last executing test programs: 6.375802186s ago: executing program 2 (id=696): r0 = socket$netlink(0x10, 0x3, 0xf) bind$netlink(r0, &(0x7f0000000a40)={0x10, 0x0, 0x25dfdbfb, 0x2ffffffff}, 0xc) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f00000003c0)=0x6, 0xdc) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000ac0)={&(0x7f0000000b00)='kmem_cache_free\x00', r1, 0x0, 0x1034}, 0x18) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000006c0)=@newlink={0x48, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x20300}}}}}}]}, 0x48}}, 0x4040004) syz_usb_connect(0x0, 0x10b, &(0x7f0000000000)=ANY=[], 0x0) 5.221054343s ago: executing program 3 (id=707): socket$inet6_tcp(0xa, 0x1, 0x0) openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0xa0100) r0 = socket$qrtr(0x2a, 0x2, 0x0) connect$qrtr(r0, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc) syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x465c, 0x800, 0x3, 0x287}, &(0x7f00000004c0)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004845) r3 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x1, 0x20002f7}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x3, 0xffff}, {0xe, 0xffe0}}}, 0x24}, 0x1, 0x0, 0x0, 0x48080}, 0x40010) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x5, &(0x7f0000000000)=0x6, 0x2c) r4 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8) io_uring_enter(r3, 0x2219, 0x7721, 0x16, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r0, 0x0, 0x0}) 5.06222725s ago: executing program 3 (id=709): bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000280)=ANY=[], 0x0, 0x4, 0x0, 0x0, 0x0, 0x4c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) openat(0xffffffffffffff9c, 0x0, 0x42, 0x0) lremovexattr(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)=@known='user.incfs.metadata\x00') 5.002240702s ago: executing program 3 (id=710): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c) sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='cgroup.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000240)={0x0, 0x6}, 0x8) 4.891497467s ago: executing program 3 (id=712): socket(0x24, 0x6, 0x403) r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./bus/file0\x00', 0x21085e, &(0x7f0000000140)={[{@nouid32}, {@nogrpid}, {@dax_inode}]}, 0x1, 0x51d, &(0x7f0000001480)="$eJzs3c9vHFcdAPDvTLK2k7h1WnoABG1oCwFFWceb1qp6gHJCCFVC9AhSauyNZXnXa3nXpTaRcM9ckajECY78AZx74s4FwY1LOSDxwwLVSBwGzezY2di79uaHvZb385FG89688X7fizPvzbxd7wtgbN2IiJ2ImIiI9yNipjyelFu8093y8z7bfbC4t/tgMYkse++fSVGeH4uen8ldK19zKiJ+8J2IHydH47a3tlcXGo36Rpmf7TTXZ9tb27dXmgvL9eX6Wq02Pzd/5627b9YeozVTx5a+0pwoU1/+9A873/hpXq3p8khvO56lbtMrB3FylyPie6cRbAQule2ZGHVFeCJpRLwYEa8W1/9MXCp+mwDARZZlM5HN9OYBgIsuLebAkrRazgVMR5pWq905vJfiatpotTu37rc215a6c2XXo5LeX2nU75RzhdejkuT5uSL9MF87lL8bES9ExC8mrxT56mKrsTTKGx8AGGPXDo3//5nsjv8AwAV3/MdmAICLyPgPAOPH+A8A48f4DwDjpzv+X3ncH8uy7GenUR0A4Ax4/geA8WP8B4Cx8v133823bK/8/uulD7Y2V1sf3F6qt1erzc3F6mJrY7263GotF9/Z0zzp9Rqt1vrcG7H54fVvrrc7s+2t7XvN1uZa517xvd736pXirJ0zaBkAMMgLr3zy5yQfkd++UmzRs5ZDZaQ1A05bOuoKACNzadQVAEbGal8wvh4+4z/2hwBMD8AF0WeJ3kdM9fsDoSzLstOrEnDKbn7B/D+Mq575f58ChjFz0vx/sTawNwnhQjL/D+Mry5Jh1/yPYU8EAM63Y+b4r5/lfQgwOgPe/3+x3P+2fHPgR0uHz/j4NGsFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA59v++r/Vcpnf6UjTajXiuWIBoEpyf6VRvxMRz0fEnyYrk3l+bsR1BgCeVvq3pFz/6+bM69OPFL187SA5ERE/+dV7v/xwodPZ+GPERPKvyf3jnY/L47UTg02dRgsAgOPtj9PFvudB/rPdB4v721nW5+/f7t4V5HH3didi7yD+5bhc7KeiEhFX/52U+a6kZ+7iaex8FBGf79f+JKaLOZDuLcvh+Hns5840fvpI/LRcoDkt/y0+9wzqAuPmk7z/eaff9ZfGjWLf//qfKnqop1f2f/lLLe4VfeDD+Pv936UB/d+NYWO88fvvdlNXjpZ9FPHFyxH7sfd6+p/9+MmA+K8PGf8vX3r51UFl2a8jbkb/+L2xZjvN9dn21vbtlebCcn25vlarzc/N33nr7pu12WKOenbwaPCPt289P6gsb//VAfGnTmj/V4ds/2/+9/4Pv3JM/K+/1i9+Gi8dEz8fE782ZPyFq78b+Nydx1862v5kmN//rSHjf/rX7SPLhgMAo9Pe2l5daDTqGxIS5z+R/5c9B9Xom/jWWcWaiP5FP3+te00fKsqyJ4o1qMd4FrNuwHlwcNFHxH9HXRkAAAAAAAAAAAAAAKCvs/iLpVG3EQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIvr/wEAAP//Rb3T2A==") r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x101842, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xb, &(0x7f0000000600)=ANY=[@ANYRES16=r0, @ANYRES32=r1, @ANYRESDEC=r0], &(0x7f0000000800)='syzkaller\x00', 0x1000, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r2, 0x0, 0xfffffffffffffffc}, 0x18) mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0) r5 = creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000540)={'\x00', 0x7e, 0x7527, 0x5c8, 0x7fff, 0x9, 0x0}) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x1f00, 0x0, '\x00', 0x0, @fallback=0x1c, r5, 0x0, 0x0, 0x3a, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f00000019c0)=@mangle={'mangle\x00', 0x64, 0x6, 0x510, 0xd0, 0x288, 0x358, 0x358, 0x1b8, 0x440, 0x440, 0x440, 0x440, 0x440, 0x6, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @empty, [0xffffffff, 0xff000000, 0xffffff00, 0xff000000], [0xffffff00, 0xff, 0xff, 0x7fffffff], 'hsr0\x00', 'xfrm0\x00', {0xff}, {0xff}, 0x29, 0x7, 0x2, 0x1}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE2={0x28, 'NFQUEUE\x00', 0x2, {0x0, 0x5}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00', {}, {}, 0x11}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast}}}, {{@ipv6={@mcast2, @loopback, [], [], 'veth0_to_team\x00', 'syzkaller0\x00', {}, {}, 0x0, 0x0, 0x4}, 0x0, 0xa8, 0xd0}, @common=@unspec=@MARK={0x28}}, {{@uncond, 0x0, 0xa8, 0xd0}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x12}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x570) r8 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netfilter\x00') getdents(r8, &(0x7f0000001fc0)=""/184, 0xb8) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0xa, 0x8, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=0x0, @ANYRES8=r2], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x94) r10 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000100)='svcrdma_dma_map_rw_err\x00', r9, 0x0, 0x7}, 0x18) pipe(&(0x7f0000000240)={0xffffffffffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, 0xffffffffffffffff}) writev(r1, &(0x7f0000000340), 0x0) pipe(&(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) splice(r13, 0x0, 0xffffffffffffffff, 0x0, 0xf3a, 0xa) splice(r11, 0x0, r14, 0x0, 0x80, 0x7) write$bt_hci(r14, &(0x7f00000004c0)=ANY=[@ANYRES16=r10, @ANYRESDEC=r6, @ANYRES16, @ANYRES8=r4, @ANYRES32=r11, @ANYRESHEX, @ANYRES8=r6, @ANYRESOCT=r3], 0x7) write(r12, 0x0, 0x0) r15 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r15, &(0x7f00000007c0)={0x400000000000000, 0x0, &(0x7f0000000700)={&(0x7f0000001900)=ANY=[@ANYBLOB="020f000015000000000000000000000005000500000000000a00000000000000000000000000000000432e0000000000000000000000000008001200000002000000f1edc4ea00000600000000000000000000000000000000000000000000000000000000000000fc01000000000000000000000000810005000600000000000a00000000000000ff0200000000000000000000000000010000000000000000010018"], 0xa8}}, 0x40080) ioctl$BLKTRACETEARDOWN(r5, 0x1276, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x143041, 0x0) ioctl$EXT4_IOC_MIGRATE(r1, 0x6609) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x2000000000000047, &(0x7f00000002c0)=ANY=[@ANYRES64=r1], &(0x7f0000000040)='GPL\x00', 0xfffffffe, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2000}, 0x94) 3.62094101s ago: executing program 2 (id=719): ioctl$FICLONE(0xffffffffffffffff, 0x40049409, 0xffffffffffffffff) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) bpf$BPF_GET_BTF_INFO(0xf, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000100)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffc}, 0x18) r2 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x80, 0x2, 0x1f9}, &(0x7f0000000000)=0x0, &(0x7f0000000300)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r2, 0x0, 0x0, 0x64, 0x183000, 0x12345}) io_uring_enter(r2, 0x47f6, 0x0, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) 2.294702965s ago: executing program 0 (id=721): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000a40)={0xffffffffffffffff}) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r2, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x4, 0x600, 0x1}}, 0x20) close_range(r1, 0xffffffffffffffff, 0x0) 2.133780451s ago: executing program 1 (id=722): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x300001a, &(0x7f00000010c0)=ANY=[], 0xfc, 0x2c7, &(0x7f0000000740)="$eJzs3T9rc1UYAPDn5l9THRLERRG8oINTeaujS6O8gtBJiIuLwbcFSUqhhYAVrZ36BXQUwU/h6ubsNxB0FNzaoXLl5t7bJDapwf6T+vstPT3nPuc+5zyQTnn68St7w2f7SZyc/RLtdhK1rdiK8yS6UYvKV3EWAMDjcZ5l8UcWEc3i92TlyEbt7rICAO5S8fe/8NC5AAD347fv3/qit7399IM0bcdLndNxP4mIvdNxv1jv7canMYqdeBKduIjILhXj997ffhqNNNeN1/eOx/3x3P6932N9Er8Znegujt9MC2V8PyL/2YznIo3ebrPaqhMvLo5/c0F89Fvxxmsz+W9EJ37+JPZjFM8ij53Gf7mZpu9m35x9/lH+mjw+qUV/bfJcaT0iq99bUQAAAAAAAAAAAAAAAAAAAAAAePQ20jQp2vdM+vfkU2X/nfrFZH0jrXTn+/MU8Zf9gov+QFmULXqOs/i26q/zJE3TrHxwGt+IlxvReJhTAwAAAAAAAAAAAAAAAAAAwH/L4WdHw8FotHNw40F9OBhV3QCqr/X/2w23ZmZejaPhoL58w7XV3zXbbSDP9dqHo9GIW7iWfx7Ej+t5Pkue+a7Mt5ypr36ra9PifliGV4W51VO88M5lhmm5VF3ycJAU71qec7ta+mF2qRUrp5EkczOT2o52DrLJRV1k8zVtz13mdKm17BVfJ/kpVrqNvDSt5xcu/Zll2WrHefvXokblTDJpsbFaLZrlYOEB80H7at1/Wr7h0o+M+k0/cwAAAAAAAAAAAAAAAAAAgMXmvzj9NyfXhtbuLCkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAuGfT//9fDdoRMT9zZXBcBl/3TDloxcHhAx8RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/4G/AgAA//9x9ETn") r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x1) fallocate(r0, 0x0, 0x0, 0x2000402) write(r0, &(0x7f0000000100)="b32378fc7578aa745ac06104a9a93c205c36974eb0b75e3e79c706299f6f179b9efaebb65208f6e7e88b41ae8ff7515ef577e403c40deec91afcebbfe8466917914f653c2619958cc24c5de30189c6b4d9efbb7ac6a1b8fa685c24", 0x5b) 2.124917521s ago: executing program 0 (id=723): pipe2$9p(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80800) vmsplice(r1, &(0x7f0000000040)=[{&(0x7f0000000000)="87", 0x1}], 0x3f, 0x1) fcntl$setpipe(r0, 0x407, 0x176) vmsplice(r1, &(0x7f0000000480)=[{&(0x7f00000000c0)='{', 0x1}], 0x1, 0xd) vmsplice(r0, &(0x7f0000002a80)=[{0x0}], 0x1, 0x8) 1.874987642s ago: executing program 3 (id=724): syz_mount_image$ext4(&(0x7f0000000480)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x8400, &(0x7f00000000c0), 0xfc, 0x574, &(0x7f0000000e40)="$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") bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000080)=ANY=[], 0xfe37, 0x0) 1.825983094s ago: executing program 1 (id=725): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x22000406, &(0x7f0000000080)={[{@dioread_lock}, {@noblock_validity}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@usrquota}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@journal_checksum}, {@barrier_val={'barrier', 0x3d, 0xb}}, {@nobh}, {@grpid}], [], 0x2c}, 0x1, 0x4d8, &(0x7f0000000900)="$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") setsockopt$XDP_RX_RING(0xffffffffffffffff, 0x11b, 0x2, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) syz_emit_ethernet(0x4a, &(0x7f00000004c0)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00\x00)', 0x14, 0x6, 0xfe, @private1={0xfc, 0x1, '\x00', 0xbf}, @local, {[], {{0x0, 0x4001, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2, 0x2}}}}}}}, 0x0) 1.782620676s ago: executing program 2 (id=726): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000280)={0x1, &(0x7f0000000780)=[{0x200000000006, 0xf, 0x6, 0x7ffc1ffb}]}) rt_sigprocmask(0x0, &(0x7f0000000480)={[0xfffffffffffffffd]}, 0x0, 0x8) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f00000000c0), 0x200) ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0f85403, 0x0) 1.586841714s ago: executing program 2 (id=727): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x401}, 0x11) r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x8000000000000002, 0x0, 0x2, 0x8}}, 0x20) 1.555738285s ago: executing program 3 (id=728): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001700)=ANY=[@ANYBLOB="160000000000000061b1000002", @ANYRES32=0x0], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, 0xffffffffffffffff}, 0x0, &(0x7f0000000040)}, 0x20) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001200)={r1, 0x0, &(0x7f0000001780)=""/4096}, 0x20) r2 = socket$netlink(0x10, 0x3, 0x13) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[], 0x2c}, 0x1, 0x0, 0x0, 0x10}, 0x800) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[], 0x44}, 0x1, 0x0, 0x0, 0x24004091}, 0x2000000) sendmsg$TIPC_NL_BEARER_SET(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000940)=ANY=[@ANYBLOB="a8020000", @ANYRES16=r4, @ANYBLOB="010028bd7000fbdbdf2505"], 0x2a8}, 0x1, 0x0, 0x0, 0x48c05}, 0x2404c140) sendmsg$TIPC_NL_BEARER_GET(r2, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="900000e2", @ANYBLOB="00072cbd7000ffdbdf250400000020000580070001006962000004000280080001007564700007000100696200000c00018008000300100000003c000280080002000500000008000100530000000400040008000200040000001c000380080001000000000008000100070000000800010000000080140003800800030001ffffff0800030003000000"], 0x90}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94) r6 = socket$nl_route(0x10, 0x3, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0xd, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff15, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r7}, 0x18) sendmsg$nl_route_sched(r6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=@newtaction={0x90, 0x30, 0x871a15abc695fb3d, 0x0, 0x400000, {}, [{0x7c, 0x1, [@m_tunnel_key={0x78, 0x1, 0x0, 0x0, {{0xf}, {0x48, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @private0}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x90}}, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32=0x0, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94) kexec_load(0x4, 0xa, 0x0, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="38000000031401002dbd700200000025090002007379fb0000000000080041007278650014003300626f6e645f736c6176655f3000"], 0x38}, 0x1, 0x0, 0x0, 0x24000811}, 0x0) 1.406250941s ago: executing program 2 (id=729): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8d89}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000002c00000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$FOU_CMD_ADD(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="010029bd7000fdcbdf250100000014000700ff010000000000000000000000000001050002000a0000005a0cf16cfd63a0eb6ed12f4e579606b04407bcc10bc16f257f6f76fe9e1916b52db95877d8fa2e80f8412b6a2ded12a053fef622ac"], 0x30}, 0x1, 0x0, 0x0, 0x24040050}, 0x20000000) fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x3, &(0x7f0000000000)='source', &(0x7f0000000100)='[\x8b\xa4[\x13\x9b\x00w#\x9b\x94\xb6@\x874L\xf5U\xd7\xcb+3,\x999\xa9\":|\x98\xc5\x93\xba\x8d\xff\x14\x8ag+\xcd\xb1\x96d&\x8dn\x00\xdb\xd2\r!A\x1dZ\x16\xa3\x84\xa1\f\\%$\xd3\x9f\xf4a\xdb\x10\xd1&\x83\xba\x9d\x91\xf7\x92\xfb}\x91\x8d\xbav5{\xe4M;\xa2:\xe0\xfc\xa2G\xd3bBM\xe3i\xfc\x01\xc2\xa1|\x90\xd5\x8d;U\xe2', 0x0) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r6, 0x84, 0x1f, &(0x7f0000000240)={0x0, @in6={{0xa, 0x4e21, 0x8, @empty, 0x8}}, 0x1, 0x8001}, &(0x7f0000000040)=0x90) syz_open_dev$tty1(0xc, 0x4, 0x4) r7 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_opts(r7, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) r8 = socket$nl_route(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f00000003c0)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sendmsg$nl_route_sched(r8, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000046c0)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x8000000, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xf}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x2, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x40000000, 0x1000, 0x6, 0x0, 0x0, 0x8000002, 0x0, 0x7e150a0b, 0x0, 0x80005, 0x0, 0x0, 0x4, 0x4, 0x0, 0x100000, 0x0, 0x43, 0x0, 0x974, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0xfffffffe, 0x10000, 0x5d2, 0x4, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf7fffffe, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x1007, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x40000000, 0x3, 0x3, 0x6, 0x1, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, 0x0, 0x0, 0x0, 0xd, 0x0, 0x7, 0x2, 0x9, 0x0, 0x3, 0x7, 0xfbfffffd, 0x0, 0x0, 0x0, 0xd, 0x0, 0xfffffffc, 0x0, 0x0, 0xffffffff, 0x3, 0x0, 0x0, 0x4fd, 0x2000, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x7e98263b, 0x9, 0x0, 0x7, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd2d3, 0x0, 0x0, 0xb2e, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0xff, 0x1000, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x6, 0xc3f3, 0x2, 0x10000, 0x800, 0x5, 0x800, 0x0, 0x8, 0xe, 0x0, 0x8, 0x9, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0xfffffffe, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x8000, 0x0, 0xfffffffd, 0x0, 0x0, 0xd819ac9, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0xffffffff, 0x1, 0x0, 0x80000001, 0x0, 0x10, 0x20, 0x4, 0x400000b2, 0x0, 0x0, 0x6, 0x0, 0x0, 0x8, 0x0, 0x0, 0x1000, 0x100, 0x0, 0x0, 0x0, 0x40000, 0x0, 0xc38, 0x3, 0x1, 0x6, 0xfffffffe, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x4, 0x0, 0x0, 0x20000041, 0xffbfffff, 0x400, 0x5, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x3, 0x80, 0x0, 0x0, 0x8000, 0x1ff, 0x20, 0xaaf0]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x0, 0xc0000001}, {0x3, 0x0, 0xf, 0x0, 0x1, 0xffffffff}, 0x7, 0x10, 0x2000000}}]}}]}, 0x45c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) getsockopt$inet_opts(r7, 0x0, 0x9, 0xfffffffffffffffe, &(0x7f0000000200)) 1.370613213s ago: executing program 1 (id=730): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c) sendto$inet6(r0, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c) write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000240)={0x0, 0x6}, 0x8) 1.284047867s ago: executing program 1 (id=731): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000012c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x51, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000a40)={0xffffffffffffffff}) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, 0x0, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000500)={r2, 0x0, 0x2d, 0x0, @val=@netfilter={0xa, 0x4, 0x600, 0x1}}, 0x20) close_range(r1, 0xffffffffffffffff, 0x0) 1.118605933s ago: executing program 0 (id=732): r0 = openat$rdma_cm(0xffffff9c, &(0x7f00000006c0), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000540)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000500)={0xffffffffffffffff}, 0x106, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000600)={0x3, 0x40, 0xfa00, {{0xa, 0x4e20, 0x3, @loopback, 0x1}, {0xa, 0x0, 0x5, @mcast2}, r1}}, 0x48) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f00000000c0)={0x3, 0x40, 0xfa00, {{0xa, 0x4e21, 0x6, @empty, 0x9}, {0xa, 0x4e20, 0xfffffffc, @mcast1}, r1, 0x20000}}, 0x48) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x13f, 0x5}}, 0x20) 400.814273ms ago: executing program 1 (id=733): r0 = socket$pptp(0x18, 0x1, 0x2) r1 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) io_uring_setup(0x1de0, &(0x7f00000000c0)={0x0, 0x45d6}) ioctl$MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000000)={0x0}) ioctl$MON_IOCX_GETX(r1, 0x80089203, &(0x7f0000000a40)={0x0, 0x0}) close_range(r0, 0xffffffffffffffff, 0x0) 281.287798ms ago: executing program 0 (id=734): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000200)={0x0, 0x7}, 0x8) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000040)='kfree\x00', r1}, 0x18) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0xcc}, 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendmmsg$inet6(r0, &(0x7f0000001bc0)=[{{&(0x7f0000000080)={0xa, 0x4e23, 0x0, @loopback, 0x280020}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000540)='\x00', 0x1}], 0x1}}], 0x1, 0x20008050) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000040)=ANY=[@ANYBLOB], 0xa) 247.70081ms ago: executing program 2 (id=735): r0 = socket(0x28, 0x5, 0x0) bind$vsock_stream(r0, &(0x7f0000000040), 0x10) listen(r0, 0x0) r1 = socket(0x28, 0x5, 0x0) connect$vsock_stream(r1, &(0x7f0000000080), 0x10) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0) setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x5}, 0x8) sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x1}}], 0x1, 0x24008094) r5 = accept4$unix(r0, 0x0, 0x0, 0x0) recvfrom$unix(r5, &(0x7f0000000140)=""/263, 0x107, 0x0, 0x0, 0x0) 152.429003ms ago: executing program 0 (id=736): syz_emit_ethernet(0xd6, &(0x7f0000000840)={@local, @broadcast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xc8, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x2c, 0x0, {0x2b, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local, {[@cipso={0x86, 0x29, 0x0, [{0x0, 0xd, "5e000000ff000000000000"}, {0x5, 0x4, "4eb8"}, {0x0, 0x12, "9606053d0006ff00800000b61af93a93"}]}, @lsrr={0x83, 0x13, 0x0, [@dev, @broadcast, @loopback, @multicast2]}, @cipso={0x86, 0x50, 0x0, [{0x7, 0x12, "12054b0604000000b983fc5843e178fe"}, {0x0, 0xc, "df61168c24ac88ad078c"}, {0x7, 0xa, "2189ea43a2149b84"}, {0x6, 0xb, "f7d11634eea26b75af"}, {0x0, 0x9, "02a20948fd7406"}, {0x0, 0xe, "1afd922c6bad0f24d6430eaa"}]}, @timestamp={0x44, 0xc, 0x56, 0x0, 0x0, [0xfffffffe, 0x0]}]}}}}}}}, 0x0) 47.675297ms ago: executing program 0 (id=737): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00', 0x0}) r2 = socket$kcm(0x10, 0x2, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r2, 0x8982, &(0x7f0000000400)={0x0, 'batadv0\x00', {0x5}}) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="200000001100010027bd7000fddbdf2500000000", @ANYRES32=r1], 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x80) 0s ago: executing program 1 (id=738): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000200)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5a}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x3}}]}, 0x1, 0x46f, &(0x7f0000000bc0)="$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") kernel console output (not intermixed with test programs): ce batadv_slave_0 (retrying later): interface not active [ 81.180401][ T51] Bluetooth: hci0: command tx timeout [ 81.191288][ T5106] Bluetooth: hci1: command tx timeout [ 81.198492][ T5798] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 81.202007][ T5788] Bluetooth: hci2: command tx timeout [ 81.208707][ T5798] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 81.240629][ T5798] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 81.323855][ T5796] hsr_slave_0: entered promiscuous mode [ 81.330604][ T5796] hsr_slave_1: entered promiscuous mode [ 81.336426][ T5106] Bluetooth: hci3: command tx timeout [ 81.343599][ T5796] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 81.351928][ T5796] Cannot create hsr debugfs directory [ 81.386489][ T5798] hsr_slave_0: entered promiscuous mode [ 81.392735][ T5798] hsr_slave_1: entered promiscuous mode [ 81.399652][ T5798] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 81.408094][ T5798] Cannot create hsr debugfs directory [ 81.771276][ T5787] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 81.787077][ T5787] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 81.798389][ T5787] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 81.810138][ T5787] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 81.885589][ T5791] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 81.912017][ T5791] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 81.922779][ T5791] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 81.947984][ T5791] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 82.001516][ T5798] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 82.039069][ T5798] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 82.050608][ T5798] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 82.062247][ T5798] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 82.156631][ T5796] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 82.170385][ T5796] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 82.193739][ T5796] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 82.227217][ T5796] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 82.299044][ T5787] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.378853][ T5791] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.417380][ T5787] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.462047][ T5791] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.490706][ T3426] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.498094][ T3426] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.540421][ T3426] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.547794][ T3426] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.562851][ T3426] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.570078][ T3426] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.621234][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.628540][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.649455][ T5798] 8021q: adding VLAN 0 to HW filter on device bond0 [ 82.749910][ T5798] 8021q: adding VLAN 0 to HW filter on device team0 [ 82.790939][ T3426] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.798112][ T3426] bridge0: port 1(bridge_slave_0) entered forwarding state [ 82.857534][ T3426] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.864859][ T3426] bridge0: port 2(bridge_slave_1) entered forwarding state [ 82.937287][ T5796] 8021q: adding VLAN 0 to HW filter on device bond0 [ 83.029445][ T5796] 8021q: adding VLAN 0 to HW filter on device team0 [ 83.079982][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.087183][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.125855][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.133193][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.253989][ T5106] Bluetooth: hci1: command tx timeout [ 83.254056][ T5788] Bluetooth: hci0: command tx timeout [ 83.259445][ T5106] Bluetooth: hci2: command tx timeout [ 83.413810][ T5106] Bluetooth: hci3: command tx timeout [ 83.462975][ T5791] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.491761][ T5787] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.681348][ T5791] veth0_vlan: entered promiscuous mode [ 83.719811][ T5787] veth0_vlan: entered promiscuous mode [ 83.746076][ T5791] veth1_vlan: entered promiscuous mode [ 83.768647][ T5787] veth1_vlan: entered promiscuous mode [ 83.830908][ T5796] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.858670][ T5798] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 83.869909][ T5791] veth0_macvtap: entered promiscuous mode [ 83.882556][ T5791] veth1_macvtap: entered promiscuous mode [ 83.914597][ T5787] veth0_macvtap: entered promiscuous mode [ 83.925824][ T5787] veth1_macvtap: entered promiscuous mode [ 83.964299][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 83.999358][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.027908][ T5791] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.037262][ T5791] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.046521][ T5791] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.057168][ T5791] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.069050][ T5796] veth0_vlan: entered promiscuous mode [ 84.086188][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.097971][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.112302][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.149733][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.160663][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.177242][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.189475][ T5796] veth1_vlan: entered promiscuous mode [ 84.204800][ T5798] veth0_vlan: entered promiscuous mode [ 84.229961][ T5787] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.239564][ T5787] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.248974][ T5787] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.257902][ T5787] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.337807][ T5798] veth1_vlan: entered promiscuous mode [ 84.352389][ T5796] veth0_macvtap: entered promiscuous mode [ 84.409927][ T3485] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.416241][ T5796] veth1_macvtap: entered promiscuous mode [ 84.426712][ T3485] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.476607][ T5798] veth0_macvtap: entered promiscuous mode [ 84.498969][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.509853][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.520741][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.531328][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.549015][ T5796] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.560367][ T5798] veth1_macvtap: entered promiscuous mode [ 84.599593][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.610292][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.621031][ T5796] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.632106][ T5796] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.644939][ T5796] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.655798][ T3426] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.669720][ T3426] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.677450][ T3433] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.693929][ T3433] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.716757][ T5796] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.730585][ T5796] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.742566][ T5796] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.751542][ T5796] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.809191][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.821916][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.832509][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.844420][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.854843][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 84.865546][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.878284][ T5798] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.887647][ T3433] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 84.896891][ T3433] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 84.915097][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.928302][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.940398][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.951944][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 84.962282][ T5798] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 84.983137][ T5798] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 85.005062][ T5798] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.060016][ T5798] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.075233][ T5798] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.084579][ T5798] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.095579][ T5798] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.290841][ T3485] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.333744][ T51] Bluetooth: hci0: command tx timeout [ 85.334344][ T5788] Bluetooth: hci1: command tx timeout [ 85.339590][ T5106] Bluetooth: hci2: command tx timeout [ 85.356450][ T3485] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.401980][ T3433] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.419708][ T3433] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.497766][ T5788] Bluetooth: hci3: command tx timeout [ 85.562099][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.587883][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.720807][ T5885] syz.2.3[5885]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 85.747203][ T5885] loop2: detected capacity change from 0 to 1024 [ 85.756626][ T5885] ======================================================= [ 85.756626][ T5885] WARNING: The mand mount option has been deprecated and [ 85.756626][ T5885] and is ignored by this kernel. Remove the mand [ 85.756626][ T5885] option from the mount to silence this warning. [ 85.756626][ T5885] ======================================================= [ 85.842026][ T3426] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.907019][ T5885] EXT4-fs: Ignoring removed orlov option [ 85.914343][ T3426] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 86.681384][ T5885] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 87.353886][ T23] cfg80211: failed to load regulatory.db [ 87.423569][ T5788] Bluetooth: hci1: command tx timeout [ 87.424929][ T51] Bluetooth: hci0: command tx timeout [ 87.438038][ T5106] Bluetooth: hci2: command tx timeout [ 87.548318][ T27] audit: type=1326 audit(1764652216.272:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5900 comm="syz.3.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 87.577983][ T5901] loop3: detected capacity change from 0 to 128 [ 87.586324][ T51] Bluetooth: hci3: command tx timeout [ 87.623246][ T27] audit: type=1326 audit(1764652216.272:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5900 comm="syz.3.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 87.735433][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.776729][ T5901] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 87.790428][ T27] audit: type=1326 audit(1764652216.292:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5900 comm="syz.3.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 87.849860][ T5901] ext4 filesystem being mounted at /4/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 87.865806][ T27] audit: type=1326 audit(1764652216.292:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5900 comm="syz.3.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 87.983111][ T27] audit: type=1326 audit(1764652216.292:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5900 comm="syz.3.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 88.008327][ T27] audit: type=1326 audit(1764652216.292:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5900 comm="syz.3.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb8a2f8f783 code=0x7ffc0000 [ 88.041128][ T27] audit: type=1326 audit(1764652216.302:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5900 comm="syz.3.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb8a2f8e1ff code=0x7ffc0000 [ 88.104080][ T27] audit: type=1326 audit(1764652216.302:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5900 comm="syz.3.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fb8a2f8f7d7 code=0x7ffc0000 [ 88.150167][ T5896] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2'. [ 88.162122][ T27] audit: type=1326 audit(1764652216.302:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5900 comm="syz.3.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb8a2f8df90 code=0x7ffc0000 [ 88.186427][ T27] audit: type=1326 audit(1764652216.302:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5900 comm="syz.3.8" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb8a2f8f34b code=0x7ffc0000 [ 88.586423][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 88.699201][ T5915] syz.3.12[5915] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 88.699346][ T5915] syz.3.12[5915] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 89.175557][ T5924] syz.3.15 (5924): /proc/5923/oom_adj is deprecated, please use /proc/5923/oom_score_adj instead. [ 89.491659][ T5926] ip6gretap1: entered allmulticast mode [ 89.919366][ T5928] loop2: detected capacity change from 0 to 1024 [ 89.992142][ T5928] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 90.056934][ T5928] EXT4-fs (loop2): stripe (4) is not aligned with cluster size (16), stripe is disabled [ 90.099164][ T5928] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 90.160157][ T5928] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 90.198205][ T5928] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 90.281988][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 90.851596][ T5946] loop2: detected capacity change from 0 to 1024 [ 90.879525][ T5946] EXT4-fs: Ignoring removed orlov option [ 90.974860][ T5946] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 91.882161][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.184598][ T5958] syz.2.25: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1 [ 92.201446][ T5958] CPU: 0 PID: 5958 Comm: syz.2.25 Not tainted syzkaller #0 [ 92.208794][ T5958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 92.218988][ T5958] Call Trace: [ 92.222312][ T5958] [ 92.225279][ T5958] dump_stack_lvl+0x16c/0x230 [ 92.230021][ T5958] ? show_regs_print_info+0x20/0x20 [ 92.235282][ T5958] ? load_image+0x3b0/0x3b0 [ 92.240027][ T5958] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 92.246501][ T5958] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 92.253205][ T5958] warn_alloc+0x210/0x300 [ 92.257567][ T5958] ? stack_trace_save+0x9c/0xe0 [ 92.262433][ T5958] ? zone_watermark_ok_safe+0x230/0x230 [ 92.268090][ T5958] ? kasan_set_track+0x5f/0x70 [ 92.272933][ T5958] ? kasan_set_track+0x4e/0x70 [ 92.277802][ T5958] ? __kasan_kmalloc+0x8f/0xa0 [ 92.282580][ T5958] ? xsk_init_queue+0xb0/0x110 [ 92.287361][ T5958] ? xsk_setsockopt+0x43c/0x6f0 [ 92.292220][ T5958] ? do_sock_setsockopt+0x175/0x1a0 [ 92.297962][ T5958] ? __x64_sys_setsockopt+0x184/0x200 [ 92.303370][ T5958] __vmalloc_node_range+0x126/0x1320 [ 92.308893][ T5958] ? free_vm_area+0x50/0x50 [ 92.313418][ T5958] vmalloc_user+0x74/0x80 [ 92.317758][ T5958] ? xskq_create+0xbf/0x170 [ 92.322272][ T5958] xskq_create+0xbf/0x170 [ 92.326619][ T5958] xsk_init_queue+0xb0/0x110 [ 92.331223][ T5958] xsk_setsockopt+0x43c/0x6f0 [ 92.335914][ T5958] ? xsk_poll+0x670/0x670 [ 92.340257][ T5958] ? __fget_files+0x28/0x4d0 [ 92.344985][ T5958] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 92.350541][ T5958] ? security_socket_setsockopt+0x7e/0xa0 [ 92.356269][ T5958] ? xsk_poll+0x670/0x670 [ 92.360625][ T5958] do_sock_setsockopt+0x175/0x1a0 [ 92.365756][ T5958] ? __fdget+0x180/0x210 [ 92.370016][ T5958] __x64_sys_setsockopt+0x184/0x200 [ 92.375334][ T5958] do_syscall_64+0x55/0xb0 [ 92.379854][ T5958] ? clear_bhb_loop+0x40/0x90 [ 92.384543][ T5958] ? clear_bhb_loop+0x40/0x90 [ 92.389321][ T5958] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 92.395230][ T5958] RIP: 0033:0x7f396298f749 [ 92.399664][ T5958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 92.419370][ T5958] RSP: 002b:00007f396382b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 92.427810][ T5958] RAX: ffffffffffffffda RBX: 00007f3962be5fa0 RCX: 00007f396298f749 [ 92.435793][ T5958] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003 [ 92.443810][ T5958] RBP: 00007f3962a13f91 R08: 0000000000000004 R09: 0000000000000000 [ 92.451792][ T5958] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000 [ 92.459869][ T5958] R13: 00007f3962be6038 R14: 00007f3962be5fa0 R15: 00007fffe4035798 [ 92.467879][ T5958] [ 92.476539][ T5958] Mem-Info: [ 92.479714][ T5958] active_anon:10024 inactive_anon:0 isolated_anon:0 [ 92.479714][ T5958] active_file:1089 inactive_file:39877 isolated_file:0 [ 92.479714][ T5958] unevictable:768 dirty:32 writeback:0 [ 92.479714][ T5958] slab_reclaimable:9959 slab_unreclaimable:92294 [ 92.479714][ T5958] mapped:27043 shmem:5888 pagetables:563 [ 92.479714][ T5958] sec_pagetables:0 bounce:0 [ 92.479714][ T5958] kernel_misc_reclaimable:0 [ 92.479714][ T5958] free:1365836 free_pcp:8796 free_cma:0 [ 92.548753][ T5958] Node 0 active_anon:40196kB inactive_anon:0kB active_file:4356kB inactive_file:159304kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:108172kB dirty:124kB writeback:0kB shmem:22116kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11224kB pagetables:2252kB sec_pagetables:0kB all_unreclaimable? no [ 92.649776][ T5960] netlink: 8 bytes leftover after parsing attributes in process `syz.2.25'. [ 92.674495][ T5958] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 92.720694][ T5958] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 92.778960][ T5958] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 92.797827][ T5958] Node 0 DMA32 free:1546700kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:47180kB inactive_anon:0kB active_file:4356kB inactive_file:157988kB unevictable:1536kB writepending:124kB present:3129332kB managed:2589596kB mlocked:0kB bounce:0kB free_pcp:16076kB local_pcp:8000kB free_cma:0kB [ 92.849204][ T5958] lowmem_reserve[]: 0 0 1 1 1 [ 92.855505][ T5958] Node 0 Normal free:12kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 92.888171][ T5958] lowmem_reserve[]: 0 0 0 0 0 [ 92.893680][ T5958] Node 1 Normal free:3893460kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:19104kB local_pcp:10688kB free_cma:0kB [ 92.930607][ T5958] lowmem_reserve[]: 0 0 0 0 0 [ 92.936740][ T5958] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 92.984336][ T5958] Node 0 DMA32: 1*4kB (M) 1*8kB (E) 2*16kB (ME) 1*32kB (M) 2*64kB (UE) 0*128kB 3*256kB (UME) 1*512kB (E) 5*1024kB (ME) 2*2048kB (ME) 375*4096kB (M) = 1546700kB [ 93.049211][ T5958] Node 0 Normal: 1*4kB (M) 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 12kB [ 93.075484][ T5958] Node 1 Normal: 237*4kB (UME) 68*8kB (UME) 40*16kB (UME) 45*32kB (UME) 14*64kB (UE) 9*128kB (UME) 1*256kB (U) 1*512kB (M) 2*1024kB (UE) 1*2048kB (E) 948*4096kB (M) = 3893492kB [ 93.150098][ T5958] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 93.161222][ T5958] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 93.180361][ T5958] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 93.189730][ T5963] loop3: detected capacity change from 0 to 1024 [ 93.191834][ T5958] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 93.211379][ T5958] 45304 total pagecache pages [ 93.216501][ T5958] 0 pages in swap cache [ 93.221667][ T5963] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 93.222739][ T5958] Free swap = 124996kB [ 93.258383][ T5963] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (16), stripe is disabled [ 93.278262][ T5958] Total swap = 124996kB [ 93.282536][ T5958] 2097051 pages RAM [ 93.299728][ T5958] 0 pages HighMem/MovableOnly [ 93.309849][ T5958] 416138 pages reserved [ 93.320574][ T5958] 0 pages cma reserved [ 93.332838][ T5963] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 93.465134][ T5963] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 93.488076][ T5878] Set syz1 is full, maxelem 65536 reached [ 93.563981][ T5963] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 93.603158][ T5963] EXT4-fs (loop3): This should not happen!! Data will be lost [ 93.603158][ T5963] [ 93.619330][ T5963] EXT4-fs (loop3): Total free blocks count 0 [ 93.625775][ T5963] EXT4-fs (loop3): Free/Dirty block details [ 93.632679][ T5963] EXT4-fs (loop3): free_blocks=20480 [ 93.661594][ T5963] EXT4-fs (loop3): dirty_blocks=80 [ 93.675874][ T5963] EXT4-fs (loop3): Block reservation details [ 93.690924][ T5963] EXT4-fs (loop3): i_reserved_data_blocks=5 [ 93.759060][ T3426] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28 [ 93.911222][ T5980] netlink: 'syz.0.33': attribute type 29 has an invalid length. [ 93.974939][ T5982] loop3: detected capacity change from 0 to 1024 [ 93.986427][ T5982] EXT4-fs: inline encryption not supported [ 93.998279][ T5982] EXT4-fs: Ignoring removed i_version option [ 94.014170][ T5982] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 94.075568][ T5982] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.32: lblock 2 mapped to illegal pblock 2 (length 1) [ 94.148053][ T5982] __quota_error: 67 callbacks suppressed [ 94.148074][ T5982] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 94.178550][ T5982] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.32: lblock 0 mapped to illegal pblock 48 (length 1) [ 94.202900][ T5982] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 94.222555][ T5982] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.32: Failed to acquire dquot type 0 [ 94.281193][ T5982] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 94.315731][ T5982] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.32: mark_inode_dirty error [ 94.328564][ T5982] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 94.351266][ T5982] EXT4-fs (loop3): 1 orphan inode deleted [ 94.358816][ T5982] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 94.402506][ T1132] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1) [ 95.204816][ T5988] 9pnet: Could not find request transport: rwitch [ 95.320704][ T1132] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 95.379873][ T1132] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u4:6: Failed to release dquot type 0 [ 95.443483][ T5982] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 95.592806][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.230248][ T6028] loop1: detected capacity change from 0 to 1024 [ 98.245597][ T6028] EXT4-fs: inline encryption not supported [ 98.278472][ T6028] EXT4-fs: Ignoring removed i_version option [ 98.307009][ T6030] syz.2.47 uses obsolete (PF_INET,SOCK_PACKET) [ 98.324141][ T6028] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 98.371110][ T6035] loop3: detected capacity change from 0 to 128 [ 98.396155][ T6028] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 2: comm syz.1.46: lblock 2 mapped to illegal pblock 2 (length 1) [ 98.412292][ T6028] Quota error (device loop1): qtree_write_dquot: dquota write failed [ 98.441406][ T6035] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 98.473413][ T6028] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 48: comm syz.1.46: lblock 0 mapped to illegal pblock 48 (length 1) [ 98.482660][ T6035] ext4 filesystem being mounted at /19/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 98.511529][ T6028] Quota error (device loop1): v2_write_file_info: Can't write info structure [ 98.546316][ T6028] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.46: Failed to acquire dquot type 0 [ 98.585227][ T6028] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 98.601255][ T6028] EXT4-fs error (device loop1): ext4_evict_inode:252: inode #11: comm syz.1.46: mark_inode_dirty error [ 98.654003][ T6028] EXT4-fs warning (device loop1): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 98.683428][ T6028] EXT4-fs (loop1): 1 orphan inode deleted [ 98.701452][ T1132] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1) [ 98.702627][ T6028] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 98.724831][ T1132] Quota error (device loop1): remove_tree: Can't read quota data block 1 [ 98.754471][ T1132] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u4:6: Failed to release dquot type 0 [ 98.800809][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 98.811723][ T6028] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 98.935546][ T27] audit: type=1326 audit(1764652227.662:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 98.990459][ T27] audit: type=1326 audit(1764652227.682:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 99.025854][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.089916][ T27] audit: type=1326 audit(1764652227.682:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 99.127298][ T27] audit: type=1326 audit(1764652227.682:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 99.158147][ T27] audit: type=1326 audit(1764652227.702:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 99.214406][ T27] audit: type=1326 audit(1764652227.702:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 99.243435][ T27] audit: type=1326 audit(1764652227.702:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 99.275536][ T27] audit: type=1326 audit(1764652227.702:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 99.329160][ T27] audit: type=1326 audit(1764652227.702:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 99.392433][ T27] audit: type=1326 audit(1764652227.702:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 99.799507][ T6077] loop2: detected capacity change from 0 to 128 [ 99.832786][ T6077] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 99.913352][ T6077] ext4 filesystem being mounted at /19/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 100.159630][ T5796] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 100.320725][ T6086] netlink: 8 bytes leftover after parsing attributes in process `syz.1.67'. [ 100.348969][ T27] audit: type=1326 audit(1764652229.072:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.2.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 100.396301][ T27] audit: type=1326 audit(1764652229.072:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.2.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 100.418996][ T27] audit: type=1326 audit(1764652229.072:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.2.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 100.441253][ T6086] netlink: 8 bytes leftover after parsing attributes in process `syz.1.67'. [ 100.441670][ T6086] netlink: 8 bytes leftover after parsing attributes in process `syz.1.67'. [ 100.450405][ T27] audit: type=1326 audit(1764652229.072:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6087 comm="syz.2.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 100.523773][ T6086] netlink: 8 bytes leftover after parsing attributes in process `syz.1.67'. [ 100.581038][ T6085] loop3: detected capacity change from 0 to 8192 [ 101.220109][ T6108] loop1: detected capacity change from 0 to 128 [ 101.225363][ T6085] syz.3.68 (6085) used greatest stack depth: 19856 bytes left [ 101.247068][ T6108] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 101.288506][ T6108] ext4 filesystem being mounted at /9/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 101.479608][ T5798] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 101.566260][ T6113] syzkaller0: entered promiscuous mode [ 101.587903][ T6113] syzkaller0: entered allmulticast mode [ 104.037746][ T6152] loop1: detected capacity change from 0 to 1024 [ 104.055717][ T6152] EXT4-fs: inline encryption not supported [ 104.071818][ T6152] EXT4-fs: Ignoring removed i_version option [ 104.083507][ T6152] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 104.113322][ T6152] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 2: comm syz.1.93: lblock 2 mapped to illegal pblock 2 (length 1) [ 104.195912][ T6152] __quota_error: 1 callbacks suppressed [ 104.195928][ T6152] Quota error (device loop1): qtree_write_dquot: dquota write failed [ 104.272544][ T6152] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 48: comm syz.1.93: lblock 0 mapped to illegal pblock 48 (length 1) [ 104.328509][ T6152] Quota error (device loop1): v2_write_file_info: Can't write info structure [ 104.351783][ T6160] loop2: detected capacity change from 0 to 1024 [ 104.371403][ T6160] EXT4-fs: inline encryption not supported [ 104.387920][ T6152] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.93: Failed to acquire dquot type 0 [ 104.427528][ T6152] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 104.427634][ T6160] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 104.454637][ T6152] EXT4-fs error (device loop1): ext4_evict_inode:252: inode #11: comm syz.1.93: mark_inode_dirty error [ 104.480637][ T6152] EXT4-fs warning (device loop1): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 104.495137][ T6152] EXT4-fs (loop1): 1 orphan inode deleted [ 104.507130][ T6160] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.534842][ T3426] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:7: lblock 1 mapped to illegal pblock 1 (length 1) [ 104.554535][ T6152] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.628230][ T3426] Quota error (device loop1): remove_tree: Can't read quota data block 1 [ 104.673212][ T3426] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u4:7: Failed to release dquot type 0 [ 104.707775][ T6152] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 104.772031][ T6160] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4031: comm syz.2.95: Allocating blocks 385-513 which overlap fs metadata [ 104.847353][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.870286][ T6160] netlink: 92 bytes leftover after parsing attributes in process `syz.2.95'. [ 104.892433][ T6160] netlink: 32 bytes leftover after parsing attributes in process `syz.2.95'. [ 104.932880][ T6159] EXT4-fs (loop2): pa ffff88805e2861d0: logic 16, phys. 129, len 24 [ 104.941626][ T6159] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8 [ 105.029757][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.244278][ T27] audit: type=1326 audit(1764652233.962:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6179 comm="syz.1.104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 105.304888][ T27] audit: type=1326 audit(1764652233.962:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6179 comm="syz.1.104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 105.367399][ T27] audit: type=1326 audit(1764652233.962:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6179 comm="syz.1.104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 105.417999][ T27] audit: type=1326 audit(1764652233.962:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6179 comm="syz.1.104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 105.425545][ T6178] syzkaller0: entered promiscuous mode [ 105.463126][ T27] audit: type=1326 audit(1764652233.962:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6179 comm="syz.1.104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 105.473145][ T6178] syzkaller0: entered allmulticast mode [ 105.512532][ T27] audit: type=1326 audit(1764652233.962:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6179 comm="syz.1.104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 105.560078][ T27] audit: type=1326 audit(1764652233.962:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6179 comm="syz.1.104" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 108.914008][ T6194] loop3: detected capacity change from 0 to 128 [ 108.953576][ T6194] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 108.996869][ T6194] ext4 filesystem being mounted at /35/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 109.196924][ T6200] loop1: detected capacity change from 0 to 1024 [ 109.214316][ T6200] EXT4-fs: inline encryption not supported [ 109.243206][ T6200] EXT4-fs: Ignoring removed i_version option [ 109.263769][ T6200] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 109.276651][ T6203] loop2: detected capacity change from 0 to 1024 [ 109.281119][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 109.299747][ T6203] EXT4-fs: Ignoring removed nomblk_io_submit option [ 109.306242][ T6200] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 2: comm syz.1.109: lblock 2 mapped to illegal pblock 2 (length 1) [ 109.381336][ T6200] __quota_error: 44 callbacks suppressed [ 109.381352][ T6200] Quota error (device loop1): qtree_write_dquot: dquota write failed [ 109.394930][ T6203] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 109.397798][ T6200] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 48: comm syz.1.109: lblock 0 mapped to illegal pblock 48 (length 1) [ 109.455191][ T6203] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 109.484024][ T6200] Quota error (device loop1): v2_write_file_info: Can't write info structure [ 109.492902][ T6200] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.109: Failed to acquire dquot type 0 [ 109.518380][ T6203] System zones: 0-1, 3-36 [ 109.534289][ T6200] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 109.589063][ T6200] EXT4-fs error (device loop1): ext4_evict_inode:252: inode #11: comm syz.1.109: mark_inode_dirty error [ 109.609633][ T6203] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.642731][ T6200] EXT4-fs warning (device loop1): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 109.666959][ T6200] EXT4-fs (loop1): 1 orphan inode deleted [ 109.680815][ T6200] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 109.755704][ T1132] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1) [ 109.793488][ T1132] Quota error (device loop1): remove_tree: Can't read quota data block 1 [ 109.823660][ T1132] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u4:6: Failed to release dquot type 0 [ 109.860525][ T6200] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 109.916332][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.949534][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.074909][ T6220] netlink: 4 bytes leftover after parsing attributes in process `syz.1.117'. [ 110.220768][ T6223] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.362439][ T6223] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.518058][ T6223] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.701132][ T6223] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.934696][ T6223] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.051301][ T6223] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.098935][ T6245] loop3: detected capacity change from 0 to 1024 [ 111.136515][ T6223] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.159181][ T6245] EXT4-fs: inline encryption not supported [ 111.185039][ T6245] EXT4-fs: Ignoring removed i_version option [ 111.202494][ T6245] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 111.220951][ T6223] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.246932][ T6245] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.126: lblock 2 mapped to illegal pblock 2 (length 1) [ 111.282692][ T6245] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 111.293229][ T6245] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.126: lblock 0 mapped to illegal pblock 48 (length 1) [ 111.414368][ T6245] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 111.457612][ T6245] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.126: Failed to acquire dquot type 0 [ 111.487082][ T6245] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 111.497726][ T6245] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.126: mark_inode_dirty error [ 111.519289][ T6245] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 111.536933][ T6245] EXT4-fs (loop3): 1 orphan inode deleted [ 111.552220][ T6245] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 111.555568][ T12] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:1: lblock 1 mapped to illegal pblock 1 (length 1) [ 111.622853][ T12] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 111.644414][ T12] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u4:1: Failed to release dquot type 0 [ 111.685661][ T6245] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 111.742853][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.875975][ T6264] loop3: detected capacity change from 0 to 1024 [ 111.890085][ T6264] EXT4-fs: inline encryption not supported [ 111.932021][ T6264] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 111.991950][ T6264] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 112.122334][ T6264] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 112.229292][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.787815][ T6290] loop3: detected capacity change from 0 to 1024 [ 112.795573][ T6290] EXT4-fs: inline encryption not supported [ 112.801513][ T6290] EXT4-fs: Ignoring removed i_version option [ 112.810593][ T6290] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 112.850832][ T6290] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.143: lblock 2 mapped to illegal pblock 2 (length 1) [ 112.902143][ T6290] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 112.913547][ T6290] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.143: lblock 0 mapped to illegal pblock 48 (length 1) [ 112.942015][ T6290] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 112.992016][ T6290] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.143: Failed to acquire dquot type 0 [ 113.033413][ T6290] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 113.097025][ T6290] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.143: mark_inode_dirty error [ 113.149253][ T6290] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 113.182456][ T6290] EXT4-fs (loop3): 1 orphan inode deleted [ 113.193290][ T1132] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1) [ 113.224707][ T6290] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 113.248510][ T1132] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 113.286061][ T1132] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u4:6: Failed to release dquot type 0 [ 113.357484][ T6290] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 113.467157][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.613172][ T6307] syzkaller0: entered promiscuous mode [ 113.618850][ T6307] syzkaller0: entered allmulticast mode [ 113.750063][ T27] audit: type=1326 audit(1764652242.472:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6312 comm="syz.2.151" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 113.889034][ T6316] loop2: detected capacity change from 0 to 128 [ 114.497473][ T6329] loop2: detected capacity change from 0 to 8192 [ 114.547685][ T6329] loop2: p1 < > p2 < > p3 p4 < > [ 114.553729][ T6329] loop2: partition table partially beyond EOD, truncated [ 114.561236][ T6329] loop2: p1 start 67108864 is beyond EOD, truncated [ 114.584470][ T6329] loop2: p3 start 100859904 is beyond EOD, truncated [ 114.753134][ T27] kauditd_printk_skb: 9 callbacks suppressed [ 114.753149][ T27] audit: type=1326 audit(1764652243.462:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6335 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 114.869698][ T27] audit: type=1326 audit(1764652243.462:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6335 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 114.911219][ T6340] loop1: detected capacity change from 0 to 512 [ 114.911477][ T5792] udevd[5792]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 114.942841][ T5790] udevd[5790]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 114.975718][ T27] audit: type=1326 audit(1764652243.462:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6335 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 115.093824][ T27] audit: type=1326 audit(1764652243.462:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6335 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 115.182341][ T6340] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 115.243795][ T27] audit: type=1326 audit(1764652243.462:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6335 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 115.262399][ T6340] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 115.310537][ T27] audit: type=1326 audit(1764652243.472:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6335 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 115.396711][ T27] audit: type=1326 audit(1764652243.472:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6335 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 115.435073][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.449336][ T27] audit: type=1326 audit(1764652243.472:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6335 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 115.555269][ T27] audit: type=1326 audit(1764652243.472:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6335 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 115.623126][ T27] audit: type=1326 audit(1764652243.472:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6335 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 115.695959][ T6354] syzkaller0: entered promiscuous mode [ 115.735939][ T6354] syzkaller0: entered allmulticast mode [ 118.132677][ T6374] netlink: 132 bytes leftover after parsing attributes in process `syz.0.169'. [ 118.677144][ T6391] loop2: detected capacity change from 0 to 1024 [ 118.714296][ T6391] EXT4-fs: inline encryption not supported [ 118.720986][ T6391] EXT4-fs: Ignoring removed i_version option [ 118.785513][ T6391] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 118.866269][ T6391] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm syz.2.175: lblock 2 mapped to illegal pblock 2 (length 1) [ 118.888651][ T6391] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 48: comm syz.2.175: lblock 0 mapped to illegal pblock 48 (length 1) [ 118.910402][ T6391] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.175: Failed to acquire dquot type 0 [ 118.924861][ T6391] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 118.936031][ T6391] EXT4-fs error (device loop2): ext4_evict_inode:252: inode #11: comm syz.2.175: mark_inode_dirty error [ 118.948044][ T6391] EXT4-fs warning (device loop2): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 118.970980][ T6391] EXT4-fs (loop2): 1 orphan inode deleted [ 118.978905][ T6391] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 119.171598][ T3433] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:8: lblock 1 mapped to illegal pblock 1 (length 1) [ 119.186392][ T3433] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u4:8: Failed to release dquot type 0 [ 119.202380][ T6391] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 119.234406][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.116579][ T6416] loop1: detected capacity change from 0 to 128 [ 120.215652][ T27] kauditd_printk_skb: 19 callbacks suppressed [ 120.215667][ T27] audit: type=1326 audit(1764652248.942:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6414 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 120.265786][ T27] audit: type=1326 audit(1764652248.952:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6414 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 120.279792][ T6416] FAT-fs (loop1): error, invalid access to FAT (entry 0x0fff0000) [ 120.298741][ T27] audit: type=1326 audit(1764652248.982:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6414 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 120.325996][ T6416] FAT-fs (loop1): Filesystem has been set read-only [ 120.333733][ T27] audit: type=1326 audit(1764652249.062:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6414 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 120.358860][ T27] audit: type=1326 audit(1764652249.062:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6414 comm="syz.1.182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a5998f749 code=0x7ffc0000 [ 121.013534][ T6435] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 122.537946][ T27] audit: type=1326 audit(1764652251.262:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 122.574557][ T6460] bridge0: port 3(gretap0) entered blocking state [ 122.592218][ T27] audit: type=1326 audit(1764652251.262:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 122.619301][ T6460] bridge0: port 3(gretap0) entered disabled state [ 122.653112][ T27] audit: type=1326 audit(1764652251.262:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 122.710383][ T27] audit: type=1326 audit(1764652251.292:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6458 comm="syz.2.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 122.763521][ T6460] gretap0: entered allmulticast mode [ 122.803743][ T6460] gretap0: entered promiscuous mode [ 122.824322][ T6460] bridge0: port 3(gretap0) entered blocking state [ 122.831355][ T6460] bridge0: port 3(gretap0) entered forwarding state [ 122.870967][ T6469] vlan2: entered allmulticast mode [ 122.886844][ T6469] dummy0: entered allmulticast mode [ 123.009949][ T6463] gretap0: left allmulticast mode [ 123.038627][ T6463] gretap0: left promiscuous mode [ 123.045436][ T6463] bridge0: port 3(gretap0) entered disabled state [ 123.289568][ T6464] loop3: detected capacity change from 0 to 1024 [ 123.300412][ T6464] EXT4-fs: Ignoring removed orlov option [ 123.346379][ T6464] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 123.394981][ T6473] netlink: 8 bytes leftover after parsing attributes in process `syz.2.200'. [ 123.710048][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.585765][ T6492] netlink: 36 bytes leftover after parsing attributes in process `syz.1.206'. [ 126.353335][ T6516] netlink: 36 bytes leftover after parsing attributes in process `syz.1.216'. [ 126.729467][ T6524] loop1: detected capacity change from 0 to 128 [ 127.034219][ T6524] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 127.304574][ T6524] ext4 filesystem being mounted at /52/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 127.645198][ T5798] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 127.827544][ T6537] netlink: 67 bytes leftover after parsing attributes in process `syz.1.223'. [ 128.031316][ T6543] netlink: 36 bytes leftover after parsing attributes in process `syz.1.226'. [ 128.082608][ T6547] loop3: detected capacity change from 0 to 1024 [ 128.195714][ T6547] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 128.378938][ T6547] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 128.519206][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.526496][ T786] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4 [ 128.555029][ T786] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2 [ 128.576363][ T786] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x3 [ 128.660769][ T786] hid-generic 0000:3000000:0000.0001: hidraw0: HID v0.00 Device [sy] on syz0 [ 128.729199][ T6563] loop3: detected capacity change from 0 to 128 [ 128.792037][ T6563] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 128.842781][ T6563] ext4 filesystem being mounted at /63/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 128.908119][ T6569] netlink: 48 bytes leftover after parsing attributes in process `syz.0.236'. [ 129.016927][ T6571] loop1: detected capacity change from 0 to 128 [ 129.056254][ T6564] fido_id[6564]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 129.104275][ T6571] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 129.119330][ T6571] ext4 filesystem being mounted at /57/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 129.138617][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 129.148659][ T27] audit: type=1804 audit(1764652257.873:190): pid=6571 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.235" name="/newroot/57/bus/file0" dev="loop1" ino=12 res=1 errno=0 [ 129.225002][ T27] audit: type=1804 audit(1764652257.913:191): pid=6571 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.235" name="/newroot/57/bus/file0" dev="loop1" ino=12 res=1 errno=0 [ 129.257226][ T27] audit: type=1107 audit(1764652257.913:192): pid=6570 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 129.409447][ T6583] netlink: 12 bytes leftover after parsing attributes in process `syz.3.238'. [ 130.294611][ T5798] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 130.382354][ T6600] loop3: detected capacity change from 0 to 128 [ 130.512148][ T27] audit: type=1800 audit(1764652259.233:193): pid=6600 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.245" name="file2" dev="loop3" ino=1048597 res=0 errno=0 [ 130.622340][ T27] audit: type=1326 audit(1764652259.343:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6599 comm="syz.3.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 130.671550][ T27] audit: type=1326 audit(1764652259.343:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6599 comm="syz.3.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 130.763220][ T27] audit: type=1326 audit(1764652259.343:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6599 comm="syz.3.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 130.823149][ T27] audit: type=1326 audit(1764652259.343:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6599 comm="syz.3.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 130.868496][ T27] audit: type=1326 audit(1764652259.343:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6599 comm="syz.3.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 130.947401][ T27] audit: type=1326 audit(1764652259.343:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6599 comm="syz.3.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 130.971311][ T6613] netlink: 8 bytes leftover after parsing attributes in process `syz.0.250'. [ 131.273242][ T6624] loop3: detected capacity change from 0 to 1024 [ 131.288473][ T6624] EXT4-fs: inline encryption not supported [ 131.297961][ T6624] EXT4-fs: Ignoring removed i_version option [ 131.318841][ T6624] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 131.374019][ T6624] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.255: lblock 2 mapped to illegal pblock 2 (length 1) [ 131.404772][ T6624] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.255: lblock 0 mapped to illegal pblock 48 (length 1) [ 131.434046][ T6624] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.255: Failed to acquire dquot type 0 [ 131.474807][ T6624] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 131.505241][ T6624] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.255: mark_inode_dirty error [ 131.533247][ T6624] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 131.550719][ T6624] EXT4-fs (loop3): 1 orphan inode deleted [ 131.561162][ T6624] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 131.579754][ T49] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:3: lblock 1 mapped to illegal pblock 1 (length 1) [ 131.631234][ T49] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u4:3: Failed to release dquot type 0 [ 131.679968][ T6624] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 131.747398][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 132.670917][ T6657] netlink: 28 bytes leftover after parsing attributes in process `syz.3.268'. [ 133.421274][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.428174][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 135.172378][ T6695] loop2: detected capacity change from 0 to 1024 [ 135.199488][ T6695] EXT4-fs: inline encryption not supported [ 135.226432][ T6695] EXT4-fs: Ignoring removed i_version option [ 135.266551][ T6695] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 135.322925][ T6701] loop1: detected capacity change from 0 to 1024 [ 135.356444][ T6695] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm syz.2.280: lblock 2 mapped to illegal pblock 2 (length 1) [ 135.367048][ T6701] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 135.381622][ T6701] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (29254!=20869) [ 135.393405][ T6701] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 135.418839][ T6701] EXT4-fs (loop1): journal inode is deleted [ 135.431441][ T6695] __quota_error: 22 callbacks suppressed [ 135.431460][ T6695] Quota error (device loop2): qtree_write_dquot: dquota write failed [ 135.445793][ T6695] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 48: comm syz.2.280: lblock 0 mapped to illegal pblock 48 (length 1) [ 135.465182][ T6695] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 135.474777][ T6695] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.280: Failed to acquire dquot type 0 [ 135.489640][ T6695] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 135.514990][ T6695] EXT4-fs error (device loop2): ext4_evict_inode:252: inode #11: comm syz.2.280: mark_inode_dirty error [ 135.549627][ T6695] EXT4-fs warning (device loop2): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 135.561009][ T6698] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 135.563830][ T6695] EXT4-fs (loop2): 1 orphan inode deleted [ 135.582053][ T6695] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 135.625313][ T6701] syz_tun: entered allmulticast mode [ 135.663747][ T11] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:0: lblock 1 mapped to illegal pblock 1 (length 1) [ 135.672283][ T6708] loop3: detected capacity change from 0 to 512 [ 135.705304][ T11] Quota error (device loop2): remove_tree: Can't read quota data block 1 [ 135.708047][ T6699] syz_tun: left allmulticast mode [ 135.735714][ T11] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u4:0: Failed to release dquot type 0 [ 135.736335][ T6708] EXT4-fs: Ignoring removed oldalloc option [ 135.802968][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.836954][ T5796] EXT4-fs error (device loop2): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 135.869779][ T6708] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 135.875966][ T5796] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 135.967696][ T5796] EXT4-fs error (device loop2): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error [ 135.974746][ T6713] hub 9-0:1.0: USB hub found [ 135.985173][ T6713] hub 9-0:1.0: 1 port detected [ 136.111691][ T6713] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter' [ 136.150534][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.151348][ T6713] Zero length message leads to an empty skb [ 136.222252][ T6716] bridge0: port 3(gretap0) entered blocking state [ 136.243392][ T6716] bridge0: port 3(gretap0) entered disabled state [ 136.258490][ T6716] gretap0: entered allmulticast mode [ 136.308756][ T6716] gretap0: entered promiscuous mode [ 136.362431][ T6716] bridge0: port 3(gretap0) entered blocking state [ 136.369945][ T6716] bridge0: port 3(gretap0) entered forwarding state [ 136.463274][ T6713] netlink: 14 bytes leftover after parsing attributes in process `syz.1.286'. [ 136.538255][ T6713] hsr_slave_0: left promiscuous mode [ 136.567328][ T6713] hsr_slave_1: left promiscuous mode [ 137.499073][ T6716] loop2: detected capacity change from 0 to 1024 [ 137.513526][ T6716] EXT4-fs: Ignoring removed orlov option [ 137.622581][ T6716] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 137.656921][ T6730] loop3: detected capacity change from 0 to 128 [ 137.768252][ T6730] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 137.842545][ T6730] ext4 filesystem being mounted at /81/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 137.890319][ T6735] netlink: 4 bytes leftover after parsing attributes in process `syz.0.291'. [ 137.909750][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.044499][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 138.370089][ T6744] netlink: 12 bytes leftover after parsing attributes in process `syz.3.295'. [ 138.393179][ T6740] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 138.807012][ T6757] loop1: detected capacity change from 0 to 1024 [ 138.867944][ T6757] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 138.868070][ T6757] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 138.901092][ T6757] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.298: bg 0: block 112: padding at end of block bitmap is not set [ 138.980076][ T6757] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 1 with error 117 [ 138.980135][ T6757] EXT4-fs (loop1): This should not happen!! Data will be lost [ 138.980135][ T6757] [ 139.068074][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 139.449796][ T6775] netlink: 12 bytes leftover after parsing attributes in process `syz.0.305'. [ 139.845181][ T27] audit: type=1326 audit(1764652268.569:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 139.889432][ T27] audit: type=1326 audit(1764652268.589:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 139.924934][ T27] audit: type=1326 audit(1764652268.589:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 139.962522][ T27] audit: type=1326 audit(1764652268.589:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 140.012058][ T27] audit: type=1326 audit(1764652268.589:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 140.073895][ T27] audit: type=1326 audit(1764652268.589:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=189 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 140.116943][ T27] audit: type=1326 audit(1764652268.589:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6789 comm="syz.3.309" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 140.211123][ T6802] syzkaller0: entered promiscuous mode [ 140.217118][ T6802] syzkaller0: entered allmulticast mode [ 140.384465][ T6807] netlink: 12 bytes leftover after parsing attributes in process `syz.0.316'. [ 141.056430][ T6826] xt_hashlimit: max too large, truncated to 1048576 [ 141.210968][ T6833] loop3: detected capacity change from 0 to 128 [ 141.266254][ T6833] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 141.307443][ T6833] ext4 filesystem being mounted at /86/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 141.558222][ T6841] loop1: detected capacity change from 0 to 512 [ 141.565310][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 141.600934][ T6843] netlink: 12 bytes leftover after parsing attributes in process `syz.2.327'. [ 141.661069][ T6841] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 141.687569][ T6841] ext4 filesystem being mounted at /75/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 141.816275][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.898898][ T6851] loop2: detected capacity change from 0 to 1024 [ 141.920580][ T6849] syzkaller0: entered promiscuous mode [ 141.945779][ T6849] syzkaller0: entered allmulticast mode [ 141.996256][ T6851] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 142.074791][ T6851] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 142.177460][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.208933][ T6855] bridge0: port 3(gretap0) entered blocking state [ 142.218229][ T6855] bridge0: port 3(gretap0) entered disabled state [ 142.225067][ T6855] gretap0: entered allmulticast mode [ 142.232288][ T6855] gretap0: entered promiscuous mode [ 142.239831][ T6855] bridge0: port 3(gretap0) entered blocking state [ 142.246763][ T6855] bridge0: port 3(gretap0) entered forwarding state [ 142.323179][ T6857] netlink: 172 bytes leftover after parsing attributes in process `syz.0.330'. [ 142.685681][ T6860] loop1: detected capacity change from 0 to 1024 [ 142.717757][ T6860] EXT4-fs: Ignoring removed orlov option [ 142.855443][ T6860] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 144.361418][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.503022][ C0] sched: RT throttling activated [ 147.481142][ T6895] loop1: detected capacity change from 0 to 1024 [ 147.514042][ T6895] EXT4-fs: Ignoring removed orlov option [ 147.686875][ T6895] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 147.933453][ T6902] syzkaller0: entered promiscuous mode [ 147.939004][ T6902] syzkaller0: entered allmulticast mode [ 148.494591][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 148.945462][ T6924] loop3: detected capacity change from 0 to 128 [ 148.952603][ T27] kauditd_printk_skb: 2 callbacks suppressed [ 148.952618][ T27] audit: type=1326 audit(1764652277.659:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.2.346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 149.013692][ T27] audit: type=1326 audit(1764652277.659:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.2.346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 149.038540][ T6924] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 149.072885][ T6924] ext4 filesystem being mounted at /93/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 149.121030][ T27] audit: type=1326 audit(1764652277.669:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.2.346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 149.195932][ T27] audit: type=1326 audit(1764652277.669:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6920 comm="syz.2.346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 149.281025][ T6926] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 149.305517][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 149.514883][ T6940] netlink: 3 bytes leftover after parsing attributes in process `syz.2.353'. [ 149.840611][ T6934] loop1: detected capacity change from 0 to 512 [ 149.910883][ T6934] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 149.979431][ T6934] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 150.012813][ T6934] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 150.083549][ T6934] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended [ 150.123663][ T6934] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 150.131879][ T6934] System zones: 0-2, 18-18, 34-35 [ 150.144310][ T6934] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 150.386163][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.839726][ T6968] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 151.049180][ T6983] loop2: detected capacity change from 0 to 1024 [ 151.064606][ T6983] EXT4-fs: Ignoring removed orlov option [ 151.340390][ T6983] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 152.146080][ T6996] netlink: 4 bytes leftover after parsing attributes in process `syz.0.372'. [ 152.183382][ T6996] netlink: 4 bytes leftover after parsing attributes in process `syz.0.372'. [ 152.478642][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 152.662363][ T7012] loop3: detected capacity change from 0 to 128 [ 152.728451][ T7012] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 152.794652][ T7012] ext4 filesystem being mounted at /102/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 152.877064][ T7014] loop2: detected capacity change from 0 to 2048 [ 152.942254][ T7014] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.965830][ T7014] ext4 filesystem being mounted at /97/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 153.176116][ T5787] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 153.206648][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.376174][ T7030] process 'syz.2.386' launched '/dev/fd/4' with NULL argv: empty string added [ 153.549855][ T7033] loop1: detected capacity change from 0 to 164 [ 153.822377][ T7033] syz.1.387: attempt to access beyond end of device [ 153.822377][ T7033] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 153.922246][ T7033] syz.1.387: attempt to access beyond end of device [ 153.922246][ T7033] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 154.844474][ T49] Bluetooth: hci4: Frame reassembly failed (-84) [ 154.858109][ T27] audit: type=1326 audit(1764652283.559:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.0.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 154.881433][ T27] audit: type=1326 audit(1764652283.559:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.0.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 154.904520][ T27] audit: type=1326 audit(1764652283.569:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.0.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 154.909827][ T49] Bluetooth: hci4: Frame reassembly failed (-84) [ 154.927213][ T27] audit: type=1326 audit(1764652283.569:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.0.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 154.958043][ T27] audit: type=1326 audit(1764652283.569:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.0.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f94a0d8f749 code=0x7ffc0000 [ 155.389099][ T7072] loop3: detected capacity change from 0 to 8192 [ 156.474277][ T7091] atomic_op ffff888028101198 conn xmit_atomic 0000000000000000 [ 156.853536][ T51] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 156.855940][ T7056] Bluetooth: hci0: Opcode 0x0c20 failed: -110 [ 156.860017][ T5106] Bluetooth: hci4: command 0x1003 tx timeout [ 156.899584][ T7098] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.087454][ T7098] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.461941][ T7098] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.726085][ T7098] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 157.999454][ T7098] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.057097][ T7098] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.122265][ T7098] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.166423][ T7098] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 158.396202][ T7122] loop1: detected capacity change from 0 to 1024 [ 158.463648][ T7122] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 158.621026][ T7122] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 158.725701][ T7129] vlan2: entered allmulticast mode [ 158.742437][ T7129] dummy0: entered allmulticast mode [ 158.751921][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.142225][ T7133] loop2: detected capacity change from 0 to 164 [ 159.238244][ T7133] syz.2.426: attempt to access beyond end of device [ 159.238244][ T7133] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 159.269999][ T7133] syz.2.426: attempt to access beyond end of device [ 159.269999][ T7133] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 159.558959][ T27] audit: type=1326 audit(1764652288.279:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7144 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 159.614102][ T7147] syz.1.431 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 159.628252][ T27] audit: type=1326 audit(1764652288.299:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7144 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 159.691083][ T7147] netlink: 'syz.1.431': attribute type 12 has an invalid length. [ 159.703324][ T27] audit: type=1326 audit(1764652288.299:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7144 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 161.600603][ T27] audit: type=1326 audit(1764652290.319:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7185 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 161.658461][ T27] audit: type=1326 audit(1764652290.319:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7185 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 161.681727][ T27] audit: type=1326 audit(1764652290.329:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7185 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 161.696138][ T7187] loop2: detected capacity change from 0 to 1024 [ 161.739044][ T27] audit: type=1326 audit(1764652290.329:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7185 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 161.815778][ T7187] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 161.887095][ T27] audit: type=1326 audit(1764652290.329:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7185 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 161.963214][ T7187] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 162.013231][ T27] audit: type=1326 audit(1764652290.329:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7185 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 162.073083][ T27] audit: type=1326 audit(1764652290.329:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7185 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 162.084435][ T7194] loop3: detected capacity change from 0 to 1024 [ 162.148189][ T27] audit: type=1326 audit(1764652290.379:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7185 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 162.152621][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.191169][ T7194] EXT4-fs: Ignoring removed orlov option [ 162.223271][ T27] audit: type=1326 audit(1764652290.379:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7185 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 162.281702][ T27] audit: type=1326 audit(1764652290.389:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7185 comm="syz.3.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 162.282498][ T7194] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.380415][ T7201] netlink: 8 bytes leftover after parsing attributes in process `syz.2.446'. [ 162.417907][ T7203] syz.0.447[7203] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 162.418050][ T7203] syz.0.447[7203] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 162.527472][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.693569][ T7207] netlink: 4 bytes leftover after parsing attributes in process `syz.3.449'. [ 162.803516][ T7207] netlink: 4 bytes leftover after parsing attributes in process `syz.3.449'. [ 162.885240][ T7213] netlink: 12 bytes leftover after parsing attributes in process `syz.1.451'. [ 163.829158][ T7221] netlink: 'syz.1.453': attribute type 3 has an invalid length. [ 163.848601][ T7221] netlink: 44 bytes leftover after parsing attributes in process `syz.1.453'. [ 164.053506][ T7227] loop1: detected capacity change from 0 to 1024 [ 164.067135][ T7227] EXT4-fs: Ignoring removed nomblk_io_submit option [ 164.106647][ T7227] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 164.119800][ T7226] loop3: detected capacity change from 0 to 4096 [ 164.179490][ T7226] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.194759][ T7227] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 164.223329][ T7227] System zones: 0-1, 3-36 [ 164.249610][ T7227] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.558007][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.728776][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.862398][ T7237] loop3: detected capacity change from 0 to 1024 [ 164.870164][ T7237] EXT4-fs: Ignoring removed orlov option [ 164.916799][ T7237] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.045703][ T7241] loop1: detected capacity change from 0 to 512 [ 165.111969][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.124194][ T7241] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 165.157493][ T7241] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 165.230974][ T7241] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.656069][ T7251] loop1: detected capacity change from 0 to 1024 [ 165.710013][ T7251] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.752576][ T7249] bridge0: entered promiscuous mode [ 165.758935][ T7249] macsec1: entered promiscuous mode [ 165.765777][ T7249] bridge0: port 3(macsec1) entered blocking state [ 165.772545][ T7249] bridge0: port 3(macsec1) entered disabled state [ 165.779659][ T7249] macsec1: entered allmulticast mode [ 165.786067][ T7249] bridge0: entered allmulticast mode [ 165.794456][ T7249] macsec1: left allmulticast mode [ 165.804569][ T7249] bridge0: left allmulticast mode [ 165.899963][ T7249] bridge0: left promiscuous mode [ 165.913666][ T7251] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 166.078897][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.405639][ T7272] netlink: 40 bytes leftover after parsing attributes in process `syz.3.469'. [ 166.475425][ T7276] netlink: 76 bytes leftover after parsing attributes in process `syz.1.471'. [ 166.744082][ T7278] loop3: detected capacity change from 0 to 2048 [ 166.828689][ T7278] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 166.867695][ T7278] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 166.978205][ T7278] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.472: bg 0: block 345: padding at end of block bitmap is not set [ 167.008662][ T7278] EXT4-fs (loop3): Remounting filesystem read-only [ 167.018508][ T7278] EXT4-fs warning (device loop3): ext4_xattr_inode_lookup_create:1619: inode #18: comm syz.3.472: cleanup dec ref error -117 [ 167.081653][ T7290] loop2: detected capacity change from 0 to 1024 [ 167.116515][ T7290] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 167.138871][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.141521][ T7290] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 167.207618][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.917011][ T7314] loop3: detected capacity change from 0 to 1024 [ 167.930849][ T7314] EXT4-fs: Ignoring removed bh option [ 167.958571][ T7314] EXT4-fs: inline encryption not supported [ 167.988380][ T7314] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 168.014588][ T7314] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000] [ 168.036478][ T7314] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.485: lblock 2 mapped to illegal pblock 2 (length 1) [ 168.064793][ T7314] __quota_error: 67 callbacks suppressed [ 168.064810][ T7314] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 168.073208][ T7318] netlink: 12 bytes leftover after parsing attributes in process `syz.2.486'. [ 168.093282][ T7314] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.485: lblock 0 mapped to illegal pblock 48 (length 1) [ 168.108537][ T7314] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 168.150333][ T7314] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.485: Failed to acquire dquot type 0 [ 168.162062][ T7314] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 168.172565][ T7320] loop2: detected capacity change from 0 to 128 [ 168.181295][ T7314] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.485: mark_inode_dirty error [ 168.199089][ T7322] netlink: 12 bytes leftover after parsing attributes in process `syz.1.495'. [ 168.219078][ T7314] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 168.235397][ T27] audit: type=1326 audit(1764652296.959:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7319 comm="syz.2.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 168.261291][ T7314] EXT4-fs (loop3): 1 orphan inode deleted [ 168.267239][ T7320] FAT-fs (loop2): error, invalid access to FAT (entry 0x0fff0000) [ 168.275379][ T7320] FAT-fs (loop2): Filesystem has been set read-only [ 168.283242][ T3500] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:11: lblock 1 mapped to illegal pblock 1 (length 1) [ 168.299158][ T7314] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 168.323230][ T27] audit: type=1326 audit(1764652296.989:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7319 comm="syz.2.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 168.348588][ T3500] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 168.384444][ T27] audit: type=1326 audit(1764652297.049:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7319 comm="syz.2.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 168.406680][ T3500] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u4:11: Failed to release dquot type 0 [ 168.436717][ T27] audit: type=1326 audit(1764652297.049:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7319 comm="syz.2.487" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 168.509488][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 168.570270][ T5787] EXT4-fs error (device loop3): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 168.621797][ T5787] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 168.662549][ T7329] loop2: detected capacity change from 0 to 2048 [ 168.666599][ T5787] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error [ 168.731039][ T7329] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 168.770329][ T7329] ext4 filesystem being mounted at /120/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 168.886509][ T7329] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.489: bg 0: block 345: padding at end of block bitmap is not set [ 168.942078][ T7329] EXT4-fs (loop2): Remounting filesystem read-only [ 168.972355][ T7329] EXT4-fs warning (device loop2): ext4_xattr_inode_lookup_create:1619: inode #18: comm syz.2.489: cleanup dec ref error -117 [ 169.094677][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.153875][ T7344] netlink: 12 bytes leftover after parsing attributes in process `syz.3.497'. [ 169.245043][ T7349] loop2: detected capacity change from 0 to 512 [ 169.278936][ T7349] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 169.349833][ T7349] EXT4-fs (loop2): 1 truncate cleaned up [ 169.380799][ T7349] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 169.542765][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 169.960118][ T7362] loop1: detected capacity change from 0 to 4096 [ 170.031263][ T7362] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.305021][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.306314][ T7376] loop3: detected capacity change from 0 to 128 [ 170.399128][ T27] audit: type=1326 audit(1764652299.119:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7373 comm="syz.3.509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 170.453384][ T27] audit: type=1326 audit(1764652299.119:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7373 comm="syz.3.509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 170.472505][ T7375] loop2: detected capacity change from 0 to 4096 [ 170.513116][ T27] audit: type=1326 audit(1764652299.119:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7373 comm="syz.3.509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 170.619869][ T7375] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 170.757770][ T7385] loop1: detected capacity change from 0 to 2048 [ 170.841178][ T7385] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 170.959983][ T7385] EXT4-fs error (device loop1): ext4_ext_precache:645: inode #2: comm syz.1.512: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 171.170857][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.466753][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 171.693299][ T7408] netlink: 12 bytes leftover after parsing attributes in process `syz.2.518'. [ 172.364020][ T7427] blktrace: Concurrent blktraces are not allowed on loop4 [ 173.028942][ T7438] netlink: 12 bytes leftover after parsing attributes in process `syz.3.532'. [ 173.046268][ T7438] netlink: 48 bytes leftover after parsing attributes in process `syz.3.532'. [ 173.814027][ T7459] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 173.915286][ T7459] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 173.982766][ T7459] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.012637][ T7462] loop1: detected capacity change from 0 to 4096 [ 174.025613][ T7462] EXT4-fs: Ignoring removed nomblk_io_submit option [ 174.057971][ T7459] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.059757][ T7462] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 174.290076][ T7473] loop2: detected capacity change from 0 to 4096 [ 174.332244][ T7473] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 174.419014][ T7459] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 174.523809][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 174.532517][ T7459] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 174.657791][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 174.697458][ T7459] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 174.834067][ T7459] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 175.002037][ T7492] netlink: 12 bytes leftover after parsing attributes in process `syz.0.552'. [ 175.026173][ T7492] netlink: 48 bytes leftover after parsing attributes in process `syz.0.552'. [ 175.521046][ T7511] loop3: detected capacity change from 0 to 4096 [ 175.592122][ T7511] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 175.678611][ T7519] netlink: 12 bytes leftover after parsing attributes in process `syz.1.563'. [ 175.689488][ T7519] netlink: 24 bytes leftover after parsing attributes in process `syz.1.563'. [ 175.776602][ T7520] loop2: detected capacity change from 0 to 128 [ 175.822377][ T27] kauditd_printk_skb: 74 callbacks suppressed [ 175.822393][ T27] audit: type=1800 audit(1764652304.539:398): pid=7520 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.561" name="bus" dev="loop2" ino=1048599 res=0 errno=0 [ 175.841897][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.907609][ T7524] loop1: detected capacity change from 0 to 2048 [ 175.930213][ T27] audit: type=1804 audit(1764652304.589:399): pid=7520 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.561" name="/newroot/135/file2/bus" dev="loop2" ino=1048599 res=1 errno=0 [ 176.017972][ T7524] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 176.049185][ T7524] ext4 filesystem being mounted at /133/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 176.123172][ T7524] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.564: bg 0: block 345: padding at end of block bitmap is not set [ 176.142297][ T7524] EXT4-fs (loop1): Remounting filesystem read-only [ 176.149166][ T7524] EXT4-fs warning (device loop1): ext4_xattr_inode_lookup_create:1619: inode #18: comm syz.1.564: cleanup dec ref error -117 [ 176.149625][ T7528] syzkaller0: entered promiscuous mode [ 176.242058][ T7528] syzkaller0: entered allmulticast mode [ 176.255667][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 176.607030][ T7542] netlink: 12 bytes leftover after parsing attributes in process `syz.3.572'. [ 176.825967][ T27] audit: type=1326 audit(1764652305.539:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7544 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 176.897227][ T27] audit: type=1326 audit(1764652305.539:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7544 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 176.953178][ T27] audit: type=1326 audit(1764652305.549:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7544 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 176.986631][ T27] audit: type=1326 audit(1764652305.549:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7544 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb8a2f8f783 code=0x7ffc0000 [ 177.019886][ T27] audit: type=1326 audit(1764652305.549:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7544 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb8a2f8f783 code=0x7ffc0000 [ 177.058099][ T27] audit: type=1326 audit(1764652305.549:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7544 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 177.129308][ T27] audit: type=1326 audit(1764652305.549:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7544 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 177.206663][ T27] audit: type=1326 audit(1764652305.599:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7544 comm="syz.3.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 177.599462][ T7569] netlink: 12 bytes leftover after parsing attributes in process `syz.2.583'. [ 177.644142][ T7569] netlink: 24 bytes leftover after parsing attributes in process `syz.2.583'. [ 178.342436][ T7585] loop2: detected capacity change from 0 to 2048 [ 178.395331][ T7585] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 178.427227][ T7589] netlink: 12 bytes leftover after parsing attributes in process `syz.0.593'. [ 178.438253][ T7585] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 178.509698][ T7585] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.591: bg 0: block 345: padding at end of block bitmap is not set [ 178.567436][ T7585] EXT4-fs (loop2): Remounting filesystem read-only [ 178.585999][ T7585] EXT4-fs warning (device loop2): ext4_xattr_inode_lookup_create:1619: inode #18: comm syz.2.591: cleanup dec ref error -117 [ 178.714726][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 178.993272][ T7608] loop3: detected capacity change from 0 to 1024 [ 179.060452][ T7608] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 179.244254][ T7608] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 179.734807][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 180.188866][ T7626] loop2: detected capacity change from 0 to 1024 [ 180.315184][ T7626] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 180.530697][ T7639] loop3: detected capacity change from 0 to 2048 [ 180.608009][ T7639] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 180.639884][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 180.648173][ T7639] ext4 filesystem being mounted at /157/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 180.725299][ T7636] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.607: bg 0: block 345: padding at end of block bitmap is not set [ 180.784160][ T7636] EXT4-fs (loop3): Remounting filesystem read-only [ 180.809942][ T7636] EXT4-fs warning (device loop3): ext4_xattr_inode_lookup_create:1619: inode #18: comm syz.3.607: cleanup dec ref error -117 [ 180.935253][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.122966][ T7653] syzkaller0: entered promiscuous mode [ 181.135196][ T7653] syzkaller0: entered allmulticast mode [ 181.205351][ T7657] loop3: detected capacity change from 0 to 1024 [ 181.278746][ T7657] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 181.319922][ T7640] Process accounting resumed [ 181.379970][ T7657] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 181.540906][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.015422][ T7684] netlink: 16 bytes leftover after parsing attributes in process `syz.0.627'. [ 182.141185][ T27] kauditd_printk_skb: 26 callbacks suppressed [ 182.141201][ T27] audit: type=1326 audit(1764652310.859:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 182.152619][ T27] audit: type=1326 audit(1764652310.869:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 182.153092][ T27] audit: type=1326 audit(1764652310.869:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 182.153446][ T27] audit: type=1326 audit(1764652310.869:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 182.154132][ T27] audit: type=1326 audit(1764652310.879:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 182.154178][ T27] audit: type=1326 audit(1764652310.879:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 182.154222][ T27] audit: type=1326 audit(1764652310.879:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 182.154533][ T27] audit: type=1326 audit(1764652310.879:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm="syz.3.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 182.154760][ T27] audit: type=1326 audit(1764652310.879:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 182.154977][ T27] audit: type=1326 audit(1764652310.879:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7687 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb8a2f8f749 code=0x7ffc0000 [ 182.252258][ T7692] loop1: detected capacity change from 0 to 1024 [ 182.361668][ T7692] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 182.381380][ T7696] netlink: 12 bytes leftover after parsing attributes in process `syz.3.632'. [ 182.566879][ T7692] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 182.701851][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.720636][ T7705] loop3: detected capacity change from 0 to 512 [ 183.117438][ T7717] loop1: detected capacity change from 0 to 512 [ 183.170686][ T7717] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 183.199460][ T7717] EXT4-fs (loop1): invalid journal inode [ 183.207399][ T7717] EXT4-fs (loop1): can't get journal size [ 183.249657][ T7717] EXT4-fs (loop1): 1 truncate cleaned up [ 183.286478][ T7717] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 183.327331][ T7724] netlink: 12 bytes leftover after parsing attributes in process `syz.3.643'. [ 183.497020][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 183.553268][ T7732] mmap: syz.0.648 (7732) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 185.071561][ T7756] loop3: detected capacity change from 0 to 512 [ 185.099931][ T7756] EXT4-fs: Ignoring removed oldalloc option [ 185.158245][ T7756] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 185.383642][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.836501][ T7784] macvlan1: entered promiscuous mode [ 185.849564][ T7784] ipvlan0: entered promiscuous mode [ 185.861338][ T7784] ipvlan0: left promiscuous mode [ 185.874001][ T7784] macvlan1: left promiscuous mode [ 186.316287][ T7795] loop1: detected capacity change from 0 to 2048 [ 186.399746][ T7795] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 186.444021][ T7795] ext4 filesystem being mounted at /157/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 186.541682][ T7805] loop2: detected capacity change from 0 to 164 [ 186.573166][ T7803] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.665: bg 0: block 345: padding at end of block bitmap is not set [ 186.630141][ T7803] EXT4-fs (loop1): Remounting filesystem read-only [ 186.656927][ T3433] EXT4-fs warning (device loop1): ext4_convert_unwritten_extents:4868: inode #15: block 1: len 15: ext4_ext_map_blocks returned -5 [ 186.664648][ T7805] Unable to read rock-ridge attributes [ 186.787070][ T7805] Unable to read rock-ridge attributes [ 186.857745][ T7805] syz.2.668: attempt to access beyond end of device [ 186.857745][ T7805] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 186.877138][ T7805] syz.2.668: attempt to access beyond end of device [ 186.877138][ T7805] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 186.929087][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.216458][ T7822] loop2: detected capacity change from 0 to 512 [ 187.218131][ T7820] loop1: detected capacity change from 0 to 1024 [ 187.264261][ T7820] EXT4-fs: inline encryption not supported [ 187.302592][ T7820] EXT4-fs: Ignoring removed mblk_io_submit option [ 187.308832][ T7822] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 187.333895][ T7822] FAT-fs (loop2): Filesystem has been set read-only [ 187.408178][ T7820] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 187.507344][ T7820] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 187.763513][ T7841] netlink: 'syz.0.677': attribute type 1 has an invalid length. [ 187.811718][ T5798] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.055373][ T7846] netlink: 'syz.0.680': attribute type 30 has an invalid length. [ 188.097100][ T7849] netlink: 256 bytes leftover after parsing attributes in process `syz.2.679'. [ 188.099476][ T7846] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 188.115530][ T7846] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 188.124336][ T7846] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 188.133356][ T7846] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 188.178301][ T7846] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 188.187864][ T7846] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 188.197210][ T7846] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 188.206355][ T7846] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 188.589956][ T7860] netlink: 8 bytes leftover after parsing attributes in process `syz.3.683'. [ 188.944486][ T7875] netlink: 60 bytes leftover after parsing attributes in process `syz.0.689'. [ 189.291405][ T7885] program syz.2.694 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 189.392954][ T7887] program syz.2.695 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 189.537744][ T7889] veth2: entered promiscuous mode [ 189.544675][ T7889] veth2: entered allmulticast mode [ 189.608399][ T7868] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 189.618186][ T7868] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 189.627264][ T7868] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 189.646804][ T7868] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 189.657992][ T7868] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 189.664418][ T7868] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 189.678082][ T7868] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 189.690566][ T7868] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 189.699274][ T7868] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 189.711232][ T7868] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 190.024236][ T3062] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 190.193416][ T3062] usb 3-1: device descriptor read/64, error -71 [ 190.220894][ T7902] netlink: 12 bytes leftover after parsing attributes in process `syz.0.697'. [ 190.237490][ T7903] loop2: detected capacity change from 0 to 7 [ 190.247926][ T7903] Dev loop2: unable to read RDB block 7 [ 190.263182][ T7903] loop2: unable to read partition table [ 190.269222][ T7903] loop2: partition table beyond EOD, truncated [ 190.283164][ T7903] loop_reread_partitions: partition scan of loop2 (þè¢ÿü—ŸÑà¶) failed (rc=-5) [ 190.476753][ T3062] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 190.643224][ T3062] usb 3-1: device descriptor read/64, error -71 [ 190.773362][ T3062] usb usb3-port1: attempt power cycle [ 190.795172][ T7917] loop1: detected capacity change from 0 to 128 [ 190.977444][ T7921] loop3: detected capacity change from 0 to 512 [ 191.070700][ T7924] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 191.193109][ T3062] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 191.254678][ T3062] usb 3-1: device descriptor read/8, error -71 [ 191.523224][ T3062] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 191.578455][ T3062] usb 3-1: device descriptor read/8, error -71 [ 191.653156][ T5788] Bluetooth: hci1: command 0x0c1a tx timeout [ 191.713477][ T3062] usb usb3-port1: unable to enumerate USB device [ 191.743180][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 191.749378][ T5788] Bluetooth: hci3: command 0x0c1a tx timeout [ 193.733950][ T5788] Bluetooth: hci1: command 0x0c1a tx timeout [ 193.815418][ T7955] loop1: detected capacity change from 0 to 256 [ 193.817621][ T5788] Bluetooth: hci3: command 0x0c1a tx timeout [ 193.825270][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 194.004583][ T7959] loop3: detected capacity change from 0 to 1024 [ 194.056609][ T7959] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 194.061954][ T27] kauditd_printk_skb: 22 callbacks suppressed [ 194.061969][ T27] audit: type=1326 audit(1764652322.779:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7963 comm="syz.2.726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 194.088689][ T7959] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 194.123255][ T27] audit: type=1326 audit(1764652322.809:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7963 comm="syz.2.726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 194.146238][ T7966] loop1: detected capacity change from 0 to 512 [ 194.146561][ T27] audit: type=1326 audit(1764652322.839:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7963 comm="syz.2.726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 194.175030][ T27] audit: type=1326 audit(1764652322.839:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7963 comm="syz.2.726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 194.175103][ T7966] EXT4-fs: Ignoring removed nobh option [ 194.198625][ T27] audit: type=1326 audit(1764652322.839:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7963 comm="syz.2.726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 194.223956][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.227956][ T27] audit: type=1326 audit(1764652322.839:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7963 comm="syz.2.726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 194.248179][ T7966] EXT4-fs: old and new quota format mixing [ 194.258827][ T27] audit: type=1326 audit(1764652322.839:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7963 comm="syz.2.726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 194.292060][ T27] audit: type=1326 audit(1764652322.849:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7963 comm="syz.2.726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 194.321043][ T27] audit: type=1326 audit(1764652322.849:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7963 comm="syz.2.726" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f396298f749 code=0x7ffc0000 [ 194.562940][ T7976] netlink: 660 bytes leftover after parsing attributes in process `syz.3.728'. [ 194.679601][ T7971] (null): rxe_set_mtu: Set mtu to 1024 [ 194.876599][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.772256][ T7971] infiniband syû: set active [ 195.777679][ T7971] infiniband syû: added bond_slave_0 [ 195.790669][ T7971] syû: rxe_create_cq: returned err = -12 [ 195.797976][ T7971] infiniband syû: Couldn't create ib_mad CQ [ 195.804268][ T7971] infiniband syû: Couldn't open port 1 [ 195.823729][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 195.859406][ T7971] RDS/IB: syû: added [ 195.869789][ T7971] smc: adding ib device syû with port count 1 [ 195.877560][ T7971] smc: ib device syû port 1 has pnetid [ 195.893740][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 195.899955][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 195.902428][ T7997] loop1: detected capacity change from 0 to 512 [ 195.952857][ T7997] [ 195.955253][ T7997] ====================================================== [ 195.962385][ T7997] WARNING: possible circular locking dependency detected [ 195.969427][ T7997] syzkaller #0 Not tainted [ 195.973869][ T7997] ------------------------------------------------------ [ 195.980913][ T7997] syz.1.738/7997 is trying to acquire lock: [ 195.986825][ T7997] ffff88807d566bd8 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x170/0x2f0 [ 195.996886][ T7997] [ 195.996886][ T7997] but task is already holding lock: [ 196.004534][ T7997] ffff88805e0580c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 196.008083][ T7995] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 196.014482][ T7997] [ 196.014482][ T7997] which lock already depends on the new lock. [ 196.014482][ T7997] [ 196.014493][ T7997] [ 196.014493][ T7997] the existing dependency chain (in reverse order) is: [ 196.014499][ T7997] [ 196.014499][ T7997] -> #1 (&ei->xattr_sem){++++}-{3:3}: [ 196.014532][ T7997] down_write+0x97/0x1f0 [ 196.014556][ T7997] ext4_destroy_inline_data+0x28/0xe0 [ 196.014577][ T7997] ext4_do_writepages+0x4c2/0x38d0 [ 196.030107][ T7995] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 196.032369][ T7997] ext4_writepages+0x1a8/0x2f0 [ 196.032401][ T7997] do_writepages+0x3a2/0x600 [ 196.083072][ T7997] filemap_fdatawrite_wbc+0x122/0x180 [ 196.088975][ T7997] file_write_and_wait_range+0x171/0x240 [ 196.095163][ T7997] generic_buffers_fsync_noflush+0x6f/0x160 [ 196.101624][ T7997] ext4_sync_file+0x454/0xc10 [ 196.106926][ T7997] ext4_buffered_write_iter+0x2c0/0x350 [ 196.113005][ T7997] ext4_file_write_iter+0x1d9/0x1870 [ 196.118830][ T7997] vfs_write+0x43b/0x940 [ 196.123688][ T7997] __x64_sys_pwrite64+0x195/0x220 [ 196.129284][ T7997] do_syscall_64+0x55/0xb0 [ 196.134241][ T7997] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 196.140925][ T7997] [ 196.140925][ T7997] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 196.149439][ T7997] __lock_acquire+0x2ddb/0x7c80 [ 196.154827][ T7997] lock_acquire+0x197/0x410 [ 196.159848][ T7997] percpu_down_read+0x44/0x1a0 [ 196.165229][ T7997] ext4_writepages+0x170/0x2f0 [ 196.170515][ T7997] do_writepages+0x3a2/0x600 [ 196.175632][ T7997] __writeback_single_inode+0x153/0xee0 [ 196.181712][ T7997] writeback_single_inode+0x211/0x720 [ 196.187605][ T7997] write_inode_now+0x161/0x1e0 [ 196.192907][ T7997] iput+0x5b2/0x920 [ 196.197231][ T7997] ext4_xattr_block_set+0x273a/0x32a0 [ 196.203123][ T7997] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 196.209711][ T7997] __ext4_expand_extra_isize+0x306/0x400 [ 196.215871][ T7997] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 196.221848][ T7997] ext4_evict_inode+0x7ed/0xea0 [ 196.227214][ T7997] evict+0x486/0x870 [ 196.231623][ T7997] ext4_orphan_cleanup+0xbd4/0x1400 [ 196.237436][ T7997] ext4_fill_super+0x5de4/0x66c0 [ 196.242912][ T7997] get_tree_bdev+0x3e4/0x510 [ 196.248033][ T7997] vfs_get_tree+0x8c/0x280 [ 196.252962][ T7997] do_new_mount+0x24b/0xa40 [ 196.258011][ T7997] __se_sys_mount+0x2da/0x3c0 [ 196.263201][ T7997] do_syscall_64+0x55/0xb0 [ 196.268224][ T7997] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 196.274636][ T7997] [ 196.274636][ T7997] other info that might help us debug this: [ 196.274636][ T7997] [ 196.284858][ T7997] Possible unsafe locking scenario: [ 196.284858][ T7997] [ 196.292299][ T7997] CPU0 CPU1 [ 196.298018][ T7997] ---- ---- [ 196.303377][ T7997] lock(&ei->xattr_sem); [ 196.307710][ T7997] lock(&sbi->s_writepages_rwsem); [ 196.315429][ T7997] lock(&ei->xattr_sem); [ 196.322270][ T7997] rlock(&sbi->s_writepages_rwsem); [ 196.327552][ T7997] [ 196.327552][ T7997] *** DEADLOCK *** [ 196.327552][ T7997] [ 196.335689][ T7997] 3 locks held by syz.1.738/7997: [ 196.340709][ T7997] #0: ffff88807d5640e0 (&type->s_umount_key#32){++++}-{3:3}, at: get_tree_bdev+0x344/0x510 [ 196.350800][ T7997] #1: ffff88807d564608 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b9/0xea0 [ 196.360301][ T7997] #2: ffff88805e0580c8 (&ei->xattr_sem){++++}-{3:3}, at: __ext4_mark_inode_dirty+0x3dc/0x6e0 [ 196.370566][ T7997] [ 196.370566][ T7997] stack backtrace: [ 196.376448][ T7997] CPU: 0 PID: 7997 Comm: syz.1.738 Not tainted syzkaller #0 [ 196.383724][ T7997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 196.393797][ T7997] Call Trace: [ 196.397075][ T7997] [ 196.400005][ T7997] dump_stack_lvl+0x16c/0x230 [ 196.404690][ T7997] ? load_image+0x3b0/0x3b0 [ 196.409280][ T7997] ? show_regs_print_info+0x20/0x20 [ 196.414481][ T7997] ? print_circular_bug+0x12b/0x1a0 [ 196.419684][ T7997] check_noncircular+0x2bd/0x3c0 [ 196.424619][ T7997] ? look_up_lock_class+0x75/0x140 [ 196.429736][ T7997] ? print_deadlock_bug+0x5d0/0x5d0 [ 196.434942][ T7997] ? lockdep_lock+0xe0/0x220 [ 196.439551][ T7997] ? _find_first_zero_bit+0xd3/0x100 [ 196.444864][ T7997] __lock_acquire+0x2ddb/0x7c80 [ 196.449728][ T7997] ? mark_lock+0x94/0x320 [ 196.454089][ T7997] ? verify_lock_unused+0x140/0x140 [ 196.459426][ T7997] ? __lock_acquire+0x1334/0x7c80 [ 196.464447][ T7997] ? verify_lock_unused+0x140/0x140 [ 196.469650][ T7997] lock_acquire+0x197/0x410 [ 196.474150][ T7997] ? ext4_writepages+0x170/0x2f0 [ 196.479178][ T7997] ? __might_sleep+0xe0/0xe0 [ 196.483779][ T7997] ? mark_lock+0x94/0x320 [ 196.488194][ T7997] ? read_lock_is_recursive+0x20/0x20 [ 196.493565][ T7997] ? __lock_acquire+0x1334/0x7c80 [ 196.498586][ T7997] percpu_down_read+0x44/0x1a0 [ 196.503378][ T7997] ? ext4_writepages+0x170/0x2f0 [ 196.508326][ T7997] ext4_writepages+0x170/0x2f0 [ 196.513101][ T7997] ? ext4_read_folio+0x2f0/0x2f0 [ 196.518037][ T7997] ? __rwlock_init+0x150/0x150 [ 196.522800][ T7997] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 196.528706][ T7997] ? do_raw_spin_unlock+0x121/0x230 [ 196.533921][ T7997] ? ext4_read_folio+0x2f0/0x2f0 [ 196.538865][ T7997] do_writepages+0x3a2/0x600 [ 196.543466][ T7997] ? folio_clear_dirty_for_io+0xc30/0xc30 [ 196.549217][ T7997] ? writeback_single_inode+0x206/0x720 [ 196.554785][ T7997] ? __lock_acquire+0x7c80/0x7c80 [ 196.560267][ T7997] ? do_raw_spin_lock+0x121/0x2c0 [ 196.565290][ T7997] ? get_tree_bdev+0x3e4/0x510 [ 196.570056][ T7997] __writeback_single_inode+0x153/0xee0 [ 196.575609][ T7997] writeback_single_inode+0x211/0x720 [ 196.580984][ T7997] ? write_inode_now+0x1e0/0x1e0 [ 196.585924][ T7997] write_inode_now+0x161/0x1e0 [ 196.590708][ T7997] ? bdi_split_work_to_wbs+0x890/0x890 [ 196.596172][ T7997] ? do_raw_spin_unlock+0x121/0x230 [ 196.601375][ T7997] iput+0x5b2/0x920 [ 196.605181][ T7997] ext4_xattr_block_set+0x273a/0x32a0 [ 196.610558][ T7997] ? __might_sleep+0xe0/0xe0 [ 196.615151][ T7997] ? xattr_find_entry+0x12b/0x2f0 [ 196.620176][ T7997] ? ext4_xattr_block_find+0x350/0x350 [ 196.625635][ T7997] ? ext4_xattr_block_find+0x2d4/0x350 [ 196.631091][ T7997] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 196.637001][ T7997] __ext4_expand_extra_isize+0x306/0x400 [ 196.642639][ T7997] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 196.648288][ T7997] ext4_evict_inode+0x7ed/0xea0 [ 196.653234][ T7997] ? _raw_spin_unlock+0x28/0x40 [ 196.658128][ T7997] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 196.664032][ T7997] ? do_raw_spin_unlock+0x121/0x230 [ 196.669232][ T7997] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 196.675133][ T7997] evict+0x486/0x870 [ 196.679140][ T7997] ? __lock_acquire+0x7c80/0x7c80 [ 196.684204][ T7997] ? proc_nr_inodes+0x230/0x230 [ 196.689263][ T7997] ? do_raw_spin_unlock+0x121/0x230 [ 196.694468][ T7997] ? _raw_spin_unlock+0x28/0x40 [ 196.699315][ T7997] ? iput+0x70a/0x920 [ 196.703292][ T7997] ext4_orphan_cleanup+0xbd4/0x1400 [ 196.708493][ T7997] ? ext4_orphan_del+0xba0/0xba0 [ 196.713432][ T7997] ? ext4_register_li_request+0x183/0x940 [ 196.719147][ T7997] ? errseq_check_and_advance+0x66/0x120 [ 196.724801][ T7997] ext4_fill_super+0x5de4/0x66c0 [ 196.729765][ T7997] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 196.736017][ T7997] ? __might_sleep+0xe0/0xe0 [ 196.740604][ T7997] ? read_lock_is_recursive+0x20/0x20 [ 196.745981][ T7997] ? snprintf+0xdb/0x120 [ 196.750278][ T7997] ? vscnprintf+0x80/0x80 [ 196.754622][ T7997] ? down_write+0x162/0x1f0 [ 196.759139][ T7997] ? down_read_killable+0x340/0x340 [ 196.764337][ T7997] ? setup_bdev_super+0x56b/0x660 [ 196.769364][ T7997] get_tree_bdev+0x3e4/0x510 [ 196.773951][ T7997] ? vfs_parse_fs_string+0x160/0x160 [ 196.779229][ T7997] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 196.785467][ T7997] ? setup_bdev_super+0x660/0x660 [ 196.790524][ T7997] ? apparmor_capable+0x137/0x1a0 [ 196.795545][ T7997] ? bpf_lsm_capable+0x9/0x10 [ 196.800240][ T7997] ? security_capable+0x89/0xb0 [ 196.805099][ T7997] vfs_get_tree+0x8c/0x280 [ 196.809509][ T7997] do_new_mount+0x24b/0xa40 [ 196.814005][ T7997] __se_sys_mount+0x2da/0x3c0 [ 196.818680][ T7997] ? __x64_sys_mount+0xc0/0xc0 [ 196.823442][ T7997] ? lockdep_hardirqs_on+0x98/0x150 [ 196.828651][ T7997] ? __x64_sys_mount+0x20/0xc0 [ 196.833423][ T7997] do_syscall_64+0x55/0xb0 [ 196.837854][ T7997] ? clear_bhb_loop+0x40/0x90 [ 196.842529][ T7997] ? clear_bhb_loop+0x40/0x90 [ 196.847237][ T7997] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 196.853148][ T7997] RIP: 0033:0x7f8a59990eea [ 196.857581][ T7997] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 196.877217][ T7997] RSP: 002b:00007f8a5a774e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 196.885636][ T7997] RAX: ffffffffffffffda RBX: 00007f8a5a774ef0 RCX: 00007f8a59990eea [ 196.893609][ T7997] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f8a5a774eb0 [ 196.901594][ T7997] RBP: 0000200000000180 R08: 00007f8a5a774ef0 R09: 0000000000800700 [ 196.909579][ T7997] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 196.917665][ T7997] R13: 00007f8a5a774eb0 R14: 000000000000046f R15: 0000200000000200 [ 196.925659][ T7997] [ 196.932415][ T7995] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 196.941577][ T7997] ------------[ cut here ]------------ [ 196.947213][ T7997] EA inode 11 i_nlink=2 [ 196.947466][ T7997] WARNING: CPU: 0 PID: 7997 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550 [ 196.952098][ T7995] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 196.969967][ T7997] Modules linked in: [ 196.973997][ T7997] CPU: 0 PID: 7997 Comm: syz.1.738 Not tainted syzkaller #0 [ 196.981340][ T7997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 196.991452][ T7997] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 196.998087][ T7997] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 ff 49 2c 08 [ 197.017876][ T7997] RSP: 0018:ffffc9000343f1c0 EFLAGS: 00010246 [ 197.023983][ T7997] RAX: 8b3415067e087e00 RBX: 0000000000000002 RCX: 0000000000080000 [ 197.031972][ T7997] RDX: ffffc9000cf9a000 RSI: 000000000007ffff RDI: 0000000000080000 [ 197.040027][ T7997] RBP: ffffc9000343f2b8 R08: ffffc9000343edc7 R09: 1ffff92000687db8 [ 197.048044][ T7997] R10: dffffc0000000000 R11: fffff52000687db9 R12: dffffc0000000000 [ 197.056842][ T7997] R13: ffff88805e05aca8 R14: ffff88805e05aab0 R15: ffff88805e05ab00 [ 197.064962][ T7997] FS: 00007f8a5a7756c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 197.073955][ T7997] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 197.080591][ T7997] CR2: 000000110c33ca2f CR3: 00000000217f2000 CR4: 00000000003506f0 [ 197.088623][ T7997] Call Trace: [ 197.091921][ T7997] [ 197.094905][ T7997] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 197.100555][ T7997] ? ext4_xattr_inode_iget+0x3df/0x600 [ 197.106048][ T7997] ext4_xattr_set_entry+0xcda/0x1e90 [ 197.111373][ T7997] ext4_xattr_ibody_set+0x254/0x6a0 [ 197.116627][ T7997] ext4_expand_extra_isize_ea+0x113a/0x19e0 [ 197.122546][ T7997] __ext4_expand_extra_isize+0x306/0x400 [ 197.128230][ T7997] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 197.133765][ T7997] ext4_evict_inode+0x7ed/0xea0 [ 197.138642][ T7997] ? _raw_spin_unlock+0x28/0x40 [ 197.143526][ T7997] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 197.149424][ T7997] ? do_raw_spin_unlock+0x121/0x230 [ 197.154676][ T7997] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 197.161042][ T7997] evict+0x486/0x870 [ 197.165062][ T7997] ? __lock_acquire+0x7c80/0x7c80 [ 197.170130][ T7997] ? proc_nr_inodes+0x230/0x230 [ 197.175277][ T7997] ? do_raw_spin_unlock+0x121/0x230 [ 197.180508][ T7997] ? _raw_spin_unlock+0x28/0x40 [ 197.185456][ T7997] ? iput+0x70a/0x920 [ 197.189445][ T7997] ext4_orphan_cleanup+0xbd4/0x1400 [ 197.194693][ T7997] ? ext4_orphan_del+0xba0/0xba0 [ 197.199646][ T7997] ? ext4_register_li_request+0x183/0x940 [ 197.205470][ T7997] ? errseq_check_and_advance+0x66/0x120 [ 197.211133][ T7997] ext4_fill_super+0x5de4/0x66c0 [ 197.216115][ T7997] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 197.222357][ T7997] ? __might_sleep+0xe0/0xe0 [ 197.226976][ T7997] ? read_lock_is_recursive+0x20/0x20 [ 197.232345][ T7997] ? snprintf+0xdb/0x120 [ 197.236619][ T7997] ? vscnprintf+0x80/0x80 [ 197.240952][ T7997] ? down_write+0x162/0x1f0 [ 197.245512][ T7997] ? down_read_killable+0x340/0x340 [ 197.250731][ T7997] ? setup_bdev_super+0x56b/0x660 [ 197.255789][ T7997] get_tree_bdev+0x3e4/0x510 [ 197.260849][ T7997] ? vfs_parse_fs_string+0x160/0x160 [ 197.266248][ T7997] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 197.272543][ T7997] ? setup_bdev_super+0x660/0x660 [ 197.277627][ T7997] ? apparmor_capable+0x137/0x1a0 [ 197.282663][ T7997] ? bpf_lsm_capable+0x9/0x10 [ 197.287377][ T7997] ? security_capable+0x89/0xb0 [ 197.292265][ T7997] vfs_get_tree+0x8c/0x280 [ 197.296722][ T7997] do_new_mount+0x24b/0xa40 [ 197.301256][ T7997] __se_sys_mount+0x2da/0x3c0 [ 197.305957][ T7997] ? __x64_sys_mount+0xc0/0xc0 [ 197.310732][ T7997] ? lockdep_hardirqs_on+0x98/0x150 [ 197.315974][ T7997] ? __x64_sys_mount+0x20/0xc0 [ 197.320754][ T7997] do_syscall_64+0x55/0xb0 [ 197.325199][ T7997] ? clear_bhb_loop+0x40/0x90 [ 197.329878][ T7997] ? clear_bhb_loop+0x40/0x90 [ 197.334580][ T7997] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 197.340473][ T7997] RIP: 0033:0x7f8a59990eea [ 197.344923][ T7997] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.365037][ T7997] RSP: 002b:00007f8a5a774e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 197.373679][ T7997] RAX: ffffffffffffffda RBX: 00007f8a5a774ef0 RCX: 00007f8a59990eea [ 197.381684][ T7997] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f8a5a774eb0 [ 197.389771][ T7997] RBP: 0000200000000180 R08: 00007f8a5a774ef0 R09: 0000000000800700 [ 197.397849][ T7997] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 197.405869][ T7997] R13: 00007f8a5a774eb0 R14: 000000000000046f R15: 0000200000000200 [ 197.414459][ T7997] [ 197.417481][ T7997] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 197.424775][ T7997] CPU: 0 PID: 7997 Comm: syz.1.738 Not tainted syzkaller #0 [ 197.432054][ T7997] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 197.442102][ T7997] Call Trace: [ 197.445381][ T7997] [ 197.448317][ T7997] dump_stack_lvl+0x16c/0x230 [ 197.453013][ T7997] ? show_regs_print_info+0x20/0x20 [ 197.458231][ T7997] ? load_image+0x3b0/0x3b0 [ 197.462739][ T7997] panic+0x2c0/0x710 [ 197.466659][ T7997] ? bpf_jit_dump+0xd0/0xd0 [ 197.471166][ T7997] __warn+0x2e0/0x470 [ 197.475145][ T7997] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 197.481138][ T7997] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 197.487121][ T7997] report_bug+0x2be/0x4f0 [ 197.491454][ T7997] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 197.497446][ T7997] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 197.503434][ T7997] ? ext4_xattr_inode_update_ref+0x4fd/0x550 [ 197.509414][ T7997] handle_bug+0xcf/0x120 [ 197.513680][ T7997] exc_invalid_op+0x1a/0x50 [ 197.518237][ T7997] asm_exc_invalid_op+0x1a/0x20 [ 197.523099][ T7997] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 197.529720][ T7997] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 ff 49 2c 08 [ 197.549359][ T7997] RSP: 0018:ffffc9000343f1c0 EFLAGS: 00010246 [ 197.555461][ T7997] RAX: 8b3415067e087e00 RBX: 0000000000000002 RCX: 0000000000080000 [ 197.563445][ T7997] RDX: ffffc9000cf9a000 RSI: 000000000007ffff RDI: 0000000000080000 [ 197.571429][ T7997] RBP: ffffc9000343f2b8 R08: ffffc9000343edc7 R09: 1ffff92000687db8 [ 197.579409][ T7997] R10: dffffc0000000000 R11: fffff52000687db9 R12: dffffc0000000000 [ 197.587387][ T7997] R13: ffff88805e05aca8 R14: ffff88805e05aab0 R15: ffff88805e05ab00 [ 197.595389][ T7997] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 197.601041][ T7997] ? ext4_xattr_inode_iget+0x3df/0x600 [ 197.606517][ T7997] ext4_xattr_set_entry+0xcda/0x1e90 [ 197.611821][ T7997] ext4_xattr_ibody_set+0x254/0x6a0 [ 197.617034][ T7997] ext4_expand_extra_isize_ea+0x113a/0x19e0 [ 197.622952][ T7997] __ext4_expand_extra_isize+0x306/0x400 [ 197.628607][ T7997] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 197.634360][ T7997] ext4_evict_inode+0x7ed/0xea0 [ 197.639228][ T7997] ? _raw_spin_unlock+0x28/0x40 [ 197.644089][ T7997] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 197.649994][ T7997] ? do_raw_spin_unlock+0x121/0x230 [ 197.655205][ T7997] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 197.661109][ T7997] evict+0x486/0x870 [ 197.665009][ T7997] ? __lock_acquire+0x7c80/0x7c80 [ 197.670045][ T7997] ? proc_nr_inodes+0x230/0x230 [ 197.674906][ T7997] ? do_raw_spin_unlock+0x121/0x230 [ 197.680117][ T7997] ? _raw_spin_unlock+0x28/0x40 [ 197.684981][ T7997] ? iput+0x70a/0x920 [ 197.688969][ T7997] ext4_orphan_cleanup+0xbd4/0x1400 [ 197.694365][ T7997] ? ext4_orphan_del+0xba0/0xba0 [ 197.699403][ T7997] ? ext4_register_li_request+0x183/0x940 [ 197.705133][ T7997] ? errseq_check_and_advance+0x66/0x120 [ 197.710776][ T7997] ext4_fill_super+0x5de4/0x66c0 [ 197.715733][ T7997] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 197.722070][ T7997] ? __might_sleep+0xe0/0xe0 [ 197.726677][ T7997] ? read_lock_is_recursive+0x20/0x20 [ 197.732053][ T7997] ? snprintf+0xdb/0x120 [ 197.736307][ T7997] ? vscnprintf+0x80/0x80 [ 197.740651][ T7997] ? down_write+0x162/0x1f0 [ 197.745156][ T7997] ? down_read_killable+0x340/0x340 [ 197.750366][ T7997] ? setup_bdev_super+0x56b/0x660 [ 197.755428][ T7997] get_tree_bdev+0x3e4/0x510 [ 197.760030][ T7997] ? vfs_parse_fs_string+0x160/0x160 [ 197.765324][ T7997] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 197.771587][ T7997] ? setup_bdev_super+0x660/0x660 [ 197.776624][ T7997] ? apparmor_capable+0x137/0x1a0 [ 197.781654][ T7997] ? bpf_lsm_capable+0x9/0x10 [ 197.786339][ T7997] ? security_capable+0x89/0xb0 [ 197.791200][ T7997] vfs_get_tree+0x8c/0x280 [ 197.795621][ T7997] do_new_mount+0x24b/0xa40 [ 197.800133][ T7997] __se_sys_mount+0x2da/0x3c0 [ 197.804837][ T7997] ? __x64_sys_mount+0xc0/0xc0 [ 197.809639][ T7997] ? lockdep_hardirqs_on+0x98/0x150 [ 197.814859][ T7997] ? __x64_sys_mount+0x20/0xc0 [ 197.819637][ T7997] do_syscall_64+0x55/0xb0 [ 197.824065][ T7997] ? clear_bhb_loop+0x40/0x90 [ 197.828754][ T7997] ? clear_bhb_loop+0x40/0x90 [ 197.833438][ T7997] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 197.839342][ T7997] RIP: 0033:0x7f8a59990eea [ 197.843766][ T7997] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 197.863380][ T7997] RSP: 002b:00007f8a5a774e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 197.871983][ T7997] RAX: ffffffffffffffda RBX: 00007f8a5a774ef0 RCX: 00007f8a59990eea [ 197.880055][ T7997] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f8a5a774eb0 [ 197.888036][ T7997] RBP: 0000200000000180 R08: 00007f8a5a774ef0 R09: 0000000000800700 [ 197.896012][ T7997] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 197.903992][ T7997] R13: 00007f8a5a774eb0 R14: 000000000000046f R15: 0000200000000200 [ 197.911977][ T7997] [ 197.915246][ T7997] Kernel Offset: disabled [ 197.919569][ T7997] Rebooting in 86400 seconds..