ T4924] BTRFS info (device loop4): enabling ssd optimizations [ 64.811064][ T4924] BTRFS info (device loop4): rebuilding free space tree [ 64.909619][ T4305] BTRFS info (device loop2): last unmount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 65.069001][ T4304] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 65.301462][ T4968] loop1: detected capacity change from 0 to 32768 [ 65.303667][ T4968] XFS: ikeep mount option is deprecated. [ 65.709919][ T4968] XFS (loop1): Mounting V5 Filesystem [ 65.894977][ T4968] XFS (loop1): Ending clean mount [ 65.897429][ T4968] XFS (loop1): Quotacheck needed: Please wait. [ 65.926501][ T4977] loop0: detected capacity change from 0 to 32768 [ 65.928106][ T4968] XFS (loop1): Quotacheck: Done. [ 65.988294][ T4977] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 66.128120][ T4306] ocfs2: Unmounting device (7,0) on (node local) [ 67.001336][ T5011] loop3: detected capacity change from 0 to 1024 [ 67.137738][ T5011] hfsplus: bad catalog entry type [ 67.201309][ T4299] XFS (loop1): Unmounting Filesystem [ 67.213604][ T1332] hfsplus: b-tree write err: -5, ino 4 [ 67.270608][ T5014] netlink: 12 bytes leftover after parsing attributes in process `syz.2.107'. [ 67.902499][ T5018] loop4: detected capacity change from 0 to 32768 [ 67.907347][ T5016] loop3: detected capacity change from 0 to 32768 [ 67.910094][ T5016] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.108 (5016) [ 67.928977][ T5018] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop4 scanned by syz.4.109 (5018) [ 67.930182][ T5016] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 67.947302][ T5016] BTRFS info (device loop3): using crc32c (crc32c-generic) checksum algorithm [ 67.951897][ T5016] BTRFS info (device loop3): max_inline at 0 [ 67.952878][ T5018] BTRFS info (device loop4): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 67.956149][ T5016] BTRFS info (device loop3): enabling disk space caching [ 67.958281][ T5016] BTRFS info (device loop3): turning off barriers [ 67.959920][ T5016] BTRFS info (device loop3): turning on flush-on-commit [ 67.961815][ T5016] BTRFS info (device loop3): doing ref verification [ 67.965660][ T5018] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 67.968061][ T5018] BTRFS info (device loop4): using free space tree [ 67.978064][ T5016] BTRFS info (device loop3): force clearing of disk cache [ 67.979939][ T5016] BTRFS info (device loop3): enabling ssd optimizations [ 67.992872][ T5016] BTRFS info (device loop3): max_inline at 4096 [ 68.022829][ T5016] BTRFS info (device loop3): disk space caching is enabled [ 68.051736][ T5020] loop0: detected capacity change from 0 to 32768 [ 68.071904][ T5020] BTRFS warning: duplicate device /dev/loop0 devid 1 generation 8 scanned by syz.0.110 (5020) [ 68.134457][ T4291] I/O error, dev loop0, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 68.220040][ T5033] loop1: detected capacity change from 0 to 4096 [ 68.244290][ T5018] BTRFS info (device loop4): enabling ssd optimizations [ 68.389424][ T4304] BTRFS info (device loop4): last unmount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 68.424424][ T5016] BTRFS info (device loop3): rebuilding free space tree [ 68.464213][ T5016] BTRFS info (device loop3): disabling free space tree [ 68.466331][ T5016] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 68.468903][ T5016] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 68.629583][ T5069] loop0: detected capacity change from 0 to 128 [ 68.650538][ T5069] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 68.746726][ T4306] sysv_free_block: flc_count > flc_size [ 68.748435][ T4306] sysv_free_block: flc_count > flc_size [ 68.749868][ T4306] sysv_free_block: flc_count > flc_size [ 68.751224][ T4306] sysv_free_block: flc_count > flc_size [ 68.752536][ T4306] sysv_free_block: flc_count > flc_size [ 68.769494][ T4306] sysv_free_block: flc_count > flc_size [ 68.770810][ T4306] sysv_free_block: flc_count > flc_size [ 68.772054][ T4306] sysv_free_block: flc_count > flc_size [ 68.773386][ T4306] sysv_free_block: flc_count > flc_size [ 68.781321][ T4306] sysv_free_block: flc_count > flc_size [ 68.788721][ T4307] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 68.804198][ T4306] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 69.000567][ T4393] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 12 /dev/loop3 scanned by udevd (4393) [ 69.001239][ T5078] loop0: detected capacity change from 0 to 1024 [ 69.189477][ T5076] loop1: detected capacity change from 0 to 32768 [ 69.194370][ T5084] netlink: 12 bytes leftover after parsing attributes in process `syz.4.116'. [ 69.256267][ T5076] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 12 [ 69.758522][ T24] cfg80211: failed to load regulatory.db [ 69.776680][ T5078] hfsplus: bad catalog entry type [ 69.901659][ T4352] hfsplus: b-tree write err: -5, ino 4 [ 70.140331][ T5089] device veth3 entered promiscuous mode [ 70.311643][ T5102] loop1: detected capacity change from 0 to 1024 [ 70.324431][ T5101] loop2: detected capacity change from 0 to 1024 [ 70.338353][ T5102] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only. [ 70.376105][ T5101] hfsplus: bad catalog entry type [ 70.497426][ T4352] hfsplus: b-tree write err: -5, ino 4 [ 70.608795][ T27] audit: type=1326 audit(70.560:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5105 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 70.628053][ T27] audit: type=1326 audit(70.580:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5105 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb3357f94 code=0x7ffc0000 [ 70.678760][ T27] audit: type=1326 audit(70.630:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5105 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 70.695927][ T27] audit: type=1326 audit(70.630:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5105 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 70.736947][ T27] audit: type=1326 audit(70.640:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5105 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 70.742179][ T27] audit: type=1326 audit(70.640:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5105 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 70.775994][ T27] audit: type=1326 audit(70.640:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5105 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb3357f94 code=0x7ffc0000 [ 70.795964][ T27] audit: type=1326 audit(70.640:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5105 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 70.801181][ T27] audit: type=1326 audit(70.640:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5105 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 70.838037][ T27] audit: type=1326 audit(70.640:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5105 comm="syz.2.129" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 70.856436][ T5109] loop1: detected capacity change from 0 to 4096 [ 70.890940][ T5096] loop3: detected capacity change from 0 to 32768 [ 70.898063][ T5096] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop3 scanned by syz.3.124 (5096) [ 70.917035][ T5096] BTRFS info (device loop3): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 70.919589][ T5096] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 70.953545][ T5096] BTRFS info (device loop3): using free space tree [ 71.017213][ T5100] loop0: detected capacity change from 0 to 32768 [ 71.024136][ T5100] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.125 (5100) [ 71.065564][ T5100] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 71.068205][ T5100] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm [ 71.070435][ T5100] BTRFS info (device loop0): metadata ratio 2 [ 71.071907][ T5100] BTRFS info (device loop0): allowing degraded mounts [ 71.073544][ T5100] BTRFS info (device loop0): force zlib compression, level 3 [ 71.096560][ T5124] loop2: detected capacity change from 0 to 64 [ 71.124374][ T5100] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 71.126832][ T5100] BTRFS info (device loop0): use zstd compression, level 3 [ 71.128641][ T5100] BTRFS info (device loop0): force clearing of disk cache [ 71.130401][ T5100] BTRFS info (device loop0): max_inline at 0 [ 71.158526][ T5100] BTRFS info (device loop0): using free space tree [ 71.223940][ T5096] BTRFS info (device loop3): enabling ssd optimizations [ 71.394710][ T4307] BTRFS info (device loop3): last unmount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 71.571263][ T5100] BTRFS info (device loop0): enabling ssd optimizations [ 71.574235][ T5100] BTRFS info (device loop0): rebuilding free space tree [ 71.717273][ T5162] loop4: detected capacity change from 0 to 128 [ 71.744771][ T5159] device veth5 entered promiscuous mode [ 71.755434][ T4306] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 71.779950][ T5162] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 71.984953][ T4304] EXT4-fs (loop4): unmounting filesystem. [ 72.791206][ T5192] netlink: 12 bytes leftover after parsing attributes in process `syz.4.147'. [ 73.275023][ T5202] device veth7 entered promiscuous mode [ 73.294243][ T5171] loop3: detected capacity change from 0 to 65536 [ 73.375133][ T5171] XFS (loop3): Mounting V5 Filesystem [ 73.473089][ T5196] loop0: detected capacity change from 0 to 32768 [ 73.501302][ T5171] XFS (loop3): Ending clean mount [ 73.510718][ T5216] loop2: detected capacity change from 0 to 128 [ 73.520003][ T5196] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.150 (5196) [ 73.541670][ T5196] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 73.550493][ T5196] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm [ 73.552781][ T5196] BTRFS info (device loop0): metadata ratio 2 [ 73.561007][ T5216] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 73.568675][ T4307] XFS (loop3): Unmounting Filesystem [ 73.619142][ T5196] BTRFS info (device loop0): allowing degraded mounts [ 73.620978][ T5196] BTRFS info (device loop0): force zlib compression, level 3 [ 73.622784][ T5196] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 73.651083][ T5196] BTRFS info (device loop0): use zstd compression, level 3 [ 73.652972][ T5196] BTRFS info (device loop0): force clearing of disk cache [ 73.661233][ T5196] BTRFS info (device loop0): max_inline at 0 [ 73.662880][ T5196] BTRFS info (device loop0): using free space tree [ 73.711247][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 73.964609][ T5241] netlink: 'syz.1.161': attribute type 13 has an invalid length. [ 74.009282][ T5196] BTRFS info (device loop0): enabling ssd optimizations [ 74.011839][ T5196] BTRFS info (device loop0): rebuilding free space tree [ 74.076063][ T5241] gretap0: refused to change device tx_queue_len [ 74.078138][ T5241] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 74.223921][ T4306] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 74.293364][ T5255] loop3: detected capacity change from 0 to 1024 [ 74.402077][ T289] hfsplus: b-tree write err: -5, ino 4 [ 74.450676][ T5260] device veth3 entered promiscuous mode [ 75.373000][ T5244] loop2: detected capacity change from 0 to 32768 [ 75.428899][ T5244] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 75.597507][ T4305] ocfs2: Unmounting device (7,2) on (node local) [ 76.060820][ T5275] loop3: detected capacity change from 0 to 32768 [ 76.072761][ T5275] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop3 scanned by syz.3.172 (5275) [ 76.087464][ T5275] BTRFS info (device loop3): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 76.090401][ T5275] BTRFS info (device loop3): using sha256 (sha256-ce) checksum algorithm [ 76.094214][ T5275] BTRFS info (device loop3): using free space tree [ 76.160560][ T5275] BTRFS info (device loop3): enabling ssd optimizations [ 76.175096][ T5257] loop1: detected capacity change from 0 to 65536 [ 76.217817][ T5308] loop2: detected capacity change from 0 to 1024 [ 76.232522][ T5257] XFS (loop1): Mounting V5 Filesystem [ 76.242265][ T5283] loop4: detected capacity change from 0 to 32768 [ 76.252654][ T5283] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.175 (5283) [ 76.278490][ T5283] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 76.281454][ T5257] XFS (loop1): Ending clean mount [ 76.298466][ T5283] BTRFS info (device loop4): using crc32c (crc32c-generic) checksum algorithm [ 76.308758][ T5283] BTRFS info (device loop4): metadata ratio 2 [ 76.318342][ T5283] BTRFS info (device loop4): allowing degraded mounts [ 76.328119][ T5283] BTRFS info (device loop4): force zlib compression, level 3 [ 76.337183][ T5283] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 76.339705][ T5283] BTRFS info (device loop4): use zstd compression, level 3 [ 76.341567][ T5283] BTRFS info (device loop4): force clearing of disk cache [ 76.343349][ T5283] BTRFS info (device loop4): max_inline at 0 [ 76.348988][ T1332] hfsplus: b-tree write err: -5, ino 4 [ 76.372630][ T4299] XFS (loop1): Unmounting Filesystem [ 76.381363][ T5283] BTRFS info (device loop4): using free space tree [ 76.619503][ T4307] BTRFS info (device loop3): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 77.876736][ T5341] netlink: 12 bytes leftover after parsing attributes in process `syz.2.179'. [ 78.014793][ T5283] BTRFS info (device loop4): enabling ssd optimizations [ 78.017341][ T5283] BTRFS info (device loop4): rebuilding free space tree [ 78.138188][ T4304] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 78.169237][ T5361] device batadv_slave_1 entered promiscuous mode [ 78.222655][ T5361] device batadv_slave_1 left promiscuous mode [ 78.452450][ T5367] loop0: detected capacity change from 0 to 164 [ 78.661414][ T5378] loop0: detected capacity change from 0 to 1024 [ 78.737473][ T5360] loop3: detected capacity change from 0 to 32768 [ 78.762124][ T5339] hfsplus: b-tree write err: -5, ino 4 [ 78.825166][ T5360] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 79.804480][ T4307] ocfs2: Unmounting device (7,3) on (node local) [ 80.142506][ T5396] loop3: detected capacity change from 0 to 8192 [ 80.161991][ T5396] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 80.171111][ T5399] loop0: detected capacity change from 0 to 1024 [ 80.203134][ T5399] EXT4-fs: Ignoring removed orlov option [ 80.248363][ T5383] loop4: detected capacity change from 0 to 32768 [ 80.284210][ T5383] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop4 scanned by syz.4.191 (5383) [ 80.288181][ T5399] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 80.343726][ T5383] BTRFS info (device loop4): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 80.360175][ T5383] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 80.362367][ T5383] BTRFS info (device loop4): using free space tree [ 80.402842][ T5406] netlink: 28 bytes leftover after parsing attributes in process `syz.3.197'. [ 80.412094][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 80.639075][ T5380] loop1: detected capacity change from 0 to 65536 [ 80.667788][ T5383] BTRFS info (device loop4): enabling ssd optimizations [ 80.677525][ T5380] XFS (loop1): Mounting V5 Filesystem [ 80.806422][ T5380] XFS (loop1): Ending clean mount [ 80.815247][ T5445] syz.0.201 uses obsolete (PF_INET,SOCK_PACKET) [ 80.840882][ T4811] XFS (loop1): Metadata CRC error detected at xfs_allocbt_read_verify+0x50/0x108, xfs_cntbt block 0x6 [ 80.854838][ T4811] XFS (loop1): Unmount and run xfs_repair [ 80.856318][ T4811] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 80.858164][ T4811] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff AB3C............ [ 80.860326][ T4811] 00000010: 00 00 00 00 00 00 00 06 00 00 00 01 00 00 00 10 ................ [ 80.879591][ T4811] 00000020: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3 .sH./.A..&.:g... [ 80.881819][ T4811] 00000030: 00 00 00 00 b2 4a d0 a1 00 00 00 0d 00 00 00 03 .....J.......... [ 80.889258][ T4811] 00000040: 00 00 00 39 00 00 3f c7 00 00 00 00 00 00 00 00 ...9..?......... [ 80.895973][ T4811] 00000050: 00 00 00 00 00 00 00 00 00 00 00 3f 00 00 00 00 ...........?.... [ 80.898083][ T4811] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 80.906936][ T5448] loop3: detected capacity change from 0 to 1024 [ 80.912573][ T4811] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 80.922757][ T5380] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1f4/0x2f8" at daddr 0x6 len 2 error 74 [ 80.928657][ T5380] XFS (loop1): Corruption of in-memory data (0x8) detected at xfs_defer_finish_noroll+0x1b20/0x24c0 (fs/xfs/libxfs/xfs_defer.c:580). Shutting down filesystem. [ 80.964073][ T5380] XFS (loop1): Please unmount the filesystem and rectify the problem(s) [ 80.967150][ T4304] BTRFS info (device loop4): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 81.041816][ T4299] XFS (loop1): Unmounting Filesystem [ 81.077943][ T5347] hfsplus: b-tree write err: -5, ino 4 [ 81.444610][ T5458] loop4: detected capacity change from 0 to 512 [ 81.482519][ T5458] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 81.551098][ T5458] EXT4-fs (loop4): orphan cleanup on readonly fs [ 81.597538][ T5458] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.204: bg 0: block 248: padding at end of block bitmap is not set [ 81.614193][ T5458] __quota_error: 23 callbacks suppressed [ 81.614237][ T5458] Quota error (device loop4): write_blk: dquota write failed [ 81.617973][ T5458] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 81.620619][ T5458] EXT4-fs error (device loop4): ext4_acquire_dquot:6795: comm syz.4.204: Failed to acquire dquot type 1 [ 81.677434][ T5458] EXT4-fs (loop4): 1 truncate cleaned up [ 82.463791][ C0] sched: RT throttling activated [ 82.467932][ T5458] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 83.048323][ T5455] device veth3 entered promiscuous mode [ 83.071275][ T5466] loop0: detected capacity change from 0 to 512 [ 83.103129][ T5466] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 83.300867][ T5470] netlink: 24 bytes leftover after parsing attributes in process `syz.2.209'. [ 83.387692][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 83.949316][ T4304] EXT4-fs (loop4): unmounting filesystem. [ 84.038985][ T5485] netlink: 12 bytes leftover after parsing attributes in process `syz.2.213'. [ 84.510174][ T5489] loop4: detected capacity change from 0 to 32768 [ 84.530040][ T5489] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop4 scanned by syz.4.214 (5489) [ 84.551129][ T5489] BTRFS info (device loop4): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 84.561880][ T5489] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 84.583275][ T5489] BTRFS info (device loop4): using free space tree [ 84.603267][ T5499] loop0: detected capacity change from 0 to 1024 [ 84.754425][ T5464] hfsplus: b-tree write err: -5, ino 4 [ 84.856204][ T5489] BTRFS info (device loop4): enabling ssd optimizations [ 85.167011][ T4304] BTRFS info (device loop4): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 85.329702][ T5524] netlink: 12 bytes leftover after parsing attributes in process `syz.3.216'. [ 85.597882][ T5526] netlink: 'syz.4.221': attribute type 1 has an invalid length. [ 85.709150][ T5526] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link [ 85.725643][ T5460] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 85.739880][ T5526] 8021q: adding VLAN 0 to HW filter on device bond1 [ 85.742178][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 85.843193][ T5522] loop0: detected capacity change from 0 to 32768 [ 85.917753][ T5460] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 86.022269][ T5522] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 86.157111][ T4306] ocfs2: Unmounting device (7,0) on (node local) [ 86.538590][ T5547] loop4: detected capacity change from 0 to 1024 [ 86.596320][ T27] audit: type=1326 audit(86.550:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5548 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 86.607669][ T27] audit: type=1326 audit(86.560:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5548 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=180 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 86.613190][ T27] audit: type=1326 audit(86.560:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5548 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 86.619956][ T5463] hfsplus: b-tree write err: -5, ino 4 [ 86.664440][ T27] audit: type=1326 audit(86.560:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5548 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 86.690021][ T27] audit: type=1326 audit(86.560:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5548 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 86.714426][ T27] audit: type=1326 audit(86.560:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5548 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 86.719757][ T27] audit: type=1326 audit(86.560:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5548 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 86.747621][ T27] audit: type=1326 audit(86.560:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5548 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 86.764440][ T27] audit: type=1326 audit(86.560:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5548 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 86.895247][ T5559] loop0: detected capacity change from 0 to 2048 [ 86.939893][ T5559] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 87.166078][ T5570] netlink: 4 bytes leftover after parsing attributes in process `syz.2.238'. [ 87.384877][ T5577] netlink: 12 bytes leftover after parsing attributes in process `syz.1.232'. [ 87.494463][ T27] audit: type=1326 audit(87.440:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.241" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 87.531926][ T27] audit: type=1326 audit(87.480:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.241" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 87.553447][ T27] audit: type=1326 audit(87.490:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.241" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 87.614376][ T27] audit: type=1326 audit(87.490:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5578 comm="syz.2.241" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 87.925809][ T5589] loop1: detected capacity change from 0 to 164 [ 87.937359][ T5589] Unable to read rock-ridge attributes [ 88.192632][ T5595] fuse: Bad value for 'fd' [ 88.498852][ T5606] netlink: 4 bytes leftover after parsing attributes in process `syz.2.252'. [ 88.527417][ T5607] netlink: 12 bytes leftover after parsing attributes in process `syz.0.243'. [ 89.133153][ T5623] fuse: Bad value for 'fd' [ 89.273395][ T5628] netlink: 12 bytes leftover after parsing attributes in process `syz.1.254'. [ 89.882129][ T5639] netlink: 4 bytes leftover after parsing attributes in process `syz.4.266'. [ 89.893658][ T5639] netlink: 4 bytes leftover after parsing attributes in process `syz.4.266'. [ 90.002212][ T5643] netlink: 'syz.2.268': attribute type 1 has an invalid length. [ 90.039183][ T5643] 8021q: adding VLAN 0 to HW filter on device bond1 [ 90.158574][ T5650] fuse: Bad value for 'fd' [ 90.439903][ T5659] loop1: detected capacity change from 0 to 128 [ 90.510529][ T5659] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 90.646353][ T4299] EXT4-fs (loop1): unmounting filesystem. [ 90.888809][ T5676] netlink: 12 bytes leftover after parsing attributes in process `syz.0.273'. [ 91.003418][ T5678] rdma_op 00000000e8b82589 conn xmit_rdma 0000000000000000 [ 91.313419][ T5684] netlink: 'syz.3.282': attribute type 1 has an invalid length. [ 91.357439][ T5684] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link [ 91.387818][ T5684] 8021q: adding VLAN 0 to HW filter on device bond1 [ 91.395572][ T5464] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 91.457649][ T5684] device veth3 entered promiscuous mode [ 91.472584][ T5684] bond1: (slave veth3): Enslaving as a backup interface with a down link [ 91.491587][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 91.505064][ T4352] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 91.726414][ T5696] loop3: detected capacity change from 0 to 128 [ 91.798126][ T5696] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 91.890976][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 92.045336][ T5702] netlink: 12 bytes leftover after parsing attributes in process `syz.1.283'. [ 92.759943][ T5714] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22 [ 92.762081][ T5714] netdevsim netdevsim4: Direct firmware load for . failed with error -22 [ 92.789480][ T5714] netdevsim netdevsim4: Falling back to sysfs fallback for: . [ 92.926174][ T5722] IPVS: stopping master sync thread 5724 ... [ 92.984194][ T5729] loop2: detected capacity change from 0 to 128 [ 93.017528][ T5729] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 93.234405][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 93.340526][ T5741] netlink: 12 bytes leftover after parsing attributes in process `syz.1.299'. [ 94.073976][ T5748] netlink: 12 bytes leftover after parsing attributes in process `syz.3.304'. [ 94.809565][ T5771] loop4: detected capacity change from 0 to 128 [ 94.899582][ T5771] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 95.049261][ T27] kauditd_printk_skb: 58 callbacks suppressed [ 95.049274][ T27] audit: type=1326 audit(95.000:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5777 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 95.063670][ T27] audit: type=1326 audit(95.010:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5777 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 95.064342][ T4304] EXT4-fs (loop4): unmounting filesystem. [ 95.100016][ T5778] loop2: detected capacity change from 0 to 164 [ 95.102154][ T27] audit: type=1326 audit(95.010:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5777 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=104 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 95.112068][ T27] audit: type=1326 audit(95.010:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5777 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 95.130906][ T27] audit: type=1326 audit(95.010:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5777 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 95.176447][ T27] audit: type=1326 audit(95.010:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5777 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffffb3359a68 code=0x7ffc0000 [ 95.181753][ T27] audit: type=1326 audit(95.010:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5777 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffffb3359a9c code=0x7ffc0000 [ 95.219141][ T27] audit: type=1326 audit(95.010:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5777 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffffb3358130 code=0x7ffc0000 [ 95.230819][ T27] audit: type=1326 audit(95.010:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5777 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffffb3359b0c code=0x7ffc0000 [ 95.272217][ T27] audit: type=1326 audit(95.010:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5777 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb3357f94 code=0x7ffc0000 [ 95.768035][ T5792] netlink: 'syz.1.321': attribute type 1 has an invalid length. [ 95.823969][ T5795] IPv6: Can't replace route, no match found [ 95.862049][ T5792] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link [ 95.903016][ T5339] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 95.933353][ T5792] 8021q: adding VLAN 0 to HW filter on device bond1 [ 95.936725][ T5335] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 96.034912][ T5339] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond [ 96.048982][ T5792] device veth5 entered promiscuous mode [ 96.052988][ T5792] bond1: (slave veth5): Enslaving as a backup interface with a down link [ 96.067253][ T5804] netlink: 12 bytes leftover after parsing attributes in process `syz.4.316'. [ 96.212017][ T5810] loop1: detected capacity change from 0 to 128 [ 96.275243][ T5810] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 96.383242][ T4299] EXT4-fs (loop1): unmounting filesystem. [ 96.909272][ T5821] loop1: detected capacity change from 0 to 128 [ 97.300807][ T5833] netlink: 3 bytes leftover after parsing attributes in process `syz.3.335'. [ 97.303043][ T5833] 0ªX¹¦À: renamed from caif0 [ 97.394114][ T5833] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 97.586542][ T5842] loop1: detected capacity change from 0 to 128 [ 97.778223][ T5845] device veth0_to_bond entered promiscuous mode [ 98.481834][ T5842] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 98.569688][ T5845] netlink: 4 bytes leftover after parsing attributes in process `syz.4.340'. [ 98.631078][ T4299] EXT4-fs (loop1): unmounting filesystem. [ 98.678623][ T5845] device veth0_to_bond left promiscuous mode [ 98.826960][ T5845] bond0: (slave bond_slave_0): Releasing backup interface [ 98.934971][ T5856] netlink: 12 bytes leftover after parsing attributes in process `syz.2.334'. [ 99.407678][ T5880] mmap: syz.4.349 (5880) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 99.832377][ T5886] netlink: 'syz.1.354': attribute type 1 has an invalid length. [ 99.932184][ T5886] device veth7 entered promiscuous mode [ 100.395075][ T5900] rdma_op 00000000ed9163e5 conn xmit_rdma 0000000000000000 [ 100.452906][ T5898] netlink: 12 bytes leftover after parsing attributes in process `syz.3.350'. [ 100.775010][ T5912] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 100.802791][ T5912] device bridge_slave_0 left promiscuous mode [ 100.814097][ T5912] bridge0: port 1(bridge_slave_0) entered disabled state [ 100.876342][ T5912] device bridge_slave_1 left promiscuous mode [ 100.878007][ T5912] bridge0: port 2(bridge_slave_1) entered disabled state [ 100.926515][ T5912] bond0: (slave bond_slave_0): Releasing backup interface [ 100.963371][ T5912] bond0: (slave bond_slave_1): Releasing backup interface [ 101.081339][ T5912] team0: Port device team_slave_0 removed [ 101.150755][ T5912] team0: Port device team_slave_1 removed [ 101.174494][ T5912] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 101.176408][ T5912] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 101.195530][ T5912] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 101.197407][ T5912] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 101.247360][ T5916] team0: Mode changed to "loadbalance" [ 101.270746][ T5923] netlink: 'syz.4.368': attribute type 1 has an invalid length. [ 101.407222][ T5923] device veth3 entered promiscuous mode [ 101.908750][ T5949] syz.2.376 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 102.303509][ T27] kauditd_printk_skb: 27 callbacks suppressed [ 102.303522][ T27] audit: type=1326 audit(102.250:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5958 comm="syz.3.382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 102.320866][ T27] audit: type=1326 audit(102.270:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5958 comm="syz.3.382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 102.338317][ T27] audit: type=1326 audit(102.270:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5958 comm="syz.3.382" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 102.729515][ T5964] netlink: 'syz.2.384': attribute type 1 has an invalid length. [ 102.848525][ T5969] device veth11 entered promiscuous mode [ 103.776477][ T6000] netlink: 'syz.4.398': attribute type 1 has an invalid length. [ 103.807118][ T6005] netlink: 12 bytes leftover after parsing attributes in process `syz.1.390'. [ 103.863170][ T6000] device veth5 entered promiscuous mode [ 103.937730][ T5995] loop2: detected capacity change from 0 to 32768 [ 103.948273][ T5995] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop2 scanned by syz.2.396 (5995) [ 103.954284][ T5995] BTRFS info (device loop2): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 103.956828][ T5995] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 103.959044][ T5995] BTRFS info (device loop2): using free space tree [ 104.242871][ T5995] BTRFS info (device loop2): enabling ssd optimizations [ 104.552503][ T4305] BTRFS info (device loop2): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 104.870029][ T6036] netlink: 60 bytes leftover after parsing attributes in process `syz.3.406'. [ 104.922919][ T27] audit: type=1326 audit(104.870:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.4.410" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 104.934046][ T27] audit: type=1326 audit(104.880:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.4.410" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 104.942656][ T27] audit: type=1326 audit(104.880:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.4.410" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 104.961722][ T27] audit: type=1326 audit(104.880:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.4.410" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 104.993998][ T27] audit: type=1326 audit(104.880:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.4.410" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 104.999404][ T27] audit: type=1326 audit(104.880:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.4.410" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=266 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 105.063867][ T27] audit: type=1326 audit(104.880:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6050 comm="syz.4.410" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 105.077988][ T6055] netlink: 'syz.4.412': attribute type 1 has an invalid length. [ 105.159503][ T6055] device veth7 entered promiscuous mode [ 105.283434][ T6061] loop2: detected capacity change from 0 to 1024 [ 105.321509][ T6062] loop3: detected capacity change from 0 to 128 [ 105.362599][ T6061] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 105.374669][ T6062] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 105.531369][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 105.663442][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 106.115514][ T6086] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 106.117635][ T6086] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 106.135714][ T6086] netdevsim netdevsim1: Falling back to sysfs fallback for: . [ 106.179259][ T6088] netlink: 'syz.2.426': attribute type 1 has an invalid length. [ 106.196862][ T6071] loop4: detected capacity change from 0 to 32768 [ 106.222655][ T6071] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop4 scanned by syz.4.418 (6071) [ 106.253374][ T6071] BTRFS info (device loop4): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 106.269830][ T6071] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 106.278856][ T6071] BTRFS info (device loop4): using free space tree [ 106.281267][ T6088] device veth13 entered promiscuous mode [ 106.456662][ T6113] rdma_op 00000000440f418e conn xmit_rdma 0000000000000000 [ 106.535206][ T6071] BTRFS info (device loop4): enabling ssd optimizations [ 106.599891][ T6118] loop2: detected capacity change from 0 to 128 [ 106.724258][ T6121] netlink: 12 bytes leftover after parsing attributes in process `syz.0.427'. [ 107.373626][ T6118] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 107.536718][ T4304] BTRFS info (device loop4): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 107.540389][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 107.972750][ T6140] capability: warning: `syz.0.438' uses deprecated v2 capabilities in a way that may be insecure [ 108.070128][ T6144] netlink: 12 bytes leftover after parsing attributes in process `syz.1.437'. [ 108.716855][ T27] audit: type=1107 audit(108.670:153): pid=6142 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 108.877336][ T6152] loop0: detected capacity change from 0 to 128 [ 108.888200][ T6091] loop3: detected capacity change from 0 to 65536 [ 109.026045][ T6152] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 109.061069][ T6091] XFS (loop3): Mounting V5 Filesystem [ 109.156682][ T6165] netlink: 12 bytes leftover after parsing attributes in process `syz.4.440'. [ 109.586967][ T6091] XFS (loop3): AIL initialisation failed: error -12 [ 109.825605][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 109.894096][ T6091] XFS (loop3): log mount failed [ 110.014364][ T6172] netlink: 8 bytes leftover after parsing attributes in process `syz.0.444'. [ 110.061455][ T6155] loop2: detected capacity change from 0 to 32768 [ 110.097952][ T6155] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop2 scanned by syz.2.443 (6155) [ 110.122877][ T6155] BTRFS info (device loop2): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 110.139640][ T6155] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm [ 110.141808][ T6155] BTRFS info (device loop2): using free space tree [ 110.975833][ T6197] loop0: detected capacity change from 0 to 128 [ 110.996360][ T6195] IPv6: Can't replace route, no match found [ 111.007294][ T6155] BTRFS info (device loop2): enabling ssd optimizations [ 111.505599][ T6211] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22 [ 111.507769][ T6211] netdevsim netdevsim0: Direct firmware load for . failed with error -22 [ 111.509821][ T6211] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 111.772599][ T4305] BTRFS info (device loop2): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 112.071265][ T6219] netlink: 8 bytes leftover after parsing attributes in process `syz.1.458'. [ 112.149823][ T6217] device veth3 entered promiscuous mode [ 112.347403][ T6225] netlink: 12 bytes leftover after parsing attributes in process `syz.2.455'. [ 113.204296][ T6238] netlink: 12 bytes leftover after parsing attributes in process `syz.4.452'. [ 113.358515][ T6243] netlink: 16 bytes leftover after parsing attributes in process `syz.2.465'. [ 113.536280][ T6245] xt_CT: No such helper "syz1" [ 114.105184][ T6250] loop1: detected capacity change from 0 to 256 [ 114.160740][ T6250] FAT-fs (loop1): Unrecognized mount option "ÿÿÿÿÿÿÿ" or missing value [ 114.198020][ T6242] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 114.199899][ T6242] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 114.201762][ T6242] Bluetooth: hci0: Suspend notifier action (1) failed: -4 [ 114.224075][ T6242] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 114.226567][ T6242] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 114.228111][ T6242] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 114.229984][ T6242] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 114.231940][ T6242] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 114.233498][ T6242] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 114.243930][ T6242] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 114.249746][ T6242] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 114.251348][ T6242] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 114.253320][ T6242] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 114.256223][ T6242] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 114.259052][ T6242] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 114.516511][ T6258] device veth5 entered promiscuous mode [ 114.658285][ T6237] loop0: detected capacity change from 0 to 65536 [ 114.712274][ T6237] XFS (loop0): Mounting V5 Filesystem [ 114.788825][ T6237] XFS (loop0): Ending clean mount [ 114.862933][ T4432] XFS (loop0): Metadata CRC error detected at xfs_allocbt_read_verify+0x50/0x108, xfs_cntbt block 0x6 [ 114.866211][ T4432] XFS (loop0): Unmount and run xfs_repair [ 114.867573][ T4432] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 114.869363][ T4432] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff AB3C............ [ 114.885671][ T4432] 00000010: 00 00 00 00 00 00 00 06 00 00 00 01 00 00 00 10 ................ [ 115.025636][ T4432] 00000020: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3 .sH./.A..&.:g... [ 115.028121][ T4432] 00000030: 00 00 00 00 b2 4a d0 a1 00 00 00 0d 00 00 00 03 .....J.......... [ 115.030258][ T4432] 00000040: 00 00 00 39 00 00 3f c7 00 00 00 00 00 00 00 00 ...9..?......... [ 115.032883][ T4432] 00000050: 00 00 00 00 00 00 00 00 00 00 00 3f 00 00 00 00 ...........?.... [ 115.035185][ T4432] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 115.037619][ T4432] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 115.052316][ T6237] XFS (loop0): metadata I/O error in "xfs_btree_read_buf_block+0x1f4/0x2f8" at daddr 0x6 len 2 error 74 [ 115.082577][ T6237] XFS (loop0): Corruption of in-memory data (0x8) detected at xfs_defer_finish_noroll+0x1b20/0x24c0 (fs/xfs/libxfs/xfs_defer.c:580). Shutting down filesystem. [ 115.174986][ T6285] netlink: 12 bytes leftover after parsing attributes in process `syz.1.473'. [ 115.415703][ T47] Bluetooth: hci0: command 0x0c1a tx timeout [ 115.785983][ T6237] XFS (loop0): Please unmount the filesystem and rectify the problem(s) [ 116.022981][ T6293] loop2: detected capacity change from 0 to 512 [ 116.074493][ T4306] XFS (loop0): Unmounting Filesystem [ 116.106637][ T6293] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 116.109244][ T6293] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 116.122799][ T6293] EXT4-fs error (device loop2): ext4_acquire_dquot:6795: comm syz.2.482: Failed to acquire dquot type 1 [ 116.151407][ T6293] EXT4-fs (loop2): 1 truncate cleaned up [ 116.152914][ T6293] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 116.203950][ T6302] loop3: detected capacity change from 0 to 128 [ 116.207135][ T6300] netlink: 8 bytes leftover after parsing attributes in process `syz.1.484'. [ 116.238413][ T6302] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 116.262380][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 116.284082][ T4303] Bluetooth: hci4: command 0x0c1a tx timeout [ 116.285791][ T4303] Bluetooth: hci3: command 0x0c1a tx timeout [ 116.287706][ T4303] Bluetooth: hci2: command 0x0c1a tx timeout [ 116.289122][ T4303] Bluetooth: hci1: command 0x0c1a tx timeout [ 116.379030][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 117.023249][ T6317] device syz_tun entered promiscuous mode [ 117.032455][ T6317] device syz_tun left promiscuous mode [ 117.523146][ T47] Bluetooth: hci0: command 0x0406 tx timeout [ 117.865076][ T6321] netlink: 12 bytes leftover after parsing attributes in process `syz.3.489'. [ 118.031337][ T6329] netlink: 12 bytes leftover after parsing attributes in process `syz.1.487'. [ 118.202143][ T6326] infiniband syz!: set active [ 118.207235][ T6326] infiniband syz!: added team_slave_0 [ 118.341319][ T6326] RDS/IB: syz!: added [ 118.348953][ T6326] smc: adding ib device syz! with port count 1 [ 118.356440][ T6326] smc: ib device syz! port 1 has pnetid [ 118.373967][ T47] Bluetooth: hci1: command 0x0406 tx timeout [ 118.375549][ T47] Bluetooth: hci2: command 0x0406 tx timeout [ 118.377049][ T47] Bluetooth: hci3: command 0x0406 tx timeout [ 118.378696][ T47] Bluetooth: hci4: command 0x0406 tx timeout [ 118.562456][ T6344] device veth5 entered promiscuous mode [ 118.677853][ T6331] loop2: detected capacity change from 0 to 65536 [ 118.740931][ T6331] XFS (loop2): Mounting V5 Filesystem [ 118.807573][ T6331] XFS (loop2): Ending clean mount [ 118.883910][ T6331] XFS (loop2): Metadata CRC error detected at xfs_allocbt_read_verify+0x50/0x108, xfs_cntbt block 0x6 [ 118.886680][ T6331] XFS (loop2): Unmount and run xfs_repair [ 118.888033][ T6331] XFS (loop2): First 128 bytes of corrupted metadata buffer: [ 118.889875][ T6331] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff AB3C............ [ 118.894646][ T6356] loop0: detected capacity change from 0 to 512 [ 118.916239][ T6331] 00000010: 00 00 00 00 00 00 00 06 00 00 00 01 00 00 00 10 ................ [ 118.920728][ T6359] loop3: detected capacity change from 0 to 128 [ 118.923434][ T6331] 00000020: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3 .sH./.A..&.:g... [ 118.960835][ T6331] 00000030: 00 00 00 00 b2 4a d0 a1 00 00 00 0d 00 00 00 03 .....J.......... [ 118.963874][ T6356] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 118.980688][ T6331] 00000040: 00 00 00 39 00 00 3f c7 00 00 00 00 00 00 00 00 ...9..?......... [ 118.983092][ T6331] 00000050: 00 00 00 00 00 00 00 00 00 00 00 3f 00 00 00 00 ...........?.... [ 119.023902][ T6331] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 119.026244][ T6331] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 119.064935][ T6331] XFS (loop2): metadata I/O error in "xfs_btree_read_buf_block+0x1f4/0x2f8" at daddr 0x6 len 2 error 74 [ 119.092348][ T6331] XFS (loop2): Corruption of in-memory data (0x8) detected at xfs_defer_finish_noroll+0x1b20/0x24c0 (fs/xfs/libxfs/xfs_defer.c:580). Shutting down filesystem. [ 119.108923][ T6331] XFS (loop2): Please unmount the filesystem and rectify the problem(s) [ 119.202899][ T4305] XFS (loop2): Unmounting Filesystem [ 119.382340][ T27] audit: type=1326 audit(119.330:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 119.394302][ T27] audit: type=1326 audit(119.330:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=78 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 119.402768][ T27] audit: type=1326 audit(119.330:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6366 comm="syz.1.501" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 119.775532][ T6379] netlink: 12 bytes leftover after parsing attributes in process `syz.4.503'. [ 120.651021][ T6384] device veth7 entered promiscuous mode [ 122.090185][ T6388] loop4: detected capacity change from 0 to 32768 [ 122.240816][ T6388] XFS (loop4): Mounting V5 Filesystem [ 122.312597][ T6388] XFS (loop4): Ending clean mount [ 122.323744][ T6388] XFS (loop4): Quotacheck needed: Please wait. [ 122.352173][ T6388] XFS (loop4): Quotacheck: Done. [ 122.421364][ T6414] netlink: 12 bytes leftover after parsing attributes in process `syz.3.511'. [ 122.489234][ T4304] XFS (loop4): Unmounting Filesystem [ 122.855562][ T6393] loop1: detected capacity change from 0 to 65536 [ 122.922719][ T6393] XFS (loop1): Mounting V5 Filesystem [ 122.984120][ T6393] XFS (loop1): Ending clean mount [ 123.941112][ T4299] XFS (loop1): Unmounting Filesystem [ 124.021510][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 125.488792][ T27] audit: type=1326 audit(125.440:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6450 comm="syz.1.526" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 125.504924][ T27] audit: type=1326 audit(125.450:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6450 comm="syz.1.526" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=61 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 125.523033][ T27] audit: type=1326 audit(125.450:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6450 comm="syz.1.526" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 125.644526][ T6437] netlink: 12 bytes leftover after parsing attributes in process `syz.0.518'. [ 125.834536][ T6467] netlink: 24 bytes leftover after parsing attributes in process `syz.0.531'. [ 125.965577][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.967390][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 127.444912][ T6491] netlink: 12 bytes leftover after parsing attributes in process `syz.1.541'. [ 128.099963][ T6460] loop4: detected capacity change from 0 to 65536 [ 128.233656][ T6500] netlink: 12 bytes leftover after parsing attributes in process `syz.2.537'. [ 128.272873][ T6460] XFS (loop4): Mounting V5 Filesystem [ 128.329378][ T6460] XFS (loop4): Ending clean mount [ 129.287854][ T4304] XFS (loop4): Unmounting Filesystem [ 129.335298][ T6518] Zero length message leads to an empty skb [ 129.725250][ T6527] device veth7 entered promiscuous mode [ 129.873866][ T6534] loop1: detected capacity change from 0 to 512 [ 129.955086][ T6534] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 130.066029][ T6534] EXT4-fs (loop1): orphan cleanup on readonly fs [ 130.079195][ T6534] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.556: bg 0: block 248: padding at end of block bitmap is not set [ 130.086457][ T6534] Quota error (device loop1): write_blk: dquota write failed [ 130.088657][ T6534] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 130.091539][ T6534] EXT4-fs error (device loop1): ext4_acquire_dquot:6795: comm syz.1.556: Failed to acquire dquot type 1 [ 130.129642][ T6534] EXT4-fs (loop1): 1 truncate cleaned up [ 131.564721][ T6534] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 132.674548][ T4299] EXT4-fs (loop1): unmounting filesystem. [ 132.995847][ T6555] loop1: detected capacity change from 0 to 2048 [ 133.036503][ T6555] loop1: p2 < > p3 p4 < > [ 133.041982][ T6555] loop1: p3 start 4278191616 is beyond EOD, truncated [ 133.658583][ T6581] loop4: detected capacity change from 0 to 512 [ 133.715370][ T6581] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 133.717548][ T6581] System zones: 0-2, 18-18, 34-35 [ 133.740416][ T6581] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 133.842534][ T6581] netlink: 20 bytes leftover after parsing attributes in process `syz.4.578'. [ 133.877097][ T6594] Cannot find del_set index 0 as target [ 134.082412][ T4304] EXT4-fs (loop4): unmounting filesystem. [ 134.181577][ T6543] loop3: detected capacity change from 0 to 65536 [ 134.272491][ T6543] XFS (loop3): Mounting V5 Filesystem [ 134.413640][ T6543] XFS (loop3): Ending clean mount [ 134.468708][ T6619] loop2: detected capacity change from 0 to 1024 [ 134.536460][ T6619] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 135.369479][ T4307] XFS (loop3): Unmounting Filesystem [ 135.399707][ T6633] netlink: 12 bytes leftover after parsing attributes in process `syz.0.581'. [ 135.409499][ T6632] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 135.512278][ T6631] netlink: 4 bytes leftover after parsing attributes in process `syz.2.591'. [ 135.544316][ T6631] device bridge_slave_1 left promiscuous mode [ 135.546047][ T6631] bridge0: port 2(bridge_slave_1) entered disabled state [ 135.576109][ T6631] device bridge_slave_0 left promiscuous mode [ 135.578567][ T6631] bridge0: port 1(bridge_slave_0) entered disabled state [ 135.603202][ T6634] EXT4-fs (loop2): shut down requested (0) [ 135.615753][ T6641] loop4: detected capacity change from 0 to 512 [ 135.643435][ T6641] EXT2-fs (loop4): (no)acl options not supported [ 135.651101][ T6641] EXT2-fs (loop4): error: couldn't mount because of unsupported optional features (100) [ 135.738000][ T6122] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 135.752884][ T6122] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 135.757147][ T6122] EXT4-fs (loop2): This should not happen!! Data will be lost [ 135.757147][ T6122] [ 135.759667][ T6122] EXT4-fs (loop2): Total free blocks count 0 [ 135.761179][ T6122] EXT4-fs (loop2): Free/Dirty block details [ 135.762637][ T6122] EXT4-fs (loop2): free_blocks=68451041280 [ 135.773887][ T6122] EXT4-fs (loop2): dirty_blocks=2064 [ 135.775265][ T6122] EXT4-fs (loop2): Block reservation details [ 135.776801][ T6122] EXT4-fs (loop2): i_reserved_data_blocks=129 [ 135.883255][ T27] audit: type=1326 audit(135.830:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6645 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 135.890266][ T27] audit: type=1326 audit(135.840:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6645 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 135.923917][ T27] audit: type=1326 audit(135.840:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6645 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 135.939647][ T27] audit: type=1326 audit(135.840:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6645 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 135.950348][ T27] audit: type=1326 audit(135.850:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6645 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 135.989450][ T27] audit: type=1326 audit(135.850:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6645 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 135.999506][ T27] audit: type=1326 audit(135.850:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6645 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 136.009626][ T27] audit: type=1326 audit(135.850:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6645 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=434 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 136.023678][ T27] audit: type=1326 audit(135.850:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6645 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 136.038675][ T27] audit: type=1326 audit(135.850:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6645 comm="syz.4.599" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=268 compat=0 ip=0xffffabf59a68 code=0x7ffc0000 [ 136.151745][ T6653] loop1: detected capacity change from 0 to 512 [ 136.220993][ T6653] EXT4-fs warning (device loop1): ext4_enable_quotas:7030: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix. [ 136.231708][ T6653] EXT4-fs (loop1): mount failed [ 136.294192][ T6661] loop2: detected capacity change from 0 to 512 [ 136.445308][ T6661] EXT4-fs (loop2): too many log groups per flexible block group [ 136.447565][ T6661] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 136.449485][ T6661] EXT4-fs (loop2): mount failed [ 137.505325][ T6683] device veth9 entered promiscuous mode [ 137.820764][ T6698] netlink: 'syz.1.611': attribute type 4 has an invalid length. [ 137.916729][ T6706] netlink: 'syz.1.611': attribute type 4 has an invalid length. [ 139.241928][ T6733] device veth9 entered promiscuous mode [ 139.279869][ T6737] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22 [ 139.282106][ T6737] netdevsim netdevsim0: Direct firmware load for . failed with error -22 [ 139.293616][ T6737] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 139.721958][ T6759] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 140.203098][ T6776] netlink: 12 bytes leftover after parsing attributes in process `syz.1.628'. [ 140.723176][ T6782] loop2: detected capacity change from 0 to 512 [ 140.753253][ T6782] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 140.796502][ T6788] netlink: 16 bytes leftover after parsing attributes in process `syz.3.641'. [ 140.907226][ T6782] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 141.047800][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 141.087626][ T6803] netlink: 12 bytes leftover after parsing attributes in process `syz.0.636'. [ 141.223664][ T6807] loop1: detected capacity change from 0 to 1024 [ 141.489051][ T6807] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 141.584495][ T6818] netlink: 12 bytes leftover after parsing attributes in process `syz.2.648'. [ 141.847609][ T6825] loop3: detected capacity change from 0 to 512 [ 141.893094][ T6825] EXT4-fs warning (device loop3): ext4_enable_quotas:7030: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 141.915962][ T6825] EXT4-fs (loop3): mount failed [ 142.118590][ T5335] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 142.133728][ T5335] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 142.148105][ T5335] EXT4-fs (loop1): This should not happen!! Data will be lost [ 142.148105][ T5335] [ 142.150630][ T5335] EXT4-fs (loop1): Total free blocks count 0 [ 142.152057][ T5335] EXT4-fs (loop1): Free/Dirty block details [ 142.153500][ T5335] EXT4-fs (loop1): free_blocks=68451041280 [ 142.196125][ T5335] EXT4-fs (loop1): dirty_blocks=2672 [ 142.197558][ T5335] EXT4-fs (loop1): Block reservation details [ 142.199012][ T5335] EXT4-fs (loop1): i_reserved_data_blocks=167 [ 142.281039][ T5347] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 608 with error 28 [ 142.402344][ T6834] IPv6: Can't replace route, no match found [ 142.837376][ T27] kauditd_printk_skb: 2 callbacks suppressed [ 142.837388][ T27] audit: type=1326 audit(142.790:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6841 comm="syz.1.660" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 142.847993][ T27] audit: type=1326 audit(142.800:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6841 comm="syz.1.660" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 142.872111][ T27] audit: type=1326 audit(142.820:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6841 comm="syz.1.660" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 142.880627][ T27] audit: type=1326 audit(142.820:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6841 comm="syz.1.660" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 142.899435][ T27] audit: type=1326 audit(142.820:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6841 comm="syz.1.660" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 142.921881][ T27] audit: type=1326 audit(142.820:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6841 comm="syz.1.660" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 142.937539][ T27] audit: type=1326 audit(142.820:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6841 comm="syz.1.660" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 142.948556][ T27] audit: type=1326 audit(142.820:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6841 comm="syz.1.660" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 142.960898][ T27] audit: type=1326 audit(142.830:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6841 comm="syz.1.660" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 142.973473][ T27] audit: type=1326 audit(142.830:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6841 comm="syz.1.660" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 143.437802][ T6860] loop1: detected capacity change from 0 to 512 [ 143.505529][ T6860] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 143.508346][ T6860] System zones: 0-2, 18-18, 34-35 [ 143.511943][ T6860] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 143.529496][ T6870] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 143.532157][ T6870] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 143.639226][ T6868] netlink: 40 bytes leftover after parsing attributes in process `syz.0.671'. [ 143.698878][ T4299] EXT4-fs (loop1): unmounting filesystem. [ 143.867811][ T6880] loop0: detected capacity change from 0 to 512 [ 143.894724][ T6880] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 143.898019][ T6880] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 143.910919][ T6880] EXT4-fs (loop0): 1 truncate cleaned up [ 143.913413][ T6880] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 144.068729][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 144.076043][ T6885] netlink: 12 bytes leftover after parsing attributes in process `syz.4.672'. [ 144.566613][ T6901] loop2: detected capacity change from 0 to 512 [ 144.636539][ T6901] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 144.638598][ T6901] System zones: 0-2, 18-18, 34-35 [ 144.642175][ T6901] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 144.777495][ T6913] hub 2-0:1.0: USB hub found [ 144.779007][ T6913] hub 2-0:1.0: 8 ports detected [ 144.863027][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 145.322000][ T6927] loop0: detected capacity change from 0 to 164 [ 145.900191][ T6939] loop2: detected capacity change from 0 to 512 [ 145.968551][ T6939] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 145.970707][ T6939] System zones: 0-2, 18-18, 34-35 [ 145.979089][ T6939] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 146.096340][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 147.209589][ T6987] netlink: 12 bytes leftover after parsing attributes in process `syz.1.725'. [ 147.254619][ T6991] netlink: 28 bytes leftover after parsing attributes in process `syz.0.727'. [ 147.286438][ T6991] device veth7 entered promiscuous mode [ 147.462736][ T6997] netlink: 12 bytes leftover after parsing attributes in process `syz.2.721'. [ 147.619443][ T7003] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.731'. [ 147.625056][ T7000] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.731'. [ 148.265093][ T7021] netlink: 40 bytes leftover after parsing attributes in process `syz.3.740'. [ 148.967950][ T7044] netlink: 12 bytes leftover after parsing attributes in process `syz.3.744'. [ 149.056349][ T7024] loop4: detected capacity change from 0 to 32768 [ 149.063494][ T7024] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop4 scanned by syz.4.743 (7024) [ 149.075112][ T7024] BTRFS info (device loop4): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 149.081105][ T7024] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm [ 149.086619][ T7024] BTRFS info (device loop4): using free space tree [ 149.326968][ T7024] BTRFS info (device loop4): enabling ssd optimizations [ 149.546984][ T4304] BTRFS info (device loop4): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 149.583028][ T7072] loop2: detected capacity change from 0 to 512 [ 149.598753][ T7072] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 149.615558][ T7072] EXT4-fs (loop2): 1 truncate cleaned up [ 149.618057][ T7072] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 149.688231][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 150.188932][ T7096] loop0: detected capacity change from 0 to 1024 [ 150.203565][ T7096] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 150.237072][ T7096] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (14919!=20869) [ 150.260853][ T7096] EXT4-fs (loop0): invalid journal inode [ 150.262438][ T7096] EXT4-fs (loop0): can't get journal size [ 150.278575][ T7096] EXT4-fs error (device loop0): ext4_protect_reserved_inode:182: inode #3: comm syz.0.760: blocks 2-2 from inode overlap system zone [ 150.284030][ T7096] EXT4-fs (loop0): failed to initialize system zone (-117) [ 150.288417][ T7096] EXT4-fs (loop0): mount failed [ 150.696758][ T7108] loop3: detected capacity change from 0 to 512 [ 150.710283][ T7108] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 150.728909][ T7108] EXT4-fs (loop3): 1 truncate cleaned up [ 150.736555][ T7108] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 150.812322][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 150.882583][ T7113] netlink: 'syz.3.767': attribute type 3 has an invalid length. [ 150.974959][ T7104] loop0: detected capacity change from 0 to 32768 [ 150.989267][ T7104] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop0 scanned by syz.0.763 (7104) [ 150.999656][ T7104] BTRFS info (device loop0): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 151.002582][ T7104] BTRFS info (device loop0): using sha256 (sha256-ce) checksum algorithm [ 151.007569][ T7104] BTRFS info (device loop0): using free space tree [ 151.029965][ T7104] BTRFS info (device loop0): enabling ssd optimizations [ 151.138879][ T4306] BTRFS info (device loop0): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 151.309037][ T4393] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 10 /dev/loop0 scanned by udevd (4393) [ 151.464590][ T7151] loop3: detected capacity change from 0 to 512 [ 151.485444][ T7151] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 151.488116][ T7151] EXT4-fs (loop3): orphan cleanup on readonly fs [ 151.496790][ T7151] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.776: invalid indirect mapped block 256 (level 2) [ 151.520411][ T7151] EXT4-fs (loop3): 2 truncates cleaned up [ 151.521876][ T7151] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 151.579385][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 152.575691][ T7166] netlink: 12 bytes leftover after parsing attributes in process `syz.2.774'. [ 152.860990][ T7178] loop4: detected capacity change from 0 to 512 [ 152.865898][ T7178] EXT2-fs (loop4): warning: feature flags set on rev 0 fs, running e2fsck is recommended [ 152.872985][ T7178] EXT2-fs (loop4): warning: maximal mount count reached, running e2fsck is recommended [ 152.876988][ T7178] EXT2-fs (loop4): 0.5b, 95/08/09, bs=4096, gc=1, bpg=32768, ipg=32, mo=8001c] [ 153.147068][ T7187] netlink: 12 bytes leftover after parsing attributes in process `syz.0.790'. [ 154.071758][ T7170] loop3: detected capacity change from 0 to 32768 [ 154.099430][ T7187] device veth7 entered promiscuous mode [ 154.106708][ T7170] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10 [ 154.176214][ T4393] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10 [ 154.312399][ T7202] 9pnet_fd: Insufficient options for proto=fd [ 154.539629][ T7210] loop0: detected capacity change from 0 to 4096 [ 154.558899][ T7214] vhci_hcd: invalid port number 224 [ 154.560704][ T7214] vhci_hcd: SetHubDepth req not supported for USB 2.0 roothub [ 154.604860][ T27] kauditd_printk_skb: 47 callbacks suppressed [ 154.604874][ T27] audit: type=1326 audit(154.550:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 154.649849][ T27] audit: type=1326 audit(154.580:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=163 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 154.660732][ T27] audit: type=1326 audit(154.600:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 154.660771][ T27] audit: type=1326 audit(154.600:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 154.661230][ T27] audit: type=1326 audit(154.600:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff8e157f94 code=0x7ffc0000 [ 154.678440][ T7213] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.809871][ T27] audit: type=1326 audit(154.760:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 154.815787][ T27] audit: type=1326 audit(154.770:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7211 comm="syz.3.802" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 154.921677][ T7213] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.902149][ T7213] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 155.920109][ T7233] netlink: 12 bytes leftover after parsing attributes in process `syz.0.806'. [ 156.136401][ T7213] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 156.256846][ T7248] loop2: detected capacity change from 0 to 4096 [ 156.323641][ T7213] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.339372][ T7213] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.362849][ T7213] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 156.386127][ T7213] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 157.492149][ T7269] netlink: 12 bytes leftover after parsing attributes in process `syz.1.819'. [ 157.560173][ T7276] netlink: 4 bytes leftover after parsing attributes in process `syz.4.827'. [ 157.608495][ T7274] loop2: detected capacity change from 0 to 1024 [ 157.630102][ T7274] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 157.809347][ T7285] EXT4-fs (loop2): shut down requested (0) [ 157.897540][ T5347] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 157.901476][ T5347] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1988 with error 28 [ 157.912385][ T5347] EXT4-fs (loop2): This should not happen!! Data will be lost [ 157.912385][ T5347] [ 157.917770][ T5347] EXT4-fs (loop2): Total free blocks count 0 [ 157.920691][ T5347] EXT4-fs (loop2): Free/Dirty block details [ 157.924585][ T5347] EXT4-fs (loop2): free_blocks=68451041280 [ 157.928422][ T5347] EXT4-fs (loop2): dirty_blocks=2000 [ 157.931068][ T5347] EXT4-fs (loop2): Block reservation details [ 157.933752][ T5347] EXT4-fs (loop2): i_reserved_data_blocks=125 [ 158.151441][ T7298] loop0: detected capacity change from 0 to 4096 [ 158.421281][ T7311] loop2: detected capacity change from 0 to 512 [ 158.440970][ T7311] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 158.455248][ T7311] EXT4-fs (loop2): 1 truncate cleaned up [ 158.457298][ T7311] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 158.517806][ T7311] process 'syz.2.838' launched './file1' with NULL argv: empty string added [ 158.538619][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 158.764008][ T4314] Bluetooth: hci3: command 0x0406 tx timeout [ 158.765633][ T4314] Bluetooth: hci0: command 0x0406 tx timeout [ 158.767082][ T4314] Bluetooth: hci1: command 0x0406 tx timeout [ 158.768923][ T4314] Bluetooth: hci2: command 0x0406 tx timeout [ 158.770557][ T4314] Bluetooth: hci4: command 0x0406 tx timeout [ 158.946507][ T7328] 8021q: adding VLAN 0 to HW filter on device bond1 [ 158.967421][ T7337] netlink: 'syz.3.848': attribute type 10 has an invalid length. [ 158.983202][ T7337] 8021q: adding VLAN 0 to HW filter on device team0 [ 158.997791][ T7337] bond0: (slave team0): Enslaving as an active interface with an up link [ 159.040206][ T7328] device veth7 entered promiscuous mode [ 159.065085][ T7328] bond1: (slave veth7): Enslaving as an active interface with an up link [ 159.067472][ T7340] netlink: 'syz.3.848': attribute type 10 has an invalid length. [ 159.084011][ T7340] bond0: (slave team0): Releasing backup interface [ 159.118589][ T7338] loop2: detected capacity change from 0 to 4096 [ 159.167539][ T7340] bridge0: port 3(team0) entered blocking state [ 159.169597][ T7340] bridge0: port 3(team0) entered disabled state [ 159.177359][ T7340] device team0 entered promiscuous mode [ 159.184401][ T7340] device team_slave_0 entered promiscuous mode [ 159.192040][ T7340] device team_slave_1 entered promiscuous mode [ 159.218706][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready [ 160.089235][ T27] audit: type=1326 audit(160.040:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7348 comm="syz.0.851" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 160.097996][ T27] audit: type=1326 audit(160.050:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7348 comm="syz.0.851" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=164 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 160.139978][ T27] audit: type=1326 audit(160.050:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7348 comm="syz.0.851" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 160.147419][ T7357] loop3: detected capacity change from 0 to 512 [ 160.163224][ T27] audit: type=1326 audit(160.050:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7348 comm="syz.0.851" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=177 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 160.163262][ T27] audit: type=1326 audit(160.050:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7348 comm="syz.0.851" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 160.163301][ T27] audit: type=1326 audit(160.050:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7348 comm="syz.0.851" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 160.163333][ T27] audit: type=1326 audit(160.050:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7348 comm="syz.0.851" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 160.163369][ T27] audit: type=1326 audit(160.060:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7348 comm="syz.0.851" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=209 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 160.163400][ T27] audit: type=1326 audit(160.060:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7348 comm="syz.0.851" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 160.163429][ T27] audit: type=1326 audit(160.060:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7348 comm="syz.0.851" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=149 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 160.185112][ T7357] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 160.185195][ T7357] System zones: 0-2, 18-18, 34-35 [ 160.214684][ T7357] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 160.411750][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 160.549200][ T7365] netlink: 12 bytes leftover after parsing attributes in process `+}[@'. [ 160.771535][ T7388] netlink: 12 bytes leftover after parsing attributes in process `syz.3.860'. [ 161.137798][ T7400] loop2: detected capacity change from 0 to 512 [ 161.192823][ T7400] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 161.195235][ T7400] System zones: 0-2, 18-18, 34-35 [ 161.197983][ T7400] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 161.448664][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 161.827458][ T7418] netlink: 'syz.2.877': attribute type 3 has an invalid length. [ 161.928494][ T7427] Cannot find add_set index 0 as target [ 162.101193][ T7434] loop1: detected capacity change from 0 to 512 [ 162.187598][ T7434] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 162.190016][ T7434] System zones: 0-2, 18-18, 34-35 [ 162.192407][ T7434] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 162.264948][ T4299] EXT4-fs (loop1): unmounting filesystem. [ 162.283743][ T7445] netlink: 8 bytes leftover after parsing attributes in process `syz.2.888'. [ 162.332045][ T7450] netlink: 28 bytes leftover after parsing attributes in process `syz.0.891'. [ 162.482288][ T7458] xt_hashlimit: overflow, try lower: 18446744073709551615/7 [ 162.599633][ T7462] netlink: 'syz.4.895': attribute type 1 has an invalid length. [ 162.653031][ T7467] 8021q: adding VLAN 0 to HW filter on device bond5 [ 162.809203][ T7462] device veth9 entered promiscuous mode [ 162.823110][ T7462] bond5: (slave veth9): Enslaving as an active interface with an up link [ 162.851277][ T7476] loop0: detected capacity change from 0 to 512 [ 162.885714][ T6226] IPv6: ADDRCONF(NETDEV_CHANGE): bond5: link becomes ready [ 162.910666][ T7476] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 162.912810][ T7476] System zones: 0-2, 18-18, 34-35 [ 162.930348][ T7476] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 163.023504][ T7485] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 163.049592][ T7485] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 163.051744][ T7485] netdevsim netdevsim2: Falling back to sysfs fallback for: . [ 163.157321][ T7494] device bond_slave_1 entered promiscuous mode [ 163.160093][ T7494] netlink: 4 bytes leftover after parsing attributes in process `syz.1.905'. [ 163.204313][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 163.427551][ T7494] bond0: (slave bond_slave_1): Releasing backup interface [ 163.496174][ T7494] device bond_slave_1 left promiscuous mode [ 163.772531][ T7506] netlink: 12 bytes leftover after parsing attributes in process `syz.0.908'. [ 163.957408][ T7519] netlink: 'syz.1.913': attribute type 1 has an invalid length. [ 163.973508][ T7519] 8021q: adding VLAN 0 to HW filter on device bond3 [ 163.988035][ T7519] device veth9 entered promiscuous mode [ 163.991993][ T7519] bond3: (slave veth9): Enslaving as an active interface with an up link [ 164.000422][ T1332] IPv6: ADDRCONF(NETDEV_CHANGE): bond3: link becomes ready [ 164.406659][ T7529] loop2: detected capacity change from 0 to 512 [ 164.453672][ T7529] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 164.456019][ T7529] System zones: 0-2, 18-18, 34-35 [ 164.466051][ T7529] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 164.626390][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 164.917278][ T7556] nfs4: Bad value for 'source' [ 165.152221][ T7568] loop2: detected capacity change from 0 to 512 [ 165.188283][ T7568] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 165.190628][ T7568] System zones: 0-2, 18-18, 34-35 [ 165.198671][ T7568] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 165.372279][ T7581] netlink: 28 bytes leftover after parsing attributes in process `syz.4.938'. [ 165.479425][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 165.563070][ T7589] loop4: detected capacity change from 0 to 1024 [ 165.565557][ T7589] EXT4-fs: quotafile must be on filesystem root [ 165.681900][ T7593] netlink: 'syz.3.944': attribute type 1 has an invalid length. [ 165.716352][ T7596] 8021q: adding VLAN 0 to HW filter on device bond2 [ 165.748528][ T7600] loop0: detected capacity change from 0 to 256 [ 165.819960][ T7596] device veth7 entered promiscuous mode [ 165.851380][ T7596] bond2: (slave veth7): Enslaving as an active interface with an up link [ 165.856330][ T5463] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready [ 165.900694][ T7611] netlink: 28 bytes leftover after parsing attributes in process `syz.2.949'. [ 166.061917][ T7618] loop0: detected capacity change from 0 to 512 [ 166.102769][ T7618] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 166.105382][ T7618] System zones: 0-2, 18-18, 34-35 [ 166.112653][ T7618] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 166.283207][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 166.491016][ T7631] netlink: 12 bytes leftover after parsing attributes in process `syz.0.956'. [ 166.599304][ T7638] netlink: 28 bytes leftover after parsing attributes in process `syz.0.960'. [ 166.610911][ T7636] loop3: detected capacity change from 0 to 4096 [ 166.722357][ T7642] loop2: detected capacity change from 0 to 164 [ 166.725288][ T7643] netlink: 'syz.0.963': attribute type 1 has an invalid length. [ 166.752020][ T7642] syz.2.961: attempt to access beyond end of device [ 166.752020][ T7642] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 166.756114][ T7642] syz.2.961: attempt to access beyond end of device [ 166.756114][ T7642] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 166.806555][ T7643] 8021q: adding VLAN 0 to HW filter on device bond2 [ 166.852047][ T7647] loop4: detected capacity change from 0 to 512 [ 166.873040][ T7643] device veth9 entered promiscuous mode [ 166.877067][ T7643] bond2: (slave veth9): Enslaving as an active interface with an up link [ 166.879323][ T5343] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready [ 166.911431][ T7647] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 166.913561][ T7647] System zones: 0-2, 18-18, 34-35 [ 166.948330][ T7647] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 167.308509][ T4304] EXT4-fs (loop4): unmounting filesystem. [ 167.365325][ T7675] loop3: detected capacity change from 0 to 2048 [ 167.409809][ T7677] loop4: detected capacity change from 0 to 4096 [ 167.416590][ T7671] netlink: 16 bytes leftover after parsing attributes in process `syz.1.973'. [ 167.421066][ T7673] netlink: 12 bytes leftover after parsing attributes in process `syz.2.970'. [ 168.576608][ T7693] loop0: detected capacity change from 0 to 2048 [ 168.698393][ T7693] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 168.782924][ T7704] netlink: 16 bytes leftover after parsing attributes in process `syz.1.986'. [ 168.791998][ T7699] loop2: detected capacity change from 0 to 512 [ 168.845310][ T7708] netlink: 16 bytes leftover after parsing attributes in process `syz.4.981'. [ 168.921026][ T7699] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 168.923232][ T7699] System zones: 0-2, 18-18, 34-35 [ 168.928622][ T7699] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 168.956273][ T7707] netlink: 12 bytes leftover after parsing attributes in process `syz.3.987'. [ 169.130322][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 169.183091][ T7718] loop4: detected capacity change from 0 to 2048 [ 169.259601][ T7722] loop2: detected capacity change from 0 to 4096 [ 169.352070][ T4393] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 169.459071][ T5463] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 169.459892][ T5463] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 169.478658][ T5463] EXT4-fs (loop0): This should not happen!! Data will be lost [ 169.478658][ T5463] [ 169.481187][ T5463] EXT4-fs (loop0): Total free blocks count 0 [ 169.482997][ T5463] EXT4-fs (loop0): Free/Dirty block details [ 169.510122][ T5463] EXT4-fs (loop0): free_blocks=2415919104 [ 169.511713][ T5463] EXT4-fs (loop0): dirty_blocks=3312 [ 169.512973][ T5463] EXT4-fs (loop0): Block reservation details [ 169.515187][ T5463] EXT4-fs (loop0): i_reserved_data_blocks=207 [ 169.569260][ T7736] loop3: detected capacity change from 0 to 128 [ 169.573004][ T7735] netlink: 16 bytes leftover after parsing attributes in process `syz.2.998'. [ 169.622108][ T5463] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 1248 with error 28 [ 169.756811][ T7740] loop4: detected capacity change from 0 to 512 [ 169.790471][ T7743] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1003'. [ 169.836995][ T7743] device veth15 entered promiscuous mode [ 169.912507][ T7740] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 169.914922][ T7740] System zones: 0-2, 18-18, 34-35 [ 169.937031][ T7740] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 170.986019][ T4304] EXT4-fs (loop4): unmounting filesystem. [ 171.049857][ T7763] loop0: detected capacity change from 0 to 4096 [ 171.240457][ T7772] __nla_validate_parse: 1 callbacks suppressed [ 171.240472][ T7772] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1013'. [ 171.498933][ T7789] loop3: detected capacity change from 0 to 512 [ 171.513594][ T7784] loop0: detected capacity change from 0 to 512 [ 171.568131][ T7789] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 171.570350][ T7789] System zones: 0-2, 18-18, 34-35 [ 171.667991][ T7789] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 171.672715][ T7784] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 172.140127][ T7796] device wg2 entered promiscuous mode [ 172.426707][ T7799] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1019'. [ 172.556919][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 172.559870][ T7803] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1021'. [ 172.616525][ T7803] device veth11 entered promiscuous mode [ 172.759771][ T7811] loop2: detected capacity change from 0 to 4096 [ 172.893214][ T7816] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1026'. [ 173.362227][ T7827] loop3: detected capacity change from 0 to 512 [ 173.635850][ T7832] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1032'. [ 174.077771][ T7827] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 174.079986][ T7827] System zones: 0-2, 18-18, 34-35 [ 174.082358][ T7827] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 174.160630][ T7838] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1036'. [ 174.225643][ T7840] device veth11 entered promiscuous mode [ 174.291921][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 174.421681][ T7844] loop1: detected capacity change from 0 to 4096 [ 174.921370][ T7859] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.940775][ T7868] loop4: detected capacity change from 0 to 512 [ 174.993538][ T7868] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 175.001433][ T7868] System zones: 0-2, 18-18, 34-35 [ 175.052338][ T7868] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 175.134410][ T7873] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1047'. [ 175.307826][ T7859] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.361949][ T4304] EXT4-fs (loop4): unmounting filesystem. [ 175.466408][ T7859] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.493186][ T7878] device veth11 entered promiscuous mode [ 175.600276][ T7859] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.708263][ T7884] loop2: detected capacity change from 0 to 512 [ 175.710430][ T7884] EXT4-fs: Ignoring removed mblk_io_submit option [ 175.741421][ T7884] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.1054: inode #1: comm syz.2.1054: iget: illegal inode # [ 175.796052][ T7884] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1054: error while reading EA inode 1 err=-117 [ 175.811126][ T7884] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 175.830644][ T7884] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.1054: inode #1: comm syz.2.1054: iget: illegal inode # [ 175.881257][ T7884] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.1054: error while reading EA inode 1 err=-117 [ 175.906306][ T7884] EXT4-fs (loop2): 1 orphan inode deleted [ 175.907834][ T7884] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 176.022404][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 177.290948][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 178.150445][ T7907] loop0: detected capacity change from 0 to 512 [ 178.174743][ T7907] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 178.176861][ T7907] System zones: 0-2, 18-18, 34-35 [ 178.179983][ T7907] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 178.243062][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 187.052619][ T7917] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1064'. [ 187.265655][ T7859] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 187.279674][ T27] kauditd_printk_skb: 54 callbacks suppressed [ 187.279686][ T27] audit: type=1326 audit(187.230:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7924 comm="syz.1.1066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 187.289018][ T27] audit: type=1326 audit(187.240:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7924 comm="syz.1.1066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 187.310321][ T27] audit: type=1326 audit(187.240:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7924 comm="syz.1.1066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 187.325535][ T27] audit: type=1326 audit(187.240:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7924 comm="syz.1.1066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 187.331292][ T7922] device veth11 entered promiscuous mode [ 187.350696][ T27] audit: type=1326 audit(187.240:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7924 comm="syz.1.1066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 187.368361][ T27] audit: type=1326 audit(187.240:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7924 comm="syz.1.1066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 187.394273][ T7859] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 187.396419][ T27] audit: type=1326 audit(187.240:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7924 comm="syz.1.1066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 187.412808][ T27] audit: type=1326 audit(187.240:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7924 comm="syz.1.1066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 187.418797][ T2060] ieee802154 phy0 wpan0: encryption failed: -22 [ 187.418846][ T2060] ieee802154 phy1 wpan1: encryption failed: -22 [ 187.430764][ T7859] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 187.447824][ T7859] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 187.450179][ T27] audit: type=1326 audit(187.250:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7924 comm="syz.1.1066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 187.459710][ T27] audit: type=1326 audit(187.250:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7924 comm="syz.1.1066" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 187.600783][ T7942] loop4: detected capacity change from 0 to 512 [ 187.669552][ T7942] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 187.671734][ T7942] System zones: 0-2, 18-18, 34-35 [ 187.693042][ T7942] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 187.709859][ T7946] loop0: detected capacity change from 0 to 164 [ 187.914327][ T4304] EXT4-fs (loop4): unmounting filesystem. [ 187.940072][ T7968] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.018137][ T7968] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.081519][ T7968] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.106469][ T7975] device veth15 entered promiscuous mode [ 188.127874][ T7968] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.197055][ T7983] loop4: detected capacity change from 0 to 128 [ 188.309571][ T7968] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.318984][ T7968] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.322422][ T7988] syz.4.1092: attempt to access beyond end of device [ 188.322422][ T7988] loop4: rw=2049, sector=145, nr_sectors = 392 limit=128 [ 188.352754][ T7968] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.366949][ T7968] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.390381][ T7983] syz.4.1092: attempt to access beyond end of device [ 188.390381][ T7983] loop4: rw=524288, sector=145, nr_sectors = 392 limit=128 [ 188.415267][ T7992] loop2: detected capacity change from 0 to 512 [ 188.479967][ T7992] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 188.483077][ T7996] loop0: detected capacity change from 0 to 512 [ 188.538346][ T7996] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 188.540699][ T7996] System zones: 0-2, 18-18, 34-35 [ 188.545718][ T7996] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 188.549561][ T4305] EXT4-fs (loop2): unmounting filesystem. [ 188.601721][ T8004] 9pnet_fd: Insufficient options for proto=fd [ 188.706831][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 188.782841][ T8011] device veth11 entered promiscuous mode [ 189.030599][ T8030] 9pnet_fd: Insufficient options for proto=fd [ 189.088144][ T8023] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.213504][ T8038] loop0: detected capacity change from 0 to 512 [ 189.227364][ T8038] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 189.229558][ T8038] System zones: 0-2, 18-18, 34-35 [ 189.232304][ T8038] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 189.298555][ T8023] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.305508][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 189.458346][ T8023] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 189.523308][ T8054] 9pnet_fd: Insufficient options for proto=fd [ 189.538399][ T8050] device veth11 entered promiscuous mode [ 189.635841][ T8023] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 190.648026][ T8067] loop0: detected capacity change from 0 to 512 [ 190.712225][ T8067] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 190.715903][ T8067] System zones: 0-2, 18-18, 34-35 [ 190.718477][ T8067] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 190.751263][ T8023] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.782826][ T8023] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.794732][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 190.798929][ T8023] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.804978][ T8023] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.915665][ T8079] capability: warning: `syz.2.1132' uses 32-bit capabilities (legacy support in use) [ 190.993059][ T8084] 9pnet_fd: Insufficient options for proto=fd [ 191.023589][ T8087] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1136'. [ 191.097041][ T8087] device veth11 entered promiscuous mode [ 191.127605][ T8094] loop3: detected capacity change from 0 to 256 [ 191.273176][ T8099] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.347844][ T8099] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.388880][ T8099] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.453581][ T8099] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.596410][ T8113] 9pnet_fd: Insufficient options for proto=fd [ 191.713159][ T8095] loop1: detected capacity change from 0 to 32768 [ 191.769138][ T8095] XFS (loop1): Mounting V5 Filesystem [ 191.812444][ T8117] netlink: 'syz.4.1144': attribute type 10 has an invalid length. [ 191.868882][ T8117] 8021q: adding VLAN 0 to HW filter on device team0 [ 191.875871][ T6167] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:a8aa:aaff:feaa:aa17 error=-28 [ 191.881961][ T8117] bond0: (slave team0): Enslaving as an active interface with an up link [ 191.887088][ T8095] XFS (loop1): Ending clean mount [ 191.898498][ T8095] XFS (loop1): Quotacheck needed: Please wait. [ 191.898612][ T8131] netlink: 'syz.4.1144': attribute type 10 has an invalid length. [ 191.920326][ T8131] bond0: (slave team0): Releasing backup interface [ 191.930545][ T8095] XFS (loop1): Quotacheck: Done. [ 191.947270][ T8131] bridge0: port 3(team0) entered blocking state [ 191.961573][ T8131] bridge0: port 3(team0) entered disabled state [ 191.974316][ T8131] device team0 entered promiscuous mode [ 191.976075][ T8131] device team_slave_0 entered promiscuous mode [ 191.981127][ T8131] device team_slave_1 entered promiscuous mode [ 191.998385][ T4299] XFS (loop1): Unmounting Filesystem [ 192.343761][ T8144] 9pnet_fd: Insufficient options for proto=fd [ 192.494515][ T8154] loop3: detected capacity change from 0 to 256 [ 192.505006][ T8153] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1154'. [ 192.532063][ T8153] device veth11 entered promiscuous mode [ 193.151092][ T8180] 9pnet_fd: Insufficient options for proto=fd [ 193.705307][ T8197] loop3: detected capacity change from 0 to 128 [ 193.772964][ T8197] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 193.899666][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 194.045241][ T8205] 9pnet_fd: Insufficient options for proto=fd [ 195.385403][ T8230] 9pnet_fd: Insufficient options for proto=fd [ 195.453420][ T8236] loop3: detected capacity change from 0 to 512 [ 195.519170][ T8243] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1199'. [ 195.553286][ T8236] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 195.601658][ T8236] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm syz.3.1198: corrupted inode contents [ 195.607735][ T8243] device veth11 entered promiscuous mode [ 195.626321][ T8236] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #2: comm syz.3.1198: mark_inode_dirty error [ 195.641950][ T8236] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm syz.3.1198: corrupted inode contents [ 195.682914][ T8236] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm syz.3.1198: corrupted inode contents [ 195.720689][ T8251] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1205'. [ 195.732692][ T8236] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #2: comm syz.3.1198: mark_inode_dirty error [ 195.845846][ T8236] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm syz.3.1198: corrupted inode contents [ 195.864231][ T8236] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.1198: mark_inode_dirty error [ 195.867715][ T8236] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #2: comm syz.3.1198: corrupted inode contents [ 195.901827][ T8236] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #2: comm syz.3.1198: mark_inode_dirty error [ 196.273537][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 196.708852][ T8263] 9pnet_fd: Insufficient options for proto=fd [ 196.837334][ T8270] netem: change failed [ 196.905235][ T8273] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22 [ 196.907427][ T8273] netdevsim netdevsim0: Direct firmware load for . failed with error -22 [ 196.909548][ T8273] netdevsim netdevsim0: Falling back to sysfs fallback for: . [ 196.995055][ T8279] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1217'. [ 197.081375][ T8099] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.100855][ T8099] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.120377][ T8099] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.141925][ T8099] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 197.230681][ T8271] serio: Serial port ptm0 [ 197.254039][ T8288] 9pnet_fd: Insufficient options for proto=fd [ 198.252893][ T8302] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1225'. [ 198.311778][ T8297] device veth15 entered promiscuous mode [ 198.360480][ T8307] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1229'. [ 198.385353][ T8305] loop0: detected capacity change from 0 to 1024 [ 198.418081][ T8305] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 198.599665][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 198.910360][ T27] kauditd_printk_skb: 88 callbacks suppressed [ 198.910374][ T27] audit: type=1326 audit(198.860:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8326 comm="syz.0.1236" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 198.923273][ T27] audit: type=1326 audit(198.860:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8326 comm="syz.0.1236" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 198.953502][ T27] audit: type=1326 audit(198.860:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8326 comm="syz.0.1236" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 198.969243][ T27] audit: type=1326 audit(198.860:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8326 comm="syz.0.1236" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 198.994611][ T27] audit: type=1326 audit(198.880:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8326 comm="syz.0.1236" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 199.002693][ T27] audit: type=1326 audit(198.880:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8326 comm="syz.0.1236" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 199.025420][ T27] audit: type=1326 audit(198.880:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8326 comm="syz.0.1236" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 199.030856][ T27] audit: type=1326 audit(198.890:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8326 comm="syz.0.1236" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=220 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 199.048820][ T27] audit: type=1326 audit(198.930:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8326 comm="syz.0.1236" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 199.064978][ T27] audit: type=1326 audit(198.930:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8326 comm="syz.0.1236" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb3f59a68 code=0x7ffc0000 [ 199.112343][ T8340] loop3: detected capacity change from 0 to 2048 [ 199.153404][ T8340] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 199.968325][ T8345] loop1: detected capacity change from 0 to 1024 [ 199.994788][ T8340] EXT4-fs error (device loop3): ext4_find_extent:936: inode #2: comm syz.3.1240: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 200.099900][ T8345] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 200.142842][ T8345] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 200.161130][ T8345] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28 [ 200.199640][ T8345] EXT4-fs (loop1): This should not happen!! Data will be lost [ 200.199640][ T8345] [ 200.202231][ T8345] EXT4-fs (loop1): Total free blocks count 0 [ 200.203756][ T8345] EXT4-fs (loop1): Free/Dirty block details [ 200.206268][ T8345] EXT4-fs (loop1): free_blocks=4293918720 [ 200.207616][ T8345] EXT4-fs (loop1): dirty_blocks=16 [ 200.208775][ T8345] EXT4-fs (loop1): Block reservation details [ 200.210325][ T8345] EXT4-fs (loop1): i_reserved_data_blocks=1 [ 200.245789][ T8357] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1246'. [ 200.252206][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 200.349573][ T8364] usb usb2: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 200.351571][ T8364] vhci_hcd: default hub control req: 6011 v8001 i0001 l0 [ 200.443641][ T4299] EXT4-fs (loop1): unmounting filesystem. [ 200.447063][ T8368] loop0: detected capacity change from 0 to 512 [ 200.542434][ T8368] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 200.556089][ T8368] System zones: 0-2, 18-18, 34-35 [ 200.569002][ T8368] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 201.614302][ T8390] loop3: detected capacity change from 0 to 128 [ 201.614565][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 201.645439][ T8388] loop2: detected capacity change from 0 to 2048 [ 201.783888][ T8402] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1265'. [ 201.792938][ T8402] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1265'. [ 201.851033][ T8388] EXT4-fs (loop2): bad block size 8192 [ 202.124856][ T8413] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1268'. [ 202.169923][ T8415] loop0: detected capacity change from 0 to 512 [ 202.192629][ T8415] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 202.195045][ T8415] System zones: 0-2, 18-18, 34-35 [ 202.226785][ T8415] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 202.266296][ T8425] IPv6: NLM_F_CREATE should be specified when creating new route [ 203.221613][ T8432] loop1: detected capacity change from 0 to 1024 [ 203.268361][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 203.287809][ T8432] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 203.290588][ T8432] EXT4-fs (loop1): orphan cleanup on readonly fs [ 203.308389][ T8432] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 203.371200][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.372925][ T8432] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #3: comm syz.1.1274: mark_inode_dirty error [ 203.382146][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.412337][ T8432] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.1274: Invalid block bitmap block 3 in block_group 0 [ 203.451894][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.479302][ T8432] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 203.499222][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.500898][ T8432] EXT4-fs error (device loop1): ext4_dirty_inode:6089: inode #3: comm syz.1.1274: mark_inode_dirty error [ 203.522157][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.524963][ T8432] EXT4-fs error (device loop1): ext4_map_blocks:634: inode #3: block 1: comm syz.1.1274: lblock 6 mapped to illegal pblock 1 (length 1) [ 203.550282][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.552010][ T8432] EXT4-fs error (device loop1): ext4_map_blocks:634: inode #3: block 48: comm syz.1.1274: lblock 0 mapped to illegal pblock 48 (length 1) [ 203.581566][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.583242][ T8432] EXT4-fs error (device loop1): ext4_acquire_dquot:6795: comm syz.1.1274: Failed to acquire dquot type 0 [ 203.587295][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.588983][ T8432] EXT4-fs error (device loop1): ext4_map_blocks:634: inode #3: block 49: comm syz.1.1274: lblock 1 mapped to illegal pblock 49 (length 1) [ 203.610980][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.612721][ T8432] EXT4-fs error (device loop1): ext4_acquire_dquot:6795: comm syz.1.1274: Failed to acquire dquot type 0 [ 203.631009][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.633024][ T8432] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 203.647649][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.649581][ T8432] EXT4-fs error (device loop1): ext4_evict_inode:279: inode #15: comm syz.1.1274: mark_inode_dirty error [ 203.662943][ T8432] EXT4-fs (loop1): Remounting filesystem read-only [ 203.665481][ T8432] EXT4-fs warning (device loop1): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 203.668043][ T8432] EXT4-fs (loop1): 1 orphan inode deleted [ 203.669595][ T8432] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 203.743553][ T8457] loop0: detected capacity change from 0 to 512 [ 203.786943][ T8457] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 203.815533][ T8463] loop3: detected capacity change from 0 to 512 [ 203.858355][ T4299] EXT4-fs (loop1): unmounting filesystem. [ 203.892575][ T8463] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 203.898281][ T8463] System zones: 0-2, 18-18, 34-35 [ 203.901358][ T8463] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 203.909223][ T4306] EXT4-fs (loop0): unmounting filesystem. [ 204.076672][ T4307] EXT4-fs (loop3): unmounting filesystem. [ 204.402305][ T8476] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1289'. [ 205.139261][ T27] kauditd_printk_skb: 35 callbacks suppressed [ 205.139275][ T27] audit: type=1326 audit(205.090:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8479 comm="syz.1.1294" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 205.152482][ T27] audit: type=1326 audit(205.090:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8479 comm="syz.1.1294" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=92 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 205.179177][ T27] audit: type=1326 audit(205.090:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8479 comm="syz.1.1294" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffaad59a68 code=0x7ffc0000 [ 205.380294][ T8496] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1297'. [ 205.393280][ T8495] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1298'. [ 205.402080][ T8496] bond0: (slave bond_slave_0): Slave does not support ipsec offload [ 206.262782][ T8501] loop4: detected capacity change from 0 to 512 [ 206.339404][ T8501] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 206.341489][ T8501] System zones: 0-2, 18-18, 34-35 [ 206.411846][ T8501] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 206.535799][ T8518] loop3: detected capacity change from 0 to 2048 [ 207.356545][ T8518] loop3: p1 < > p4 [ 207.363659][ T8518] loop3: p4 size 8388608 extends beyond EOD, truncated [ 207.413343][ T3911] loop3: p1 < > p4 [ 207.430942][ T3911] loop3: p4 size 8388608 extends beyond EOD, truncated [ 207.441678][ T4304] EXT4-fs (loop4): unmounting filesystem. [ 207.554805][ T8017] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 207.604059][ T8017] udevd[8017]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 207.649955][ T7962] udevd[7962]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 207.747152][ T8542] bridge0: port 4(ipvlan2) entered blocking state [ 207.749073][ T8542] bridge0: port 4(ipvlan2) entered disabled state [ 207.773404][ T7962] udevd[7962]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 207.806325][ T8017] udevd[8017]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 207.860614][ T8550] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 207.862996][ T8550] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 207.959335][ T27] audit: type=1326 audit(207.910:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8555 comm="syz.3.1318" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 208.004007][ T27] audit: type=1326 audit(207.960:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8555 comm="syz.3.1318" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 208.010472][ T27] audit: type=1326 audit(207.960:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8555 comm="syz.3.1318" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 208.034021][ T27] audit: type=1326 audit(207.960:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8555 comm="syz.3.1318" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 208.039430][ T27] audit: type=1326 audit(207.960:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8555 comm="syz.3.1318" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 208.094096][ T27] audit: type=1326 audit(207.980:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8555 comm="syz.3.1318" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 208.119850][ T27] audit: type=1326 audit(207.980:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8555 comm="syz.3.1318" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8e159a68 code=0x7ffc0000 [ 208.173532][ T8562] loop0: detected capacity change from 0 to 512 [ 208.189431][ T8551] loop1: detected capacity change from 0 to 8192 [ 209.030505][ T8567] ------------[ cut here ]------------ [ 209.032209][ T8567] kernel BUG at fs/buffer.c:2666! [ 209.033630][ T8567] Internal error: Oops - BUG: 00000000f2000800 [#1] PREEMPT SMP [ 209.035589][ T8567] Modules linked in: [ 209.036544][ T8567] CPU: 0 PID: 8567 Comm: kmmpd-loop0 Not tainted 6.1.128-syzkaller #0 [ 209.038655][ T8567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 209.041349][ T8567] pstate: 80400005 (Nzcv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 209.043446][ T8567] pc : submit_bh_wbc+0x3f4/0x468 [ 209.044842][ T8567] lr : submit_bh_wbc+0x3f4/0x468 [ 209.046174][ T8567] sp : ffff800021a67b10 [ 209.047362][ T8567] x29: ffff800021a67b20 x28: 1fffe0001edc4472 x27: dfff800000000000 [ 209.049661][ T8567] x26: 1ffff0000434cf74 x25: 0000000000000000 x24: 1fffe0001e88c43a [ 209.051791][ T8567] x23: 1fffe0001edc44cf x22: ffff0000f6e24000 x21: 0000000000003801 [ 209.054001][ T8567] x20: ffff0000f44621d0 x19: 0000000000000005 x18: 0000000000000140 [ 209.056224][ T8567] x17: ffff80019e2fc000 x16: ffff8000082ffa9c x15: 0000000000010000 [ 209.058495][ T8567] x14: 1ffff00002b520b2 x13: dfff800000000000 x12: 0000000000000001 [ 209.060663][ T8567] x11: 0000000000ff0100 x10: 0000000000000000 x9 : ffff800008b3a6a0 [ 209.062938][ T8567] x8 : ffff0000d4ba8000 x7 : ffff800008eaebe8 x6 : 0000000000000000 [ 209.065017][ T8567] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff800008eae6b0 [ 209.067179][ T8567] x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000 [ 209.069333][ T8567] Call trace: [ 209.070169][ T8567] submit_bh_wbc+0x3f4/0x468 [ 209.071409][ T8567] submit_bh+0x2c/0x3c [ 209.072459][ T8567] write_mmp_block_thawed+0x340/0x52c [ 209.073867][ T8567] write_mmp_block+0x23c/0x734 [ 209.075125][ T8567] kmmpd+0x330/0x9f8 [ 209.076145][ T8567] kthread+0x250/0x2d8 [ 209.077186][ T8567] ret_from_fork+0x10/0x20 [ 209.078293][ T8567] Code: 17ffffad 97e6e282 d4210000 97e6e280 (d4210000) [ 209.080111][ T8567] ---[ end trace 0000000000000000 ]--- [ 209.159782][ T8573] can0: slcan on ttyS3. [ 209.218183][ T8577] Invalid ELF header magic: != ELF [ 209.691722][ T8567] Kernel panic - not syncing: Oops - BUG: Fatal exception [ 209.693726][ T8567] SMP: stopping secondary CPUs [ 209.695049][ T8567] Kernel Offset: disabled [ 209.696240][ T8567] CPU features: 0x080000,02070084,26017203 [ 209.697725][ T8567] Memory Limit: none [ 210.292354][ T8567] Rebooting in 86400 seconds..