last executing test programs: 5m16.900271613s ago: executing program 3 (id=78): r0 = socket$inet6(0xa, 0x6, 0x0) r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r2}, 0x10) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r3}, &(0x7f0000000040), &(0x7f0000000280)='%pS \x00'}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r4}, 0x10) listen(r0, 0x3) 5m14.840314206s ago: executing program 3 (id=86): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x2a8) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000f40), 0x1, 0x503, &(0x7f0000000880)="$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") r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f00000002c0)={0x0, 0x2904c, 0x1, 0x10003, '\x00', [{0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, {0xffffffff}], ['\x00']}) 5m12.760535294s ago: executing program 3 (id=90): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffee7) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1eb481, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000300)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001000000000000000000000000000000000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d683910c3090b3188a7c747eb2278a273c1b8002944291189"], 0xfdef) timer_create(0x6, 0x0, &(0x7f0000044000)=0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x9, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b7030000000000de850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r3, 0x0, 0x14}, 0x18) rt_sigtimedwait(0x0, 0x0, 0x0, 0x0) timer_gettime(r2, &(0x7f0000000380)) timer_settime(r2, 0x1, &(0x7f0000000100), &(0x7f0000000280)) r4 = add_key$user(&(0x7f0000000440), &(0x7f0000000480)={'syz', 0x1}, &(0x7f00000004c0)="c552", 0x2, 0x0) keyctl$search(0xa, r4, &(0x7f0000000e40)='encrypted\x00', &(0x7f0000000e80)={'syz', 0x0}, 0x0) r5 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0) preadv(r5, &(0x7f00000002c0)=[{&(0x7f0000000280)=""/8, 0x8}], 0x1, 0x0, 0x0) r6 = socket$qrtr(0x2a, 0x2, 0x0) connect$qrtr(r6, &(0x7f0000000040)={0x2a, 0xffffffff, 0xfffffffe}, 0xc) write(r6, 0x0, 0x0) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f00000003c0), 0x5}, 0x38) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r7 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0) ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, &(0x7f0000000000)=0x6) ioctl$PPPIOCSPASS(r7, 0x40107447, &(0x7f0000000140)={0x2, &(0x7f0000000440)=[{0x48, 0x0, 0x34, 0x5}, {0x6, 0x0, 0x0, 0x80000}]}) write$ppp(r7, &(0x7f0000000380)="1e001840b2", 0x5) openat$autofs(0xffffffffffffff9c, &(0x7f0000000200), 0x800, 0x0) r8 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) getdents64(r8, &(0x7f0000000240)=""/36, 0x24) 5m11.372491673s ago: executing program 3 (id=100): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18060000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000080)='sys_enter\x00', r0}, 0x10) io_pgetevents(0x0, 0x3, 0x0, 0x0, 0x0, 0x0) 5m10.420559987s ago: executing program 3 (id=102): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) umount2(&(0x7f00000002c0)='./file0/../file0/../file0\x00', 0x9) 5m8.864422578s ago: executing program 3 (id=106): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_open_dev$usbfs(0x0, 0x73, 0x101301) socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 4m52.480387106s ago: executing program 32 (id=106): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_open_dev$usbfs(0x0, 0x73, 0x101301) socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 4.668302492s ago: executing program 1 (id=1154): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000000280)={@val={0x1c, 0x800}, @val={0x1, 0x0, 0x0, 0x0, 0x3d}, @mpls={[], @ipv4=@tcp={{0x5, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x84, 0x0, @empty=0x3fffffff, @local}, {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x2, 0xb, 0x2, 0x0, 0x0, 0x1c, {[@window={0xa, 0x3}, @timestamp={0x5, 0xa}, @generic={0x0, 0x8, "d58838068b91"}]}}}}}}, 0x4e) 4.198710597s ago: executing program 0 (id=1156): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r1) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) r2 = syz_open_procfs(r0, &(0x7f0000000040)='smaps\x00') preadv(r2, &(0x7f0000000440)=[{&(0x7f00000019c0)=""/4096, 0x1000}], 0x1, 0x1e, 0x20704513) 4.110019814s ago: executing program 5 (id=1158): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000a00)=@newtaction={0x88c, 0x30, 0x12f, 0x4000, 0x0, {}, [{0x878, 0x1, [@m_police={0x874, 0x1, 0x0, 0x0, {{0xb}, {0x848, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x4, 0x7c3, 0x2, 0x3, 0xffffff81, 0x10, 0xc, 0x2, 0x3, 0x40, 0x200, 0x8, 0x9, 0x6, 0x5, 0xaa21, 0x8, 0xc, 0x6, 0x200, 0x1, 0x4, 0xcc37, 0x5, 0xb5, 0x649f, 0x4, 0x0, 0x4, 0xfb1, 0x72a4, 0xd, 0x7fff, 0x5, 0x3, 0x0, 0x3, 0x7, 0x28d, 0x4, 0xc, 0x0, 0xaf, 0x1, 0x6, 0x5, 0xfffffffd, 0x5, 0x80, 0xe, 0x2, 0x7, 0x6, 0x7, 0x1991, 0x8, 0xfffffe29, 0x5, 0x3, 0x101, 0xfff, 0x4, 0x5, 0x8000, 0x4, 0x7, 0x3, 0x0, 0xfffffff3, 0x1, 0x9, 0x80020001, 0x2, 0x3, 0x5, 0x101, 0x1, 0xfffffffc, 0x6, 0xfffffffb, 0x200, 0x1, 0x7329, 0x6, 0x3, 0x100, 0x2, 0x7, 0x6d3, 0x224, 0x7ff, 0x0, 0x6, 0x7, 0xfffff001, 0x6, 0x7ed8, 0x3, 0xffff, 0x0, 0x5, 0x249, 0x5, 0x2fbf, 0x2, 0x8000, 0x7, 0x25fe9fd5, 0x1, 0x9, 0x1, 0xe, 0x9, 0x0, 0x3, 0x4f, 0xffffffff, 0x8, 0x1, 0x119203c5, 0xd0, 0x7, 0x80000001, 0x3226, 0x8, 0x3, 0x4, 0xc64f, 0xffffff6d, 0x5, 0x6, 0x6, 0xfffffff7, 0x6, 0x7, 0x5, 0xc, 0xe, 0x7, 0x200, 0x60459141, 0x1, 0x5, 0x6, 0x84, 0x0, 0x1, 0x5, 0x2, 0x29dc, 0x0, 0x2d5, 0x7, 0xfffffffa, 0x1000, 0x6, 0x94, 0x15a, 0x4, 0x6, 0x2, 0x4002, 0x2, 0x4, 0xfff, 0x5, 0x1, 0x3, 0x3, 0x80, 0x7a5b054a, 0x8, 0xffffff80, 0x4b1, 0xfff, 0x3, 0xb, 0x8, 0x3, 0x4, 0x2, 0x6, 0xf, 0x2, 0x7, 0x1, 0x77, 0x9, 0x274d, 0x6, 0x40, 0xfffffffe, 0xb, 0x7, 0x1, 0x9ab, 0x7, 0xffffffc0, 0x200, 0x8, 0x3c, 0x2c7, 0x7, 0x8, 0x4, 0x0, 0x99f, 0x5, 0x7ff, 0x6, 0x31e1, 0x4, 0x4, 0xb, 0x7ff, 0x1e, 0x3, 0xe49, 0x56, 0x9, 0x1, 0x6, 0x2, 0x6a1c, 0x9, 0x8, 0x4dbda2da, 0x7fff, 0x5, 0x5, 0x0, 0x7, 0x4, 0x7fff, 0xed, 0x7fff, 0x1000, 0xcbe, 0x7ff, 0x6, 0x8, 0xb, 0xff, 0x5, 0x0, 0x7, 0x9, 0x0, 0x8, 0x5, 0x4, 0xfffffffd, 0x2, 0xeffe, 0xef4, 0xfffffffa]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x6, 0x3a40da20, 0x9, 0x6, 0x4, 0x8000, 0x7fffffff, 0x2, 0x1, 0x7fff, 0x86, 0x10000, 0x2, 0x40, 0x2, 0x99d, 0x6, 0xffffff92, 0xe9c, 0x3ff, 0x3, 0x10001, 0xa, 0xfffff000, 0x7f, 0x5, 0x0, 0x81, 0x6f0, 0x18e, 0x8, 0x4, 0x3, 0x4, 0x2, 0xffffffff, 0x0, 0x80000000, 0x3, 0x9, 0x10000, 0x2, 0xd, 0x3, 0x5, 0x1, 0x4, 0x8, 0x7, 0x2, 0xd92b, 0x7fffffff, 0x3, 0x90, 0xc0, 0x5b, 0x1, 0x48000, 0x40, 0x5, 0x1000, 0x3, 0x10, 0x0, 0x5, 0x4, 0x6, 0x100, 0xf3, 0x1, 0xa92, 0x0, 0x6, 0x7, 0x0, 0x8, 0x8, 0x10000, 0x3, 0x3, 0x0, 0xa, 0x5, 0x1, 0xee7e, 0x800, 0xd1, 0x7fff, 0x1, 0x4, 0x5, 0x4, 0xffffff89, 0x7, 0xfffffff3, 0x2, 0x2, 0x9, 0x5, 0x2, 0x101, 0x7fffffff, 0xfffff001, 0x64, 0x4, 0xffffffff, 0x5, 0x9, 0x1, 0x0, 0xb3e, 0x8, 0x3, 0x401, 0x401, 0xb, 0x8, 0x2, 0xb, 0x0, 0x0, 0x9, 0xffffffff, 0x25f, 0x7, 0x5, 0x0, 0x9, 0xfffffff9, 0x3, 0xe2, 0x8, 0x1, 0x8, 0x9, 0x0, 0x9, 0x2, 0x1, 0x9, 0x80, 0x5, 0xd3c3, 0x5, 0x2, 0x1, 0x472a8800, 0xc, 0xfffffff0, 0xfffffff8, 0x9, 0x8, 0xfffffffc, 0x9, 0x5, 0x9, 0x5, 0x6, 0x6, 0x7, 0x87f, 0x59, 0x4fedcacd, 0x1, 0x4, 0x7f, 0x2, 0x7, 0x5, 0xfff, 0x3828, 0x0, 0x1, 0x7, 0x401, 0x7f, 0x4, 0x7, 0x2120, 0xfffffffb, 0x80, 0x3, 0xdbff, 0x52b6, 0xfffffffa, 0x49, 0x70, 0x0, 0xe1, 0x401, 0x631, 0x101, 0x3ff, 0x101, 0x0, 0x7ffe, 0x80000000, 0x100003, 0xfffffff7, 0x3, 0x1, 0x7514, 0x7, 0x3, 0x1, 0x4, 0x2, 0x9, 0x4, 0x10000, 0x3ff, 0x0, 0x100, 0x7ef2, 0x0, 0x1, 0xe, 0xd, 0x4, 0x6, 0x8, 0x4, 0x10001, 0x6, 0x400, 0x436, 0x3, 0x202, 0x0, 0xffff76a6, 0x0, 0xbc, 0xa8, 0x0, 0x6, 0x6, 0x1, 0x81, 0x3, 0x2, 0x3, 0x4, 0x6, 0x2445c87b, 0x6, 0xd, 0x9, 0x2, 0x10, 0x4, 0x7, 0x57, 0x5, 0xd, 0x1000, 0x3]}], [@TCA_POLICE_TBF={0x3c, 0x1, {0x400, 0x8, 0x3, 0x7b2, 0x400, {0x1, 0x2, 0x8, 0x624, 0x0, 0xfffffff8}, {0x9, 0x2, 0x7, 0x7ff, 0xff01, 0x4}, 0x6, 0x4, 0x923}}]]}, {0x4}, {0xc, 0xb, {0x0, 0x1}}, {0xc, 0xa}}}]}]}, 0x88c}}, 0x0) 3.649152752s ago: executing program 0 (id=1160): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00', r0}, 0x10) sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8}, 0xc, 0xfffffffffffffffc}, 0x0) r1 = getpid() setreuid(0xee00, 0x0) syz_pidfd_open(r1, 0x0) syz_clone3(&(0x7f00000008c0)={0x10860000, 0x0, 0x0, 0x0, {0x28}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r1], 0x1}, 0x58) 3.555701415s ago: executing program 4 (id=1161): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r0, 0x0, 0x0) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000280), 0x14) write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0'}, 0xb) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000500)=@gcm_256={{0x303}, "2a4001011f891d5b", "11682d84dd05bb63ae661f051e1e79ceafeaa60a5bd1dc83db142ade2bd907fd", "fd6ed24e", "d4e9e1c90d89691c"}, 0x38) 3.316690438s ago: executing program 2 (id=1162): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet(r0, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x10, 0x0}}], 0x2, 0x0) 3.31645548s ago: executing program 4 (id=1163): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) sendmsg$inet6(r0, &(0x7f0000000200)={&(0x7f0000000180)={0xa, 0x4e24, 0x70f, @private1, 0x6}, 0x1c, &(0x7f00000001c0)=[{&(0x7f00000003c0)="61b2", 0x2}], 0x1, &(0x7f0000000580)=ANY=[], 0x100}, 0x20000000) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty}], 0x1c) 3.210401912s ago: executing program 1 (id=1164): bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[], 0x50) r0 = openat$pidfd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 2.97097264s ago: executing program 4 (id=1165): r0 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00', @ANYRES16=r1, @ANYBLOB="01030000000000000000010000000800070000000000080003"], 0x30}}, 0x0) 2.910336083s ago: executing program 0 (id=1166): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) r2 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}]}, &(0x7f0000000180)=0x10) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000300)=0x8) getsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x7d, &(0x7f0000001080)={r3, 0x7}, &(0x7f00000010c0)=0x8) 2.907655866s ago: executing program 5 (id=1167): sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_generic(0x11, 0x3, 0x10) sendmsg(r0, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r1, 0x0, &(0x7f0000001700)=""/53}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) r3 = socket$xdp(0x2c, 0x3, 0x0) getsockopt$XDP_STATISTICS(r3, 0x11b, 0x7, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x20050800) close(0xffffffffffffffff) bpf$MAP_CREATE(0x0, &(0x7f0000003940)=@base={0x21, 0x0, 0x0, 0x100000, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2000000, 0x0, 0x200000000000000, @void, @value, @void, @value}, 0x48) 2.60864774s ago: executing program 1 (id=1168): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f0000000140)={[{@jqfmt_vfsv1}, {}, {@barrier_val}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@orlov}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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") chdir(&(0x7f0000000240)='./file0\x00') creat(&(0x7f0000000240)='./bus\x00', 0x0) r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r0, 0x0, 0x0) 2.558678866s ago: executing program 2 (id=1169): r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10) sendmsg$rds(r0, &(0x7f0000000680)={&(0x7f00000000c0)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r0, 0x114, 0x1, &(0x7f0000000100)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) 2.405378126s ago: executing program 4 (id=1170): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00') fchdir(r1) mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0) r2 = syz_open_procfs(r0, &(0x7f0000000040)='smaps\x00') preadv(r2, &(0x7f0000000440)=[{&(0x7f00000019c0)=""/4096, 0x1000}], 0x1, 0x1e, 0x20704513) 2.16717469s ago: executing program 5 (id=1171): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = socket(0x11, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00', 0x0}) bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev}, 0x14) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4) sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="02011400012918000e3580009f0001140060ff840600ac141414e0000003808a8972bd0b72e41082b1a3d206"], 0xdd12}], 0x1}, 0x0) 1.996498922s ago: executing program 2 (id=1172): r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0a000000050000000400000006"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000000702"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10) write$binfmt_elf64(r0, &(0x7f0000001300)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0x28, 0x8, 0x0, 0x5, 0x0, 0x3e, 0xf, 0x20b, 0x40, 0x343, 0x2, 0x2, 0x38, 0x1, 0x1, 0x8, 0x2}, [{0x0, 0x5, 0xffffffffffffffff, 0x9, 0x1, 0xd329686, 0xfffffffffffffffa, 0x8}], "", ['\x00', '\x00', '\x00', '\x00']}, 0x478) r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x12, r3, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r4, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1f, 0x1}}, 0x3c) 1.539619935s ago: executing program 0 (id=1173): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x18) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {0x35, 0x0, 0x5}, {}, {}, {}, {}, {}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x0) 1.480461373s ago: executing program 1 (id=1174): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc) connect$inet6(r0, 0x0, 0x0) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000002c0), 0x4) setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000280), 0x14) write$binfmt_script(r0, &(0x7f00000000c0)={'#! ', './file0'}, 0xb) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000500)=@gcm_256={{0x303}, "2a4001011f891d5b", "11682d84dd05bb63ae661f051e1e79ceafeaa60a5bd1dc83db142ade2bd907fd", "fd6ed24e", "d4e9e1c90d89691c"}, 0x38) 1.457785763s ago: executing program 2 (id=1175): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) sendmsg$inet6(r0, &(0x7f0000000200)={&(0x7f0000000180)={0xa, 0x4e24, 0x70f, @private1, 0x6}, 0x1c, &(0x7f00000001c0)=[{&(0x7f00000003c0)="61b2", 0x2}], 0x1, &(0x7f0000000580)=ANY=[], 0x100}, 0x20000000) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @empty}], 0x1c) 1.432241592s ago: executing program 5 (id=1176): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000400)='kfree\x00', r0}, 0x10) sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x8}, 0xc, 0xfffffffffffffffc}, 0x0) r1 = getpid() setreuid(0xee00, 0x0) syz_pidfd_open(r1, 0x0) syz_clone3(&(0x7f00000008c0)={0x10860000, 0x0, 0x0, 0x0, {0x28}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r1], 0x1}, 0x58) 1.227973352s ago: executing program 4 (id=1177): unshare(0x22020600) add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001400b59500000000000000000a000000", @ANYRES32, @ANYBLOB="140001"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x80) sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x28, 0x0, 0x301, 0x0, 0x0, {{0x32}, {@void, @val={0xc}}}, [@chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5}]]}, 0x28}}, 0x0) syz_clone(0x10eb22b000, 0x0, 0x0, 0x0, 0x0, 0x0) 936.26814ms ago: executing program 0 (id=1178): r0 = socket(0x22, 0x2, 0x4) bind$netlink(r0, 0x0, 0x0) 936.056663ms ago: executing program 2 (id=1179): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x4, 0x4, 0x4, 0xff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000003c0)={'netdevsim0\x00', 0x0}) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000680)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200eef7ffffffb7030000feffffffb704000000000000850000000700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 852.091242ms ago: executing program 5 (id=1180): r0 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) sendmsg$NL80211_CMD_GET_WIPHY(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00\x00', @ANYRES16=r1, @ANYBLOB="01030000000000000000010000000800070000000000080003"], 0x30}}, 0x0) 751.415862ms ago: executing program 1 (id=1181): sendto$packet(0xffffffffffffffff, &(0x7f0000000180)="02030c65be4002000000ab5d71acedd7c9560385dcb1080084d7dc03", 0x1c, 0x0, 0x0, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'geneve0\x00', 0x0}) sendto$packet(r1, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x11, 0x0, r2}, 0x14) 369.39259ms ago: executing program 2 (id=1182): r0 = socket$packet(0x11, 0x3, 0x300) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'hsr0\x00', 0x0}) sendto$packet(r1, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x11, 0x8100, r2, 0x1, 0x1, 0x6, @multicast}, 0x14) 304.22903ms ago: executing program 0 (id=1183): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000440)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_MESH(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000880)=ANY=[@ANYBLOB=',\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000f000000050030000000000008000300", @ANYRES32=r2, @ANYBLOB="05002f"], 0x2c}}, 0x0) 304.020235ms ago: executing program 1 (id=1184): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0xfffffffffffffe8b, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file1\x00', 0x3014491, &(0x7f0000000100)={[{@nombcache}, {@usrjquota}, {@errors_remount}, {@norecovery}, {@abort}, {@mblk_io_submit}, {@nouid32}, {@data_writeback}, {@grpjquota}, {}]}, 0x45, 0x7d3, &(0x7f0000001140)="$eJzs3c9rHNcdAPDvrFY/7VYqlLYuFBYKrcF4Vbmq3UKhKj2UQg2G9tRDbbFaC0crrdGujCVEYhMCuQSSkFty8Tk/LyHX/IDkkvwfwcZJZBOHHILC7A9pJe/aK0Xaje3PB8Z6b+fNvPfdN/P2aWc8CuCJlUv/yUQci4gXk4jxxutJRAzWUtmImXq5exvrhXRJYnPzP18mtTJ3N9YL0bJN6kgj86uI+PC5iBOZ++utrK4tzJZKxeUd266unby0ODtfnC8unZ6anj515k9nTh9crF9/tnb01kv//P1bM98++8u3X/goiZk4msZXsx3HQclFrhHXYPoW7vCPg66sb959uotCmYjNzXoye9gNYg/SU3Og0SvHYjwGHtQ/o71sGQBwWJ6JdGbWwUDHNQDAIy2pf/7/rd/tAAB6pfk9wN2N9UJz6e83Er11++8RMVKPv3l9s74m27hmN1K7Djp2N9lxZSSJiIkDqD8XEa+99/830iV2XU8FOEzXrkfEhYncjvF/IGoj3O57FvbqD+1fnm/N5HatNP5B77yfzn/+3G7+l9ma/0Sb+c9wm3N3Px5+/mduHkA1HaXzv7+23Nt2ryX+homBRu4ntTnfYHLxUqmYjm0/jYjjMTic5qfqZdveIXP8znd3OtXfOv/76uWnXk/rT39ul8jczA7v3GZutjr7Q+Nuun094tfZdvGn4/9wrf+TDvPfc13W8a+/PP9qp3Vp/Gm8zeX++A/X5o2I37Xt/2SrTJqarC5enqy0uz9xsnY4TDYPijbemYmxTvXnstv9ny5p/c3fBXoh7f+xB8c/kbTer1npetdb58KnN8Y/6FSo9fhvH3/7438o+W8tPdR47epstbo8FTGU/Pv+109tb9vMN8un8R//bfvzvzn+tTn+/5fu/0KXb0T21hdv7j/+to50WfVDpfHP7an/95yIkXsLA/uPP+3/6R3bdDP+ddvA/b5vAAAAAAAAAAAAAAAAAAAAAAAAALAXmYg4Gkkmv5XOZPL5+gMGfx5jmVK5Uj1xsbyyNJeuqz3/NNN81OV4y/NQpxrPw2/mT+3K/zEifhYRrwyP1vL5Qrk01+/gAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKDhSIe//5/6fHhX4YF+tBAAOBQjPtgB4EmTZLP9bgIA0GsjXZfMRcToobYFAOiN7j//AYDHRefPfxcGAOBx9ZDf/3f/NwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADYq3Nnz6bL5jcb64U0P3dldWWhfOXkXLGykF9cKeQL5eXL+flyeb5UzBfKi5HtsKNr9R+lcvnydCytXJ2sFivVycrq2vnF8spS9fylxdn54vniYA9jAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBuVVbXFjbHS8XlNDFbkuhxYuGTej/8WNojsbdEXKv334Hu+ePTv/lFutO+BhhD26PEaF/GJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBHwfcBAAD//4gSH7A=") 3.831489ms ago: executing program 5 (id=1185): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000032500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000850000000f000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = socket(0x10, 0x2, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000c80)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94) syz_emit_ethernet(0x2a, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], 0x0) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x29, &(0x7f0000000000)='%', 0x0, 0xd01, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1100}, 0x48) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0xfe9b, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000d7c900000900000001000000", @ANYRES32, @ANYBLOB="0000000000000000d92000"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r3, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r3}, &(0x7f0000000580), &(0x7f00000005c0)=r2}, 0x20) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r3, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00'}, 0x10) r4 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff) add_key(0x0, 0x0, 0x0, 0x0, r4) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd) accept$unix(0xffffffffffffffff, &(0x7f00000004c0), &(0x7f0000000300)=0x6e) io_setup(0x0, &(0x7f0000000540)) bpf$PROG_LOAD(0x5, 0x0, 0x0) uname(&(0x7f0000000000)=""/48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000023ed0000180100002820702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000838500000071000000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000380)='./file0\x00', 0x22000011, &(0x7f0000000000)={[{@commit}, {@noblock_validity}, {@user_xattr}]}, 0x86, 0x48e, &(0x7f0000000400)="$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") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r5}, 0x10) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000006c0)=ANY=[@ANYBLOB="2c00000020000100000000000000000002002000030000feffffffff07000200ac1e0001050016a36797c992b4c0cb819247250ebba481d0e0d7bb734e6b72e5d8b514000000000000000000"], 0x2c}}, 0x0) r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents(r6, 0xfffffffffffffffd, 0xbb) 0s ago: executing program 4 (id=1186): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0xed4, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x11, &(0x7f0000000100)=ANY=[@ANYBLOB="180200000000000000000000000000008500000041000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000400)={r1, 0x0, 0x3, 0x0, &(0x7f0000000280)="14fd54", 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) kernel console output (not intermixed with test programs): ] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 308.514283][ T3847] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 308.640300][ T3847] veth1_macvtap: left promiscuous mode [ 308.646651][ T3847] veth0_macvtap: left promiscuous mode [ 308.652554][ T3847] veth1_vlan: left promiscuous mode [ 308.658277][ T3847] veth0_vlan: left promiscuous mode [ 309.221497][ T6511] netlink: 244 bytes leftover after parsing attributes in process `syz.2.185'. [ 309.546448][ T3847] team0 (unregistering): Port device team_slave_1 removed [ 309.568828][ T3847] team0 (unregistering): Port device team_slave_0 removed [ 310.319682][ T6363] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 311.716404][ T6533] loop4: detected capacity change from 0 to 164 [ 311.958039][ T6533] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 312.704894][ T6363] veth0_vlan: entered promiscuous mode [ 312.734042][ T6363] veth1_vlan: entered promiscuous mode [ 312.817531][ T6363] veth0_macvtap: entered promiscuous mode [ 312.837429][ T6363] veth1_macvtap: entered promiscuous mode [ 312.888556][ T6363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 312.900116][ T6363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 312.911268][ T6363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 312.923122][ T6363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 312.935318][ T6363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 312.947379][ T6363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 312.958616][ T6363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 312.970295][ T6363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 312.997171][ T6363] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 313.015111][ T6363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 313.026970][ T6363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 313.037376][ T6363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 313.048267][ T6363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 313.058392][ T6363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 313.069232][ T6363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 313.082137][ T6363] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 313.094036][ T6363] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 313.108173][ T6363] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 313.263211][ T6363] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 313.272269][ T6363] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 313.284554][ T6363] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 313.294607][ T6363] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 313.550579][ T6549] loop1: detected capacity change from 0 to 164 [ 313.697012][ T6549] ISOFS: unable to read i-node block [ 313.702556][ T6549] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 315.457188][ T6577] netlink: 'syz.2.198': attribute type 4 has an invalid length. [ 316.216173][ T6588] loop1: detected capacity change from 0 to 512 [ 317.003532][ T6588] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 317.014681][ T6588] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 317.025116][ T6588] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.200: Failed to acquire dquot type 1 [ 317.101582][ T6588] EXT4-fs (loop1): 1 truncate cleaned up [ 317.110681][ T6588] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 317.125180][ T6588] ext4 filesystem being mounted at /47/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 317.701318][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 317.752191][ T6609] loop0: detected capacity change from 0 to 164 [ 317.853887][ T6609] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 317.972543][ T6609] netlink: 60 bytes leftover after parsing attributes in process `syz.0.204'. [ 319.043990][ T6619] netlink: 12 bytes leftover after parsing attributes in process `syz.0.207'. [ 319.156382][ T6619] Zero length message leads to an empty skb [ 320.803887][ T3847] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 320.811855][ T3847] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 321.045356][ T6644] loop0: detected capacity change from 0 to 512 [ 321.218568][ T3981] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 321.227613][ T3981] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 321.375742][ T6644] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.211: bg 0: block 393: padding at end of block bitmap is not set [ 321.466455][ T6644] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 321.491405][ T6644] EXT4-fs (loop0): 2 truncates cleaned up [ 321.500140][ T6644] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 321.703971][ T6644] netlink: 'syz.0.211': attribute type 4 has an invalid length. [ 322.185639][ T6652] loop2: detected capacity change from 0 to 2048 [ 322.582309][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 322.956085][ T6652] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 323.345323][ T6674] loop0: detected capacity change from 0 to 164 [ 323.454468][ T6674] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 323.600719][ T6674] netlink: 60 bytes leftover after parsing attributes in process `syz.0.216'. [ 324.394488][ T6687] loop4: detected capacity change from 0 to 1024 [ 324.515550][ T6696] netlink: 20 bytes leftover after parsing attributes in process `syz.5.220'. [ 325.210910][ T6687] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 325.322567][ T6675] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 325.379646][ T6711] loop0: detected capacity change from 0 to 512 [ 325.447320][ T6711] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 325.461577][ T6711] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 325.665338][ T6711] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 325.807954][ T6711] EXT4-fs (loop0): 1 truncate cleaned up [ 325.815837][ T6711] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 325.898107][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 326.394499][ T6711] EXT4-fs error (device loop0): ext4_expand_extra_isize_ea:2813: inode #15: comm syz.0.224: corrupted xattr block 33: invalid header [ 326.446375][ T6711] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2977: inode #15: comm syz.0.224: corrupted xattr block 33: invalid header [ 326.447710][ T6711] EXT4-fs warning (device loop0): ext4_evict_inode:276: xattr delete (err -117) [ 326.836845][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 328.515590][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 328.787831][ T6749] netlink: 20 bytes leftover after parsing attributes in process `syz.1.233'. [ 329.220417][ T6745] loop0: detected capacity change from 0 to 164 [ 329.329589][ T6745] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 329.484286][ T6745] netlink: 60 bytes leftover after parsing attributes in process `syz.0.231'. [ 331.848718][ T29] audit: type=1326 audit(1732560315.002:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6779 comm="syz.1.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 332.323220][ T29] audit: type=1326 audit(1732560315.572:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6779 comm="syz.1.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 332.349622][ T29] audit: type=1326 audit(1732560315.572:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6779 comm="syz.1.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 332.373663][ T29] audit: type=1326 audit(1732560315.572:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6779 comm="syz.1.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 332.396329][ T29] audit: type=1326 audit(1732560315.572:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6779 comm="syz.1.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 334.268086][ T6780] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 335.373147][ T29] audit: type=1326 audit(1732560317.522:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6779 comm="syz.1.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 335.397014][ T29] audit: type=1326 audit(1732560317.522:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6779 comm="syz.1.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 335.423275][ T29] audit: type=1326 audit(1732560317.522:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6779 comm="syz.1.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 335.448175][ T29] audit: type=1326 audit(1732560317.532:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6779 comm="syz.1.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 335.470813][ T29] audit: type=1326 audit(1732560317.532:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6779 comm="syz.1.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 335.563814][ T25] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 337.514537][ T6810] netlink: 104 bytes leftover after parsing attributes in process `syz.5.250'. [ 337.749944][ T6817] loop4: detected capacity change from 0 to 164 [ 338.086059][ T6817] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 338.272629][ T6809] netlink: 60 bytes leftover after parsing attributes in process `syz.4.248'. [ 338.723361][ T6830] loop5: detected capacity change from 0 to 128 [ 338.885115][ T5802] Bluetooth: hci1: command 0x0406 tx timeout [ 338.891400][ T5802] Bluetooth: hci4: command 0x0406 tx timeout [ 338.922631][ T51] Bluetooth: hci2: command 0x0406 tx timeout [ 338.929077][ T51] Bluetooth: hci0: command 0x0406 tx timeout [ 340.428135][ T29] kauditd_printk_skb: 16 callbacks suppressed [ 340.428209][ T29] audit: type=1326 audit(1732560323.692:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6847 comm="syz.5.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 340.575239][ T29] audit: type=1326 audit(1732560323.772:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6847 comm="syz.5.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 340.598198][ T29] audit: type=1326 audit(1732560323.772:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6847 comm="syz.5.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 341.588022][ T29] audit: type=1326 audit(1732560324.382:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6847 comm="syz.5.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 341.610814][ T29] audit: type=1326 audit(1732560324.382:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6847 comm="syz.5.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 341.634787][ T29] audit: type=1326 audit(1732560324.382:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6847 comm="syz.5.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 341.660827][ T29] audit: type=1326 audit(1732560324.392:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6847 comm="syz.5.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 341.685085][ T29] audit: type=1326 audit(1732560324.392:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6847 comm="syz.5.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 341.707733][ T29] audit: type=1326 audit(1732560324.392:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6847 comm="syz.5.261" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 342.046450][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.056496][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 342.212103][ T6867] loop0: detected capacity change from 0 to 164 [ 342.375197][ T6867] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 342.412046][ T6867] netlink: 60 bytes leftover after parsing attributes in process `syz.0.268'. [ 343.912925][ T29] audit: type=1326 audit(1732560327.152:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6880 comm="syz.2.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 345.976173][ T6908] loop2: detected capacity change from 0 to 512 [ 346.271007][ T6915] loop0: detected capacity change from 0 to 164 [ 346.425109][ T6915] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 346.630409][ T6915] netlink: 60 bytes leftover after parsing attributes in process `syz.0.283'. [ 346.926073][ T6908] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 346.939403][ T6908] ext4 filesystem being mounted at /57/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 347.227542][ T6922] loop1: detected capacity change from 0 to 512 [ 347.654055][ T6922] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 347.662217][ T6922] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 347.671478][ T6922] EXT4-fs (loop1): orphan cleanup on readonly fs [ 347.803629][ T6922] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 347.814976][ T6922] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 348.005822][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 348.034787][ T6922] EXT4-fs (loop1): 1 truncate cleaned up [ 348.042242][ T6922] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 349.316270][ T6943] netlink: 'syz.5.288': attribute type 5 has an invalid length. [ 349.905047][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 352.716599][ T6971] loop1: detected capacity change from 0 to 164 [ 352.966964][ T6971] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 353.107458][ T6971] netlink: 60 bytes leftover after parsing attributes in process `syz.1.296'. [ 356.959866][ T7013] loop2: detected capacity change from 0 to 512 [ 357.281101][ T7013] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 357.306720][ T7013] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 357.762572][ T7019] loop0: detected capacity change from 0 to 164 [ 357.854029][ T7013] EXT4-fs (loop2): orphan cleanup on readonly fs [ 357.861333][ T7013] EXT4-fs warning (device loop2): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 357.872021][ T7013] EXT4-fs warning (device loop2): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 357.955992][ T7013] EXT4-fs (loop2): 1 truncate cleaned up [ 357.963678][ T7013] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 358.049586][ T7019] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 358.313275][ T7019] netlink: 60 bytes leftover after parsing attributes in process `syz.0.309'. [ 359.249210][ T7024] loop1: detected capacity change from 0 to 512 [ 359.958411][ T7024] ext4: Unknown parameter 'nogrpid"errors' [ 360.520343][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 363.233462][ T29] kauditd_printk_skb: 5 callbacks suppressed [ 363.233539][ T29] audit: type=1326 audit(1732560346.482:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7053 comm="syz.5.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 363.266104][ T29] audit: type=1326 audit(1732560346.502:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7053 comm="syz.5.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 363.503823][ T29] audit: type=1326 audit(1732560346.652:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7053 comm="syz.5.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 363.526818][ T29] audit: type=1326 audit(1732560346.652:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7053 comm="syz.5.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 363.549554][ T29] audit: type=1326 audit(1732560346.662:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7053 comm="syz.5.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 363.575638][ T29] audit: type=1326 audit(1732560346.662:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7053 comm="syz.5.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 363.599657][ T29] audit: type=1326 audit(1732560346.662:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7053 comm="syz.5.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 363.952230][ T7061] loop2: detected capacity change from 0 to 164 [ 364.772307][ T7068] loop5: detected capacity change from 0 to 512 [ 365.034026][ T7068] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 365.042212][ T7068] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 365.244202][ T7068] EXT4-fs (loop5): orphan cleanup on readonly fs [ 365.273815][ T7068] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 365.284741][ T7068] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 365.399196][ T7078] loop1: detected capacity change from 0 to 164 [ 365.573422][ T7068] EXT4-fs (loop5): 1 truncate cleaned up [ 365.580887][ T7068] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 365.827587][ T7078] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 366.065390][ T7073] netlink: 60 bytes leftover after parsing attributes in process `syz.1.321'. [ 366.421560][ T7087] loop2: detected capacity change from 0 to 512 [ 366.466701][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 366.673747][ T7087] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 366.686901][ T7087] ext4 filesystem being mounted at /64/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 367.340000][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 368.448063][ T7109] 8021q: adding VLAN 0 to HW filter on device bond1 [ 368.460980][ T7109] team0: Port device bond1 added [ 368.603967][ T7111] loop5: detected capacity change from 0 to 128 [ 368.644211][ T7105] tipc: Started in network mode [ 368.649502][ T7105] tipc: Node identity c64d76993407, cluster identity 4711 [ 368.657832][ T7105] tipc: Enabled bearer , priority 7 [ 368.888289][ T7117] ªªªªªª: renamed from syzkaller0 [ 368.934248][ T7117] tipc: Disabling bearer [ 369.008499][ T29] audit: type=1326 audit(1732560352.242:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7118 comm="syz.0.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 369.113239][ T29] audit: type=1326 audit(1732560352.302:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7118 comm="syz.0.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 369.135984][ T29] audit: type=1326 audit(1732560352.302:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7118 comm="syz.0.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 369.159283][ T29] audit: type=1326 audit(1732560352.302:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7118 comm="syz.0.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 369.182182][ T29] audit: type=1326 audit(1732560352.412:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7118 comm="syz.0.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 369.204996][ T29] audit: type=1326 audit(1732560352.412:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7118 comm="syz.0.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 369.231450][ T29] audit: type=1326 audit(1732560352.412:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7118 comm="syz.0.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 369.255306][ T29] audit: type=1326 audit(1732560352.422:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7118 comm="syz.0.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 369.277869][ T29] audit: type=1326 audit(1732560352.422:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7118 comm="syz.0.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 369.304170][ T29] audit: type=1326 audit(1732560352.422:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7118 comm="syz.0.334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 369.625026][ T7125] loop5: detected capacity change from 0 to 128 [ 369.950923][ T7125] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 370.072554][ T7125] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 371.141515][ T6363] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 371.829510][ T7144] loop1: detected capacity change from 0 to 512 [ 372.176697][ T7144] EXT4-fs (loop1): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 372.430791][ T7144] tipc: Enabled bearer , priority 7 [ 372.476022][ T7161] ªªªªªª: renamed from syzkaller0 [ 372.784831][ T7161] tipc: Disabling bearer [ 373.921473][ T7173] loop5: detected capacity change from 0 to 128 [ 374.357242][ T7173] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 374.404093][ T7173] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 374.854529][ T7181] netlink: 'syz.2.354': attribute type 4 has an invalid length. [ 375.411841][ T6363] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 375.576279][ T5816] EXT4-fs (loop1): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 375.953281][ T29] kauditd_printk_skb: 8 callbacks suppressed [ 375.953358][ T29] audit: type=1326 audit(1732560359.082:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.5.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 375.982307][ T29] audit: type=1326 audit(1732560359.082:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.5.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 376.004990][ T29] audit: type=1326 audit(1732560359.082:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.5.359" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 379.051759][ T7241] loop5: detected capacity change from 0 to 512 [ 379.234746][ T7241] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 379.248325][ T7241] ext4 filesystem being mounted at /39/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 379.674771][ T7237] loop1: detected capacity change from 0 to 512 [ 380.066532][ T7237] EXT4-fs (loop1): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 380.095978][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 380.499381][ T7253] tipc: Enabled bearer , priority 7 [ 380.541255][ T7237] ªªªªªª: renamed from syzkaller0 [ 380.651822][ T7237] tipc: Disabling bearer [ 382.127288][ T5816] EXT4-fs (loop1): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 385.993529][ T7307] loop2: detected capacity change from 0 to 512 [ 386.113567][ T7307] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 386.330967][ T7307] tipc: Started in network mode [ 386.336322][ T7307] tipc: Node identity 7a341447bbb3, cluster identity 4711 [ 386.345111][ T7307] tipc: Enabled bearer , priority 7 [ 386.420015][ T7314] ªªªªªª: renamed from syzkaller0 [ 386.469128][ T7314] tipc: Disabling bearer [ 387.026608][ T5805] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 390.749216][ T7352] loop4: detected capacity change from 0 to 512 [ 391.045989][ T7357] syz.1.400[7357] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 391.046393][ T7357] syz.1.400[7357] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 391.247562][ T7352] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 391.330498][ T7357] syz.1.400[7357] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 391.458451][ T7367] netlink: 16 bytes leftover after parsing attributes in process `syz.0.405'. [ 391.974084][ T7352] tipc: Started in network mode [ 391.979282][ T7352] tipc: Node identity c61e0014a3b7, cluster identity 4711 [ 391.987574][ T7352] tipc: Enabled bearer , priority 7 [ 392.224000][ T7368] ªªªªªª: renamed from syzkaller0 [ 392.300194][ T7368] tipc: Disabling bearer [ 393.036977][ T7383] loop5: detected capacity change from 0 to 512 [ 393.273510][ T7383] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 393.281675][ T7383] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 393.403390][ T7383] EXT4-fs (loop5): orphan cleanup on readonly fs [ 393.474169][ T7383] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 393.485098][ T7383] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 393.724182][ T7383] EXT4-fs (loop5): 1 truncate cleaned up [ 393.731684][ T7383] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 393.951827][ T7397] loop0: detected capacity change from 0 to 512 [ 393.974313][ T5806] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 394.159502][ T7397] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 394.228822][ T7397] EXT4-fs (loop0): orphan cleanup on readonly fs [ 394.281382][ T7397] Quota error (device loop0): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 394.292292][ T7397] EXT4-fs warning (device loop0): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 394.386429][ T7397] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 394.394843][ T7397] EXT4-fs error (device loop0): ext4_orphan_get:1389: inode #16: comm syz.0.413: iget: immutable or append flags not allowed on symlinks [ 394.418143][ T7397] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.413: couldn't read orphan inode 16 (err -117) [ 394.474680][ T7397] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 394.832137][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 395.195847][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 397.105747][ T7437] loop2: detected capacity change from 0 to 512 [ 397.379871][ T7437] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 397.574610][ T7437] tipc: Enabled bearer , priority 7 [ 397.584903][ T7445] ªªªªªª: renamed from syzkaller0 [ 397.724392][ T7445] tipc: Disabling bearer [ 398.353087][ T5805] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 398.689905][ T7461] loop5: detected capacity change from 0 to 164 [ 399.441119][ T7462] loop1: detected capacity change from 0 to 512 [ 399.862495][ T7462] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 399.870963][ T7462] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 400.133649][ T7462] EXT4-fs (loop1): orphan cleanup on readonly fs [ 400.140915][ T7462] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 400.151779][ T7462] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 400.296739][ T7462] EXT4-fs (loop1): 1 truncate cleaned up [ 400.305465][ T7462] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 401.196265][ T7462] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.426: dx entry: limit 65535 != root limit 120 [ 401.208879][ T7462] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.426: Corrupt directory, running e2fsck is recommended [ 401.386180][ T7496] loop2: detected capacity change from 0 to 512 [ 401.721810][ T7496] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 401.749796][ T7462] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 3: comm syz.1.426: path /86/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0 [ 402.121058][ T7505] ªªªªªª: renamed from syzkaller0 [ 402.255925][ T7507] loop0: detected capacity change from 0 to 164 [ 402.735746][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 403.006711][ T5805] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 403.385160][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.395161][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 404.172967][ T29] audit: type=1326 audit(1732560387.432:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7529 comm="syz.4.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26ef17e819 code=0x7ffc0000 [ 404.249052][ T29] audit: type=1326 audit(1732560387.462:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7529 comm="syz.4.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f26ef17e819 code=0x7ffc0000 [ 404.272495][ T29] audit: type=1326 audit(1732560387.462:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7529 comm="syz.4.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26ef17e819 code=0x7ffc0000 [ 404.295338][ T29] audit: type=1326 audit(1732560387.472:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7529 comm="syz.4.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26ef17e819 code=0x7ffc0000 [ 405.784325][ T7550] loop0: detected capacity change from 0 to 164 [ 405.928962][ T7552] loop5: detected capacity change from 0 to 512 [ 406.100638][ T7552] EXT4-fs (loop5): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 406.619911][ T7565] syz.0.461[7565] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 406.620320][ T7565] syz.0.461[7565] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 406.663575][ T7565] syz.0.461[7565] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 406.738803][ T7552] tipc: Started in network mode [ 406.757519][ T7552] tipc: Node identity ba9e9e669357, cluster identity 4711 [ 406.766572][ T7552] tipc: Enabled bearer , priority 7 [ 406.825227][ T7554] loop1: detected capacity change from 0 to 512 [ 406.914580][ T7552] ªªªªªª: renamed from syzkaller0 [ 406.958726][ T7552] tipc: Disabling bearer [ 407.202601][ T7554] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 407.212232][ T7554] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 407.417242][ T7554] EXT4-fs (loop1): orphan cleanup on readonly fs [ 407.424861][ T7554] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 407.435570][ T7554] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 407.652431][ T7554] EXT4-fs (loop1): 1 truncate cleaned up [ 407.680765][ T6363] EXT4-fs (loop5): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 407.815487][ T7554] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 407.951521][ T7554] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.456: dx entry: limit 65535 != root limit 120 [ 407.964171][ T7554] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.456: Corrupt directory, running e2fsck is recommended [ 408.171326][ T7577] loop0: detected capacity change from 0 to 1024 [ 408.272131][ T7554] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 3: comm syz.1.456: path /88/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0 [ 408.376053][ T7577] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 408.376487][ T7577] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 408.665709][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 409.415211][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 410.297714][ T7598] loop2: detected capacity change from 0 to 512 [ 410.566548][ T5809] Bluetooth: hci5: command 0x0406 tx timeout [ 410.774093][ T7606] loop0: detected capacity change from 0 to 512 [ 410.879222][ T7602] loop4: detected capacity change from 0 to 164 [ 411.055788][ T7598] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 411.069102][ T7598] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 411.156751][ T7606] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 411.430256][ T7615] tipc: Started in network mode [ 411.436036][ T7615] tipc: Node identity 2a34b7d4caab, cluster identity 4711 [ 411.444399][ T7615] tipc: Enabled bearer , priority 7 [ 411.501312][ T7606] ªªªªªª: renamed from syzkaller0 [ 411.528608][ T7606] tipc: Disabling bearer [ 411.745015][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 412.161541][ T7624] netlink: 44 bytes leftover after parsing attributes in process `syz.2.476'. [ 412.219788][ T5801] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 412.584513][ T7628] loop2: detected capacity change from 0 to 256 [ 412.654242][ T29] audit: type=1326 audit(1732560395.822:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 412.677155][ T29] audit: type=1326 audit(1732560395.832:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 412.699839][ T29] audit: type=1326 audit(1732560395.832:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 412.726584][ T29] audit: type=1326 audit(1732560395.832:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fc0eb77e853 code=0x7ffc0000 [ 412.751806][ T29] audit: type=1326 audit(1732560395.842:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fc0eb77d2ff code=0x7ffc0000 [ 412.774580][ T29] audit: type=1326 audit(1732560395.842:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fc0eb77e8a7 code=0x7ffc0000 [ 412.797216][ T29] audit: type=1326 audit(1732560395.842:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc0eb77d1b0 code=0x7ffc0000 [ 412.823452][ T29] audit: type=1326 audit(1732560395.852:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc0eb77e41b code=0x7ffc0000 [ 412.847288][ T29] audit: type=1326 audit(1732560395.852:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fc0eb77d4aa code=0x7ffc0000 [ 412.869874][ T29] audit: type=1326 audit(1732560395.852:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.2.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fc0eb77d4aa code=0x7ffc0000 [ 413.700527][ T7628] FAT-fs (loop2): Directory bread(block 64) failed [ 413.707563][ T7628] FAT-fs (loop2): Directory bread(block 65) failed [ 413.714728][ T7628] FAT-fs (loop2): Directory bread(block 66) failed [ 413.721506][ T7628] FAT-fs (loop2): Directory bread(block 67) failed [ 413.728662][ T7628] FAT-fs (loop2): Directory bread(block 68) failed [ 413.740094][ T7628] FAT-fs (loop2): Directory bread(block 69) failed [ 413.748546][ T7628] FAT-fs (loop2): Directory bread(block 70) failed [ 413.755452][ T7628] FAT-fs (loop2): Directory bread(block 71) failed [ 413.762353][ T7628] FAT-fs (loop2): Directory bread(block 72) failed [ 413.769276][ T7628] FAT-fs (loop2): Directory bread(block 73) failed [ 416.196646][ T7659] loop2: detected capacity change from 0 to 512 [ 416.412466][ T7659] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 416.455948][ T7659] tipc: Enabled bearer , priority 7 [ 416.464734][ T7659] ªªªªªª: renamed from syzkaller0 [ 416.480007][ T7659] tipc: Disabling bearer [ 417.008690][ T7668] netlink: 44 bytes leftover after parsing attributes in process `syz.1.489'. [ 417.330964][ T7669] loop5: detected capacity change from 0 to 2048 [ 417.377137][ T5805] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 417.477101][ T7669] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 418.235023][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 419.210293][ T7696] loop5: detected capacity change from 0 to 164 [ 419.350057][ T29] kauditd_printk_skb: 16 callbacks suppressed [ 419.350132][ T29] audit: type=1326 audit(1732560402.612:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7690 comm="syz.2.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 419.414889][ T29] audit: type=1326 audit(1732560402.652:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7690 comm="syz.2.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 419.437719][ T29] audit: type=1326 audit(1732560402.652:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7690 comm="syz.2.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 419.460515][ T29] audit: type=1326 audit(1732560402.662:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7690 comm="syz.2.500" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 419.641570][ T7701] loop0: detected capacity change from 0 to 512 [ 419.750570][ T7701] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 419.918968][ T7701] tipc: Enabled bearer , priority 7 [ 420.024813][ T7701] ªªªªªª: renamed from syzkaller0 [ 420.094374][ T7701] tipc: Disabling bearer [ 420.601996][ T29] audit: type=1326 audit(1732560403.732:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7715 comm="syz.1.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 420.624748][ T29] audit: type=1326 audit(1732560403.742:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7715 comm="syz.1.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 420.647449][ T29] audit: type=1326 audit(1732560403.742:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7715 comm="syz.1.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe725b7d1b0 code=0x7ffc0000 [ 420.670258][ T29] audit: type=1326 audit(1732560403.742:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7715 comm="syz.1.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 420.693014][ T29] audit: type=1326 audit(1732560403.742:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7715 comm="syz.1.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 420.719087][ T29] audit: type=1326 audit(1732560403.742:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7715 comm="syz.1.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 421.424469][ T5801] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 422.354140][ T7743] bridge0: port 3(vlan2) entered blocking state [ 422.361072][ T7743] bridge0: port 3(vlan2) entered disabled state [ 422.368169][ T7743] vlan2: entered allmulticast mode [ 422.473762][ T7743] vlan2: left allmulticast mode [ 422.780028][ T7745] loop5: detected capacity change from 0 to 512 [ 422.862372][ T7745] ext3: Unknown parameter 'defcontext' [ 422.917014][ T7753] loop4: detected capacity change from 0 to 512 [ 423.153960][ T7753] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 423.184400][ T7757] netlink: 40 bytes leftover after parsing attributes in process `syz.2.523'. [ 423.267080][ T7759] capability: warning: `syz.1.524' uses deprecated v2 capabilities in a way that may be insecure [ 423.614765][ T7753] tipc: Enabled bearer , priority 7 [ 423.629921][ T7753] ªªªªªª: renamed from syzkaller0 [ 423.647958][ T7753] tipc: Disabling bearer [ 424.130697][ T7772] loop1: detected capacity change from 0 to 2048 [ 424.140332][ T7772] EXT4-fs: Ignoring removed mblk_io_submit option [ 424.313907][ T7772] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal [ 424.415101][ T5806] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 424.955926][ T7782] loop4: detected capacity change from 0 to 256 [ 425.047639][ T29] kauditd_printk_skb: 51 callbacks suppressed [ 425.047716][ T29] audit: type=1326 audit(1732560408.252:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.5.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 425.076882][ T29] audit: type=1326 audit(1732560408.252:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.5.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 425.103594][ T29] audit: type=1326 audit(1732560408.262:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.5.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5aa557d1b0 code=0x7ffc0000 [ 425.127479][ T29] audit: type=1326 audit(1732560408.272:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.5.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 425.150711][ T29] audit: type=1326 audit(1732560408.272:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.5.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 425.173462][ T29] audit: type=1326 audit(1732560408.272:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.5.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 425.337340][ T7789] syzkaller0: entered allmulticast mode [ 425.839880][ T7794] loop1: detected capacity change from 0 to 1024 [ 425.982200][ T7794] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 425.995121][ T7794] ext4 filesystem being mounted at /105/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 426.338390][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 427.240052][ T7820] loop2: detected capacity change from 0 to 256 [ 427.428816][ T7822] netlink: 12 bytes leftover after parsing attributes in process `syz.4.548'. [ 427.597393][ T7820] FAT-fs (loop2): Directory bread(block 64) failed [ 427.604359][ T7820] FAT-fs (loop2): Directory bread(block 65) failed [ 427.611366][ T7820] FAT-fs (loop2): Directory bread(block 66) failed [ 427.618310][ T7820] FAT-fs (loop2): Directory bread(block 67) failed [ 427.625380][ T7820] FAT-fs (loop2): Directory bread(block 68) failed [ 427.632148][ T7820] FAT-fs (loop2): Directory bread(block 69) failed [ 427.639179][ T7820] FAT-fs (loop2): Directory bread(block 70) failed [ 427.646161][ T7820] FAT-fs (loop2): Directory bread(block 71) failed [ 427.653178][ T7820] FAT-fs (loop2): Directory bread(block 72) failed [ 427.665042][ T7820] FAT-fs (loop2): Directory bread(block 73) failed [ 428.292158][ T7832] loop4: detected capacity change from 0 to 256 [ 428.599973][ T7840] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 428.600195][ T7840] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 428.600333][ T7840] netdevsim netdevsim1: Falling back to sysfs fallback for: . [ 428.602051][ T7835] netlink: 20 bytes leftover after parsing attributes in process `syz.0.552'. [ 429.847221][ T7853] netlink: 12 bytes leftover after parsing attributes in process `syz.0.560'. [ 430.284684][ T7857] loop1: detected capacity change from 0 to 512 [ 430.355612][ T7863] netlink: 8 bytes leftover after parsing attributes in process `syz.4.564'. [ 430.445965][ T7857] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 430.454605][ T7857] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 430.476487][ T7857] EXT4-fs (loop1): orphan cleanup on readonly fs [ 430.485221][ T7857] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 430.495926][ T7857] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 430.507788][ T7857] EXT4-fs (loop1): 1 truncate cleaned up [ 430.515796][ T7857] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 430.870512][ T7857] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.561: dx entry: limit 65535 != root limit 120 [ 430.883313][ T7857] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.561: Corrupt directory, running e2fsck is recommended [ 430.979236][ T7857] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 3: comm syz.1.561: path /110/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0 [ 431.519865][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 432.075448][ T7884] loop0: detected capacity change from 0 to 4096 [ 432.511435][ T7884] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 432.666106][ T7884] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 433.428021][ T7915] loop1: detected capacity change from 0 to 1024 [ 433.810388][ T7915] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 434.557553][ T7936] netlink: 332 bytes leftover after parsing attributes in process `syz.5.590'. [ 435.327971][ T7946] netlink: 'syz.5.593': attribute type 10 has an invalid length. [ 435.392208][ T7946] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 435.507061][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 436.018765][ T29] audit: type=1326 audit(1732560419.262:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7947 comm="syz.0.595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 436.173762][ T7957] loop2: detected capacity change from 0 to 128 [ 436.197143][ T29] audit: type=1326 audit(1732560419.332:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7947 comm="syz.0.595" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 436.347566][ T7952] loop0: detected capacity change from 0 to 512 [ 436.422291][ T29] audit: type=1800 audit(1732560419.682:333): pid=7957 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.596" name="file1" dev="loop2" ino=1048609 res=0 errno=0 [ 436.463298][ T7952] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 436.525879][ T7957] FAT-fs (loop2): error, invalid access to FAT (entry 0x0f000000) [ 436.536130][ T7957] FAT-fs (loop2): Filesystem has been set read-only [ 436.571812][ T7952] EXT4-fs (loop0): invalid journal inode [ 436.580153][ T7952] EXT4-fs (loop0): can't get journal size [ 436.653827][ T7957] FAT-fs (loop2): error, invalid access to FAT (entry 0x0f000000) [ 436.720716][ T7952] EXT4-fs (loop0): 1 truncate cleaned up [ 436.729717][ T7952] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 437.108129][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 437.514331][ T7975] netlink: 32 bytes leftover after parsing attributes in process `syz.5.603'. [ 438.189941][ T7981] loop2: detected capacity change from 0 to 1024 [ 438.430413][ T7981] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 438.716304][ T7990] loop0: detected capacity change from 0 to 512 [ 439.115791][ T7990] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 439.571878][ T7990] tipc: Enabled bearer , priority 7 [ 439.574792][ T7990] ªªªªªª: renamed from syzkaller0 [ 439.581948][ T7990] tipc: Disabling bearer [ 439.599703][ T29] audit: type=1800 audit(1732560422.822:334): pid=8001 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.604" name="bus" dev="loop2" ino=20 res=0 errno=0 [ 440.389901][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 440.437032][ T5801] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 445.918362][ T8027] syz.4.619[8027] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 445.918768][ T8027] syz.4.619[8027] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 446.026487][ T8027] syz.4.619[8027] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 447.028001][ T8037] loop5: detected capacity change from 0 to 512 [ 447.164316][ T8037] EXT4-fs (loop5): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 447.414028][ T8040] loop4: detected capacity change from 0 to 256 [ 447.443582][ T8047] loop2: detected capacity change from 0 to 512 [ 447.454137][ T8037] tipc: Enabling of bearer rejected, failed to enable media [ 447.496782][ T8044] loop0: detected capacity change from 0 to 1024 [ 447.583195][ T29] audit: type=1804 audit(1732560430.842:335): pid=8040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.625" name="/newroot/112/file1/file0" dev="loop4" ino=1048610 res=1 errno=0 [ 447.689744][ T8047] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 447.704429][ T8047] ext4 filesystem being mounted at /128/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 447.856864][ T8044] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 447.952798][ T29] audit: type=1800 audit(1732560431.212:336): pid=8047 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.626" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 448.117087][ T6363] EXT4-fs (loop5): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 448.160528][ T29] audit: type=1800 audit(1732560431.382:337): pid=8056 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.626" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 448.764874][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 449.773775][ T8076] syzkaller0: entered allmulticast mode [ 450.263588][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 450.447380][ T8085] syz.2.635[8085] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 450.447783][ T8085] syz.2.635[8085] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 450.454633][ C1] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 450.554422][ T8085] syz.2.635[8085] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 451.313504][ T8095] loop4: detected capacity change from 0 to 512 [ 451.481394][ T8100] loop2: detected capacity change from 0 to 256 [ 451.538989][ T8095] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 452.082053][ T8095] tipc: Enabling of bearer rejected, failed to enable media [ 454.046183][ T5806] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 454.169667][ T8112] netlink: 'syz.5.642': attribute type 4 has an invalid length. [ 454.690044][ T29] audit: type=1326 audit(1732560437.952:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.1.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 454.717329][ T29] audit: type=1326 audit(1732560437.952:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8117 comm="syz.1.643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 455.252174][ T8123] loop4: detected capacity change from 0 to 1024 [ 455.624884][ T8123] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 455.761507][ T8134] syz.1.648[8134] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 455.761903][ T8134] syz.1.648[8134] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 455.846577][ T8134] syz.1.648[8134] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 457.110788][ T8155] loop0: detected capacity change from 0 to 128 [ 457.771266][ T8160] loop5: detected capacity change from 0 to 512 [ 457.823517][ T8160] EXT4-fs: inline encryption not supported [ 457.850888][ T8159] loop2: detected capacity change from 0 to 512 [ 458.762033][ T8160] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 458.772137][ T8155] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 458.775195][ T8160] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 458.853536][ T8155] ext4 filesystem being mounted at /142/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 458.884287][ T8160] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm syz.5.655: corrupted inode contents [ 458.924978][ T8159] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 459.004334][ T8160] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #2: comm syz.5.655: mark_inode_dirty error [ 459.044026][ T8159] tipc: Enabling of bearer rejected, failed to enable media [ 459.112672][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.223828][ T8160] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm syz.5.655: corrupted inode contents [ 459.320235][ T8168] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm syz.5.655: corrupted inode contents [ 459.396148][ T8168] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #2: comm syz.5.655: mark_inode_dirty error [ 459.554220][ T8168] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm syz.5.655: corrupted inode contents [ 459.581061][ T8168] EXT4-fs error (device loop5): __ext4_ext_dirty:207: inode #2: comm syz.5.655: mark_inode_dirty error [ 459.595210][ T8168] EXT4-fs error (device loop5): ext4_do_update_inode:5153: inode #2: comm syz.5.655: corrupted inode contents [ 459.722190][ T8168] EXT4-fs error (device loop5): ext4_dirty_inode:6041: inode #2: comm syz.5.655: mark_inode_dirty error [ 459.973495][ T5805] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 460.232675][ T8174] loop1: detected capacity change from 0 to 256 [ 460.274561][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 460.300890][ T8178] netlink: 36 bytes leftover after parsing attributes in process `syz.2.658'. [ 460.495660][ T5801] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 460.688023][ T8180] Cannot find set identified by id 0 to match [ 461.001368][ T8176] netlink: 'syz.4.656': attribute type 4 has an invalid length. [ 461.616013][ T8190] syz.1.663[8190] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 461.616420][ T8190] syz.1.663[8190] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 461.722383][ T8193] netlink: 55631 bytes leftover after parsing attributes in process `syz.5.664'. [ 461.832242][ T8190] syz.1.663[8190] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 463.310099][ T8210] loop1: detected capacity change from 0 to 512 [ 463.365084][ T8217] loop2: detected capacity change from 0 to 256 [ 463.837062][ T8210] EXT4-fs (loop1): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 463.982354][ T8210] tipc: Enabled bearer , priority 7 [ 464.025852][ T8208] tipc: Disabling bearer [ 464.252478][ T8229] loop4: detected capacity change from 0 to 1024 [ 464.632064][ T8229] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 464.647012][ T8229] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 464.828875][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 464.839036][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 464.916332][ T8241] syz.0.678[8241] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 464.918421][ T8241] syz.0.678[8241] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 464.985200][ T8241] syz.0.678[8241] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 465.085107][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 465.194887][ T5816] EXT4-fs (loop1): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 465.810555][ T8252] netlink: 'syz.2.684': attribute type 2 has an invalid length. [ 466.049963][ T29] audit: type=1326 audit(1732560449.302:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.1.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 466.076661][ T29] audit: type=1326 audit(1732560449.302:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.1.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 466.100730][ T29] audit: type=1326 audit(1732560449.312:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.1.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 466.123594][ T29] audit: type=1326 audit(1732560449.312:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.1.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 466.146355][ T29] audit: type=1326 audit(1732560449.312:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.1.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 466.172548][ T29] audit: type=1326 audit(1732560449.312:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.1.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 466.196657][ T29] audit: type=1326 audit(1732560449.312:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.1.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 466.219348][ T29] audit: type=1326 audit(1732560449.312:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.1.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 466.242047][ T29] audit: type=1326 audit(1732560449.312:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.1.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 466.269329][ T29] audit: type=1326 audit(1732560449.312:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.1.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 466.311502][ T8256] netlink: 8 bytes leftover after parsing attributes in process `+}[@'. [ 466.321066][ T8256] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 466.830416][ T8263] loop2: detected capacity change from 0 to 256 [ 467.355113][ T8268] loop0: detected capacity change from 0 to 1024 [ 467.556108][ T8268] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 467.569200][ T8268] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 467.974223][ T8275] loop5: detected capacity change from 0 to 512 [ 468.163853][ T8275] EXT4-fs (loop5): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 468.215707][ T8275] tipc: Enabled bearer , priority 7 [ 468.257083][ T8274] tipc: Disabling bearer [ 468.675376][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 468.819871][ T6363] EXT4-fs (loop5): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 469.626420][ T8295] syz.1.699[8295] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 469.626817][ T8295] syz.1.699[8295] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 469.704505][ T8295] syz.1.699[8295] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 470.815195][ T8305] loop2: detected capacity change from 0 to 256 [ 471.932391][ T8315] loop2: detected capacity change from 0 to 512 [ 472.364679][ T8321] loop0: detected capacity change from 0 to 1024 [ 472.833703][ T8315] EXT4-fs (loop2): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 473.073805][ T8321] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 473.120648][ T8315] tipc: Enabled bearer , priority 7 [ 473.202433][ T8314] tipc: Disabling bearer [ 473.795171][ T5805] EXT4-fs (loop2): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 474.218006][ T8347] loop1: detected capacity change from 0 to 256 [ 474.376161][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 475.784737][ T8372] loop0: detected capacity change from 0 to 1024 [ 475.803508][ T8372] EXT4-fs: Ignoring removed orlov option [ 475.809583][ T8372] EXT4-fs: Ignoring removed nomblk_io_submit option [ 476.209235][ T8384] loop4: detected capacity change from 0 to 1024 [ 476.283168][ T8372] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 476.549295][ T8384] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 476.783512][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 477.334750][ T8396] loop0: detected capacity change from 0 to 256 [ 477.774462][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 478.361909][ T8411] syz.2.740[8411] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 478.362332][ T8411] syz.2.740[8411] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 478.438070][ T8411] syz.2.740[8411] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 479.210762][ T8421] syzkaller0: entered allmulticast mode [ 480.272401][ T8436] loop2: detected capacity change from 0 to 1024 [ 480.423367][ T8436] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 481.029222][ T8448] loop4: detected capacity change from 0 to 128 [ 481.775462][ T8452] loop5: detected capacity change from 0 to 1024 [ 482.080907][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 482.115751][ T8452] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 482.129439][ T8452] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 482.865328][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 482.953418][ T8470] syzkaller0: entered allmulticast mode [ 483.752103][ T8484] loop2: detected capacity change from 0 to 1024 [ 484.026421][ T8484] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 484.143385][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 484.625032][ T8493] netlink: 'syz.2.767': attribute type 4 has an invalid length. [ 485.570693][ T8501] loop1: detected capacity change from 0 to 1024 [ 485.877623][ T8503] loop0: detected capacity change from 0 to 256 [ 486.538245][ T8501] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 486.557422][ T8501] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 486.577646][ T8503] FAT-fs (loop0): Directory bread(block 64) failed [ 486.584820][ T8503] FAT-fs (loop0): Directory bread(block 65) failed [ 486.591712][ T8503] FAT-fs (loop0): Directory bread(block 66) failed [ 486.599182][ T8503] FAT-fs (loop0): Directory bread(block 67) failed [ 486.606220][ T8503] FAT-fs (loop0): Directory bread(block 68) failed [ 486.613136][ T8503] FAT-fs (loop0): Directory bread(block 69) failed [ 486.620016][ T8503] FAT-fs (loop0): Directory bread(block 70) failed [ 486.627251][ T8503] FAT-fs (loop0): Directory bread(block 71) failed [ 486.634358][ T8503] FAT-fs (loop0): Directory bread(block 72) failed [ 486.645966][ T8503] FAT-fs (loop0): Directory bread(block 73) failed [ 487.399477][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 487.743124][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 487.743209][ T29] audit: type=1326 audit(1732560470.982:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.0.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 487.777042][ T29] audit: type=1326 audit(1732560470.982:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.0.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 487.801194][ T29] audit: type=1326 audit(1732560471.042:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.0.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 487.948289][ T29] audit: type=1326 audit(1732560471.212:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.0.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 487.979611][ T29] audit: type=1326 audit(1732560471.242:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.0.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 488.013615][ T29] audit: type=1326 audit(1732560471.272:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.0.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 488.335415][ T29] audit: type=1326 audit(1732560471.372:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.0.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 488.358443][ T29] audit: type=1326 audit(1732560471.382:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.0.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 488.381279][ T29] audit: type=1326 audit(1732560471.382:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8533 comm="syz.0.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f215517e819 code=0x7ffc0000 [ 488.407662][ T29] audit: type=1326 audit(1732560471.562:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8542 comm="syz.0.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f21551b0905 code=0x7ffc0000 [ 489.459997][ T8548] netlink: 4 bytes leftover after parsing attributes in process `syz.5.783'. [ 489.586110][ T8548] IPVS: set_ctl: invalid protocol: 98 10.1.1.2:20001 [ 489.823756][ T8557] loop2: detected capacity change from 0 to 256 [ 490.148736][ T8559] loop0: detected capacity change from 0 to 1024 [ 490.314150][ T8559] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 490.331230][ T8559] ext4 filesystem being mounted at /164/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 490.488233][ T8557] FAT-fs (loop2): Directory bread(block 64) failed [ 490.495811][ T8557] FAT-fs (loop2): Directory bread(block 65) failed [ 490.503032][ T8557] FAT-fs (loop2): Directory bread(block 66) failed [ 490.509821][ T8557] FAT-fs (loop2): Directory bread(block 67) failed [ 490.517685][ T8557] FAT-fs (loop2): Directory bread(block 68) failed [ 490.524866][ T8557] FAT-fs (loop2): Directory bread(block 69) failed [ 490.531788][ T8557] FAT-fs (loop2): Directory bread(block 70) failed [ 490.543217][ T8557] FAT-fs (loop2): Directory bread(block 71) failed [ 490.550130][ T8557] FAT-fs (loop2): Directory bread(block 72) failed [ 490.558467][ T8557] FAT-fs (loop2): Directory bread(block 73) failed [ 490.606491][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 491.472051][ T8582] syzkaller0: entered allmulticast mode [ 492.361210][ T8590] loop0: detected capacity change from 0 to 1024 [ 492.675999][ T8590] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 493.794431][ T8604] loop5: detected capacity change from 0 to 1024 [ 494.060968][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 494.102395][ T8604] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 494.120719][ T8604] ext4 filesystem being mounted at /141/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 494.802483][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 497.665313][ T8639] loop0: detected capacity change from 0 to 1024 [ 497.946524][ T8639] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 498.704605][ T8643] loop1: detected capacity change from 0 to 1024 [ 498.896564][ T8654] loop4: detected capacity change from 0 to 1024 [ 498.900361][ T8643] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 499.074313][ T8654] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 499.074708][ T8654] ext4 filesystem being mounted at /154/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 499.834469][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 499.969254][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 500.271463][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 500.404328][ T8676] netlink: 16 bytes leftover after parsing attributes in process `syz.4.824'. [ 501.511455][ T8681] loop0: detected capacity change from 0 to 512 [ 501.623111][ T8681] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 501.817102][ T8681] EXT4-fs (loop0): 1 truncate cleaned up [ 501.824738][ T8681] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 502.261938][ T8704] loop5: detected capacity change from 0 to 2048 [ 502.344330][ T8704] EXT4-fs: Ignoring removed mblk_io_submit option [ 502.387302][ T8704] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal [ 502.678687][ T8710] loop2: detected capacity change from 0 to 1024 [ 502.750818][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 503.257379][ T8721] tipc: Enabled bearer , priority 10 [ 503.284758][ T8710] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 503.443521][ T8722] netlink: 16 bytes leftover after parsing attributes in process `syz.0.837'. [ 504.374009][ T44] tipc: Node number set to 4064966297 [ 504.415737][ T8736] netlink: 'syz.1.842': attribute type 4 has an invalid length. [ 504.900364][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 505.638275][ T8756] loop1: detected capacity change from 0 to 2048 [ 505.674884][ T8756] EXT4-fs: Ignoring removed mblk_io_submit option [ 505.777629][ T8756] EXT4-fs (loop1): can't mount with data=, fs mounted w/o journal [ 506.567038][ T8765] netlink: 16 bytes leftover after parsing attributes in process `syz.5.853'. [ 508.286688][ T8787] netlink: 'syz.4.860': attribute type 4 has an invalid length. [ 509.999288][ T8797] loop0: detected capacity change from 0 to 2048 [ 510.025294][ T8797] EXT4-fs: Ignoring removed mblk_io_submit option [ 510.223908][ T8806] netlink: 16 bytes leftover after parsing attributes in process `syz.5.867'. [ 510.253663][ T8797] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal [ 510.369170][ T8811] netlink: 8 bytes leftover after parsing attributes in process `syz.1.868'. [ 511.453629][ T8823] netlink: 'syz.5.873': attribute type 4 has an invalid length. [ 512.534455][ T8844] netlink: 16 bytes leftover after parsing attributes in process `syz.1.880'. [ 512.740086][ T8852] netlink: 8 bytes leftover after parsing attributes in process `syz.4.882'. [ 512.905798][ T8847] loop0: detected capacity change from 0 to 2048 [ 512.915534][ T8847] EXT4-fs: Ignoring removed mblk_io_submit option [ 512.939327][ T8847] EXT4-fs (loop0): can't mount with data=, fs mounted w/o journal [ 513.794401][ T8869] netlink: 'syz.4.888': attribute type 4 has an invalid length. [ 515.922412][ T8893] loop5: detected capacity change from 0 to 2048 [ 515.983108][ T8899] netlink: 8 bytes leftover after parsing attributes in process `syz.2.898'. [ 516.038546][ T8893] EXT4-fs: Ignoring removed mblk_io_submit option [ 516.138253][ T8893] EXT4-fs (loop5): can't mount with data=, fs mounted w/o journal [ 517.328747][ T8908] loop2: detected capacity change from 0 to 512 [ 517.693614][ T8908] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 517.701898][ T8908] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 517.756543][ T8908] EXT4-fs (loop2): orphan cleanup on readonly fs [ 517.801932][ T8923] netlink: 20 bytes leftover after parsing attributes in process `syz.0.906'. [ 517.814539][ T8908] EXT4-fs warning (device loop2): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 517.825173][ T8908] EXT4-fs warning (device loop2): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 517.841747][ T8915] netlink: 'syz.5.903': attribute type 4 has an invalid length. [ 517.913446][ T8908] EXT4-fs (loop2): 1 truncate cleaned up [ 517.921115][ T8908] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 518.549748][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 518.627696][ T8934] netlink: 'syz.0.910': attribute type 16 has an invalid length. [ 519.840895][ T8944] loop4: detected capacity change from 0 to 2048 [ 519.854079][ T8944] EXT4-fs: Ignoring removed mblk_io_submit option [ 519.944989][ T8944] EXT4-fs (loop4): can't mount with data=, fs mounted w/o journal [ 520.272394][ T8956] netlink: 'syz.2.917': attribute type 4 has an invalid length. [ 521.070632][ T8973] loop5: detected capacity change from 0 to 512 [ 521.106164][ T8974] loop2: detected capacity change from 0 to 1024 [ 521.140594][ T8967] syzkaller0: entered allmulticast mode [ 521.210901][ T8973] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 521.219360][ T8973] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 521.240694][ T8973] EXT4-fs (loop5): orphan cleanup on readonly fs [ 521.305252][ T8973] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 521.316078][ T8973] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 521.333599][ T8974] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 521.347568][ T8974] ext4 filesystem being mounted at /196/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 521.423602][ T8973] EXT4-fs (loop5): 1 truncate cleaned up [ 521.431188][ T8973] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 521.476048][ T8970] EXT4-fs warning (device loop5): dx_probe:893: inode #2: comm syz.5.921: dx entry: limit 65535 != root limit 120 [ 521.489035][ T8970] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.921: Corrupt directory, running e2fsck is recommended [ 521.589899][ T8970] EXT4-fs error (device loop5): ext4_readdir:261: inode #2: block 3: comm syz.5.921: path /164/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0 [ 521.721986][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 522.613733][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 523.556781][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 523.556860][ T29] audit: type=1326 audit(1866778234.819:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9009 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 523.586931][ T29] audit: type=1326 audit(1866778234.819:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9009 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 523.742302][ T9013] netlink: 'syz.4.933': attribute type 4 has an invalid length. [ 523.861357][ T29] audit: type=1326 audit(1866778234.939:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9009 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 523.884475][ T29] audit: type=1326 audit(1866778234.939:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9009 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 523.907376][ T29] audit: type=1326 audit(1866778234.939:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9009 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 523.933810][ T29] audit: type=1326 audit(1866778234.959:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9009 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 523.958400][ T29] audit: type=1326 audit(1866778234.959:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9009 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 523.981126][ T29] audit: type=1326 audit(1866778234.969:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9009 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 524.004400][ T29] audit: type=1326 audit(1866778235.099:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9009 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 524.030572][ T29] audit: type=1326 audit(1866778235.099:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9009 comm="syz.1.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe725b7e819 code=0x7ffc0000 [ 524.963196][ T9028] loop0: detected capacity change from 0 to 512 [ 525.124847][ T9028] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 525.133228][ T9028] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 525.166579][ T9028] EXT4-fs (loop0): orphan cleanup on readonly fs [ 525.259405][ T9028] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 525.270118][ T9028] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 525.299908][ T9028] EXT4-fs (loop0): 1 truncate cleaned up [ 525.307500][ T9028] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 525.433656][ T9028] EXT4-fs warning (device loop0): dx_probe:893: inode #2: comm syz.0.939: dx entry: limit 65535 != root limit 120 [ 525.446217][ T9028] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.939: Corrupt directory, running e2fsck is recommended [ 525.513130][ T9028] EXT4-fs error (device loop0): ext4_readdir:261: inode #2: block 3: comm syz.0.939: path /192/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0 [ 525.694882][ T9030] netlink: 16 bytes leftover after parsing attributes in process `syz.4.940'. [ 525.899544][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 526.265408][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 526.275882][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 527.335741][ T9049] syz.0.946: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 527.351308][ T9049] CPU: 1 UID: 0 PID: 9049 Comm: syz.0.946 Not tainted 6.12.0-syzkaller-09073-g9f16d5e6f220 #0 [ 527.361867][ T9049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 527.372176][ T9049] Call Trace: [ 527.375676][ T9049] [ 527.378798][ T9049] dump_stack_lvl+0x216/0x2d0 [ 527.383821][ T9049] dump_stack+0x1e/0x30 [ 527.388285][ T9049] warn_alloc+0x455/0x650 [ 527.392916][ T9049] ? kmsan_get_metadata+0x13e/0x1c0 [ 527.398427][ T9049] ? __vmalloc_node_range_noprof+0xd6/0x26b0 [ 527.404703][ T9049] __vmalloc_node_range_noprof+0x130/0x26b0 [ 527.410868][ T9049] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 527.416989][ T9049] ? kmsan_get_metadata+0x13e/0x1c0 [ 527.422497][ T9049] ? kmsan_get_metadata+0x13e/0x1c0 [ 527.427988][ T9049] ? kmsan_get_metadata+0x13e/0x1c0 [ 527.433526][ T9049] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 527.439645][ T9049] ? kmsan_get_metadata+0x13e/0x1c0 [ 527.445139][ T9049] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 527.451253][ T9049] vmalloc_user_noprof+0x90/0xb0 [ 527.456460][ T9049] ? xskq_create+0x105/0x270 [ 527.461325][ T9049] xskq_create+0x105/0x270 [ 527.466008][ T9049] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 527.472124][ T9049] xsk_init_queue+0x115/0x1f0 [ 527.477100][ T9049] xsk_setsockopt+0x882/0xcc0 [ 527.482074][ T9049] do_sock_setsockopt+0x4bb/0x7d0 [ 527.487395][ T9049] ? __pfx_xsk_setsockopt+0x10/0x10 [ 527.492881][ T9049] __x64_sys_setsockopt+0x33d/0x4f0 [ 527.498390][ T9049] x64_sys_call+0x30b9/0x3c30 [ 527.503376][ T9049] do_syscall_64+0xcd/0x1e0 [ 527.508182][ T9049] ? clear_bhb_loop+0x25/0x80 [ 527.513131][ T9049] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 527.519307][ T9049] RIP: 0033:0x7f215517e819 [ 527.523968][ T9049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 527.543854][ T9049] RSP: 002b:00007f2155f06038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 527.552562][ T9049] RAX: ffffffffffffffda RBX: 00007f2155335fa0 RCX: 00007f215517e819 [ 527.560789][ T9049] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000005 [ 527.569000][ T9049] RBP: 00007f21551f175e R08: 0000000000000020 R09: 0000000000000000 [ 527.577241][ T9049] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000000 [ 527.585444][ T9049] R13: 0000000000000000 R14: 00007f2155335fa0 R15: 00007ffdc05a9878 [ 527.593668][ T9049] [ 527.601278][ T9049] Mem-Info: [ 527.610786][ T9049] active_anon:5449 inactive_anon:0 isolated_anon:0 [ 527.610786][ T9049] active_file:18854 inactive_file:38307 isolated_file:0 [ 527.610786][ T9049] unevictable:768 dirty:70 writeback:0 [ 527.610786][ T9049] slab_reclaimable:4976 slab_unreclaimable:24862 [ 527.610786][ T9049] mapped:28927 shmem:1444 pagetables:874 [ 527.610786][ T9049] sec_pagetables:0 bounce:0 [ 527.610786][ T9049] kernel_misc_reclaimable:0 [ 527.610786][ T9049] free:370025 free_pcp:9993 free_cma:0 [ 527.664091][ T9049] Node 0 active_anon:21796kB inactive_anon:0kB active_file:75416kB inactive_file:153156kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:115708kB dirty:276kB writeback:0kB shmem:4240kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5344kB pagetables:3632kB sec_pagetables:0kB all_unreclaimable? no [ 527.697037][ T9049] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:0kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 527.731868][ T9049] Node 0 DMA free:4096kB boost:0kB min:160kB low:200kB high:240kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 527.760831][ T9049] lowmem_reserve[]: 0 891 1204 0 0 [ 527.766692][ T9049] Node 0 DMA32 free:503924kB boost:0kB min:36084kB low:45104kB high:54124kB reserved_highatomic:0KB active_anon:5792kB inactive_anon:0kB active_file:70828kB inactive_file:64472kB unevictable:0kB writepending:172kB present:3129332kB managed:951488kB mlocked:0kB bounce:0kB free_pcp:31548kB local_pcp:22672kB free_cma:0kB [ 527.797455][ T9049] lowmem_reserve[]: 0 0 312 0 0 [ 527.803030][ T9049] Node 0 Normal free:17496kB boost:0kB min:12672kB low:15840kB high:19008kB reserved_highatomic:0KB active_anon:16072kB inactive_anon:0kB active_file:4588kB inactive_file:88684kB unevictable:1536kB writepending:104kB present:1048580kB managed:320496kB mlocked:0kB bounce:0kB free_pcp:8036kB local_pcp:3924kB free_cma:0kB [ 527.837837][ T9049] lowmem_reserve[]: 0 0 0 0 0 [ 527.844520][ T9049] Node 1 Normal free:954584kB boost:0kB min:41188kB low:51484kB high:61780kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194300kB managed:1041656kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 527.874006][ T9049] lowmem_reserve[]: 0 0 0 0 0 [ 527.879274][ T9049] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB [ 527.892491][ T9049] Node 0 DMA32: 901*4kB (UME) 882*8kB (UME) 465*16kB (UME) 990*32kB (UME) 756*64kB (UME) 396*128kB (UME) 241*256kB (UM) 131*512kB (UME) 59*1024kB (UME) 35*2048kB (UME) 23*4096kB (UM) = 503924kB [ 527.917793][ T9049] Node 0 Normal: 78*4kB (UME) 144*8kB (UME) 24*16kB (ME) 22*32kB (UME) 30*64kB (U) 27*128kB (UM) 11*256kB (UM) 3*512kB (U) 1*1024kB (M) 2*2048kB (U) 0*4096kB = 17400kB [ 527.937881][ T9049] Node 1 Normal: 4*4kB (UME) 11*8kB (UME) 15*16kB (UE) 24*32kB (UME) 8*64kB (UME) 13*128kB (UME) 12*256kB (UME) 2*512kB (UM) 5*1024kB (UME) 4*2048kB (UME) 228*4096kB (UME) = 954584kB [ 527.958261][ T9049] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 527.968308][ T9049] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 527.977983][ T9049] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 527.987971][ T9049] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 527.997660][ T9049] 58604 total pagecache pages [ 528.002533][ T9049] 0 pages in swap cache [ 528.007118][ T9049] Free swap = 124468kB [ 528.015642][ T9049] Total swap = 124996kB [ 528.020014][ T9049] 2097051 pages RAM [ 528.025494][ T9049] 0 pages HighMem/MovableOnly [ 528.030373][ T9049] 1517617 pages reserved [ 528.034937][ T9049] 0 pages cma reserved [ 528.359959][ T9058] netlink: 'syz.5.950': attribute type 4 has an invalid length. [ 529.260595][ T9072] netlink: 16 bytes leftover after parsing attributes in process `syz.0.954'. [ 529.286431][ T9077] loop1: detected capacity change from 0 to 512 [ 529.421858][ T9077] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 529.430266][ T9077] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 529.439774][ T9077] EXT4-fs (loop1): orphan cleanup on readonly fs [ 529.531471][ T9077] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 529.542673][ T9077] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 529.565495][ T9077] EXT4-fs (loop1): 1 truncate cleaned up [ 529.573435][ T9077] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 529.591669][ T9077] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.953: dx entry: limit 65535 != root limit 120 [ 529.604395][ T9077] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.953: Corrupt directory, running e2fsck is recommended [ 529.618374][ T9077] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 3: comm syz.1.953: path /184/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0 [ 530.029246][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 530.137339][ T9089] loop5: detected capacity change from 0 to 1024 [ 530.222220][ T9089] EXT4-fs: Ignoring removed orlov option [ 530.301978][ T9089] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 530.424988][ T9089] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 531.181318][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 531.485415][ T9111] netlink: 55631 bytes leftover after parsing attributes in process `syz.1.967'. [ 532.069772][ T9117] netlink: 'syz.5.965': attribute type 4 has an invalid length. [ 532.286646][ T9121] netlink: 16 bytes leftover after parsing attributes in process `syz.0.969'. [ 532.682943][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 532.683019][ T29] audit: type=1326 audit(2000995971.917:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 532.712049][ T29] audit: type=1326 audit(2000995971.917:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 532.738282][ T29] audit: type=1326 audit(2000995971.917:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 532.762088][ T29] audit: type=1326 audit(2000995971.927:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 532.784863][ T29] audit: type=1326 audit(2000995971.927:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 532.812245][ T29] audit: type=1326 audit(2000995971.927:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 532.838677][ T29] audit: type=1326 audit(2000995971.937:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 532.863762][ T29] audit: type=1326 audit(2000995971.937:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 532.887936][ T29] audit: type=1326 audit(2000995971.937:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 532.911338][ T29] audit: type=1326 audit(2000995971.937:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9126 comm="syz.2.971" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 533.294894][ T9130] loop4: detected capacity change from 0 to 1024 [ 533.657432][ T9130] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 533.677462][ T9151] netlink: 55631 bytes leftover after parsing attributes in process `syz.0.980'. [ 534.105089][ T9156] loop1: detected capacity change from 0 to 1024 [ 534.189918][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 534.434391][ T9156] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 534.933884][ T9169] syzkaller0: entered allmulticast mode [ 535.121392][ T9172] netlink: 16 bytes leftover after parsing attributes in process `syz.2.985'. [ 535.744810][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 535.991174][ T9185] loop4: detected capacity change from 0 to 512 [ 536.218833][ T9193] loop5: detected capacity change from 0 to 128 [ 536.461406][ T9193] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 536.568167][ T9185] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 536.576166][ T9193] ext4 filesystem being mounted at /173/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 536.582298][ T9185] ext4 filesystem being mounted at /193/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 536.816207][ T9202] bridge0: port 2(bridge_slave_1) entered disabled state [ 536.826497][ T9202] bridge0: port 1(bridge_slave_0) entered disabled state [ 536.862093][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 537.270902][ T6363] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 537.477200][ T9207] netlink: 16 bytes leftover after parsing attributes in process `syz.0.999'. [ 537.713382][ T9215] loop5: detected capacity change from 0 to 1024 [ 537.820283][ T9215] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 538.282628][ T29] kauditd_printk_skb: 6 callbacks suppressed [ 538.282707][ T29] audit: type=1326 audit(2000995977.377:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9222 comm="syz.2.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 538.312344][ T29] audit: type=1326 audit(2000995977.387:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9222 comm="syz.2.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 538.335201][ T29] audit: type=1326 audit(2000995977.387:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9222 comm="syz.2.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 538.361522][ T29] audit: type=1326 audit(2000995977.387:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9222 comm="syz.2.1003" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 538.745243][ T9235] smc: net device bond0 applied user defined pnetid SYZ0 [ 538.752024][ T9235] smc: net device bond0 erased user defined pnetid SYZ0 [ 539.038326][ T9242] loop2: detected capacity change from 0 to 512 [ 539.065787][ T9242] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2813: inode #11: comm syz.2.1009: corrupted xattr block 95: invalid header [ 539.067136][ T9242] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.1009: bg 0: block 7: invalid block bitmap [ 539.068010][ T9242] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 539.068810][ T9242] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2977: inode #11: comm syz.2.1009: corrupted xattr block 95: invalid header [ 539.069561][ T9242] EXT4-fs warning (device loop2): ext4_evict_inode:276: xattr delete (err -117) [ 539.075759][ T9242] EXT4-fs (loop2): 1 orphan inode deleted [ 539.077633][ T9242] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 539.523078][ T29] audit: type=1326 audit(2000995978.337:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.4.1008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26ef17e819 code=0x7ffc0000 [ 539.546157][ T29] audit: type=1326 audit(2000995978.367:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.4.1008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26ef17e819 code=0x7ffc0000 [ 539.569029][ T29] audit: type=1326 audit(2000995978.377:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.4.1008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26ef17e819 code=0x7ffc0000 [ 539.595378][ T29] audit: type=1326 audit(2000995978.397:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.4.1008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26ef17e819 code=0x7ffc0000 [ 539.619534][ T29] audit: type=1326 audit(2000995978.397:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.4.1008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f26ef17e819 code=0x7ffc0000 [ 539.642329][ T29] audit: type=1326 audit(2000995978.397:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9240 comm="syz.4.1008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26ef17e819 code=0x7ffc0000 [ 539.974365][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 540.326207][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 540.433783][ T9254] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1012'. [ 540.901019][ T9254] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1012'. [ 540.945033][ T9259] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1014'. [ 541.104658][ T9261] loop4: detected capacity change from 0 to 1024 [ 541.127300][ T9261] EXT4-fs: Ignoring removed orlov option [ 541.375143][ T9267] loop0: detected capacity change from 0 to 512 [ 541.461688][ T9267] EXT4-fs: Ignoring removed nomblk_io_submit option [ 541.469163][ T9267] EXT4-fs: Ignoring removed mblk_io_submit option [ 541.513408][ T9261] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 541.746061][ T9261] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 541.881625][ T9267] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 541.890161][ T9267] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 541.922017][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 542.075202][ T9267] EXT4-fs (loop0): 1 truncate cleaned up [ 542.113820][ T9267] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 542.333261][ T9283] loop5: detected capacity change from 0 to 1024 [ 542.535727][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 542.835521][ T9283] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 543.377297][ T9300] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1028'. [ 544.060964][ T9318] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1030'. [ 544.116317][ T9314] loop4: detected capacity change from 0 to 1024 [ 544.145195][ T9314] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 544.158728][ T9314] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 544.175551][ T9316] netlink: 'syz.2.1033': attribute type 4 has an invalid length. [ 544.244302][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 544.764505][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 545.269582][ T9330] loop2: detected capacity change from 0 to 512 [ 545.305197][ T9330] EXT4-fs: Ignoring removed nomblk_io_submit option [ 545.312381][ T9330] EXT4-fs: Ignoring removed mblk_io_submit option [ 545.384660][ T9330] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 545.393115][ T9330] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 545.533831][ T9330] EXT4-fs (loop2): 1 truncate cleaned up [ 545.541351][ T9330] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 545.848881][ T9345] loop1: detected capacity change from 0 to 512 [ 545.953356][ T29] kauditd_printk_skb: 3 callbacks suppressed [ 545.953433][ T29] audit: type=1326 audit(2000995985.197:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.5.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 545.983227][ T29] audit: type=1326 audit(2000995985.197:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.5.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 546.006648][ T29] audit: type=1326 audit(2000995985.207:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.5.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 546.029489][ T29] audit: type=1326 audit(2000995985.207:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.5.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 546.055814][ T29] audit: type=1326 audit(2000995985.207:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.5.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 546.067798][ T9345] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 546.086801][ T9345] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 546.106935][ T9345] EXT4-fs (loop1): orphan cleanup on readonly fs [ 546.130651][ T9345] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 546.147184][ T9345] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 546.160640][ T9345] EXT4-fs (loop1): 1 truncate cleaned up [ 546.168390][ T9345] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 546.192165][ T29] audit: type=1326 audit(2000995985.387:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.5.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 546.215492][ T29] audit: type=1326 audit(2000995985.387:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.5.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 546.241887][ T29] audit: type=1326 audit(2000995985.387:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.5.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 546.266024][ T29] audit: type=1326 audit(2000995985.427:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.5.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 546.288870][ T29] audit: type=1326 audit(2000995985.437:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9346 comm="syz.5.1041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 546.331689][ T9345] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.1039: dx entry: limit 65535 != root limit 120 [ 546.348333][ T9345] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.1039: Corrupt directory, running e2fsck is recommended [ 546.384183][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 546.425742][ T9350] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1042'. [ 546.463971][ T9345] EXT4-fs error (device loop1): ext4_readdir:261: inode #2: block 3: comm syz.1.1039: path /201/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0 [ 546.736085][ T9356] loop2: detected capacity change from 0 to 1024 [ 546.813514][ T9353] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1043'. [ 546.903609][ T9356] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 546.953417][ T9357] mmap: syz.5.1045 (9357) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 547.224818][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 547.241071][ T9364] loop0: detected capacity change from 0 to 1024 [ 547.438673][ T9364] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 547.439121][ T9364] ext4 filesystem being mounted at /217/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 547.575313][ T9366] netlink: 'syz.4.1046': attribute type 4 has an invalid length. [ 547.894542][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 548.223085][ T9372] loop5: detected capacity change from 0 to 1764 [ 548.447823][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 548.890627][ T9384] loop0: detected capacity change from 0 to 128 [ 549.368615][ T9384] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 549.375091][ T9392] loop1: detected capacity change from 0 to 512 [ 549.410821][ T9384] ext4 filesystem being mounted at /218/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 549.442537][ T9392] EXT4-fs: Ignoring removed nomblk_io_submit option [ 549.449846][ T9392] EXT4-fs: Ignoring removed mblk_io_submit option [ 549.644722][ T9392] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 549.653571][ T9392] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2 [ 549.736557][ T9392] EXT4-fs (loop1): 1 truncate cleaned up [ 549.746626][ T9392] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 549.807764][ T9402] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1056'. [ 550.059111][ T9404] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1057'. [ 550.287117][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 550.824503][ T9408] loop5: detected capacity change from 0 to 512 [ 550.836567][ T9411] loop2: detected capacity change from 0 to 1024 [ 550.955320][ T9414] netlink: 'syz.4.1061': attribute type 4 has an invalid length. [ 550.964897][ T9408] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 550.973249][ T9408] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 551.028336][ T9411] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 551.041778][ T9411] ext4 filesystem being mounted at /223/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 551.074524][ T9408] EXT4-fs (loop5): orphan cleanup on readonly fs [ 551.184186][ T9408] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279949761 > max in inode 13 [ 551.194951][ T9408] EXT4-fs warning (device loop5): ext4_block_to_path:107: block 3279949762 > max in inode 13 [ 551.490946][ T9408] EXT4-fs (loop5): 1 truncate cleaned up [ 551.499090][ T9408] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 551.581351][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 551.647311][ T5801] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 551.741087][ T9424] loop4: detected capacity change from 0 to 1024 [ 551.979691][ T9428] EXT4-fs warning (device loop5): dx_probe:893: inode #2: comm syz.5.1058: dx entry: limit 65535 != root limit 120 [ 551.994269][ T9428] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.1058: Corrupt directory, running e2fsck is recommended [ 552.055083][ T9424] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 552.108239][ T9428] EXT4-fs error (device loop5): ext4_readdir:261: inode #2: block 3: comm syz.5.1058: path /185/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0 [ 552.824708][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 552.985246][ T9435] loop1: detected capacity change from 0 to 1024 [ 553.105975][ T9435] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 553.198032][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 553.545490][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 554.554765][ T9457] netlink: 'syz.4.1073': attribute type 4 has an invalid length. [ 554.687155][ T9458] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1071'. [ 556.393266][ T9480] loop1: detected capacity change from 0 to 1024 [ 556.639830][ T9480] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 556.824543][ T9495] smc: net device bond0 applied user defined pnetid SYZ0 [ 556.844407][ T9495] smc: net device bond0 erased user defined pnetid SYZ0 [ 556.915075][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 556.976981][ T9493] netlink: 'syz.2.1085': attribute type 4 has an invalid length. [ 557.561837][ T9503] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1087'. [ 558.179294][ T9511] loop2: detected capacity change from 0 to 4096 [ 558.271346][ T9511] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 558.347515][ T29] kauditd_printk_skb: 13 callbacks suppressed [ 558.347594][ T29] audit: type=1326 audit(2000995997.607:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9510 comm="syz.2.1091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 558.388260][ T29] audit: type=1326 audit(2000995997.647:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9510 comm="syz.2.1091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 558.412063][ T29] audit: type=1326 audit(2000995997.647:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9510 comm="syz.2.1091" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc0eb77e819 code=0x7ffc0000 [ 558.724936][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 560.002136][ T9540] smc: net device bond0 applied user defined pnetid SYZ0 [ 560.011254][ T9540] smc: net device bond0 erased user defined pnetid SYZ0 [ 560.176530][ T9542] loop0: detected capacity change from 0 to 512 [ 560.554523][ T9544] netlink: 'syz.0.1101': attribute type 4 has an invalid length. [ 560.663168][ T29] audit: type=1326 audit(2000995999.907:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.5.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 560.689896][ T29] audit: type=1326 audit(2000995999.907:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.5.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 560.714085][ T29] audit: type=1326 audit(2000995999.927:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.5.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 560.737125][ T29] audit: type=1326 audit(2000995999.927:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.5.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 560.759875][ T29] audit: type=1326 audit(2000995999.927:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.5.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 560.786553][ T29] audit: type=1326 audit(2000995999.927:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.5.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 560.810531][ T29] audit: type=1326 audit(2000995999.957:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9548 comm="syz.5.1104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5aa557e819 code=0x7ffc0000 [ 561.025241][ T9547] loop1: detected capacity change from 0 to 512 [ 561.297999][ T9547] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 561.312500][ T9547] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it [ 561.324043][ T9547] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.1102: Corrupt directory, running e2fsck is recommended [ 561.371944][ T9547] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117 [ 561.380699][ T9547] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.1102: corrupted in-inode xattr: invalid ea_ino [ 561.564287][ T9547] EXT4-fs (loop1): Remounting filesystem read-only [ 561.574085][ T9547] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 561.739523][ T9567] loop5: detected capacity change from 0 to 1024 [ 561.860315][ T9567] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 561.873675][ T9567] ext4 filesystem being mounted at /195/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 562.103977][ T9573] smc: net device bond0 applied user defined pnetid SYZ0 [ 562.117324][ T9573] smc: net device bond0 erased user defined pnetid SYZ0 [ 562.290531][ T9575] lo speed is unknown, defaulting to 1000 [ 562.296764][ T9575] lo speed is unknown, defaulting to 1000 [ 562.303834][ T9575] lo speed is unknown, defaulting to 1000 [ 562.328157][ T9575] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 562.366735][ T9575] infiniband syzD: RDMA CMA: cma_listen_on_dev, error -98 [ 562.576770][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 562.686790][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 562.737124][ T9575] lo speed is unknown, defaulting to 1000 [ 562.745541][ T9575] lo speed is unknown, defaulting to 1000 [ 562.754137][ T9575] lo speed is unknown, defaulting to 1000 [ 562.762390][ T9575] lo speed is unknown, defaulting to 1000 [ 562.770772][ T9575] lo speed is unknown, defaulting to 1000 [ 563.425103][ T9585] netlink: 'syz.0.1115': attribute type 4 has an invalid length. [ 565.547866][ T9615] netlink: 'syz.4.1128': attribute type 4 has an invalid length. [ 566.359554][ T9633] loop2: detected capacity change from 0 to 1024 [ 566.419447][ T9633] EXT4-fs: Ignoring removed orlov option [ 566.465171][ T9633] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 566.645225][ T9633] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 566.683564][ T9633] EXT4-fs error (device loop2): ext4_find_dest_de:2079: inode #12: block 7: comm syz.2.1135: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0 [ 566.716935][ T9633] EXT4-fs (loop2): Remounting filesystem read-only [ 566.775548][ T9641] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1137'. [ 566.811208][ T9641] veth0_macvtap: left promiscuous mode [ 566.966978][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 567.503410][ T9652] ALSA: seq fatal error: cannot create timer (-22) [ 568.368578][ T9668] loop5: detected capacity change from 0 to 1024 [ 568.405218][ T9668] EXT4-fs: Ignoring removed orlov option [ 568.463860][ T9668] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 568.913558][ T9668] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 569.108672][ T9668] EXT4-fs error (device loop5): ext4_find_dest_de:2079: inode #12: block 7: comm syz.5.1150: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0 [ 569.186632][ T9681] loop2: detected capacity change from 0 to 512 [ 569.222706][ T9681] EXT4-fs: Ignoring removed orlov option [ 569.253573][ T9668] EXT4-fs (loop5): Remounting filesystem read-only [ 569.263972][ T9681] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 569.449638][ T6363] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 569.571263][ T9681] EXT4-fs (loop2): 1 orphan inode deleted [ 569.577771][ T9681] EXT4-fs (loop2): 1 truncate cleaned up [ 569.590006][ T9681] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 569.789586][ T9681] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 570.318943][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 571.285062][ T9716] loop1: detected capacity change from 0 to 1024 [ 571.354078][ T9716] EXT4-fs: Ignoring removed orlov option [ 571.367569][ T9716] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 571.459675][ T9716] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 571.588552][ T9716] EXT4-fs error (device loop1): ext4_find_dest_de:2079: inode #12: block 7: comm syz.1.1168: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0 [ 571.756435][ T9716] EXT4-fs (loop1): Remounting filesystem read-only [ 572.054548][ T5816] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 573.737960][ T9749] ===================================================== [ 573.745285][ T9749] BUG: KMSAN: uninit-value in hsr_forward_skb+0x9ee/0x3b10 [ 573.752955][ T9749] hsr_forward_skb+0x9ee/0x3b10 [ 573.758020][ T9749] hsr_dev_xmit+0x2f0/0x350 [ 573.762711][ T9749] dev_hard_start_xmit+0x247/0xa20 [ 573.768136][ T9749] __dev_queue_xmit+0x366a/0x57d0 [ 573.773459][ T9749] packet_xmit+0x9c/0x6c0 [ 573.777980][ T9749] packet_sendmsg+0x91ae/0xa6f0 [ 573.783084][ T9749] __sock_sendmsg+0x30f/0x380 [ 573.787964][ T9749] __sys_sendto+0x594/0x750 [ 573.792687][ T9749] __x64_sys_sendto+0x125/0x1d0 [ 573.797831][ T9749] x64_sys_call+0x346a/0x3c30 [ 573.802809][ T9749] do_syscall_64+0xcd/0x1e0 [ 573.807518][ T9749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 573.813717][ T9749] [ 573.816130][ T9749] Uninit was created at: [ 573.820618][ T9749] kmem_cache_alloc_node_noprof+0x6bf/0xb80 [ 573.826818][ T9749] kmalloc_reserve+0x13d/0x4a0 [ 573.831798][ T9749] __alloc_skb+0x363/0x7b0 [ 573.836507][ T9749] alloc_skb_with_frags+0xc8/0xd00 [ 573.841858][ T9749] sock_alloc_send_pskb+0xa81/0xbf0 [ 573.847316][ T9749] packet_sendmsg+0x74c6/0xa6f0 [ 573.852346][ T9749] __sock_sendmsg+0x30f/0x380 [ 573.857304][ T9749] __sys_sendto+0x594/0x750 [ 573.862015][ T9749] __x64_sys_sendto+0x125/0x1d0 [ 573.867181][ T9749] x64_sys_call+0x346a/0x3c30 [ 573.872074][ T9749] do_syscall_64+0xcd/0x1e0 [ 573.876878][ T9749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 573.883063][ T9749] [ 573.885500][ T9749] CPU: 1 UID: 0 PID: 9749 Comm: syz.2.1182 Not tainted 6.12.0-syzkaller-09073-g9f16d5e6f220 #0 [ 573.896116][ T9749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 573.906422][ T9749] ===================================================== [ 573.913547][ T9749] Disabling lock debugging due to kernel taint [ 573.919824][ T9749] Kernel panic - not syncing: kmsan.panic set ... [ 573.926379][ T9749] CPU: 1 UID: 0 PID: 9749 Comm: syz.2.1182 Tainted: G B 6.12.0-syzkaller-09073-g9f16d5e6f220 #0 [ 573.938411][ T9749] Tainted: [B]=BAD_PAGE [ 573.942677][ T9749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 573.952887][ T9749] Call Trace: [ 573.956281][ T9749] [ 573.959327][ T9749] dump_stack_lvl+0x216/0x2d0 [ 573.964245][ T9749] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 573.970294][ T9749] dump_stack+0x1e/0x30 [ 573.974658][ T9749] panic+0x4e2/0xcf0 [ 573.978759][ T9749] ? kmsan_get_metadata+0x81/0x1c0 [ 573.984117][ T9749] kmsan_report+0x2c7/0x2d0 [ 573.988848][ T9749] ? __msan_chain_origin+0xc3/0x150 [ 573.994260][ T9749] ? dev_queue_xmit_nit+0x415/0x1460 [ 573.999741][ T9749] ? dev_hard_start_xmit+0x17d/0xa20 [ 574.005241][ T9749] ? __dev_queue_xmit+0x366a/0x57d0 [ 574.010658][ T9749] ? packet_xmit+0x9c/0x6c0 [ 574.015361][ T9749] ? packet_sendmsg+0x91ae/0xa6f0 [ 574.020574][ T9749] ? __sock_sendmsg+0x30f/0x380 [ 574.025624][ T9749] ? __msan_warning+0x95/0x120 [ 574.030597][ T9749] ? hsr_forward_skb+0x9ee/0x3b10 [ 574.035824][ T9749] ? hsr_dev_xmit+0x2f0/0x350 [ 574.040681][ T9749] ? dev_hard_start_xmit+0x247/0xa20 [ 574.046176][ T9749] ? __dev_queue_xmit+0x366a/0x57d0 [ 574.051599][ T9749] ? packet_xmit+0x9c/0x6c0 [ 574.056312][ T9749] ? packet_sendmsg+0x91ae/0xa6f0 [ 574.061523][ T9749] ? __sock_sendmsg+0x30f/0x380 [ 574.066582][ T9749] ? __sys_sendto+0x594/0x750 [ 574.071487][ T9749] ? __x64_sys_sendto+0x125/0x1d0 [ 574.076738][ T9749] ? x64_sys_call+0x346a/0x3c30 [ 574.081800][ T9749] ? do_syscall_64+0xcd/0x1e0 [ 574.086691][ T9749] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 574.092958][ T9749] ? packet_sendmsg+0x91ae/0xa6f0 [ 574.098170][ T9749] ? __sock_sendmsg+0x30f/0x380 [ 574.103218][ T9749] ? __sys_sendto+0x594/0x750 [ 574.108104][ T9749] ? __x64_sys_sendto+0x125/0x1d0 [ 574.113340][ T9749] ? x64_sys_call+0x346a/0x3c30 [ 574.118396][ T9749] ? do_syscall_64+0xcd/0x1e0 [ 574.123287][ T9749] ? kmsan_get_metadata+0x13e/0x1c0 [ 574.128709][ T9749] ? kmsan_get_metadata+0x13e/0x1c0 [ 574.134120][ T9749] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 574.140136][ T9749] ? kmsan_get_metadata+0x13e/0x1c0 [ 574.145532][ T9749] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 574.151557][ T9749] ? hsr_get_node+0x7b5/0xd30 [ 574.156413][ T9749] ? kmsan_get_metadata+0x13e/0x1c0 [ 574.161817][ T9749] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 574.167835][ T9749] ? __pfx_hsr_fill_frame_info+0x10/0x10 [ 574.173666][ T9749] __msan_warning+0x95/0x120 [ 574.178444][ T9749] hsr_forward_skb+0x9ee/0x3b10 [ 574.183508][ T9749] hsr_dev_xmit+0x2f0/0x350 [ 574.188186][ T9749] ? __pfx_hsr_dev_xmit+0x10/0x10 [ 574.193382][ T9749] dev_hard_start_xmit+0x247/0xa20 [ 574.198716][ T9749] __dev_queue_xmit+0x366a/0x57d0 [ 574.203954][ T9749] ? __dev_queue_xmit+0x3d6/0x57d0 [ 574.209298][ T9749] packet_xmit+0x9c/0x6c0 [ 574.213825][ T9749] packet_sendmsg+0x91ae/0xa6f0 [ 574.218846][ T9749] ? __schedule+0x1f99/0x69a0 [ 574.223683][ T9749] ? kmsan_get_metadata+0x13e/0x1c0 [ 574.229096][ T9749] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 574.235119][ T9749] ? aa_label_sk_perm+0x677/0x7b0 [ 574.240299][ T9749] ? filter_irq_stacks+0x60/0x1a0 [ 574.245504][ T9749] ? kmsan_get_metadata+0x13e/0x1c0 [ 574.250964][ T9749] ? __pfx_packet_sendmsg+0x10/0x10 [ 574.256341][ T9749] ? __pfx_packet_sendmsg+0x10/0x10 [ 574.261710][ T9749] __sock_sendmsg+0x30f/0x380 [ 574.266566][ T9749] __sys_sendto+0x594/0x750 [ 574.271260][ T9749] ? do_futex+0x341/0x4a0 [ 574.275736][ T9749] ? kmsan_get_metadata+0x13e/0x1c0 [ 574.281162][ T9749] __x64_sys_sendto+0x125/0x1d0 [ 574.286219][ T9749] x64_sys_call+0x346a/0x3c30 [ 574.291088][ T9749] do_syscall_64+0xcd/0x1e0 [ 574.295787][ T9749] ? clear_bhb_loop+0x25/0x80 [ 574.300660][ T9749] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 574.306733][ T9749] RIP: 0033:0x7fc0eb77e819 [ 574.311283][ T9749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 574.331078][ T9749] RSP: 002b:00007fc0ec4af038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 574.339665][ T9749] RAX: ffffffffffffffda RBX: 00007fc0eb935fa0 RCX: 00007fc0eb77e819 [ 574.347784][ T9749] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 574.355886][ T9749] RBP: 00007fc0eb7f175e R08: 0000000020000200 R09: 0000000000000014 [ 574.363995][ T9749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 574.372093][ T9749] R13: 0000000000000000 R14: 00007fc0eb935fa0 R15: 00007ffe40c71ff8 [ 574.380224][ T9749] [ 574.383626][ T9749] Kernel Offset: disabled [ 574.388012][ T9749] Rebooting in 86400 seconds..