last executing test programs: 7.026647303s ago: executing program 3 (id=2279): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, 0x0, 0x20004040) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYRES64=r0], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kmem_cache_free\x00', r2, 0x0, 0x9}, 0x18) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x4, [@func={0x2, 0x0, 0x0, 0xc, 0x2}, @func_proto]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x34}, 0x20) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r3, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x1}, 0x90) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000500)={r4, 0xe0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, &(0x7f0000000340)=[{}], 0x8, 0x0, 0x0, 0x0, 0x0, 0x78, 0x8, 0xffffffb4, 0x0}}, 0x10) r5 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$SMC_PNETID_ADD(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000600)=ANY=[@ANYBLOB="040004ba", @ANYRES16=r5, @ANYBLOB="2000feffffff000000000200000014000200626f6e64300000000000000000000000140002006261746164765f736c6176655f300000"], 0x3c}}, 0x0) sendmsg$SMC_PNETID_DEL(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="270e28bd70000000000004070200"], 0x14}, 0x1, 0x40030000000000}, 0x4000) r6 = socket$inet_mptcp(0x2, 0x1, 0x106) setsockopt$inet_tcp_int(r6, 0x29, 0x8, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000cbffffff00000000000000008500000041000000850000005000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) unshare(0x2c020400) r8 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="8510000004000000950000000000000018000000000000000000000000000000950000000000000085100000fcffffff95"], &(0x7f00000000c0)='GPL\x00'}, 0x94) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000580)={r8, 0xe0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x200000000000014f, 0x1000000, &(0x7f0000001680)=[0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x0, 0x8, 0x0, 0x0}}, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000007c0)={r7, 0x0, 0x2100, 0x1, &(0x7f0000000680)="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", 0x0, 0x500, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) r9 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) r10 = syz_pidfd_open(r9, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r10, &(0x7f0000000000)={0x40000000}) syz_io_uring_setup(0x80088f, &(0x7f0000000140)={0x0, 0xaee2, 0x4, 0x2, 0xbfdffffc}, 0x0, 0x0) poll(&(0x7f0000000000), 0x20000000000000b5, 0x9) 5.845986138s ago: executing program 3 (id=2286): bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x18) r0 = io_uring_setup(0xad5, &(0x7f0000000100)={0x0, 0x0, 0x400, 0x0, 0x3d0}) close(r0) clock_nanosleep(0xfffffff2, 0x0, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe) 5.598182213s ago: executing program 3 (id=2289): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x50, r1, 0x1, 0x4, 0x1, {}, [@IPVS_CMD_ATTR_DAEMON={0x3c, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_MCAST_IFN={0x14, 0x2, 'vcan0\x00'}, @IPVS_DAEMON_ATTR_SYNC_ID={0x8}, @IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}, @IPVS_DAEMON_ATTR_MCAST_GROUP6={0x14, 0x6, @dev={0xfe, 0x80, '\x00', 0x38}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x48c1}, 0x0) 5.441288516s ago: executing program 3 (id=2290): syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) syz_usb_connect(0x6, 0x1fc, &(0x7f0000000080)=ANY=[@ANYBLOB="12015002b8005108101407a0683e010203010902ea01030e00300309040309027f54cc00090502040004040403800109661bede31b6d40ffd5a6457d3483a7c64a2cf09c6b30e3af"], 0x0) munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x5, 0x4, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x800000}, [@ldst={0x1, 0x0, 0x4, 0x0, 0x1, 0xb8}]}, &(0x7f0000000600)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_io_uring_setup(0x10278e, 0x0, 0x0, 0x0) syz_emit_vhci(&(0x7f0000000280)=ANY=[], 0x3a) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) connect$bt_l2cap(r4, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe) msync(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) r5 = getpid() syz_pidfd_open(r5, 0x0) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x210540) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'}) 3.8396507s ago: executing program 2 (id=2308): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=@ipv6_getroute={0x1c, 0x1a, 0x101, 0x70bd2c, 0x0, {0xa, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x9}}, 0x1c}}, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffffffffffffffff, 0x4}, 0x6) write$bt_hci(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="0000020008"], 0xe) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x40001e0, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x85, 0xfffffffb, 0x3}) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBMETA(r4, 0x4b63, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg(r5, &(0x7f00000000c0)={&(0x7f0000000280)=@ethernet={0x306}, 0x80, &(0x7f0000000040), 0x0, &(0x7f0000004180)=ANY=[@ANYBLOB="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"], 0x20e8}, 0x20000051) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r7 = dup(r6) ioperm(0x1, 0x81, 0x100) write$FUSE_NOTIFY_RETRIEVE(r7, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0), 0x40, 0x0) 2.663634194s ago: executing program 1 (id=2313): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='kfree\x00', r0}, 0x18) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r1, 0x40045402, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x8, &(0x7f00000034c0)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18) r3 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=0x0, &(0x7f0000000300)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}) io_uring_enter(r3, 0x47f9, 0x0, 0x0, 0x0, 0x0) readv(r1, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x20}], 0x1) 2.622834085s ago: executing program 2 (id=2314): syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYBLOB="a1ab00000000000000003200000008001781"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) 2.460800938s ago: executing program 2 (id=2316): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb85"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xeb, '\x00', 0x0, @tracing=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000800038004000380080005"], 0x3c}}, 0x0) 2.296875652s ago: executing program 2 (id=2318): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$inet6(0xa, 0x80002, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0xb, &(0x7f0000000100), 0x4) 2.136099486s ago: executing program 2 (id=2320): bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) r0 = io_uring_setup(0xad5, 0x0) close(r0) clock_nanosleep(0xfffffff2, 0x0, &(0x7f0000000000)={0x77359400}, 0xfffffffffffffffe) 2.046002467s ago: executing program 3 (id=2322): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=@ipv6_getroute={0x1c, 0x1a, 0x101, 0x70bd2c, 0x0, {0xa, 0x0, 0x0, 0x0, 0xfd, 0x0, 0x0, 0x9}}, 0x1c}}, 0x0) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffffffffffffffff, 0x4}, 0x6) write$bt_hci(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="0000020008"], 0xe) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x40001e0, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x85, 0xfffffffb, 0x3}) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBMETA(r4, 0x4b63, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg(r5, &(0x7f00000000c0)={&(0x7f0000000280)=@ethernet={0x306}, 0x80, &(0x7f0000000040), 0x0, &(0x7f0000004180)=ANY=[@ANYBLOB="10100000000000000a0100007f00000025486c595dcd93cae5b76e7c132a8bf84281dee373fc0c652515931553076a7aefe64e4d325452954d0ad21ce2116724d9d09f8cd2fd0e52b769e1ac5c26320843c49b2b592e62933f76877e4cdd1d19bcd423dec2538785eb79838a862eade652777820ba5839ff06bd28bd7109ef2cf2fcc24a596ed0a3ed5ff7264f787667a6d7e9a5181a0a738d628a886caaa0c13b65773a36676f753ede77e5a9af3f3b887851c61f213a738f3a21a2bae0422af01b5928a65efdc48c51613f740497de87629b53c53444be5c55aa35e025c88f44bc1d584f3c2cec6d5be503e88be67d9e4d5a3460aa051607079505ce21c65e98c07813ff3bbe4e380797b59598227320dfba457d0a0f7eb498cdfdf3429e61bfb4b9755e09b1220ff3359093878bc7436ee62a72950c8f971e23e37b829786559e0649bec7d7886257e8be7b6afcfa6c4dd67639d6dbf64cb5fe3760f29418d6b177831aa50fd593dce4709ce959a4b00f2f634fd42d560e08e5451af93056507d812c6bee5f08b1c960959885377e3b8839f38076db10c1449d73f239b7a16eb0e4230f10ae0415f882a3e273916bd0829f02f5243f12e95e798edf7bbe669dc1a61fb2f39659a4c63a1211d37450097cb7c5d0d1a39861877fe78eed7c464087bd8604726ba97f12463544efb4e1e7924e5d9086a68533c2a507f494b07bcc84f68fbdb9231f8ec57480e164f5cd5ec12bf0cb9755621d6b9a2670a3c8a8d573e24983359a410a14882eb9ad72fa1453cd4afbf8b46f40abf8aa4675b3465217b6d4aca0e6dd6b0c138abb4433b162abbf4a7f229fff9fd3a1a5f37bdd2bca7035d418d8dca307f88baf285a0eb960430bd450ae70f58c0159f89a27e29c258ff2a35f5b39526ca21d394c84731f3d9fcbb380bd83ac1383e543a7ffa9104fda150bf18ec8937aa2f1f9992542fb6609dc3d5172a3ee7a9c77cf80008c4e3ff36162557da92a8c6ce800bc8c6210dd16e26177ecf39c16cd84ab1c0000674cccc61034a07491f859aecf600555231d2a2dd5a10ee5f80b099ab3e0e5b1ef465fcc84c400fbe463aba74fb733d039f41d4b15b1f72db359af682f61248fe5e9b8e9d24ec85ce1b37faa0f2a0781500a71c7a87ec8f3f697b44a6953813cb6b631ab1c8628e421ca26afe1352cf25294ac4c167fb2b7ede40011e1ac81a3cc71dbbfbe853e71d7063788363e15eefd0b85b5b2df2857913bd4f57ff2c7bccd6d1ab969de01d17fe8c291ec7f26ef250a0bba65386cebd171908699bbe40bc9be43e8897b5846e504fb4261ada3fa165e25514fe2cd85154978d952ec2d3d19acdd8cf7e3614736ca5f0d14b8daa43d5d6f57b03682d3b83371b102f9ece3b38e5f424d50d7f5a46677621c31537f3bf086c047860fb136d695cca00817a7c3d3014d3de65012faf18eac7d2671508172e661c2a90412e542dd3986cb75996dfb9b3dfe084851d17994c27902d5749862a07ebaa4f261be69336638fda74ec2d7c8f8cb1ae9727308deea8f5908622448048f3ca32dad18e4702da376e6a8bfd78a3c09d0a2d245b35881f246a14f018d9dcb8a56daa08f42a15df8d906bdc470eecf39e7796961a6c403ae2c64c1d0203b65b4619270122be16cd861326c413dc1e066061e4956dd841b41ddef956d757d8d68ab1a57e6b9a5a135dd8acfc58693f96928be708c0ed42802adfae79e5cb7b2dda55456d4382357a73b9a76cacc5012b60c70d5405a51abfe876d0c20525912c30bd38408274cba0a1bdb64ce160592b1d54fa32bd8c78f66c54b120dcdb03f9faf8a3e8d97685d2d7db3c09075d348b640522f9e522bdef6132e857783ddfcb5eafbe5689efd3fde7a033dc16429b0b25a198359171702c73d52ca6cec049e99d900e17e7ca391ca740bf8a9831589543c9e1211c48cc0e4d647209cdc23a0ed01fd562cf51b88e217d68738ba76701a53b2bc540eedb088005b56c83637964d02db6f0116f02d5730691b7802cc57ebdc46b43b38dac3a204548501ee89d76019bd0c2d56ef66c7c380bb0749343c12a71df25d1e41dcdf4acc88da4a3c46d9927f4fac6104541ac969c855b8152191de76d43f96ca10d6cd2bc081d586b64a23f74146d0e0ea66e39236cb633be38e1b52b988046aad68ae16f1c2f46755747f5b65eca3b21a7c940364bfea5aa72300f7c109eca47c160722f01dffcc847e38140b6210042ed7e2f6e113d6c62b4d8cdfa04bdf011a7132fa3e2d48247037c20c4f59efe4b80bdee4159e6e3a4184eaebfbd30c2920b83cc58c6a8fe4d732584e8355effd138b5970b41b371921a83652cfd0c0b8958ab88b6fe9d83830140cb57125877525ad2f4e1d2e912e02b136754e78df017f875f938d647d9108fa198a5f98ac657e3988ac135c8b2b93a802eb02c086d7e2ad69138248a414bf93ed48ac35fe7b39b6e60891f8c919762d52fce1f57064b2807f8b39e9901eca82234f89ff2002a272093a6dfd42b6edbc696c4d1fcbeb22c7567800ab48f1a48ea97238722ea59f8bf27ddb7856edd17d33efe773c0ccb5c7767ba1c0769d374c7857cbfa2d434cb8b17eecbc6e128390ee0e5465b3bb03b545ef17346ce989372010e8c7979a0c354c97c85433dad64687653728217f4a7e56f1f2e34eadd9f10f2979933c6a569e6bfc55023ed79b188587edd680cdf326badee738f934ce0ca41bba6ece0096108df54cd31289eb8b2d8f0f883d893c6300f9ba0a332fc8dbb218f3cb1b71ccf492573c117907e645992b9c23256c4a5481a949f0802b1994a55917f8db0eb9f984f04b3cbf152e1246a99cbb22af033a113cd1c7305f677909c1fdf7e69ebbe3ea9a033cb6e809a7c9d88bc1dae3a4a6c78f3b5c871a16077a769aa40e32b2e648118049e085034bac9cd056b30a84ea577a5826b59cc763fd829c497715e67e303fd05ad6972e16c34c9661c43e1a1ae371ffc143245da688305524469e21e6487bba7a6f5077a489da98ec324502ba4c3e5abcbc884f56a1ec51dbdb3bfbde81bbb1dd3df5d1dae8d0336538b8805ec05b1a55cec255d42c90eafddaaea5d61d9bf2bdfe25815beb44669a70e871c90acc2294f882c1ad977de8ff6df5951b481698284475b4b3c7aeec00f43c2908b91fc1ccf651393e931d808b2038f8a3c535c4800aa1d44fe67429d7b071997284f3d92375f0293ac8b7cf2330485d33882f6b62f532109eee583addf866251b7777fe80cebee3223228713727581d2d53dbecc7871ac219f37d36207cf1e01cf9ca5a255e9f18f19358d2cfd2edc16bf2e873213f2bca195fde780cad2a9566096a286078a01a52654c4cb66366b02455506f427831e1c713d64f200f6965775f4927026b13df2117c24dc791d1d0f53827b6b0aa8d068246885f12a79003725a237c277a74414a31b3ca60a9857132dcac188868525344e280f69eb8dd64eac534cf5fa6875ca26bd30cfe357c1ebd60d321566fcfc84813cfa50a7eb773ec0d3af9e6d61d66c3dc4041286a4bda94050f21ffa39169bfc681f30058145fb282ac6ebeb5d9ad786ba1e2f7d747812667d1c7ecad617b57cad7400cad6dac5d2d43399e91be0ec3b6e124554ec55ab772b4897887b4037c4ece4b96a471ad9ed69dcb6cf3a1ae67720b75122f36ea640c44071a3a8db25f9b2f14f57ed627d3a8c4b0a380a7a4d4db5dd65eab690d80000ca7de498248e42bf10d269a080d77b391adf75c8e385b3dad7a5e52c24fad89df9307886f5f8bbee81901d216bb286f904d6c4d71f00305e2d2d7288e0e34b12a7d52bfa98a0596c7158f9ec49f55a4dc6e5cacc5f8db7537a43d3cdac3ad657faf3faf1e2ce67d04c03e4438366afcbb90dddfbe26693565aa80457a96f5a7be1836dba8f84f940fa67ae0ebaa9af02065f0c2f9659550b07eceaffdea7c4e756a6ce3373499bdd13c52e049108cf38a66c06e6e0e13d4b2d6ad024389f573c56c7e144671d671a2e1189177cd14d734807fc9c1f2979ace5a6cce9d1572d49b1dd50dc8f195dc9ce32584c8a86f57e6687c0a63c87a166a53453ddc09b0021326a5d69145932c153acfc5d08485f8ff8d759d2ca57a0c9c29347fb73561529f5834121ea82cd874cdf64f33de4978e304f1a7a160f2e490b8ebef9381ae11e3b18d98178b50e17eee7f01bdf4189fda8bf6f3dafcf051e37e79f54fe8f5a6141ee68d8e8c0bb2c558b4a6a15222f78d821b538e4044a8cacb5110142d6f92b26b3b6be5416cf29578521049ecf11823e692ab1df229035e704fff521d874608a9cd42153e4715474f37ab14e8b0b11ed410f440d9a06dc9d072cffe07716014e0d59037b622e279bd5465752f97306dab439b7b094e17b2cb4c646c0cd324f83423103381b9188eceb2812e4f981e425ad3afba405c37bf94bb6c06ef0f401ed315dd86bb9251577700b3ea3936f43cb2b864e554fc74506a88941f88f73981771429a1a9f3485832cda62c560cfe1e0c4cd6c0851b374e87fd2d3a97eb8d7ffd3e7f5900fb22f88536c216662972c18632343deb66adb8dd99e90f3ef52446b9d4783bbe27e15f0a188103c79c86530b7b75c6e9cab92c23aa76f64fdb028a940a8ab219fe2dc2cc9e68cb3d9dffe01fb9ad5ce9474ec46ca0e11f7d9d1c9676a53c362389f018ed0f139fa7c263b56456933bf1b37fba848b116fc24d2f605d842f212656a42d0714aa0669032cf0f2bf94b6a1eb878dfa03cefc6ad75548a387eb93ca9d5dbd2cac380e06fcf48ae8f61d76c9d169975c7eb06caa9e0d88af3d0ae354fe2e731274047d92e299a7de4283ec998f45270579433cdfadfb60bac6fed5bbc59f5669fc0062345f2bb90041d61c3943c1a2c5016bbb9e2aa81cf41914c75662b71a740bc5d5a9eed2f6fc08a247d31766753dc313cbc7693d99675dc47ad0187be787a26a6e9536f4b2bb56001eb5cbc30b9489d0b7651a3bdf881d991df2c23f862373dd553fc8bf067c3caceba4fd8ee5adbb31ea7a4e80b16db7d038accbc53d446e5ed5371c78a78c69803826756c6e92e35efc944dd6829bf2e41f47a378d76e2a2d6392b9dbb17bb0127066cf21707e1729d875fbb6982b5da5d622938000df0b4cbbed83fa3cdb4fa5ddbdcefcce0d2cfe56954d049d572b0c5bbede19b8ce0893981c5cbce299a37de483c1c7fee5e1730beef2f77a7d6e793a0f7b09027c6aef73d40f1aa7a356420823d3786aa3cd680c3559585fdd117557d551d19055472fba53bd6d02f0a3d455238d214cd5e011b5e4ea0ca50bda8e5dd9246ede76f0ad4c01bba5ef51cb4219764569e6701bc2f365ceb76cc6e5f8a912fe23f6d83ab626c46438482b5ede1f382910c68450ae7541cd48bd45fb95ace7c7f6141c70d29814ec0f07e4a2f4bc9e5a83a2d72e7e9cca5c62317c05a53e5f08d4778713e725981aa0e1fe10b9cdea00d09c82e5207d3f944370bc06632c6e9391ed0ee7e3667574dbd551d8b98f1d7158eda0c02aca590a1971e21785c867ade7eadd21cba518f90269f3ea67fd0f3d999d44e07855e64cbc1966c9c5a43a28eecf1290e7dd0e1be3e93911241b25960903054b675a4a2a58be2f8fea0da58191a516dbdc6f0929e34156fb873e293fe92e0f06b3da5860461c40fa872853510033c1d95ea4987e91ebe78fc727ed1e4c7358b92d8cfafd1c5fb650a1fedf169bd2e2707df6539087b8ae9d0131edd3a1e9f843f555516c812d6140253481ef4484d24a26576313c344c5e8101000000000000011000000030000000151867665a81cc4d41a420a44429c13d2bf0e1e887d245b092313680057cb4d3fd4f928ff972dab8f2987f410603b6045ff9bbfac69f1082afd783fa93fd15eb4f626498c2111665ae3ae9d5bfe9662e6d1b1a6da6250ab3dd31c79ce3b1d5ff2ee7c9e5cd70aafa1881408c871430b0fc2fe38ca78392b735c986de73c685dd9c4b30f46dfe847aea697e90f520655de4566330dd46ca7dba24f9ed1143172bd0ec63a6c6257451d42f8b737a29fd0361542dfc0bede0be91b4fe61434e54d978ff80f5961c9d6a3f621c9de482c019c14a5bfb5f858c4d157803fa04b7db24fabf065ca23f4d783bf64f73128fe4912bf6f71d1369549c1a33b1965e3ff0b4270b9cf1f54461b8d322cb224847b3d55a641d841a7c2930a3e00b225063501e18a2bd503802736592d19eca3b77e90b1781c2587ddb766d5a0ef0c44bed57c2d8dbce1ba4115d9cf201195af7bd8e54bc3fe0aeb81deafc0de8585cbd99b60be49022eab80a0afb4124aa38db561b57993cf7aaf15a4f4af712597ede9ee83a05232bb3e2ea5a8bf044aa654cba2ded2b49a04e8006e05b8079337aa391c605ff7b6484b929dd455c28c2dbf9cba496bc077b925d4606683b6e03c97aff8861cf32fa9a986621933d8ea6276fc12f4687a7932217e7cef6dacfa261445a2772bf4d2d44ea006fe4662fc961b7dbb86dc32ec466051621d166ced74fee40357aa58dbaf6c585ee99ac2d6fcf3c3879889d45ca05fe67c333adaa5846c5111753b7106f728e2a5a1a9a511e323a2fd88926943d97205b11409fb171230990ccffc32a57d65ad1239561a24c2566b163990f1d282cafcaad9270b54e9c4ea15d936d13a63b30846b3c902e8cac767ed6e1fcd688aabcfdbaad2c87b4bfa5803a08972bccf12ddc1341e376535f7284934823b12de243036cfa53843f3e6252956d4f8fe2626f966c9e966a4ef36409b0331109d91aa9b3edba8713b5a69dcfbad38e85ed491308301ef98bea8addbba07481b2bf921e2b1d576cb45d29edf59ebb91b8ac01209c52b96049609781b9a80bc9128e0a9bb47e1a09600cdab4cef7895a36d59a8b7977f600e2425179db53a6ded389c6d4a634804eaa8eb31d9101f2782e3b60228bd1f2a5ba384cc9953ae8ae031bcf081a777f92ae5b12fa1554d3482ce0dfd67dc35d46ef3483a2fe21e8e6ca476b3fbf6d3dc913489a5567658a949c0f2d71018370c53be786d40276a8077a97c0b769c50f1cab50ed1fd68cef94ba36c0bd30635d7ecb41f0379e8b418a69844acc94396d40e43aaf3cca577c13f1dcc203a0905efb7cdf26ebe0b741ad303eaa704a926a76fec6fc9d1a15a4d343f49114b4af2eef315c910ca92744007620de935253372142fac929c5f5a5a7ad66a27c68b71d9c072999d41bd2b9f532072c0810f7e322a3c4043957bf97873da737247909ca42cc3c06965965b380d5d932e081e1a35404abcd50f24d22d9c96e122cf649620ef4d1fe743ce7999a1b404347e182acc2582b8c96f107ea25db4805cf67feed9f5c0002fea28328021c82f5f5f85f2a1c2e2f12d3e878c776a1b10ce12e49195b28e284d2deeff2d05ea1fd953445211b2d82aca7fb662dc866fd25eb01745f602add9b1cf86fb383c251571bde80f30eeffe5b80f48e5e7bd24fdf1be0299b1f8d09a150a05356894c2e7c9ca13301143a091dc849742465436b7f2eeb872299039b4d6b63fc127b5bfeb19ecf51dba693e1021136a1ce7fdd774ebaa69436bd84926d5dbd0e1966c59fa9b5e9631a91db358bfc79792249e7a466c274af8e5d6197280df98ad0a1604850eb022380edf872c9d6513ce4397e1eec4b1090db2f4e9f89790176ced5995b7c4d4a5da6265c2ecff412e87942461c60efaaaae2f622ffbd363f0cd10ca3d5e3ca3d81f84dac36c4d1e62bdd6ee7a70e7f6dee501c5e7f98fe278f479af06885b325be97c3e9ec0015e4c168111bbec4896736faeb536a5c31d2d40430d4260530627106fdbb4dc7b071cba7d0649227d4ef2bc7e243739159b2ed7518b34d8f8e792df2be58275f08c63af7f288699f8e2022084cfbc0ed104ee17baefd0412d8f3ea93ddf9e0bb13f84380cca21cabe1f21cd0a6f8842890ac883c27f41843e2e413d51ae823df37a539221b4397934a46385e8760f2217ca3bb1652788224b154ef267d246e2442239e5e2495f15d059a3112b23a897f72fda54d6a5a5ca24e9e47c21e2a17b95f6ea71e7c3c3bd7e50457f9bd4ff602dbc6dcedbb49622481d78dcd96ba372904f5d6840eb3eafa5cc407c4c489a2dd2e3799bcb3381a879051114254c82bc09b3b4a59010912958bfc97bd9c95e8604cfd7e6b73615f06b61c14094306dff15d49ccf9df78e9f56d2f4010630dbe4c7a3399cdb4536a9820240937e601564779c27a5426d9c03eadd792892ba0dd0a3de8b90b569485fed3c3413d25dfa868d8767cb9e29c12ff244d534aceab950da383abc7532e09387a62f52bc09554151d2f0af41e67d324341c7f23621489847f8b0bb27e39b024448d575c98907eca6ae0d82069cde7b1003887783a1861d9884e3609ba1357902c6775d7b6933caaa614cc151ad1a90748e2c4f546b08765765d881de41bd5f1b1481ee9c4e2dbe27c54f916c55fb034993165eb3f2de235128fd687f45704c60c8044e5bd3753892e5b2bd33ac22455a8213c4090e44194c2020a2fe26c756fdfd9a2be19bb65dc733576c0a18fd24eb150ff1a3c32b416305a1ad9adb55ca432ef278dbc99d280229610f8a56b61da061e74259665aa546ef91a15549f5f73546c6f566307a0e2ef0f40da1715691f660abe2c90803bda4bac8aad9e18a14351a55450f61c73457f7f2b7c3bf545de17a63ad76f3436adc7faa423b75be751ad520f3d7b9973824aba830e3ad7d93e546685a448697d9f195c6c771d7de0b0a4eadc55722ad385c1dbdf02bbd6cf399249482cd04abbdd573e50e41933159beb6cc7efed7a8fbf1aaf8f93517baf2037f9a6965ab7044896377b5b8f578461897857e30f9d522468a0edfb1df5b41a603d92f72046a6c676c398863d876462f3ffe35a6aa8ada1037920865c2e446a6437c3500e0fce31a34023220a13a454263f1e95c4636bb90c16ee298d98afb9683aa3ec176f76f0c7cc52c430cff2f23b1750c8edb236359fb9521b1e7724eb7ffc2a0bfc4b67fde06d6ab43b761c1f2b7a0401336081892408a66a26780e0e72a1b5b75eb458ed89094cefdfa68d75f220de20e8c57bb070425ecafd779a95294fdb2ade5893b17b03b5d992c0d6acf195a3ab73e0d2561586064f13306d150df8359b01072887097da32220b50f49ac876508b2245fd8fc62226f5bec5749a86a802a04770f0f4a2651fddd11aff3ad9f464f36d9817f396e57d529770894aa10f091fb6166ea629ebaa81e7585d081d615499a6cf15ceb32e8b367d69ebd45c8e53a0af21e140e9b970492321005b273218842d9f23a869c66f881ba483d858c2a5db3b6a88e48d29ed270925ebc39bd1061136ae8a55be39f8d9665259b136767f1bd3f56f84799d9448793d704b522ba33b75217eb23572e1c441dc4cd702a843033e776c1d34ed2541f831c30fd9a3f725131448b83aa01e24b31708384664674868319eab98a67a35a5cfafef198964e228f3b82b0bbeddcef0bd03ca7bfc2343bbfcb1df290339457b473ceba62493bb7744c97f634f9ef17768326efd76ed43cf8d217c39095e9bb334e04aba7980bc3780959b9dd249cd5a64ff45a23439eb8a4689acb95e575430a27ad8f766662bcdef738b631a1667eedaf1829ca02e584563a588b3c2701e68d727a1a0db8d2b49ab128c38e2ef880415257ff69197c4f5722887201f7e640162bd1b5ed6f29eb05db013f36ddbcc834bccee9dca440b7ca316f68f479cd14fac8298b06c1d2aa6ad06a7168103572cc0e4b4c7882c8437593bb3b5689382ff871eb0c9eb05893af9082d8c1686feccf3c846ba17646d1c8321c47d67e42b24e23bbaae53f3436bcc8a9940ba5861a8f486aeb1b9492899a7d2be02b7029530b1afbb6bbb0f594cd38ff26990a5a0c65c2e6607029a7f00051d5a13314d98594ec8557cdf85799b8a9426a126b836155c8774476d266545729745d7fa6b76dbc434199fddec78f8afa7e20c1e4f8a5b02f3595b5116769d55600b66963c22b8e375baf9ec2b519e42f36babd9b72ee4dd71ae4aa37bd49b3aa0b4f158c0c0a20350ff745b84045d0c65bf6c9d7115d48aac5e2a67f6a9b51e04d9fe9defc225e053ea4ff164eada9271ca251a7e1a3a3b81de27040ccd4b88edef6087cb26792c1b0ce6e00c59245b02a57924f1ae27836076726ec641f3c2de9557793e8f23b7b76418c1299b1ca6d8e0fe76404a7e7e9471312d6fc638db500437d502d29f193fd8d955f5be4a175a0831e37b43717c89b164afbf4ed1b8f1c3e08ed29dd2896c080afe27ad9348be57fa325600b062860ebae428eeab39362dcc1c5c5e05c44ca0feab504e59fe9ea303b4c95b33de8fb016c320a775aa8fd1e54564cbd297ed997eef0c8ebb66d4c35a0488b38beb527231e630fbdfc0bf2d740a756b62c4272c27cb5fb35531d53d863b251a24a248f233ad460f4be6b81f1dc4f2a2b84e62a3c59093c39928aa68f31504dd9d1763ef8a7d4aa94d801a248c9538e7f261dd22b9b52f56785d1426d2500fcf3c9eac129d7ea502cc4ce222c5f888f311e49ebe4d650d779ea3d6d10332961b3b7e6c7ce38072ce1ad371390d6646c1daf0a6542f5ccca63e329d67279b478ff6001745dd4e5715743f8367853a2c2e9284cd076105da2d1786cb0f71c4667bca8f2d529c6a38fa48d9e67dda668c9e919bd0261f6e6c4430b40d3bbede5e7be3eb1c3462ad2793ba36d377e7247e04528c72fe5a47d4e9f62cbca05a0649f90de39afa6b261c6d7a049cf9618be62a2700fef59b186e0d94d8c0e8f5a79ce1015340ce52b760cc8673e661532d408ac8e9396f9a4e30a526ec77ad37f2b100df59bbe8d01f263fbff2c9c53d6d4e4da4aca8bef5dc073018f93310fe3038bdc012d25cdcb6cfe8ec40ebc6fd44c41cc4641028c63489cb901812067e9210b2d28c9e206d2283020e310c4fc0360e5c7dbd43c826430ec296a37dd56ff2f56ba22edaf5459346a738affdc382a6b581cb78de3e49ea1ba39e622ee4ee5061a55aae90b4e86d5ffe891a2b443362738dfe2a05a0c063ab2cbd266f3df718f6b05648ffe9e7490a88eb09940cb1fe28dcf9775c4d62d274606f0b3a0a4ce9f61e1e92654c5350061e015034ee83d649bb769695fea92b74ee256bc87d873328b8b4930908f3c3c602565230bb1b4ca84d448862fab37aa50c05bca1b27eaf8c464e148a381bea9d8aa3c48f7b62014de5df6e09d1abf1c69be94fc4ae0ba23820e5924626ad016ac297edbd8e1586e3c3a8128503420db1aea9ac6e5fd073af26e1ec9038f325e8defd66559841a4ad34541b7fd1ceb332cfe9c7502913b2d9c6abe0610958ba06a8eb400b71ea73cf9283051e6473903d942753d38a58ba8da7e3a89a98f379409400b2880134fe209d4406c02e338d6f2c4b6b3cf03dbb5584729de95305ceda49d093f872703edad1a0fc9c2e46b3f048ba8971bca7f88e1fdc10bc3a9cbae8e89ff273c045791789a2eb99c6522d7d1ea4cc60a5b2e952144aa3e83169e225bcc70ce9a2e314d2ba5485ba29775f08f6b6648eee9a79c88b3861bcc4a7da0e6042d93488d7fcb4c8000000000000000c010000060000006064ea81abfa5bc87a6875f7c85e41a08648253af1cc5f21e487e23f1b0fff9b58d5b336b268e516e8e1d7baa3d938228f0dc18d11fd77101b5b2b8624cb0ecb74138d8af3a58c8e0f034ff1f4f3f2c2b28d8e9662007d73539e56e560ea1fa11f510aa1223190a45561fa1a42792ad51219d1ce1cd7520bf3d060cd7d45d1ac12b8079344b0f22ae3272e51b78f7e5d57bbfc274b18d342b6651096149171ed4e68676565a97cff7bf1e2c28d5b28f7b74cf3635d7a0000"], 0x20e8}, 0x20000051) pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r7 = dup(r6) ioperm(0x1, 0x81, 0x100) write$FUSE_NOTIFY_RETRIEVE(r7, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000001c0), 0x40, 0x0) 2.019600498s ago: executing program 0 (id=2323): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="160000000000000005000000ff"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x2000300, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 1.91606081s ago: executing program 0 (id=2324): bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000480)='kfree\x00', r1}, 0x10) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000280)={'veth0_macvtap\x00', &(0x7f0000000040)=@ethtool_sfeatures={0x3b, 0x1, [{0x200, 0x5}]}}) r2 = socket(0xa, 0x3, 0x87) ioctl$sock_inet6_tcp_SIOCINQ(r2, 0x890b, &(0x7f0000000000)) 1.880321991s ago: executing program 0 (id=2325): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x200000000000006}, 0x18) r2 = epoll_create1(0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000100)={0x20000014}) close_range(r2, r3, 0x0) 1.737308254s ago: executing program 1 (id=2326): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="e993a845821d5ebe3f13a36559ea0e81b1ac1982c6adcbfa18f0f462ed7794f2af30130c876cfe0a104b291f48cf31312156deea114386d280a7cb563b14f9716d"], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x7fff}, 0x18) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000004c0)='dctcp\x00', 0x6) bind$inet6(r1, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c) setsockopt$inet6_tcp_int(r1, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4) sendto$inet6(r1, &(0x7f0000000280)='2', 0x1, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0xffff, @loopback, 0x3}, 0x1c) setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f00000000c0)='nv\x00', 0x3) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) shutdown(r1, 0x1) 1.015992379s ago: executing program 1 (id=2327): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94) r1 = socket$inet6(0x10, 0x3, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r2}, 0x10) sendto$inet6(r1, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3b", 0x6c, 0x0, 0x0, 0x0) 1.015856309s ago: executing program 2 (id=2328): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb8500000043"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xeb, '\x00', 0x0, @tracing=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0700000000000000000005000000180001801400020073797a5f74756e0000000000000000000800038004000380080005"], 0x3c}}, 0x0) 921.732491ms ago: executing program 0 (id=2329): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0a000000040000000400000006"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff0000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000800000095"], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0}, &(0x7f0000000180), &(0x7f00000001c0)=r1}, 0x20) mq_getsetattr(0xffffffffffffffff, 0x0, 0x0) 891.844952ms ago: executing program 3 (id=2330): syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0) syz_usb_connect(0x6, 0x1fc, &(0x7f0000000080)=ANY=[@ANYBLOB="12015002b8005108101407a0683e010203010902ea01030e00300309040309027f54cc00090502040004040403800109661bede31b6d40ffd5a6457d3483a7c64a2cf09c6b30e3af"], 0x0) munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x5, 0x4, &(0x7f0000000580)=@framed={{0x18, 0x0, 0x0, 0x0, 0x800000}, [@ldst={0x1, 0x0, 0x4, 0x0, 0x1, 0xb8}]}, &(0x7f0000000600)='syzkaller\x00', 0x7, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) syz_io_uring_setup(0x10278e, 0x0, 0x0, 0x0) syz_emit_vhci(&(0x7f0000000280)=ANY=[], 0x3a) r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) connect$bt_l2cap(r4, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe) msync(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) r5 = getpid() syz_pidfd_open(r5, 0x0) r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x210540) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r6, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'}) 731.411465ms ago: executing program 1 (id=2332): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="160000000000000005000000ff"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r1, 0x2000300, 0xe, 0x0, &(0x7f0000000000)="63eced8e46dc3f0adf3389f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 587.914688ms ago: executing program 0 (id=2333): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18080000000000000000000000000002850000000f000000850000002a00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) write$nci(r0, 0x0, 0xfffffeea) 292.805194ms ago: executing program 0 (id=2334): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='kfree\x00', r0}, 0x18) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r1, 0x40045402, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, 0x0, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x8, &(0x7f00000034c0)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x18) r3 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=0x0, &(0x7f0000000300)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}) io_uring_enter(r3, 0x47f9, 0x0, 0x0, 0x0, 0x0) readv(r1, &(0x7f0000000200)=[{&(0x7f0000003140)=""/4096, 0x20}], 0x1) 273.971445ms ago: executing program 1 (id=2335): prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/locks\x00', 0x0, 0x0) pread64(r0, 0x0, 0x0, 0x697) 0s ago: executing program 1 (id=2336): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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") kernel console output (not intermixed with test programs): yz.2.1154: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 270.448415][ T9122] netlink: 'syz.0.1155': attribute type 10 has an invalid length. [ 270.506342][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 270.609309][ T9130] netlink: 'syz.2.1157': attribute type 10 has an invalid length. [ 270.618429][ T9130] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1157'. [ 270.973353][ T9145] netlink: 'syz.1.1163': attribute type 1 has an invalid length. [ 271.023270][ T9145] 8021q: adding VLAN 0 to HW filter on device bond1 [ 271.097778][ T9148] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1161'. [ 271.193574][ T9147] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1163'. [ 272.238895][ T9147] bond1 (unregistering): Released all slaves [ 272.289599][ T9160] netlink: 'syz.2.1166': attribute type 10 has an invalid length. [ 273.074579][ T9184] netlink: 'syz.3.1177': attribute type 10 has an invalid length. [ 273.104042][ T28] kauditd_printk_skb: 17 callbacks suppressed [ 273.104061][ T28] audit: type=1326 audit(1757497870.996:1168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9178 comm="syz.1.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 273.105873][ T28] audit: type=1326 audit(1757497871.006:1169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9178 comm="syz.1.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 273.106125][ T28] audit: type=1326 audit(1757497871.006:1170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9178 comm="syz.1.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 273.106405][ T28] audit: type=1326 audit(1757497871.006:1171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9178 comm="syz.1.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 273.107161][ T28] audit: type=1326 audit(1757497871.006:1172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9178 comm="syz.1.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 273.285551][ T28] audit: type=1326 audit(1757497871.186:1173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9178 comm="syz.1.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7effc652ada9 code=0x7ffc0000 [ 273.285608][ T28] audit: type=1326 audit(1757497871.186:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9178 comm="syz.1.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 273.285653][ T28] audit: type=1326 audit(1757497871.186:1175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9178 comm="syz.1.1176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 273.628456][ T9192] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1175'. [ 274.231401][ T9196] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1179'. [ 274.241176][ T9196] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1179'. [ 274.279784][ T9196] loop3: detected capacity change from 0 to 512 [ 274.320159][ T9196] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.1179: bad orphan inode 15 [ 274.337522][ T9204] loop1: detected capacity change from 0 to 128 [ 274.351689][ T9196] ext4_test_bit(bit=14, block=5) = 0 [ 274.363083][ T9204] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 274.376748][ T9196] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 274.382631][ T9204] ext4 filesystem being mounted at /309/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 274.508592][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 274.576998][ T5787] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 274.703515][ T9215] netlink: 'syz.1.1187': attribute type 10 has an invalid length. [ 275.446052][ T9226] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1191'. [ 276.215567][ T9230] loop3: detected capacity change from 0 to 1024 [ 276.223712][ T9230] EXT4-fs: Ignoring removed nobh option [ 276.230235][ T9230] EXT4-fs: Ignoring removed bh option [ 276.244116][ T9230] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 276.263816][ T9235] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1194'. [ 276.278709][ T9235] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1194'. [ 276.303289][ T9230] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 276.305927][ T9235] loop1: detected capacity change from 0 to 512 [ 276.338667][ T9235] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.1194: bad orphan inode 15 [ 276.358149][ T9235] ext4_test_bit(bit=14, block=5) = 0 [ 276.370125][ T9235] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 276.386021][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 276.505321][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 276.632198][ T9248] netlink: 'syz.3.1198': attribute type 10 has an invalid length. [ 276.811547][ T9254] netlink: 'syz.3.1200': attribute type 10 has an invalid length. [ 276.819854][ T9254] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1200'. [ 276.895857][ T9252] loop1: detected capacity change from 0 to 512 [ 276.904320][ T9252] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 276.920295][ T9252] EXT4-fs (loop1): 1 truncate cleaned up [ 276.931142][ T9252] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 276.960204][ T9258] loop3: detected capacity change from 0 to 512 [ 276.965927][ T9252] EXT4-fs error (device loop1): ext4_ext_precache:627: inode #15: comm syz.1.1199: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 277.081721][ T9258] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 277.081861][ T9258] ext4 filesystem being mounted at /288/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 277.100920][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 277.575794][ T9269] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1204'. [ 278.323966][ T1025] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 278.378880][ T9273] loop2: detected capacity change from 0 to 1024 [ 278.381051][ T1025] EXT4-fs (loop3): Delayed block allocation failed for inode 16 at logical offset 5 with max blocks 2048 with error 28 [ 278.386584][ T9273] EXT4-fs: Ignoring removed nobh option [ 278.404403][ T9273] EXT4-fs: Ignoring removed bh option [ 278.411123][ T9273] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 278.415753][ T1025] EXT4-fs (loop3): This should not happen!! Data will be lost [ 278.415753][ T1025] [ 278.444255][ T1025] EXT4-fs (loop3): Total free blocks count 0 [ 278.450571][ T1025] EXT4-fs (loop3): Free/Dirty block details [ 278.461237][ T1025] EXT4-fs (loop3): free_blocks=65280 [ 278.468261][ T1025] EXT4-fs (loop3): dirty_blocks=2265 [ 278.480646][ T9273] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 278.500636][ T1025] EXT4-fs (loop3): Block reservation details [ 278.508949][ T1025] EXT4-fs (loop3): i_reserved_data_blocks=2265 [ 278.589706][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 278.615786][ T9283] netlink: 'syz.0.1209': attribute type 10 has an invalid length. [ 278.656331][ T64] EXT4-fs (loop3): Delayed block allocation failed for inode 16 at logical offset 2054 with max blocks 216 with error 28 [ 279.715888][ T9293] netlink: 'syz.2.1211': attribute type 4 has an invalid length. [ 279.725000][ T9295] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1206'. [ 279.734455][ T9295] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1206'. [ 279.763463][ T9295] loop3: detected capacity change from 0 to 512 [ 279.786327][ T9295] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.1206: bad orphan inode 15 [ 279.807787][ T9295] ext4_test_bit(bit=14, block=5) = 0 [ 279.815520][ T9295] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 279.841626][ T9298] netlink: 'syz.2.1213': attribute type 10 has an invalid length. [ 279.850062][ T9298] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1213'. [ 279.875694][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 280.029811][ T9303] loop3: detected capacity change from 0 to 512 [ 280.058023][ T9303] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 280.058154][ T9303] ext4 filesystem being mounted at /290/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 280.547189][ T9312] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1217'. [ 281.220973][ T1141] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 281.261455][ T1141] EXT4-fs (loop3): Delayed block allocation failed for inode 16 at logical offset 5 with max blocks 1557 with error 28 [ 281.291474][ T1141] EXT4-fs (loop3): This should not happen!! Data will be lost [ 281.291474][ T1141] [ 281.301484][ T1141] EXT4-fs (loop3): Total free blocks count 0 [ 281.307570][ T1141] EXT4-fs (loop3): Free/Dirty block details [ 281.313506][ T1141] EXT4-fs (loop3): free_blocks=65280 [ 281.318890][ T1141] EXT4-fs (loop3): dirty_blocks=1557 [ 281.324371][ T1141] EXT4-fs (loop3): Block reservation details [ 281.330413][ T1141] EXT4-fs (loop3): i_reserved_data_blocks=1557 [ 281.426989][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 281.470292][ T9320] netlink: 'syz.0.1220': attribute type 10 has an invalid length. [ 281.752000][ T9330] netlink: 'syz.1.1224': attribute type 10 has an invalid length. [ 281.761351][ T9330] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1224'. [ 281.806936][ T9327] loop3: detected capacity change from 0 to 512 [ 281.845572][ T9327] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 281.877886][ T9327] EXT4-fs (loop3): 1 truncate cleaned up [ 281.879180][ T9327] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 281.905120][ T9327] EXT4-fs error (device loop3): ext4_ext_precache:627: inode #15: comm syz.3.1223: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 282.045337][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 283.641034][ T9359] netlink: 'syz.2.1234': attribute type 10 has an invalid length. [ 284.243420][ T9377] netlink: 'syz.0.1242': attribute type 10 has an invalid length. [ 284.251472][ T9377] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1242'. [ 284.469889][ T9387] IPv6: Can't replace route, no match found [ 284.706393][ T9396] netlink: 'syz.0.1248': attribute type 10 has an invalid length. [ 285.214438][ T9406] loop2: detected capacity change from 0 to 512 [ 285.239715][ T9406] EXT4-fs: Ignoring removed bh option [ 285.262318][ T9406] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 285.302078][ T9409] netlink: 'syz.1.1254': attribute type 10 has an invalid length. [ 285.311747][ T9406] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 285.316774][ T9409] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1254'. [ 285.331952][ T9406] EXT4-fs (loop2): 1 truncate cleaned up [ 285.342742][ T9406] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 285.557586][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 285.560856][ T9416] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1258'. [ 285.581692][ T9416] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1258'. [ 285.614422][ T9416] loop3: detected capacity change from 0 to 512 [ 285.658048][ T9416] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.1258: bad orphan inode 15 [ 285.719884][ T9416] ext4_test_bit(bit=14, block=5) = 0 [ 285.741604][ T9416] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 285.854528][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 286.209095][ T9440] netlink: 'syz.0.1266': attribute type 10 has an invalid length. [ 286.222511][ T9440] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1266'. [ 286.464495][ T9446] netlink: 'syz.0.1269': attribute type 10 has an invalid length. [ 287.516856][ T9456] netlink: 'syz.2.1273': attribute type 4 has an invalid length. [ 287.641910][ T9460] binfmt_misc: register: failed to install interpreter file ./file2 [ 288.668629][ T9484] netlink: 'syz.1.1284': attribute type 4 has an invalid length. [ 288.733223][ T9486] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1285'. [ 288.743048][ T9486] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1285'. [ 288.773211][ T9486] loop1: detected capacity change from 0 to 512 [ 288.786708][ T9486] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.1285: bad orphan inode 15 [ 288.805634][ T9486] ext4_test_bit(bit=14, block=5) = 0 [ 288.817962][ T9486] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 288.820369][ T9490] netlink: 'syz.2.1286': attribute type 10 has an invalid length. [ 288.888772][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.929102][ T9492] loop2: detected capacity change from 0 to 512 [ 288.955622][ T9492] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 288.969704][ T9492] ext4 filesystem being mounted at /328/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 289.022860][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 289.121144][ T28] audit: type=1326 audit(1757497887.016:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9499 comm="syz.2.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 289.151370][ T28] audit: type=1326 audit(1757497887.016:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9499 comm="syz.2.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=5 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 289.193455][ T28] audit: type=1326 audit(1757497887.016:1178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9499 comm="syz.2.1289" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 289.414415][ T9508] netlink: 'syz.2.1293': attribute type 4 has an invalid length. [ 289.556930][ T9515] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1297'. [ 289.569313][ T9520] loop2: detected capacity change from 0 to 512 [ 289.572116][ T9515] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1297'. [ 289.610724][ T9515] loop1: detected capacity change from 0 to 512 [ 289.622744][ T9520] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 289.637364][ T9520] ext4 filesystem being mounted at /331/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 289.649077][ T9515] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.1297: bad orphan inode 15 [ 289.660111][ T9515] ext4_test_bit(bit=14, block=5) = 0 [ 289.673829][ T9515] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 289.710751][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 289.791204][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.208409][ T9543] netlink: 'syz.2.1306': attribute type 4 has an invalid length. [ 291.293743][ T9555] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1310'. [ 291.365021][ T9559] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1311'. [ 291.387529][ T9559] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1311'. [ 291.432666][ T9561] loop2: detected capacity change from 0 to 512 [ 291.459650][ T9561] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.1311: bad orphan inode 15 [ 291.478061][ T9561] ext4_test_bit(bit=14, block=5) = 0 [ 291.487898][ T9561] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 291.542762][ T9564] loop3: detected capacity change from 0 to 512 [ 291.569572][ T9564] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 291.571233][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 291.597670][ T9564] EXT4-fs (loop3): 1 truncate cleaned up [ 291.620429][ T9564] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 291.638832][ T9564] EXT4-fs error (device loop3): ext4_ext_precache:627: inode #15: comm syz.3.1313: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 291.690922][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 291.796875][ T9578] loop3: detected capacity change from 0 to 512 [ 291.821102][ T9578] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 291.838928][ T9578] ext4 filesystem being mounted at /303/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 291.923790][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.100187][ T9593] netlink: 'syz.3.1323': attribute type 1 has an invalid length. [ 292.114717][ T9593] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1323'. [ 292.304404][ T9600] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1326'. [ 292.319169][ T9600] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1326'. [ 292.344207][ T9600] loop3: detected capacity change from 0 to 512 [ 292.358999][ T9600] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.1326: bad orphan inode 15 [ 292.371882][ T9600] ext4_test_bit(bit=14, block=5) = 0 [ 292.378328][ T9600] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 292.427592][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.459093][ T9602] loop2: detected capacity change from 0 to 512 [ 292.470400][ T9602] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 292.504070][ T9602] EXT4-fs (loop2): 1 truncate cleaned up [ 292.521011][ T9602] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 292.529064][ T9607] loop3: detected capacity change from 0 to 512 [ 292.551549][ T9602] EXT4-fs error (device loop2): ext4_ext_precache:627: inode #15: comm syz.2.1327: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 292.601765][ T9607] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 292.627532][ T9607] ext4 filesystem being mounted at /308/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 292.628962][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.731069][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.905290][ T28] audit: type=1326 audit(1757497890.807:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9621 comm="syz.2.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 292.946169][ T28] audit: type=1326 audit(1757497890.837:1180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9621 comm="syz.2.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 293.031052][ T28] audit: type=1326 audit(1757497890.837:1181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9621 comm="syz.2.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 293.083477][ T28] audit: type=1326 audit(1757497890.837:1182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9621 comm="syz.2.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 293.135349][ T9626] netlink: 'syz.0.1335': attribute type 4 has an invalid length. [ 293.266345][ T9632] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1337'. [ 294.091962][ T9652] syz.0.1345[9652] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 294.092203][ T9652] syz.0.1345[9652] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 294.533803][ T9658] netlink: 'syz.1.1347': attribute type 4 has an invalid length. [ 295.397381][ T8] kernel write not supported for file bpf-prog (pid: 8 comm: kworker/0:0) [ 295.627852][ T9664] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1350'. [ 296.721313][ T9689] loop2: detected capacity change from 0 to 8192 [ 296.740456][ T28] audit: type=1800 audit(1757497894.637:1183): pid=9689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1361" name="bus" dev="loop2" ino=1048602 res=0 errno=0 [ 297.120723][ T9706] netlink: 'syz.2.1369': attribute type 10 has an invalid length. [ 297.129632][ T9706] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1369'. [ 298.100728][ T9720] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1374'. [ 299.201642][ T5777] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 299.372853][ T5777] usb 4-1: device descriptor read/64, error -71 [ 300.047146][ T9739] loop1: detected capacity change from 0 to 512 [ 300.127357][ T9739] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 300.372290][ T5777] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 300.425053][ T9739] EXT4-fs (loop1): 1 truncate cleaned up [ 300.435309][ T9739] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 300.470643][ T9736] EXT4-fs error (device loop1): ext4_ext_precache:627: inode #15: comm syz.1.1380: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 300.538625][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 300.586716][ T5777] usb 4-1: device descriptor read/64, error -71 [ 300.843398][ T5777] usb usb4-port1: attempt power cycle [ 301.129889][ T9753] loop3: detected capacity change from 0 to 8192 [ 301.478628][ T28] audit: type=1800 audit(1757497899.377:1184): pid=9753 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1386" name="bus" dev="loop3" ino=1048603 res=0 errno=0 [ 304.928011][ T9801] loop3: detected capacity change from 0 to 512 [ 305.005188][ T9801] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 305.018349][ T9801] ext4 filesystem being mounted at /317/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 305.952882][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 306.392967][ T9825] IPVS: fo: FWM 3 0x00000003 - no destination available [ 307.836190][ T9835] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1411'. [ 308.387371][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.394902][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.403703][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.433854][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.477304][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.522245][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.530281][ T9841] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1412'. [ 308.550006][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.566512][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.584279][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.596089][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.605176][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.636414][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.654306][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.680533][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.700646][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.714151][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.725344][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.746266][ T8] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 308.766409][ T8] hid-generic 0003:0004:0000.0002: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 309.684447][ T9863] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1421'. [ 309.839340][ T9871] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1425'. [ 309.981000][ T9866] loop3: detected capacity change from 0 to 8192 [ 310.043134][ T28] audit: type=1800 audit(1757497907.948:1185): pid=9866 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1423" name="bus" dev="loop3" ino=1048604 res=0 errno=0 [ 310.140948][ T9876] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1424'. [ 310.507781][ T9874] loop2: detected capacity change from 0 to 512 [ 310.693745][ T9874] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 310.761668][ T9874] EXT4-fs (loop2): 1 truncate cleaned up [ 310.784248][ T9874] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 310.878659][ T9874] EXT4-fs error (device loop2): ext4_ext_precache:627: inode #15: comm syz.2.1426: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 311.056703][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 312.154306][ T9903] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1434'. [ 312.541553][ T9915] loop2: detected capacity change from 0 to 512 [ 312.600085][ T9916] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1436'. [ 312.623465][ T9915] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 312.912871][ T9915] EXT4-fs (loop2): 1 truncate cleaned up [ 313.055666][ T9915] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 313.225970][ T9915] EXT4-fs error (device loop2): ext4_ext_precache:627: inode #15: comm syz.2.1439: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 313.386779][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 313.666797][ T9936] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1445'. [ 314.225110][ T9945] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1449'. [ 314.225246][ T9945] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1449'. [ 317.070017][ T9958] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1452'. [ 317.135913][ T9957] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1454'. [ 317.458654][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.465847][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.524439][ T9967] loop1: detected capacity change from 0 to 512 [ 317.539394][ T9967] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 317.567206][ T9967] EXT4-fs (loop1): 1 truncate cleaned up [ 317.578601][ T9967] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 317.601593][ T9974] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1459'. [ 317.608195][ T9967] EXT4-fs error (device loop1): ext4_ext_precache:627: inode #15: comm syz.1.1455: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 317.611140][ T9974] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1459'. [ 317.658059][ T9974] loop2: detected capacity change from 0 to 512 [ 317.670612][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 317.671513][ T9974] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.1459: bad orphan inode 15 [ 317.698534][ T9974] ext4_test_bit(bit=14, block=5) = 0 [ 317.705466][ T9974] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 317.770112][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 318.619207][ T9993] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1465'. [ 318.741391][ T9999] loop3: detected capacity change from 0 to 512 [ 318.754303][ T9999] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 318.772398][ T9999] EXT4-fs (loop3): 1 truncate cleaned up [ 318.780157][ T9999] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 318.812866][ T9999] EXT4-fs error (device loop3): ext4_ext_precache:627: inode #15: comm syz.3.1468: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 318.846787][T10002] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1469'. [ 318.861190][T10002] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1469'. [ 318.901017][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 319.188344][T10015] netlink: 'syz.3.1474': attribute type 10 has an invalid length. [ 319.210326][T10015] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1474'. [ 319.249594][T10014] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1475'. [ 319.476978][T10025] loop1: detected capacity change from 0 to 512 [ 319.493522][T10025] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 319.526217][T10025] EXT4-fs (loop1): 1 truncate cleaned up [ 319.550444][T10025] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 319.570489][T10025] EXT4-fs error (device loop1): ext4_ext_precache:627: inode #15: comm syz.1.1479: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 319.689654][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 319.803121][T10041] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1486'. [ 319.840669][T10042] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1485'. [ 319.863300][T10042] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1485'. [ 319.891322][T10042] loop1: detected capacity change from 0 to 512 [ 319.911422][T10042] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.1485: bad orphan inode 15 [ 319.929510][T10042] ext4_test_bit(bit=14, block=5) = 0 [ 319.948872][T10042] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 320.036773][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 320.765385][T10059] netlink: 'syz.1.1488': attribute type 10 has an invalid length. [ 320.799266][T10059] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1488'. [ 320.809208][T10064] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1495'. [ 320.977344][T10069] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1496'. [ 321.024914][T10069] loop1: detected capacity change from 0 to 512 [ 321.083697][T10069] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.1496: bad orphan inode 15 [ 321.120547][T10069] ext4_test_bit(bit=14, block=5) = 0 [ 321.128568][T10069] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 321.248840][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 321.333626][T10088] netlink: 'syz.0.1504': attribute type 10 has an invalid length. [ 321.764808][T10108] loop1: detected capacity change from 0 to 512 [ 321.780170][T10108] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.1514: bad orphan inode 15 [ 321.792345][T10108] ext4_test_bit(bit=14, block=5) = 0 [ 321.799329][T10108] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 321.806251][ T28] audit: type=1326 audit(1757497919.698:1186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10111 comm="syz.2.1516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 321.840566][ T28] audit: type=1326 audit(1757497919.718:1187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10111 comm="syz.2.1516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 321.851595][T10112] netlink: 'syz.0.1515': attribute type 10 has an invalid length. [ 321.863332][ T28] audit: type=1326 audit(1757497919.738:1188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10111 comm="syz.2.1516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 321.894513][ T28] audit: type=1326 audit(1757497919.738:1189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10111 comm="syz.2.1516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 321.917563][ T28] audit: type=1326 audit(1757497919.738:1190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10111 comm="syz.2.1516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 322.080691][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 322.266372][T10127] loop1: detected capacity change from 0 to 512 [ 322.286161][T10127] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 322.349377][T10127] EXT4-fs (loop1): 1 truncate cleaned up [ 322.367728][T10127] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 322.409605][T10136] loop2: detected capacity change from 0 to 1024 [ 322.417403][T10136] EXT4-fs: Ignoring removed bh option [ 322.425135][T10136] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 322.426069][T10127] EXT4-fs error (device loop1): ext4_ext_precache:627: inode #15: comm syz.1.1520: pblk 0 bad header/extent: invalid magic - magic 7973, entries 27514, max 27745(0), depth 25964(25964) [ 322.487531][T10136] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 322.516987][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 322.522055][T10136] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2797: inode #15: comm syz.2.1527: corrupted in-inode xattr: bad magic number in in-inode xattr [ 322.555045][T10140] netlink: 'syz.0.1528': attribute type 10 has an invalid length. [ 322.603016][T10136] EXT4-fs (loop2): Remounting filesystem read-only [ 322.687385][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 322.889142][T10152] loop1: detected capacity change from 0 to 2048 [ 322.913237][T10152] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 322.960608][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 322.969134][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 322.977239][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 322.985143][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 322.992947][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.002493][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.015472][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.026683][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.037993][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.046090][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.054709][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.062661][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.070289][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.078298][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.086151][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.094585][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.102437][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.110171][ T5777] hid-generic 0003:0004:0000.0003: unknown main item tag 0x0 [ 323.124404][ T5777] hid-generic 0003:0004:0000.0003: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 323.191106][T10164] loop2: detected capacity change from 0 to 512 [ 323.218063][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 323.232520][T10166] netlink: 'syz.0.1538': attribute type 10 has an invalid length. [ 323.271861][T10164] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 323.287209][T10164] ext4 filesystem being mounted at /395/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 323.473416][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 323.700425][T10185] loop3: detected capacity change from 0 to 1024 [ 323.718276][T10185] EXT4-fs: Ignoring removed orlov option [ 323.753026][T10185] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 323.771922][T10185] ext4 filesystem being mounted at /349/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 323.817569][T10185] EXT4-fs error (device loop3): ext4_map_blocks:718: inode #15: comm syz.3.1545: lblock 0 mapped to illegal pblock 0 (length 1) [ 323.821682][ T28] audit: type=1800 audit(1757497921.718:1191): pid=10185 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1545" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 323.870704][T10185] EXT4-fs error (device loop3): ext4_ext_remove_space:2929: inode #15: comm syz.3.1545: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 323.878249][T10194] netlink: 'syz.1.1549': attribute type 1 has an invalid length. [ 323.922417][T10194] netlink: 'syz.1.1549': attribute type 4 has an invalid length. [ 323.942071][T10194] __nla_validate_parse: 10 callbacks suppressed [ 323.942098][T10194] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.1549'. [ 323.971593][T10196] netlink: 'syz.2.1550': attribute type 10 has an invalid length. [ 323.979693][T10196] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1550'. [ 323.991027][T10193] netlink: 'syz.1.1549': attribute type 1 has an invalid length. [ 323.999450][T10193] netlink: 9462 bytes leftover after parsing attributes in process `syz.1.1549'. [ 324.028452][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 324.789818][T10227] validate_nla: 1 callbacks suppressed [ 324.789836][T10227] netlink: 'syz.0.1563': attribute type 10 has an invalid length. [ 324.839806][T10227] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1563'. [ 325.723566][T10207] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 325.783390][T10207] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 325.807188][T10207] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 325.818411][T10207] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 325.836660][T10207] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 325.846495][T10207] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 325.864218][T10207] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 325.874035][T10207] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 325.893160][T10207] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 325.923776][T10207] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 326.488126][ T28] audit: type=1326 audit(1757497924.389:1192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.2.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 326.561471][ T28] audit: type=1326 audit(1757497924.429:1193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.2.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 326.607557][ T28] audit: type=1326 audit(1757497924.429:1194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.2.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 326.657616][ T28] audit: type=1326 audit(1757497924.429:1195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.2.1570" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 326.703554][T10256] netlink: 'syz.0.1572': attribute type 10 has an invalid length. [ 326.741265][T10256] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1572'. [ 327.603121][T10277] loop2: detected capacity change from 0 to 2048 [ 327.659236][T10277] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 327.746025][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 327.936797][T10290] hub 9-0:1.0: USB hub found [ 327.942193][T10290] hub 9-0:1.0: 1 port detected [ 328.317101][T10297] loop3: detected capacity change from 0 to 256 [ 328.343780][T10297] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 328.380868][T10297] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 328.450121][ T28] kauditd_printk_skb: 39 callbacks suppressed [ 328.450139][ T28] audit: type=1800 audit(1757497926.349:1235): pid=10297 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1585" name="bus" dev="loop3" ino=1048605 res=0 errno=0 [ 328.488339][ T28] audit: type=1804 audit(1757497926.349:1236): pid=10297 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1585" name="/newroot/358/file0/bus" dev="loop3" ino=1048605 res=1 errno=0 [ 330.246577][T10288] netlink: 'syz.2.1582': attribute type 10 has an invalid length. [ 330.255150][T10288] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1582'. [ 330.409798][ T28] audit: type=1326 audit(1757497928.309:1237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10302 comm="syz.2.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 330.460391][ T28] audit: type=1326 audit(1757497928.309:1238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10302 comm="syz.2.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 330.526624][ T28] audit: type=1326 audit(1757497928.309:1239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10302 comm="syz.2.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 330.575588][ T28] audit: type=1326 audit(1757497928.309:1240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10302 comm="syz.2.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 330.620707][ T28] audit: type=1326 audit(1757497928.309:1241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10302 comm="syz.2.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 330.637158][T10313] loop1: detected capacity change from 0 to 512 [ 330.667289][ T28] audit: type=1326 audit(1757497928.309:1242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10302 comm="syz.2.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 330.712922][ T28] audit: type=1326 audit(1757497928.309:1243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10302 comm="syz.2.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 330.757906][T10313] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 330.781185][ T28] audit: type=1326 audit(1757497928.309:1244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10302 comm="syz.2.1587" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 330.821325][T10313] ext4 filesystem being mounted at /404/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 330.992490][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 331.032199][T10324] netlink: 'syz.0.1595': attribute type 10 has an invalid length. [ 331.041477][T10324] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1595'. [ 331.128131][T10309] sd 0:0:1:0: device reset [ 331.256611][T10329] tipc: Enabled bearer , priority 0 [ 331.386325][ T64] tipc: Resetting bearer [ 331.409442][T10325] tipc: Resetting bearer [ 331.699690][T10342] loop2: detected capacity change from 0 to 256 [ 331.770246][T10342] FAT-fs (loop2): Directory bread(block 64) failed [ 331.791035][T10342] FAT-fs (loop2): Directory bread(block 65) failed [ 331.799935][T10342] FAT-fs (loop2): Directory bread(block 66) failed [ 331.819600][T10342] FAT-fs (loop2): Directory bread(block 67) failed [ 331.848853][T10342] FAT-fs (loop2): Directory bread(block 68) failed [ 331.857424][T10342] FAT-fs (loop2): Directory bread(block 69) failed [ 331.868028][T10342] FAT-fs (loop2): Directory bread(block 70) failed [ 331.875065][T10342] FAT-fs (loop2): Directory bread(block 71) failed [ 331.891780][T10342] FAT-fs (loop2): Directory bread(block 72) failed [ 331.898607][T10342] FAT-fs (loop2): Directory bread(block 73) failed [ 332.021684][T10349] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1604'. [ 332.031588][T10349] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1604'. [ 332.049840][T10349] loop3: detected capacity change from 0 to 512 [ 332.073264][T10349] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.1604: bad orphan inode 15 [ 332.094263][T10349] ext4_test_bit(bit=14, block=5) = 0 [ 332.111128][T10349] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 332.192470][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 332.258062][ T5833] tipc: Node number set to 3314919869 [ 332.281669][T10354] loop3: detected capacity change from 0 to 512 [ 332.316955][T10354] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 332.330462][T10354] ext4 filesystem being mounted at /366/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 332.390254][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 334.074084][T10325] tipc: Disabling bearer [ 334.096476][T10358] netlink: 'syz.3.1607': attribute type 1 has an invalid length. [ 334.105403][T10358] workqueue: Failed to create a rescuer kthread for wq "bond0": -EINTR [ 334.117535][T10359] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1607'. [ 334.149787][T10359] batadv1: entered promiscuous mode [ 334.159091][T10359] batadv1: entered allmulticast mode [ 334.321555][T10366] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.1610' sets config #-1 [ 334.441239][T10373] program syz.0.1613 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 334.470072][T10375] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1614'. [ 334.491560][T10375] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1614'. [ 334.540882][T10375] loop1: detected capacity change from 0 to 512 [ 334.578526][T10375] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.1614: bad orphan inode 15 [ 334.594572][T10375] ext4_test_bit(bit=14, block=5) = 0 [ 334.614820][T10375] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 334.819944][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 334.871571][T10388] loop3: detected capacity change from 0 to 512 [ 334.902557][T10388] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 334.944840][T10388] ext4 filesystem being mounted at /369/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 334.949003][ T28] kauditd_printk_skb: 182 callbacks suppressed [ 334.949031][ T28] audit: type=1326 audit(1757497932.849:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10392 comm="syz.1.1619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 334.985164][ T28] audit: type=1326 audit(1757497932.869:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10392 comm="syz.1.1619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 335.009765][ T28] audit: type=1326 audit(1757497932.879:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10392 comm="syz.1.1619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 335.032848][ T28] audit: type=1326 audit(1757497932.879:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10392 comm="syz.1.1619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 335.065753][ T28] audit: type=1326 audit(1757497932.879:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10392 comm="syz.1.1619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 335.088422][ T28] audit: type=1326 audit(1757497932.889:1432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10392 comm="syz.1.1619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 335.123826][ T28] audit: type=1326 audit(1757497932.889:1433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10392 comm="syz.1.1619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 335.149528][ T28] audit: type=1326 audit(1757497932.889:1434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10392 comm="syz.1.1619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 335.186957][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 335.207742][ T28] audit: type=1326 audit(1757497932.889:1435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10392 comm="syz.1.1619" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 335.237600][T10397] loop1: detected capacity change from 0 to 512 [ 335.248112][T10397] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 335.312280][T10397] EXT4-fs (loop1): 1 truncate cleaned up [ 335.319377][T10397] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 335.531328][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 335.722237][T10418] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1627'. [ 335.746464][T10418] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1627'. [ 335.765504][T10418] loop1: detected capacity change from 0 to 512 [ 335.784161][T10418] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.1627: bad orphan inode 15 [ 335.812127][T10418] ext4_test_bit(bit=14, block=5) = 0 [ 335.837089][T10418] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 335.861263][T10423] loop3: detected capacity change from 0 to 512 [ 335.938165][T10423] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 335.964280][T10423] ext4 filesystem being mounted at /372/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 335.996908][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 336.081065][ T28] audit: type=1326 audit(1757497933.979:1436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10426 comm="syz.0.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad9038eba9 code=0x7ffc0000 [ 336.137750][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 336.500153][T10444] loop3: detected capacity change from 0 to 1024 [ 336.525652][T10444] EXT4-fs: Ignoring removed oldalloc option [ 336.544804][T10444] EXT4-fs: Ignoring removed nobh option [ 336.550487][T10444] EXT4-fs: Invalid uid value -1 [ 337.805190][T10471] netlink: 'syz.2.1649': attribute type 10 has an invalid length. [ 337.840882][T10471] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1649'. [ 338.551109][T10481] loop2: detected capacity change from 0 to 2048 [ 338.602495][T10481] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 338.783787][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 339.154533][T10500] netlink: 'syz.3.1659': attribute type 10 has an invalid length. [ 339.176485][T10500] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1659'. [ 339.368069][T10507] loop1: detected capacity change from 0 to 2048 [ 339.384115][T10507] EXT4-fs: Ignoring removed nomblk_io_submit option [ 339.410054][T10507] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 339.431200][T10512] 9p: Unknown access argument kæ¹: -22 [ 339.487584][T10507] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #12: block 5: comm syz.1.1664: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=7952, size=56 fake=0 [ 339.554794][T10507] EXT4-fs (loop1): Remounting filesystem read-only [ 339.632709][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 340.024486][T10531] netlink: 'syz.3.1673': attribute type 10 has an invalid length. [ 340.102831][T10531] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1673'. [ 340.809679][T10542] loop3: detected capacity change from 0 to 1024 [ 340.850286][T10542] EXT4-fs: Ignoring removed oldalloc option [ 340.867624][T10542] EXT4-fs: Ignoring removed nobh option [ 340.885212][T10542] EXT4-fs: Invalid uid value -1 [ 341.340179][T10553] netlink: 'syz.2.1683': attribute type 10 has an invalid length. [ 341.358653][T10553] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1683'. [ 341.432151][T10556] netlink: 'syz.3.1685': attribute type 10 has an invalid length. [ 341.478480][T10556] team0: Device hsr_slave_0 failed to register rx_handler [ 342.382848][T10577] netlink: 'syz.1.1694': attribute type 10 has an invalid length. [ 342.400397][T10577] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1694'. [ 343.116651][T10583] IPVS: fo: FWM 3 0x00000003 - no destination available [ 344.197198][T10600] netlink: 'syz.2.1703': attribute type 10 has an invalid length. [ 344.215512][T10600] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1703'. [ 344.781672][T10616] IPVS: fo: FWM 3 0x00000003 - no destination available [ 345.343291][T10624] netlink: 'syz.3.1714': attribute type 10 has an invalid length. [ 345.352740][T10624] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1714'. [ 345.659776][T10632] netlink: 'syz.3.1718': attribute type 4 has an invalid length. [ 346.416658][T10637] binder: 10633:10637 ioctl c0306201 0 returned -14 [ 347.057988][T10651] netlink: 'syz.1.1724': attribute type 10 has an invalid length. [ 347.070065][T10651] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1724'. [ 347.312967][T10661] netlink: 'syz.1.1727': attribute type 4 has an invalid length. [ 347.772760][T10669] IPVS: fo: FWM 3 0x00000003 - no destination available [ 348.009720][T10668] openvswitch: netlink: Flow actions attr not present in new flow. [ 348.179358][T10675] netlink: 'syz.2.1734': attribute type 10 has an invalid length. [ 348.193025][T10675] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1734'. [ 348.450659][T10681] netlink: 'syz.0.1738': attribute type 4 has an invalid length. [ 348.598638][T10688] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1740'. [ 348.621547][T10688] loop2: detected capacity change from 0 to 512 [ 348.643110][T10688] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.1740: bad orphan inode 15 [ 348.654553][T10688] ext4_test_bit(bit=14, block=5) = 0 [ 348.670545][T10688] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 348.736701][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 348.775089][T10698] netlink: 'syz.3.1744': attribute type 10 has an invalid length. [ 348.783559][T10698] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1744'. [ 348.847979][T10700] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1745'. [ 349.906981][T10710] netlink: 'syz.0.1749': attribute type 4 has an invalid length. [ 350.164026][T10717] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 350.190873][T10717] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 350.200047][T10717] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 350.214353][T10717] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 350.235905][T10717] geneve2: entered promiscuous mode [ 350.243871][T10720] loop3: detected capacity change from 0 to 512 [ 350.257767][T10717] geneve2: entered allmulticast mode [ 350.266478][T10721] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1750'. [ 350.301201][T10720] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 350.314160][T10720] ext4 filesystem being mounted at /412/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 350.359113][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.447487][T10727] loop2: detected capacity change from 0 to 1024 [ 350.459490][T10727] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 350.467949][T10729] netlink: 'syz.3.1754': attribute type 10 has an invalid length. [ 350.478030][T10729] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1754'. [ 350.496281][T10727] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:478: comm syz.2.1755: Invalid block bitmap block 0 in block_group 0 [ 350.517498][T10727] __quota_error: 14 callbacks suppressed [ 350.517519][T10727] Quota error (device loop2): write_blk: dquota write failed [ 350.531705][T10727] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 350.542298][T10727] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.1755: Failed to acquire dquot type 0 [ 350.556904][T10727] EXT4-fs error (device loop2): ext4_free_blocks:6676: comm syz.2.1755: Freeing blocks not in datazone - block = 0, count = 4096 [ 350.575418][T10727] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.1755: Invalid inode bitmap blk 0 in block_group 0 [ 350.588937][T10727] EXT4-fs error (device loop2) in ext4_free_inode:363: Corrupt filesystem [ 350.600140][ T64] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-8 [ 350.609683][ T64] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:4: Failed to release dquot type 0 [ 350.626276][T10727] EXT4-fs (loop2): 1 orphan inode deleted [ 350.636379][T10727] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 350.689344][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.699250][T10711] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0 [ 350.787031][T10738] netlink: 'syz.2.1758': attribute type 4 has an invalid length. [ 352.025112][T10753] loop1: detected capacity change from 0 to 512 [ 352.114726][T10753] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 352.166783][T10753] ext4 filesystem being mounted at /431/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 352.240930][ T28] audit: type=1326 audit(1757497950.150:1451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10758 comm="syz.0.1766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad9038eba9 code=0x7ffc0000 [ 352.279113][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 352.288307][ T28] audit: type=1326 audit(1757497950.170:1452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10758 comm="syz.0.1766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad9038eba9 code=0x7ffc0000 [ 352.344450][T10762] loop2: detected capacity change from 0 to 512 [ 352.351664][ T28] audit: type=1326 audit(1757497950.170:1453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10758 comm="syz.0.1766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fad9038eba9 code=0x7ffc0000 [ 352.375619][T10762] EXT4-fs: Ignoring removed nobh option [ 352.394764][ T28] audit: type=1326 audit(1757497950.170:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10758 comm="syz.0.1766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fad9038ebe3 code=0x7ffc0000 [ 352.449558][T10762] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #3: comm syz.2.1767: corrupted inode contents [ 352.461857][ T28] audit: type=1326 audit(1757497950.180:1455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10758 comm="syz.0.1766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fad9038d65f code=0x7ffc0000 [ 352.470536][T10764] netlink: 'syz.1.1768': attribute type 4 has an invalid length. [ 352.484312][ T28] audit: type=1326 audit(1757497950.190:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10758 comm="syz.0.1766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fad9038ec37 code=0x7ffc0000 [ 352.484365][ T28] audit: type=1326 audit(1757497950.190:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10758 comm="syz.0.1766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fad9038d510 code=0x7ffc0000 [ 352.495848][T10762] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #3: comm syz.2.1767: mark_inode_dirty error [ 352.572023][T10762] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #3: comm syz.2.1767: corrupted inode contents [ 352.610787][T10762] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #3: comm syz.2.1767: mark_inode_dirty error [ 352.628271][T10768] loop3: detected capacity change from 0 to 1024 [ 352.640492][T10768] EXT4-fs: Ignoring removed oldalloc option [ 352.646608][T10768] EXT4-fs: Ignoring removed nobh option [ 352.658847][T10762] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.1767: Failed to acquire dquot type 0 [ 352.670707][T10768] EXT4-fs: Invalid uid value -1 [ 352.686110][T10762] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.1767: corrupted inode contents [ 352.723655][T10762] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #16: comm syz.2.1767: mark_inode_dirty error [ 352.747948][T10762] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.1767: corrupted inode contents [ 352.764482][T10762] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz.2.1767: mark_inode_dirty error [ 352.777938][T10762] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.1767: corrupted inode contents [ 352.795081][T10762] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 352.807477][T10762] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #16: comm syz.2.1767: corrupted inode contents [ 352.822158][T10762] EXT4-fs error (device loop2): ext4_truncate:4288: inode #16: comm syz.2.1767: mark_inode_dirty error [ 352.835349][T10762] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 352.846464][T10762] EXT4-fs (loop2): 1 truncate cleaned up [ 352.859406][T10762] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 352.877487][T10762] ext4 filesystem being mounted at /456/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 352.891510][T10762] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.262740][T10791] loop3: detected capacity change from 0 to 512 [ 354.975664][T10791] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 355.047669][T10791] ext4 filesystem being mounted at /422/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 355.069665][T10800] netlink: 'syz.1.1779': attribute type 4 has an invalid length. [ 355.140347][T10802] loop2: detected capacity change from 0 to 1024 [ 355.147759][T10802] EXT4-fs: Ignoring removed orlov option [ 355.178424][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 355.187733][T10802] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 355.281753][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 355.432073][T10814] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1784'. [ 357.264654][T10842] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1793'. [ 357.276407][ T28] kauditd_printk_skb: 18 callbacks suppressed [ 357.276425][ T28] audit: type=1326 audit(1757497955.170:1474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.3.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 357.276713][T10845] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1795'. [ 357.285146][T10843] loop2: detected capacity change from 0 to 512 [ 357.329894][ T28] audit: type=1326 audit(1757497955.170:1475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.3.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 357.357745][T10847] loop1: detected capacity change from 0 to 512 [ 357.392250][T10843] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 357.394183][ T28] audit: type=1326 audit(1757497955.170:1476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.3.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 357.434308][T10843] ext4 filesystem being mounted at /463/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 357.466339][T10847] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 357.481498][T10847] ext4 filesystem being mounted at /438/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 357.489631][ T28] audit: type=1326 audit(1757497955.170:1477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.3.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 357.680028][ T28] audit: type=1326 audit(1757497955.170:1478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.3.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 357.742036][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 357.764140][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 357.790663][ T28] audit: type=1326 audit(1757497955.170:1479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.3.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 357.813959][ T28] audit: type=1326 audit(1757497955.170:1480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.3.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 357.839709][ T28] audit: type=1326 audit(1757497955.170:1481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.3.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 357.862544][ T28] audit: type=1326 audit(1757497955.170:1482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.3.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 357.888178][ T28] audit: type=1326 audit(1757497955.170:1483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10844 comm="syz.3.1795" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 358.593360][T10876] loop8: detected capacity change from 0 to 16384 [ 358.689716][T10876] loop8: detected capacity change from 16384 to 0 [ 359.666245][T10888] loop1: detected capacity change from 0 to 512 [ 359.676218][T10889] loop3: detected capacity change from 0 to 512 [ 359.686640][T10888] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 359.698052][T10891] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1808'. [ 359.716788][T10888] EXT4-fs (loop1): 1 truncate cleaned up [ 359.751403][T10888] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 359.858876][T10889] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 359.917823][T10889] ext4 filesystem being mounted at /430/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 359.992788][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 360.046263][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 360.130089][T10902] IPv6: sit1: Disabled Multicast RS [ 360.141221][T10902] sit1: entered allmulticast mode [ 360.916360][T10902] sctp: failed to load transform for md5: -2 [ 362.205860][T10927] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1818'. [ 362.629462][ T786] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 362.654060][T10941] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1825'. [ 362.841962][ T786] usb 1-1: Using ep0 maxpacket: 32 [ 362.847198][ T786] usb 1-1: config 0 has an invalid interface number: 2 but max is 0 [ 362.847253][ T786] usb 1-1: config 0 has no interface number 0 [ 362.859344][ T786] usb 1-1: New USB device found, idVendor=108c, idProduct=dd68, bcdDevice=84.5c [ 362.859379][ T786] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 362.859399][ T786] usb 1-1: Product: syz [ 362.859414][ T786] usb 1-1: Manufacturer: syz [ 362.859428][ T786] usb 1-1: SerialNumber: syz [ 362.865172][ T786] usb 1-1: config 0 descriptor?? [ 362.973950][T10950] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1828'. [ 364.233390][T10963] loop3: detected capacity change from 0 to 1024 [ 364.282043][T10963] EXT4-fs: Ignoring removed nomblk_io_submit option [ 364.347780][ T5877] usb 1-1: USB disconnect, device number 2 [ 364.386466][T10963] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 364.415951][T10963] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1833: bg 0: block 232: padding at end of block bitmap is not set [ 364.572207][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 365.027715][T10987] netlink: 'syz.1.1842': attribute type 10 has an invalid length. [ 365.046258][T10987] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1842'. [ 365.046297][T10987] dummy0: entered promiscuous mode [ 365.047326][T10987] bridge0: port 3(dummy0) entered blocking state [ 365.047448][T10987] bridge0: port 3(dummy0) entered disabled state [ 365.047616][T10987] dummy0: entered allmulticast mode [ 365.596981][T11008] loop2: detected capacity change from 0 to 128 [ 365.982087][T11019] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1856'. [ 367.468102][T11059] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1873'. [ 368.513455][T11064] syz.1.1871 (11064) used greatest stack depth: 17104 bytes left [ 369.271331][T11091] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1887'. [ 370.188495][T11132] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1908'. [ 370.207491][T11133] syz.2.1907: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1 [ 370.227483][T11133] CPU: 0 PID: 11133 Comm: syz.2.1907 Not tainted syzkaller #0 [ 370.235107][T11133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 370.245207][T11133] Call Trace: [ 370.248522][T11133] [ 370.251492][T11133] dump_stack_lvl+0x16c/0x230 [ 370.256256][T11133] ? show_regs_print_info+0x20/0x20 [ 370.261532][T11133] ? load_image+0x3b0/0x3b0 [ 370.266094][T11133] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 370.272649][T11133] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 370.279289][T11133] warn_alloc+0x210/0x300 [ 370.283763][T11133] ? stack_trace_save+0x9c/0xe0 [ 370.288841][T11133] ? zone_watermark_ok_safe+0x230/0x230 [ 370.294540][T11133] ? kasan_set_track+0x5f/0x70 [ 370.299433][T11133] ? kasan_set_track+0x4e/0x70 [ 370.304229][T11133] ? __kasan_kmalloc+0x8f/0xa0 [ 370.309026][T11133] ? xsk_init_queue+0xb0/0x110 [ 370.313826][T11133] ? xsk_setsockopt+0x4db/0x6f0 [ 370.318724][T11133] ? do_sock_setsockopt+0x175/0x1a0 [ 370.323974][T11133] ? __x64_sys_setsockopt+0x184/0x200 [ 370.329404][T11133] __vmalloc_node_range+0x126/0x1320 [ 370.334758][T11133] ? free_vm_area+0x50/0x50 [ 370.339302][T11133] vmalloc_user+0x74/0x80 [ 370.343646][T11133] ? xskq_create+0xbf/0x170 [ 370.348154][T11133] xskq_create+0xbf/0x170 [ 370.352497][T11133] xsk_init_queue+0xb0/0x110 [ 370.357114][T11133] xsk_setsockopt+0x4db/0x6f0 [ 370.361891][T11133] ? xsk_poll+0x670/0x670 [ 370.366236][T11133] ? __fget_files+0x28/0x4d0 [ 370.370838][T11133] ? aa_sock_opt_perm+0x74/0x100 [ 370.375790][T11133] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 370.381349][T11133] ? security_socket_setsockopt+0x7e/0xa0 [ 370.387091][T11133] ? xsk_poll+0x670/0x670 [ 370.391434][T11133] do_sock_setsockopt+0x175/0x1a0 [ 370.396475][T11133] ? __fdget+0x180/0x210 [ 370.400734][T11133] __x64_sys_setsockopt+0x184/0x200 [ 370.405957][T11133] do_syscall_64+0x55/0xb0 [ 370.410381][T11133] ? clear_bhb_loop+0x40/0x90 [ 370.415082][T11133] ? clear_bhb_loop+0x40/0x90 [ 370.419770][T11133] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 370.425681][T11133] RIP: 0033:0x7ff49cd8eba9 [ 370.430115][T11133] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 370.449777][T11133] RSP: 002b:00007ff49dc8e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 370.458220][T11133] RAX: ffffffffffffffda RBX: 00007ff49cfd5fa0 RCX: 00007ff49cd8eba9 [ 370.466294][T11133] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000008 [ 370.474276][T11133] RBP: 00007ff49ce11e19 R08: 0000000000000004 R09: 0000000000000000 [ 370.482261][T11133] R10: 0000200000000900 R11: 0000000000000246 R12: 0000000000000000 [ 370.490262][T11133] R13: 00007ff49cfd6038 R14: 00007ff49cfd5fa0 R15: 00007ffc1ebca918 [ 370.498297][T11133] [ 370.505746][T11133] Mem-Info: [ 370.510536][T11133] active_anon:4526 inactive_anon:0 isolated_anon:0 [ 370.510536][T11133] active_file:16742 inactive_file:40005 isolated_file:0 [ 370.510536][T11133] unevictable:768 dirty:195 writeback:0 [ 370.510536][T11133] slab_reclaimable:10691 slab_unreclaimable:103297 [ 370.510536][T11133] mapped:23919 shmem:2497 pagetables:350 [ 370.510536][T11133] sec_pagetables:0 bounce:0 [ 370.510536][T11133] kernel_misc_reclaimable:0 [ 370.510536][T11133] free:1339878 free_pcp:9261 free_cma:0 [ 370.596713][T11133] Node 0 active_anon:18104kB inactive_anon:0kB active_file:66968kB inactive_file:159820kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:95676kB dirty:780kB writeback:0kB shmem:8452kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10708kB pagetables:1500kB sec_pagetables:0kB all_unreclaimable? no [ 370.630623][T11133] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 370.681669][T11133] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 370.709822][T11133] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 370.716033][T11133] Node 0 DMA32 free:1448308kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:18160kB inactive_anon:0kB active_file:66968kB inactive_file:158496kB unevictable:1536kB writepending:780kB present:3129332kB managed:2589588kB mlocked:0kB bounce:0kB free_pcp:15864kB local_pcp:3656kB free_cma:0kB [ 370.750182][T11133] lowmem_reserve[]: 0 0 1 1 1 [ 370.755245][T11133] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1324kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 370.801894][T11133] lowmem_reserve[]: 0 0 0 0 0 [ 370.810184][T11133] Node 1 Normal free:3895352kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:21376kB local_pcp:14752kB free_cma:0kB [ 370.841574][T11133] lowmem_reserve[]: 0 0 0 0 0 [ 370.846765][T11133] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 370.860530][T11133] Node 0 DMA32: 331*4kB (UME) 769*8kB (UME) 964*16kB (UME) 951*32kB (UME) 257*64kB (UME) 64*128kB (UME) 46*256kB (UME) 29*512kB (UME) 16*1024kB (UME) 12*2048kB (UME) 318*4096kB (UM) = 1448084kB [ 370.891951][T11133] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 370.918833][T11133] Node 1 Normal: 242*4kB (UME) 60*8kB (UME) 45*16kB (UME) 104*32kB (UME) 39*64kB (UME) 8*128kB (UME) 3*256kB (UME) 1*512kB (E) 0*1024kB 1*2048kB (E) 948*4096kB (M) = 3895352kB [ 370.959677][T11133] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 370.980044][T11133] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 370.991138][T11133] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 371.001457][T11133] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 371.011587][T11133] 59239 total pagecache pages [ 371.016597][T11133] 0 pages in swap cache [ 371.021013][T11133] Free swap = 124552kB [ 371.025367][T11133] Total swap = 124996kB [ 371.041597][T11133] 2097051 pages RAM [ 371.052867][T11133] 0 pages HighMem/MovableOnly [ 371.061121][T11133] 416140 pages reserved [ 371.067675][T11133] 0 pages cma reserved [ 371.154157][ T28] kauditd_printk_skb: 37 callbacks suppressed [ 371.154175][ T28] audit: type=1326 audit(1757497969.061:1521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11158 comm="syz.1.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 371.181228][T11160] loop1: detected capacity change from 0 to 2048 [ 371.197839][ T28] audit: type=1326 audit(1757497969.061:1522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11158 comm="syz.1.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 371.221354][ T28] audit: type=1326 audit(1757497969.061:1523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11158 comm="syz.1.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 371.245869][ T28] audit: type=1326 audit(1757497969.061:1524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11158 comm="syz.1.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 371.262057][T11160] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: writeback. [ 371.268665][ T28] audit: type=1326 audit(1757497969.061:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11158 comm="syz.1.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7effc658eba9 code=0x7ffc0000 [ 371.303998][ T28] audit: type=1326 audit(1757497969.071:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11158 comm="syz.1.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7effc658ebe3 code=0x7ffc0000 [ 371.326767][ T28] audit: type=1326 audit(1757497969.071:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11158 comm="syz.1.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7effc658d65f code=0x7ffc0000 [ 371.350451][ T28] audit: type=1326 audit(1757497969.091:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11158 comm="syz.1.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7effc658ec37 code=0x7ffc0000 [ 371.372925][ T28] audit: type=1326 audit(1757497969.091:1529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11158 comm="syz.1.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7effc658d510 code=0x7ffc0000 [ 371.395775][ T28] audit: type=1326 audit(1757497969.091:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11158 comm="syz.1.1920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7effc658e7ab code=0x7ffc0000 [ 371.513242][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 371.616938][T11174] netlink: 'syz.1.1925': attribute type 4 has an invalid length. [ 371.886860][T11183] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1929'. [ 371.909632][T11183] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.918777][T11183] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.927475][T11183] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.936469][T11183] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 371.946375][T11183] vxlan0: entered promiscuous mode [ 372.076117][T11185] loop2: detected capacity change from 0 to 512 [ 372.083276][T11185] EXT4-fs: Ignoring removed orlov option [ 372.091440][T11185] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 372.101727][T11185] EXT4-fs (loop2): orphan cleanup on readonly fs [ 372.111034][T11185] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.1930: bg 0: block 248: padding at end of block bitmap is not set [ 372.128124][T11185] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.1930: Failed to acquire dquot type 1 [ 372.141904][T11185] EXT4-fs (loop2): 1 truncate cleaned up [ 372.149185][T11185] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 372.167673][T11185] EXT4-fs: Ignoring removed orlov option [ 372.174078][T11185] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 372.182697][T11185] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 372.200613][T11185] EXT4-fs error (device loop2): __ext4_remount:6743: comm syz.2.1930: Abort forced by user [ 372.211449][T11185] EXT4-fs (loop2): Remounting filesystem read-only [ 372.218070][T11185] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 372.226635][T11185] ext4 filesystem being remounted at /496/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 372.334739][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 372.792742][T11214] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1939'. [ 373.012565][T11222] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1945'. [ 373.280677][T11225] loop1: detected capacity change from 0 to 8192 [ 374.173106][T11265] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1963'. [ 374.193093][T11267] netlink: 'syz.1.1966': attribute type 4 has an invalid length. [ 374.221205][T11267] netlink: 'syz.1.1966': attribute type 4 has an invalid length. [ 374.485947][T11279] netlink: 'syz.0.1973': attribute type 1 has an invalid length. [ 374.498810][T11279] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1973'. [ 374.723238][T11291] netlink: 'syz.2.1979': attribute type 4 has an invalid length. [ 374.739664][T11291] netlink: 'syz.2.1979': attribute type 4 has an invalid length. [ 375.319796][T11318] netlink: 'syz.3.1989': attribute type 4 has an invalid length. [ 375.338213][T11319] tipc: Enabled bearer , priority 0 [ 375.365241][T11323] netlink: 'syz.3.1989': attribute type 4 has an invalid length. [ 375.396361][T11310] tipc: Resetting bearer [ 375.418012][T11326] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1994'. [ 375.690394][T11336] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1999'. [ 375.787407][T11336] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1999'. [ 375.953614][T11336] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1999'. [ 378.423232][T11310] tipc: Disabling bearer [ 378.783201][T11383] netlink: 100 bytes leftover after parsing attributes in process `syz.3.2018'. [ 378.890548][T11389] netlink: 'syz.2.2020': attribute type 4 has an invalid length. [ 378.899072][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.004087][T11387] netlink: 'syz.2.2020': attribute type 4 has an invalid length. [ 380.243095][T11410] netlink: 'syz.1.2031': attribute type 4 has an invalid length. [ 380.292757][T11410] netlink: 'syz.1.2031': attribute type 4 has an invalid length. [ 380.324771][T11414] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2030'. [ 380.514815][ T28] kauditd_printk_skb: 47 callbacks suppressed [ 380.515044][ T28] audit: type=1326 audit(1757497978.422:1576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11418 comm="syz.3.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 380.611623][ T28] audit: type=1326 audit(1757497978.422:1577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11418 comm="syz.3.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 380.667102][T11394] loop2: detected capacity change from 0 to 1024 [ 380.676748][ T28] audit: type=1326 audit(1757497978.422:1578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11418 comm="syz.3.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=145 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 380.709834][T11394] EXT4-fs: Ignoring removed orlov option [ 380.726729][T11394] EXT4-fs (loop2): VFS: Can't find ext4 filesystem [ 380.781998][ T28] audit: type=1326 audit(1757497978.422:1579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11418 comm="syz.3.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 380.805600][ T28] audit: type=1326 audit(1757497978.422:1580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11418 comm="syz.3.2033" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 381.769081][T11438] netlink: 'syz.1.2040': attribute type 4 has an invalid length. [ 381.808197][T11438] netlink: 'syz.1.2040': attribute type 4 has an invalid length. [ 381.845301][T11442] netlink: 100 bytes leftover after parsing attributes in process `syz.2.2042'. [ 381.996892][T11448] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2044'. [ 382.303298][T11465] netlink: 'syz.2.2052': attribute type 4 has an invalid length. [ 382.322100][T11465] netlink: 'syz.2.2052': attribute type 4 has an invalid length. [ 382.851027][T11488] netlink: 'syz.1.2063': attribute type 4 has an invalid length. [ 382.910484][T11488] netlink: 'syz.1.2063': attribute type 4 has an invalid length. [ 384.195983][T11516] validate_nla: 1 callbacks suppressed [ 384.196002][T11516] netlink: 'syz.0.2075': attribute type 4 has an invalid length. [ 384.211161][T11516] netlink: 'syz.0.2075': attribute type 4 has an invalid length. [ 384.440153][T11528] loop2: detected capacity change from 0 to 512 [ 384.465177][T11528] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 384.493661][T11528] ext4 filesystem being mounted at /538/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 384.678405][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 384.775327][T11542] loop2: detected capacity change from 0 to 512 [ 384.800267][T11544] netlink: 'syz.0.2087': attribute type 4 has an invalid length. [ 384.836598][T11544] netlink: 'syz.0.2087': attribute type 4 has an invalid length. [ 384.850729][T11542] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 384.874518][T11542] ext4 filesystem being mounted at /539/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 385.095541][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 385.267226][T11562] loop2: detected capacity change from 0 to 1024 [ 385.313125][T11562] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 385.328750][T11569] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2097'. [ 385.493420][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 385.644861][T11584] netlink: 'syz.2.2100': attribute type 4 has an invalid length. [ 385.700331][T11584] netlink: 'syz.2.2100': attribute type 4 has an invalid length. [ 386.149484][ T64] netdevsim netdevsim1 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 386.169212][ T64] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 386.206553][T11602] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2109'. [ 386.333920][ T64] netdevsim netdevsim1 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 386.362489][ T64] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 386.537210][ T64] netdevsim netdevsim1 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 386.563634][ T64] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 386.566012][ T28] audit: type=1326 audit(1757497984.472:1581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11607 comm="syz.3.2113" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f80d958eba9 code=0x0 [ 386.602772][T11612] netlink: 'syz.2.2112': attribute type 4 has an invalid length. [ 386.694653][ T64] netdevsim netdevsim1 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 386.719572][ T64] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 386.762048][T11614] netlink: 'syz.2.2112': attribute type 4 has an invalid length. [ 386.992581][ T64] tipc: Left network mode [ 387.176555][ T5103] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 387.192484][ T5103] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 387.204122][ T5103] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 387.246293][ T5103] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 387.266259][ T5103] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 387.277215][ T5103] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 387.658729][T11635] netlink: 84 bytes leftover after parsing attributes in process `syz.0.2120'. [ 388.028994][T11645] netlink: 'syz.2.2124': attribute type 4 has an invalid length. [ 388.106986][T11645] netlink: 'syz.2.2124': attribute type 4 has an invalid length. [ 388.141092][T11625] chnl_net:caif_netlink_parms(): no params data found [ 388.401054][T11655] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2128'. [ 388.781807][T11664] IPVS: fo: FWM 3 0x00000003 - no destination available [ 389.403881][ T5103] Bluetooth: hci1: command tx timeout [ 389.599125][T11625] bridge0: port 1(bridge_slave_0) entered blocking state [ 389.652647][T11625] bridge0: port 1(bridge_slave_0) entered disabled state [ 389.691940][T11625] bridge_slave_0: entered allmulticast mode [ 389.726112][T11625] bridge_slave_0: entered promiscuous mode [ 389.779462][T11625] bridge0: port 2(bridge_slave_1) entered blocking state [ 389.837782][T11625] bridge0: port 2(bridge_slave_1) entered disabled state [ 389.870038][T11625] bridge_slave_1: entered allmulticast mode [ 389.907256][T11625] bridge_slave_1: entered promiscuous mode [ 390.293540][T11625] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 390.355449][T11625] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 390.480505][T11681] netlink: 84 bytes leftover after parsing attributes in process `syz.0.2135'. [ 390.480610][ T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 390.524516][ T64] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 390.546963][ T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 390.567442][ T64] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 390.624189][ T64] dummy0: left allmulticast mode [ 390.641629][ T64] bridge0: port 3(dummy0) entered disabled state [ 390.678862][ T64] bridge_slave_1: left allmulticast mode [ 390.690887][ T64] bridge_slave_1: left promiscuous mode [ 390.708084][ T64] bridge0: port 2(bridge_slave_1) entered disabled state [ 390.758622][ T64] bridge_slave_0: left allmulticast mode [ 390.764672][ T64] bridge_slave_0: left promiscuous mode [ 390.778786][ T64] bridge0: port 1(bridge_slave_0) entered disabled state [ 390.922623][ T64] veth1_macvtap: left promiscuous mode [ 390.933377][ T64] veth0_macvtap: left promiscuous mode [ 390.952254][ T64] veth1_vlan: left promiscuous mode [ 390.960587][ T64] veth0_vlan: left promiscuous mode [ 391.241965][ T64] team0 (unregistering): Port device geneve0 removed [ 391.447973][ T5103] Bluetooth: hci1: command tx timeout [ 391.855101][ T64] team0 (unregistering): Port device team_slave_1 removed [ 391.909736][ T64] team0 (unregistering): Port device team_slave_0 removed [ 391.972422][ T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 392.031359][ T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 392.665884][ T64] bond0 (unregistering): (slave bridge0): Releasing backup interface [ 392.794966][ T64] bond0 (unregistering): Released all slaves [ 392.918651][T11702] IPVS: fo: FWM 3 0x00000003 - no destination available [ 393.364701][T11625] team0: Port device team_slave_0 added [ 393.408317][T11625] team0: Port device team_slave_1 added [ 393.533964][ T5103] Bluetooth: hci1: command tx timeout [ 393.601266][T11625] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 393.611775][T11625] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 393.645589][T11625] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 393.671266][T11625] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 393.683429][T11625] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 393.717117][T11625] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 393.801128][T11625] hsr_slave_0: entered promiscuous mode [ 393.814454][T11625] hsr_slave_1: entered promiscuous mode [ 393.907067][T11688] validate_nla: 1 callbacks suppressed [ 393.907086][T11688] netlink: 'syz.3.2137': attribute type 4 has an invalid length. [ 393.984688][T11689] netlink: 'syz.3.2137': attribute type 4 has an invalid length. [ 394.074084][T11708] netlink: 84 bytes leftover after parsing attributes in process `syz.0.2144'. [ 394.420155][T11713] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2143'. [ 394.995586][T11625] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 395.021552][T11625] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 395.042273][T11625] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 395.057141][T11625] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 395.210634][T11625] 8021q: adding VLAN 0 to HW filter on device bond0 [ 395.244138][T11625] 8021q: adding VLAN 0 to HW filter on device team0 [ 395.259364][ T2970] bridge0: port 1(bridge_slave_0) entered blocking state [ 395.266563][ T2970] bridge0: port 1(bridge_slave_0) entered forwarding state [ 395.297089][ T2970] bridge0: port 2(bridge_slave_1) entered blocking state [ 395.304434][ T2970] bridge0: port 2(bridge_slave_1) entered forwarding state [ 395.608103][ T5103] Bluetooth: hci1: command tx timeout [ 396.004201][T11625] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 396.083137][T11740] IPVS: fo: FWM 3 0x00000003 - no destination available [ 396.505371][ T64] IPVS: stop unused estimator thread 0... [ 396.887100][T11625] veth0_vlan: entered promiscuous mode [ 396.971919][T11625] veth1_vlan: entered promiscuous mode [ 397.014851][T11744] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2153'. [ 397.090694][T11625] veth0_macvtap: entered promiscuous mode [ 397.101633][T11625] veth1_macvtap: entered promiscuous mode [ 397.124418][T11625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 397.135873][T11625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.157222][T11625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 397.177314][T11625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.196671][T11625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 397.212597][T11625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.224599][T11625] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 397.234026][T11746] netlink: 'syz.3.2154': attribute type 4 has an invalid length. [ 397.272461][T11625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 397.291937][T11625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.302157][T11625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 397.313341][T11625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.323586][T11625] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 397.334346][T11625] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 397.349520][T11625] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 397.359615][T11746] netlink: 'syz.3.2154': attribute type 4 has an invalid length. [ 397.386530][T11625] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 397.399744][T11625] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 397.412196][T11625] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 397.423885][T11625] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 397.587715][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 397.595810][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 397.706629][ T2996] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 397.716511][ T2996] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 398.197488][ T5877] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 398.398321][ T5877] usb 3-1: Using ep0 maxpacket: 32 [ 398.554802][ T5877] usb 3-1: config 0 has an invalid interface number: 2 but max is 0 [ 398.757769][ T5877] usb 3-1: config 0 has no interface number 0 [ 398.810037][ T5877] usb 3-1: New USB device found, idVendor=108c, idProduct=dd68, bcdDevice=84.5c [ 398.839919][ T5877] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 398.878743][ T5877] usb 3-1: Product: syz [ 398.903512][ T5877] usb 3-1: Manufacturer: syz [ 398.916800][ T5877] usb 3-1: SerialNumber: syz [ 398.948853][ T5877] usb 3-1: config 0 descriptor?? [ 399.115215][T11771] loop3: detected capacity change from 0 to 256 [ 399.199512][T11774] IPVS: fo: FWM 3 0x00000003 - no destination available [ 399.558916][T11771] FAT-fs (loop3): Directory bread(block 64) failed [ 399.876308][T11771] FAT-fs (loop3): Directory bread(block 65) failed [ 399.903658][T11771] FAT-fs (loop3): Directory bread(block 66) failed [ 399.948868][T11771] FAT-fs (loop3): Directory bread(block 67) failed [ 399.955683][T11771] FAT-fs (loop3): Directory bread(block 68) failed [ 399.963345][T11779] netlink: 'syz.1.2165': attribute type 4 has an invalid length. [ 399.998807][T11771] FAT-fs (loop3): Directory bread(block 69) failed [ 400.036235][T11771] FAT-fs (loop3): Directory bread(block 70) failed [ 400.057198][T11771] FAT-fs (loop3): Directory bread(block 71) failed [ 400.077340][T11780] netlink: 'syz.1.2165': attribute type 4 has an invalid length. [ 400.096766][T11771] FAT-fs (loop3): Directory bread(block 72) failed [ 400.125745][T11771] FAT-fs (loop3): Directory bread(block 73) failed [ 400.275135][ T5777] usb 3-1: USB disconnect, device number 2 [ 400.693534][T11792] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2166'. [ 401.723226][T11807] IPVS: fo: FWM 3 0x00000003 - no destination available [ 402.570258][T11809] netlink: 'syz.3.2175': attribute type 4 has an invalid length. [ 402.757835][T11810] netlink: 'syz.3.2175': attribute type 4 has an invalid length. [ 403.227022][ T5777] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 403.379473][T11832] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2184'. [ 403.417003][ T5777] usb 3-1: Using ep0 maxpacket: 32 [ 403.427954][ T5777] usb 3-1: config 0 has an invalid interface number: 2 but max is 0 [ 403.453567][ T5777] usb 3-1: config 0 has no interface number 0 [ 403.482303][ T5777] usb 3-1: New USB device found, idVendor=108c, idProduct=dd68, bcdDevice=84.5c [ 403.506505][ T5777] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 403.537661][ T5777] usb 3-1: Product: syz [ 403.561781][ T5777] usb 3-1: Manufacturer: syz [ 403.581557][ T5777] usb 3-1: SerialNumber: syz [ 403.628873][ T5777] usb 3-1: config 0 descriptor?? [ 403.988776][T11836] IPVS: fo: FWM 3 0x00000003 - no destination available [ 404.681508][ T6561] usb 3-1: USB disconnect, device number 3 [ 404.789187][T11841] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2187'. [ 404.817780][T11841] netem: change failed [ 404.940747][ T5777] IPVS: starting estimator thread 0... [ 405.011723][T11848] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2189'. [ 405.027009][T11842] IPVS: using max 16 ests per chain, 38400 per kthread [ 405.089953][T11850] loop1: detected capacity change from 0 to 256 [ 405.150005][T11850] FAT-fs (loop1): Directory bread(block 64) failed [ 405.151292][T11854] loop3: detected capacity change from 0 to 512 [ 405.164862][T11850] FAT-fs (loop1): Directory bread(block 65) failed [ 405.172924][T11850] FAT-fs (loop1): Directory bread(block 66) failed [ 405.180802][T11850] FAT-fs (loop1): Directory bread(block 67) failed [ 405.191612][T11850] FAT-fs (loop1): Directory bread(block 68) failed [ 405.199124][T11850] FAT-fs (loop1): Directory bread(block 69) failed [ 405.207225][T11850] FAT-fs (loop1): Directory bread(block 70) failed [ 405.213807][T11850] FAT-fs (loop1): Directory bread(block 71) failed [ 405.230430][T11854] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 405.244457][T11850] FAT-fs (loop1): Directory bread(block 72) failed [ 405.255591][T11850] FAT-fs (loop1): Directory bread(block 73) failed [ 405.267220][T11854] ext4 filesystem being mounted at /519/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 405.385622][ T28] audit: type=1326 audit(1757498003.283:1582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11862 comm="syz.2.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 405.474590][ T28] audit: type=1326 audit(1757498003.283:1583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11862 comm="syz.2.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 405.514954][ T28] audit: type=1326 audit(1757498003.293:1584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11862 comm="syz.2.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 405.554247][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 405.566936][ T28] audit: type=1326 audit(1757498003.293:1585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11862 comm="syz.2.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 405.607382][ T28] audit: type=1326 audit(1757498003.293:1586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11862 comm="syz.2.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 405.630597][ T28] audit: type=1326 audit(1757498003.293:1587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11862 comm="syz.2.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 405.655663][ T28] audit: type=1326 audit(1757498003.293:1588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11862 comm="syz.2.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 405.710296][ T28] audit: type=1326 audit(1757498003.293:1589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11862 comm="syz.2.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 405.750564][T11867] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2198'. [ 405.779148][ T28] audit: type=1326 audit(1757498003.313:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11862 comm="syz.2.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 405.853150][ T28] audit: type=1326 audit(1757498003.313:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11862 comm="syz.2.2196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 405.959253][T11874] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2201'. [ 406.033204][T11875] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2197'. [ 406.656863][ T5877] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 407.056811][ T5877] usb 2-1: Using ep0 maxpacket: 32 [ 407.208018][ T5877] usb 2-1: config 0 has an invalid interface number: 2 but max is 0 [ 407.315473][ T5877] usb 2-1: config 0 has no interface number 0 [ 407.449901][ T5877] usb 2-1: New USB device found, idVendor=108c, idProduct=dd68, bcdDevice=84.5c [ 407.622038][ T5877] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 407.651748][ T5877] usb 2-1: Product: syz [ 407.677337][ T5877] usb 2-1: Manufacturer: syz [ 407.702363][ T5877] usb 2-1: SerialNumber: syz [ 407.733301][ T5877] usb 2-1: config 0 descriptor?? [ 408.023051][T11913] loop3: detected capacity change from 0 to 256 [ 408.124758][T11913] FAT-fs (loop3): Directory bread(block 64) failed [ 408.142042][T11913] FAT-fs (loop3): Directory bread(block 65) failed [ 408.156798][T11913] FAT-fs (loop3): Directory bread(block 66) failed [ 408.172652][T11913] FAT-fs (loop3): Directory bread(block 67) failed [ 408.181841][T11913] FAT-fs (loop3): Directory bread(block 68) failed [ 408.195394][T11913] FAT-fs (loop3): Directory bread(block 69) failed [ 408.206863][ T966] usb 2-1: USB disconnect, device number 6 [ 408.213135][T11913] FAT-fs (loop3): Directory bread(block 70) failed [ 408.224965][T11913] FAT-fs (loop3): Directory bread(block 71) failed [ 408.231959][T11913] FAT-fs (loop3): Directory bread(block 72) failed [ 408.238939][T11913] FAT-fs (loop3): Directory bread(block 73) failed [ 408.378177][T11920] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2215'. [ 408.694365][T11924] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2223'. [ 408.733544][T11924] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2223'. [ 409.190488][T11945] loop1: detected capacity change from 0 to 256 [ 409.224911][T11945] FAT-fs (loop1): Directory bread(block 64) failed [ 409.235353][T11945] FAT-fs (loop1): Directory bread(block 65) failed [ 409.246116][T11945] FAT-fs (loop1): Directory bread(block 66) failed [ 409.254112][T11945] FAT-fs (loop1): Directory bread(block 67) failed [ 409.264554][T11945] FAT-fs (loop1): Directory bread(block 68) failed [ 409.272649][T11945] FAT-fs (loop1): Directory bread(block 69) failed [ 409.283451][T11945] FAT-fs (loop1): Directory bread(block 70) failed [ 409.290154][T11945] FAT-fs (loop1): Directory bread(block 71) failed [ 409.302614][T11945] FAT-fs (loop1): Directory bread(block 72) failed [ 409.309414][T11945] FAT-fs (loop1): Directory bread(block 73) failed [ 410.225042][T11959] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2237'. [ 410.306704][ T5877] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 410.329274][T11960] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2234'. [ 410.496695][ T5877] usb 2-1: Using ep0 maxpacket: 32 [ 410.513624][ T5877] usb 2-1: config 0 has an invalid interface number: 2 but max is 0 [ 410.522184][ T5877] usb 2-1: config 0 has no interface number 0 [ 410.531534][ T5877] usb 2-1: New USB device found, idVendor=108c, idProduct=dd68, bcdDevice=84.5c [ 410.545683][ T5877] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 410.571706][ T5877] usb 2-1: Product: syz [ 410.576014][ T5877] usb 2-1: Manufacturer: syz [ 410.580968][ T5877] usb 2-1: SerialNumber: syz [ 410.588786][ T5877] usb 2-1: config 0 descriptor?? [ 410.714101][T11968] loop3: detected capacity change from 0 to 256 [ 410.751259][T11968] FAT-fs (loop3): Directory bread(block 64) failed [ 410.759926][T11968] FAT-fs (loop3): Directory bread(block 65) failed [ 410.772017][T11968] FAT-fs (loop3): Directory bread(block 66) failed [ 410.781639][T11968] FAT-fs (loop3): Directory bread(block 67) failed [ 410.791412][T11968] FAT-fs (loop3): Directory bread(block 68) failed [ 410.800545][T11968] FAT-fs (loop3): Directory bread(block 69) failed [ 410.812813][T11968] FAT-fs (loop3): Directory bread(block 70) failed [ 410.819660][T11968] FAT-fs (loop3): Directory bread(block 71) failed [ 410.835316][T11968] FAT-fs (loop3): Directory bread(block 72) failed [ 410.843460][T11968] FAT-fs (loop3): Directory bread(block 73) failed [ 410.971868][ T966] usb 2-1: USB disconnect, device number 7 [ 411.108199][T11971] netlink: 'syz.3.2242': attribute type 4 has an invalid length. [ 411.149076][T11971] netlink: 'syz.3.2242': attribute type 4 has an invalid length. [ 411.224316][ T28] kauditd_printk_skb: 43 callbacks suppressed [ 411.224332][ T28] audit: type=1326 audit(1757498009.123:1635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 411.268419][T11973] loop2: detected capacity change from 0 to 128 [ 411.285315][ T28] audit: type=1326 audit(1757498009.153:1636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 411.295406][T11973] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a802c018, mo2=0002] [ 411.312515][ T28] audit: type=1326 audit(1757498009.163:1637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 411.327633][T11973] System zones: [ 411.343859][ T28] audit: type=1326 audit(1757498009.163:1638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 411.370602][T11973] 1-3, 19-19, 35-36 [ 411.377367][ T28] audit: type=1326 audit(1757498009.163:1639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 411.386889][T11973] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 411.400209][ T28] audit: type=1326 audit(1757498009.163:1640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 411.437447][ T28] audit: type=1326 audit(1757498009.163:1641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 411.462174][T11973] ext4 filesystem being mounted at /579/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 411.474376][ T28] audit: type=1326 audit(1757498009.163:1642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 411.506981][ T28] audit: type=1326 audit(1757498009.163:1643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 411.545571][ T28] audit: type=1326 audit(1757498009.163:1644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11972 comm="syz.2.2243" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff49cd8eba9 code=0x7ffc0000 [ 411.574346][T11981] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2246'. [ 411.638643][ T5785] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 411.709413][T11983] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2249'. [ 411.960486][T11990] loop3: detected capacity change from 0 to 256 [ 412.353131][T11990] FAT-fs (loop3): Directory bread(block 64) failed [ 412.376146][T11990] FAT-fs (loop3): Directory bread(block 65) failed [ 412.508640][T11990] FAT-fs (loop3): Directory bread(block 66) failed [ 412.643832][T11990] FAT-fs (loop3): Directory bread(block 67) failed [ 412.667959][T11990] FAT-fs (loop3): Directory bread(block 68) failed [ 412.697639][T11990] FAT-fs (loop3): Directory bread(block 69) failed [ 412.704352][T11990] FAT-fs (loop3): Directory bread(block 70) failed [ 412.753512][T11990] FAT-fs (loop3): Directory bread(block 71) failed [ 412.776074][T11990] FAT-fs (loop3): Directory bread(block 72) failed [ 412.804200][T11990] FAT-fs (loop3): Directory bread(block 73) failed [ 412.952363][T11995] netlink: 'syz.1.2252': attribute type 4 has an invalid length. [ 412.997955][T11995] netlink: 'syz.1.2252': attribute type 4 has an invalid length. [ 413.128358][T11999] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2251'. [ 413.395206][T12009] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2258'. [ 413.468160][ T6561] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 413.657649][ T6561] usb 4-1: Using ep0 maxpacket: 32 [ 413.665247][ T6561] usb 4-1: config 0 has an invalid interface number: 2 but max is 0 [ 413.680446][ T6561] usb 4-1: config 0 has no interface number 0 [ 413.699562][ T6561] usb 4-1: New USB device found, idVendor=108c, idProduct=dd68, bcdDevice=84.5c [ 413.712708][ T6561] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 413.731093][ T6561] usb 4-1: Product: syz [ 413.741240][ T6561] usb 4-1: Manufacturer: syz [ 413.751368][ T6561] usb 4-1: SerialNumber: syz [ 413.767672][ T6561] usb 4-1: config 0 descriptor?? [ 413.964230][T12018] netlink: 'syz.2.2262': attribute type 4 has an invalid length. [ 414.018657][T12018] netlink: 'syz.2.2262': attribute type 4 has an invalid length. [ 414.185034][ T8] usb 4-1: USB disconnect, device number 5 [ 414.655131][T12032] loop2: detected capacity change from 0 to 1024 [ 414.729050][T12032] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 414.786781][T12032] ext4 filesystem being mounted at /584/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 415.113601][T12042] netlink: 'syz.3.2271': attribute type 4 has an invalid length. [ 415.206830][T12043] netlink: 'syz.3.2271': attribute type 4 has an invalid length. [ 415.473725][T12045] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2272'. [ 415.795456][T12049] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2270'. [ 416.740833][ T1025] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm kworker/u4:5: bg 0: block 393: padding at end of block bitmap is not set [ 416.798625][ T1025] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 117 [ 416.848388][ T1025] EXT4-fs (loop2): This should not happen!! Data will be lost [ 416.848388][ T1025] [ 417.495882][T12065] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2281'. [ 417.676113][ T966] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 417.834887][ T28] kauditd_printk_skb: 88 callbacks suppressed [ 417.834905][ T28] audit: type=1326 audit(1757498015.734:1733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12060 comm="syz.3.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 417.873078][ T966] usb 1-1: Using ep0 maxpacket: 32 [ 417.882462][ T966] usb 1-1: config 0 has an invalid interface number: 2 but max is 0 [ 417.891201][ T966] usb 1-1: config 0 has no interface number 0 [ 417.906348][ T28] audit: type=1326 audit(1757498015.734:1734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12060 comm="syz.3.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 417.913838][ T966] usb 1-1: New USB device found, idVendor=108c, idProduct=dd68, bcdDevice=84.5c [ 417.957503][ T966] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 417.965657][ T966] usb 1-1: Product: syz [ 417.970054][ T966] usb 1-1: Manufacturer: syz [ 417.974698][ T966] usb 1-1: SerialNumber: syz [ 417.979531][ T28] audit: type=1326 audit(1757498015.734:1735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12060 comm="syz.3.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 417.981740][ T966] usb 1-1: config 0 descriptor?? [ 418.068437][ T28] audit: type=1326 audit(1757498015.734:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12060 comm="syz.3.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 418.126693][ T28] audit: type=1326 audit(1757498015.754:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12060 comm="syz.3.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 418.180850][ T28] audit: type=1326 audit(1757498015.754:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12060 comm="syz.3.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 418.252667][ T28] audit: type=1326 audit(1757498015.754:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12060 comm="syz.3.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 418.259358][ T786] usb 1-1: USB disconnect, device number 3 [ 418.326286][ T28] audit: type=1326 audit(1757498015.754:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12060 comm="syz.3.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 418.349755][ T28] audit: type=1326 audit(1757498015.754:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12060 comm="syz.3.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 418.375337][ T28] audit: type=1326 audit(1757498015.784:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12060 comm="syz.3.2279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f80d958eba9 code=0x7ffc0000 [ 418.525404][ T5785] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.076752][T12195] loop1: detected capacity change from 0 to 512 [ 424.099319][T12195] EXT4-fs warning (device loop1): ext4_xattr_inode_get:545: inode #11: comm syz.1.2336: ea_inode file size=0 entry size=6 [ 424.116972][T12195] ------------[ cut here ]------------ [ 424.123018][T12195] EA inode 11 i_nlink=2 [ 424.123268][T12195] WARNING: CPU: 0 PID: 12195 at fs/ext4/xattr.c:1070 ext4_xattr_inode_update_ref+0x521/0x580 [ 424.138425][T12195] Modules linked in: [ 424.142367][T12195] CPU: 0 PID: 12195 Comm: syz.1.2336 Not tainted syzkaller #0 [ 424.150011][T12195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 424.160200][T12195] RIP: 0010:ext4_xattr_inode_update_ref+0x521/0x580 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 424.167375][T12195] Code: 24 50 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 31 43 9a ff 49 8b 37 48 c7 c7 00 cf be 8a 44 89 f2 e8 0f 74 0d ff <0f> 0b 4c 8b 64 24 18 48 8b 5c 24 10 4c 8d 7c 24 60 e9 1f fe ff ff [ 424.187562][T12195] RSP: 0018:ffffc90003407340 EFLAGS: 00010246 [ 424.193804][T12195] RAX: 74c18466323a7500 RBX: 0000000000000001 RCX: 0000000000080000 [ 424.202988][T12195] RDX: ffffc90004ea9000 RSI: 0000000000018cff RDI: 0000000000018d00 [ 424.211511][T12195] RBP: ffffc90003407430 R08: ffffc90003406f47 R09: 1ffff92000680de8 [ 424.219970][T12195] R10: dffffc0000000000 R11: fffff52000680de9 R12: ffff88805cf870b0 [ 424.228320][T12195] R13: dffffc0000000000 R14: 0000000000000002 R15: ffff88805cf87100 [ 424.236683][T12195] FS: 00007f3ca34ab6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 424.246017][T12195] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 424.252656][T12195] CR2: 00007f3ca2571fe0 CR3: 0000000063568000 CR4: 00000000003506f0 [ 424.261062][T12195] Call Trace: [ 424.264753][T12195] [ 424.267784][T12195] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 424.273504][T12195] ? __ext4_journal_ensure_credits+0x30/0x450 [ 424.280509][T12195] ext4_xattr_inode_dec_ref_all+0xa2b/0xf90 [ 424.286665][T12195] ? ext4_xattr_delete_inode+0xc00/0xc00 [ 424.292383][T12195] ? __ext4_journal_ensure_credits+0x450/0x450 [ 424.298759][T12195] ext4_xattr_delete_inode+0xa45/0xc00 [ 424.304283][T12195] ? ext4_truncate+0xc12/0x1060 [ 424.309267][T12195] ? ext4_expand_extra_isize_ea+0x19e0/0x19e0 [ 424.315923][T12195] ext4_evict_inode+0xaa3/0xea0 [ 424.320838][T12195] ? _raw_spin_unlock+0x28/0x40 [ 424.326188][T12195] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 424.332157][T12195] ? do_raw_spin_unlock+0x121/0x230 [ 424.337754][T12195] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 424.343713][T12195] evict+0x486/0x870 [ 424.347713][T12195] ? __lock_acquire+0x7c80/0x7c80 [ 424.352790][T12195] ? proc_nr_inodes+0x230/0x230 [ 424.357851][T12195] ? do_raw_spin_unlock+0x121/0x230 [ 424.363143][T12195] ? _raw_spin_unlock+0x28/0x40 [ 424.368154][T12195] ? iput+0x70a/0x920 [ 424.372200][T12195] ext4_orphan_cleanup+0xbd4/0x1400 [ 424.377703][T12195] ? ext4_orphan_del+0xba0/0xba0 [ 424.383338][T12195] ? ext4_register_li_request+0x183/0x940 [ 424.389285][T12195] ? errseq_check_and_advance+0x66/0x120 [ 424.395074][T12195] ext4_fill_super+0x5de7/0x66c0 [ 424.400190][T12195] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 424.406726][T12195] ? vscnprintf+0x80/0x80 [ 424.411144][T12195] ? down_read_killable+0x340/0x340 [ 424.416508][T12195] ? setup_bdev_super+0x56b/0x660 [ 424.421593][T12195] get_tree_bdev+0x3e4/0x510 [ 424.426369][T12195] ? vfs_parse_fs_string+0x160/0x160 [ 424.431706][T12195] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 424.438061][T12195] ? setup_bdev_super+0x660/0x660 [ 424.443127][T12195] ? apparmor_capable+0x137/0x1a0 [ 424.448324][T12195] ? bpf_lsm_capable+0x9/0x10 [ 424.453053][T12195] ? security_capable+0x89/0xb0 [ 424.458035][T12195] vfs_get_tree+0x8c/0x280 [ 424.462531][T12195] do_new_mount+0x24b/0xa40 [ 424.467169][T12195] __se_sys_mount+0x2da/0x3c0 [ 424.471897][T12195] ? __x64_sys_mount+0xc0/0xc0 [ 424.476883][T12195] ? lockdep_hardirqs_on+0x98/0x150 [ 424.482141][T12195] ? __x64_sys_mount+0x20/0xc0 [ 424.487617][T12195] do_syscall_64+0x55/0xb0 [ 424.492085][T12195] ? clear_bhb_loop+0x40/0x90 [ 424.497040][T12195] ? clear_bhb_loop+0x40/0x90 [ 424.501773][T12195] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 424.507811][T12195] RIP: 0033:0x7f3ca259034a [ 424.512290][T12195] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 424.532116][T12195] RSP: 002b:00007f3ca34aae68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 424.540719][T12195] RAX: ffffffffffffffda RBX: 00007f3ca34aaef0 RCX: 00007f3ca259034a [ 424.548921][T12195] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f3ca34aaeb0 [ 424.557017][T12195] RBP: 0000200000000180 R08: 00007f3ca34aaef0 R09: 0000000000800700 [ 424.565040][T12195] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 424.573337][T12195] R13: 00007f3ca34aaeb0 R14: 0000000000000473 R15: 0000200000000680 [ 424.581597][T12195] [ 424.584845][T12195] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 424.592163][T12195] CPU: 0 PID: 12195 Comm: syz.1.2336 Not tainted syzkaller #0 [ 424.599944][T12195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025 [ 424.610113][T12195] Call Trace: [ 424.613431][T12195] [ 424.616377][T12195] dump_stack_lvl+0x16c/0x230 [ 424.621078][T12195] ? show_regs_print_info+0x20/0x20 [ 424.626291][T12195] ? load_image+0x3b0/0x3b0 [ 424.630813][T12195] panic+0x2c0/0x710 [ 424.634817][T12195] ? bpf_jit_dump+0xd0/0xd0 [ 424.639350][T12195] __warn+0x2e0/0x470 [ 424.643341][T12195] ? ext4_xattr_inode_update_ref+0x521/0x580 [ 424.649350][T12195] ? ext4_xattr_inode_update_ref+0x521/0x580 [ 424.655341][T12195] report_bug+0x2be/0x4f0 [ 424.659686][T12195] ? ext4_xattr_inode_update_ref+0x521/0x580 [ 424.665865][T12195] ? ext4_xattr_inode_update_ref+0x521/0x580 [ 424.672119][T12195] ? ext4_xattr_inode_update_ref+0x523/0x580 [ 424.678112][T12195] handle_bug+0xcf/0x120 [ 424.682367][T12195] exc_invalid_op+0x1a/0x50 [ 424.686895][T12195] asm_exc_invalid_op+0x1a/0x20 [ 424.691934][T12195] RIP: 0010:ext4_xattr_inode_update_ref+0x521/0x580 [ 424.698634][T12195] Code: 24 50 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 31 43 9a ff 49 8b 37 48 c7 c7 00 cf be 8a 44 89 f2 e8 0f 74 0d ff <0f> 0b 4c 8b 64 24 18 48 8b 5c 24 10 4c 8d 7c 24 60 e9 1f fe ff ff [ 424.718253][T12195] RSP: 0018:ffffc90003407340 EFLAGS: 00010246 [ 424.724330][T12195] RAX: 74c18466323a7500 RBX: 0000000000000001 RCX: 0000000000080000 [ 424.732310][T12195] RDX: ffffc90004ea9000 RSI: 0000000000018cff RDI: 0000000000018d00 [ 424.740295][T12195] RBP: ffffc90003407430 R08: ffffc90003406f47 R09: 1ffff92000680de8 [ 424.748361][T12195] R10: dffffc0000000000 R11: fffff52000680de9 R12: ffff88805cf870b0 [ 424.756342][T12195] R13: dffffc0000000000 R14: 0000000000000002 R15: ffff88805cf87100 [ 424.764432][T12195] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 424.770086][T12195] ? __ext4_journal_ensure_credits+0x30/0x450 [ 424.776258][T12195] ext4_xattr_inode_dec_ref_all+0xa2b/0xf90 [ 424.782179][T12195] ? ext4_xattr_delete_inode+0xc00/0xc00 [ 424.787828][T12195] ? __ext4_journal_ensure_credits+0x450/0x450 [ 424.794007][T12195] ext4_xattr_delete_inode+0xa45/0xc00 [ 424.799489][T12195] ? ext4_truncate+0xc12/0x1060 [ 424.804499][T12195] ? ext4_expand_extra_isize_ea+0x19e0/0x19e0 [ 424.810592][T12195] ext4_evict_inode+0xaa3/0xea0 [ 424.815465][T12195] ? _raw_spin_unlock+0x28/0x40 [ 424.820330][T12195] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 424.826234][T12195] ? do_raw_spin_unlock+0x121/0x230 [ 424.831478][T12195] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 424.837899][T12195] evict+0x486/0x870 [ 424.841804][T12195] ? __lock_acquire+0x7c80/0x7c80 [ 424.846845][T12195] ? proc_nr_inodes+0x230/0x230 [ 424.851730][T12195] ? do_raw_spin_unlock+0x121/0x230 [ 424.856984][T12195] ? _raw_spin_unlock+0x28/0x40 [ 424.861863][T12195] ? iput+0x70a/0x920 [ 424.865866][T12195] ext4_orphan_cleanup+0xbd4/0x1400 [ 424.871179][T12195] ? ext4_orphan_del+0xba0/0xba0 [ 424.876132][T12195] ? ext4_register_li_request+0x183/0x940 [ 424.881867][T12195] ? errseq_check_and_advance+0x66/0x120 [ 424.887514][T12195] ext4_fill_super+0x5de7/0x66c0 [ 424.892587][T12195] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 424.898940][T12195] ? vscnprintf+0x80/0x80 [ 424.903286][T12195] ? down_read_killable+0x340/0x340 [ 424.908597][T12195] ? setup_bdev_super+0x56b/0x660 [ 424.913630][T12195] get_tree_bdev+0x3e4/0x510 [ 424.918229][T12195] ? vfs_parse_fs_string+0x160/0x160 [ 424.923521][T12195] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 424.929769][T12195] ? setup_bdev_super+0x660/0x660 [ 424.934811][T12195] ? apparmor_capable+0x137/0x1a0 [ 424.939850][T12195] ? bpf_lsm_capable+0x9/0x10 [ 424.944536][T12195] ? security_capable+0x89/0xb0 [ 424.949397][T12195] vfs_get_tree+0x8c/0x280 [ 424.953825][T12195] do_new_mount+0x24b/0xa40 [ 424.958351][T12195] __se_sys_mount+0x2da/0x3c0 [ 424.963038][T12195] ? __x64_sys_mount+0xc0/0xc0 [ 424.967824][T12195] ? lockdep_hardirqs_on+0x98/0x150 [ 424.973035][T12195] ? __x64_sys_mount+0x20/0xc0 [ 424.977905][T12195] do_syscall_64+0x55/0xb0 [ 424.982366][T12195] ? clear_bhb_loop+0x40/0x90 [ 424.987062][T12195] ? clear_bhb_loop+0x40/0x90 [ 424.991922][T12195] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 424.997836][T12195] RIP: 0033:0x7f3ca259034a [ 425.002347][T12195] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 425.021968][T12195] RSP: 002b:00007f3ca34aae68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 425.030394][T12195] RAX: ffffffffffffffda RBX: 00007f3ca34aaef0 RCX: 00007f3ca259034a [ 425.038809][T12195] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f3ca34aaeb0 [ 425.046792][T12195] RBP: 0000200000000180 R08: 00007f3ca34aaef0 R09: 0000000000800700 [ 425.054781][T12195] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0 [ 425.063200][T12195] R13: 00007f3ca34aaeb0 R14: 0000000000000473 R15: 0000200000000680 [ 425.071197][T12195] [ 425.074573][T12195] Kernel Offset: disabled [ 425.079109][T12195] Rebooting in 86400 seconds..