last executing test programs: 1.146978192s ago: executing program 2 (id=542): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x18) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8) sendto$inet6(r1, &(0x7f0000000340)="04", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0xfffffff9, @rand_addr=' \x01\x00'}, 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f00000002c0)={0x0, 0x0, 0x4}, 0x8) 598.920131ms ago: executing program 0 (id=565): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]}) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000140), 0x13f}}, 0x20) write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000), 0x13f, 0x3}}, 0x20) close_range(r0, 0xffffffffffffffff, 0x0) 506.581922ms ago: executing program 4 (id=569): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000280)={0x0, 0xfffffffffffffe72, &(0x7f0000000200)={&(0x7f0000000640)={0x24, r3, 0x2cb3b0415539fbbb, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void, @void}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x2}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xffffff81}]}, 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x0) 489.709603ms ago: executing program 4 (id=570): r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000080)) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) keyctl$KEYCTL_MOVE(0x1e, r0, 0xffffffffffffffff, r1, 0x0) 489.227692ms ago: executing program 0 (id=580): r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) fchdir(r1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) lseek(r2, 0xd7de, 0x1) getdents64(r2, 0x0, 0x0) 464.547153ms ago: executing program 0 (id=582): syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.sectors\x00', 0x26e1, 0x0) close(r0) openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a1202, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000600)=0x2) write$cgroup_subtree(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="80fd", @ANYRES32=r0], 0x9) 442.261923ms ago: executing program 1 (id=572): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002ec0)=ANY=[@ANYBLOB="b702000007000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00000000850000000d000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c034055b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfd8e01f3440cee51bc53099e90f4580d760551b5b341a29f31e3106d1ddd6152f7cbdb9cd38bdb2209c67deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f1328d6704902cbe7bc04b82d2789cad32b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c4110555850915148ba532e6ea09c346dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a9ab359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780870014f51c3c975d5aec84222fd3a0ec4be3e563112f0b39501aafe234870072858dc06e7c337602d3e5a815232f5e16c1b30c3a6abc85018e5ff2c91018afc9ffc2cc788bee1b47683db012469398685211dfbbae3e2ed0a50e7393bff5d4c391ddece00fc772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2edfae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d300006aca54183fb01c73f979ca9857399537f5dc2a2d0e0000000000000578673f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7af22e30d46a9d26d37cef099ece729aa218f9f44a3210223fdae7ed04935c3c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adab988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977fb536a9caab37d9ac4cfc1c7b400000000000007ffc826b956ba859ac8e3c177b91bd7d5e41ff83ced846891180604b6dd2499d16d7d9158ffffffff00000000ef069dc42749a89f854797f29d000069a16203a967c1bbe09315c29877a308bcc87dc3addb08142bdee5d27874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8240000e3428d2129369ee1b85af9ffffff0d0df414b315f651c8412392191fa83ee830548f11be359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296d2a27798c8ce2a305c0c7d35cf4b22549a4bd92000000000f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb74d4ec3f771f7a1338a5c3dd35e926049fe86e09c58e273cd905de328c13c1ed1c0d9cae846bcbfa8cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4eda0545c00f576b2b5cc7f819abd0f885cc4806f40300966fcf1e54f5a2d38708294cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a978ee56c83a3466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342e0eaf6f330e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b47481edbf1f000000000000004d16d29c28eb5167e9936ed327fb237a56224e49d9ea95ec1b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecfe69f743f1213bf81700cd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be3827fcd95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd4403a099f32468f65bd06b4082d43e121861b5cc03f1a1561f0589e0d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b65f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bb37b61fa0a2d8974e69115d33394e86e4b838297ba20f969369de47422604e2fc5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293b6c833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b612272d40f522d8c98c879aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbe71f6516737be55c06d9cdcfb1e2bb10b50000eb4acff90756dba1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8d03fe28bc358684492aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a59b53f2fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128d02af263b3dc1cab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd46dbd61627a2e0a74b5e6aefb7eee403502734137ff47a57f164391c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80dfb8f386bb74b5589829b6b0679b5d65a125e3af1130d66a7b66837ae7e7123dde7404a067ad0a6a2d6bec9411b61cad4121be3c72ff3a04713042253d438e7becf8120de3895b8ce974958bde39cb8da3427a2e9e2de936431e67fed5ab5684db07de39083d8948cc4c8a2608100000000000000000000aecb8b0b7941088f971ce17427eec32a012295cc0cdd32955176b6ad5a4bb953e58ccfa9428f452cfb5a48a9fda26db3985c8be3c2f99827da074825b01c4a3a71fb59d5798100000000000000c76b05a45d2dd8c20d971e2f3e4369168f5cb83d6ff3a18733fec726034fbfa95624135bee374414b2c8c61f52357a520efd6a10aff244bc8a62ed367981fb4d5d77f7bc093958ff46527499957da4934cd4b370cf76f72dd05fa80cdfb68c836fd81be7a58532e041a87f9222f157610a4bcdc05b2a55308c8e7568b90f7a338557e816a16972aea79dff5becefa6f9c5ce6c58fb38da9e7532dc53cfdc2e789b76f7d32aca1bfea2aa62621b78dded30fc07171866bf3d552900000000a32dda61eeda1750e157c2d569b9d08f583c0ee28daec2e8bb85f3c8e91c4448096ee953def18dc73e55cb30f9cd069d8780b00eaba382f0c3ae391c30a5f1b0f36dd0c2193b791995d2890327a10d7abac76d1202f72e97f0105184d7aaaab8d3e29c9a8d263f076b55cf53c5bb9c0662a3d19a6722d7f83ae4331d3256f90af0857788b380ccc3b266c418e66d1d756d5df6423dd0cea67bc235d3776d22270fc19301ead09f156893e9"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1ff, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r2}, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe2c, 0x60000000, &(0x7f0000000100)="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", 0x0, 0x24, 0x60000000}, 0x2c) 428.544773ms ago: executing program 4 (id=585): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000001a00000a8500000007000000c50000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x3e, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f903", 0x11}], 0x100000000000027b}, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd42"], 0xfdef) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x90) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 402.257754ms ago: executing program 1 (id=574): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r1}, 0x3d) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='hrtimer_start\x00', r2}, 0x18) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x3}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) 399.644144ms ago: executing program 0 (id=575): openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000540), 0x84) mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0) perf_event_open(&(0x7f0000000400)={0x8, 0xa3, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x8880}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x1e, 0x12, r1, 0x0) 363.357024ms ago: executing program 1 (id=576): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r2}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='vm_unmapped_area\x00', r1, 0x0, 0xfffffffffffe0002}, 0x18) syz_io_uring_setup(0x362a, &(0x7f0000000040)={0x0, 0xb0da, 0x2, 0x2, 0x2f7}, &(0x7f0000000140), &(0x7f0000000180)) 314.766815ms ago: executing program 1 (id=578): r0 = socket(0x2a, 0x2, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000a80)=@deltfilter={0x24, 0x2d, 0x10, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x6, 0x4}, {0x6, 0x4}, {0xfff3, 0x5}}}, 0x24}}, 0x0) getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=@newqdisc={0x58, 0x24, 0xf0b, 0x13, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x5}, {0xffff, 0xffff}, {0xffff}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x1ff, 0x4, 0x10001, 0x5902, 0x7f, 0x400, 0x800, 0x2, 0xffff294f}}}}]}, 0x58}}, 0x8000) sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000640)=@newtfilter={0x24, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0xe, 0x9}, {0xfff3, 0x5}, {0xe, 0x2613a1b406814a86}}}, 0x24}}, 0x44804) r2 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0) 285.304386ms ago: executing program 1 (id=579): r0 = socket$vsock_stream(0x28, 0x1, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000080)=0x2) connect$vsock_stream(r0, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10) shutdown(r0, 0x2) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000400)={0x10000000}) epoll_pwait(r1, &(0x7f0000000480)=[{}], 0x1, 0x7, 0x0, 0x0) 279.537355ms ago: executing program 0 (id=581): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r1}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r2}, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000540), 0xffffffffffffffff) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000280)={0x0, 0xfffffffffffffe72, &(0x7f0000000200)={&(0x7f0000000640)={0x24, r3, 0x2cb3b0415539fbbb, 0x70bd2b, 0x25dfdbfd, {{}, {@void, @void, @void}}, [@NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x2}, @NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0xffffff81}]}, 0x24}, 0x1, 0x0, 0x0, 0x801}, 0x0) 279.372895ms ago: executing program 3 (id=583): r0 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) fchdir(r1) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) lseek(r2, 0xd7de, 0x1) getdents64(r2, 0x0, 0x0) 254.760636ms ago: executing program 3 (id=584): r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000080)) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) keyctl$KEYCTL_MOVE(0x1e, r0, 0xffffffffffffffff, r1, 0x0) 233.507906ms ago: executing program 2 (id=586): bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r0}, 0x10) r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000840)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb) add_key(&(0x7f00000003c0)='dns_resolver\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000080)="00000102", 0xfffff, r1) 233.050306ms ago: executing program 0 (id=596): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000700002c0000000000000004850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x18) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f00000000c0)={0x0, 0x1}, 0x8) sendto$inet6(r1, &(0x7f0000000340)="04", 0x1, 0x0, &(0x7f0000000240)={0xa, 0x4e20, 0xfffffff9, @rand_addr=' \x01\x00'}, 0x1c) connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c) setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER_VALUE(r1, 0x84, 0x7c, &(0x7f00000002c0)={0x0, 0x0, 0x4}, 0x8) 220.711426ms ago: executing program 1 (id=587): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="00e789da34e04a1ffbc2f05cefeb4ee6d5ae1071124b2c2fb684f5c7ac05000000c7880f67e775c748f6381a3e01e7f93330b30b90bbb4d2b697899a16f2df4fa2a8f06ac2c5352ddcae2b83672ef3d9f532e55f4e798924ac6332751e737383f6890d2dcfcbdbd41940a64c7b4374674e7bb6dd0d1b8d3d62f6d77b0282e166e2ce4c353d2d4d315a81146bf46a1508ef0d2ddc7d0b447fe17b85b292d13cea2256a16cab12d75a852bc680da7ea837480feb2e1e0000000000003bc18c52d0351cd285197b0641569048b5b416ba1c570000000000100083794afff0a9eed63b1226b18c4b455ab222d7ae1be52a22e8ec8bf2c0c7d99770415863f50aa18bcb66061a29bc55105f3482ed752f882d224a386b51836c1b437036b677156e22e174ff516dbab0b2cdf52bee43c4ffffffffffffffffd9487b8663a339b98df63b4bf3e97f02d6f1e7e65f968dd90841506355d9ac40f1b434c8a9b5bd91a70c53a5aadbebd9ed9d0a55bd47a967163e0c02753f8895bfbf1b41b5490667c241068d59983ae1d0f03e650f5357425284b76d793e25a2558fa437e38b8200000000630000000000000000000000000000000000000000000000e911000000000066e073c14bb74617079e0b6ecfc830db14244567fd8f4e4e5903eaf983786e28295783f130b95dc37f59a658000e88047db7783ce8a9cba6c255902cfb83946ea3f5f7a8cee911b2b37ae4b01e65ea86d5ea7ae17b2a9bc250c9b8fc9fbc04617939bdd13457954172d18701768f8a461bee740f2d82ae566d2e30a93ad2b201a6d16a93c75a950cc437e7f25d3aadddb8edd028d84490b6bafd636aa4fb482a8a4b3987dafe58e742448c4b36b03790090198145dee533257bb9050554f8cace210a5bc5c768f83e99019f7c00ff9ca679768dbba3f7d21c545c99c2f7688f7030fe37121d625d1f81018feb74c9d48eebdf1702550b097271ab9bd38c62f4b31fd9482c05ba064dfa60bd7fafb3c22dc057e6f9e2a5eb144290afe5369110a71d4b7fc5937a32e213c443f3b9e506b25cf9e2520999b330fc9e86bde8c8ec78f67c0c7f24db0000000", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0) write$cgroup_int(r0, &(0x7f0000000000)=0x10000000000000, 0xffffff6a) r1 = creat(&(0x7f0000000580)='./bus\x00', 0x0) io_setup(0x1, &(0x7f0000000040)=0x0) io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x15, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a00001a}]) 197.745977ms ago: executing program 3 (id=588): setresuid(0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000340)={0x5, 0x4b4, 0x1, 'queue0\x00', 0x2}) close(r2) 197.340627ms ago: executing program 4 (id=589): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000005"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)={0x2c, r2, 0x701, 0x0, 0x25dfdbfc, {{}, {@void, @val={0x8}, @void}}, [@NL80211_ATTR_VENDOR_ID={0x8, 0xc3, 0x1374}, @NL80211_ATTR_VENDOR_SUBCMD={0x8, 0xc4, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000891}, 0x40000c0) 192.698767ms ago: executing program 2 (id=590): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00', r1}, 0x3d) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='hrtimer_start\x00', r2}, 0x18) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x8, 0x3}}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) 174.180457ms ago: executing program 4 (id=591): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x61, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r2}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='vm_unmapped_area\x00', r1, 0x0, 0xfffffffffffe0002}, 0x18) syz_io_uring_setup(0x362a, &(0x7f0000000040)={0x0, 0xb0da, 0x2, 0x2, 0x2f7}, &(0x7f0000000140), &(0x7f0000000180)) 150.417657ms ago: executing program 2 (id=592): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000500000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0}, &(0x7f0000000380), &(0x7f00000003c0)=r1}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x18) io_setup(0x1, &(0x7f00000012c0)=0x0) io_submit(r3, 0x1, &(0x7f0000000140)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x200000000004}]) 148.077797ms ago: executing program 3 (id=593): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000980)={0x18, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffc01, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001c80)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x62, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) r1 = socket$rds(0x15, 0x5, 0x0) bind$rds(r1, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r1, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10, 0x0, 0x0, &(0x7f0000000d00)=[@rdma_args={0x48, 0x114, 0x1, {{0x7, 0x4}, {0x0, 0x100000}, &(0x7f0000000c80)=[{&(0x7f0000002bc0)=""/4096, 0x1000}], 0x1, 0x41, 0x4}}], 0x48, 0x2000054}, 0x0) 128.614198ms ago: executing program 3 (id=594): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x3}, 0x18) socket(0x10, 0x3, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000380)={0x18, 0x7, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000e50003000000000085100000fcffffff250000001000000007000000faffffff95"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 102.702728ms ago: executing program 4 (id=595): openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000540), 0x84) mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0) perf_event_open(&(0x7f0000000400)={0x8, 0xa3, 0x0, 0x0, 0x0, 0x0, 0x82, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}, 0x8880}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x1e, 0x12, r1, 0x0) 88.371838ms ago: executing program 3 (id=597): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r2}, 0x10) io_setup(0x3, &(0x7f0000000340)) 19.18873ms ago: executing program 2 (id=598): r0 = socket$vsock_stream(0x28, 0x1, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000080)=0x2) connect$vsock_stream(r0, &(0x7f0000000440)={0x28, 0x0, 0x0, @local}, 0x10) shutdown(r0, 0x2) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000400)={0x10000000}) epoll_pwait(r1, &(0x7f0000000480)=[{}], 0x1, 0x7, 0x0, 0x0) 0s ago: executing program 2 (id=599): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000001a00000a8500000007000000c50000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) sendmsg$kcm(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x3e, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f903", 0x11}], 0x100000000000027b}, 0x0) write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb79100a6c52d922ba2a05dd42"], 0xfdef) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x90) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.10.55' (ED25519) to the list of known hosts. [ 33.366229][ T29] audit: type=1400 audit(1748914843.088:62): avc: denied { mounton } for pid=3306 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 33.367331][ T3306] cgroup: Unknown subsys name 'net' [ 33.388987][ T29] audit: type=1400 audit(1748914843.088:63): avc: denied { mount } for pid=3306 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 33.416440][ T29] audit: type=1400 audit(1748914843.118:64): avc: denied { unmount } for pid=3306 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 33.513244][ T3306] cgroup: Unknown subsys name 'cpuset' [ 33.519605][ T3306] cgroup: Unknown subsys name 'rlimit' [ 33.650962][ T29] audit: type=1400 audit(1748914843.368:65): avc: denied { setattr } for pid=3306 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 33.674378][ T29] audit: type=1400 audit(1748914843.368:66): avc: denied { create } for pid=3306 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 33.694897][ T29] audit: type=1400 audit(1748914843.378:67): avc: denied { write } for pid=3306 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 33.703910][ T3310] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 33.715288][ T29] audit: type=1400 audit(1748914843.378:68): avc: denied { read } for pid=3306 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 33.744199][ T29] audit: type=1400 audit(1748914843.388:69): avc: denied { mounton } for pid=3306 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 33.769050][ T29] audit: type=1400 audit(1748914843.388:70): avc: denied { mount } for pid=3306 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 Setting up swapspace version 1, size = 127995904 bytes [ 33.792446][ T29] audit: type=1400 audit(1748914843.448:71): avc: denied { relabelto } for pid=3310 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 33.821915][ T3306] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 35.602475][ T3319] chnl_net:caif_netlink_parms(): no params data found [ 35.629873][ T3322] chnl_net:caif_netlink_parms(): no params data found [ 35.690706][ T3319] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.697826][ T3319] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.705113][ T3319] bridge_slave_0: entered allmulticast mode [ 35.711589][ T3319] bridge_slave_0: entered promiscuous mode [ 35.739167][ T3319] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.746267][ T3319] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.753855][ T3319] bridge_slave_1: entered allmulticast mode [ 35.760619][ T3319] bridge_slave_1: entered promiscuous mode [ 35.781435][ T3323] chnl_net:caif_netlink_parms(): no params data found [ 35.803134][ T3317] chnl_net:caif_netlink_parms(): no params data found [ 35.815797][ T3319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.852129][ T3319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.866108][ T3316] chnl_net:caif_netlink_parms(): no params data found [ 35.874813][ T3322] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.881879][ T3322] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.889090][ T3322] bridge_slave_0: entered allmulticast mode [ 35.895618][ T3322] bridge_slave_0: entered promiscuous mode [ 35.912644][ T3319] team0: Port device team_slave_0 added [ 35.921544][ T3322] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.928638][ T3322] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.935820][ T3322] bridge_slave_1: entered allmulticast mode [ 35.942347][ T3322] bridge_slave_1: entered promiscuous mode [ 35.954604][ T3319] team0: Port device team_slave_1 added [ 36.006406][ T3322] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.022168][ T3319] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.029174][ T3319] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.055250][ T3319] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.066063][ T3323] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.073169][ T3323] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.080482][ T3323] bridge_slave_0: entered allmulticast mode [ 36.087026][ T3323] bridge_slave_0: entered promiscuous mode [ 36.094611][ T3322] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.110494][ T3317] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.117665][ T3317] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.124935][ T3317] bridge_slave_0: entered allmulticast mode [ 36.131545][ T3317] bridge_slave_0: entered promiscuous mode [ 36.138293][ T3319] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.145292][ T3319] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.171343][ T3319] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.182147][ T3323] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.189281][ T3323] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.196478][ T3323] bridge_slave_1: entered allmulticast mode [ 36.202813][ T3323] bridge_slave_1: entered promiscuous mode [ 36.217136][ T3317] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.224287][ T3317] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.231433][ T3317] bridge_slave_1: entered allmulticast mode [ 36.237953][ T3317] bridge_slave_1: entered promiscuous mode [ 36.267193][ T3322] team0: Port device team_slave_0 added [ 36.273740][ T3322] team0: Port device team_slave_1 added [ 36.286564][ T3317] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.305770][ T3316] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.312867][ T3316] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.320000][ T3316] bridge_slave_0: entered allmulticast mode [ 36.326454][ T3316] bridge_slave_0: entered promiscuous mode [ 36.338676][ T3322] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.345677][ T3322] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.371661][ T3322] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.383521][ T3317] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.393794][ T3323] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.404212][ T3323] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.417927][ T3316] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.425124][ T3316] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.432335][ T3316] bridge_slave_1: entered allmulticast mode [ 36.438810][ T3316] bridge_slave_1: entered promiscuous mode [ 36.450360][ T3322] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.457384][ T3322] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.483441][ T3322] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.526134][ T3319] hsr_slave_0: entered promiscuous mode [ 36.532098][ T3319] hsr_slave_1: entered promiscuous mode [ 36.546552][ T3316] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.562092][ T3317] team0: Port device team_slave_0 added [ 36.568524][ T3323] team0: Port device team_slave_0 added [ 36.575093][ T3323] team0: Port device team_slave_1 added [ 36.591957][ T3322] hsr_slave_0: entered promiscuous mode [ 36.598139][ T3322] hsr_slave_1: entered promiscuous mode [ 36.604062][ T3322] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 36.611691][ T3322] Cannot create hsr debugfs directory [ 36.618468][ T3316] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.628071][ T3317] team0: Port device team_slave_1 added [ 36.666613][ T3323] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.673755][ T3323] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.699723][ T3323] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.710913][ T3323] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.717906][ T3323] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.743876][ T3323] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.760240][ T3317] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.767215][ T3317] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.793194][ T3317] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.822577][ T3316] team0: Port device team_slave_0 added [ 36.828547][ T3317] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.835534][ T3317] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.861616][ T3317] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.884831][ T3323] hsr_slave_0: entered promiscuous mode [ 36.890918][ T3323] hsr_slave_1: entered promiscuous mode [ 36.896815][ T3323] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 36.904471][ T3323] Cannot create hsr debugfs directory [ 36.910643][ T3316] team0: Port device team_slave_1 added [ 36.968058][ T3316] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.975059][ T3316] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.001151][ T3316] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 37.019275][ T3317] hsr_slave_0: entered promiscuous mode [ 37.025366][ T3317] hsr_slave_1: entered promiscuous mode [ 37.031125][ T3317] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 37.038756][ T3317] Cannot create hsr debugfs directory [ 37.044490][ T3316] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 37.051446][ T3316] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 37.077398][ T3316] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.144872][ T3316] hsr_slave_0: entered promiscuous mode [ 37.150901][ T3316] hsr_slave_1: entered promiscuous mode [ 37.156735][ T3316] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 37.164347][ T3316] Cannot create hsr debugfs directory [ 37.247080][ T3319] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 37.258084][ T3319] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 37.269041][ T3319] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 37.294476][ T3319] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 37.330434][ T3322] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 37.339343][ T3322] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 37.348002][ T3322] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 37.357080][ T3322] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 37.385669][ T3323] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 37.395851][ T3323] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 37.416070][ T3323] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 37.425085][ T3323] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 37.460839][ T3316] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 37.469440][ T3316] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 37.479313][ T3316] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 37.497073][ T3316] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 37.527751][ T3317] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 37.544581][ T3317] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 37.553648][ T3317] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 37.564832][ T3319] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.575182][ T3317] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 37.591303][ T3322] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.611090][ T3319] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.631689][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.638815][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.654977][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.662205][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.683573][ T3316] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.693155][ T3323] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.701130][ T3322] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.719995][ T3316] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.734034][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.741136][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.756672][ T3323] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.764825][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.771892][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.780310][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.787453][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.814242][ T373] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.821514][ T373] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.833905][ T373] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.841013][ T373] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.849819][ T373] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.856883][ T373] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.905724][ T3317] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.917430][ T3316] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 37.937684][ T3317] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.984659][ T51] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.991913][ T51] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.006897][ T51] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.014034][ T51] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.046256][ T3323] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.070863][ T3322] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.107733][ T3316] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.118953][ T3319] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.158324][ T3317] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.309870][ T3316] veth0_vlan: entered promiscuous mode [ 38.318270][ T3319] veth0_vlan: entered promiscuous mode [ 38.337073][ T3319] veth1_vlan: entered promiscuous mode [ 38.366189][ T3317] veth0_vlan: entered promiscuous mode [ 38.371909][ T3323] veth0_vlan: entered promiscuous mode [ 38.378687][ T3322] veth0_vlan: entered promiscuous mode [ 38.386585][ T3316] veth1_vlan: entered promiscuous mode [ 38.395728][ T3322] veth1_vlan: entered promiscuous mode [ 38.403761][ T3317] veth1_vlan: entered promiscuous mode [ 38.414783][ T3323] veth1_vlan: entered promiscuous mode [ 38.435445][ T3319] veth0_macvtap: entered promiscuous mode [ 38.451442][ T3319] veth1_macvtap: entered promiscuous mode [ 38.458122][ T3316] veth0_macvtap: entered promiscuous mode [ 38.465411][ T3316] veth1_macvtap: entered promiscuous mode [ 38.477451][ T3317] veth0_macvtap: entered promiscuous mode [ 38.488964][ T3322] veth0_macvtap: entered promiscuous mode [ 38.497082][ T3322] veth1_macvtap: entered promiscuous mode [ 38.505091][ T3316] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.512652][ T3317] veth1_macvtap: entered promiscuous mode [ 38.524496][ T3323] veth0_macvtap: entered promiscuous mode [ 38.533177][ T3323] veth1_macvtap: entered promiscuous mode [ 38.545817][ T3322] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.558593][ T3319] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.568352][ T3319] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.576843][ T3316] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.585697][ T3316] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.594582][ T3316] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.603386][ T3316] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.612125][ T3316] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.628982][ T3323] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.638120][ T3319] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.647059][ T3319] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.655803][ T3319] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.666962][ T3319] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.680772][ T3317] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.693448][ T3322] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.701343][ T3323] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.721178][ T3317] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.731394][ T29] kauditd_printk_skb: 9 callbacks suppressed [ 38.731394][ T3323] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.731411][ T29] audit: type=1400 audit(1748914848.448:81): avc: denied { mounton } for pid=3319 comm="syz-executor" path="/root/syzkaller.ZpHhLm/syz-tmp" dev="sda1" ino=2041 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 38.737457][ T3323] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.746215][ T29] audit: type=1400 audit(1748914848.448:82): avc: denied { mount } for pid=3319 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 38.770401][ T3323] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.779100][ T29] audit: type=1400 audit(1748914848.448:83): avc: denied { mounton } for pid=3319 comm="syz-executor" path="/root/syzkaller.ZpHhLm/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 38.800976][ T3323] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.809617][ T29] audit: type=1400 audit(1748914848.448:84): avc: denied { mount } for pid=3319 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 38.865329][ T29] audit: type=1400 audit(1748914848.448:85): avc: denied { mounton } for pid=3319 comm="syz-executor" path="/root/syzkaller.ZpHhLm/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 38.891964][ T29] audit: type=1400 audit(1748914848.448:86): avc: denied { mounton } for pid=3319 comm="syz-executor" path="/root/syzkaller.ZpHhLm/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3897 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 38.919340][ T29] audit: type=1400 audit(1748914848.448:87): avc: denied { unmount } for pid=3319 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 38.943001][ T29] audit: type=1400 audit(1748914848.658:88): avc: denied { mounton } for pid=3319 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=536 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 38.965897][ T29] audit: type=1400 audit(1748914848.668:89): avc: denied { mount } for pid=3319 comm="syz-executor" name="/" dev="gadgetfs" ino=3907 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 38.991841][ T3317] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.000667][ T3317] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.009464][ T3317] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.018196][ T3317] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.029608][ T3319] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 39.041639][ T3322] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.053015][ T3322] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.061733][ T3322] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.070538][ T3322] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 39.108516][ T29] audit: type=1400 audit(1748914848.828:90): avc: denied { read write } for pid=3316 comm="syz-executor" name="loop3" dev="devtmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 39.190116][ T3459] vhci_hcd: invalid port number 96 [ 39.195336][ T3459] vhci_hcd: default hub control req: 0000 vfffc i0060 l0 [ 39.204463][ T3466] loop4: detected capacity change from 0 to 1024 [ 39.232466][ T3466] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 39.285382][ T3474] loop3: detected capacity change from 0 to 512 [ 39.292015][ T3474] ======================================================= [ 39.292015][ T3474] WARNING: The mand mount option has been deprecated and [ 39.292015][ T3474] and is ignored by this kernel. Remove the mand [ 39.292015][ T3474] option from the mount to silence this warning. [ 39.292015][ T3474] ======================================================= [ 39.302523][ T3466] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.373809][ T3474] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 39.394562][ T3479] Illegal XDP return value 4294967274 on prog (id 6) dev syz_tun, expect packet loss! [ 39.406860][ T3474] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 39.464098][ T3474] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 39.503376][ T3466] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 39.523310][ T3466] EXT4-fs error (device loop4): ext4_check_all_de:659: inode #12: block 7: comm syz.4.5: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 39.524035][ T3490] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10'. [ 39.592886][ T3490] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.600265][ T3490] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.632597][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.770922][ T3501] netlink: 'syz.0.16': attribute type 4 has an invalid length. [ 39.849190][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.891608][ T3513] loop1: detected capacity change from 0 to 2048 [ 39.948175][ T3519] bridge0: entered promiscuous mode [ 39.953663][ T3519] macvlan2: entered promiscuous mode [ 39.960917][ T3519] bridge0: port 3(macvlan2) entered blocking state [ 39.967657][ T3519] bridge0: port 3(macvlan2) entered disabled state [ 39.986076][ T3514] loop1: p2 p3 < > p4 < p5 > [ 39.990807][ T3514] loop1: partition table partially beyond EOD, truncated [ 40.006572][ T3519] macvlan2: entered allmulticast mode [ 40.011988][ T3519] bridge0: entered allmulticast mode [ 40.022199][ T3519] macvlan2: left allmulticast mode [ 40.027468][ T3519] bridge0: left allmulticast mode [ 40.032931][ T3514] loop1: p3 start 4284289 is beyond EOD, truncated [ 40.042711][ T3519] bridge0: left promiscuous mode [ 40.049031][ T3513] loop1: p2 p3 < > p4 < p5 > [ 40.053864][ T3513] loop1: partition table partially beyond EOD, truncated [ 40.076230][ T3513] loop1: p3 start 4284289 is beyond EOD, truncated [ 40.083131][ T3529] loop4: detected capacity change from 0 to 128 [ 40.089557][ T3527] loop3: detected capacity change from 0 to 764 [ 40.127283][ T3529] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 40.188962][ T3529] ext4 filesystem being mounted at /5/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 40.245317][ T3526] Symlink component flag not implemented [ 40.262077][ T3526] Symlink component flag not implemented (7) [ 40.312509][ T3533] Falling back ldisc for ttyS3. [ 40.337467][ T3307] udevd[3307]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 40.338528][ T3515] udevd[3515]: inotify_add_watch(7, /dev/loop1p5, 10) failed: No such file or directory [ 40.354398][ T3309] udevd[3309]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory [ 40.381612][ T3529] EXT4-fs error (device loop4): dx_make_map:1296: inode #2: block 20: comm syz.4.28: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1 [ 40.410455][ T3543] netlink: 4 bytes leftover after parsing attributes in process `syz.1.32'. [ 40.492847][ T3529] EXT4-fs error (device loop4) in do_split:2029: Corrupt filesystem [ 40.535180][ T3549] EXT4-fs error (device loop4): dx_make_map:1296: inode #2: block 20: comm syz.4.28: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1 [ 40.572909][ T3560] netlink: 12 bytes leftover after parsing attributes in process `syz.2.35'. [ 40.587382][ T3549] EXT4-fs error (device loop4) in do_split:2029: Corrupt filesystem [ 40.666498][ T3323] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 40.699727][ T3571] smc: net device bond0 applied user defined pnetid SYZ2 [ 40.722958][ T3571] smc: net device bond0 erased user defined pnetid SYZ2 [ 40.752520][ T3580] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 40.801285][ T3586] netlink: 404 bytes leftover after parsing attributes in process `syz.4.43'. [ 40.824363][ T3588] loop2: detected capacity change from 0 to 512 [ 40.861083][ T3592] netlink: 24 bytes leftover after parsing attributes in process `syz.1.44'. [ 40.894167][ T3588] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.907993][ T3588] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 40.943340][ T3588] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 41.010887][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.089457][ T3617] loop4: detected capacity change from 0 to 512 [ 41.132767][ T3617] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 41.145553][ T3623] loop2: detected capacity change from 0 to 1024 [ 41.174101][ T3617] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 41.196759][ T3623] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 41.210469][ T3617] syz.4.57 (3617) used greatest stack depth: 10560 bytes left [ 41.235216][ T3615] SELinux: failed to load policy [ 41.246939][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.278368][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.425315][ T3654] netlink: 8 bytes leftover after parsing attributes in process `syz.1.69'. [ 41.457588][ T3657] loop2: detected capacity change from 0 to 512 [ 41.480898][ T3657] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.71: iget: bad i_size value: 38620345925642 [ 41.497564][ T3657] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.71: couldn't read orphan inode 15 (err -117) [ 41.512907][ T3657] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 41.610386][ T3650] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 41.631852][ T3650] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 41.660184][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.747567][ T3685] Zero length message leads to an empty skb [ 41.799847][ T3692] mmap: syz.1.87 (3692) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 41.844924][ T3696] veth0_vlan: entered allmulticast mode [ 41.880047][ T3696] veth0_vlan: left promiscuous mode [ 41.909530][ T3696] veth0_vlan: entered promiscuous mode [ 41.922714][ T3705] loop4: detected capacity change from 0 to 128 [ 41.929845][ T3705] FAT-fs (loop4): bogus number of reserved sectors [ 41.936490][ T3705] FAT-fs (loop4): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 41.945842][ T3705] FAT-fs (loop4): Can't find a valid FAT filesystem [ 41.980826][ T3707] process 'syz.0.94' launched './file0' with NULL argv: empty string added [ 42.135484][ T3735] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 42.584109][ C1] hrtimer: interrupt took 27643 ns [ 42.624377][ T3761] loop0: detected capacity change from 0 to 512 [ 42.646636][ T3761] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 42.659762][ T3761] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 42.706104][ T3761] EXT4-fs (loop0): 1 truncate cleaned up [ 42.712712][ T3761] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 42.763965][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.850509][ T3771] netlink: 28 bytes leftover after parsing attributes in process `syz.4.119'. [ 42.864324][ T3771] netem: change failed [ 43.000259][ T3783] SELinux: failed to load policy [ 43.005696][ T3791] vcan0: tx drop: invalid sa for name 0x0000000000000004 [ 43.027531][ T3788] vhci_hcd: default hub control req: 800f v0000 i0000 l31125 [ 43.055260][ T3795] xt_hashlimit: max too large, truncated to 1048576 [ 43.138196][ T3804] loop3: detected capacity change from 0 to 512 [ 43.147736][ T3808] program syz.1.138 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 43.185199][ T3804] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c19d, mo2=0002] [ 43.212794][ T3804] EXT4-fs error (device loop3): ext4_iget_extra_inode:5035: inode #15: comm syz.3.135: corrupted in-inode xattr: e_value size too large [ 43.227024][ T3804] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.135: couldn't read orphan inode 15 (err -117) [ 43.241432][ T3804] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 43.259722][ T3804] EXT4-fs error (device loop3): ext4_append:79: inode #2: comm syz.3.135: Logical block already allocated [ 43.290936][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.306813][ T3816] loop0: detected capacity change from 0 to 164 [ 43.344124][ T3816] syz.0.140: attempt to access beyond end of device [ 43.344124][ T3816] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 43.385911][ T3816] syz.0.140: attempt to access beyond end of device [ 43.385911][ T3816] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 43.410027][ T3818] loop3: detected capacity change from 0 to 512 [ 43.483335][ T3818] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 43.526104][ T3818] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm +}[@: invalid indirect mapped block 2683928664 (level 1) [ 43.555660][ T3818] EXT4-fs (loop3): Remounting filesystem read-only [ 43.562518][ T3818] EXT4-fs (loop3): 1 truncate cleaned up [ 43.576198][ T3818] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.648070][ T3825] loop1: detected capacity change from 0 to 2048 [ 43.679515][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.719496][ T3825] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 43.734167][ T29] kauditd_printk_skb: 251 callbacks suppressed [ 43.734181][ T29] audit: type=1400 audit(1748914853.458:342): avc: denied { bind } for pid=3833 comm="syz.3.148" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 43.781057][ T29] audit: type=1400 audit(1748914853.458:343): avc: denied { node_bind } for pid=3833 comm="syz.3.148" saddr=172.20.20.170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 43.809114][ T29] audit: type=1326 audit(1748914853.528:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3824 comm="syz.1.144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f121521e969 code=0x7ffc0000 [ 43.833687][ T29] audit: type=1326 audit(1748914853.528:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3824 comm="syz.1.144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=137 compat=0 ip=0x7f121521e969 code=0x7ffc0000 [ 43.857037][ T29] audit: type=1326 audit(1748914853.528:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3824 comm="syz.1.144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f121521e969 code=0x7ffc0000 [ 43.880605][ T29] audit: type=1326 audit(1748914853.588:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3824 comm="syz.1.144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f121521e969 code=0x7ffc0000 [ 43.923565][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 43.947984][ T3842] loop3: detected capacity change from 0 to 512 [ 43.960670][ T29] audit: type=1400 audit(1748914853.688:348): avc: denied { mounton } for pid=3841 comm="syz.3.151" path="/16/file0" dev="tmpfs" ino=103 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1 [ 43.988140][ T29] audit: type=1400 audit(1748914853.708:349): avc: denied { create } for pid=3845 comm="syz.1.152" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 44.033749][ T3842] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 44.043972][ T3842] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 44.053947][ T3842] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.151: Failed to acquire dquot type 1 [ 44.132371][ T3842] EXT4-fs (loop3): 1 truncate cleaned up [ 44.139435][ T3842] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 44.154530][ T3842] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 44.175590][ T3842] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.250509][ T3864] loop0: detected capacity change from 0 to 1024 [ 44.271572][ T3858] loop4: detected capacity change from 0 to 8192 [ 44.286636][ T3864] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 44.286919][ T3866] SELinux: Context system_u:object_r:scanner_device_t:s0 is not valid (left unmapped). [ 44.436815][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.483937][ T3885] loop4: detected capacity change from 0 to 128 [ 44.570517][ T3892] syz.4.168: attempt to access beyond end of device [ 44.570517][ T3892] loop4: rw=2049, sector=145, nr_sectors = 16 limit=128 [ 44.609681][ T3892] syz.4.168: attempt to access beyond end of device [ 44.609681][ T3892] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128 [ 44.624929][ T3892] syz.4.168: attempt to access beyond end of device [ 44.624929][ T3892] loop4: rw=2049, sector=185, nr_sectors = 8 limit=128 [ 44.638720][ T3892] syz.4.168: attempt to access beyond end of device [ 44.638720][ T3892] loop4: rw=2049, sector=201, nr_sectors = 8 limit=128 [ 44.652638][ T3892] syz.4.168: attempt to access beyond end of device [ 44.652638][ T3892] loop4: rw=2049, sector=217, nr_sectors = 8 limit=128 [ 44.681549][ T3892] syz.4.168: attempt to access beyond end of device [ 44.681549][ T3892] loop4: rw=2049, sector=233, nr_sectors = 8 limit=128 [ 44.700648][ T3896] loop3: detected capacity change from 0 to 128 [ 44.722804][ T3892] syz.4.168: attempt to access beyond end of device [ 44.722804][ T3892] loop4: rw=2049, sector=249, nr_sectors = 8 limit=128 [ 44.736657][ T3892] syz.4.168: attempt to access beyond end of device [ 44.736657][ T3892] loop4: rw=2049, sector=265, nr_sectors = 8 limit=128 [ 44.756764][ T3898] loop3: detected capacity change from 0 to 512 [ 44.765163][ T3898] EXT4-fs: Ignoring removed nomblk_io_submit option [ 44.771807][ T3898] EXT4-fs: Ignoring removed orlov option [ 44.797243][ T3898] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 44.819421][ T3898] ext4 filesystem being mounted at /22/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 44.940331][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.285426][ T3931] netlink: 'syz.4.190': attribute type 21 has an invalid length. [ 45.293371][ T3931] IPv6: NLM_F_CREATE should be specified when creating new route [ 45.418452][ T3944] loop4: detected capacity change from 0 to 164 [ 45.998156][ T4016] smc: net device bond0 applied user defined pnetid SYZ2 [ 46.040876][ T4016] smc: net device bond0 erased user defined pnetid SYZ2 [ 46.096644][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.104232][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.111742][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.121884][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.129333][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.136884][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.144394][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.151838][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.159335][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.166834][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.168085][ T4030] syz.2.237 uses obsolete (PF_INET,SOCK_PACKET) [ 46.174261][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.174289][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.195446][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.202953][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.211028][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.218533][ T3380] hid-generic 0006:0000:0000.0001: unknown main item tag 0x0 [ 46.246514][ T4034] loop4: detected capacity change from 0 to 1024 [ 46.266724][ T3380] hid-generic 0006:0000:0000.0001: hidraw0: VIRTUAL HID vffffff.00 Device [syz0] on syz1 [ 46.282689][ T4034] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.320284][ T4034] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.239: bg 0: block 88: padding at end of block bitmap is not set [ 46.374387][ T4035] fido_id[4035]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 46.394959][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.602507][ T4055] 9p: Unknown access argument ree: -22 [ 46.858231][ T4076] loop1: detected capacity change from 0 to 1024 [ 46.870385][ T4076] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 46.973621][ T4076] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 47.055172][ T4076] EXT4-fs error (device loop1): ext4_check_all_de:659: inode #12: block 7: comm syz.1.256: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 47.119848][ T4086] loop0: detected capacity change from 0 to 1024 [ 47.137242][ T4086] EXT4-fs: Ignoring removed oldalloc option [ 47.143514][ T4086] EXT4-fs: Ignoring removed orlov option [ 47.146513][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.180708][ T4086] EXT4-fs (loop0): stripe (1572) is not aligned with cluster size (16), stripe is disabled [ 47.234575][ T4086] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 47.248134][ T4096] loop4: detected capacity change from 0 to 164 [ 47.349465][ T4107] loop1: detected capacity change from 0 to 1024 [ 47.362614][ T4107] EXT4-fs: test_dummy_encryption option not supported [ 47.405764][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 47.533760][ T4126] netem: change failed [ 48.036309][ T4186] rdma_op ffff88811a4a0d80 conn xmit_rdma 0000000000000000 [ 48.102656][ T4157] program syz.1.283 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 48.121056][ T4196] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4196 comm=syz.0.297 [ 48.133669][ T4196] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4196 comm=syz.0.297 [ 48.281269][ T4218] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 48.293878][ T4218] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0' [ 48.746956][ T4249] program syz.2.314 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 49.147054][ T4299] netem: change failed [ 49.243128][ T4287] program syz.4.331 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 50.130586][ T4327] loop0: detected capacity change from 0 to 1024 [ 50.176984][ T4327] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.204457][ T4327] ext4 filesystem being mounted at /72/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 50.233725][ T4327] EXT4-fs error (device loop0): ext4_map_blocks:816: inode #15: block 3: comm syz.0.351: lblock 3 mapped to illegal pblock 3 (length 13) [ 50.257397][ T29] kauditd_printk_skb: 141 callbacks suppressed [ 50.257415][ T29] audit: type=1326 audit(1748914859.978:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4346 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6375fe969 code=0x7ffc0000 [ 50.262385][ T4327] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 13 with error 117 [ 50.263900][ T29] audit: type=1326 audit(1748914859.978:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4346 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc6375fe969 code=0x7ffc0000 [ 50.286979][ T4327] EXT4-fs (loop0): This should not happen!! Data will be lost [ 50.286979][ T4327] [ 50.336132][ T29] audit: type=1326 audit(1748914860.058:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4346 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6375fe969 code=0x7ffc0000 [ 50.346707][ T12] nci: nci_add_new_protocol: the target found does not have the desired protocol [ 50.359545][ T29] audit: type=1326 audit(1748914860.058:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4346 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6375fe969 code=0x7ffc0000 [ 50.391957][ T29] audit: type=1326 audit(1748914860.058:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4346 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7fc6375fe969 code=0x7ffc0000 [ 50.415178][ T29] audit: type=1326 audit(1748914860.058:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4346 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6375fe969 code=0x7ffc0000 [ 50.438541][ T29] audit: type=1326 audit(1748914860.058:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4346 comm="syz.2.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc6375fe969 code=0x7ffc0000 [ 50.441563][ T4354] netlink: 'syz.2.359': attribute type 4 has an invalid length. [ 50.463174][ T29] audit: type=1400 audit(1748914860.148:498): avc: denied { map } for pid=4326 comm="syz.0.351" path="/72/file1/file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 50.469583][ T4354] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.359'. [ 50.492291][ T29] audit: type=1400 audit(1748914860.148:499): avc: denied { execute } for pid=4326 comm="syz.0.351" path="/72/file1/file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 50.526460][ T4355] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #15: block 3: comm syz.0.351: lblock 3 mapped to illegal pblock 3 (length 1) [ 50.540837][ T4355] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #15: block 3: comm syz.0.351: lblock 3 mapped to illegal pblock 3 (length 1) [ 50.560866][ T4355] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #15: block 3: comm syz.0.351: lblock 3 mapped to illegal pblock 3 (length 1) [ 50.576842][ T4355] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #15: block 3: comm syz.0.351: lblock 3 mapped to illegal pblock 3 (length 1) [ 50.591431][ T4355] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #15: block 3: comm syz.0.351: lblock 3 mapped to illegal pblock 3 (length 1) [ 50.607597][ T4355] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #15: block 3: comm syz.0.351: lblock 3 mapped to illegal pblock 3 (length 1) [ 50.637509][ T4326] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #15: block 3: comm syz.0.351: lblock 3 mapped to illegal pblock 3 (length 1) [ 50.655489][ T4365] netlink: 332 bytes leftover after parsing attributes in process `syz.4.363'. [ 50.666851][ T4326] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #15: block 3: comm syz.0.351: lblock 3 mapped to illegal pblock 3 (length 1) [ 50.687489][ T4355] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #15: block 3: comm syz.0.351: lblock 3 mapped to illegal pblock 3 (length 1) [ 50.702391][ T4366] netlink: 96 bytes leftover after parsing attributes in process `syz.2.362'. [ 50.714846][ T4368] loop3: detected capacity change from 0 to 512 [ 50.743479][ T4368] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002] [ 50.751702][ T4368] System zones: 0-2, 18-18, 34-34 [ 50.757936][ T4368] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.365: bg 0: block 248: padding at end of block bitmap is not set [ 50.772749][ T4368] Quota error (device loop3): write_blk: dquota write failed [ 50.780237][ T4368] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.365: Failed to acquire dquot type 1 [ 50.792202][ T4368] EXT4-fs (loop3): 1 truncate cleaned up [ 50.798760][ T4368] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.811456][ T4368] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 50.864943][ T4368] syz.3.365 (4368) used greatest stack depth: 9304 bytes left [ 50.903816][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.934056][ T51] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:3: Failed to release dquot type 1 [ 50.985842][ T3380] hid-generic FFFC:0003:0000.0002: unknown main item tag 0x0 [ 50.993433][ T3380] hid-generic FFFC:0003:0000.0002: unknown main item tag 0x0 [ 51.000839][ T3380] hid-generic FFFC:0003:0000.0002: unknown main item tag 0x0 [ 51.008271][ T3380] hid-generic FFFC:0003:0000.0002: unknown main item tag 0x0 [ 51.015704][ T3380] hid-generic FFFC:0003:0000.0002: unknown main item tag 0x0 [ 51.023130][ T3380] hid-generic FFFC:0003:0000.0002: unknown main item tag 0x0 [ 51.053561][ T3380] hid-generic FFFC:0003:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 51.105051][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.224172][ T4389] SELinux: failed to load policy [ 51.276304][ T4404] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.380'. [ 51.352021][ T4410] loop2: detected capacity change from 0 to 8192 [ 51.408543][ T4422] loop4: detected capacity change from 0 to 1024 [ 51.425539][ T4422] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 51.444736][ T4422] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 51.460283][ T4422] EXT4-fs error (device loop4): ext4_map_blocks:816: inode #15: block 3: comm syz.4.387: lblock 3 mapped to illegal pblock 3 (length 13) [ 51.476223][ T4422] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 13 with error 117 [ 51.488694][ T4422] EXT4-fs (loop4): This should not happen!! Data will be lost [ 51.488694][ T4422] [ 51.505086][ T4422] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #15: block 3: comm syz.4.387: lblock 3 mapped to illegal pblock 3 (length 1) [ 51.519643][ T4422] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #15: block 3: comm syz.4.387: lblock 3 mapped to illegal pblock 3 (length 1) [ 51.534033][ T4422] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #15: block 3: comm syz.4.387: lblock 3 mapped to illegal pblock 3 (length 1) [ 51.564401][ T4422] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #15: block 3: comm syz.4.387: lblock 3 mapped to illegal pblock 3 (length 1) [ 51.579276][ T4422] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #15: block 3: comm syz.4.387: lblock 3 mapped to illegal pblock 3 (length 1) [ 51.594834][ T4422] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #15: block 3: comm syz.4.387: lblock 3 mapped to illegal pblock 3 (length 1) [ 51.609098][ T4421] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #15: block 3: comm syz.4.387: lblock 3 mapped to illegal pblock 3 (length 1) [ 51.627389][ T4422] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #15: block 3: comm syz.4.387: lblock 3 mapped to illegal pblock 3 (length 1) [ 51.643950][ T4422] EXT4-fs error (device loop4): ext4_map_blocks:780: inode #15: block 3: comm syz.4.387: lblock 3 mapped to illegal pblock 3 (length 1) [ 52.285693][ T4441] netlink: 'syz.3.394': attribute type 4 has an invalid length. [ 52.293469][ T4441] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.394'. [ 52.375804][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.582005][ T4481] loop2: detected capacity change from 0 to 1024 [ 52.593035][ T4483] loop4: detected capacity change from 0 to 512 [ 52.603621][ T4483] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002] [ 52.604851][ T4481] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 52.611839][ T4483] System zones: 0-2, 18-18, 34-34 [ 52.625388][ T4481] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 52.629774][ T4483] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.410: bg 0: block 248: padding at end of block bitmap is not set [ 52.653947][ T4483] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.410: Failed to acquire dquot type 1 [ 52.667355][ T4483] EXT4-fs (loop4): 1 truncate cleaned up [ 52.673516][ T4483] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 52.687765][ T4483] ext4 filesystem being mounted at /93/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 52.690763][ T4481] EXT4-fs error (device loop2): ext4_map_blocks:816: inode #15: block 3: comm syz.2.409: lblock 3 mapped to illegal pblock 3 (length 13) [ 52.712599][ T4481] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 13 with error 117 [ 52.725274][ T4481] EXT4-fs (loop2): This should not happen!! Data will be lost [ 52.725274][ T4481] [ 52.744582][ T4481] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #15: block 3: comm syz.2.409: lblock 3 mapped to illegal pblock 3 (length 1) [ 52.759386][ T4481] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #15: block 3: comm syz.2.409: lblock 3 mapped to illegal pblock 3 (length 1) [ 52.760140][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.774409][ T37] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1 [ 52.784450][ T4481] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #15: block 3: comm syz.2.409: lblock 3 mapped to illegal pblock 3 (length 1) [ 52.809484][ T4481] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #15: block 3: comm syz.2.409: lblock 3 mapped to illegal pblock 3 (length 1) [ 52.823806][ T4481] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #15: block 3: comm syz.2.409: lblock 3 mapped to illegal pblock 3 (length 1) [ 52.838186][ T4479] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #15: block 3: comm syz.2.409: lblock 3 mapped to illegal pblock 3 (length 1) [ 52.853400][ T4479] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #15: block 3: comm syz.2.409: lblock 3 mapped to illegal pblock 3 (length 1) [ 52.867677][ T4479] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #15: block 3: comm syz.2.409: lblock 3 mapped to illegal pblock 3 (length 1) [ 52.882067][ T4481] EXT4-fs error (device loop2): ext4_map_blocks:780: inode #15: block 3: comm syz.2.409: lblock 3 mapped to illegal pblock 3 (length 1) [ 53.506178][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 53.541697][ T3380] hid-generic FFFC:0003:0000.0003: unknown main item tag 0x0 [ 53.549200][ T3380] hid-generic FFFC:0003:0000.0003: unknown main item tag 0x0 [ 53.556808][ T3380] hid-generic FFFC:0003:0000.0003: unknown main item tag 0x0 [ 53.564255][ T3380] hid-generic FFFC:0003:0000.0003: unknown main item tag 0x0 [ 53.571703][ T3380] hid-generic FFFC:0003:0000.0003: unknown main item tag 0x0 [ 53.579177][ T3380] hid-generic FFFC:0003:0000.0003: unknown main item tag 0x0 [ 53.588527][ T3380] hid-generic FFFC:0003:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 54.261573][ T4522] loop2: detected capacity change from 0 to 1024 [ 54.298027][ T4522] EXT4-fs: test_dummy_encryption option not supported [ 54.347830][ T4525] loop4: detected capacity change from 0 to 8192 [ 54.362108][ T4530] loop1: detected capacity change from 0 to 512 [ 54.383699][ T4530] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002] [ 54.391906][ T4530] System zones: 0-2, 18-18, 34-34 [ 54.404222][ T4530] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.425: bg 0: block 248: padding at end of block bitmap is not set [ 54.422180][ T4516] program syz.3.419 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 54.431893][ T4530] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.425: Failed to acquire dquot type 1 [ 54.444471][ T4530] EXT4-fs (loop1): 1 truncate cleaned up [ 54.450484][ T4530] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 54.463343][ T4530] ext4 filesystem being mounted at /88/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 54.492668][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 54.502987][ T37] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1 [ 54.587312][ T4539] netem: change failed [ 55.098157][ T3380] hid-generic FFFC:0003:0000.0004: unknown main item tag 0x0 [ 55.105771][ T3380] hid-generic FFFC:0003:0000.0004: unknown main item tag 0x0 [ 55.113421][ T3380] hid-generic FFFC:0003:0000.0004: unknown main item tag 0x0 [ 55.121187][ T3380] hid-generic FFFC:0003:0000.0004: unknown main item tag 0x0 [ 55.128620][ T3380] hid-generic FFFC:0003:0000.0004: unknown main item tag 0x0 [ 55.136069][ T3380] hid-generic FFFC:0003:0000.0004: unknown main item tag 0x0 [ 55.184043][ T3380] hid-generic FFFC:0003:0000.0004: hidraw0: HID v0.00 Device [syz1] on syz0 [ 55.207671][ T4558] loop3: detected capacity change from 0 to 164 [ 55.256878][ T4562] loop0: detected capacity change from 0 to 1024 [ 55.273816][ T4562] EXT4-fs: test_dummy_encryption option not supported [ 55.302888][ T4558] bio_check_eod: 107 callbacks suppressed [ 55.302904][ T4558] syz.3.440: attempt to access beyond end of device [ 55.302904][ T4558] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 55.326611][ T4558] syz.3.440: attempt to access beyond end of device [ 55.326611][ T4558] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 55.388509][ T4568] loop2: detected capacity change from 0 to 1024 [ 55.396158][ T4568] EXT4-fs: Ignoring removed oldalloc option [ 55.402399][ T4568] EXT4-fs: Ignoring removed orlov option [ 55.413504][ T4568] EXT4-fs (loop2): stripe (1572) is not aligned with cluster size (16), stripe is disabled [ 55.445100][ T4568] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 55.561652][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.610532][ T4564] program syz.0.442 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 55.709051][ T3393] hid-generic FFFC:0003:0000.0005: unknown main item tag 0x0 [ 55.716595][ T3393] hid-generic FFFC:0003:0000.0005: unknown main item tag 0x0 [ 55.724081][ T3393] hid-generic FFFC:0003:0000.0005: unknown main item tag 0x0 [ 55.731511][ T3393] hid-generic FFFC:0003:0000.0005: unknown main item tag 0x0 [ 55.738925][ T3393] hid-generic FFFC:0003:0000.0005: unknown main item tag 0x0 [ 55.746378][ T3393] hid-generic FFFC:0003:0000.0005: unknown main item tag 0x0 [ 55.768508][ T3393] hid-generic FFFC:0003:0000.0005: hidraw0: HID v0.00 Device [syz1] on syz0 [ 55.781170][ T4602] loop2: detected capacity change from 0 to 164 [ 55.804783][ T4602] syz.2.457: attempt to access beyond end of device [ 55.804783][ T4602] loop2: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 55.819709][ T4602] syz.2.457: attempt to access beyond end of device [ 55.819709][ T4602] loop2: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 55.840794][ T4606] loop4: detected capacity change from 0 to 1024 [ 55.848544][ T4606] EXT4-fs: Ignoring removed oldalloc option [ 55.858311][ T4606] EXT4-fs: Ignoring removed orlov option [ 55.864935][ T4606] EXT4-fs (loop4): stripe (1572) is not aligned with cluster size (16), stripe is disabled [ 55.875390][ T4601] loop1: detected capacity change from 0 to 8192 [ 55.884925][ T4606] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 56.072185][ T3323] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.101721][ T4618] loop0: detected capacity change from 0 to 1024 [ 56.109899][ T4618] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 56.137643][ T29] kauditd_printk_skb: 31 callbacks suppressed [ 56.137678][ T29] audit: type=1326 audit(1748914865.858:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4621 comm="syz.4.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc928c1e969 code=0x7ffc0000 [ 56.178059][ T29] audit: type=1326 audit(1748914865.858:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4621 comm="syz.4.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fc928c1e969 code=0x7ffc0000 [ 56.201319][ T29] audit: type=1326 audit(1748914865.858:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4621 comm="syz.4.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc928c1e969 code=0x7ffc0000 [ 56.207818][ T4618] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 56.224715][ T29] audit: type=1326 audit(1748914865.868:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4621 comm="syz.4.466" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc928c1e969 code=0x7ffc0000 [ 56.312595][ T4618] EXT4-fs error (device loop0): ext4_check_all_de:659: inode #12: block 7: comm syz.0.463: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 56.387015][ T3322] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.473997][ T4643] loop0: detected capacity change from 0 to 164 [ 56.499744][ T4643] syz.0.472: attempt to access beyond end of device [ 56.499744][ T4643] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 56.530274][ T4643] syz.0.472: attempt to access beyond end of device [ 56.530274][ T4643] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 56.698307][ T4650] loop3: detected capacity change from 0 to 1024 [ 56.708187][ T4650] EXT4-fs: Ignoring removed oldalloc option [ 56.716420][ T4650] EXT4-fs: Ignoring removed orlov option [ 56.722695][ T4650] EXT4-fs (loop3): stripe (1572) is not aligned with cluster size (16), stripe is disabled [ 56.755167][ T4650] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 56.795526][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.899419][ T29] audit: type=1326 audit(1748914866.618:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4662 comm="syz.3.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff87575e969 code=0x7ffc0000 [ 56.926871][ T4666] 9p: Unknown access argument ree: -22 [ 56.928391][ T29] audit: type=1326 audit(1748914866.618:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4662 comm="syz.3.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff87575e969 code=0x7ffc0000 [ 56.966802][ T29] audit: type=1326 audit(1748914866.688:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4662 comm="syz.3.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7ff87575e969 code=0x7ffc0000 [ 56.990095][ T29] audit: type=1326 audit(1748914866.688:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4662 comm="syz.3.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff87575e969 code=0x7ffc0000 [ 57.013489][ T29] audit: type=1326 audit(1748914866.688:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4662 comm="syz.3.479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff87575e969 code=0x7ffc0000 [ 57.049986][ T29] audit: type=1326 audit(1748914866.768:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4667 comm="syz.4.481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc928c1e969 code=0x7ffc0000 [ 57.102408][ T4670] loop3: detected capacity change from 0 to 1024 [ 57.109712][ T4670] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 57.148959][ T4670] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.166403][ T4670] EXT4-fs error (device loop3): ext4_check_all_de:659: inode #12: block 7: comm syz.3.482: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 57.205171][ T4682] loop1: detected capacity change from 0 to 164 [ 57.221304][ T4682] syz.1.486: attempt to access beyond end of device [ 57.221304][ T4682] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 57.235587][ T4682] syz.1.486: attempt to access beyond end of device [ 57.235587][ T4682] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 57.236878][ T3316] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.285597][ T4688] loop1: detected capacity change from 0 to 1024 [ 57.292587][ T4688] EXT4-fs: Ignoring removed oldalloc option [ 57.299145][ T4688] EXT4-fs: Ignoring removed orlov option [ 57.307482][ T4688] EXT4-fs (loop1): stripe (1572) is not aligned with cluster size (16), stripe is disabled [ 57.322830][ T4689] loop2: detected capacity change from 0 to 1024 [ 57.330129][ T4689] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 57.359014][ T4691] loop3: detected capacity change from 0 to 8192 [ 57.366134][ T4688] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 57.388969][ T4689] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.405788][ T4689] EXT4-fs error (device loop2): ext4_check_all_de:659: inode #12: block 7: comm syz.2.500: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 57.460031][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.481579][ T3317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.528671][ T4705] 9p: Unknown access argument ree: -22 [ 57.607831][ T4713] ref_ctr increment failed for inode: 0x236 offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff888109adae00 [ 57.637840][ T4717] loop2: detected capacity change from 0 to 1024 [ 57.645092][ T4712] uprobe: syz.0.502:4712 failed to unregister, leaking uprobe [ 57.664938][ T4717] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.680906][ T4717] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.503: bg 0: block 88: padding at end of block bitmap is not set [ 57.722648][ T3319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 58.055781][ T4726] loop4: detected capacity change from 0 to 1024 [ 58.063044][ T4726] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 58.094373][ T4726] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 58.114603][ T4730] loop2: detected capacity change from 0 to 1024 [ 58.121482][ T4730] EXT4-fs: Ignoring removed oldalloc option [ 58.127619][ T4730] EXT4-fs: Ignoring removed orlov option [ 58.136350][ T4730] EXT4-fs (loop2): stripe (1572) is not aligned with cluster size (16), stripe is disabled [ 58.149881][ T4726] EXT4-fs error (device loop4): ext4_check_all_de:659: inode #12: block 7: comm syz.4.506: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 58.190678][ T4730] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 58.337456][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.345019][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.352551][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.360783][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.368290][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.375700][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.383222][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.390624][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.398072][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.405492][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.413075][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.420507][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.427926][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.435338][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.452775][ T4750] loop4: detected capacity change from 0 to 1024 [ 58.459468][ T4750] EXT4-fs: Ignoring removed oldalloc option [ 58.467109][ T4750] EXT4-fs: Ignoring removed orlov option [ 58.476923][ T4750] EXT4-fs (loop4): stripe (1572) is not aligned with cluster size (16), stripe is disabled [ 58.488183][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.490580][ T4752] loop1: detected capacity change from 0 to 1024 [ 58.495614][ T3394] hid-generic 0006:0000:0000.0006: unknown main item tag 0x0 [ 58.496730][ T3394] hid-generic 0006:0000:0000.0006: hidraw0: VIRTUAL HID vffffff.00 Device [syz0] on syz1 [ 58.525255][ T4752] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.515: bg 0: block 88: padding at end of block bitmap is not set [ 58.618171][ T4761] loop0: detected capacity change from 0 to 1024 [ 58.625242][ T4761] EXT4-fs: Ignoring removed oldalloc option [ 58.631202][ T4761] EXT4-fs: Ignoring removed orlov option [ 58.640327][ T4761] EXT4-fs (loop0): stripe (1572) is not aligned with cluster size (16), stripe is disabled [ 58.651666][ T4766] ref_ctr increment failed for inode: 0x1df offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff88810c4ddc00 [ 58.664978][ T4765] uprobe: syz.3.518:4765 failed to unregister, leaking uprobe [ 58.717746][ T4775] loop1: detected capacity change from 0 to 1024 [ 58.727967][ T4775] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 58.766554][ T4775] EXT4-fs error (device loop1): ext4_check_all_de:659: inode #12: block 7: comm syz.1.522: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 58.883689][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.891121][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.898594][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.922336][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.929849][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.937284][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.944786][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.952188][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.959670][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.967100][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.974500][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.981915][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.989380][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 58.996793][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 59.016209][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 59.023667][ T36] hid-generic 0006:0000:0000.0007: unknown main item tag 0x0 [ 59.031835][ T36] hid-generic 0006:0000:0000.0007: hidraw0: VIRTUAL HID vffffff.00 Device [syz0] on syz1 [ 59.042647][ T4795] loop3: detected capacity change from 0 to 8192 [ 59.158251][ T4804] loop0: detected capacity change from 0 to 1024 [ 59.187452][ T4804] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.533: bg 0: block 88: padding at end of block bitmap is not set [ 59.256695][ T4820] loop0: detected capacity change from 0 to 1024 [ 59.263912][ T4820] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 59.391830][ T4820] EXT4-fs error (device loop0): ext4_check_all_de:659: inode #12: block 7: comm syz.0.541: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=124 fake=0 [ 59.998354][ T4894] ref_ctr increment failed for inode: 0x28b offset: 0x0 ref_ctr_offset: 0x82 of mm: 0xffff88810c4dae00 [ 60.020979][ T4891] uprobe: syz.0.575:4891 failed to unregister, leaking uprobe [ 60.253188][ T4915] loop1: detected capacity change from 0 to 8192 [ 60.522172][ T4937] ================================================================== [ 60.530304][ T4937] BUG: KCSAN: data-race in fat16_ent_put / fat_mirror_bhs [ 60.537443][ T4937] [ 60.539766][ T4937] write to 0xffff88810b4c6732 of 2 bytes by task 4915 on cpu 1: [ 60.547404][ T4937] fat16_ent_put+0x28/0x60 [ 60.551831][ T4937] fat_ent_write+0x69/0xe0 [ 60.556258][ T4937] fat_chain_add+0x15b/0x3f0 [ 60.560851][ T4937] fat_get_block+0x46c/0x5e0 [ 60.565458][ T4937] __block_write_begin_int+0x400/0xf90 [ 60.570925][ T4937] cont_write_begin+0x5fc/0x970 [ 60.575785][ T4937] fat_write_begin+0x4f/0xe0 [ 60.580402][ T4937] generic_perform_write+0x181/0x490 [ 60.585696][ T4937] __generic_file_write_iter+0x9e/0x120 [ 60.591259][ T4937] generic_file_write_iter+0x8d/0x2f0 [ 60.596646][ T4937] vfs_write+0x4a0/0x8e0 [ 60.600897][ T4937] ksys_write+0xda/0x1a0 [ 60.605170][ T4937] __x64_sys_write+0x40/0x50 [ 60.609779][ T4937] x64_sys_call+0x2cdd/0x2fb0 [ 60.614472][ T4937] do_syscall_64+0xd2/0x200 [ 60.619001][ T4937] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.624904][ T4937] [ 60.627229][ T4937] read to 0xffff88810b4c6600 of 512 bytes by task 4937 on cpu 0: [ 60.634953][ T4937] fat_mirror_bhs+0x1df/0x320 [ 60.639647][ T4937] fat_alloc_clusters+0x98b/0xa80 [ 60.644685][ T4937] fat_get_block+0x258/0x5e0 [ 60.649291][ T4937] __block_write_begin_int+0x400/0xf90 [ 60.654759][ T4937] cont_write_begin+0x5fc/0x970 [ 60.659623][ T4937] fat_write_begin+0x4f/0xe0 [ 60.664240][ T4937] generic_perform_write+0x181/0x490 [ 60.669574][ T4937] __generic_file_write_iter+0x9e/0x120 [ 60.675132][ T4937] generic_file_write_iter+0x8d/0x2f0 [ 60.680517][ T4937] aio_write+0x2e5/0x410 [ 60.684778][ T4937] io_submit_one+0xacd/0x11d0 [ 60.689470][ T4937] __se_sys_io_submit+0xfb/0x280 [ 60.694416][ T4937] __x64_sys_io_submit+0x43/0x50 [ 60.699363][ T4937] x64_sys_call+0xfc4/0x2fb0 [ 60.703967][ T4937] do_syscall_64+0xd2/0x200 [ 60.708491][ T4937] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 60.714394][ T4937] [ 60.716717][ T4937] Reported by Kernel Concurrency Sanitizer on: [ 60.722877][ T4937] CPU: 0 UID: 0 PID: 4937 Comm: syz.1.587 Not tainted 6.15.0-syzkaller-11121-gfe4281644c62 #0 PREEMPT(voluntary) [ 60.734863][ T4937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 60.744941][ T4937] ==================================================================