last executing test programs: 10.863938751s ago: executing program 2 (id=241): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$GTP_CMD_NEWPDP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x34}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="0000000000000000b70800000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xaf, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7ffd}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000840)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x21081e, &(0x7f0000000440)={[{@quota}, {@nogrpid}, {@nolazytime}]}, 0xff, 0x523, &(0x7f0000000c00)="$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") sendmsg$ETHTOOL_MSG_WOL_GET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[], 0x20}, 0x1, 0x0, 0x0, 0x1}, 0x44080) r2 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x88101) r3 = fcntl$dupfd(r2, 0x406, r2) ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x300, 0x0, 0x0, 0x0}) 10.650429291s ago: executing program 0 (id=244): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000f"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000024000180060005004e230000060001000200000008000300ac1414aa0800060001"], 0x38}, 0x1, 0x0, 0x0, 0x4000011}, 0x4c080) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000c00)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010028bd7000fcdbdf2504"], 0x14}}, 0x0) 10.129815453s ago: executing program 2 (id=249): r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x108000) ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x2000000b, 0x81, &(0x7f0000000240)={0x3, 0x11, 0x5, 0x5360, 0x7}, 0x10, 0x6, 0x81, 0x0, 0x1, 0x101, 0x0}) 10.092163432s ago: executing program 0 (id=251): bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r0}, 0x18) r1 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4}, &(0x7f0000000300)=0x0, &(0x7f0000000580)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1}) io_uring_enter(r1, 0x6e2, 0x3900, 0x3, 0x0, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x45, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe) r4 = mq_open(&(0x7f0000000000)='batadv_slave_1\xbb', 0x8c2, 0x30, &(0x7f0000000080)={0x3, 0x8, 0x6, 0xc07}) mq_getsetattr(r4, &(0x7f0000000040)={0x0, 0x40, 0x4, 0xffff}, 0x0) mq_timedreceive(r4, &(0x7f00000003c0)=""/106, 0x6a, 0x0, 0x0) mq_timedsend(r4, 0x0, 0x0, 0x9, 0x0) 9.472092091s ago: executing program 0 (id=254): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() ioctl$BTRFS_IOC_QGROUP_CREATE(0xffffffffffffffff, 0x4010942a, &(0x7f0000000000)={0x1, 0x401}) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) getpid() syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0) 9.373684895s ago: executing program 2 (id=255): bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000004200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x3e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000004100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe, 0x0, &(0x7f00000003c0)="131c8701feaa16bca4ac74ab821d", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50) 7.531680145s ago: executing program 0 (id=256): mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0xfffffffffffffde8, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r2}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r3 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000080000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f28bd421850000008200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3ff}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='writeback_bdi_register\x00', r4}, 0x10) r5 = dup(r1) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[], [], 0x6b}}) 7.309807452s ago: executing program 2 (id=259): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), r2) sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000e80)={0x1c, r3, 0xb29, 0x0, 0x0, {{}, {@val={0x5}, @void}}}, 0x1c}}, 0x2404c044) 5.656429174s ago: executing program 2 (id=262): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw\x00') futimesat(r0, 0x0, 0x0) 5.14368585s ago: executing program 2 (id=268): unshare(0x6a040000) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000bc0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400001cb7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000400)={0x34, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}}, 0x4000080) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x50, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x15, 0x3, 'hash:ip,port,net\x00'}]}, 0x50}}, 0x0) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=ANY=[@ANYBLOB="74000000090601020000000000000000030000000900020073797a310000000005000100070000004c0007801800018014000240fe8000000000000000000000000000aa1800148014000240fc000000000000000000000000000000060004404e1f0000050007008400000006000540"], 0x74}, 0x1, 0x0, 0x0, 0x10040003}, 0x0) 3.680527442s ago: executing program 3 (id=274): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x22c7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f00000002c0)='kfree\x00', r1, 0x0, 0x2}, 0x18) r2 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0x5]}, 0x8, 0x800) fgetxattr(r2, &(0x7f0000000040)=@random={'osx.', 'nl80211\x00'}, 0x0, 0x0) 3.584476241s ago: executing program 1 (id=275): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000002, 0x4008032, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x7, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe82, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r0}, 0x10) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) mmap(&(0x7f0000563000/0x1000)=nil, 0x1000, 0x100000b, 0x4082172, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) 3.314533081s ago: executing program 3 (id=277): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sys_enter\x00', r0}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x398fba87178c1956, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r2}, 0x10) r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89001) mount_setattr(r3, &(0x7f0000001d80)='.\x00', 0x8000, &(0x7f0000001dc0)={0x0, 0x0, 0x40000}, 0x20) unshare(0x8000000) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, 0x0) creat(0x0, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) semget(0x3, 0x4, 0x2) 3.04070244s ago: executing program 5 (id=279): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2, 0x0, 0xfffe}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0x11}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x70}, 0x1, 0x0, 0x0, 0x840}, 0x0) 2.912185474s ago: executing program 0 (id=281): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095", @ANYRES64], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='kfree\x00', r0}, 0x18) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0) r2 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x4, @tid=r2}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) futex(&(0x7f000000cffc), 0x80, 0x0, 0x0, 0x0, 0x0) prctl$PR_MCE_KILL(0x4e, 0x1, 0x4000) write$cgroup_int(r1, &(0x7f0000000040)=0xfe8e, 0x12) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) fcntl$setlease(r3, 0x400, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x1a, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) keyctl$unlink(0x9, 0x0, 0xffffffffffffffff) add_key$keyring(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x1}, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800"], 0x48) r6 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00'}, 0x10) ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000100)=0x2) 2.873660949s ago: executing program 3 (id=282): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, 0x0, 0x0}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="50000000020605000000000000000000000000000c00078008000640000000000500010006000000050005000200000005000400000000000900020073797a31000000000c000300686173683a6970"], 0x50}}, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff9}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) socket$nl_netfilter(0x10, 0x3, 0xc) r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7dc470d00281f324, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000380)={0xffffffffffffffff, &(0x7f0000000340)="f424e80f267656a11d4e076ed1ef3635f0e5c1688ba02d0f6822b73c58ab45b6c3e982411b6a07c8221c", &(0x7f00000005c0)=""/243}, 0x20) bpf$OBJ_GET_PROG(0x7, &(0x7f00000002c0)=@generic={0x0, 0x0, 0x10}, 0x18) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xf, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000023cd688b6e64d382e69408c01ed31e6c953de33540f34a357909eb40d3d1b49637349eca0e2efa240d41d7da3c76c7dcda6fe3783c84efedbfd281e325"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x410, 0x238, 0x238, 0x238, 0x98, 0x98, 0x378, 0x378, 0x378, 0x378, 0x378, 0x6, 0x0, {[{{@ip={@loopback, @multicast1=0xe0007600, 0x0, 0x0, 'gre0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x0, 0x11}, 0x7a00, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0x100, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x28, 0x0, 0x0, 0x0, 0x1}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@dev={0xfe, 0x80, '\x00', 0x18}, 'veth0_virt_wifi\x00', {0x7}}}}, {{@ip={@rand_addr, @private, 0xffffffff, 0xff, 'syzkaller0\x00', 'veth1_to_team\x00', {}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@empty, @empty, 0xff000000, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x4, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x470) r3 = socket$unix(0x1, 0x2, 0x0) bind$unix(r3, &(0x7f00000000c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) listen(r3, 0x0) 2.688909491s ago: executing program 5 (id=284): socket(0x10, 0x803, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = socket(0x40000000015, 0x5, 0x0) connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4) setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00006dbffc), 0x4) bind$inet(r1, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) sendmsg$xdp(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)="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", 0x3f1}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a8532b82037b02c9e6045c361eb", 0x36}], 0x3}, 0x0) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x4000015}, 0x0) 1.921816837s ago: executing program 3 (id=286): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d) r0 = gettid() r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000840), 0x0) read(r1, &(0x7f0000000200)=""/209, 0xd1) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000180)={0x335, @tick=0xe, 0x42, {}, 0x2}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0xc08c5334, &(0x7f0000000300)={0x8009, 0x100000d, 0x1, 'queue0\x00', 0x16}) tkill(r0, 0x7) 1.75499282s ago: executing program 4 (id=287): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x15}}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth0_macvtap\x00', 0x10) sendmmsg$inet6(r1, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000100)="6cb8", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f0000000480)="177fdf50a6af49", 0x7}], 0x1}}], 0x2, 0x4001015) r2 = fcntl$dupfd(r1, 0x0, r1) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1.699622637s ago: executing program 1 (id=288): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000c80)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x5c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}]}]}, 0x5c}}, 0x0) 1.51056338s ago: executing program 4 (id=289): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000001880)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000200000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x7}, 0x18) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c001a800800028008000200080000003e"], 0x44}}, 0x0) r3 = socket(0x10, 0x3, 0x0) sendmmsg(r3, &(0x7f0000000000), 0x4000000000001f2, 0x0) 1.482640239s ago: executing program 5 (id=290): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000380)='kfree\x00', r0}, 0x18) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000001c0)={0x2c, r1, 0x1, 0x70bd26, 0x0, {0x25}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2008040}, 0x880) 1.40976817s ago: executing program 3 (id=291): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f0000000200), 0x1, 0x4bc, &(0x7f0000000a40)="$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") r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x1a2) r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0xa4c42, 0x108) fallocate(r0, 0x0, 0xbf1, 0x3) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0xc, r0, 0x0, 0x0, 0x0, 0xfffffffffe000001}) 1.183522269s ago: executing program 1 (id=292): r0 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000400), 0x101201, 0x0) ioctl$IMADDTIMER(r0, 0x80044940, &(0x7f0000000600)=0x14) socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x4000) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x20000003, 0xe, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x3, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000000)='kfree\x00', r3}, 0x18) close(r0) 1.122154933s ago: executing program 5 (id=293): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x5, 0x0, 0x1}, 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) write$cgroup_type(r2, &(0x7f0000000180), 0x40010) 905.85283ms ago: executing program 4 (id=294): semget(0x3, 0x4, 0x2) 782.180918ms ago: executing program 1 (id=295): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000007c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, 0x0, 0x0) 688.431032ms ago: executing program 3 (id=296): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdf}, 0x94) setsockopt$inet_sctp6_SCTP_AUTH_KEY(0xffffffffffffffff, 0x84, 0x17, 0x0, 0x6d) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x2008042, &(0x7f00000000c0), 0x2, 0x571, &(0x7f0000000780)="$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") setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000300)=ANY=[@ANYBLOB="02000000010004000000000004000500a9930000100000000000000020"], 0x24, 0x0) 590.673097ms ago: executing program 4 (id=297): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="050000000400"], 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x18, 0x7, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4c}, 0x94) 588.439758ms ago: executing program 0 (id=298): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x180048a, &(0x7f0000000000)={[{@jqfmt_vfsold}, {@noload}, {@errors_continue}, {@usrjquota, 0x22}, {@data_err_ignore}, {@usrjquota, 0x22}, {@errors_continue}, {@nogrpid}, {@noblock_validity}]}, 0x1, 0x45a, &(0x7f0000000d80)="$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") socket$nl_route(0x10, 0x3, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYRES32=0x1, @ANYBLOB='\x00'/18, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000000000000000c7474bba47695d921d3f37dc01f11cb9bd4c4bc82c5935062379a6783a00f36fa56e35aab774e15ba05aec95801ca41c6f093d3e04c859b8dd137ef12c4520b8b00fb175cc1b0dbe42054df96d56ff7954b22740fea5607acdacd46634ca85c2801e2f3c7e4679dfad2beed3d74451722366c7f7d27da95a7cdef88194cb98b4a1f37fae922af9eed3caf4f049108875d3da828fc0ef78d63d58a3680aafc45e2aab6984377719b0e59f3976c10f0189367b48ce79115935c2f2be428cc14a832ced1bcfd675b6d147f495648237bf622c"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000040000000000000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000640)='nilfs2_mdt_submit_block\x00', r1, 0x0, 0xe17}, 0x18) openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0xc369d000) mmap(&(0x7f0000135000/0x1000)=nil, 0x1000, 0x0, 0x12, 0xffffffffffffffff, 0xa34a3000) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0}) munlockall() bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil) r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000100)=0x2) ioprio_get$uid(0x3, 0xee01) r3 = socket$rds(0x15, 0x5, 0x0) bind$rds(r3, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r3, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x4e24, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@rdma_args={0x48, 0x114, 0x1, {{0x3, 0x2}, {&(0x7f00000000c0)=""/160, 0xa0}, &(0x7f0000000340)=[{&(0x7f0000001140)=""/102, 0x66}], 0x1, 0x60, 0xfffffffefffffffe}}], 0x48, 0x10040045}, 0x0) fcntl$getflags(0xffffffffffffffff, 0x401) mount(0x0, &(0x7f0000000240)='.\x00', 0x0, 0x2200020, 0x0) 513.525756ms ago: executing program 5 (id=299): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(0xffffffffffffffff, 0x40505331, &(0x7f000009de00)={{0x3, 0x80}, {0x0, 0x2}, 0xbde, 0x5, 0x4}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00'}, 0x10) syz_pidfd_open(0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYRES16=r0, @ANYRES32=r1, @ANYBLOB], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r2, 0x0, 0x7}, 0x18) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_SENDMSG={0x9, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000600)}], 0x1, 0x0, 0x480}, 0x0, 0x50, 0x1}) r3 = syz_io_uring_setup(0x223d, &(0x7f0000000100)={0x0, 0x6e7f, 0x800, 0x2, 0x5cc}, &(0x7f0000000280)=0x0, &(0x7f00000005c0)=0x0) io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f0000000740)=[{&(0x7f00000003c0)=""/201, 0xc9}], 0x1) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000200)=[{0x30, 0x4, 0x0, 0x2}]}, 0xffffffffffffff0e) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000600)='ext4_fc_commit_stop\x00'}, 0x18) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r4, r5, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x1, 0x0, 0xffffffffffffffff, 0x0, r3}) io_uring_enter(r3, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5) 349.53522ms ago: executing program 1 (id=300): socket$nl_route(0x10, 0x3, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='dctcp', 0x5) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0x20000045, &(0x7f0000000140)={0xa, 0x2, 0xffff, @loopback, 0x3}, 0x1c) 316.281344ms ago: executing program 4 (id=301): mkdir(0x0, 0x10) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0xf}, 0x1c) listen(r1, 0x4) connect$inet(0xffffffffffffffff, &(0x7f0000000140)={0x2, 0x4e22, @loopback}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000001000000280001801400040000000000000002000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000) 93.745112ms ago: executing program 5 (id=302): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x15}}, 0x6}, 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='veth0_macvtap\x00', 0x10) sendmmsg$inet6(r1, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000000100)="6cb8", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f0000000480)="177fdf50a6af49", 0x7}], 0x1}}], 0x2, 0x4001015) sendmsg$NL80211_CMD_GET_PROTOCOL_FEATURES(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000600)={0x14, 0x0, 0x300, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x50}, 0x40001) setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 11.267225ms ago: executing program 4 (id=303): bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x4004040) r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000001940), 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x1a08700, &(0x7f0000000700)={[{@nodioread_nolock}, {@nouid32}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@usrquota}, {@journal_dev={'journal_dev', 0x3d, 0x1}}]}, 0x0, 0x470, &(0x7f0000001040)="$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") r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000001980)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x5}}, './file0\x00'}) 0s ago: executing program 1 (id=304): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prctl$PR_MCE_KILL(0x35, 0x0, 0x10) lseek(0xffffffffffffffff, 0x9, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020702500000000002020207b1af8ff00"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r2, 0x27, 0x7, 0x0, &(0x7f0000000200)="f8020400000000", 0x0, 0x405, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0}, 0x50) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x22c7, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000) sendmsg$NFT_BATCH(r4, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000700000a7c000000060a030400000000000000000a0000050900010073797a3100000000500004804c0001800b00010074617267657400003c00028024000300733900000455afb9fdd672bad09dfb78c7699c74e891a0c7000000000000000008000240000000000c00010052415445455354000900020073797a32"], 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x20040040) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x40001, 0x0) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000540)={@map=r0, 0x1f, 0x554446120900450d, 0x9, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x8, 0x0, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000004c0)=[0x0], &(0x7f0000000500)=[0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000006c21000000d5002020207b1af8ff000000febea100000000000007010000f8ffffffb702000008000000b7030000000000008500000070000000181100"/84, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.197' (ED25519) to the list of known hosts. [ 97.468634][ T5808] cgroup: Unknown subsys name 'net' [ 97.620183][ T5808] cgroup: Unknown subsys name 'cpuset' [ 97.631139][ T5808] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 99.455781][ T5808] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 101.515106][ T804] cfg80211: failed to load regulatory.db [ 104.171724][ T5833] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 104.193503][ T5843] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 104.203549][ T5844] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 104.226379][ T5844] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 104.245652][ T5844] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 104.253644][ T5843] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 104.261848][ T5843] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 104.264955][ T5844] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 104.269982][ T5843] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 104.284157][ T5843] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 104.284249][ T5844] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 104.296424][ T5844] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 104.299252][ T5843] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 104.308119][ T5842] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 104.312839][ T5843] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 104.327956][ T5844] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 104.330622][ T5843] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 104.338128][ T5842] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 104.343950][ T5843] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 104.349502][ T5844] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 104.364261][ T5842] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 104.371793][ T5844] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 104.379561][ T5842] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 104.388495][ T5844] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 104.395936][ T5842] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 104.403413][ T5844] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 104.412820][ T5833] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 104.413423][ T5842] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 104.420808][ T5833] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 104.433184][ T5842] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 105.453451][ T5823] chnl_net:caif_netlink_parms(): no params data found [ 105.471756][ T5836] chnl_net:caif_netlink_parms(): no params data found [ 105.497399][ T5822] chnl_net:caif_netlink_parms(): no params data found [ 105.654645][ T5824] chnl_net:caif_netlink_parms(): no params data found [ 105.676699][ T5828] chnl_net:caif_netlink_parms(): no params data found [ 105.919580][ T5831] chnl_net:caif_netlink_parms(): no params data found [ 105.947989][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.955767][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.963191][ T5836] bridge_slave_0: entered allmulticast mode [ 105.971207][ T5836] bridge_slave_0: entered promiscuous mode [ 106.030755][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.038100][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.045671][ T5836] bridge_slave_1: entered allmulticast mode [ 106.053333][ T5836] bridge_slave_1: entered promiscuous mode [ 106.076223][ T5823] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.083367][ T5823] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.091532][ T5823] bridge_slave_0: entered allmulticast mode [ 106.099245][ T5823] bridge_slave_0: entered promiscuous mode [ 106.132837][ T5822] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.140095][ T5822] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.147707][ T5822] bridge_slave_0: entered allmulticast mode [ 106.155466][ T5822] bridge_slave_0: entered promiscuous mode [ 106.194101][ T5823] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.201409][ T5823] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.208928][ T5823] bridge_slave_1: entered allmulticast mode [ 106.216524][ T5823] bridge_slave_1: entered promiscuous mode [ 106.268368][ T5822] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.276144][ T5822] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.283360][ T5822] bridge_slave_1: entered allmulticast mode [ 106.291230][ T5822] bridge_slave_1: entered promiscuous mode [ 106.327937][ T5824] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.335167][ T5824] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.342453][ T5824] bridge_slave_0: entered allmulticast mode [ 106.350305][ T5824] bridge_slave_0: entered promiscuous mode [ 106.381316][ T5828] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.388730][ T5828] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.396289][ T5828] bridge_slave_0: entered allmulticast mode [ 106.403885][ T5828] bridge_slave_0: entered promiscuous mode [ 106.430290][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.440503][ T5824] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.447758][ T5824] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.455131][ T5824] bridge_slave_1: entered allmulticast mode [ 106.463519][ T5824] bridge_slave_1: entered promiscuous mode [ 106.470193][ T5842] Bluetooth: hci5: command tx timeout [ 106.470415][ T5842] Bluetooth: hci0: command tx timeout [ 106.476203][ T5827] Bluetooth: hci4: command tx timeout [ 106.481816][ T5833] Bluetooth: hci3: command tx timeout [ 106.527559][ T5828] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.535405][ T5828] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.542616][ T5828] bridge_slave_1: entered allmulticast mode [ 106.546405][ T5842] Bluetooth: hci1: command tx timeout [ 106.548667][ T5833] Bluetooth: hci2: command tx timeout [ 106.556481][ T5828] bridge_slave_1: entered promiscuous mode [ 106.570023][ T5822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.582070][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.610171][ T5823] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.660075][ T5822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.688369][ T5824] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.700392][ T5823] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.787455][ T5824] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.828727][ T5831] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.836335][ T5831] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.843530][ T5831] bridge_slave_0: entered allmulticast mode [ 106.851629][ T5831] bridge_slave_0: entered promiscuous mode [ 106.862704][ T5828] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.888465][ T5836] team0: Port device team_slave_0 added [ 106.896703][ T5822] team0: Port device team_slave_0 added [ 106.919713][ T5824] team0: Port device team_slave_0 added [ 106.927685][ T5823] team0: Port device team_slave_0 added [ 106.933873][ T5831] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.941700][ T5831] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.949260][ T5831] bridge_slave_1: entered allmulticast mode [ 106.957072][ T5831] bridge_slave_1: entered promiscuous mode [ 106.967138][ T5828] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.978373][ T5836] team0: Port device team_slave_1 added [ 107.000667][ T5822] team0: Port device team_slave_1 added [ 107.008800][ T5824] team0: Port device team_slave_1 added [ 107.034648][ T5823] team0: Port device team_slave_1 added [ 107.149451][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 107.156563][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.183892][ T5824] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 107.199943][ T5831] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.226156][ T5828] team0: Port device team_slave_0 added [ 107.232854][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 107.239951][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.266358][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 107.310298][ T5824] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 107.317679][ T5824] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.343969][ T5824] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 107.358479][ T5831] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.370825][ T5828] team0: Port device team_slave_1 added [ 107.391085][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 107.398197][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.424601][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 107.445003][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 107.452099][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.478679][ T5822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 107.490972][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 107.498476][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.524624][ T5823] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 107.543536][ T5823] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 107.550626][ T5823] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.576714][ T5823] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 107.635892][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 107.642873][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.668925][ T5828] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 107.682149][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 107.689421][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.716370][ T5822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 107.815182][ T5831] team0: Port device team_slave_0 added [ 107.824207][ T5831] team0: Port device team_slave_1 added [ 107.831243][ T5828] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 107.838309][ T5828] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 107.864506][ T5828] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 107.906524][ T5824] hsr_slave_0: entered promiscuous mode [ 107.913492][ T5824] hsr_slave_1: entered promiscuous mode [ 107.998315][ T5828] hsr_slave_0: entered promiscuous mode [ 108.005974][ T5828] hsr_slave_1: entered promiscuous mode [ 108.012392][ T5828] debugfs: 'hsr0' already exists in 'hsr' [ 108.019013][ T5828] Cannot create hsr debugfs directory [ 108.091773][ T5836] hsr_slave_0: entered promiscuous mode [ 108.098700][ T5836] hsr_slave_1: entered promiscuous mode [ 108.105432][ T5836] debugfs: 'hsr0' already exists in 'hsr' [ 108.111472][ T5836] Cannot create hsr debugfs directory [ 108.133012][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 108.140266][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 108.166429][ T5831] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 108.249378][ T5831] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 108.256531][ T5831] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 108.283034][ T5831] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 108.301375][ T5823] hsr_slave_0: entered promiscuous mode [ 108.308510][ T5823] hsr_slave_1: entered promiscuous mode [ 108.314749][ T5823] debugfs: 'hsr0' already exists in 'hsr' [ 108.320654][ T5823] Cannot create hsr debugfs directory [ 108.365701][ T5822] hsr_slave_0: entered promiscuous mode [ 108.372326][ T5822] hsr_slave_1: entered promiscuous mode [ 108.379234][ T5822] debugfs: 'hsr0' already exists in 'hsr' [ 108.386042][ T5822] Cannot create hsr debugfs directory [ 108.546348][ T5833] Bluetooth: hci4: command tx timeout [ 108.547003][ T5842] Bluetooth: hci0: command tx timeout [ 108.552832][ T5827] Bluetooth: hci5: command tx timeout [ 108.557704][ T5835] Bluetooth: hci3: command tx timeout [ 108.625069][ T5835] Bluetooth: hci2: command tx timeout [ 108.625539][ T5842] Bluetooth: hci1: command tx timeout [ 108.637507][ T5831] hsr_slave_0: entered promiscuous mode [ 108.644208][ T5831] hsr_slave_1: entered promiscuous mode [ 108.651675][ T5831] debugfs: 'hsr0' already exists in 'hsr' [ 108.657748][ T5831] Cannot create hsr debugfs directory [ 109.227808][ T5824] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 109.249592][ T5824] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 109.263269][ T5824] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 109.275841][ T5824] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 109.363356][ T5836] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 109.394023][ T5836] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 109.409034][ T5836] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 109.421771][ T5836] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 109.529250][ T5823] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 109.553410][ T5823] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 109.566816][ T5823] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 109.608110][ T5823] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 109.691903][ T5822] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 109.720850][ T5824] 8021q: adding VLAN 0 to HW filter on device bond0 [ 109.728178][ T5822] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 109.740172][ T5822] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 109.752701][ T5822] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 109.836643][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0 [ 109.894638][ T5828] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 109.910449][ T5824] 8021q: adding VLAN 0 to HW filter on device team0 [ 109.938615][ T5828] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 109.952882][ T5828] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 109.970521][ T5836] 8021q: adding VLAN 0 to HW filter on device team0 [ 110.000346][ T5828] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 110.019412][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.026841][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.114000][ T2975] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.121372][ T2975] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.131448][ T2975] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.139004][ T2975] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.178465][ T5831] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 110.190917][ T5831] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 110.219632][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.226835][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.241472][ T5831] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 110.253800][ T5831] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 110.278669][ T5823] 8021q: adding VLAN 0 to HW filter on device bond0 [ 110.406865][ T5823] 8021q: adding VLAN 0 to HW filter on device team0 [ 110.451269][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.458549][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.530224][ T2975] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.537446][ T2975] bridge0: port 2(bridge_slave_1) entered forwarding state [ 110.631280][ T5842] Bluetooth: hci0: command tx timeout [ 110.631304][ T5835] Bluetooth: hci4: command tx timeout [ 110.631351][ T5835] Bluetooth: hci5: command tx timeout [ 110.639875][ T5833] Bluetooth: hci3: command tx timeout [ 110.683276][ T5822] 8021q: adding VLAN 0 to HW filter on device bond0 [ 110.705421][ T5842] Bluetooth: hci1: command tx timeout [ 110.711070][ T5833] Bluetooth: hci2: command tx timeout [ 110.827304][ T5822] 8021q: adding VLAN 0 to HW filter on device team0 [ 110.856918][ T5828] 8021q: adding VLAN 0 to HW filter on device bond0 [ 110.891388][ T5831] 8021q: adding VLAN 0 to HW filter on device bond0 [ 110.919277][ T50] bridge0: port 1(bridge_slave_0) entered blocking state [ 110.926500][ T50] bridge0: port 1(bridge_slave_0) entered forwarding state [ 110.959873][ T5828] 8021q: adding VLAN 0 to HW filter on device team0 [ 110.979616][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 110.986931][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 111.057884][ T5824] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 111.081296][ T5831] 8021q: adding VLAN 0 to HW filter on device team0 [ 111.092469][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 111.099688][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 111.113582][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 111.121095][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 111.222727][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 111.229954][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 111.274287][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state [ 111.281519][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state [ 111.353306][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 111.504276][ T5823] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 111.615858][ T5824] veth0_vlan: entered promiscuous mode [ 111.694062][ T5824] veth1_vlan: entered promiscuous mode [ 111.832141][ T5836] veth0_vlan: entered promiscuous mode [ 111.887911][ T5823] veth0_vlan: entered promiscuous mode [ 111.911270][ T5836] veth1_vlan: entered promiscuous mode [ 111.970409][ T5824] veth0_macvtap: entered promiscuous mode [ 111.991743][ T5823] veth1_vlan: entered promiscuous mode [ 112.005976][ T5824] veth1_macvtap: entered promiscuous mode [ 112.019797][ T5822] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 112.034383][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 112.130210][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 112.181953][ T5824] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 112.208513][ T5836] veth0_macvtap: entered promiscuous mode [ 112.234648][ T5823] veth0_macvtap: entered promiscuous mode [ 112.260095][ T3001] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.286719][ T3001] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.312637][ T5836] veth1_macvtap: entered promiscuous mode [ 112.332124][ T5831] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 112.340824][ T3001] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.352018][ T3001] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.385984][ T5823] veth1_macvtap: entered promiscuous mode [ 112.442696][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 112.521919][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 112.587742][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 112.613077][ T5823] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 112.671009][ T2975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.682278][ T13] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.691330][ T2975] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.705582][ T5833] Bluetooth: hci3: command tx timeout [ 112.711242][ T5842] Bluetooth: hci0: command tx timeout [ 112.717171][ T5827] Bluetooth: hci4: command tx timeout [ 112.722600][ T5827] Bluetooth: hci5: command tx timeout [ 112.758120][ T13] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.772637][ T13] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.787541][ T5835] Bluetooth: hci2: command tx timeout [ 112.787784][ T5827] Bluetooth: hci1: command tx timeout [ 112.802350][ T5831] veth0_vlan: entered promiscuous mode [ 112.832922][ T13] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.846717][ T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.878408][ T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.887382][ T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.908040][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.918859][ T50] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.928052][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.940333][ T5831] veth1_vlan: entered promiscuous mode [ 113.078984][ T5824] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 113.116215][ T2975] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.124256][ T2975] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.127919][ T5822] veth0_vlan: entered promiscuous mode [ 113.238666][ T5822] veth1_vlan: entered promiscuous mode [ 113.261226][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.286067][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.335845][ T5831] veth0_macvtap: entered promiscuous mode [ 113.350530][ T5831] veth1_macvtap: entered promiscuous mode [ 113.375232][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 113.388092][ T5828] veth0_vlan: entered promiscuous mode [ 113.439902][ T5831] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 113.488531][ T2975] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 113.532152][ T5828] veth1_vlan: entered promiscuous mode [ 113.542045][ T2975] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.627298][ T3001] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.604906][ T3001] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.674542][ T5822] veth0_macvtap: entered promiscuous mode [ 114.731889][ T5822] veth1_macvtap: entered promiscuous mode [ 114.759389][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.797909][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.905177][ T5983] loop3: detected capacity change from 0 to 1024 [ 114.915725][ T5983] ======================================================= [ 114.915725][ T5983] WARNING: The mand mount option has been deprecated and [ 114.915725][ T5983] and is ignored by this kernel. Remove the mand [ 114.915725][ T5983] option from the mount to silence this warning. [ 114.915725][ T5983] ======================================================= [ 115.015215][ T5983] EXT4-fs: Ignoring removed nobh option [ 115.020842][ T5983] EXT4-fs: Ignoring removed bh option [ 115.066092][ T5983] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 115.121512][ T30] audit: type=1800 audit(1761509984.229:2): pid=5983 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.4" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 115.239437][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.313626][ T3001] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.325378][ T3001] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.483021][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 115.522747][ T5828] veth0_macvtap: entered promiscuous mode [ 115.562167][ T5828] veth1_macvtap: entered promiscuous mode [ 115.633168][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 115.850087][ T60] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.876962][ T60] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.970180][ T60] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.992008][ T60] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.009810][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.033693][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.171209][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.183425][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 116.212565][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.259195][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 116.376703][ T50] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.393584][ T50] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.428592][ T50] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.517671][ T50] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 116.611132][ T5976] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.630110][ T5998] loop1: detected capacity change from 0 to 1024 [ 116.632409][ T5976] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.680394][ T5998] EXT4-fs: inline encryption not supported [ 116.733169][ T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.808623][ T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.833439][ T5998] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 116.896811][ T30] audit: type=1326 audit(1761509986.009:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6005 comm="syz.3.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 117.000260][ T30] audit: type=1326 audit(1761509986.039:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6005 comm="syz.3.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 117.024584][ T30] audit: type=1326 audit(1761509986.039:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6005 comm="syz.3.12" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 117.097323][ T3001] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.137940][ T3001] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.191620][ T6012] EXT4-fs error (device loop1): mb_free_blocks:2014: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt. [ 117.255487][ T6012] EXT4-fs (loop1): Remounting filesystem read-only [ 117.319799][ T3001] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.342714][ T3001] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.505349][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 117.665200][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 117.786855][ T5824] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.889944][ T6022] netlink: 'syz.3.14': attribute type 1 has an invalid length. [ 117.926092][ T6022] netlink: 244 bytes leftover after parsing attributes in process `syz.3.14'. [ 118.155217][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 118.163854][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 118.173385][ T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!! [ 118.423563][ T6034] loop1: detected capacity change from 0 to 512 [ 118.587814][ T6034] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 118.639976][ T6034] ext4 filesystem being mounted at /3/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 119.341414][ T5824] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.172412][ T30] audit: type=1326 audit(1761509989.279:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.5.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f156df8efc9 code=0x7ffc0000 [ 120.309311][ T6044] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 120.310372][ T30] audit: type=1326 audit(1761509989.319:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.5.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f156df8efc9 code=0x7ffc0000 [ 120.340928][ T30] audit: type=1326 audit(1761509989.319:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.5.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f156df8efc9 code=0x7ffc0000 [ 120.367566][ T30] audit: type=1326 audit(1761509989.319:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.5.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f156df8efc9 code=0x7ffc0000 [ 120.397016][ T6044] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 120.421986][ T30] audit: type=1326 audit(1761509989.319:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.5.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f156df8efc9 code=0x7ffc0000 [ 120.456263][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 120.508340][ T6044] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 120.539143][ T30] audit: type=1326 audit(1761509989.319:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.5.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f156df8efc9 code=0x7ffc0000 [ 120.563533][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 120.565395][ T30] audit: type=1326 audit(1761509989.319:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.5.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f156df8efc9 code=0x7ffc0000 [ 120.603057][ T30] audit: type=1326 audit(1761509989.339:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.5.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f156df8efc9 code=0x7ffc0000 [ 120.625123][ T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!! [ 120.711354][ T6061] loop4: detected capacity change from 0 to 2048 [ 120.733172][ T6044] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 120.765276][ T30] audit: type=1326 audit(1761509989.339:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.5.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f156df8efc9 code=0x7ffc0000 [ 120.786846][ T6044] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 120.825163][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 120.834481][ T30] audit: type=1326 audit(1761509989.339:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.5.23" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f156df8efc9 code=0x7ffc0000 [ 120.839586][ T6061] loop4: p1 < > p4 [ 120.870743][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 121.025698][ T6061] loop4: p4 size 8388608 extends beyond EOD, truncated [ 121.055109][ T6044] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 121.086079][ T6044] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 121.093467][ T6044] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 121.157799][ T6044] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 121.617297][ T6044] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 121.665053][ T6066] loop1: detected capacity change from 0 to 8192 [ 121.675028][ T6044] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 121.865913][ T6044] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 121.906510][ T6044] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 121.935676][ T6044] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 122.060363][ T6044] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 122.231719][ T6044] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 122.275922][ T6044] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 122.305023][ T5827] Bluetooth: hci1: command 0x0c1a tx timeout [ 122.366268][ T6044] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 122.794817][ T5827] Bluetooth: hci0: command 0x0c1a tx timeout [ 123.048228][ T6084] loop4: detected capacity change from 0 to 2048 [ 123.105472][ T5827] Bluetooth: hci2: command 0x0c1a tx timeout [ 123.172119][ T6084] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 123.633381][ T5822] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 123.682654][ T5827] Bluetooth: hci3: command 0x0c1a tx timeout [ 123.994806][ T5827] Bluetooth: hci5: command 0x0c1a tx timeout [ 124.308647][ T5827] Bluetooth: hci4: command 0x0c1a tx timeout [ 124.415534][ T5827] Bluetooth: hci1: command 0x0c1a tx timeout [ 124.614508][ T6108] loop0: detected capacity change from 0 to 128 [ 124.655108][ T6108] FAT-fs (loop0): Invalid FSINFO signature: 0x41610000, 0x61417272 (sector = 1) [ 124.668952][ T6108] FAT-fs (loop0): Directory bread(block 162) failed [ 124.675712][ T6108] FAT-fs (loop0): Directory bread(block 163) failed [ 124.682623][ T6108] FAT-fs (loop0): Directory bread(block 164) failed [ 124.689271][ T6108] FAT-fs (loop0): Directory bread(block 165) failed [ 124.695947][ T6108] FAT-fs (loop0): Directory bread(block 166) failed [ 124.702559][ T6108] FAT-fs (loop0): Directory bread(block 167) failed [ 124.709390][ T6108] FAT-fs (loop0): Directory bread(block 168) failed [ 124.716063][ T6108] FAT-fs (loop0): Directory bread(block 169) failed [ 124.735821][ T6108] FAT-fs (loop0): Directory bread(block 162) failed [ 124.742673][ T6108] FAT-fs (loop0): Directory bread(block 163) failed [ 124.857632][ T6114] netlink: 112 bytes leftover after parsing attributes in process `syz.1.46'. [ 124.868182][ T5827] Bluetooth: hci0: command 0x0c1a tx timeout [ 125.206997][ T5827] Bluetooth: hci2: command 0x0c1a tx timeout [ 125.701835][ T6128] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 125.744856][ T5827] Bluetooth: hci3: command 0x0c1a tx timeout [ 125.846694][ T6131] loop1: detected capacity change from 0 to 1024 [ 125.976622][ T6131] EXT4-fs: Ignoring removed nobh option [ 126.028178][ T6131] EXT4-fs: Ignoring removed bh option [ 126.074980][ T5827] Bluetooth: hci5: command 0x0c1a tx timeout [ 126.316821][ T6131] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 126.394740][ T5827] Bluetooth: hci4: command 0x0c1a tx timeout [ 126.469320][ T5827] Bluetooth: hci1: command 0x0c1a tx timeout [ 126.561938][ T30] kauditd_printk_skb: 78 callbacks suppressed [ 126.561964][ T30] audit: type=1800 audit(1761509995.669:94): pid=6131 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.52" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 127.040430][ T5827] Bluetooth: hci0: command 0x0c1a tx timeout [ 127.288309][ T5827] Bluetooth: hci2: command 0x0c1a tx timeout [ 127.477608][ T5824] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 127.825090][ T5827] Bluetooth: hci3: command 0x0c1a tx timeout [ 128.123942][ T30] audit: type=1326 audit(1761509997.229:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 128.154743][ T5827] Bluetooth: hci5: command 0x0c1a tx timeout [ 128.160913][ T30] audit: type=1326 audit(1761509997.229:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 128.183895][ T30] audit: type=1326 audit(1761509997.259:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 128.212364][ T30] audit: type=1326 audit(1761509997.259:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 128.336978][ T30] audit: type=1326 audit(1761509997.259:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 128.468895][ T5827] Bluetooth: hci4: command 0x0c1a tx timeout [ 128.575236][ T30] audit: type=1326 audit(1761509997.259:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 128.745871][ T30] audit: type=1326 audit(1761509997.259:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 128.941690][ T30] audit: type=1326 audit(1761509997.259:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 129.037904][ T30] audit: type=1326 audit(1761509997.259:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6142 comm="syz.0.55" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 129.532072][ T6154] loop0: detected capacity change from 0 to 512 [ 129.565965][ T6154] EXT4-fs: Ignoring removed nobh option [ 129.622009][ T6154] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 129.699832][ T6154] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 129.822274][ T6156] pim6reg: entered allmulticast mode [ 129.863744][ T6154] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2852: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 129.890271][ T6154] EXT4-fs (loop0): 1 truncate cleaned up [ 129.970660][ T6154] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 130.330627][ T5831] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 130.989028][ T6180] netlink: 64 bytes leftover after parsing attributes in process `syz.1.67'. [ 131.281196][ T6185] Driver unsupported XDP return value 0 on prog (id 34) dev N/A, expect packet loss! [ 131.877754][ T6200] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 132.534787][ T30] kauditd_printk_skb: 67 callbacks suppressed [ 132.534812][ T30] audit: type=1326 audit(1761510001.639:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6205 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da2f8efc9 code=0x7ffc0000 [ 132.685132][ T30] audit: type=1326 audit(1761510001.689:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6205 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da2f8efc9 code=0x7ffc0000 [ 132.783796][ T30] audit: type=1326 audit(1761510001.689:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6205 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0da2f8efc9 code=0x7ffc0000 [ 132.877398][ T30] audit: type=1326 audit(1761510001.689:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6205 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da2f8efc9 code=0x7ffc0000 [ 132.967430][ T30] audit: type=1326 audit(1761510001.689:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6205 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da2f8efc9 code=0x7ffc0000 [ 133.032607][ T30] audit: type=1326 audit(1761510001.709:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6205 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0da2f8efc9 code=0x7ffc0000 [ 133.144236][ T30] audit: type=1326 audit(1761510001.719:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6205 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da2f8efc9 code=0x7ffc0000 [ 133.192129][ T6219] random: crng reseeded on system resumption [ 133.282389][ T30] audit: type=1326 audit(1761510001.719:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6205 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da2f8efc9 code=0x7ffc0000 [ 133.351013][ T30] audit: type=1326 audit(1761510001.719:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6205 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0da2f8efc9 code=0x7ffc0000 [ 133.434626][ T30] audit: type=1326 audit(1761510001.759:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6205 comm="syz.2.78" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0da2f8efc9 code=0x7ffc0000 [ 133.622374][ T6229] loop1: detected capacity change from 0 to 512 [ 133.921444][ T6229] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 133.948529][ T6232] netlink: 'syz.2.89': attribute type 1 has an invalid length. [ 133.956256][ T6232] netlink: 244 bytes leftover after parsing attributes in process `syz.2.89'. [ 134.008281][ T6229] EXT4-fs (loop1): orphan cleanup on readonly fs [ 134.074210][ T6229] EXT4-fs error (device loop1): ext4_acquire_dquot:6943: comm syz.1.88: Failed to acquire dquot type 1 [ 134.173950][ T6229] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.88: bg 0: block 40: padding at end of block bitmap is not set [ 134.310794][ T6229] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 134.369908][ T6229] EXT4-fs (loop1): 1 truncate cleaned up [ 134.396696][ T6240] loop3: detected capacity change from 0 to 2048 [ 134.400012][ T6229] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 134.425421][ T6244] loop5: detected capacity change from 0 to 1024 [ 134.450660][ T6244] EXT4-fs: Ignoring removed nobh option [ 134.462183][ T6244] EXT4-fs: Ignoring removed bh option [ 134.528737][ T6244] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 134.605477][ T6240] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.731450][ T6240] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 134.757809][ T6244] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4192: comm syz.5.93: Allocating blocks 449-513 which overlap fs metadata [ 134.843517][ T6244] EXT4-fs (loop5): Remounting filesystem read-only [ 134.984195][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.082199][ T5824] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.122739][ T6240] netlink: 224 bytes leftover after parsing attributes in process `syz.3.90'. [ 135.150589][ T6240] ksmbd: Unknown IPC event: 4, ignore. [ 135.586918][ T6247] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 135.623761][ T6247] EXT4-fs (loop3): Remounting filesystem read-only [ 136.347116][ T6287] netlink: 'syz.5.107': attribute type 1 has an invalid length. [ 136.355146][ T6287] netlink: 244 bytes leftover after parsing attributes in process `syz.5.107'. [ 136.427779][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.619087][ T6304] macvlan1: entered promiscuous mode [ 137.656630][ T6304] ipvlan0: entered promiscuous mode [ 137.700149][ T6304] ipvlan0: left promiscuous mode [ 137.721552][ T6304] macvlan1: left promiscuous mode [ 138.255042][ T30] kauditd_printk_skb: 7 callbacks suppressed [ 138.255067][ T30] audit: type=1326 audit(1761510007.359:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6324 comm="syz.3.124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 138.320924][ T6326] netlink: 'syz.4.121': attribute type 4 has an invalid length. [ 138.364935][ T30] audit: type=1326 audit(1761510007.359:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6324 comm="syz.3.124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 138.402945][ T6332] random: crng reseeded on system resumption [ 138.478243][ T30] audit: type=1326 audit(1761510007.389:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6324 comm="syz.3.124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 138.587047][ T30] audit: type=1326 audit(1761510007.389:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6324 comm="syz.3.124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 138.662944][ T30] audit: type=1326 audit(1761510007.389:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6324 comm="syz.3.124" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 140.951633][ T804] usb 6-1: new full-speed USB device number 2 using dummy_hcd [ 142.212196][ T6386] loop0: detected capacity change from 0 to 1024 [ 142.333348][ T6386] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 142.469965][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 142.490028][ T6386] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 142.514117][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 142.752476][ T6386] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 142.785375][ T6386] EXT4-fs (loop0): This should not happen!! Data will be lost [ 142.785375][ T6386] [ 142.853230][ T6386] EXT4-fs (loop0): Total free blocks count 0 [ 142.904724][ T6386] EXT4-fs (loop0): Free/Dirty block details [ 142.931631][ T6386] EXT4-fs (loop0): free_blocks=68451041280 [ 143.015498][ T6386] EXT4-fs (loop0): dirty_blocks=80 [ 143.043242][ T6386] EXT4-fs (loop0): Block reservation details [ 143.062676][ T6386] EXT4-fs (loop0): i_reserved_data_blocks=5 [ 143.086626][ T13] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28 [ 143.269499][ T6405] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 144.435393][ T804] usb 6-1: unable to read config index 0 descriptor/start: -71 [ 144.504880][ T804] usb 6-1: can't read configurations, error -71 [ 144.610454][ T6428] netlink: 224 bytes leftover after parsing attributes in process `syz.0.161'. [ 144.654117][ T6428] ksmbd: Unknown IPC event: 3, ignore. [ 144.688081][ T6433] loop5: detected capacity change from 0 to 128 [ 144.727509][ T30] audit: type=1326 audit(1761510013.839:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6399 comm="syz.1.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 144.804364][ T30] audit: type=1326 audit(1761510013.839:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6399 comm="syz.1.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 144.905895][ T30] audit: type=1326 audit(1761510013.879:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6399 comm="syz.1.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 144.960656][ T30] audit: type=1326 audit(1761510013.879:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6399 comm="syz.1.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 145.065197][ T30] audit: type=1326 audit(1761510013.879:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6399 comm="syz.1.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 145.134874][ T30] audit: type=1326 audit(1761510013.889:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6399 comm="syz.1.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 145.257051][ T30] audit: type=1326 audit(1761510013.889:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6399 comm="syz.1.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 145.341373][ T30] audit: type=1326 audit(1761510013.889:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6399 comm="syz.1.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 145.370869][ T30] audit: type=1326 audit(1761510013.899:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6399 comm="syz.1.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 145.481851][ T30] audit: type=1326 audit(1761510013.899:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6399 comm="syz.1.149" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 146.512453][ T6466] bridge0: entered promiscuous mode [ 146.546378][ T6466] macsec1: entered promiscuous mode [ 146.553867][ T6466] bridge0: port 3(macsec1) entered blocking state [ 146.596630][ T6466] bridge0: port 3(macsec1) entered disabled state [ 146.603561][ T6466] macsec1: entered allmulticast mode [ 146.624813][ T6466] bridge0: entered allmulticast mode [ 146.691764][ T6466] macsec1: left allmulticast mode [ 146.706315][ T6466] bridge0: left allmulticast mode [ 146.742774][ T6476] loop2: detected capacity change from 0 to 1024 [ 146.751554][ T6466] bridge0: left promiscuous mode [ 146.859010][ T6476] EXT4-fs: Ignoring removed nobh option [ 146.884738][ T6476] EXT4-fs: Ignoring removed bh option [ 146.957238][ T6476] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 147.082042][ T6476] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4192: comm syz.2.180: Allocating blocks 449-513 which overlap fs metadata [ 147.340367][ T6476] EXT4-fs (loop2): Remounting filesystem read-only [ 147.726987][ T6485] netlink: 'syz.0.184': attribute type 1 has an invalid length. [ 147.734715][ T6485] netlink: 244 bytes leftover after parsing attributes in process `syz.0.184'. [ 148.032615][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 148.401027][ T6502] x_tables: duplicate underflow at hook 2 [ 149.109939][ T6527] loop3: detected capacity change from 0 to 256 [ 149.247631][ T6529] loop5: detected capacity change from 0 to 1024 [ 149.342147][ T6529] EXT4-fs: Ignoring removed nobh option [ 149.371876][ T6527] FAT-fs (loop3): Directory bread(block 64) failed [ 149.391203][ T6529] EXT4-fs: Ignoring removed bh option [ 149.401367][ T6527] FAT-fs (loop3): Directory bread(block 65) failed [ 149.420536][ T6527] FAT-fs (loop3): Directory bread(block 66) failed [ 149.482093][ T6527] FAT-fs (loop3): Directory bread(block 67) failed [ 149.509437][ T6527] FAT-fs (loop3): Directory bread(block 68) failed [ 149.529111][ T6529] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 149.558124][ T6527] FAT-fs (loop3): Directory bread(block 69) failed [ 149.634995][ T6527] FAT-fs (loop3): Directory bread(block 70) failed [ 149.658929][ T6527] FAT-fs (loop3): Directory bread(block 71) failed [ 149.709656][ T6527] FAT-fs (loop3): Directory bread(block 72) failed [ 149.730803][ T6529] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4192: comm syz.5.202: Allocating blocks 449-513 which overlap fs metadata [ 149.764873][ T6527] FAT-fs (loop3): Directory bread(block 73) failed [ 149.815965][ T6529] EXT4-fs (loop5): Remounting filesystem read-only [ 150.681036][ T5828] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.729368][ T6556] netlink: 'syz.2.210': attribute type 1 has an invalid length. [ 152.054763][ T6575] xt_hashlimit: max too large, truncated to 1048576 [ 152.221477][ T6575] loop5: detected capacity change from 0 to 128 [ 152.392252][ T6571] wÞ££‘: attempt to access beyond end of device [ 152.392252][ T6571] loop5: rw=2049, sector=138, nr_sectors = 8 limit=128 [ 154.530613][ T6571] wÞ££‘: attempt to access beyond end of device [ 154.530613][ T6571] loop5: rw=2049, sector=146, nr_sectors = 6 limit=128 [ 154.727710][ T6571] wÞ££‘: attempt to access beyond end of device [ 154.727710][ T6571] loop5: rw=2049, sector=150, nr_sectors = 2 limit=128 [ 154.741892][ T6571] Buffer I/O error on dev loop5, logical block 75, lost async page write [ 154.750911][ T6571] wÞ££‘: attempt to access beyond end of device [ 154.750911][ T6571] loop5: rw=2049, sector=152, nr_sectors = 2 limit=128 [ 154.785131][ T6571] Buffer I/O error on dev loop5, logical block 76, lost async page write [ 154.794349][ T6571] wÞ££‘: attempt to access beyond end of device [ 154.794349][ T6571] loop5: rw=2049, sector=170, nr_sectors = 6 limit=128 [ 155.112523][ T6599] loop2: detected capacity change from 0 to 512 [ 155.119236][ T6601] loop0: detected capacity change from 0 to 1024 [ 155.155195][ T6601] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 155.165621][ T6599] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 155.244307][ T6599] EXT4-fs (loop2): 1 truncate cleaned up [ 155.253560][ T30] kauditd_printk_skb: 49 callbacks suppressed [ 155.253583][ T30] audit: type=1326 audit(1761510024.359:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 155.257566][ T6601] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 155.329842][ T6599] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 155.336157][ T30] audit: type=1326 audit(1761510024.419:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 155.365019][ T30] audit: type=1326 audit(1761510024.419:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 155.397704][ T30] audit: type=1326 audit(1761510024.419:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0035d8efc9 code=0x7ffc0000 [ 155.401473][ T6603] loop1: detected capacity change from 0 to 512 [ 155.426760][ T6601] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #11: comm syz.0.225: missing EA_INODE flag [ 155.442242][ T6601] EXT4-fs (loop0): Remounting filesystem read-only [ 155.464999][ T30] audit: type=1326 audit(1761510024.419:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f0035d8f003 code=0x7ffc0000 [ 155.533335][ T6603] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 155.562879][ T30] audit: type=1326 audit(1761510024.429:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f0035d8da7f code=0x7ffc0000 [ 155.588418][ T30] audit: type=1326 audit(1761510024.449:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f0035d8f057 code=0x7ffc0000 [ 155.610746][ T30] audit: type=1326 audit(1761510024.509:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0035d8d810 code=0x7ffc0000 [ 155.621234][ T6603] EXT4-fs (loop1): 1 truncate cleaned up [ 155.633197][ T30] audit: type=1326 audit(1761510024.509:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0035d8ebcb code=0x7ffc0000 [ 155.633279][ T30] audit: type=1326 audit(1761510024.599:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f0035d8dc2a code=0x7ffc0000 [ 155.731071][ T5831] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 155.778872][ T6603] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 155.878061][ T6617] netlink: 284 bytes leftover after parsing attributes in process `syz.3.230'. [ 155.913667][ T6603] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. [ 155.924357][ T6619] program syz.4.232 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 156.021366][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.107652][ T5824] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.585990][ T6634] netlink: 'syz.2.238': attribute type 1 has an invalid length. [ 157.627056][ T6645] loop2: detected capacity change from 0 to 512 [ 157.699778][ T6645] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 157.738456][ T6645] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 158.128139][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.610603][ T6671] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 160.719585][ T6688] netlink: 24 bytes leftover after parsing attributes in process `syz.1.252'. [ 161.244267][ T6695] netlink: 4 bytes leftover after parsing attributes in process `syz.1.252'. [ 161.671253][ T6697] loop4: detected capacity change from 0 to 128 [ 161.839266][ T6697] FAT-fs (loop4): Invalid FSINFO signature: 0x41610000, 0x61417272 (sector = 1) [ 161.864772][ T30] kauditd_printk_skb: 10 callbacks suppressed [ 161.864798][ T30] audit: type=1326 audit(1761510030.919:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 161.896957][ T6697] FAT-fs (loop4): Directory bread(block 162) failed [ 161.903702][ T6697] FAT-fs (loop4): Directory bread(block 163) failed [ 161.910693][ T6697] FAT-fs (loop4): Directory bread(block 164) failed [ 161.917479][ T6697] FAT-fs (loop4): Directory bread(block 165) failed [ 161.924111][ T6697] FAT-fs (loop4): Directory bread(block 166) failed [ 161.930779][ T6697] FAT-fs (loop4): Directory bread(block 167) failed [ 161.939754][ T6697] FAT-fs (loop4): Directory bread(block 168) failed [ 161.946449][ T6697] FAT-fs (loop4): Directory bread(block 169) failed [ 161.981250][ T6697] FAT-fs (loop4): Directory bread(block 162) failed [ 161.988017][ T6697] FAT-fs (loop4): Directory bread(block 163) failed [ 162.012761][ T6702] netlink: 'syz.2.259': attribute type 3 has an invalid length. [ 162.516241][ T30] audit: type=1326 audit(1761510030.969:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 162.545902][ T30] audit: type=1326 audit(1761510030.969:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 162.574138][ T30] audit: type=1326 audit(1761510030.969:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 162.596532][ T30] audit: type=1326 audit(1761510030.969:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6698 comm="syz.3.258" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa13ab8efc9 code=0x7ffc0000 [ 165.566641][ T6761] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 165.666785][ T6763] loop4: detected capacity change from 0 to 1024 [ 165.692254][ T6763] EXT4-fs: Ignoring removed nobh option [ 165.715139][ T6763] EXT4-fs: Ignoring removed bh option [ 165.762731][ T6763] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 165.845674][ T30] audit: type=1800 audit(1761510034.959:275): pid=6763 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.283" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 166.060362][ T5822] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.889016][ T6783] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 166.946296][ T6783] Zero length message leads to an empty skb [ 166.958840][ T30] audit: type=1326 audit(1761510036.069:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6754 comm="syz.0.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 166.982176][ T6787] loop3: detected capacity change from 0 to 512 [ 167.078045][ T6787] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 167.119894][ T6787] ext4 filesystem being mounted at /44/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 167.130446][ T30] audit: type=1326 audit(1761510036.099:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6754 comm="syz.0.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 167.281227][ T30] audit: type=1326 audit(1761510036.099:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6754 comm="syz.0.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 167.388299][ T30] audit: type=1326 audit(1761510036.099:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6754 comm="syz.0.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 167.505512][ T30] audit: type=1326 audit(1761510036.099:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6754 comm="syz.0.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 167.541301][ T30] audit: type=1326 audit(1761510036.099:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6754 comm="syz.0.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 167.575375][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 167.685389][ T30] audit: type=1326 audit(1761510036.099:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6754 comm="syz.0.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 167.728010][ T30] audit: type=1326 audit(1761510036.109:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6754 comm="syz.0.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 167.750853][ T30] audit: type=1326 audit(1761510036.109:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6754 comm="syz.0.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 167.774968][ T30] audit: type=1326 audit(1761510036.109:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6754 comm="syz.0.281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc25bd8efc9 code=0x7ffc0000 [ 167.807770][ T6802] loop0: detected capacity change from 0 to 512 [ 167.815651][ T6802] EXT4-fs: user quota file already specified [ 168.080889][ T6810] loop3: detected capacity change from 0 to 512 [ 168.248145][ T6810] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 168.279916][ T6817] loop4: detected capacity change from 0 to 512 [ 168.315889][ T6810] ext4 filesystem being mounted at /45/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 168.333606][ T6810] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.296: corrupted inode contents [ 168.365228][ T6810] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.296: mark_inode_dirty error [ 168.381147][ T6817] [ 168.383526][ T6817] ====================================================== [ 168.390576][ T6817] WARNING: possible circular locking dependency detected [ 168.397691][ T6817] syzkaller #0 Not tainted [ 168.402111][ T6817] ------------------------------------------------------ [ 168.409155][ T6817] syz.4.303/6817 is trying to acquire lock: [ 168.415481][ T6817] ffff888030334b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x27a/0x600 [ 168.425372][ T6817] [ 168.425372][ T6817] but task is already holding lock: [ 168.432734][ T6817] ffff8880550169f8 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x4ba/0x870 [ 168.442627][ T6817] [ 168.442627][ T6817] which lock already depends on the new lock. [ 168.442627][ T6817] [ 168.453035][ T6817] [ 168.453035][ T6817] the existing dependency chain (in reverse order) is: [ 168.462055][ T6817] [ 168.462055][ T6817] -> #1 (&ei->xattr_sem){++++}-{4:4}: [ 168.469736][ T6817] down_write+0x92/0x200 [ 168.474532][ T6817] ext4_destroy_inline_data+0x2d/0xe0 [ 168.480480][ T6817] ext4_do_writepages+0x1154/0x3cf0 [ 168.486241][ T6817] ext4_writepages+0x37a/0x7d0 [ 168.491553][ T6817] do_writepages+0x27a/0x600 [ 168.496689][ T6817] filemap_fdatawrite_wbc+0x104/0x160 [ 168.502660][ T6817] __filemap_fdatawrite_range+0xb9/0x100 [ 168.508844][ T6817] file_write_and_wait_range+0xca/0x140 [ 168.514962][ T6817] generic_buffers_fsync_noflush+0x76/0x310 [ 168.521396][ T6817] ext4_sync_file+0x896/0xf10 [ 168.526623][ T6817] vfs_fsync_range+0x139/0x220 [ 168.531947][ T6817] ext4_buffered_write_iter+0x2e0/0x440 [ 168.538107][ T6817] ext4_file_write_iter+0xa4c/0x1d10 [ 168.543927][ T6817] do_iter_readv_writev+0x662/0x9e0 [ 168.549673][ T6817] vfs_writev+0x35f/0xde0 [ 168.554657][ T6817] do_pwritev+0x1a6/0x270 [ 168.559531][ T6817] __x64_sys_pwritev2+0xef/0x160 [ 168.565022][ T6817] do_syscall_64+0xcd/0xfa0 [ 168.570055][ T6817] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.576482][ T6817] [ 168.576482][ T6817] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 168.584933][ T6817] __lock_acquire+0x126f/0x1c90 [ 168.590448][ T6817] lock_acquire+0x179/0x350 [ 168.595482][ T6817] ext4_writepages+0x224/0x7d0 [ 168.600782][ T6817] do_writepages+0x27a/0x600 [ 168.605988][ T6817] __writeback_single_inode+0x160/0xfb0 [ 168.612156][ T6817] writeback_single_inode+0x2bc/0x550 [ 168.618076][ T6817] write_inode_now+0x170/0x1e0 [ 168.623378][ T6817] iput.part.0+0x487/0xb00 [ 168.628600][ T6817] iput+0x35/0x40 [ 168.632787][ T6817] ext4_xattr_block_set+0x67c/0x3650 [ 168.638627][ T6817] ext4_expand_extra_isize_ea+0x1442/0x1ab0 [ 168.645052][ T6817] __ext4_expand_extra_isize+0x346/0x480 [ 168.651270][ T6817] __ext4_mark_inode_dirty+0x544/0x870 [ 168.657289][ T6817] ext4_evict_inode+0x74e/0x18e0 [ 168.662766][ T6817] evict+0x3e6/0x920 [ 168.667202][ T6817] iput.part.0+0x6a9/0xb00 [ 168.672151][ T6817] iput+0x35/0x40 [ 168.676313][ T6817] ext4_orphan_cleanup+0x731/0x11e0 [ 168.682047][ T6817] ext4_fill_super+0x8db7/0xaf70 [ 168.687538][ T6817] get_tree_bdev_flags+0x38c/0x620 [ 168.693203][ T6817] vfs_get_tree+0x8e/0x340 [ 168.698156][ T6817] path_mount+0x7b9/0x23a0 [ 168.703102][ T6817] __x64_sys_mount+0x293/0x310 [ 168.708395][ T6817] do_syscall_64+0xcd/0xfa0 [ 168.713522][ T6817] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.719955][ T6817] [ 168.719955][ T6817] other info that might help us debug this: [ 168.719955][ T6817] [ 168.730352][ T6817] Possible unsafe locking scenario: [ 168.730352][ T6817] [ 168.737882][ T6817] CPU0 CPU1 [ 168.743237][ T6817] ---- ---- [ 168.748781][ T6817] lock(&ei->xattr_sem); [ 168.753132][ T6817] lock(&sbi->s_writepages_rwsem); [ 168.760868][ T6817] lock(&ei->xattr_sem); [ 168.767734][ T6817] rlock(&sbi->s_writepages_rwsem); [ 168.773127][ T6817] [ 168.773127][ T6817] *** DEADLOCK *** [ 168.773127][ T6817] [ 168.781356][ T6817] 3 locks held by syz.4.303/6817: [ 168.786390][ T6817] #0: ffff88807957a0e0 (&type->s_umount_key#28/1){+.+.}-{4:4}, at: alloc_super+0x1e3/0xb60 [ 168.796694][ T6817] #1: ffff88807957a610 (sb_internal){.+.+}-{0:0}, at: evict+0x3e6/0x920 [ 168.805190][ T6817] #2: ffff8880550169f8 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x4ba/0x870 [ 168.816134][ T6817] [ 168.816134][ T6817] stack backtrace: [ 168.822024][ T6817] CPU: 0 UID: 0 PID: 6817 Comm: syz.4.303 Not tainted syzkaller #0 PREEMPT(full) [ 168.822064][ T6817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 168.822084][ T6817] Call Trace: [ 168.822097][ T6817] [ 168.822110][ T6817] dump_stack_lvl+0x116/0x1f0 [ 168.822152][ T6817] print_circular_bug+0x275/0x350 [ 168.822210][ T6817] check_noncircular+0x14c/0x170 [ 168.822408][ T6817] __lock_acquire+0x126f/0x1c90 [ 168.822468][ T6817] ? __lock_acquire+0x622/0x1c90 [ 168.822526][ T6817] lock_acquire+0x179/0x350 [ 168.822555][ T6817] ? do_writepages+0x27a/0x600 [ 168.822591][ T6817] ? __pfx___might_resched+0x10/0x10 [ 168.822640][ T6817] ext4_writepages+0x224/0x7d0 [ 168.822683][ T6817] ? do_writepages+0x27a/0x600 [ 168.822716][ T6817] ? __pfx_ext4_writepages+0x10/0x10 [ 168.822757][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.822799][ T6817] ? __lock_acquire+0xb8a/0x1c90 [ 168.822862][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.822906][ T6817] ? __pfx_ext4_writepages+0x10/0x10 [ 168.822951][ T6817] do_writepages+0x27a/0x600 [ 168.822986][ T6817] ? __pfx_do_writepages+0x10/0x10 [ 168.823025][ T6817] __writeback_single_inode+0x160/0xfb0 [ 168.823071][ T6817] ? __pfx___writeback_single_inode+0x10/0x10 [ 168.823114][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.823155][ T6817] ? do_raw_spin_unlock+0x172/0x230 [ 168.823193][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.823243][ T6817] writeback_single_inode+0x2bc/0x550 [ 168.823291][ T6817] write_inode_now+0x170/0x1e0 [ 168.823335][ T6817] ? __pfx_write_inode_now+0x10/0x10 [ 168.823406][ T6817] ? find_held_lock+0x2b/0x80 [ 168.823449][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.823492][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.823536][ T6817] iput.part.0+0x487/0xb00 [ 168.823577][ T6817] iput+0x35/0x40 [ 168.823610][ T6817] ext4_xattr_block_set+0x67c/0x3650 [ 168.823680][ T6817] ? __pfx_ext4_xattr_block_set+0x10/0x10 [ 168.823742][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.823783][ T6817] ? xattr_find_entry+0x289/0x330 [ 168.823840][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.823881][ T6817] ? ext4_xattr_block_find+0x59/0x430 [ 168.823939][ T6817] ext4_expand_extra_isize_ea+0x1442/0x1ab0 [ 168.823992][ T6817] ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10 [ 168.824037][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.824078][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.824118][ T6817] ? dquot_initialize_needed+0x183/0x2a0 [ 168.824159][ T6817] __ext4_expand_extra_isize+0x346/0x480 [ 168.824219][ T6817] __ext4_mark_inode_dirty+0x544/0x870 [ 168.824272][ T6817] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 168.824318][ T6817] ? __pfx___might_resched+0x10/0x10 [ 168.824367][ T6817] ? ext4_journal_check_start+0x22b/0x340 [ 168.824408][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.824449][ T6817] ? __ext4_journal_start_sb+0x19e/0x690 [ 168.824488][ T6817] ? ext4_evict_inode+0x5cf/0x18e0 [ 168.824535][ T6817] ext4_evict_inode+0x74e/0x18e0 [ 168.824583][ T6817] ? __pfx_ext4_evict_inode+0x10/0x10 [ 168.824628][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.824674][ T6817] ? __pfx_ext4_evict_inode+0x10/0x10 [ 168.824720][ T6817] evict+0x3e6/0x920 [ 168.824758][ T6817] ? __pfx_evict+0x10/0x10 [ 168.824791][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.824838][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.824885][ T6817] iput.part.0+0x6a9/0xb00 [ 168.824920][ T6817] ? __pfx_ext4_drop_inode+0x10/0x10 [ 168.824957][ T6817] iput+0x35/0x40 [ 168.824990][ T6817] ext4_orphan_cleanup+0x731/0x11e0 [ 168.825042][ T6817] ? __pfx_ext4_orphan_cleanup+0x10/0x10 [ 168.825090][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.825160][ T6817] ? ext4_register_li_request+0xec/0x9b0 [ 168.825214][ T6817] ext4_fill_super+0x8db7/0xaf70 [ 168.825285][ T6817] ? __pfx_ext4_fill_super+0x10/0x10 [ 168.825334][ T6817] ? do_raw_spin_lock+0x12c/0x2b0 [ 168.825371][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.825411][ T6817] ? find_held_lock+0x2b/0x80 [ 168.825457][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.825499][ T6817] ? sb_set_blocksize+0x176/0x1d0 [ 168.825555][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.825596][ T6817] ? setup_bdev_super+0x369/0x730 [ 168.825643][ T6817] get_tree_bdev_flags+0x38c/0x620 [ 168.825693][ T6817] ? __pfx_ext4_fill_super+0x10/0x10 [ 168.825744][ T6817] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 168.825797][ T6817] ? apparmor_capable+0x114/0x1d0 [ 168.825849][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.825890][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.825931][ T6817] ? security_capable+0x7e/0x260 [ 168.825978][ T6817] vfs_get_tree+0x8e/0x340 [ 168.826020][ T6817] path_mount+0x7b9/0x23a0 [ 168.826057][ T6817] ? __pfx_path_mount+0x10/0x10 [ 168.826091][ T6817] ? putname+0x154/0x1a0 [ 168.826128][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.826169][ T6817] ? putname+0x154/0x1a0 [ 168.826204][ T6817] ? __x64_sys_mount+0x293/0x310 [ 168.826240][ T6817] __x64_sys_mount+0x293/0x310 [ 168.826273][ T6817] ? __pfx___x64_sys_mount+0x10/0x10 [ 168.826305][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 168.826354][ T6817] do_syscall_64+0xcd/0xfa0 [ 168.826396][ T6817] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 168.826430][ T6817] RIP: 0033:0x7efe8119076a [ 168.826456][ T6817] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 168.826489][ T6817] RSP: 002b:00007efe81f96e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 168.826520][ T6817] RAX: ffffffffffffffda RBX: 00007efe81f96ef0 RCX: 00007efe8119076a [ 168.826542][ T6817] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007efe81f96eb0 [ 168.826564][ T6817] RBP: 0000200000000180 R08: 00007efe81f96ef0 R09: 0000000001a08700 [ 168.826586][ T6817] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0 [ 168.826607][ T6817] R13: 00007efe81f96eb0 R14: 0000000000000470 R15: 0000200000000700 [ 168.826641][ T6817] [ 169.409077][ T6810] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.296: corrupted inode contents [ 169.570757][ T6817] ------------[ cut here ]------------ [ 169.579016][ T6817] EA inode 11 i_nlink=2 [ 169.583596][ T6817] WARNING: CPU: 0 PID: 6817 at fs/ext4/xattr.c:1056 ext4_xattr_inode_update_ref+0x4ec/0x610 [ 169.598312][ T6817] Modules linked in: [ 169.602253][ T6817] CPU: 0 UID: 0 PID: 6817 Comm: syz.4.303 Not tainted syzkaller #0 PREEMPT(full) [ 169.611672][ T6817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 169.622598][ T6817] RIP: 0010:ext4_xattr_inode_update_ref+0x4ec/0x610 [ 169.630008][ T6817] Code: df 48 8d 7b 40 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 23 01 00 00 48 8b 73 40 44 89 e2 48 c7 c7 80 5d a8 8b e8 75 f0 ec fe 90 <0f> 0b 90 90 e9 d9 fe ff ff e8 16 bd 2e ff 44 0f b6 2d b5 75 dc 0d [ 169.649744][ T6817] RSP: 0018:ffffc9001dc2f178 EFLAGS: 00010282 [ 169.655908][ T6817] RAX: 0000000000000000 RBX: ffff888055010298 RCX: ffffc9000ceef000 [ 169.663897][ T6817] RDX: 0000000000080000 RSI: ffffffff817b2ef5 RDI: 0000000000000001 [ 169.672012][ T6817] RBP: ffffc9001dc2f240 R08: 0000000000000001 R09: 0000000000000000 [ 169.680169][ T6817] R10: 0000000000000001 R11: 000000002d2d2d2d R12: 0000000000000002 [ 169.688278][ T6817] R13: 0000000000000000 R14: 1ffff92003b85e32 R15: ffff888055010488 [ 169.696409][ T6817] FS: 00007efe81f976c0(0000) GS:ffff888124a0a000(0000) knlGS:0000000000000000 [ 169.705449][ T6817] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 169.712140][ T6817] CR2: 00007f0036caff98 CR3: 000000005354c000 CR4: 0000000000350ef0 [ 169.721092][ T6817] Call Trace: [ 169.724405][ T6817] [ 169.728099][ T6817] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10 [ 169.734492][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.740236][ T6817] ? ext4_xattr_inode_iget+0x1ee/0x400 [ 169.745891][ T6817] ext4_xattr_set_entry+0x158f/0x1f00 [ 169.751350][ T6817] ? __pfx_ext4_xattr_set_entry+0x10/0x10 [ 169.757510][ T6817] ? xattr_find_entry+0x289/0x330 [ 169.762599][ T6817] ext4_xattr_ibody_set+0x3d6/0x5d0 [ 169.768234][ T6817] ext4_expand_extra_isize_ea+0x148c/0x1ab0 [ 169.774350][ T6817] ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10 [ 169.780774][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.786488][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.792152][ T6817] ? dquot_initialize_needed+0x183/0x2a0 [ 169.797869][ T6817] __ext4_expand_extra_isize+0x346/0x480 [ 169.803643][ T6817] __ext4_mark_inode_dirty+0x544/0x870 [ 169.809201][ T6817] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 169.815273][ T6817] ? __pfx___might_resched+0x10/0x10 [ 169.821376][ T6817] ? ext4_journal_check_start+0x22b/0x340 [ 169.827941][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.833612][ T6817] ? __ext4_journal_start_sb+0x19e/0x690 [ 169.839337][ T6817] ? ext4_evict_inode+0x5cf/0x18e0 [ 169.844495][ T6817] ext4_evict_inode+0x74e/0x18e0 [ 169.849542][ T6817] ? __pfx_ext4_evict_inode+0x10/0x10 [ 169.854983][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.860658][ T6817] ? __pfx_ext4_evict_inode+0x10/0x10 [ 169.866127][ T6817] evict+0x3e6/0x920 [ 169.870042][ T6817] ? __pfx_evict+0x10/0x10 [ 169.874462][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.880157][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.885895][ T6817] iput.part.0+0x6a9/0xb00 [ 169.890345][ T6817] ? __pfx_ext4_drop_inode+0x10/0x10 [ 169.895707][ T6817] iput+0x35/0x40 [ 169.899374][ T6817] ext4_orphan_cleanup+0x731/0x11e0 [ 169.904597][ T6817] ? __pfx_ext4_orphan_cleanup+0x10/0x10 [ 169.910488][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.916384][ T6817] ? ext4_register_li_request+0xec/0x9b0 [ 169.922736][ T6817] ext4_fill_super+0x8db7/0xaf70 [ 169.928550][ T6817] ? __pfx_ext4_fill_super+0x10/0x10 [ 169.933887][ T6817] ? do_raw_spin_lock+0x12c/0x2b0 [ 169.939066][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.944781][ T6817] ? find_held_lock+0x2b/0x80 [ 169.949663][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.955437][ T6817] ? sb_set_blocksize+0x176/0x1d0 [ 169.960538][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.966354][ T6817] ? setup_bdev_super+0x369/0x730 [ 169.971428][ T6817] get_tree_bdev_flags+0x38c/0x620 [ 169.976650][ T6817] ? __pfx_ext4_fill_super+0x10/0x10 [ 169.982071][ T6817] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 169.988370][ T6817] ? apparmor_capable+0x114/0x1d0 [ 169.993451][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 169.999171][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.004896][ T6817] ? security_capable+0x7e/0x260 [ 170.009951][ T6817] vfs_get_tree+0x8e/0x340 [ 170.014385][ T6817] path_mount+0x7b9/0x23a0 [ 170.018979][ T6817] ? __pfx_path_mount+0x10/0x10 [ 170.024471][ T6817] ? putname+0x154/0x1a0 [ 170.029469][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.035172][ T6817] ? putname+0x154/0x1a0 [ 170.039572][ T6817] ? __x64_sys_mount+0x293/0x310 [ 170.044526][ T6817] __x64_sys_mount+0x293/0x310 [ 170.049440][ T6817] ? __pfx___x64_sys_mount+0x10/0x10 [ 170.054854][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.060504][ T6817] do_syscall_64+0xcd/0xfa0 [ 170.065090][ T6817] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.071048][ T6817] RIP: 0033:0x7efe8119076a [ 170.075510][ T6817] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.095443][ T6817] RSP: 002b:00007efe81f96e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 170.103857][ T6817] RAX: ffffffffffffffda RBX: 00007efe81f96ef0 RCX: 00007efe8119076a [ 170.111892][ T6817] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007efe81f96eb0 [ 170.119940][ T6817] RBP: 0000200000000180 R08: 00007efe81f96ef0 R09: 0000000001a08700 [ 170.128759][ T6817] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0 [ 170.137493][ T6817] R13: 00007efe81f96eb0 R14: 0000000000000470 R15: 0000200000000700 [ 170.145578][ T6817] [ 170.148692][ T6817] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 170.155969][ T6817] CPU: 0 UID: 0 PID: 6817 Comm: syz.4.303 Not tainted syzkaller #0 PREEMPT(full) [ 170.165164][ T6817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 170.175210][ T6817] Call Trace: [ 170.178567][ T6817] [ 170.181496][ T6817] dump_stack_lvl+0x3d/0x1f0 [ 170.186201][ T6817] vpanic+0x640/0x6f0 [ 170.190211][ T6817] ? ext4_xattr_inode_update_ref+0x4ec/0x610 [ 170.196215][ T6817] panic+0xca/0xd0 [ 170.200027][ T6817] ? __pfx_panic+0x10/0x10 [ 170.204558][ T6817] check_panic_on_warn+0xab/0xb0 [ 170.209517][ T6817] __warn+0xf6/0x3c0 [ 170.213406][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.219073][ T6817] ? ext4_xattr_inode_update_ref+0x4ec/0x610 [ 170.225075][ T6817] report_bug+0x3c3/0x580 [ 170.229460][ T6817] ? ext4_xattr_inode_update_ref+0x4ec/0x610 [ 170.235504][ T6817] handle_bug+0x184/0x210 [ 170.239852][ T6817] exc_invalid_op+0x17/0x50 [ 170.244369][ T6817] asm_exc_invalid_op+0x1a/0x20 [ 170.249220][ T6817] RIP: 0010:ext4_xattr_inode_update_ref+0x4ec/0x610 [ 170.255940][ T6817] Code: df 48 8d 7b 40 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 23 01 00 00 48 8b 73 40 44 89 e2 48 c7 c7 80 5d a8 8b e8 75 f0 ec fe 90 <0f> 0b 90 90 e9 d9 fe ff ff e8 16 bd 2e ff 44 0f b6 2d b5 75 dc 0d [ 170.275577][ T6817] RSP: 0018:ffffc9001dc2f178 EFLAGS: 00010282 [ 170.281663][ T6817] RAX: 0000000000000000 RBX: ffff888055010298 RCX: ffffc9000ceef000 [ 170.289636][ T6817] RDX: 0000000000080000 RSI: ffffffff817b2ef5 RDI: 0000000000000001 [ 170.297614][ T6817] RBP: ffffc9001dc2f240 R08: 0000000000000001 R09: 0000000000000000 [ 170.305589][ T6817] R10: 0000000000000001 R11: 000000002d2d2d2d R12: 0000000000000002 [ 170.313558][ T6817] R13: 0000000000000000 R14: 1ffff92003b85e32 R15: ffff888055010488 [ 170.321568][ T6817] ? __warn_printk+0x1a5/0x350 [ 170.326386][ T6817] ? ext4_xattr_inode_update_ref+0x4eb/0x610 [ 170.332413][ T6817] ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10 [ 170.338789][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.344445][ T6817] ? ext4_xattr_inode_iget+0x1ee/0x400 [ 170.349951][ T6817] ext4_xattr_set_entry+0x158f/0x1f00 [ 170.355390][ T6817] ? __pfx_ext4_xattr_set_entry+0x10/0x10 [ 170.361155][ T6817] ? xattr_find_entry+0x289/0x330 [ 170.366212][ T6817] ext4_xattr_ibody_set+0x3d6/0x5d0 [ 170.371440][ T6817] ext4_expand_extra_isize_ea+0x148c/0x1ab0 [ 170.377374][ T6817] ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10 [ 170.383669][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.389360][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.395193][ T6817] ? dquot_initialize_needed+0x183/0x2a0 [ 170.401033][ T6817] __ext4_expand_extra_isize+0x346/0x480 [ 170.406723][ T6817] __ext4_mark_inode_dirty+0x544/0x870 [ 170.412314][ T6817] ? __pfx___ext4_mark_inode_dirty+0x10/0x10 [ 170.418419][ T6817] ? __pfx___might_resched+0x10/0x10 [ 170.423746][ T6817] ? ext4_journal_check_start+0x22b/0x340 [ 170.430110][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.435769][ T6817] ? __ext4_journal_start_sb+0x19e/0x690 [ 170.441430][ T6817] ? ext4_evict_inode+0x5cf/0x18e0 [ 170.446587][ T6817] ext4_evict_inode+0x74e/0x18e0 [ 170.451650][ T6817] ? __pfx_ext4_evict_inode+0x10/0x10 [ 170.457049][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.462719][ T6817] ? __pfx_ext4_evict_inode+0x10/0x10 [ 170.468129][ T6817] evict+0x3e6/0x920 [ 170.472048][ T6817] ? __pfx_evict+0x10/0x10 [ 170.476496][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.482424][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.488087][ T6817] iput.part.0+0x6a9/0xb00 [ 170.492533][ T6817] ? __pfx_ext4_drop_inode+0x10/0x10 [ 170.497844][ T6817] iput+0x35/0x40 [ 170.501639][ T6817] ext4_orphan_cleanup+0x731/0x11e0 [ 170.506870][ T6817] ? __pfx_ext4_orphan_cleanup+0x10/0x10 [ 170.512531][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.518286][ T6817] ? ext4_register_li_request+0xec/0x9b0 [ 170.523955][ T6817] ext4_fill_super+0x8db7/0xaf70 [ 170.528937][ T6817] ? __pfx_ext4_fill_super+0x10/0x10 [ 170.534346][ T6817] ? do_raw_spin_lock+0x12c/0x2b0 [ 170.539419][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.545166][ T6817] ? find_held_lock+0x2b/0x80 [ 170.549877][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.555529][ T6817] ? sb_set_blocksize+0x176/0x1d0 [ 170.560598][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.566248][ T6817] ? setup_bdev_super+0x369/0x730 [ 170.571305][ T6817] get_tree_bdev_flags+0x38c/0x620 [ 170.576446][ T6817] ? __pfx_ext4_fill_super+0x10/0x10 [ 170.581761][ T6817] ? __pfx_get_tree_bdev_flags+0x10/0x10 [ 170.587557][ T6817] ? apparmor_capable+0x114/0x1d0 [ 170.592632][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.598306][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.603967][ T6817] ? security_capable+0x7e/0x260 [ 170.609132][ T6817] vfs_get_tree+0x8e/0x340 [ 170.613588][ T6817] path_mount+0x7b9/0x23a0 [ 170.618024][ T6817] ? __pfx_path_mount+0x10/0x10 [ 170.622907][ T6817] ? putname+0x154/0x1a0 [ 170.627168][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.632949][ T6817] ? putname+0x154/0x1a0 [ 170.637213][ T6817] ? __x64_sys_mount+0x293/0x310 [ 170.642171][ T6817] __x64_sys_mount+0x293/0x310 [ 170.646948][ T6817] ? __pfx___x64_sys_mount+0x10/0x10 [ 170.652276][ T6817] ? srso_alias_return_thunk+0x5/0xfbef5 [ 170.657936][ T6817] do_syscall_64+0xcd/0xfa0 [ 170.662462][ T6817] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 170.668373][ T6817] RIP: 0033:0x7efe8119076a [ 170.672794][ T6817] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 170.692683][ T6817] RSP: 002b:00007efe81f96e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 170.701207][ T6817] RAX: ffffffffffffffda RBX: 00007efe81f96ef0 RCX: 00007efe8119076a [ 170.709202][ T6817] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007efe81f96eb0 [ 170.717191][ T6817] RBP: 0000200000000180 R08: 00007efe81f96ef0 R09: 0000000001a08700 [ 170.725187][ T6817] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0 [ 170.733172][ T6817] R13: 00007efe81f96eb0 R14: 0000000000000470 R15: 0000200000000700 [ 170.741263][ T6817] [ 170.744508][ T6817] Kernel Offset: disabled [ 170.749008][ T6817] Rebooting in 86400 seconds..