last executing test programs: 11.779735126s ago: executing program 0 (id=4414): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f0000000400)=@raw={'raw\x00', 0x8, 0x2, 0x200, 0x0, 0x43, 0xa0, 0x1b0, 0x98, 0x300, 0x178, 0x178, 0x300, 0x178, 0x49, 0x0, {[{{@ip={@loopback, @local, 0x0, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00'}, 0x12a, 0x70, 0x90, 0x0, {0x0, 0x7a010000}}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x260) 11.708700072s ago: executing program 0 (id=4415): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f0000001440)={@val={0x0, 0x86dd}, @val={0x3, 0x0, 0xa}, @mpls={[], @ipv6=@udp={0x2, 0x6, "3d885d", 0xf98, 0x11, 0x0, @empty, @mcast2, {[], {0x4e22, 0x4e21, 0xf98, 0x0, @gue={{0x1, 0x0, 0x0, 0x6, 0x0, @void}, "b728457b12eb228ed56a0c710bf155fc2c054279700adfa0bb06ea45566a91832f996cb1bcf2ee9f04abdca9a3efd0def6f750f0c483c07db77ad2c7b8dc6ef375691f3c8910cc61b673f8e972e3a1377fef2167461479587baae2d5e7962cba0b3031f8a4a52e795f8f736bd7d327ec2382f41fb26a0d713f18c07c84f11a67ee56ce3ff6c3b0458a5fe2ecf148aa4ace672423bf40d8f50bb7d4e28d2493a29849d9a008e286a456254140f36215c405a96d823fdc4ec0ac30d542a83865a7223ded5d9202ba127af7bd50da6206a9e09f0c807351b00cac9ecade9f911ac7a2406351fb7a663511fa45bffe0a1a8256d45c300cdc48d8dd107e6fc4326a424f00bf98a5730ac1c18a2a297dfc14ce6da1982377114d7f2d3841cd6c86ce399bcf06e767604af4cfc4391d90c7b828bc98dc6f3c4a14cbde19444b59e27b10f30a7afb5951c81d399bbe11c9b3b8097622269ac33ab9faba05b5c24f120e50d166d1bcc803c3f2f9f8a2d5c8a57194957870c9079af1e75c5cffd4c3139b35104e678e53f3ef7b203d5c2272155689a9088e2ce772194ce434dae50c29b7faf3e5ee0462348aa3da95b4e34c560f99b88ae5330037dd2ce883edf395419b41c9db04fe40d1f3afc77fb56169f4ed2f0cd7c99e037485efe55035b5eb37217ea59cfa6722e87ef682565198a97f3ce3dd3d59425bd196d8d0bcf016d17bb7b833b53b3d5ab8b4bda1d455fcc25395181cbb574db66cb7b7a3306d5358b54c1187f58db47130e4111b522f22eb6a8d7c8626c67239d5bf476af15db1e1b09ecf02a14fa504db736d373ea1655e94758e5fc15c0d36990c7011b0dea19cce107031bc9d3886e5c88f64c777c0b4a50f3a5513e042c6a7a47ff9e43df8405a28a02e01292cbcf53af5923906a3c493f1922d613f2c121371a6f5f20515fee109cbf2c845173db3d3d0bfdd1e4dc8ae6137e9144c3518db8c064dbd6b9c7a79101acae98289d92eb03cbb5beec5c7bc2dbfc3befab7694d4233c887fb3a53835bdb86da16c062b4b90f4ec73d27fe9682f0e6cac0baa8fadd8aae5639debc3c21d42cb7de6224e176edfd11fce378e73fbd61a1387a1aa97960ee7616fe3527fbb8550918ea50707f32ae618147b55f5f2cb194760006223d91afe631ceb3053130bce978c2eda00ad042b0b15cbcfc33f4a35ed15c824db4507eb6ad6698c9d7c48e1e5a0180405bcdfb3cda5c9eb09d7d11cadf1549d364f6c8a695e34783deaa095cfb48a3119c73443202cec0f883e4390a706676d1c1190fd784608540a4e59ca75d997eda30aa42b304cec8b7ea7fee19630851f7ae8ed575a06e5fd6fe329dbbd01539dcce86fef0923341ec0da5923ab38924cb160d99ba30b2d862f23e0d2b4d4daa58c8627124a96e50a90c04e41407fe327c009e4429ad4950b59075d6d5ce23ee339eb81f633a8634ccd6d95f12eade99010d5e70eb0591251428089866a0784b0e5840dfa3d880f22357078f1fa81c5ed5606482e4166c7fd6dd04c9acfc98e88518bfe8017eda4df0e90f6d152bd3938478db8d32c683d774b466aadf9c2c15360b5624d4b36fb92ee1f380e56c116e37f7fefe688f3311eac225739e7f51462ee58048f7c8804dd4ff64d1d0cf341d62590665a2e4e37f5ec8858689b07542e93ff857b13de3f5face03a7f8b493338a4b425b2155a09dd9271b3c8b51e9ee198612554d3554136e1153467efd97bddd5cc76b3ce9d28d698d3ba7bc666f7f5fc0a9479f5df445caf420a04d585f611cffbe557639a84f5975ffcd292b44b2064dc07b627676f8b1ec7989230be7fe7b39eb758affb5ff45e6a0c3e19cc40c4a3ec8b95fb0cc4e53d3ecc6931d09c58e4121c8dbde2b034dfedde1a6df0ad017e4af2bbf0b140201c7c4ce8a66a593c60fc71621df3b176ec515c64c7850b4097176ec89163f6a16311607e35ab6d58e97f9cc3bd2e997b4e636fd99d0bc82ed6aa6607faf4492701773b9ea9f857383bf946679c67c857e05bb4d4a92bcd528339cb716fea0e0b2536ce458e533c3f739bdaf0417d5acccbf5c2201f935d48e58477e357df3513a5739e61ba19bbd530f4fb8ea307cd7f1191bb042c6a0a85951a0f96d0aa9cb114ec6461823dd414078d080cb00e234e9af90c8fde6d63991c641715944025f39d9631830317d3b609423361bd0d64df6e48a345a3844c4cc0238dc08bd41a10deb79da766bc18f2258d783e911882f4191e11713e0c8618ef1b34571492ed50f52e3f1e8a41287d1b528d9d9095cc993779d9a9dad54d8317e2e2a50a81407ed482428b12a1252c268e262f11b3b53921fca7da75ba5c42ecf769da5bbc40cefbb7656a6b52e92e351ec8b76ec2f1b6f75e11fb682880a8c43a896e554146c6f8e73d1791e25404e03c0cf7d9ad6149518fe4b8084fa69ce4d5e926274d1048ec03f428f13676dcc8c56af0e688fde135fcbd8666de7c9a2d35846816a7e51d756eaeb7f76e403025fb643dd518a089496d44ff68e66c68039cf82bdaef6dd03ed56897c911a6185d42262c7fae2db875515ef691a1f97c272e9706c70e3445e4a2b0932f1f52120946d74c5da4baa2e48933641e6eb2050cb9f77e1de57522461322e707241e4614c46297f1999884a0f1f0c1d2d5618d492318b504f010eb60c01c0a585acd0121df3b82a05a75aee8e0c06c475375d908a214112bd6a8e267ee65d9bb02134064f97517bd1bf120bcc9d1c35b1864576927dac968bef31e234446c855c164e195359c975216b83328454bf49c9d32fb2c5ef4ae5bc04ed46ab20e1a6375a8900c81a9a644c0c85eac5bed8124b9655d773edd55f53fafff68619b577ebe06b893739d10dfdf0fd5792a4357e3b4c0c369e16cd427e313c5c007a2c3529515e003de8d499935bc29c5f105882b265a8b9cc5357e0bb4b1c33c03c319005d772a7112bd4a0e947d55d7afa6dcfd29a4e72c18dda7f6fa65cf9f48eab5a1e272c98214c6b77c4124102b52a2f1546acd3aba2bea06e8279d261ad27503e9a68b6adf7c84d5b269cf8f241415cf9e94979d24bf9fc766ba7b44567698371850559b5680e0b539bedac200896fa3d6312af25b995099baaa6ce65eebe85c0483858fb9f6c56b5f35582a880cee219da3547cc487eaa728a2859cb56ad06ea5c1c95979427e166200f970c1029c73c4bfc88597765c0552958fb41611b648e41dd79a6c4fe63c18e6f6a75d8a6d037fff66dae32cd1e25216a5f8bca641d53a37c9a10f76d94671893c6555a4cfbb130931fac5fd04b486a97ea83dba29f6cea1f32350f7c61c06f9a5e7cfe98a29e78ce7946ff58ad3f1e3b1f2b48667ae4b4d69cae29046b2c09773af3cd448539c0e5a86567a309196ea1152e583ea7c02fa732a7ce05859a505e0028769c916a5d322b28976735bd3f6afb421e4a734dee0b690d40bfbfd6c216d5fdd89daa695ca5562555dfefe9aaee110e5236066d7f4873fb6ce314233432f0de85fbdbb216610deb2c2bbca5b7010b8eaa417467c5ab4765c001a8b019e417e8d85c717c21b9ac1fb9d63a9fd0af3615f36dc4785e8002d8f1c9e191143b64c7de7d51161486540c247095eeb0bf529fba442c2c4d4d10c108fb423f91a49ce4e08aaee726d32e60004152516b05d972753cf2320bba94e8c6f9349755f082af42b4b5eb023ff6a522e5dbb5bb6f90e595b3108d7fe358b080d065aa2f1b92b1d07ee4b531c10c3ac5f646ea5d46d33b6dfa7aaf8a1fe6e54e3b3d9c75303d753eb0c15926d861fefb26e640e56c91c164a82d9641d0d93d546b081e0514c8763d8b1a46e73d7e2a9b1b3f2f7d1e0fca8c84f7c991893d7771c057b3fcebf0c638824c4d1a53f416b90c51979d07939e06d539761bcc0e04b37a86e242aff44cd0063a5eb03f7d925fbc771357ce2a7e515bcef6817b6e152ec52ad68c7dcf3facedab288a0da5bc6dfa648c37e3a15386643d994e6d82f4787a2588433368d26e9c5e0761951a583fb26dcd68eb70f391e6740a03bb6bc387e1a773610212ea9b3d783e2e94140c4e864f5df05031e3cba742f6c97ce6bba486a76a2426e5698c65eb1084ed928a7d9ef687158fa75c16edd18832cbd103a7595d5e7d239b2e8869abaa43aacb45b69a84a8345fb41918de1cab78590d717b5ce655da44e88f5a0746a565bb17d89501ab2759244011ddb770ce1c84eba72f074748a7b711dd0f12bdb8af39efa41b7bdac555121a4905df437cf54cfbc21c3fa6a2f59e300a3b974097a847f5a56ce837c64d3df2129643542869194cbe521e9339292dcc021cfcc52b9bd8a1c4f41daed4c49e8b2275b35b2b71fe0911a0821e99be28c2264e621754fa5b58af203520dd8a4fc11213e20323b2a9fada5ae76387b17fd34950026295c3b0db2499c28078229718055860b5d7be316c05d52f186499551810611cbd577d1e880a2b3974582976c59fadb891395d94ae9a86c0de882bb17387e6c4d5f85c602bd145faaac9645796116a7a9bb765d892913fea32d998b70ff6cecec91feb6ffe30575611a2c56b2a7e436b95c689be6b97a9faacda43ebd5108fc16da18f29beb19d75f1a48f7bf37fd789c148d8951f3de058184ff6938859f9c6386954574bf6e802808b0e865f95b2682e816781844a1174073cdb16b32f9eb1893c66e744e7d9924e105839f8588614c557b4d94f12844cd1abc0b564c3a4c201757f6515c31df119bba152c7c8fc87d8332108600c29a717638c7e9c91194d40b363303b5996d1fbbb56dbfe24a41ef9e41032c509e9c3980df5f1d6c5f3038840e464eed9003abc50483ba89e749eb50cc4ff13018551c2b88b9248333b0bbff3ce77edee4df48d47739ca5056d5bced9b4c723b3b3ed6d0bcc7741314ee3b9ca4b79e4e0188e482229ca9bda9e10c4939bd12aa2b6fec136c8aad4b6e42e7b19b31b49e936a081c16aea48ecfe614a9f6d612d660afbd46ec82aa97be8823405f3a3dbd5d864004cafabada0371671b1c262c8c653cf575ad0f716ba9cf90e933d7f5a194cbc9b60611b2890e70e7fa6c0518f74ee20dbf5c86a16076a44cd7590a37e6a8e5e1227bddafe69a2e73ff6c17a283102c4930f59d15d025f3c1e817a17aeccf5616d65a07e9133d56d76aacdafee8e78290b24e822de1a21694995bcb1f6ba2798985cab81134c784e2ff93eee768e5c1ed37b790a61f6008cf3b0681caf3336a62e4c084da55c163e2f729cc95247d5b07c3fc746e5f508d0f0928a90ebbd7534658fa3e47d999103ba78fcb77eb91031f3e27742dbfcf75b6742b124dc56dc2b57ebac8e49826f7567d9ae62b6d0aa1428ad73de722fb0d35aa60099327260b5c539c65e3b14f6843999dd85351bc00a3e9904bfa27b6e01365d21c1931f1d65711cc6fa76592531c09752a9160314f897df4b372cb75255b00fcf7f022deae0c46a70bbeaed912c8da50bb0e15ec3a6ae09ba4634f830db51944e0d7010338250a296b966106b8ebe8603fe61c040fc9d487b54ae2fe45faadc921297c720c639645de17b652fe6c0fe6e0cc47b06f94458121044b80f7ac4ae5f53b1948075da75cd40"}}}}}}, 0xfce) 11.61593407s ago: executing program 0 (id=4420): perf_event_open(&(0x7f00000006c0)={0x2, 0x80, 0xc5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r1, &(0x7f0000000c40), 0x12) 11.51618653s ago: executing program 0 (id=4424): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="18030000fffffffb000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200000d000000b7020000000080008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) syz_emit_ethernet(0x86, &(0x7f00000001c0)={@random="591a1d9a2bdb", @link_local={0x1, 0x80, 0xc2, 0x25}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x29, 0x0, @empty, @multicast1}, {0x0, 0x0, 0x64, 0x0, @wg=@response={0x220, 0x0, 0x0, "bfd8a5dd2002c02142c4391145badd28fd7f0ffc0e896f38da00", "0bb10000085b2e00", {"bb3b2195c4b058706558a70864bef1f0", "524a72fc460b8cd26e095f24ab642591"}}}}}}}, 0x0) sendmsg$inet(0xffffffffffffffff, 0xfffffffffffffffd, 0x4c0) 11.432631427s ago: executing program 0 (id=4426): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000700)={{r0}, &(0x7f0000000680), &(0x7f00000006c0)='%+9llu \x00'}, 0x20) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000740)=@generic={&(0x7f0000000600)='./file0\x00', 0x0, 0x8}, 0x18) 11.423242168s ago: executing program 0 (id=4428): ptrace(0x10, 0x1) r0 = inotify_init1(0x0) fcntl$setown(r0, 0x8, 0xffffffffffffffff) fcntl$getownex(r0, 0x10, &(0x7f0000000380)={0x0, 0x0}) ptrace$getenv(0x11, r1, 0x0, &(0x7f0000000000)) 1.544589838s ago: executing program 3 (id=4615): openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xb) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x82080) 1.483282583s ago: executing program 3 (id=4619): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$FOU_CMD_ADD(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)={0x24, r2, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_TYPE={0x5, 0x4, 0x1}, @FOU_ATTR_AF={0x5, 0x2, 0xa}]}, 0x24}}, 0x0) sendmsg$FOU_CMD_DEL(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_AF={0x5, 0x2, 0xa}]}, 0x1c}}, 0x0) 1.464585915s ago: executing program 3 (id=4620): ioprio_set$pid(0x2, 0x0, 0x0) r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x900008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sendfile(r0, r0, 0x0, 0xee0c) 1.441299827s ago: executing program 3 (id=4621): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000a50000002a00000095"], &(0x7f0000000b40)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) pause() 672.985158ms ago: executing program 1 (id=4639): bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9db, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='io.stat\x00', 0x275a, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="2800000035000100000000000000000003ffffffe5000000100001800c001000040010", @ANYRES8=0x0, @ANYRES16=r0, @ANYRES64=r1], 0x28}}, 0x0) 642.787671ms ago: executing program 1 (id=4640): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001640)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xec) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) connect$pppoe(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x15, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b70300000000000085000000a0000000bf090000000000005509010000030000950000000000000085100000f5ffffffbf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000240)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, @sk_reuseport, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) 532.927211ms ago: executing program 3 (id=4642): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf7cf39e3100c8acaa47684f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d7559f3b14820ed58b15627c95aa0b784625704f07372c29184ff7f4a7c0000070015006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e000000000000041201baa80b0b8ed8fb1ec577c377f627daaf787a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bdeda7be586602d985430cea080000000000fb1a26abfb0767192361448279b05d96a703a660587a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aab926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb155481ef836eb0f8c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaed2b25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec0271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761036eafed1fb2b98b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe514283707c70600000000000000b7561301bb997316db01ee601f2c9659db9bc04f7089a660d8dcc3ae83169cf331efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a515d83129cd857c775f9e7d6101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af403269b4a39ce40293947d9a631bcbe3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562e00e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb2214209ed2d5d776e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b55ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f608ce27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e30400000000000000000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a95d32f46ed9bd1f00fb8191bbab2dc599dda61ee2010000294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bfe2777e808fcba821a00e8c5c39609ff854256cb490000000000c1fee30a3f7a85d1b2b458c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd210819203828b202779d386ed295f023c67d867014d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff00004043060000005dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df40600000000000000e9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b0600b805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1202000000b59fed817072a0da60160761fd3dffda0f7c742eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7000000000000000542954c167dd9b4acd946ffffffffffffffff1389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c9e281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b630500163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f700400fa0c61d5fe6d8ff353f631080405547d65375ae04f44f0c2543c772c5ccb137be7dc87746e1785a8214454d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b036e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e010000005a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb3985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1428c0805b4031a667e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a9cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab9100781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c1227c8bed10591958c906321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b863af34bac64c247672a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c39132a0f27080ece2a94c360b002c77f82662675a7713c7067081cac1599a998c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc215a18ca0265400abf38e90000000000000000008faf2cddffbfa66bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942ce18e57bb7f337df5435bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de286553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c03f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c872a4882d21db2046a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265441d513a1294b8439276394945d94a589708e32a1cb30a8b07b391201385e0b92ecbb7b13d7a87284164018ace6ce58a82c5de321452461089cdd69259f5390f5f508646a524490583c30630bedb47e158ad41c0a653e86a4f4f255cd2a6e95f33b586823aef5564d9de1f5bdd8c80e193f0597b8003860302cd243c00bc5a82c52afb115d16258d507937966bb89409d6d47b8b652d0761d7c72875ae1efb9bc7c6807c2d783e31fd9cd7e84d3d50d8fc44ab8ac9ccd2c0d42e3bd4c029241320446bbf47e23d1320de30fbdf7ed13f80c28fb5c13fccc2e3f73509bdcddad8a2fe48cdd61f2f43611704af64eed8b0cbbd08754f93b8f3d6347aad5cde1ccc5cbd5eaa87e52cea257c856a4af5243eeb5e89f0000000000000000f420df5e4c6d856b3d55e455c08110b2ef4255a38f81555e8e1f22d59c0bc3c9013e66a1f5bda1b695e1602c0afb5c35b2f68f3b151b1e869f40ff4d1bef5e926e1ff95f6321131e4cb797f53455a093a95e67605222d6acc29c46e5db1ef3b8b07e2169fb24ced4b3ae87ebeca06df93212e465bbd1a7e41df2e1a0d508f86cfc7a469ac682685c44692877d03c34c23a65d2677acc73b5d276fdebd685c9b7a079eae228d8426188cb19b083548f5f29e493ab079f33d1965dcbb165015c46998ad410d60cc65fcfa73bd65a43fc024455c4bf530d663976cf71490577251780ab6b1cf8d397444b5be575229f687a3d95ea6b2aa62fce8acb3d4a6a130b4fefa55d0c1d6f3fa448ee24e588e2965c9a442f0baf90923dda91a6850fb7b9c7f432b63001423fedcf053fa28024cc9a178a07042dabc07176fc524032c2edb340c9c18a83565c431aeb0c869683507255254430f90f61e4eca9c8fa98c000b35fec357ee1ebd08439bd95c1ab0753dfd2603d1608bd8c589a1e160000a6ee0ad13346e08738c2d7b00b5d121d918f1dc8bceded939fa8605b54b37cdfcea0bf2bc63e655dc04a2e50212ff89d6587d49896ce18916cf3adc12839c345ca91bb232b891fae2fdd68aaa38281c0feb2c107af3e080d6cdd1c6646ec6804d7e9960c02aa0db9eda24bbcb287fd2a890fa7f9d6ae0c0b1f8dd1603c9ea2f66b572276f96a28b5b6dd9f9bf6ad4bdaa2139b90faf1f40b0f141258578bd825daaaf718d21b7ac05fe5d1b699e5422ca341fe1c944f68fe3a6d783dcf30b0e09d7688f696883b61cb64464b04d351a0a69b0733c348049b0430ed40e200f4ff0000000000000000000000996bcc1b721b152c892fab887e7d20466d90c049c0fdf51dcc16d226a2619c6f47bc25b7f5df5c09fed638922ed127ab36aa7b0c58a2ce5894b1b0f5375d340d96b69b966b05daaf585121a9c7605ed8e9964eef1f14b74cbb2ccdadc6d0b77cf0492b75e1cd11bfdcfddde91b20366715ba0cbe1041be2a65c25d7ca15ef8b71bd2ab9a4294899a1964b0152518fc2ac15a728bcb9e2bc4b551dfdf9011a2a607bc39ad2c4d7c64dcf967724e9b63c397d5265ad3f1da4395a5a800d8845257dcbf210d4f00fe0bd3deed05e506736e6bb6d40ee6cb960bcdb33633ee87f82beb665a9a4c2d4d2b06479ade3a4cd6bba765c9f52b52a0bdd0849ab92baae3775570accb5a57ee9f0035fc6d3df4eebec2e7eb4ff863d3979a20f4428ddca471037b49d4fd130743a97faa02c293b721e52bf53d64c6585e138162331ef98792e1e9b21a6a084fb7b42c64062ef1323a8a65a8ed6038f274f28ff4f78136a1ef108efbe8c4f4e347d50dcdbc33bf3ade4c3a39d316061930d7dd39b8acdecc3f27830e3eda40e648328d95a9aee65a9dd09fd4e96d5b852025dc53ec3f30cc753e6a796084b4e34f521dbb230ae0f3b79142073d437e1fd22d3b7503ffa95b1d5c7740b0ecbfd35dc0f8af895583dfcc2689f6e02c2dd4b57f3dcac54f40da013eb221fa3d65de760576031052c25a96ed4b20230b36d46d3d3fd6bb1d77cc8a48a6b10fa0149e55ccde4a2b26cca2d1ca9191c74ab006a602543fc24d1283e353cfb917620000000024bf3eed258c02a591ec4cd295212d9a98d38745f6f6c4530900000000000000f184f239098bf32551c7cf454e2865974f6520112743f73c619c3cab5609e00178f7393e53462f31559220c026bbde09837bf1b3ffe748a3247c9569f0c5e99f4494f93e0fa1badca90c888616eca97bddabd8003fc12a084d4b11d841979e161b998ddda92f194c4ec7947b7b303be11e0962d429a2c542a28c4932e14c123dfe2b8ec47a11cce134fd6e42a9f4e00ab6de6b45"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) symlink(&(0x7f0000000dc0)='./file0\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000) 466.784677ms ago: executing program 1 (id=4644): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x21085e, &(0x7f00000001c0)={[{@data_err_ignore}, {@nouid32}, {@minixdf}]}, 0x1, 0x51c, &(0x7f0000000780)="$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") r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000040)='ro\x00', 0x0, 0x0) acct(&(0x7f0000000200)='./file1\x00') fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 427.463491ms ago: executing program 3 (id=4646): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000002400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000e00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000020000"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) r3 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000240)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r3, 0x47f9, 0x0, 0x0, 0x0, 0x0) 390.796304ms ago: executing program 4 (id=4647): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x3c56, 0x1, 0x2, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008001500b704000000000c00850000000300000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) mq_unlink(0x0) 382.269705ms ago: executing program 2 (id=4648): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='netlink_extack\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f0000001680)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c0000009500000000000000eb4779fcbb3e3bbff2971871b1b1c0b4f0fca28377f3aa77d6c8d949060c54d53bd61b3561319f7b346f8cadae05957ee562fe28a5d0b564a59c30cb37ebb90e516d9c72b9d81817f7a04496e4261b41dae579bd93d38e2740ac98d6108c318a35d29534fd3c6bf14ef7a5c59c3d48f092e6b6bb43ec765d850f71052de0718c08"], &(0x7f00000000c0)='GPL\x00', 0x4, 0x1000, &(0x7f000062b000)=""/4096, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=@newlink={0x44, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_XDP={0x1c, 0x2b, 0x0, 0x1, [@IFLA_XDP_EXPECTED_FD={0x8, 0x8, r2}, @IFLA_XDP_FLAGS={0x8, 0x3, 0x19}, @IFLA_XDP_FD={0x8}]}, @IFLA_GROUP={0x8}]}, 0x44}}, 0x0) 328.32697ms ago: executing program 4 (id=4649): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000300)=@generic={&(0x7f0000000380)='./file0\x00', 0x0, 0x8}, 0x18) 282.949464ms ago: executing program 4 (id=4650): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0xa, 0x4, 0x808, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020642500000000002008007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001840)={{r0}, &(0x7f00000017c0), &(0x7f0000001800)}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000200)='signal_deliver\x00', r1}, 0x10) syz_open_procfs$namespace(0x0, 0xfffffffffffffffe) 264.362516ms ago: executing program 2 (id=4651): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r1, &(0x7f0000000080)={0x18, 0x0, {0xfffe, @local, 'geneve0\x00'}}, 0x1e) close(r1) 235.797469ms ago: executing program 2 (id=4652): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000340)=@newtaction={0x488, 0x30, 0x12f, 0x0, 0x0, {}, [{0x474, 0x1, [@m_police={0x470, 0x1, 0x0, 0x0, {{0xb}, {0x444, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xbb9c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x0, 0x0, 0x2, {0x7, 0x0, 0x0, 0x0, 0x0, 0x7}, {0x7, 0x1, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0, 0x2}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x488}}, 0x810) 235.391419ms ago: executing program 4 (id=4653): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$GIO_SCRNMAP(r2, 0x5608, 0x0) 193.771492ms ago: executing program 1 (id=4654): r0 = socket$vsock_stream(0x28, 0x1, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000240)=0x2) connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) shutdown(r0, 0x1) write$binfmt_misc(r0, 0x0, 0x0) 169.791254ms ago: executing program 2 (id=4655): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r1}, 0x10) listxattr(&(0x7f0000000080)='./cgroup\x00', 0x0, 0x0) 156.518646ms ago: executing program 4 (id=4656): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@mcast2, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xee01}}, {{@in=@multicast2, 0x0, 0x6c}}}, 0xe8) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000300)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3e}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ff00f5", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x2}}}}}}}, 0x0) 133.858098ms ago: executing program 1 (id=4657): r0 = socket$xdp(0x2c, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', 0x0}) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000180)=0x200000, 0x4) bind$xdp(r0, &(0x7f00000002c0)={0x2c, 0x0, r2}, 0x10) 133.334378ms ago: executing program 4 (id=4658): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7ecffffffffff8285000000710000009500000000000000"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") mkdirat(0xffffffffffffff9c, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) sendmmsg(0xffffffffffffffff, &(0x7f0000007fc0), 0x2d, 0x0) set_mempolicy(0x4000, 0x0, 0xfffffffffffffffd) shmat(0x0, &(0x7f0000233000/0x2000)=nil, 0x3000) shmget$private(0x0, 0x3000, 0x800, &(0x7f000020c000/0x3000)=nil) bpf$MAP_CREATE(0x0, 0x0, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) kcmp(0x0, 0x0, 0x0, r1, r1) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}}, 0x0) mbind(&(0x7f0000b28000/0x1000)=nil, 0x1000, 0x8000, 0x0, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x101c08a, &(0x7f0000000280)=ANY=[@ANYBLOB="757466383d302c73686f72746e6167653d6d697865642c756e695f786c6174653d9a32468e279aff161bea0894312c73686f72746e616d653d6c6f7765722c6e6f6e756d7461696c3d302c726f6469722c696f636861727365743d6314353337060100000000000073686f72746e616d653d77696e6e742c747a3d5554432c73686f72746e6102653d77696e39352c756e695f786c61745cfb2856b3d2fe10c498653d312c8d79735f696d6d757461626c652c726f6469722c646f733178666c6f7070792c6e66733d6e6f7374616c655f726f2c6e66733d6e6f7374616c655f726f2c00"], 0x6, 0x2d2, &(0x7f00000008c0)="$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") openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) rseq(0x0, 0x0, 0x0, 0x0) futex(&(0x7f00000001c0)=0x2, 0x0, 0x2, &(0x7f0000000380), 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b) syz_emit_ethernet(0x1c1, &(0x7f0000000d40)={@remote, @random="fdc6abb4ad12", @void, {@ipv6={0x86dd, @generic={0x4, 0x6, "f6be0d", 0x18b, 0x2f, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @local}, {[@routing={0x3b, 0x8, 0x1, 0x7, 0x0, [@mcast2, @mcast1, @empty, @remote]}, @fragment={0x5c, 0x0, 0x7, 0x0, 0x0, 0x1, 0x65}, @srh={0x73, 0x4, 0x4, 0x2, 0x1, 0x0, 0x4ee1, [@empty, @mcast1]}, @routing={0xefc03a67321b12d8, 0x8, 0x1, 0x14, 0x0, [@loopback, @mcast1, @remote, @ipv4={'\x00', '\xff\xff', @local}]}], "9f5701225dd158aaad6ab88e321a16e2066552765bf3b0b241deb6fce9280ca872a801d3054e45137b93f79d16bb6615791b0a9251beb01b0f1cd02fe55cd1a61de6dbb33bcb3de39aa1742a93060a8ac562674467bcb023ec75ffc823489f0db1a06ecaea5c8af4f655e67de3e1722a31feadd8e5dc854d4c90277287be692651f0f0f750594ae5968063cc55e2ec22392dfc6d6cced35e79cfd6bf2e995ce2db852c4dcda1839249ecb0d727f8c8e827bf04b2ad6ded49827c5044ae8d60b4a1893ab84ed1d1abbc0ac6"}}}}}, 0x0) r3 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) connect$llc(r3, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x8, 0x0, 0x0, @dev}, 0x10) recvmmsg(r3, &(0x7f00000005c0), 0x0, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) 129.036548ms ago: executing program 2 (id=4659): socket$inet_dccp(0x2, 0x6, 0x0) syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000340)='./bus\x00', 0x200005a, &(0x7f0000000dc0)={[{@nobh}, {@sysvgroups}, {@resgid}, {@dioread_lock}, {@nombcache}, {@noload}]}, 0x2, 0x440, &(0x7f0000000e40)="$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") sendmsg$unix(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001380)=[{0x0}, {&(0x7f00000002c0)="ed2c67b2df426cd87f020cec90dbc3627aab15104e08e3fb1928277dcf3514c259f87bf85dbc78005dbab3de02eb84bda186625915eea091deff4328f7", 0x3d}], 0x2, &(0x7f0000000040)}, 0x4050) sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000500)=[{{&(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0) mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='nfs4\x00', 0x0, &(0x7f00000001c0)='\x01') 846.83µs ago: executing program 2 (id=4660): bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000280)='ext2\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000001c0)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}, {@discard}]}, 0xfe, 0x24d, &(0x7f0000000840)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0) ioctl$FIBMAP(r0, 0x1, &(0x7f00000000c0)=0x2000000) 0s ago: executing program 1 (id=4669): ioperm(0x1, 0x5, 0xdd) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) clock_getres(0x0, 0x0) kernel console output (not intermixed with test programs): ) [ 187.146748][T12798] syz.0.3409[12798] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 187.146901][T12798] syz.0.3409[12798] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 187.158422][T12798] syz.0.3409[12798] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 187.175355][T12800] syz.4.3411[12800] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 187.195138][T12800] syz.4.3411[12800] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 187.198936][T12798] loop0: detected capacity change from 0 to 4096 [ 187.209033][T12800] syz.4.3411[12800] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 187.222416][T12803] pimreg3: entered allmulticast mode [ 187.282584][T12808] syz.3.3415[12808] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 187.310585][T12808] loop3: detected capacity change from 0 to 4096 [ 187.591579][T12841] loop0: detected capacity change from 0 to 2048 [ 187.666806][T12841] Alternate GPT is invalid, using primary GPT. [ 187.673136][T12841] loop0: p1 p2 p3 [ 188.079640][T12857] loop1: detected capacity change from 0 to 4096 [ 188.097951][T12857] EXT4-fs mount: 71 callbacks suppressed [ 188.097973][T12857] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 188.119082][T12855] loop0: detected capacity change from 0 to 4096 [ 188.140364][T12855] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 188.308465][T12883] loop4: detected capacity change from 0 to 1024 [ 188.316501][T12883] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 188.326339][T12883] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 188.327437][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.352004][T12883] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 188.365549][T12883] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.405427][ T6727] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.821238][T12950] loop1: detected capacity change from 0 to 4096 [ 188.831589][T12942] sctp: [Deprecated]: syz.3.3475 (pid 12942) Use of int in maxseg socket option. [ 188.831589][T12942] Use struct sctp_assoc_value instead [ 188.864456][T12950] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 189.010098][T12965] sch_tbf: peakrate 6 is lower than or equals to rate 705765376 ! [ 189.470764][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 189.492001][T12975] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 189.550167][T12987] loop4: detected capacity change from 0 to 512 [ 189.556944][T12987] EXT4-fs: Ignoring removed oldalloc option [ 189.578372][T12987] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.3495: Parent and EA inode have the same ino 15 [ 189.599975][T12987] EXT4-fs (loop4): Remounting filesystem read-only [ 189.606584][T12987] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 189.620302][T12987] EXT4-fs (loop4): 1 orphan inode deleted [ 189.627273][T12987] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 189.641776][T12987] SELinux: (dev loop4, type ext4) getxattr errno 5 [ 189.651137][T12987] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 189.684639][T13001] loop1: detected capacity change from 0 to 4096 [ 189.711630][T13001] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 189.833963][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 190.073057][T13013] netlink: 'syz.1.3504': attribute type 12 has an invalid length. [ 190.081170][T13013] netlink: 'syz.1.3504': attribute type 29 has an invalid length. [ 190.089079][T13013] netlink: 'syz.1.3504': attribute type 2 has an invalid length. [ 190.096922][T13013] netlink: 'syz.1.3504': attribute type 2 has an invalid length. [ 190.104703][T13013] netlink: 'syz.1.3504': attribute type 1 has an invalid length. [ 190.112633][T13013] netlink: 'syz.1.3504': attribute type 37 has an invalid length. [ 190.120534][T13013] netlink: 'syz.1.3504': attribute type 2 has an invalid length. [ 190.128361][T13013] bridge0: port 1(bridge_slave_0) entered disabled state [ 190.416414][T13036] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 190.615696][T13046] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3521'. [ 190.699660][T13065] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 190.741930][T13073] netlink: 'syz.3.3533': attribute type 49 has an invalid length. [ 190.785076][T13078] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 190.806608][T13082] lo speed is unknown, defaulting to 1000 [ 190.866794][T13093] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 190.932790][T13099] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6) [ 190.939340][T13099] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 190.947006][T13099] vhci_hcd vhci_hcd.0: Device attached [ 190.958268][T13104] vhci_hcd: connection closed [ 190.958406][ T36] vhci_hcd: stop threads [ 190.967507][ T36] vhci_hcd: release socket [ 190.971966][ T36] vhci_hcd: disconnect device [ 191.032365][T13115] loop2: detected capacity change from 0 to 4096 [ 191.048030][T13115] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 191.179856][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.250061][T13130] coredump: 1(syz.2.3558): coredump has not been created, error -2 [ 191.333886][T13139] loop2: detected capacity change from 0 to 4096 [ 191.342243][T13139] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 191.624184][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.831419][ T29] kauditd_printk_skb: 621 callbacks suppressed [ 191.831438][ T29] audit: type=1326 audit(1727040810.261:15729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13149 comm="syz.1.3566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 191.866919][ T29] audit: type=1326 audit(1727040810.271:15730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13149 comm="syz.1.3566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 191.890672][ T29] audit: type=1326 audit(1727040810.271:15731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13149 comm="syz.1.3566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 191.896632][T13152] bpf_get_probe_write_proto: 26 callbacks suppressed [ 191.896649][T13152] syz.1.3567[13152] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 191.914192][ T29] audit: type=1326 audit(1727040810.271:15732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13149 comm="syz.1.3566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 191.958588][T13152] syz.1.3567[13152] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 191.958725][T13152] syz.1.3567[13152] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 191.976795][ T29] audit: type=1400 audit(1727040810.401:15733): avc: denied { ioctl } for pid=13153 comm="syz.0.3568" path="socket:[36531]" dev="sockfs" ino=36531 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 191.998902][T13158] netlink: 'syz.0.3570': attribute type 29 has an invalid length. [ 192.025805][T13161] xt_connbytes: Forcing CT accounting to be enabled [ 192.032478][T13161] Cannot find add_set index 0 as target [ 192.039616][T13158] netlink: 'syz.0.3570': attribute type 29 has an invalid length. [ 192.063265][ T29] audit: type=1400 audit(1727040810.461:15734): avc: denied { read } for pid=13151 comm="syz.1.3567" path="socket:[36546]" dev="sockfs" ino=36546 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 192.099213][T13152] loop1: detected capacity change from 0 to 4096 [ 192.131659][ T29] audit: type=1400 audit(1727040810.561:15735): avc: denied { create } for pid=13164 comm="syz.4.3572" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 192.165526][ T29] audit: type=1400 audit(1727040810.561:15736): avc: denied { write } for pid=13164 comm="syz.4.3572" name="rdma_cm" dev="devtmpfs" ino=227 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 192.202587][T13152] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 192.225772][ T29] audit: type=1326 audit(1727040810.651:15737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13151 comm="syz.1.3567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 192.249417][ T29] audit: type=1326 audit(1727040810.651:15738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13151 comm="syz.1.3567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 192.406217][T13195] netlink: 232 bytes leftover after parsing attributes in process `syz.4.3586'. [ 192.415363][T13195] netlink: 72 bytes leftover after parsing attributes in process `syz.4.3586'. [ 192.663361][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.827123][T13218] loop1: detected capacity change from 0 to 128 [ 192.927516][T13224] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3598'. [ 192.936577][T13224] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 192.957182][T13218] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 192.992137][T13218] ext4 filesystem being mounted at /565/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 193.741232][ T6317] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 193.792217][T13282] vlan2: entered allmulticast mode [ 193.797433][T13282] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 193.808671][T13282] netdevsim netdevsim1 netdevsim0: left allmulticast mode [ 193.841569][T13290] loop2: detected capacity change from 0 to 128 [ 193.849865][T13290] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 193.862377][T13290] ext4 filesystem being mounted at /91/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 193.918800][T13299] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3632'. [ 193.965027][T13304] loop1: detected capacity change from 0 to 512 [ 193.997575][T13304] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.017855][T13304] ext4 filesystem being mounted at /568/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 194.042419][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.054198][T13308] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3635'. [ 194.083888][T13310] syz.4.3637[13310] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 194.084026][T13310] syz.4.3637[13310] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 194.103547][T13310] syz.4.3637[13310] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 194.205107][T13310] loop4: detected capacity change from 0 to 4096 [ 194.281356][T13310] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.416481][T13330] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3644'. [ 194.493723][T13336] syz.3.3648[13336] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 194.493825][T13336] syz.3.3648[13336] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 194.506497][T13336] syz.3.3648[13336] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 194.524189][T13338] syz.0.3649[13338] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 194.552171][T13336] loop3: detected capacity change from 0 to 4096 [ 194.577346][T13336] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.600944][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.929723][ T4988] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.970075][T13365] loop4: detected capacity change from 0 to 4096 [ 194.999457][T13365] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 195.107406][T12107] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 195.193099][T13382] loop2: detected capacity change from 0 to 1024 [ 195.217296][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.239550][T13382] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 195.314679][T13391] loop1: detected capacity change from 0 to 4096 [ 195.321923][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.337812][T13391] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 195.407476][T13402] loop2: detected capacity change from 0 to 512 [ 195.415731][T13402] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.3676: corrupted in-inode xattr: invalid ea_ino [ 195.431544][T13402] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.3676: couldn't read orphan inode 15 (err -117) [ 195.444133][T13402] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 195.461391][T13402] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.3676: invalid indirect mapped block 234881024 (level 0) [ 195.490763][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.651284][T13412] loop4: detected capacity change from 0 to 512 [ 195.673795][T13412] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.3680: invalid block [ 195.695996][T13412] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.3680: invalid indirect mapped block 4294967295 (level 1) [ 195.718792][T13412] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.3680: invalid indirect mapped block 4294967295 (level 1) [ 195.735700][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.796726][T13412] EXT4-fs (loop4): 2 truncates cleaned up [ 195.802784][T13412] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 195.871201][T13425] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 195.878554][T13425] IPv6: NLM_F_CREATE should be set when creating new route [ 195.886931][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.923190][T13435] loop0: detected capacity change from 0 to 164 [ 195.939878][T13435] rock: corrupted directory entry. extent=41, offset=65536, size=8 [ 195.968833][T13439] loop4: detected capacity change from 0 to 1024 [ 196.049020][T13439] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 196.064132][T13439] ext4 filesystem being mounted at /191/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 196.089833][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.132155][T13461] tap0: tun_chr_ioctl cmd 21731 [ 196.200877][T13473] validate_nla: 4 callbacks suppressed [ 196.200890][T13473] netlink: 'syz.4.3708': attribute type 10 has an invalid length. [ 196.214594][T13473] veth1_macvtap: left promiscuous mode [ 196.385618][T13505] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3723'. [ 196.412428][T13510] Â: renamed from pim6reg1 [ 196.414586][T13512] netlink: 'syz.4.3726': attribute type 16 has an invalid length. [ 196.424945][T13512] netlink: 'syz.4.3726': attribute type 3 has an invalid length. [ 196.432812][T13512] netlink: 'syz.4.3726': attribute type 1 has an invalid length. [ 196.440690][T13512] netlink: 'syz.4.3726': attribute type 1 has an invalid length. [ 196.448450][T13512] netlink: 'syz.4.3726': attribute type 2 has an invalid length. [ 196.456340][T13512] netlink: 64006 bytes leftover after parsing attributes in process `syz.4.3726'. [ 196.674443][T13542] loop4: detected capacity change from 0 to 128 [ 196.846964][ T29] kauditd_printk_skb: 553 callbacks suppressed [ 196.847017][ T29] audit: type=1326 audit(1727040815.251:16292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13436 comm="syz.1.3692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 196.876857][ T29] audit: type=1326 audit(1727040815.251:16293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13436 comm="syz.1.3692" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 196.923835][T13570] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3 [ 196.967106][T13566] bpf_get_probe_write_proto: 20 callbacks suppressed [ 196.967121][T13566] syz.2.3751[13566] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 197.098392][T13566] syz.2.3751[13566] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 197.137446][ T29] audit: type=1326 audit(1727040815.361:16294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13561 comm="syz.2.3748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fd8ed93def9 code=0x7ffc0000 [ 197.148122][T13566] syz.2.3751[13566] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 197.172580][T13568] loop2: detected capacity change from 0 to 4096 [ 197.203183][ T29] audit: type=1326 audit(1727040815.631:16295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13575 comm="syz.1.3755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 197.218294][T13580] usb usb7: usbfs: process 13580 (syz.4.3757) did not claim interface 0 before use [ 197.226901][ T29] audit: type=1326 audit(1727040815.631:16296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13575 comm="syz.1.3755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 197.226931][ T29] audit: type=1326 audit(1727040815.631:16297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13575 comm="syz.1.3755" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 197.232460][ T29] audit: type=1400 audit(1727040815.631:16298): avc: denied { write } for pid=13579 comm="syz.4.3757" name="001" dev="devtmpfs" ino=141 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 197.261544][T13580] usb usb7: usbfs: process 13580 (syz.4.3757) did not claim interface 0 before use [ 197.295406][T13568] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 197.361505][ T29] audit: type=1326 audit(1727040815.791:16299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13591 comm="syz.4.3763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 197.389923][ T29] audit: type=1326 audit(1727040815.791:16300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13591 comm="syz.4.3763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 197.413693][ T29] audit: type=1326 audit(1727040815.791:16301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13591 comm="syz.4.3763" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 197.581496][T13605] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3768'. [ 197.609309][T13609] loop1: detected capacity change from 0 to 2048 [ 197.625466][T13614] netlink: 'syz.0.3773': attribute type 21 has an invalid length. [ 197.634137][T13614] netlink: 156 bytes leftover after parsing attributes in process `syz.0.3773'. [ 197.645356][T13609] EXT4-fs error (device loop1): __ext4_fill_super:5458: inode #2: comm syz.1.3771: casefold flag without casefold feature [ 197.658614][T13609] EXT4-fs (loop1): get root inode failed [ 197.664268][T13609] EXT4-fs (loop1): mount failed [ 197.690472][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.722450][T13620] netlink: 'syz.0.3776': attribute type 5 has an invalid length. [ 197.763365][T13631] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3780'. [ 197.783011][T13630] loop0: detected capacity change from 0 to 512 [ 197.792636][T13630] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.3781: Parent and EA inode have the same ino 15 [ 197.838885][T13640] syz.3.3785[13640] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 197.838986][T13640] syz.3.3785[13640] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 197.841168][T13630] EXT4-fs (loop0): Remounting filesystem read-only [ 197.850738][T13640] syz.3.3785[13640] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 197.862036][T13630] EXT4-fs warning (device loop0): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 197.890889][T13630] EXT4-fs (loop0): 1 orphan inode deleted [ 197.897262][T13630] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 197.904638][T13640] loop3: detected capacity change from 0 to 4096 [ 197.909478][T13630] SELinux: (dev loop0, type ext4) getxattr errno 5 [ 197.924032][T13630] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.932046][T13640] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 198.062343][ T4988] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.083820][T13657] syz.3.3791[13657] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 198.083933][T13657] syz.3.3791[13657] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 198.095782][T13657] syz.3.3791[13657] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 198.132029][T13657] loop3: detected capacity change from 0 to 4096 [ 198.167418][T13657] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 198.554047][ T4988] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.704911][T13671] loop4: detected capacity change from 0 to 1024 [ 198.713445][T13671] EXT4-fs: Ignoring removed nomblk_io_submit option [ 198.720585][T13671] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 198.732889][T13671] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 198.741287][T13671] System zones: 0-1, 3-36 [ 198.749352][T13671] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 198.767731][T13671] EXT4-fs (loop4): shut down requested (0) [ 198.775993][T13671] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=12 [ 198.784941][T13671] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=12 [ 198.798525][T13671] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=12 [ 198.819658][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.061629][T13719] sg_write: process 1172 (syz.0.3818) changed security contexts after opening file descriptor, this is not allowed. [ 199.076766][T13719] program syz.0.3818 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 199.197296][T13727] syz.0.3821[13727] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 199.335413][T13727] loop0: detected capacity change from 0 to 4096 [ 199.357193][T13738] netlink: 76 bytes leftover after parsing attributes in process `syz.4.3825'. [ 199.372319][T13727] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 199.772353][T13753] loop3: detected capacity change from 0 to 1024 [ 199.875754][T13753] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 199.914701][ T6727] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.015786][T13765] xt_hashlimit: max too large, truncated to 1048576 [ 200.033661][T13769] veth1_macvtap: left promiscuous mode [ 200.039233][T13769] macsec0: entered allmulticast mode [ 200.055255][T13771] loop0: detected capacity change from 0 to 1024 [ 200.066591][T13769] A link change request failed with some changes committed already. Interface macsec0 may have been left with an inconsistent configuration, please check. [ 200.082217][T13768] netlink: 'syz.1.3837': attribute type 10 has an invalid length. [ 200.112493][ T4988] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.126564][T13771] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 200.139711][T13776] loop4: detected capacity change from 0 to 512 [ 200.146622][T13776] EXT4-fs: Ignoring removed orlov option [ 200.152736][T13771] ext4 filesystem being mounted at /559/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 200.163491][T13776] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 200.189468][T13785] loop3: detected capacity change from 0 to 512 [ 200.193879][T13781] loop2: detected capacity change from 0 to 4096 [ 200.204761][T13781] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 200.204808][T13776] EXT4-fs (loop4): 1 orphan inode deleted [ 200.223109][T13776] EXT4-fs (loop4): 1 truncate cleaned up [ 200.225733][T13785] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 200.229241][T13776] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 200.262908][ T6727] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.274565][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.294339][T13785] ext4 filesystem being mounted at /708/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 200.320822][T13792] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3846'. [ 200.346610][T13785] EXT4-fs error (device loop3): ext4_do_update_inode:5121: inode #2: comm syz.3.3841: corrupted inode contents [ 200.394761][T13785] EXT4-fs (loop3): Remounting filesystem read-only [ 200.432836][ T4988] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.931275][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.056465][T13806] loop0: detected capacity change from 0 to 8192 [ 201.096091][T13806] loop0: p4 [ 201.101404][T13806] loop0: p4 size 16776960 extends beyond EOD, truncated [ 201.185239][T13816] loop0: detected capacity change from 0 to 4096 [ 201.228941][T13822] netlink: 277 bytes leftover after parsing attributes in process `syz.2.3854'. [ 201.306565][T13814] loop3: detected capacity change from 0 to 4096 [ 201.322242][T13814] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 201.336069][T13828] netlink: 'syz.1.3861': attribute type 58 has an invalid length. [ 201.344004][T13828] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3861'. [ 201.353703][T13828] bridge0: port 1(bridge_slave_0) entered blocking state [ 201.360832][T13828] bridge0: port 1(bridge_slave_0) entered forwarding state [ 201.433396][T13838] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3864'. [ 201.442730][T13838] unsupported nla_type 65024 [ 201.618101][ T4988] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.650780][T13848] loop0: detected capacity change from 0 to 128 [ 201.671920][T13848] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (39871!=39978) [ 201.714246][T13848] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:406: inode #11: comm syz.0.3867: No space for directory leaf checksum. Please run e2fsck -D. [ 201.729884][T13848] EXT4-fs error (device loop0): __ext4_find_entry:1652: inode #11: comm syz.0.3867: checksumming directory block 0 [ 201.749021][T13848] EXT4-fs error (device loop0): __ext4_find_entry:1652: inode #2: comm syz.0.3867: checksumming directory block 0 [ 201.887466][ T29] kauditd_printk_skb: 586 callbacks suppressed [ 201.887480][ T29] audit: type=1400 audit(1727040820.321:16887): avc: denied { mount } for pid=13855 comm="syz.3.3870" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 201.923945][ T29] audit: type=1400 audit(1727040820.351:16888): avc: denied { unmount } for pid=13855 comm="syz.3.3870" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 201.990914][T13870] bpf_get_probe_write_proto: 8 callbacks suppressed [ 201.990929][T13870] syz.4.3879[13870] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 201.999814][T13870] syz.4.3879[13870] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 202.002128][T13872] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem [ 202.032767][ T29] audit: type=1400 audit(1727040820.441:16889): avc: denied { read write } for pid=13871 comm="syz.0.3880" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 202.049374][T13870] syz.4.3879[13870] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 202.057577][ T29] audit: type=1400 audit(1727040820.441:16890): avc: denied { open } for pid=13871 comm="syz.0.3880" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 202.126264][T13875] loop4: detected capacity change from 0 to 4096 [ 202.148188][T13880] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3883'. [ 202.157423][ T29] audit: type=1326 audit(1727040820.571:16891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13829 comm="syz.2.3862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8ed93def9 code=0x7ffc0000 [ 202.181193][ T29] audit: type=1326 audit(1727040820.571:16892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13829 comm="syz.2.3862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8ed93def9 code=0x7ffc0000 [ 202.226414][ T29] audit: type=1326 audit(1727040820.661:16893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13886 comm="syz.2.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd8ed93def9 code=0x7ffc0000 [ 202.244190][T13887] syz.2.3887[13887] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 202.252183][T13887] syz.2.3887[13887] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 202.264450][T13887] syz.2.3887[13887] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 202.277886][ T29] audit: type=1326 audit(1727040820.661:16894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13886 comm="syz.2.3887" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd8ed93def9 code=0x7ffc0000 [ 202.312954][ T29] audit: type=1326 audit(1727040820.691:16895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13867 comm="syz.4.3879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 202.336693][ T29] audit: type=1326 audit(1727040820.691:16896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13867 comm="syz.4.3879" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 202.407209][T13901] loop0: detected capacity change from 0 to 1024 [ 202.417088][T13899] netlink: 228 bytes leftover after parsing attributes in process `syz.2.3892'. [ 202.443651][T13901] EXT4-fs: Ignoring removed nomblk_io_submit option [ 202.457574][T13909] program syz.1.3896 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 202.459032][T13901] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 202.479423][T13901] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 202.495531][T13901] System zones: 0-1, 3-36 [ 202.529952][T13901] EXT4-fs (loop0): shut down requested (0) [ 202.539121][T13901] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=12 [ 202.548276][T13901] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=12 [ 202.557271][T13901] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop0 ino=12 [ 203.039983][T13935] netlink: 856 bytes leftover after parsing attributes in process `syz.3.3906'. [ 203.202143][T13925] loop4: detected capacity change from 0 to 8192 [ 203.360424][T13947] syz.1.3911[13947] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 203.360533][T13947] syz.1.3911[13947] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 203.374294][T13947] syz.1.3911[13947] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 203.424986][T13949] syz.4.3912[13949] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 203.433141][T13951] loop2: detected capacity change from 0 to 1024 [ 203.454896][T13951] EXT4-fs: Ignoring removed nomblk_io_submit option [ 203.467872][T13947] loop1: detected capacity change from 0 to 4096 [ 203.539992][T13951] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 203.567307][T13949] loop4: detected capacity change from 0 to 4096 [ 203.588958][T13958] loop0: detected capacity change from 0 to 128 [ 203.713630][T13951] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 203.731842][T13958] ext4 filesystem being mounted at /580/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 203.805302][T13951] System zones: 0-1, 3-36 [ 203.880516][T13951] EXT4-fs (loop2): shut down requested (0) [ 204.377292][T13974] netlink: 268 bytes leftover after parsing attributes in process `syz.1.3917'. [ 204.450059][T13986] loop2: detected capacity change from 0 to 1024 [ 204.458215][T13986] EXT4-fs: Ignoring removed nobh option [ 204.623044][T14014] loop3: detected capacity change from 0 to 512 [ 204.632686][T14014] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 204.646883][T14014] ext4 filesystem being mounted at /732/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 204.663145][T14014] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 204.959116][T14051] loop1: detected capacity change from 0 to 2048 [ 204.999721][T14058] loop2: detected capacity change from 0 to 128 [ 205.051273][T14051] EXT4-fs error (device loop1): ext4_find_extent:938: inode #2: comm syz.1.3954: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 205.072828][T14051] EXT4-fs (loop1): Remounting filesystem read-only [ 205.113427][T14062] loop2: detected capacity change from 0 to 1024 [ 205.122546][T14062] EXT4-fs: Ignoring removed bh option [ 205.127977][T14062] EXT4-fs: Ignoring removed mblk_io_submit option [ 205.311969][T14053] loop0: detected capacity change from 0 to 4096 [ 205.375257][T14075] netlink: 'syz.1.3962': attribute type 5 has an invalid length. [ 205.383118][T14075] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3962'. [ 205.713986][T14091] program syz.2.3968 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 205.904537][T14096] loop2: detected capacity change from 0 to 4096 [ 206.048067][T14117] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3980'. [ 206.059551][T14117] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 206.068480][T14117] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 206.077335][T14117] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 206.086218][T14117] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 206.095537][T14117] geneve2: entered promiscuous mode [ 206.100781][T14117] geneve2: entered allmulticast mode [ 206.209814][T14139] loop3: detected capacity change from 0 to 256 [ 206.249999][T14143] lo speed is unknown, defaulting to 1000 [ 206.310774][T14141] loop4: detected capacity change from 0 to 4096 [ 206.550630][T14176] loop3: detected capacity change from 0 to 4096 [ 206.871832][T14183] netlink: 'syz.1.4009': attribute type 10 has an invalid length. [ 206.882164][T14183] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 206.910755][T14183] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 206.972143][T14183] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link [ 207.416427][ T29] kauditd_printk_skb: 581 callbacks suppressed [ 207.416443][ T29] audit: type=1326 audit(1727040825.854:17478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14186 comm="syz.1.4011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 207.450092][ T29] audit: type=1326 audit(1727040825.884:17479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14186 comm="syz.1.4011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 207.500098][ T29] audit: type=1400 audit(1727040825.934:17480): avc: denied { setopt } for pid=14210 comm="syz.2.4023" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 207.552578][ T29] audit: type=1400 audit(1727040825.944:17481): avc: denied { bind } for pid=14208 comm="syz.3.4022" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 207.565685][T14219] bpf_get_probe_write_proto: 17 callbacks suppressed [ 207.565708][T14219] syz.4.4027[14219] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 207.573264][ T29] audit: type=1326 audit(1727040825.954:17482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14186 comm="syz.1.4011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 207.583832][T14221] syz.2.4028[14221] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 207.591266][ T29] audit: type=1326 audit(1727040825.954:17483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14186 comm="syz.1.4011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 207.622560][T14219] syz.4.4027[14219] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 207.626425][ T29] audit: type=1326 audit(1727040825.974:17484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14214 comm="syz.1.4026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 207.685147][ T29] audit: type=1326 audit(1727040825.974:17485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14214 comm="syz.1.4026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 207.708798][ T29] audit: type=1400 audit(1727040825.984:17486): avc: denied { map } for pid=14216 comm="syz.0.4025" path="socket:[40224]" dev="sockfs" ino=40224 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 207.720964][T14221] syz.2.4028[14221] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 207.732072][ T29] audit: type=1326 audit(1727040825.984:17487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14214 comm="syz.1.4026" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 207.739531][T14225] loop3: detected capacity change from 0 to 764 [ 207.745425][T14219] syz.4.4027[14219] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 207.769288][T14221] syz.2.4028[14221] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 207.815617][T14221] loop2: detected capacity change from 0 to 4096 [ 207.842069][T14219] loop4: detected capacity change from 0 to 4096 [ 207.859036][T14225] Symlink component flag not implemented [ 207.866654][T14225] Symlink component flag not implemented (129) [ 207.874924][T14225] rock: directory entry would overflow storage [ 207.881222][T14225] rock: sig=0x4f50, size=4, remaining=3 [ 207.886820][T14225] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 207.892043][T14236] 9pnet_fd: Insufficient options for proto=fd [ 208.112169][T14252] loop0: detected capacity change from 0 to 512 [ 208.119510][T14252] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 208.168045][T14252] ext4 filesystem being mounted at /611/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 208.321706][T14276] loop4: detected capacity change from 0 to 256 [ 208.330636][T14275] loop3: detected capacity change from 0 to 764 [ 208.353609][T14276] vfat: Unknown parameter '0xffffffffffffffff' [ 208.365085][T14275] Symlink component flag not implemented [ 208.371474][T14275] Symlink component flag not implemented (129) [ 208.385764][T14275] rock: directory entry would overflow storage [ 208.391961][T14275] rock: sig=0x4f50, size=4, remaining=3 [ 208.397615][T14275] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 208.451567][T14286] wg1: entered allmulticast mode [ 208.497718][T14284] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22 [ 208.506159][T14284] netdevsim netdevsim0: Direct firmware load for . failed with error -22 [ 208.583923][T14295] syz.0.4059[14295] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 208.584020][T14295] syz.0.4059[14295] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 208.603576][T14295] syz.0.4059[14295] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 208.686166][T14299] netlink: 94 bytes leftover after parsing attributes in process `syz.4.4062'. [ 208.753454][T14301] loop3: detected capacity change from 0 to 2048 [ 208.801464][T14320] syz.4.4073[14320] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 208.825704][T14301] Alternate GPT is invalid, using primary GPT. [ 208.839280][T14320] loop4: detected capacity change from 0 to 4096 [ 208.843565][T14301] loop3: p2 p3 p7 [ 208.954851][T14328] loop1: detected capacity change from 0 to 4096 [ 209.295986][T14364] loop0: detected capacity change from 0 to 2048 [ 209.754074][T14395] SELinux: failed to load policy [ 209.966033][T14408] lo speed is unknown, defaulting to 1000 [ 210.102056][T14417] loop3: detected capacity change from 0 to 512 [ 210.102882][T14415] loop2: detected capacity change from 0 to 8192 [ 210.112142][T14417] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 210.127779][T14417] EXT4-fs (loop3): 1 truncate cleaned up [ 210.172991][T14420] loop3: detected capacity change from 0 to 1024 [ 210.180772][T14420] EXT4-fs: Ignoring removed orlov option [ 210.186694][T14420] EXT4-fs: Ignoring removed nomblk_io_submit option [ 210.276888][T14434] loop4: detected capacity change from 0 to 2048 [ 210.303054][T14439] loop3: detected capacity change from 0 to 1024 [ 210.309544][T14433] loop2: detected capacity change from 0 to 4096 [ 210.310113][T14439] EXT4-fs: Ignoring removed orlov option [ 210.321725][T14439] EXT4-fs: Ignoring removed nomblk_io_submit option [ 210.338685][T14439] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a842e018, mo2=0002] [ 210.346944][T14439] System zones: 0-1, 3-12 [ 210.349268][T14444] loop4: detected capacity change from 0 to 256 [ 210.358454][T14444] FAT-fs (loop4): bogus number of FAT sectors [ 210.364566][T14444] FAT-fs (loop4): Can't find a valid FAT filesystem [ 210.392974][T14444] loop4: detected capacity change from 0 to 2048 [ 210.411978][T14447] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4123'. [ 210.437806][T14444] loop4: p1 p3 < > p4 < p5 > [ 210.439155][T14449] loop3: detected capacity change from 0 to 128 [ 210.442559][T14444] loop4: partition table partially beyond EOD, truncated [ 210.457202][T14444] loop4: p1 size 33024 extends beyond EOD, truncated [ 210.460388][T14449] ext4 filesystem being mounted at /770/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 210.464571][T14444] loop4: p3 start 4284289 is beyond EOD, truncated [ 210.502927][T14444] loop4: p5 size 33024 extends beyond EOD, truncated [ 210.591046][T14460] loop2: detected capacity change from 0 to 512 [ 210.606530][T14460] EXT4-fs: Ignoring removed mblk_io_submit option [ 210.622248][T14460] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 210.665018][T14468] IPv6: Can't replace route, no match found [ 210.669325][T14460] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.4127: corrupted in-inode xattr: e_value out of bounds [ 210.688528][T14460] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.4127: couldn't read orphan inode 15 (err -117) [ 210.697592][T14467] netlink: 64 bytes leftover after parsing attributes in process `syz.3.4132'. [ 210.779268][T14478] loop2: detected capacity change from 0 to 128 [ 210.797996][T14484] loop4: detected capacity change from 0 to 512 [ 210.806804][T14484] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 210.816468][T14478] ext4 filesystem being mounted at /182/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 210.832240][T14484] ext4 filesystem being mounted at /284/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 210.860283][T14484] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 210.868274][T14494] loop1: detected capacity change from 0 to 512 [ 210.877274][T14484] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 5 with max blocks 1 with error 28 [ 210.893185][T14484] EXT4-fs (loop4): This should not happen!! Data will be lost [ 210.893185][T14484] [ 210.899888][T14485] loop3: detected capacity change from 0 to 4096 [ 210.902860][T14484] EXT4-fs (loop4): Total free blocks count 0 [ 210.915216][T14484] EXT4-fs (loop4): Free/Dirty block details [ 210.921188][T14484] EXT4-fs (loop4): free_blocks=39626 [ 210.926538][T14484] EXT4-fs (loop4): dirty_blocks=1 [ 210.928526][T14494] ext4 filesystem being mounted at /648/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 210.931581][T14484] EXT4-fs (loop4): Block reservation details [ 210.931596][T14484] EXT4-fs (loop4): i_reserved_data_blocks=1 [ 211.021124][T14502] loop2: detected capacity change from 0 to 1024 [ 211.031600][T14502] EXT4-fs: Ignoring removed nobh option [ 211.037260][T14502] EXT4-fs: Ignoring removed orlov option [ 211.088730][T14508] loop4: detected capacity change from 0 to 4096 [ 211.128607][T14518] loop1: detected capacity change from 0 to 512 [ 211.144022][T14518] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.4152: corrupted in-inode xattr: invalid ea_ino [ 211.157954][T14518] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.4152: couldn't read orphan inode 15 (err -117) [ 211.193529][T14518] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.4152: invalid indirect mapped block 234881024 (level 0) [ 211.278458][T14531] loop4: detected capacity change from 0 to 512 [ 211.291370][T14535] loop3: detected capacity change from 0 to 512 [ 211.309733][T14535] EXT4-fs error (device loop3): ext4_orphan_get:1388: inode #15: comm syz.3.4157: casefold flag without casefold feature [ 211.317105][T14531] ext4 filesystem being mounted at /288/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 211.325464][T14535] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.4157: couldn't read orphan inode 15 (err -117) [ 211.414296][T14531] EXT4-fs error (device loop4): ext4_ext_check_inode:524: inode #2: comm syz.4.4160: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 211.498727][T14541] loop1: detected capacity change from 0 to 164 [ 211.539410][T14541] +}[@: attempt to access beyond end of device [ 211.539410][T14541] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 211.566162][T14541] +}[@: attempt to access beyond end of device [ 211.566162][T14541] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 211.704623][T14554] loop1: detected capacity change from 0 to 128 [ 211.715732][T14554] ext4 filesystem being mounted at /654/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 211.731032][T14559] loop4: detected capacity change from 0 to 512 [ 211.754558][T14559] EXT4-fs: Ignoring removed mblk_io_submit option [ 211.820556][T14566] loop4: detected capacity change from 0 to 128 [ 211.854779][T14571] netlink: 76 bytes leftover after parsing attributes in process `syz.3.4171'. [ 211.867745][T14566] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 211.898649][T14566] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 211.939414][T14577] loop2: detected capacity change from 0 to 256 [ 211.948340][T14577] FAT-fs (loop2): bogus number of FAT sectors [ 211.954542][T14577] FAT-fs (loop2): Can't find a valid FAT filesystem [ 212.042702][T14582] loop3: detected capacity change from 0 to 512 [ 212.058857][ T1731] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 212.098398][T14580] loop0: detected capacity change from 0 to 4096 [ 212.105033][T14580] EXT4-fs: Ignoring removed nobh option [ 212.110839][T14580] EXT4-fs: Ignoring removed i_version option [ 212.127302][T14582] ext4 filesystem being mounted at /781/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 212.158204][T14582] Process accounting resumed [ 212.196399][T14582] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 212.238177][T14596] loop4: detected capacity change from 0 to 4096 [ 212.414880][T14601] loop0: detected capacity change from 0 to 1024 [ 212.443900][ T29] kauditd_printk_skb: 557 callbacks suppressed [ 212.443916][ T29] audit: type=1326 audit(1727040830.874:18045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14605 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 212.510940][ T29] audit: type=1326 audit(1727040830.914:18046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14605 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 212.534707][ T29] audit: type=1326 audit(1727040830.914:18047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14605 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 212.558340][ T29] audit: type=1326 audit(1727040830.914:18048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14605 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 212.582154][ T29] audit: type=1326 audit(1727040830.914:18049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14605 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 212.605885][ T29] audit: type=1326 audit(1727040830.924:18050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14605 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 212.629520][ T29] audit: type=1326 audit(1727040830.924:18051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14605 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 212.653414][ T29] audit: type=1326 audit(1727040830.924:18052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14605 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 212.677079][ T29] audit: type=1326 audit(1727040830.924:18053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14605 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 212.700893][ T29] audit: type=1326 audit(1727040830.924:18054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14605 comm="syz.4.4187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 213.063551][T14625] loop0: detected capacity change from 0 to 512 [ 213.110718][T14629] loop3: detected capacity change from 0 to 512 [ 213.141065][T14625] EXT4-fs warning (device loop0): ext4_enable_quotas:7097: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 213.159679][T14629] EXT4-fs: Ignoring removed bh option [ 213.165938][T14629] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 213.174430][T14625] EXT4-fs (loop0): mount failed [ 213.177392][T14633] loop2: detected capacity change from 0 to 512 [ 213.190612][T14629] EXT4-fs (loop3): 1 truncate cleaned up [ 213.200769][T14633] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 213.224285][T14638] loop0: detected capacity change from 0 to 128 [ 213.233428][T14633] EXT4-fs error (device loop2): ext4_acquire_dquot:6879: comm syz.2.4196: Failed to acquire dquot type 0 [ 213.346872][T14648] loop3: detected capacity change from 0 to 512 [ 213.350735][T14643] loop2: detected capacity change from 0 to 4096 [ 213.367719][T14650] loop0: detected capacity change from 0 to 2048 [ 213.392185][T14654] netlink: 268 bytes leftover after parsing attributes in process `syz.2.4205'. [ 213.409832][T14648] ext4 filesystem being mounted at /789/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 213.467363][T14662] loop0: detected capacity change from 0 to 512 [ 213.474048][T14662] EXT4-fs: Ignoring removed orlov option [ 213.480714][T14662] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 213.495588][T14662] EXT4-fs (loop0): 1 orphan inode deleted [ 213.501374][T14662] EXT4-fs (loop0): 1 truncate cleaned up [ 213.527646][T14672] loop4: detected capacity change from 0 to 128 [ 213.543310][T14675] loop0: detected capacity change from 0 to 512 [ 213.551464][T14675] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 213.573049][T14672] ext4 filesystem being mounted at /301/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 213.616165][T14675] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec01c, mo2=0002] [ 213.624636][T14675] System zones: 1-12 [ 213.636455][T14675] EXT4-fs (loop0): 1 truncate cleaned up [ 214.304756][T14688] loop1: detected capacity change from 0 to 512 [ 214.329629][T14688] ext4 filesystem being mounted at /657/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 214.469209][T14701] loop1: detected capacity change from 0 to 512 [ 214.471098][T14703] loop3: detected capacity change from 0 to 764 [ 214.484661][T14701] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.4220: corrupted in-inode xattr: invalid ea_ino [ 214.500578][T14701] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.4220: couldn't read orphan inode 15 (err -117) [ 214.557656][T14708] loop1: detected capacity change from 0 to 512 [ 214.568227][T14708] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.4226: corrupted in-inode xattr: invalid ea_ino [ 214.581985][T14708] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.4226: couldn't read orphan inode 15 (err -117) [ 214.609448][T14708] EXT4-fs (loop1): shut down requested (2) [ 214.623137][T14708] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop1 ino=14 [ 214.634945][T14708] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop1 ino=14 [ 214.663541][T14715] loop1: detected capacity change from 0 to 256 [ 214.695228][T14718] loop4: detected capacity change from 0 to 512 [ 214.707408][T14718] ext4 filesystem being mounted at /302/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 214.711238][T14724] tipc: Started in network mode [ 214.722812][T14724] tipc: Node identity -, cluster identity 4711 [ 214.729069][T14724] tipc: Enabling of bearer rejected, failed to enable media [ 214.752527][T14726] syzkaller1: entered promiscuous mode [ 214.758083][T14726] syzkaller1: entered allmulticast mode [ 214.770346][T14728] loop1: detected capacity change from 0 to 512 [ 214.800829][T14728] ext4 filesystem being mounted at /663/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 214.812786][T14733] netlink: 256 bytes leftover after parsing attributes in process `syz.0.4235'. [ 214.854853][T14740] program syz.4.4237 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 214.873922][T14742] loop0: detected capacity change from 0 to 1024 [ 214.881060][T14742] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 214.891681][T14742] EXT4-fs (loop0): stripe (2048) is not aligned with cluster size (4096), stripe is disabled [ 214.912590][T14742] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 214.920681][T14742] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840e018, mo2=0000] [ 214.929680][T14742] System zones: 0-1, 3-12 [ 214.934280][T14742] EXT4-fs (loop0): orphan cleanup on readonly fs [ 214.942232][T14742] EXT4-fs error (device loop0): ext4_free_blocks:6589: comm syz.0.4238: Freeing blocks not in datazone - block = 0, count = 4096 [ 214.956218][T14742] EXT4-fs (loop0): 1 orphan inode deleted [ 214.990274][T14750] loop1: detected capacity change from 0 to 2048 [ 215.012833][T14756] bpf_get_probe_write_proto: 17 callbacks suppressed [ 215.012852][T14756] syz.4.4244[14756] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 215.020187][T14756] syz.4.4244[14756] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 215.032551][T14756] syz.4.4244[14756] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 215.042541][T14760] loop0: detected capacity change from 0 to 2048 [ 215.068418][T14756] loop4: detected capacity change from 0 to 128 [ 215.103864][T14756] ext4 filesystem being mounted at /307/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 215.140817][T14760] ext4 filesystem being mounted at /660/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 215.169814][T14760] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.4246: bg 0: block 345: padding at end of block bitmap is not set [ 215.192391][T14774] program syz.2.4249 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 215.215844][T14778] netlink: 856 bytes leftover after parsing attributes in process `syz.1.4252'. [ 215.309419][T14795] loop2: detected capacity change from 0 to 128 [ 215.317960][T14795] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (39871!=39978) [ 215.333458][T14795] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:406: inode #11: comm syz.2.4259: No space for directory leaf checksum. Please run e2fsck -D. [ 215.349046][T14795] EXT4-fs error (device loop2): __ext4_find_entry:1652: inode #11: comm syz.2.4259: checksumming directory block 0 [ 215.366044][T14795] EXT4-fs error (device loop2): __ext4_find_entry:1652: inode #2: comm syz.2.4259: checksumming directory block 0 [ 215.419398][T14808] syz.4.4262[14808] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 215.419470][T14808] syz.4.4262[14808] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 215.431585][T14808] syz.4.4262[14808] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 215.467191][T14803] loop1: detected capacity change from 0 to 8192 [ 215.499548][T14818] loop2: detected capacity change from 0 to 1024 [ 215.510319][T14820] loop0: detected capacity change from 0 to 164 [ 215.522424][T14820] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 215.533320][T14818] EXT4-fs (loop2): shut down requested (2) [ 215.537425][T14820] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 215.547644][T14803] loop1: p4 [ 215.551015][T14803] loop1: p4 size 16776960 extends beyond EOD, truncated [ 215.584005][T14827] syz.2.4272[14827] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 215.584143][T14827] syz.2.4272[14827] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 215.598545][T14827] syz.2.4272[14827] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 215.654786][T14827] loop2: detected capacity change from 0 to 4096 [ 215.731232][T14838] loop1: detected capacity change from 0 to 512 [ 215.740882][T14838] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 215.758384][T14838] ext4 filesystem being mounted at /674/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 215.773026][T14838] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 216.543676][T14855] syz.0.4287 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 216.637694][T14859] syz.0.4288[14859] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 216.668118][T14867] loop1: detected capacity change from 0 to 164 [ 216.690801][T14867] syz.1.4291: attempt to access beyond end of device [ 216.690801][T14867] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 216.692919][T14859] loop0: detected capacity change from 0 to 4096 [ 216.704805][T14867] syz.1.4291: attempt to access beyond end of device [ 216.704805][T14867] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 216.813397][T14873] loop1: detected capacity change from 0 to 4096 [ 216.903015][T14881] openvswitch: netlink: IPv4 tun info is not correct [ 216.964468][T14890] loop4: detected capacity change from 0 to 256 [ 217.065531][T14905] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 217.118485][T14909] loop4: detected capacity change from 0 to 4096 [ 217.171802][T14913] program syz.1.4311 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 217.199367][T14915] syz_tun: entered promiscuous mode [ 217.206087][T14915] batadv_slave_0: entered promiscuous mode [ 217.212599][T14915] batadv_slave_0: left promiscuous mode [ 217.218676][T14915] syz_tun: left promiscuous mode [ 217.246443][T14917] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4313'. [ 217.267672][T14853] 9pnet_fd: p9_fd_create_tcp (14853): problem connecting socket to 127.0.0.1 [ 217.320711][T14922] loop2: detected capacity change from 0 to 1024 [ 217.330540][T14922] ext4: Unknown parameter 'obj_type' [ 217.337566][T14925] lo speed is unknown, defaulting to 1000 [ 217.457788][T14941] loop1: detected capacity change from 0 to 128 [ 217.481730][T14941] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 217.507710][T14945] lo speed is unknown, defaulting to 1000 [ 217.516070][T14941] ext2 filesystem being mounted at /691/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 217.554126][T14941] EXT4-fs warning (device loop1): ext4_block_to_path:107: block 33554432 > max in inode 12 [ 217.666868][ T29] kauditd_printk_skb: 505 callbacks suppressed [ 217.666886][ T29] audit: type=1326 audit(1727040836.104:18557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14962 comm="syz.4.4334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 217.697244][ T29] audit: type=1326 audit(1727040836.104:18558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14962 comm="syz.4.4334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 217.725270][ T29] audit: type=1326 audit(1727040836.104:18559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14962 comm="syz.4.4334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 217.749276][ T29] audit: type=1326 audit(1727040836.104:18560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14962 comm="syz.4.4334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 217.773231][ T29] audit: type=1326 audit(1727040836.104:18561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14962 comm="syz.4.4334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 217.796939][ T29] audit: type=1326 audit(1727040836.104:18562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14962 comm="syz.4.4334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 217.820670][ T29] audit: type=1326 audit(1727040836.104:18563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14962 comm="syz.4.4334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 217.844281][ T29] audit: type=1326 audit(1727040836.104:18564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14962 comm="syz.4.4334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 217.868166][ T29] audit: type=1326 audit(1727040836.104:18565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14962 comm="syz.4.4334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 217.872977][T14965] loop1: detected capacity change from 0 to 512 [ 217.891847][ T29] audit: type=1326 audit(1727040836.104:18566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14962 comm="syz.4.4334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f59ed3cdef9 code=0x7ffc0000 [ 217.997240][T14975] loop2: detected capacity change from 0 to 4096 [ 218.002810][T14980] vlan2: entered promiscuous mode [ 218.008783][T14980] veth0_to_hsr: entered promiscuous mode [ 218.020023][T14965] EXT4-fs (loop1): too many log groups per flexible block group [ 218.027927][T14965] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 218.034756][T14965] EXT4-fs (loop1): mount failed [ 218.061329][T14988] loop0: detected capacity change from 0 to 512 [ 218.087586][T14988] ext4 filesystem being mounted at /675/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 218.126518][ T6727] EXT4-fs unmount: 132 callbacks suppressed [ 218.126537][ T6727] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.171948][T14999] xt_hashlimit: invalid interval [ 218.219176][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.489611][T15024] loop2: detected capacity change from 0 to 4096 [ 218.498577][T15024] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.554787][T15034] IPv6: NLM_F_CREATE should be specified when creating new route [ 218.625032][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.784193][T15051] loop2: detected capacity change from 0 to 1024 [ 218.791267][T15051] EXT4-fs: Ignoring removed oldalloc option [ 218.797607][T15051] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 218.843698][T15051] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 218.869881][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.327856][T15078] 9pnet_fd: Insufficient options for proto=fd [ 219.327966][T15082] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4385'. [ 219.387950][T15085] loop1: detected capacity change from 0 to 4096 [ 219.396002][T15090] netlink: 32 bytes leftover after parsing attributes in process `syz.2.4388'. [ 219.406621][T15085] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 219.439249][T15094] loop2: detected capacity change from 0 to 512 [ 219.446146][T15094] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 219.458485][T15094] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 219.473379][T15094] EXT4-fs (loop2): 1 truncate cleaned up [ 219.481814][T15094] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 219.499135][T15094] EXT4-fs error (device loop2): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm syz.2.4389: path /233/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=20, inode=2147483648, rec_len=0, size=60 fake=0 [ 219.547759][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.547914][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.577840][T15097] pim6reg: entered allmulticast mode [ 219.583889][T15097] pim6reg: left allmulticast mode [ 219.642785][T15105] loop1: detected capacity change from 0 to 128 [ 219.651327][T15105] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 219.705251][T15105] ext4 filesystem being mounted at /704/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 219.768744][T15120] 9pnet_fd: Insufficient options for proto=fd [ 219.819583][T15129] wg1: entered allmulticast mode [ 219.852039][T15127] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 219.854451][T15128] lo speed is unknown, defaulting to 1000 [ 219.860331][T15127] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 220.097679][T15145] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4413'. [ 220.218237][T15159] bpf_get_probe_write_proto: 20 callbacks suppressed [ 220.218253][T15159] syz.3.4419[15159] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 220.225163][T15159] syz.3.4419[15159] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 220.238912][T15159] syz.3.4419[15159] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 220.280578][T15164] netlink: 'syz.3.4421': attribute type 3 has an invalid length. [ 220.490895][T15182] syzkaller1: entered promiscuous mode [ 220.496544][T15182] syzkaller1: entered allmulticast mode [ 220.623939][ T6317] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 220.744189][T15208] bridge0: port 3(syz_tun) entered blocking state [ 220.750745][T15208] bridge0: port 3(syz_tun) entered disabled state [ 220.758723][T15208] syz_tun: entered allmulticast mode [ 220.764775][T15208] syz_tun: entered promiscuous mode [ 220.770512][T15208] bridge0: port 3(syz_tun) entered blocking state [ 220.776997][T15208] bridge0: port 3(syz_tun) entered forwarding state [ 220.785104][T15212] loop3: detected capacity change from 0 to 128 [ 220.804972][T15212] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 220.817625][T15212] ext4 filesystem being mounted at /830/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 220.979075][T15225] random: crng reseeded on system resumption [ 221.121265][T15233] netlink: 'syz.4.4453': attribute type 3 has an invalid length. [ 221.513066][T15212] syz.3.4444 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000 [ 221.527322][T15212] CPU: 0 UID: 0 PID: 15212 Comm: syz.3.4444 Tainted: G W 6.11.0-syzkaller-08829-gaf9c191ac2a0 #0 [ 221.539271][T15212] Tainted: [W]=WARN [ 221.543080][T15212] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 221.553190][T15212] Call Trace: [ 221.556463][T15212] [ 221.559388][T15212] dump_stack_lvl+0xf2/0x150 [ 221.564003][T15212] dump_stack+0x15/0x20 [ 221.568186][T15212] dump_header+0x83/0x2d0 [ 221.572584][T15212] oom_kill_process+0x341/0x4c0 [ 221.577515][T15212] out_of_memory+0x9af/0xbe0 [ 221.582314][T15212] ? css_next_descendant_pre+0x11c/0x140 [ 221.587954][T15212] mem_cgroup_out_of_memory+0x13e/0x190 [ 221.593519][T15212] try_charge_memcg+0x51b/0x810 [ 221.598384][T15212] obj_cgroup_charge_pages+0xbd/0x1a0 [ 221.603815][T15212] __memcg_kmem_charge_page+0x9d/0x170 [ 221.609534][T15212] __alloc_pages_noprof+0x1bc/0x360 [ 221.614829][T15212] alloc_pages_mpol_noprof+0xb1/0x1e0 [ 221.620306][T15212] alloc_pages_noprof+0xe1/0x100 [ 221.625268][T15212] __vmalloc_node_range_noprof+0x72e/0xec0 [ 221.631130][T15212] __kvmalloc_node_noprof+0x121/0x170 [ 221.636609][T15212] ? ip_set_alloc+0x1f/0x30 [ 221.641128][T15212] ip_set_alloc+0x1f/0x30 [ 221.645570][T15212] hash_netiface_create+0x273/0x730 [ 221.650777][T15212] ? __nla_parse+0x40/0x60 [ 221.655254][T15212] ? __pfx_hash_netiface_create+0x10/0x10 [ 221.661075][T15212] ip_set_create+0x359/0x8a0 [ 221.665677][T15212] ? memchr+0x21/0x50 [ 221.669690][T15212] ? __nla_parse+0x40/0x60 [ 221.674148][T15212] nfnetlink_rcv_msg+0x4a9/0x570 [ 221.679139][T15212] netlink_rcv_skb+0x12c/0x230 [ 221.683960][T15212] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 221.689565][T15212] nfnetlink_rcv+0x16c/0x15c0 [ 221.694335][T15212] ? kmem_cache_free+0xdc/0x2d0 [ 221.699301][T15212] ? nlmon_xmit+0x51/0x60 [ 221.703798][T15212] ? __kfree_skb+0x102/0x150 [ 221.708435][T15212] ? consume_skb+0x49/0x160 [ 221.712973][T15212] ? nlmon_xmit+0x51/0x60 [ 221.717305][T15212] ? dev_hard_start_xmit+0x3c1/0x3f0 [ 221.722690][T15212] ? __dev_queue_xmit+0xb8a/0x1fe0 [ 221.727912][T15212] ? ref_tracker_free+0x3a5/0x410 [ 221.732946][T15212] ? __dev_queue_xmit+0x161/0x1fe0 [ 221.738083][T15212] ? __netlink_deliver_tap+0x495/0x4c0 [ 221.743563][T15212] netlink_unicast+0x599/0x670 [ 221.748329][T15212] netlink_sendmsg+0x5cc/0x6e0 [ 221.753172][T15212] ? __pfx_netlink_sendmsg+0x10/0x10 [ 221.758506][T15212] __sock_sendmsg+0x140/0x180 [ 221.763267][T15212] ____sys_sendmsg+0x312/0x410 [ 221.768038][T15212] __sys_sendmsg+0x1dd/0x270 [ 221.772647][T15212] __x64_sys_sendmsg+0x46/0x50 [ 221.777416][T15212] x64_sys_call+0x2689/0x2d60 [ 221.782165][T15212] do_syscall_64+0xc9/0x1c0 [ 221.786681][T15212] ? clear_bhb_loop+0x55/0xb0 [ 221.791442][T15212] ? clear_bhb_loop+0x55/0xb0 [ 221.796119][T15212] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 221.802007][T15212] RIP: 0033:0x7f38a67ddef9 [ 221.806455][T15212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.826222][T15212] RSP: 002b:00007f38a5457038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 221.834701][T15212] RAX: ffffffffffffffda RBX: 00007f38a6995f80 RCX: 00007f38a67ddef9 [ 221.842760][T15212] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004 [ 221.851472][T15212] RBP: 00007f38a6850b76 R08: 0000000000000000 R09: 0000000000000000 [ 221.859708][T15212] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.867707][T15212] R13: 0000000000000000 R14: 00007f38a6995f80 R15: 00007ffce33e4718 [ 221.875679][T15212] [ 221.879020][T15212] memory: usage 307200kB, limit 307200kB, failcnt 369 [ 221.886104][T15212] memory+swap: usage 307552kB, limit 9007199254740988kB, failcnt 0 [ 221.894008][T15212] kmem: usage 307052kB, limit 9007199254740988kB, failcnt 0 [ 221.901307][T15212] Memory cgroup stats for /syz3: [ 221.901531][T15212] cache 139264 [ 221.909877][T15212] rss 0 [ 221.912686][T15212] shmem 0 [ 221.915636][T15212] mapped_file 73728 [ 221.919448][T15212] dirty 139264 [ 221.922806][T15212] writeback 0 [ 221.926101][T15212] workingset_refault_anon 765 [ 221.930811][T15212] workingset_refault_file 433 [ 221.935540][T15212] swap 360448 [ 221.938866][T15212] swapcached 12288 [ 221.942595][T15212] pgpgin 235202 [ 221.946081][T15212] pgpgout 235165 [ 221.949685][T15212] pgfault 285284 [ 221.953217][T15212] pgmajfault 317 [ 221.956768][T15212] inactive_anon 12288 [ 221.960736][T15212] active_anon 0 [ 221.964196][T15212] inactive_file 139264 [ 221.968279][T15212] active_file 0 [ 221.971772][T15212] unevictable 0 [ 221.975215][T15212] hierarchical_memory_limit 314572800 [ 221.980607][T15212] hierarchical_memsw_limit 9223372036854771712 [ 221.986864][T15212] total_cache 139264 [ 221.990805][T15212] total_rss 0 [ 221.994150][T15212] total_shmem 0 [ 221.997778][T15212] total_mapped_file 73728 [ 222.002141][T15212] total_dirty 139264 [ 222.006064][T15212] total_writeback 0 [ 222.009927][T15212] total_workingset_refault_anon 765 [ 222.015154][T15212] total_workingset_refault_file 433 [ 222.020396][T15212] total_swap 360448 [ 222.024292][T15212] total_swapcached 12288 [ 222.028578][T15212] total_pgpgin 235202 [ 222.032581][T15212] total_pgpgout 235165 [ 222.036765][T15212] total_pgfault 285284 [ 222.040838][T15212] total_pgmajfault 317 [ 222.044982][T15212] total_inactive_anon 12288 [ 222.049676][T15212] total_active_anon 0 [ 222.053703][T15212] total_inactive_file 139264 [ 222.058434][T15212] total_active_file 0 [ 222.062491][T15212] total_unevictable 0 [ 222.066674][T15212] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz3,task_memcg=/syz3,task=syz.3.4444,pid=15211,uid=0 [ 222.081655][T15212] Memory cgroup out of memory: Killed process 15211 (syz.3.4444) total-vm:87116kB, anon-rss:612kB, file-rss:16164kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000 [ 222.497954][ T4988] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 222.707281][ T29] kauditd_printk_skb: 439 callbacks suppressed [ 222.707339][ T29] audit: type=1326 audit(1727040841.144:19006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15279 comm="syz.3.4473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 222.723080][T15282] loop4: detected capacity change from 0 to 512 [ 222.737803][ T29] audit: type=1326 audit(1727040841.174:19007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15279 comm="syz.3.4473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 222.746708][T15278] loop1: detected capacity change from 0 to 2048 [ 222.774996][ T29] audit: type=1326 audit(1727040841.204:19008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15279 comm="syz.3.4473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 222.798801][ T29] audit: type=1326 audit(1727040841.204:19009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15279 comm="syz.3.4473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 222.822736][ T29] audit: type=1326 audit(1727040841.234:19010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15279 comm="syz.3.4473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 222.846403][ T29] audit: type=1326 audit(1727040841.234:19011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15279 comm="syz.3.4473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 222.870028][ T29] audit: type=1326 audit(1727040841.234:19012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15279 comm="syz.3.4473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 222.893726][ T29] audit: type=1326 audit(1727040841.234:19013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15279 comm="syz.3.4473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 222.917628][ T29] audit: type=1326 audit(1727040841.234:19014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15279 comm="syz.3.4473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 222.931887][T15278] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 222.941574][ T29] audit: type=1326 audit(1727040841.234:19015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15279 comm="syz.3.4473" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 222.967717][T15282] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 222.990878][T15282] ext4 filesystem being mounted at /355/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 223.012257][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.059313][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.116190][T15301] loop4: detected capacity change from 0 to 1024 [ 223.123010][T15301] EXT4-fs: Ignoring removed orlov option [ 223.129187][T15301] EXT4-fs: Ignoring removed nomblk_io_submit option [ 223.133303][T15305] loop1: detected capacity change from 0 to 764 [ 223.158378][T15301] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a842e018, mo2=0002] [ 223.168028][T15301] System zones: 0-1, 3-12 [ 223.169792][T15309] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4485'. [ 223.173001][T15301] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 223.212680][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.593664][T15317] loop3: detected capacity change from 0 to 2048 [ 223.628871][T15317] Alternate GPT is invalid, using primary GPT. [ 223.635356][T15317] loop3: p1 p2 p3 [ 223.644383][T15321] syz.2.4490[15321] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 223.644562][T15321] syz.2.4490[15321] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 223.656364][T15321] syz.2.4490[15321] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 223.672177][T15321] loop2: detected capacity change from 0 to 512 [ 223.690081][T15321] EXT4-fs: Ignoring removed bh option [ 223.695867][T15321] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 223.707040][T15321] EXT4-fs (loop2): 1 truncate cleaned up [ 223.713653][T15321] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 223.741022][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.751440][T15331] loop3: detected capacity change from 0 to 128 [ 223.769646][T15331] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 223.781957][T15331] ext4 filesystem being mounted at /837/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 223.786691][T15336] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4495'. [ 223.811933][ T4988] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 223.830207][T15340] syz.3.4496[15340] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 223.830271][T15340] syz.3.4496[15340] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 223.842047][T15340] syz.3.4496[15340] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 223.863008][T15342] 9pnet: Could not find request transport: r [ 223.966554][T15347] loop2: detected capacity change from 0 to 512 [ 223.976845][T15347] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 223.989466][T15347] ext4 filesystem being mounted at /261/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 224.000729][T15347] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.043061][T15355] loop2: detected capacity change from 0 to 128 [ 224.061421][T15355] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 224.074942][T15355] ext4 filesystem being mounted at /263/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 224.193248][T15371] syz.1.4510[15371] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 224.228455][T15371] loop1: detected capacity change from 0 to 4096 [ 224.260710][T15374] loop4: detected capacity change from 0 to 128 [ 224.283572][T15371] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 224.301247][T15374] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 224.318050][T15374] ext4 filesystem being mounted at /362/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 224.359489][T11031] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 224.442731][T15378] hub 6-0:1.0: USB hub found [ 224.448768][T15378] hub 6-0:1.0: 8 ports detected [ 224.482823][T15380] loop4: detected capacity change from 0 to 512 [ 224.490094][T15380] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 224.508655][T15380] EXT4-fs error (device loop4): ext4_orphan_get:1388: inode #17: comm syz.4.4513: iget: bad i_size value: -6917529027641081756 [ 224.527321][T15380] EXT4-fs error (device loop4): ext4_orphan_get:1393: comm syz.4.4513: couldn't read orphan inode 17 (err -117) [ 224.550419][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.565038][T15380] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 224.592057][T15380] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4513: bg 0: block 65: padding at end of block bitmap is not set [ 224.608031][T15384] hub 9-0:1.0: USB hub found [ 224.615217][T15384] hub 9-0:1.0: 8 ports detected [ 224.620476][T15380] EXT4-fs error (device loop4): ext4_acquire_dquot:6879: comm syz.4.4513: Failed to acquire dquot type 0 [ 224.661301][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.699007][T15390] loop4: detected capacity change from 0 to 512 [ 224.708275][T15390] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 224.736959][T15390] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 224.751497][T15390] ext4 filesystem being mounted at /365/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 224.828801][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.874671][T15395] loop4: detected capacity change from 0 to 512 [ 224.875731][T15354] syz.2.4502 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 224.892035][T15354] CPU: 0 UID: 0 PID: 15354 Comm: syz.2.4502 Tainted: G W 6.11.0-syzkaller-08829-gaf9c191ac2a0 #0 [ 224.895871][T15395] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 224.903938][T15354] Tainted: [W]=WARN [ 224.916070][T15354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 224.926257][T15354] Call Trace: [ 224.929551][T15354] [ 224.932495][T15354] dump_stack_lvl+0xf2/0x150 [ 224.937171][T15354] dump_stack+0x15/0x20 [ 224.941417][T15354] dump_header+0x83/0x2d0 [ 224.945855][T15354] oom_kill_process+0x341/0x4c0 [ 224.950802][T15354] out_of_memory+0x9af/0xbe0 [ 224.955449][T15354] ? css_next_descendant_pre+0x11c/0x140 [ 224.961149][T15354] mem_cgroup_out_of_memory+0x13e/0x190 [ 224.966712][T15354] try_charge_memcg+0x51b/0x810 [ 224.971673][T15354] charge_memcg+0x50/0xc0 [ 224.976034][T15354] mem_cgroup_swapin_charge_folio+0xd0/0x150 [ 224.982091][T15354] __read_swap_cache_async+0x236/0x480 [ 224.987568][T15354] swap_cluster_readahead+0x276/0x3f0 [ 224.992984][T15354] swapin_readahead+0xe4/0x6f0 [ 224.997794][T15354] ? __filemap_get_folio+0x420/0x5b0 [ 225.003098][T15354] ? __lruvec_stat_mod_folio+0xdb/0x120 [ 225.008768][T15354] ? swap_cache_get_folio+0x77/0x210 [ 225.014157][T15354] do_swap_page+0x2af/0x23e0 [ 225.018772][T15354] ? __rcu_read_lock+0x36/0x50 [ 225.023572][T15354] ? pte_offset_map_nolock+0x124/0x1d0 [ 225.029097][T15354] handle_mm_fault+0x8c5/0x2a80 [ 225.034014][T15354] exc_page_fault+0x3b9/0x650 [ 225.038754][T15354] asm_exc_page_fault+0x26/0x30 [ 225.043679][T15354] RIP: 0033:0x7fd8ed8119ec [ 225.048167][T15354] Code: 72 64 0f 1f 40 00 69 3d c6 3c e1 00 e8 03 00 00 48 8d 1d a7 45 2e 00 e8 72 c4 12 00 eb 0c 48 81 c3 d8 00 00 00 48 39 dd 74 24 <80> 7b 20 00 74 ee 8b 43 0c 85 c0 74 e7 48 89 df 48 81 c3 d8 00 00 [ 225.067865][T15354] RSP: 002b:00007ffef748cf40 EFLAGS: 00010202 [ 225.074015][T15354] RAX: 0000000000000000 RBX: 00007fd8edaf5f80 RCX: 0000000000000000 [ 225.082040][T15354] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 000055558e891808 [ 225.090070][T15354] RBP: 00007fd8edaf7a80 R08: 0000000000000000 R09: 7fffffffffffffff [ 225.098047][T15354] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000036e64 [ 225.106043][T15354] R13: 00007ffef748d040 R14: 0000000000000032 R15: ffffffffffffffff [ 225.114056][T15354] [ 225.117293][T15354] memory: usage 307200kB, limit 307200kB, failcnt 828 [ 225.124130][T15354] memory+swap: usage 307468kB, limit 9007199254740988kB, failcnt 0 [ 225.132221][T15354] kmem: usage 307048kB, limit 9007199254740988kB, failcnt 0 [ 225.139602][T15354] Memory cgroup stats for /syz2: [ 225.145760][T15354] cache 155648 [ 225.154203][T15354] rss 0 [ 225.156990][T15354] shmem 0 [ 225.159974][T15354] mapped_file 90112 [ 225.163772][T15354] dirty 155648 [ 225.167159][T15354] writeback 0 [ 225.170439][T15354] workingset_refault_anon 146 [ 225.175118][T15354] workingset_refault_file 2225 [ 225.179912][T15354] swap 274432 [ 225.183214][T15354] swapcached 0 [ 225.186677][T15354] pgpgin 277822 [ 225.190198][T15354] pgpgout 277784 [ 225.193744][T15354] pgfault 302179 [ 225.197356][T15354] pgmajfault 80 [ 225.200853][T15354] inactive_anon 0 [ 225.204481][T15354] active_anon 0 [ 225.207968][T15354] inactive_file 155648 [ 225.212044][T15354] active_file 0 [ 225.215602][T15354] unevictable 0 [ 225.219082][T15354] hierarchical_memory_limit 314572800 [ 225.224486][T15354] hierarchical_memsw_limit 9223372036854771712 [ 225.230689][T15354] total_cache 155648 [ 225.234588][T15354] total_rss 0 [ 225.237968][T15354] total_shmem 0 [ 225.241423][T15354] total_mapped_file 90112 [ 225.245766][T15354] total_dirty 155648 [ 225.249765][T15354] total_writeback 0 [ 225.253677][T15354] total_workingset_refault_anon 146 [ 225.258900][T15354] total_workingset_refault_file 2225 [ 225.263003][T15398] loop4: detected capacity change from 0 to 1024 [ 225.264183][T15354] total_swap 274432 [ 225.264193][T15354] total_swapcached 0 [ 225.273070][T15398] EXT4-fs: Ignoring removed orlov option [ 225.274401][T15354] total_pgpgin 277822 [ 225.274412][T15354] total_pgpgout 277784 [ 225.278369][T15398] EXT4-fs: Ignoring removed nomblk_io_submit option [ 225.283915][T15354] total_pgfault 302179 [ 225.283926][T15354] total_pgmajfault 80 [ 225.283936][T15354] total_inactive_anon 0 [ 225.311352][T15354] total_active_anon 0 [ 225.315535][T15354] total_inactive_file 155648 [ 225.320547][T15354] total_active_file 0 [ 225.324645][T15354] total_unevictable 0 [ 225.328687][T15354] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz2,task_memcg=/syz2,task=syz.2.4502,pid=15354,uid=0 [ 225.343793][T15354] Memory cgroup out of memory: Killed process 15354 (syz.2.4502) total-vm:87116kB, anon-rss:592kB, file-rss:16096kB, shmem-rss:0kB, UID:0 pgtables:108kB oom_score_adj:1000 [ 225.359471][T15403] loop3: detected capacity change from 0 to 512 [ 225.371081][T15398] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 225.420930][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.436698][T15403] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 225.474822][T15403] ext4 filesystem being mounted at /841/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 225.543506][ T4988] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.555067][T15411] loop4: detected capacity change from 0 to 512 [ 225.598576][T15414] bpf_get_probe_write_proto: 5 callbacks suppressed [ 225.598600][T15414] syz.3.4523[15414] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 225.605488][T15414] syz.3.4523[15414] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 225.606115][T15411] EXT4-fs (loop4): too many log groups per flexible block group [ 225.630103][T15414] syz.3.4523[15414] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 225.636423][T15411] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 225.678016][T15414] loop3: detected capacity change from 0 to 4096 [ 225.684923][T15411] EXT4-fs (loop4): mount failed [ 225.706563][T15414] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 225.779425][T15419] loop4: detected capacity change from 0 to 256 [ 225.799274][T12107] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 225.817532][T15419] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 225.843789][T15419] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 225.852471][T15419] FAT-fs (loop4): Filesystem has been set read-only [ 225.879507][T15421] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 225.887827][T15421] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 225.964449][ T4988] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.968577][T15424] loop2: detected capacity change from 0 to 512 [ 225.993230][T15424] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.4526: bg 0: block 5: invalid block bitmap [ 225.993887][T15427] syz.3.4527[15427] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 226.007922][T15424] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 226.027733][T15427] syz.3.4527[15427] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 226.030798][T15424] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #11: comm syz.2.4526: invalid indirect mapped block 3 (level 2) [ 226.050726][T15427] syz.3.4527[15427] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 226.074015][T15424] EXT4-fs (loop2): 1 orphan inode deleted [ 226.078233][T15431] loop1: detected capacity change from 0 to 512 [ 226.085475][T15424] EXT4-fs (loop2): 1 truncate cleaned up [ 226.107130][T15431] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.4530: corrupted in-inode xattr: invalid ea_ino [ 226.116343][T15424] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 226.123539][T15431] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.4530: couldn't read orphan inode 15 (err -117) [ 226.147881][T15431] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 226.190448][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.200338][T15424] EXT4-fs error (device loop2): ext4_check_dx_root:2220: inode #2: comm syz.2.4526: Corrupt dir, invalid name_len for '.', running e2fsck is recommended [ 226.232010][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.247315][T15444] loop3: detected capacity change from 0 to 2048 [ 226.268015][T15448] syz.1.4535[15448] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 226.268082][T15448] syz.1.4535[15448] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 226.281345][T15444] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 226.311423][T15444] EXT4-fs error (device loop3): ext4_find_extent:938: inode #2: comm syz.3.4537: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 226.317773][T15448] syz.1.4535[15448] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 226.329906][T15444] EXT4-fs (loop3): Remounting filesystem read-only [ 226.366639][T15448] loop1: detected capacity change from 0 to 128 [ 226.390867][T15456] loop2: detected capacity change from 0 to 1024 [ 226.395436][T15448] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 226.419922][T15459] loop4: detected capacity change from 0 to 2048 [ 226.423070][T15448] syz.1.4535: attempt to access beyond end of device [ 226.423070][T15448] loop1: rw=3, sector=6950, nr_sectors = 2 limit=128 [ 226.440197][T15448] syz.1.4535: attempt to access beyond end of device [ 226.440197][T15448] loop1: rw=2051, sector=6952, nr_sectors = 942 limit=128 [ 226.441079][T15456] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 226.467830][ T4988] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.476623][T15459] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 226.510910][T15456] EXT4-fs error (device loop2): ext4_get_inode_usage:883: inode #2: comm syz.2.4540: corrupted in-inode xattr: bad e_name length [ 226.542976][T12107] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2792: inode #2: comm syz-executor: corrupted in-inode xattr: bad e_name length [ 226.561789][T15459] EXT4-fs (loop4): shut down requested (2) [ 226.568237][T15459] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=12 [ 226.582272][T12107] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz-executor: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 226.602665][T15459] SELinux: inode_doinit_use_xattr: getxattr returned 5 for dev=loop4 ino=12 [ 226.613288][T15467] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 3976 [ 226.623449][T12107] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz-executor: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 226.642702][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.699608][T15470] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4547'. [ 226.851558][T15478] syz.3.4549[15478] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 226.879235][T15478] loop3: detected capacity change from 0 to 4096 [ 226.914253][T15478] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 227.017799][T12107] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 227.027986][ T36] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.104480][ T36] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.190052][ T36] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.232072][ T36] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.259914][ T4988] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 227.320618][ T36] bridge_slave_1: left allmulticast mode [ 227.326522][ T36] bridge_slave_1: left promiscuous mode [ 227.332292][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 227.346037][ T36] bridge_slave_0: left allmulticast mode [ 227.351727][ T36] bridge_slave_0: left promiscuous mode [ 227.357445][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 227.488509][ T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 227.507237][ T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 227.527695][ T36] bond0 (unregistering): Released all slaves [ 227.541166][T15495] loop1: detected capacity change from 0 to 512 [ 227.566777][T15497] loop4: detected capacity change from 0 to 512 [ 227.567424][T15495] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 227.589229][T15483] lo speed is unknown, defaulting to 1000 [ 227.597159][T15493] loop3: detected capacity change from 0 to 8192 [ 227.604373][T15495] ext4 filesystem being mounted at /736/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 227.622787][ T36] hsr_slave_0: left promiscuous mode [ 227.632660][T15497] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 227.645433][ T36] hsr_slave_1: left promiscuous mode [ 227.648244][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 227.659582][T15497] ext4 filesystem being mounted at /377/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 227.674222][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 227.681867][ T36] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 227.692235][ T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 227.699717][ T36] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 227.722047][ T36] veth0_macvtap: left promiscuous mode [ 227.727626][ T36] veth1_vlan: left promiscuous mode [ 227.732950][ T36] veth0_vlan: left promiscuous mode [ 227.739000][T11031] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 227.792497][T15502] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 227.794552][T15506] loop4: detected capacity change from 0 to 2048 [ 227.800289][T15502] FAT-fs (loop3): Filesystem has been set read-only [ 227.833054][T15506] EXT4-fs: Ignoring removed orlov option [ 227.859376][T15506] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 227.884611][T15510] loop1: detected capacity change from 0 to 4096 [ 227.910096][T15510] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 227.929443][ T29] kauditd_printk_skb: 411 callbacks suppressed [ 227.929460][ T29] audit: type=1326 audit(1727040846.364:19424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15509 comm="syz.1.4558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 227.959875][ T29] audit: type=1326 audit(1727040846.364:19425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15509 comm="syz.1.4558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 227.983560][ T29] audit: type=1326 audit(1727040846.364:19426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15509 comm="syz.1.4558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 227.995344][ T1731] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, [ 228.007110][ T29] audit: type=1326 audit(1727040846.364:19427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15509 comm="syz.1.4558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 228.007158][ T29] audit: type=1326 audit(1727040846.364:19428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15509 comm="syz.1.4558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f3fe18bdef9 code=0x7ffc0000 [ 228.016140][ T1731] block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 228.063522][ T1731] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 228.072251][ T29] audit: type=1326 audit(1727040846.394:19429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15515 comm="syz.3.4559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 228.072352][ T29] audit: type=1326 audit(1727040846.394:19430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15515 comm="syz.3.4559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 228.084685][ T1731] EXT4-fs (loop4): This should not happen!! Data will be lost [ 228.084685][ T1731] [ 228.108760][ T29] audit: type=1326 audit(1727040846.394:19431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15515 comm="syz.3.4559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 228.132036][ T1731] EXT4-fs (loop4): Total free blocks count 0 [ 228.141527][ T29] audit: type=1326 audit(1727040846.394:19432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15515 comm="syz.3.4559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 228.165042][ T1731] EXT4-fs (loop4): Free/Dirty block details [ 228.165059][ T1731] EXT4-fs (loop4): free_blocks=2415919104 [ 228.171028][ T29] audit: type=1326 audit(1727040846.394:19433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15515 comm="syz.3.4559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f38a67ddef9 code=0x7ffc0000 [ 228.230270][ T1731] EXT4-fs (loop4): dirty_blocks=3184 [ 228.235603][ T1731] EXT4-fs (loop4): Block reservation details [ 228.241630][ T1731] EXT4-fs (loop4): i_reserved_data_blocks=212 [ 228.250469][ T36] team0 (unregistering): Port device team_slave_1 removed [ 228.263633][ T36] team0 (unregistering): Port device team_slave_0 removed [ 228.344456][ T6317] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.367705][ T1731] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2048 with max blocks 2048 with error 28 [ 228.426978][T15483] chnl_net:caif_netlink_parms(): no params data found [ 228.474152][T15483] bridge0: port 1(bridge_slave_0) entered blocking state [ 228.481302][T15483] bridge0: port 1(bridge_slave_0) entered disabled state [ 228.491947][T15483] bridge_slave_0: entered allmulticast mode [ 228.498780][T15483] bridge_slave_0: entered promiscuous mode [ 228.506214][T15483] bridge0: port 2(bridge_slave_1) entered blocking state [ 228.513357][T15483] bridge0: port 2(bridge_slave_1) entered disabled state [ 228.520873][T15483] bridge_slave_1: entered allmulticast mode [ 228.527594][T15483] bridge_slave_1: entered promiscuous mode [ 228.560599][T15483] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 228.573419][T15483] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 228.590506][T15536] lo speed is unknown, defaulting to 1000 [ 228.634360][T15483] team0: Port device team_slave_0 added [ 228.647542][T15483] team0: Port device team_slave_1 added [ 228.710168][T15483] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 228.717192][T15483] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 228.743158][T15483] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 228.778582][T15483] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 228.785730][T15483] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 228.812071][T15483] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 228.851318][T15483] hsr_slave_0: entered promiscuous mode [ 228.865572][T15483] hsr_slave_1: entered promiscuous mode [ 228.873617][T15562] netlink: 256 bytes leftover after parsing attributes in process `syz.1.4576'. [ 228.885252][T15483] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 228.892980][T15483] Cannot create hsr debugfs directory [ 228.904771][T15564] loop3: detected capacity change from 0 to 128 [ 228.912085][T15568] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4579'. [ 228.918523][T15564] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 228.940533][T15571] loop4: detected capacity change from 0 to 512 [ 228.955113][T15564] ext4 filesystem being mounted at /861/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 228.981495][ T4988] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 228.998043][T15571] ext4 filesystem being mounted at /383/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 229.019806][T15571] EXT4-fs error (device loop4): ext4_do_update_inode:5121: inode #2: comm syz.4.4580: corrupted inode contents [ 229.034213][T15571] EXT4-fs (loop4): Remounting filesystem read-only [ 229.181540][T15606] loop4: detected capacity change from 0 to 764 [ 229.187550][T15608] loop1: detected capacity change from 0 to 512 [ 229.199358][T15608] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 229.211537][T15608] EXT4-fs (loop1): 1 truncate cleaned up [ 229.358317][T15620] loop3: detected capacity change from 0 to 512 [ 229.390009][T15483] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 229.413569][T15483] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 229.433971][T15483] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 229.456005][T15483] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 229.463015][T15625] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 512 [ 229.477276][T15620] ext4 filesystem being mounted at /868/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 229.527617][T15483] 8021q: adding VLAN 0 to HW filter on device bond0 [ 229.542339][T15483] 8021q: adding VLAN 0 to HW filter on device team0 [ 229.554151][ T1731] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.561265][ T1731] bridge0: port 1(bridge_slave_0) entered forwarding state [ 229.617970][ T1731] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.625056][ T1731] bridge0: port 2(bridge_slave_1) entered forwarding state [ 229.659683][T15629] loop1: detected capacity change from 0 to 4096 [ 229.677392][T15483] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 229.687876][T15483] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 229.778336][T15483] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 229.865385][T15483] veth0_vlan: entered promiscuous mode [ 229.874173][T15483] veth1_vlan: entered promiscuous mode [ 229.892538][T15483] veth0_macvtap: entered promiscuous mode [ 229.901412][T15483] veth1_macvtap: entered promiscuous mode [ 229.912364][T15483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 229.923006][T15483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 229.933190][T15483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 229.943864][T15483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 229.953822][T15483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 229.964320][T15483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 229.974223][T15483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 229.984687][T15483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 229.994553][T15483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 230.005255][T15483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 230.017980][T15483] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 230.026503][T15483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 230.030613][T15655] loop1: detected capacity change from 0 to 1024 [ 230.036994][T15483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 230.037011][T15483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 230.063938][T15483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 230.065406][T15655] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 230.073816][T15483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 230.092696][T15483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 230.102534][T15483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 230.112189][T15655] EXT4-fs (loop1): stripe (2048) is not aligned with cluster size (4096), stripe is disabled [ 230.112998][T15483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 230.129819][T15657] loop3: detected capacity change from 0 to 512 [ 230.133076][T15483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 230.150009][T15483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 230.159845][T15483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 230.170328][T15483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 230.180980][T15483] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 230.183722][T15655] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 230.196311][T15655] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840e018, mo2=0000] [ 230.197426][T15483] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 230.213117][T15483] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 230.222083][T15483] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 230.230880][T15483] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 230.250665][T15657] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.4613: corrupted in-inode xattr: invalid ea_ino [ 230.267370][T15657] EXT4-fs error (device loop3): ext4_orphan_get:1393: comm syz.3.4613: couldn't read orphan inode 15 (err -117) [ 230.272020][T15661] loop4: detected capacity change from 0 to 164 [ 230.279654][T15655] System zones: 0-1, 3-12 [ 230.292240][T15655] EXT4-fs (loop1): orphan cleanup on readonly fs [ 230.300308][T15655] EXT4-fs error (device loop1): ext4_free_blocks:6589: comm syz.1.4612: Freeing blocks not in datazone - block = 0, count = 4096 [ 230.313729][T15661] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 230.323410][T15655] EXT4-fs (loop1): 1 orphan inode deleted [ 230.333882][T15661] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 230.365205][T15667] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4616'. [ 230.385853][T15667] geneve2: entered promiscuous mode [ 230.448716][T15674] loop1: detected capacity change from 0 to 4096 [ 230.716838][T15687] lo speed is unknown, defaulting to 1000 [ 230.964174][T15687] chnl_net:caif_netlink_parms(): no params data found [ 231.057792][T15687] bridge0: port 1(bridge_slave_0) entered blocking state [ 231.064896][T15687] bridge0: port 1(bridge_slave_0) entered disabled state [ 231.074724][T15687] bridge_slave_0: entered allmulticast mode [ 231.081528][T15687] bridge_slave_0: entered promiscuous mode [ 231.094121][T15687] bridge0: port 2(bridge_slave_1) entered blocking state [ 231.101328][T15687] bridge0: port 2(bridge_slave_1) entered disabled state [ 231.112052][T15687] bridge_slave_1: entered allmulticast mode [ 231.119025][T15687] bridge_slave_1: entered promiscuous mode [ 231.152433][T15687] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 231.166356][T15687] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 231.197775][T15687] team0: Port device team_slave_0 added [ 231.200474][T15731] openvswitch: netlink: IPv4 tun info is not correct [ 231.218269][T15687] team0: Port device team_slave_1 added [ 231.232637][T15733] bpf_get_probe_write_proto: 14 callbacks suppressed [ 231.232656][T15733] syz.1.4640[15733] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 231.246062][T15735] loop2: detected capacity change from 0 to 256 [ 231.247209][T15733] syz.1.4640[15733] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 231.264037][T15733] syz.1.4640[15733] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 231.278441][T15687] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 231.296826][T15687] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 231.322970][T15687] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 231.334922][T15687] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 231.342034][T15687] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 231.368075][T15687] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 231.419535][T15739] loop1: detected capacity change from 0 to 512 [ 231.467343][T15687] hsr_slave_0: entered promiscuous mode [ 231.484198][T15687] hsr_slave_1: entered promiscuous mode [ 231.510844][T15687] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 231.521604][T15739] ext4 filesystem being mounted at /770/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 231.542123][T15687] Cannot create hsr debugfs directory [ 231.555543][T15749] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 231.604458][T15739] Process accounting resumed [ 231.649150][T15739] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 231.689013][T15687] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.699558][T15687] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 231.730951][T15771] loop4: detected capacity change from 0 to 128 [ 231.741756][T15775] loop2: detected capacity change from 0 to 512 [ 231.749047][T15771] ext4 filesystem being mounted at /400/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 231.782937][T15775] EXT4-fs: Ignoring removed nobh option [ 231.792582][T15775] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 231.795517][T15687] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.812831][T15687] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 231.847432][T15775] EXT4-fs (loop2): 1 truncate cleaned up [ 231.903943][T15687] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 231.914325][T15771] ================================================================== [ 231.914368][T15771] BUG: KCSAN: data-race in mem_cgroup_flush_stats_ratelimited / tick_do_update_jiffies64 [ 231.922519][T15687] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 231.932175][T15771] [ 231.932181][T15771] read-write to 0xffffffff866079c0 of 8 bytes by interrupt on cpu 0: SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 231.932202][T15771] tick_do_update_jiffies64+0x112/0x1b0 [ 231.958472][T15771] tick_nohz_handler+0x7c/0x2d0 [ 231.963352][T15771] __hrtimer_run_queues+0x20d/0x5e0 [ 231.968587][T15771] hrtimer_interrupt+0x210/0x7b0 [ 231.973555][T15771] __sysvec_apic_timer_interrupt+0x5c/0x1a0 [ 231.979483][T15771] sysvec_apic_timer_interrupt+0x6e/0x80 [ 231.985139][T15771] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 231.991142][T15771] console_flush_all+0x56b/0x770 [ 231.996132][T15771] console_unlock+0xab/0x330 [ 232.000758][T15771] vprintk_emit+0x3f4/0x680 [ 232.005282][T15771] dev_vprintk_emit+0x1df/0x210 [ 232.010157][T15771] dev_printk_emit+0x82/0xb0 [ 232.014774][T15771] __netdev_printk+0x352/0x3e0 [ 232.019560][T15771] netdev_info+0x99/0xc0 [ 232.023826][T15771] nsim_udp_tunnel_unset_port+0x1bc/0x1e0 [ 232.029581][T15771] __udp_tunnel_nic_device_sync+0x57b/0x9e0 [ 232.035489][T15771] udp_tunnel_nic_flush+0x22c/0x320 [ 232.040718][T15771] udp_tunnel_nic_netdevice_event+0x7b9/0xc80 [ 232.046823][T15771] raw_notifier_call_chain+0x6f/0x1d0 [ 232.052213][T15771] call_netdevice_notifiers_info+0xae/0x100 [ 232.058155][T15771] unregister_netdevice_many_notify+0x8b7/0x11b0 [ 232.064515][T15771] unregister_netdevice_queue+0x1f4/0x220 [ 232.070265][T15771] nsim_destroy+0xa4/0x2f0 [ 232.074698][T15771] __nsim_dev_port_del+0xcd/0x100 [ 232.079768][T15771] nsim_dev_reload_destroy+0x1a6/0x2d0 [ 232.085244][T15771] nsim_drv_remove+0x3e/0x100 [ 232.089947][T15771] nsim_bus_remove+0x15/0x20 [ 232.094569][T15771] device_release_driver_internal+0x2e5/0x4f0 [ 232.100662][T15771] device_release_driver+0x19/0x20 [ 232.105811][T15771] bus_remove_device+0x26f/0x290 [ 232.110782][T15771] device_del+0x370/0x780 [ 232.115139][T15771] device_unregister+0x15/0x40 [ 232.119933][T15771] del_device_store+0x1cb/0x230 [ 232.124814][T15771] bus_attr_store+0x54/0x70 [ 232.129391][T15771] sysfs_kf_write+0xae/0xd0 [ 232.133910][T15771] kernfs_fop_write_iter+0x1c8/0x2c0 [ 232.139243][T15771] vfs_write+0x76a/0x910 [ 232.143498][T15771] ksys_write+0xeb/0x1b0 [ 232.147754][T15771] __x64_sys_write+0x42/0x50 [ 232.152369][T15771] x64_sys_call+0x27dd/0x2d60 [ 232.157065][T15771] do_syscall_64+0xc9/0x1c0 [ 232.161579][T15771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.167496][T15771] [ 232.169813][T15771] read to 0xffffffff866079c0 of 8 bytes by task 15771 on cpu 1: [ 232.177434][T15771] mem_cgroup_flush_stats_ratelimited+0x29/0x100 [ 232.183798][T15771] count_shadow_nodes+0x6b/0x230 [ 232.188743][T15771] do_shrink_slab+0x5a/0x680 [ 232.193336][T15771] shrink_slab+0x4ea/0x850 [ 232.197770][T15771] shrink_node+0x64f/0x1d40 [ 232.202291][T15771] do_try_to_free_pages+0x3c6/0xc50 [ 232.207484][T15771] try_to_free_mem_cgroup_pages+0x1f3/0x4f0 [ 232.213402][T15771] try_charge_memcg+0x2bc/0x810 [ 232.218257][T15771] obj_cgroup_charge_pages+0xbd/0x1a0 [ 232.223656][T15771] __memcg_kmem_charge_page+0x9d/0x170 [ 232.229130][T15771] __alloc_pages_noprof+0x1bc/0x360 [ 232.234334][T15771] alloc_pages_mpol_noprof+0xb1/0x1e0 [ 232.239738][T15771] alloc_pages_noprof+0xe1/0x100 [ 232.244686][T15771] __vmalloc_node_range_noprof+0x72e/0xec0 [ 232.250489][T15771] __kvmalloc_node_noprof+0x121/0x170 [ 232.255873][T15771] ip_set_alloc+0x1f/0x30 [ 232.260254][T15771] hash_netiface_create+0x273/0x730 [ 232.265481][T15771] ip_set_create+0x359/0x8a0 [ 232.270116][T15771] nfnetlink_rcv_msg+0x4a9/0x570 [ 232.275142][T15771] netlink_rcv_skb+0x12c/0x230 [ 232.279910][T15771] nfnetlink_rcv+0x16c/0x15c0 [ 232.284590][T15771] netlink_unicast+0x599/0x670 [ 232.289349][T15771] netlink_sendmsg+0x5cc/0x6e0 [ 232.294122][T15771] __sock_sendmsg+0x140/0x180 [ 232.298810][T15771] ____sys_sendmsg+0x312/0x410 [ 232.303589][T15771] __sys_sendmsg+0x1dd/0x270 [ 232.308180][T15771] __x64_sys_sendmsg+0x46/0x50 [ 232.312961][T15771] x64_sys_call+0x2689/0x2d60 [ 232.317642][T15771] do_syscall_64+0xc9/0x1c0 [ 232.322144][T15771] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 232.328039][T15771] [ 232.330352][T15771] value changed: 0x00000000ffffe53b -> 0x00000000ffffe53c [ 232.337642][T15771] [ 232.339964][T15771] Reported by Kernel Concurrency Sanitizer on: [ 232.346134][T15771] CPU: 1 UID: 0 PID: 15771 Comm: syz.4.4658 Tainted: G W 6.11.0-syzkaller-08829-gaf9c191ac2a0 #0 [ 232.358020][T15771] Tainted: [W]=WARN [ 232.361807][T15771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 232.371856][T15771] ================================================================== [ 232.433768][T15780] bridge0: port 3(syz_tun) entered disabled state [ 232.444309][T15780] syz_tun (unregistering): left allmulticast mode [ 232.450853][T15780] syz_tun (unregistering): left promiscuous mode [ 232.457265][T15780] bridge0: port 3(syz_tun) entered disabled state [ 232.493283][T15687] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.503782][T15687] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 232.668736][ T5887] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.718636][ T5887] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.758811][ T5887] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.799016][ T5887] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 232.878993][ T5887] bridge_slave_1: left allmulticast mode [ 232.884662][ T5887] bridge_slave_1: left promiscuous mode [ 232.890376][ T5887] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.898632][ T5887] bridge_slave_0: left allmulticast mode [ 232.904286][ T5887] bridge_slave_0: left promiscuous mode [ 232.910018][ T5887] bridge0: port 1(bridge_slave_0) entered disabled state [ 233.298141][ T5887] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 233.308758][ T5887] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 233.319473][ T5887] bond0 (unregistering): Released all slaves [ 233.327887][ T5887] bond1 (unregistering): Released all slaves [ 233.336246][ T5887] bond2 (unregistering): Released all slaves [ 233.344941][ T5887] bond3 (unregistering): Released all slaves [ 233.388990][ T5887] IPVS: stopping backup sync thread 12389 ... [ 233.398443][ T5887] hsr_slave_0: left promiscuous mode [ 233.404144][ T5887] hsr_slave_1: left promiscuous mode [ 233.410167][ T5887] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 233.417781][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 233.425260][ T5887] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 233.432791][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 233.441660][ T5887] veth1_macvtap: left promiscuous mode [ 233.447149][ T5887] veth0_macvtap: left promiscuous mode [ 233.452625][ T5887] veth1_vlan: left promiscuous mode [ 233.457872][ T5887] veth0_vlan: left promiscuous mode [ 233.514724][ T5887] pimreg3 (unregistering): left allmulticast mode [ 233.557838][ T5887] team0 (unregistering): Port device team_slave_1 removed [ 233.568406][ T5887] team0 (unregistering): Port device team_slave_0 removed [ 234.070233][ T5887] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.129455][ T5887] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.178787][ T5887] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.258928][ T5887] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.320455][ T5887] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.378617][ T5887] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.428955][ T5887] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.478656][ T5887] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 234.558172][ T5887] bridge_slave_1: left allmulticast mode [ 234.563888][ T5887] bridge_slave_1: left promiscuous mode [ 234.569522][ T5887] bridge0: port 2(bridge_slave_1) entered disabled state [ 234.577243][ T5887] bridge_slave_0: left allmulticast mode [ 234.582912][ T5887] bridge_slave_0: left promiscuous mode [ 234.588644][ T5887] bridge0: port 1(bridge_slave_0) entered disabled state [ 234.596786][ T5887] bridge_slave_1: left allmulticast mode [ 234.602485][ T5887] bridge_slave_1: left promiscuous mode [ 234.608280][ T5887] bridge0: port 2(bridge_slave_1) entered disabled state [ 234.616158][ T5887] bridge_slave_0: left allmulticast mode [ 234.621819][ T5887] bridge_slave_0: left promiscuous mode [ 234.627499][ T5887] bridge0: port 1(bridge_slave_0) entered disabled state [ 234.635833][ T5887] bridge_slave_1: left allmulticast mode [ 234.641464][ T5887] bridge_slave_1: left promiscuous mode [ 234.647068][ T5887] bridge0: port 2(bridge_slave_1) entered disabled state [ 234.654667][ T5887] bridge_slave_0: left allmulticast mode [ 234.660356][ T5887] bridge_slave_0: left promiscuous mode [ 234.666077][ T5887] bridge0: port 1(bridge_slave_0) entered disabled state [ 234.907753][ T5887] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 234.918664][ T5887] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 234.928970][ T5887] bond0 (unregistering): Released all slaves [ 234.938245][ T5887] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 234.948734][ T5887] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 234.958856][ T5887] bond0 (unregistering): Released all slaves [ 234.967975][ T5887] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 234.978397][ T5887] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 234.988843][ T5887] bond0 (unregistering): Released all slaves [ 235.062634][ T5887] hsr_slave_0: left promiscuous mode [ 235.068339][ T5887] hsr_slave_1: left promiscuous mode [ 235.074066][ T5887] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 235.081518][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 235.089153][ T5887] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 235.096607][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 235.106350][ T5887] hsr_slave_0: left promiscuous mode [ 235.111986][ T5887] hsr_slave_1: left promiscuous mode [ 235.117783][ T5887] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 235.125272][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 235.132897][ T5887] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 235.140421][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 235.150015][ T5887] hsr_slave_0: left promiscuous mode [ 235.155854][ T5887] hsr_slave_1: left promiscuous mode [ 235.161673][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 235.169184][ T5887] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 235.179898][ T5887] veth1_macvtap: left promiscuous mode [ 235.185475][ T5887] veth0_macvtap: left promiscuous mode [ 235.190977][ T5887] veth1_vlan: left promiscuous mode [ 235.196202][ T5887] veth0_vlan: left promiscuous mode [ 235.201825][ T5887] veth0_macvtap: left promiscuous mode [ 235.207351][ T5887] veth1_vlan: left promiscuous mode [ 235.212617][ T5887] veth0_vlan: left promiscuous mode [ 235.349796][ T5887] team0 (unregistering): Port device team_slave_1 removed [ 235.359638][ T5887] team0 (unregistering): Port device team_slave_0 removed [ 235.403633][ T5887] team0 (unregistering): Port device macvlan1 removed [ 235.431172][ T5887] team0 (unregistering): Port device team_slave_1 removed [ 235.440958][ T5887] team0 (unregistering): Port device team_slave_0 removed [ 235.504242][ T5887] team0 (unregistering): Port device team_slave_1 removed [ 235.514669][ T5887] team0 (unregistering): Port device team_slave_0 removed