last executing test programs: 2.636778111s ago: executing program 4 (id=1036): io_uring_setup(0x79af, &(0x7f0000001240)) bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="00000086744463"], 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="190000000400", @ANYBLOB, @ANYRES32=0x0], 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_WIPHY(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)={0x30, r2, 0x301, 0x0, 0x0, {{}, {@val={0x8, 0x7}, @val={0x8}, @val={0xc}}}}, 0x30}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10) r4 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800010009000000000000000a00000000000000080001000200000004000b"], 0x24}}, 0x0) sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000340)=ANY=[@ANYBLOB="2000000069000305000000000000000000000000000000000800010002"], 0x20}}, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) setsockopt$MRT6_DEL_MIF(0xffffffffffffffff, 0x29, 0xc8, 0x0, 0xc000000) 2.631336221s ago: executing program 2 (id=1037): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_SCAN(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8041}, 0x0) socket$can_raw(0x1d, 0x3, 0x1) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000380)='./file2\x00', 0x404, &(0x7f0000000740)={[{@block_validity}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@minixdf}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x7, 0xfff, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001b40)='sched_switch\x00', r1}, 0x10) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x0, 0x18c, 0x203, 0x4d000000, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@private, 'veth1_macvtap\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590) 2.407195319s ago: executing program 4 (id=1040): bpf$MAP_CREATE(0x0, &(0x7f0000001400)=@base={0x5, 0x6, 0x2, 0x3a7, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x50) 2.311929837s ago: executing program 1 (id=1043): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}}}}]}, 0x4c}}, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x2) prctl$PR_SET_IO_FLUSHER(0x39, 0x0) syz_open_dev$MSR(0x0, 0x0, 0x0) bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23}, 0x10) sendto$inet(r1, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0x2acf, 0x11, 0x0, 0x27) 2.234101044s ago: executing program 4 (id=1044): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x19, 0x4, 0x4, 0x20002, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48) 2.199096836s ago: executing program 1 (id=1045): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000540)='qdisc_destroy\x00', r0}, 0x18) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast}) close(r1) 2.027037771s ago: executing program 4 (id=1048): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) socket(0x10, 0x803, 0x0) r4 = shmget$private(0x0, 0x2000, 0x400, &(0x7f0000ffe000/0x2000)=nil) shmat(r4, &(0x7f0000ffd000/0x1000)=nil, 0x4000) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x0) r5 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r5, &(0x7f00000030c0)={0x0, 0x0, &(0x7f0000003080)={&(0x7f0000000380)=ANY=[@ANYBLOB="30000000030101090069d68367d78a946a0000001c0019800800010009000000"], 0x30}}, 0x0) ioctl$PPPIOCGNPMODE(0xffffffffffffffff, 0xc008744c, &(0x7f0000000300)={0x21, 0x2}) r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r6}, 0x18) bpf$PROG_LOAD(0x5, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB], 0x1c}}, 0x0) 1.890038303s ago: executing program 2 (id=1050): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) kcmp(0x0, 0x0, 0x6, 0xffffffffffffffff, 0xffffffffffffffff) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r3, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000340)={0x20, r2, 0x4196ccce67868bab, 0x0, 0x0, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x20040090}, 0x8000) 1.049009992s ago: executing program 0 (id=1051): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000f1ffffff0000000000100000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x804000, &(0x7f0000000200)={[{@quota}, {@oldalloc}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x434, &(0x7f0000000940)="$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") bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'}) 1.035502664s ago: executing program 1 (id=1052): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) r1 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000040)={'vxcan0\x00', 0x0}) bind$can_raw(r1, &(0x7f0000000080)={0x1d, r2}, 0x10) close(r1) 1.025036454s ago: executing program 4 (id=1053): r0 = socket$packet(0x11, 0x3, 0x300) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x10, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = fsopen(&(0x7f0000000240)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) r3 = fsmount(r2, 0x0, 0x0) fsconfig$FSCONFIG_SET_PATH_EMPTY(r2, 0x4, &(0x7f0000000040)='/]{[,/$\x01\\[#@\\-^(}@!!\']{*:,##\x00', &(0x7f0000000080)='./file0\x00', r3) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x89a0, &(0x7f0000000040)={'syzkaller0\x00'}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'syzkaller0\x00', 0x0}) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000100)={r4, 0x2, 0x6, @multicast}, 0x10) setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000000c0)={r4, 0x2, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10) r5 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r5, 0x89a1, &(0x7f0000000040)={'syzkaller0\x00'}) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000201000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10) syz_mount_image$vfat(&(0x7f0000000ec0), &(0x7f0000000180)='./file2\x00', 0x420c, &(0x7f0000003240)=ANY=[], 0x6, 0x35d, &(0x7f0000000f00)="$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") r7 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fcntl$setstatus(r7, 0x4, 0x6000) io_setup(0x200, &(0x7f0000000140)=0x0) r9 = open(&(0x7f0000000100)='./bus\x00', 0x14113e, 0x0) write$binfmt_script(r9, &(0x7f0000000080), 0x208e24b) io_submit(r8, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0x0, 0x2, 0x1, 0x0, r7, &(0x7f0000000000), 0x4000}]) 910.426384ms ago: executing program 2 (id=1055): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}}}}]}, 0x4c}}, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x2) prctl$PR_SET_IO_FLUSHER(0x39, 0x0) syz_open_dev$MSR(0x0, 0x0, 0x0) bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23}, 0x10) sendto$inet(r1, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0x2acf, 0x11, 0x0, 0x27) 797.076403ms ago: executing program 0 (id=1056): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x5cc, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x4}, {0xffe0}}, [@filter_kind_options=@f_u32={{0x8}, {0x570, 0x2, [@TCA_U32_LINK={0x8, 0x3, 0x3f5}, @TCA_U32_FLAGS={0x8, 0xb, 0x5}, @TCA_U32_INDEV={0x14, 0x8, 'veth1_to_bridge\x00'}, @TCA_U32_ACT={0x548, 0x7, [@m_mpls={0xa0, 0x16, 0x0, 0x0, {{0x9}, {0x3c, 0x2, 0x0, 0x1, [@TCA_MPLS_PROTO={0x6, 0x4, 0x6005}, @TCA_MPLS_LABEL={0x8, 0x5, 0x38993}, @TCA_MPLS_TC={0x5, 0x6, 0x4}, @TCA_MPLS_LABEL={0x8, 0x5, 0xbc27b}, @TCA_MPLS_TC={0x5, 0x6, 0x2}, @TCA_MPLS_TTL={0x5, 0x7, 0x1}, @TCA_MPLS_LABEL={0x8, 0x5, 0xf80e6}]}, {0x39, 0x6, "612d3699db034f8f08430151bfb3f0819c1d44301a821ce1a7e2fcd26a93322f414a08eb783ba01be15256ed15fc2fa03568c8552b"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x3}}}}, @m_mirred={0x160, 0x1e, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0x7, 0x20000000, 0xffff, 0x6}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x7, 0x8, 0x8, 0x401}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3a61, 0x5a68ce02, 0x0, 0x2eca, 0x5}, 0x3}}]}, {0xd1, 0x6, "71558f82c797ed40aa96cae0561caac80e37421fbe6b5847795e9152419bd6e36082801f37e53ccbea50d8b4e7d6d4cd06cec76ec462499bdf122811144a51b56146738d4d25cbd285f2e729dbbe3c6137f7cd123b784cfddefd732ecc306f6cd0dc9c82fffc866125185fd50c16a59b8228811ffa42a3fc06ae6c491841f2d3b022b410d20071f23972ad211e8d088570180a0b72ec30b207b439e9499530f5ed3add294c6979c4716758179993cb396d1a9e8371981dc62a436962aa697442d2123e008f091efa1ef638699b"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_bpf={0xb4, 0xb, 0x0, 0x0, {{0x8}, {0x14, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x5}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x6}]}, {0x79, 0x6, "41aded84741ae0ad62644bf1bcd133afd532ca829ac6bda1bb5ef9fa93873a30f5d3e7c176e9df8b4cd9294006f3b071f6f02d14812ffa5cddbb03a1310a0ea81c2fcf52aedcdea451b78b010e5bcb69df46195784d5f23b7684f1f9cb0d1990615f2a605f5835cc5c16bc790a705509f995372878"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}, @m_xt={0xb4, 0x15, 0x0, 0x0, {{0x7}, {0x64, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x8}, @TCA_IPT_HOOK={0x8, 0x2, 0x7}, @TCA_IPT_INDEX={0x8}, @TCA_IPT_TABLE={0x24, 0x1, 'raw\x00'}, @TCA_IPT_TABLE={0x24, 0x1, 'mangle\x00'}]}, {0x29, 0x6, "7cc4d4d8913023393152cf1483893cb72022204afc5a3c78451fb35e595b70d04ef5495ca4"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_ct={0x70, 0xb, 0x0, 0x0, {{0x7}, {0x30, 0x2, 0x0, 0x1, [@TCA_CT_MARK={0x8, 0x5, 0x400}, @TCA_CT_ZONE={0x6, 0x4, 0x4}, @TCA_CT_NAT_PORT_MAX={0x6, 0xe, 0x4e24}, @TCA_CT_LABELS_MASK={0x14, 0x8, "097b3d39beb12e12ca7970f0c2b46dae"}]}, {0x19, 0x6, "3b8dd99ff628f0e136ea03ee3bb7e4eb97a588c1fa"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x1}}}}, @m_ct={0x2c, 0x1f, 0x0, 0x0, {{0x7}, {0x4}, {0x4}, {0xc}, {0xc}}}, @m_ctinfo={0x68, 0xf, 0x0, 0x0, {{0xb}, {0x14, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x8}, @TCA_CTINFO_PARMS_DSCP_MASK={0x8, 0x5, 0x9}]}, {0x29, 0x6, "871e4a3093c0e8019f3e85d16b62fbd06858927c4759e03eb68fe380f18d158dfeeec5a54f"}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}, @m_pedit={0xd8, 0x13, 0x0, 0x0, {{0xa}, {0x4}, {0xa9, 0x6, "13095aa19e3ff97ff1475cc7f6d44e64023e0f07f5503ec93c537ec467da66e10c0670c5424185a4211b985fbb71c90e943fd5ba6989123f51adc29f4d098a5853a725f727bd15293ea587519524ef80fd8af80f756cfebcef3980870a5ae562474c9ec51aaff99d80483e5889203fa14a5bdb050b4f8c23a709ea648f0083bafcaefd2dfdc6e9fd21bd1230b100d95fdedd566e96c84f3a440023eb3e68c8f4ce4718278e"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}]}]}}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_route={{0xa}, {0x14, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8, 0x3, 0x60}]}}]}, 0x5cc}, 0x1, 0x0, 0x0, 0x1}, 0x20000810) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 771.266775ms ago: executing program 3 (id=1057): socket$nl_audit(0x10, 0x3, 0x9) open(0x0, 0x40542, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$unix(0x1, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b0001006d616373656300000400038008000500", @ANYRES32=r1], 0x3c}}, 0x0) 745.067498ms ago: executing program 1 (id=1058): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) fcntl$setownex(0xffffffffffffffff, 0xf, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x9, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) syz_genetlink_get_family_id$tipc(&(0x7f00000002c0), 0xffffffffffffffff) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {}, {0x3}, {}, {}, {}, {0x6}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000340)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1}}, @TCA_ACT_BPF_FD={0x8, 0x5, r2}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0) 645.163486ms ago: executing program 2 (id=1059): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000580)=@base={0x19, 0x4, 0x4, 0x20002, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48) 644.092526ms ago: executing program 1 (id=1060): bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0xc, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) accept4$inet6(0xffffffffffffffff, &(0x7f0000000300)={0xa, 0x0, 0x0, @private2}, &(0x7f0000000340)=0x1c, 0x800) syz_emit_ethernet(0x66, &(0x7f00000006c0)={@local, @broadcast, @void, {@ipv6={0x86dd, @udp={0x4, 0x6, "3f176f", 0x30, 0x11, 0xfe, @private0, @local, {[@fragment={0x88, 0x0, 0x9, 0x0, 0x0, 0x3, 0x64}, @routing={0x2b, 0x2, 0x0, 0x5, 0x0, [@empty]}], {0x4e22, 0x4e21, 0x10, 0x0, @gue={{0x2, 0x0, 0x1, 0xc}}}}}}}}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x18) socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0}) sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)={0x54, r1, 0x1, 0x0, 0xfffffffd, {0x3}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}}, {0x14, 0x2, @in={0x2, 0x0, @broadcast}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0) 625.075318ms ago: executing program 0 (id=1061): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x0, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a40000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x90) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x11) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0xf}}}}]}, 0x48}}, 0x40) 596.98652ms ago: executing program 3 (id=1062): r0 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x100000001) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4) connect$inet(r0, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10) close(r0) 481.19864ms ago: executing program 3 (id=1063): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000540)='qdisc_destroy\x00', r0}, 0x18) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast}) close(r1) 447.423063ms ago: executing program 1 (id=1064): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0) creat(&(0x7f0000000140)='./file2\x00', 0x1ad) unlink(&(0x7f0000000180)='./file1\x00') 434.990804ms ago: executing program 2 (id=1065): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a5"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) listxattr(0x0, 0x0, 0x0) 338.101481ms ago: executing program 0 (id=1066): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0x3, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r2}, 0x10) ioperm(0x0, 0x2, 0x2) 322.299823ms ago: executing program 0 (id=1067): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000740)=ANY=[@ANYBLOB="540100001a001307000000000000001cac141400"/64, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="ffffffff0000000000000000000000000000000032000000ac141417000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c"], 0x154}}, 0x0) 308.942334ms ago: executing program 2 (id=1068): bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x8444, &(0x7f0000001840)=ANY=[@ANYBLOB="75746638006d61703d6f983c756661703d6e6f726d616c2c6909000000f2ff00003dda5de4d586f0df206d65656b416d6f64653d3078303030303010303071303030303030302c73657373696f6e3d307830faffffff30303030303030f4e4b4f82c6d61736b3d4d4159574b50be30c8486470722677b93165cfe6f62127553b2017754598752d977369672c7063723d303030303030303030303030303030303030332c64566e745f6d6561737572652c00000000000000006bbf4d6406b59dbc529c00000000000000fada265ab14119997600a2299d2c35a2efc1bf037787a0d801f26d335ef2ba9ac2423a358ccbb776b21e1d3b", @ANYRESHEX=0x0, @ANYBLOB="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"/347, @ANYRESHEX, @ANYRES32, @ANYRES32], 0xfe, 0x677, &(0x7f00000011c0)="$eJzs3c9v2+Ydx/EPZflHPCAbtqEIgjR+mqyAg2WKJDcujOwwjqJsdpIokPRgn4qssQsjcrolGbD40vmyH8D2D+zWSw/7IwbsvPP+gR0HFNttwC4qSIr6SVmO7Thp+34ZiR6RX/L5kg/DJ7TEhwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALKcWrlcsdTwWts7ZjqnFvjNE+ana5vXnbRwJ6+qsTdW/EdLS7qWTrr2/cHst+K/bulG+u6GluKXJR19663vPPhesZAtf0JCZ6GXXeGzF0ePH3Y6e0/PVlvXOstyr8REJiqcYqlNt+WFvte0N13jhb7ZWF8v39uqh6buNdxwN4zcpnECtxD5gVl17pjKxsaacUu7/nZrs2Y33Gzi+z+qlsvr5oPFXvPf+6AUOlteo+G1NpOYeHYcs9g/Qly7aUz3oLO3NivJ/YPOXuU0QdVZQdVytVqpVKuV9fsb998vl4sTE8pjNBExOGjfnMbHZbrAszdwPoW4//+XJTW0pJa2tSOT++OopkC+mlPm92T9/7v33BPrHe7/s17+2mD2dSX9/8303c1p/f+UXIxMskDeHGvK9LP9PNMLHemxHqqjjvb09GLWu3LG5Ray/XdxW3jyz6ZUlDyF8uWpKVubcmV6U4w2tK51lfWhtlRXKKO6PDXkKtSuQkVy1UzaJJArW5F8BTJalaM7MqpoQxtak5Grknbla1stbaomW//rdrv7Okj2+9pIVt1vD79TFlQ5YUP6QUVN34fT+v9ffJou8XL9P75++sfOKWKA167bu/6fbi5v4sqrywgAAAAAAFw0K/ntu5V8dv+2pK7qXsMtKykCAAAAAICvheST/xvxy3xceltW//p/FL8NAAAAAADgK8tK7rGzJC0nX+q3BndC5fwSYELuzQEAAAAAAODNknz+f3NB6iZDq63IeqnrfwAAAAAA8BXwh6Ex9ovZGLvd7GP9gqSwvWj97T+LCuat4/bOD6xDO55jH/ZiJr4BENWvW0WlA/Um4/UuSEreOe4Nqzc+cG8QTCsd2Ff6Yn/WWP9WMJbAwtz4MwWGErh6NJTAerH3Tn/SO2nMO716Hx0VlMxJa1muew235PiNBxXZ9tVC5O5Ev35y8Bsp6G/n/kFnr/TRJ51HSS7H8aTjwziPT0fSKczK5Xky3kJyz0XeFl9RPavyj63mspXUW862f072YWG4otNt/+90K425tZy+Lh9lLSDrt71CpZQ02WDrk9EhrEEWlfEtz2uIKVksJVncTmNur95OX7L80lZY+uGcVC1NtkEwnEV1OIvZ+8L678S+mJFFfCysxVn8PV7RlCzWXi6LiRYBgNdlf9ALJYOYT46xP97vnuUsN7t3/8loLc//0k1vOJyTir3PJtKbEKf1K4rP6Ktp2EI6invxes4ZvdzrV5Y05YxePkfvFtf118EzkHpp9+YU+1n8v9vtPqgk9f55rFf9LF7gs6n1ho3qXLwL7z0//GUyAH7s472P955Uq2vr5ffK5ftVzSeb0Xuh7wEA5Jj9jJ3RiKVBf9bvu9/rX1U/+ve7aWmk3/1u/ysFJX2kT9TRI93NHiGwkl/v8tDXEO5OXrXGsVek8diK7k69qkv60qHYaj92Xtkio/9fGMSuvepmAADgUt2a0Q+P9/951+53s+vu1eu5192jffn4E4KnxVYueU8AAPDN4QZfWMvR760g8NofVjY2Kna05ZrAd35mAq+26RqvFbmBs2W3Nl3TDvzId/yGaQda9GpuaMLtdtsPIlP3A9P2Q28nefK76T36PXSbdivynLDdcO3QNY7fimwnMjUvdEx7+6cNL9xyg2ThsO06Xt1z7MjzWyb0r8hxS8aErjsU6NXcVuTVvbjYMu3Aa9rBrvm539huuqbmhk7gtSM/XWFWl9eq+0EzWW1J3ZMedAgAwDfGsxdHjx92OntPTygcKy1k30c7IXghb4WveRMBAMAYemkAAAAAAAAAAAAAAAAAAAAAAN58p7n/78RCdlNgNmVeOcFSf8qvrp5qzZYGUz7/57kyPEOhMD6lN9Jud/bi/0gLxbyYK3FhQVIn2/3DMccXuhUrpwpWWihe/D68IuUdCa+s8OP90eNwIiaemTtrsd8WxfP/c8grPPl8yqzZR9Ti6D5c0CnuwU0LRUlPF87RBJd7HgJw+b4MAAD//8wQPOU=") r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) 254.022399ms ago: executing program 4 (id=1069): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x0, 0x200000, 0x0, 0x0, 0xffffffff, 0x8003}}}}]}, 0x4c}}, 0x0) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x2) prctl$PR_SET_IO_FLUSHER(0x39, 0x0) syz_open_dev$MSR(0x0, 0x0, 0x0) bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e23}, 0x10) sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23}, 0x10) sendto$inet(r1, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0x2acf, 0x11, 0x0, 0x27) 159.361996ms ago: executing program 0 (id=1070): unshare(0x20040600) pipe(&(0x7f0000000080)={0xffffffffffffffff}) vmsplice(r0, 0x0, 0x0, 0x0) 109.93984ms ago: executing program 3 (id=1071): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000009000000000000000020000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$pppl2tp(0x18, 0x1, 0x1) r3 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r2, &(0x7f00000002c0)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x8, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}}}, 0x32) writev(r2, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1) 14.153538ms ago: executing program 3 (id=1072): socket$nl_audit(0x10, 0x3, 0x9) open(0x0, 0x40542, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$unix(0x1, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'ipvlan0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b0001006d616373656300000400038008000500", @ANYRES32=r1], 0x3c}}, 0x0) 0s ago: executing program 3 (id=1073): r0 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$int_in(r0, 0x5421, &(0x7f0000000100)=0x100000001) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000180)=0x1, 0x4) connect$inet(r0, &(0x7f0000000280)={0x2, 0x0, @dev}, 0x10) close(r0) kernel console output (not intermixed with test programs): ONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 101.429168][ T3883] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 101.437596][ T3883] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 103.181987][ T4388] sched: RT throttling activated [ 103.589925][ T4040] device veth0_vlan entered promiscuous mode [ 103.685946][ T4040] device veth1_vlan entered promiscuous mode [ 103.730701][ T4397] loop3: detected capacity change from 0 to 512 [ 103.744513][ T3883] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 103.840859][ T3883] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 103.856846][ T4397] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 103.874302][ T4397] ext4 filesystem being mounted at /48/wÅü5ÔTÕÔ)­`)YFæ¾nA­½@T<Ÿ3»Ú‚$¢ó×rçcnH³<¿pƒrèñ¹“>ÅwC¾" žð-ùËòöè€Ó8 supports timestamps until 2038-01-19 (0x7fffffff) [ 103.888246][ T3883] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 103.917608][ T4040] device veth0_macvtap entered promiscuous mode [ 103.966654][ T4409] loop2: detected capacity change from 0 to 128 [ 103.985124][ T4040] device veth1_macvtap entered promiscuous mode [ 104.065000][ T4040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.086178][ T4040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.110082][ T4040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.174207][ T4040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.184068][ T4040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.209959][ T4040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.233501][ T4040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.254050][ T4040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.277100][ T4040] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 104.297274][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 104.331868][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 104.376737][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 104.422375][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 104.451026][ T4040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.480388][ T4040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.501457][ T4040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.519513][ T4040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.538948][ T4040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.549814][ T4040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.570011][ T4040] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 104.590828][ T4040] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 104.612752][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 104.616911][ T4040] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 104.672538][ T3946] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 104.701563][ T3946] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 104.737689][ T4040] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.774874][ T4040] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.816902][ T4432] netlink: 60 bytes leftover after parsing attributes in process `syz.1.244'. [ 104.827820][ T4040] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.828099][ T4432] unsupported nlmsg_type 40 [ 104.864502][ T4040] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 104.913324][ T4432] tipc: New replicast peer: 255.255.255.255 [ 104.954936][ T4432] tipc: Enabled bearer , priority 10 [ 105.132521][ T3946] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.194881][ T3946] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.256419][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 105.278701][ T3945] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.400201][ T3945] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.757030][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 106.067551][ T14] tipc: Node number set to 2886997162 [ 106.124701][ T4448] loop4: detected capacity change from 0 to 128 [ 106.248986][ T4457] Zero length message leads to an empty skb [ 106.450774][ T4460] loop2: detected capacity change from 0 to 2048 [ 106.520233][ T4460] EXT4-fs: Ignoring removed nomblk_io_submit option [ 106.574822][ T4460] EXT4-fs (loop2): invalid first ino: 8 [ 107.011265][ T4487] device pim6reg1 entered promiscuous mode [ 107.992243][ T4500] loop1: detected capacity change from 0 to 128 [ 109.619601][ T4527] loop1: detected capacity change from 0 to 8192 [ 110.002911][ T4546] loop1: detected capacity change from 0 to 512 [ 110.047447][ T4546] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 110.087099][ T4546] EXT4-fs (loop1): 1 truncate cleaned up [ 110.092944][ T4546] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 110.241238][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 110.867253][ T4562] netlink: 60 bytes leftover after parsing attributes in process `syz.1.281'. [ 111.789517][ T4512] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.803971][ T4526] tipc: Started in network mode [ 111.809231][ T4526] tipc: Node identity ac1414aa, cluster identity 4711 [ 111.822346][ T4526] tipc: Enabled bearer , priority 10 [ 111.943028][ T4512] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.207529][ T4512] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.218859][ T22] tipc: Node number set to 2886997162 [ 113.232595][ T4587] loop1: detected capacity change from 0 to 512 [ 113.430446][ T4587] EXT4-fs error (device loop1): ext4_get_branch:178: inode #13: block 1024: comm syz.1.287: invalid block [ 113.534843][ T4587] EXT4-fs (loop1): Remounting filesystem read-only [ 113.541452][ T4587] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.287: invalid indirect mapped block 1024 (level 0) [ 113.592721][ T4587] EXT4-fs (loop1): Remounting filesystem read-only [ 113.602671][ T4587] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.287: bg 0: block 35: padding at end of block bitmap is not set [ 113.640858][ T4587] EXT4-fs (loop1): Remounting filesystem read-only [ 113.657903][ T4587] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 113.672975][ T4512] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 113.689910][ T4587] EXT4-fs (loop1): Remounting filesystem read-only [ 113.713399][ T4587] EXT4-fs (loop1): 1 truncate cleaned up [ 113.722982][ T4587] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 113.872237][ T4601] loop2: detected capacity change from 0 to 512 [ 113.885110][ T4512] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 113.963298][ T4601] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 114.062531][ T4512] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.153339][ T4605] ieee802154 phy0 wpan0: encryption failed: -22 [ 114.167309][ T4512] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.200446][ T4512] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.462523][ T4610] netlink: 8 bytes leftover after parsing attributes in process `syz.0.296'. [ 114.487172][ T4608] serio: Serial port ptm0 [ 114.554776][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 114.673575][ T4617] device hsr0 entered promiscuous mode [ 114.714076][ T4617] device hsr0 left promiscuous mode [ 114.738524][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 114.880537][ T26] kauditd_printk_skb: 55 callbacks suppressed [ 114.880554][ T26] audit: type=1326 audit(1729340136.208:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4621 comm="syz.3.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 114.886399][ T4623] syz.3.301[4623] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 114.894205][ T26] audit: type=1326 audit(1729340136.208:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4621 comm="syz.3.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 115.035799][ T4623] syz.3.301[4623] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 115.130395][ T26] audit: type=1326 audit(1729340136.208:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4621 comm="syz.3.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 115.173708][ T26] audit: type=1326 audit(1729340136.208:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4621 comm="syz.3.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 115.218824][ T4635] netlink: 20 bytes leftover after parsing attributes in process `syz.4.306'. [ 115.291301][ T26] audit: type=1326 audit(1729340136.208:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4621 comm="syz.3.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 115.387570][ T26] audit: type=1326 audit(1729340136.218:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4621 comm="syz.3.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 115.472132][ T26] audit: type=1326 audit(1729340136.218:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4621 comm="syz.3.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 115.591368][ T26] audit: type=1326 audit(1729340136.218:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4621 comm="syz.3.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 115.599595][ T4644] netlink: 8 bytes leftover after parsing attributes in process `syz.3.310'. [ 115.680352][ T26] audit: type=1326 audit(1729340136.218:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4621 comm="syz.3.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 115.770973][ T26] audit: type=1326 audit(1729340136.218:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4621 comm="syz.3.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 115.915555][ T4652] loop3: detected capacity change from 0 to 128 [ 116.003555][ T4655] sctp: [Deprecated]: syz.4.316 (pid 4655) Use of struct sctp_assoc_value in delayed_ack socket option. [ 116.003555][ T4655] Use struct sctp_sack_info instead [ 116.409334][ T4670] loop2: detected capacity change from 0 to 512 [ 116.420796][ T4672] syz.4.323[4672] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 116.420901][ T4672] syz.4.323[4672] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 116.851644][ T4670] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 117.206776][ T4670] ext4 filesystem being mounted at /73/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 117.278674][ T4670] EXT4-fs (loop2): unmounting filesystem. [ 117.318808][ T4685] tipc: Enabling of bearer rejected, already enabled [ 117.343978][ T4685] tipc: Disabling bearer [ 117.446129][ T4670] loop2: detected capacity change from 0 to 1024 [ 117.582580][ T4692] netlink: 8 bytes leftover after parsing attributes in process `syz.0.328'. [ 117.591319][ T4694] loop3: detected capacity change from 0 to 128 [ 117.713514][ T4696] netlink: 60 bytes leftover after parsing attributes in process `syz.1.330'. [ 117.756638][ T4696] tipc: Enabling of bearer rejected, already enabled [ 118.074067][ T4708] netlink: 20 bytes leftover after parsing attributes in process `syz.3.336'. [ 119.133019][ T4726] loop1: detected capacity change from 0 to 128 [ 119.139782][ T4717] tipc: Enabled bearer , priority 10 [ 119.161596][ T4729] capability: warning: `syz.2.345' uses 32-bit capabilities (legacy support in use) [ 119.200511][ T4727] loop3: detected capacity change from 0 to 164 [ 119.209772][ T4717] tipc: Disabling bearer [ 119.281713][ T4727] Unable to read rock-ridge attributes [ 119.294178][ T4732] netlink: 60 bytes leftover after parsing attributes in process `syz.0.346'. [ 119.380692][ T4732] tipc: New replicast peer: 255.255.255.255 [ 119.401283][ T4732] tipc: Enabled bearer , priority 10 [ 119.568333][ T4743] loop1: detected capacity change from 0 to 512 [ 119.711262][ T4743] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 119.783387][ T4743] ext4 filesystem being mounted at /75/wÅü5ÔTÕÔ)­`)YFæ¾nA­½@T<Ÿ3»Ú‚$¢ó×rçcnH³<¿pƒrèñ¹“>ÅwC¾" žð-ùËòöè€Ó8 supports timestamps until 2038-01-19 (0x7fffffff) [ 119.885141][ T26] kauditd_printk_skb: 80 callbacks suppressed [ 119.885156][ T26] audit: type=1326 audit(1729340141.218:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4758 comm="syz.3.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 119.975446][ T26] audit: type=1326 audit(1729340141.258:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4758 comm="syz.3.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 119.991768][ T4761] netlink: 4 bytes leftover after parsing attributes in process `syz.2.359'. [ 120.061400][ T26] audit: type=1326 audit(1729340141.258:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4758 comm="syz.3.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 120.066103][ T4761] device bridge_slave_1 left promiscuous mode [ 120.128824][ T26] audit: type=1326 audit(1729340141.258:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4758 comm="syz.3.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 120.156716][ T4761] bridge0: port 2(bridge_slave_1) entered disabled state [ 120.194860][ T4761] device bridge_slave_0 left promiscuous mode [ 120.211916][ T4761] bridge0: port 1(bridge_slave_0) entered disabled state [ 120.328228][ T4763] tipc: Enabled bearer , priority 10 [ 120.336338][ T4768] tipc: Disabling bearer [ 120.459237][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 120.813955][ T4798] syz.2.375[4798] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 120.814063][ T4798] syz.2.375[4798] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 121.042128][ T4802] loop1: detected capacity change from 0 to 512 [ 121.733590][ T26] audit: type=1326 audit(1729340143.058:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4809 comm="syz.2.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 121.785235][ T26] audit: type=1326 audit(1729340143.098:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4809 comm="syz.2.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 121.798325][ T4812] tipc: Enabling of bearer rejected, already enabled [ 121.821009][ T4802] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 121.832917][ T26] audit: type=1326 audit(1729340143.098:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4809 comm="syz.2.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 121.855927][ T4802] ext4 filesystem being mounted at /78/wÅü5ÔTÕÔ)­`)YFæ¾nA­½@T<Ÿ3»Ú‚$¢ó×rçcnH³<¿pƒrèñ¹“>ÅwC¾" žð-ùËòöè€Ó8 supports timestamps until 2038-01-19 (0x7fffffff) [ 121.884462][ T4815] tipc: Disabling bearer [ 121.897845][ T26] audit: type=1326 audit(1729340143.208:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4809 comm="syz.2.379" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 121.930811][ T4814] netlink: 8 bytes leftover after parsing attributes in process `syz.4.383'. [ 122.161154][ T26] audit: type=1326 audit(1729340143.488:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4823 comm="syz.3.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 122.166247][ T4822] netlink: 4 bytes leftover after parsing attributes in process `syz.0.386'. [ 122.213611][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 122.242745][ T26] audit: type=1326 audit(1729340143.488:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4823 comm="syz.3.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 122.282220][ T4827] loop2: detected capacity change from 0 to 512 [ 122.367309][ T4827] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 122.378681][ T4827] ext4 filesystem being mounted at /86/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 122.477673][ T4827] Process accounting resumed [ 122.533898][ T4827] EXT4-fs (loop2): re-mounted. Quota mode: writeback. [ 122.569738][ T4822] device hsr_slave_1 left promiscuous mode [ 122.694318][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 122.763698][ T4824] loop3: detected capacity change from 0 to 128 [ 123.730627][ T4854] netlink: 8 bytes leftover after parsing attributes in process `syz.2.395'. [ 123.963355][ T4859] loop2: detected capacity change from 0 to 512 [ 124.073372][ T4859] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 124.134423][ T4859] ext4 filesystem being mounted at /89/wÅü5ÔTÕÔ)­`)YFæ¾nA­½@T<Ÿ3»Ú‚$¢ó×rçcnH³<¿pƒrèñ¹“>ÅwC¾" žð-ùËòöè€Ó8 supports timestamps until 2038-01-19 (0x7fffffff) [ 124.838761][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 124.959626][ T4904] binfmt_misc: register: failed to install interpreter file ./file0/../file0 [ 125.307990][ T26] kauditd_printk_skb: 99 callbacks suppressed [ 125.308006][ T26] audit: type=1326 audit(1729340146.638:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4914 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 125.684752][ T26] audit: type=1326 audit(1729340146.678:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4914 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 126.052560][ T26] audit: type=1326 audit(1729340146.678:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4914 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 126.134466][ T26] audit: type=1326 audit(1729340146.678:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4914 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 126.263470][ T26] audit: type=1326 audit(1729340146.678:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4914 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 126.333117][ T4931] tipc: Enabling of bearer rejected, already enabled [ 126.357127][ T26] audit: type=1326 audit(1729340146.678:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4914 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 126.414631][ T26] audit: type=1326 audit(1729340147.178:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4914 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 126.461825][ T4937] loop3: detected capacity change from 0 to 512 [ 126.496902][ T4937] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 126.566915][ T26] audit: type=1326 audit(1729340147.188:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4914 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 126.631765][ T26] audit: type=1326 audit(1729340147.518:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4914 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 126.635688][ T4937] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 126.745964][ T26] audit: type=1326 audit(1729340147.518:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4914 comm="syz.0.423" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 126.754813][ T4950] netlink: 60 bytes leftover after parsing attributes in process `syz.0.435'. [ 126.782969][ T4937] ext4 filesystem being mounted at /94/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 126.850279][ T4937] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 126.896403][ T4955] loop4: detected capacity change from 0 to 128 [ 126.941273][ T4950] tipc: New replicast peer: 255.255.255.255 [ 126.954998][ T4950] tipc: Enabled bearer , priority 10 [ 127.119950][ T4963] usb usb8: usbfs: process 4963 (syz.1.440) did not claim interface 0 before use [ 127.282862][ T4966] tipc: Enabling of bearer rejected, already enabled [ 127.541974][ T4973] block device autoloading is deprecated and will be removed. [ 127.558553][ T4973] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2 [ 127.766123][ T4982] loop2: detected capacity change from 0 to 128 [ 127.778544][ T4980] loop1: detected capacity change from 0 to 512 [ 127.785915][ T4980] EXT4-fs: Ignoring removed orlov option [ 127.868964][ T4980] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 127.879550][ T4980] ext4 filesystem being mounted at /98/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 128.008963][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 129.476972][ T4971] netlink: 'syz.4.445': attribute type 10 has an invalid length. [ 129.487129][ T4971] netlink: 40 bytes leftover after parsing attributes in process `syz.4.445'. [ 129.498627][ T4971] device ipvlan1 entered promiscuous mode [ 129.506861][ T4971] bridge0: port 3(ipvlan1) entered blocking state [ 129.513393][ T4971] bridge0: port 3(ipvlan1) entered disabled state [ 129.521416][ T4971] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check. [ 129.554218][ T4997] tipc: Enabling of bearer rejected, already enabled [ 129.587560][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 129.802199][ T5007] loop3: detected capacity change from 0 to 512 [ 129.942621][ T5007] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 130.022756][ T5007] ext4 filesystem being mounted at /95/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 130.071075][ T5018] loop1: detected capacity change from 0 to 512 [ 130.109082][ T5018] EXT4-fs: Ignoring removed orlov option [ 130.193634][ T5018] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 130.213320][ T5024] devtmpfs: Too few inodes for current use [ 130.230018][ T3660] udevd[3660]: symlink '../../loop1' '/dev/disk/by-label/syzkaller.tmp-b7:1' failed: Read-only file system [ 130.267852][ T5018] ext4 filesystem being mounted at /102/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 130.489011][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 130.623595][ T5028] device pim6reg1 entered promiscuous mode [ 130.825166][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 130.870418][ T5038] loop4: detected capacity change from 0 to 128 [ 130.899943][ T5040] tipc: Enabling of bearer rejected, already enabled [ 130.939896][ T26] kauditd_printk_skb: 33 callbacks suppressed [ 130.939911][ T26] audit: type=1804 audit(1729340152.268:509): pid=5038 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.470" name="/newroot/100/file2/file0" dev="loop4" ino=1048615 res=1 errno=0 [ 130.979579][ T5040] tipc: Disabling bearer [ 132.252503][ T5070] netlink: 324 bytes leftover after parsing attributes in process `syz.2.479'. [ 132.366246][ T5076] loop3: detected capacity change from 0 to 128 [ 132.415913][ T5076] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 132.475186][ T5076] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 132.545976][ T5080] loop4: detected capacity change from 0 to 128 [ 132.589502][ T26] audit: type=1804 audit(1729340153.918:510): pid=5080 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.485" name="/newroot/104/file2/file0" dev="loop4" ino=1048617 res=1 errno=0 [ 132.637855][ T1244] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.987274][ T5094] loop1: detected capacity change from 0 to 512 [ 133.018144][ T5094] EXT4-fs: Ignoring removed orlov option [ 133.179771][ T5094] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 133.250741][ T5094] ext4 filesystem being mounted at /107/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 133.733280][ T26] audit: type=1400 audit(1729340155.058:511): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=5098 comm="syz.3.495" [ 134.013030][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 134.155281][ T5114] netlink: 132 bytes leftover after parsing attributes in process `syz.4.497'. [ 134.209786][ T5114] netlink: 'syz.4.497': attribute type 10 has an invalid length. [ 134.212306][ T5118] loop1: detected capacity change from 0 to 128 [ 134.259350][ T5114] bond0: (slave dummy0): no link monitoring support [ 134.279160][ T26] audit: type=1804 audit(1729340155.608:512): pid=5118 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.498" name="/newroot/108/file2/file0" dev="loop1" ino=1048618 res=1 errno=0 [ 134.313122][ T5114] bond0: (slave dummy0): MII and ETHTOOL support not available for slave, and arp_interval/arp_ip_target module parameters not specified, thus bonding will not detect link failures! see bonding.txt for details [ 134.350761][ T5120] loop0: detected capacity change from 0 to 512 [ 134.376242][ T5114] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 134.451832][ T5120] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 134.478366][ T5122] netlink: 60 bytes leftover after parsing attributes in process `syz.3.501'. [ 134.562912][ T5120] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 134.582601][ T5120] EXT4-fs (loop0): 1 truncate cleaned up [ 134.589521][ T5120] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 134.643106][ T4040] EXT4-fs (loop0): unmounting filesystem. [ 134.901402][ T26] audit: type=1326 audit(1729340156.228:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5138 comm="syz.4.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 134.977560][ T26] audit: type=1326 audit(1729340156.258:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5138 comm="syz.4.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 135.051210][ T26] audit: type=1326 audit(1729340156.268:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5138 comm="syz.4.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 135.101271][ T26] audit: type=1326 audit(1729340156.268:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5138 comm="syz.4.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 135.136780][ T5140] loop1: detected capacity change from 0 to 164 [ 135.164188][ T26] audit: type=1326 audit(1729340156.268:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5138 comm="syz.4.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 135.231846][ T5140] syz.1.506: attempt to access beyond end of device [ 135.231846][ T5140] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 135.289355][ T26] audit: type=1326 audit(1729340156.268:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5138 comm="syz.4.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 135.291533][ T5147] tipc: Enabled bearer , priority 10 [ 135.343069][ T5140] syz.1.506: attempt to access beyond end of device [ 135.343069][ T5140] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 135.376371][ T5147] tipc: Disabling bearer [ 136.188237][ T5176] loop3: detected capacity change from 0 to 512 [ 136.213354][ T5176] EXT4-fs: Ignoring removed orlov option [ 136.332269][ T5176] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 136.364537][ T5176] ext4 filesystem being mounted at /108/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 138.899418][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 139.070550][ T5196] loop4: detected capacity change from 0 to 128 [ 139.212284][ T5194] netlink: 8 bytes leftover after parsing attributes in process `syz.1.529'. [ 139.328567][ T26] kauditd_printk_skb: 71 callbacks suppressed [ 139.328583][ T26] audit: type=1326 audit(1729340160.658:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5201 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 139.488860][ T26] audit: type=1326 audit(1729340160.708:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5201 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 139.579098][ T26] audit: type=1326 audit(1729340160.708:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5201 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 139.710756][ T26] audit: type=1326 audit(1729340160.708:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5201 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 139.751380][ T5212] loop2: detected capacity change from 0 to 512 [ 139.826773][ T26] audit: type=1326 audit(1729340160.728:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5201 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 139.827317][ T5212] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 139.879310][ T5215] loop1: detected capacity change from 0 to 512 [ 139.931890][ T26] audit: type=1326 audit(1729340160.728:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5201 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 139.974252][ T26] audit: type=1326 audit(1729340160.728:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5201 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 140.033021][ T5215] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 140.058449][ T5212] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 140.100876][ T5215] ext4 filesystem being mounted at /114/wÅü5ÔTÕÔ)­`)YFæ¾nA­½@T<Ÿ3»Ú‚$¢ó×rçcnH³<¿pƒrèñ¹“>ÅwC¾" žð-ùËòöè€Ó8 supports timestamps until 2038-01-19 (0x7fffffff) [ 140.156343][ T5212] EXT4-fs (loop2): 1 truncate cleaned up [ 140.252487][ T5212] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 140.462042][ T26] audit: type=1326 audit(1729340160.728:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5201 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 140.870113][ T26] audit: type=1326 audit(1729340160.778:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5201 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 140.911512][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 141.038460][ T26] audit: type=1326 audit(1729340160.778:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5201 comm="syz.2.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 141.084921][ T5236] netlink: 8 bytes leftover after parsing attributes in process `syz.0.544'. [ 141.111522][ T5239] tipc: Enabling of bearer rejected, already enabled [ 141.155130][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 141.425734][ T5250] loop2: detected capacity change from 0 to 128 [ 141.797526][ T5268] loop1: detected capacity change from 0 to 512 [ 141.881256][ T5268] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 141.903692][ T5268] ext4 filesystem being mounted at /118/wÅü5ÔTÕÔ)­`)YFæ¾nA­½@T<Ÿ3»Ú‚$¢ó×rçcnH³<¿pƒrèñ¹“>ÅwC¾" žð-ùËòöè€Ó8 supports timestamps until 2038-01-19 (0x7fffffff) [ 141.980223][ T5279] loop0: detected capacity change from 0 to 512 [ 141.988112][ T5279] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 142.006537][ T5277] can0: slcan on ttyS3. [ 142.024009][ T5279] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 142.064728][ T5279] EXT4-fs (loop0): 1 truncate cleaned up [ 142.070436][ T5279] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 142.095766][ T5277] can0 (unregistered): slcan off ttyS3. [ 142.101992][ T5277] Falling back ldisc for ttyS3. [ 142.150256][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 142.777872][ T5302] loop4: detected capacity change from 0 to 128 [ 143.576436][ T4040] EXT4-fs (loop0): unmounting filesystem. [ 143.623755][ T5307] device pim6reg1 entered promiscuous mode [ 143.933836][ T5318] netlink: 8 bytes leftover after parsing attributes in process `syz.0.571'. [ 144.008488][ T5320] syz.2.572[5320] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 144.008594][ T5320] syz.2.572[5320] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 144.063518][ T5324] loop3: detected capacity change from 0 to 128 [ 144.330859][ T5335] loop3: detected capacity change from 0 to 128 [ 144.353307][ T26] kauditd_printk_skb: 79 callbacks suppressed [ 144.353323][ T26] audit: type=1804 audit(1729340165.678:679): pid=5335 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.579" name="/newroot/115/file2/file0" dev="loop3" ino=1048621 res=1 errno=0 [ 144.525112][ T26] audit: type=1326 audit(1729340165.738:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5327 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 145.202847][ T26] audit: type=1326 audit(1729340165.738:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5327 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 145.328479][ T26] audit: type=1326 audit(1729340165.738:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5327 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 145.358983][ T26] audit: type=1326 audit(1729340165.738:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5327 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 145.386688][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 145.393185][ T26] audit: type=1326 audit(1729340165.738:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5327 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 145.416340][ T26] audit: type=1326 audit(1729340165.748:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5327 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 145.454219][ T26] audit: type=1326 audit(1729340165.748:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5327 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 145.594166][ T26] audit: type=1326 audit(1729340165.748:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5327 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 146.364202][ T26] audit: type=1326 audit(1729340165.748:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5327 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae3af7dff9 code=0x7ffc0000 [ 146.606122][ T5359] netlink: 8 bytes leftover after parsing attributes in process `syz.4.586'. [ 146.796018][ T5365] loop3: detected capacity change from 0 to 128 [ 146.836143][ T5367] loop1: detected capacity change from 0 to 512 [ 146.846620][ T5368] loop4: detected capacity change from 0 to 128 [ 146.912615][ T5367] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec01c, mo2=0002] [ 146.936032][ T5367] System zones: 0-2, 18-18, 34-34 [ 146.972716][ T5367] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.589: bg 0: block 248: padding at end of block bitmap is not set [ 147.114649][ T5367] EXT4-fs error (device loop1): ext4_acquire_dquot:6801: comm syz.1.589: Failed to acquire dquot type 1 [ 147.163128][ T5379] loop2: detected capacity change from 0 to 8192 [ 147.183611][ T5367] EXT4-fs (loop1): 1 truncate cleaned up [ 147.254885][ T5367] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 147.259412][ T5379] syz.2.596: attempt to access beyond end of device [ 147.259412][ T5379] loop2: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 147.263868][ T5367] ext4 filesystem being mounted at /120/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 147.359542][ T5379] Buffer I/O error on dev loop2, logical block 57847, async page read [ 147.420131][ T5379] syz.2.596: attempt to access beyond end of device [ 147.420131][ T5379] loop2: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 147.499717][ T5379] Buffer I/O error on dev loop2, logical block 57847, async page read [ 148.228208][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 148.530189][ T5400] netlink: 8 bytes leftover after parsing attributes in process `syz.3.603'. [ 148.619571][ T5406] syz.4.605 uses obsolete (PF_INET,SOCK_PACKET) [ 148.762535][ T5411] loop3: detected capacity change from 0 to 128 [ 148.765416][ T5412] loop1: detected capacity change from 0 to 128 [ 148.988192][ T5416] netlink: 664 bytes leftover after parsing attributes in process `syz.4.610'. [ 149.163841][ T5422] loop3: detected capacity change from 0 to 512 [ 149.183999][ T5422] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 149.296378][ T5422] EXT4-fs (loop3): 1 truncate cleaned up [ 149.335819][ T5422] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 149.475492][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 149.616466][ T5440] loop2: detected capacity change from 0 to 128 [ 150.306136][ T26] kauditd_printk_skb: 67 callbacks suppressed [ 150.306152][ T26] audit: type=1804 audit(1729340171.638:754): pid=5447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.622" name="/newroot/136/file2/file0" dev="loop2" ino=1048627 res=1 errno=0 [ 150.618227][ T5451] loop4: detected capacity change from 0 to 128 [ 150.683846][ T26] audit: type=1804 audit(1729340172.008:755): pid=5451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.623" name="/newroot/138/file2/file0" dev="loop4" ino=1048628 res=1 errno=0 [ 151.036196][ T5464] loop0: detected capacity change from 0 to 1024 [ 151.107769][ T5469] loop2: detected capacity change from 0 to 128 [ 151.128890][ T5464] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 151.181398][ T26] audit: type=1326 audit(1729340172.508:756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5463 comm="syz.0.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 151.260859][ T5469] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 151.262320][ T26] audit: type=1326 audit(1729340172.548:757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5463 comm="syz.0.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 151.292912][ T26] audit: type=1326 audit(1729340172.548:758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5463 comm="syz.0.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 151.331767][ T5469] ext4 filesystem being mounted at /138/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 151.360464][ T26] audit: type=1326 audit(1729340172.548:759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5463 comm="syz.0.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 151.431217][ T26] audit: type=1326 audit(1729340172.548:760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5463 comm="syz.0.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 151.479801][ T26] audit: type=1326 audit(1729340172.578:761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5463 comm="syz.0.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 151.579720][ T26] audit: type=1326 audit(1729340172.578:762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5463 comm="syz.0.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 151.631927][ T26] audit: type=1326 audit(1729340172.578:763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5463 comm="syz.0.630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 151.710928][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 151.783221][ T4040] EXT4-fs (loop0): unmounting filesystem. [ 152.759096][ T5494] loop4: detected capacity change from 0 to 1024 [ 152.804755][ T5494] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 152.822872][ T5496] netlink: 'syz.1.639': attribute type 1 has an invalid length. [ 152.832480][ T5499] loop0: detected capacity change from 0 to 128 [ 152.888988][ T5494] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=f014c01c, mo2=0002] [ 152.915408][ T5494] System zones: 0-1, 3-36 [ 152.980484][ T5494] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 153.095070][ T5494] loop4: detected capacity change from 1024 to 11 [ 153.103665][ T5494] EXT4-fs error (device loop4): ext4_get_max_inline_size:116: inode #18: comm syz.4.638: can't get inode location 18 [ 153.258141][ T5513] loop3: detected capacity change from 0 to 128 [ 153.290243][ T5515] loop0: detected capacity change from 0 to 512 [ 153.312630][ T3656] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5885: Out of memory [ 153.331665][ T3656] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #18: comm syz-executor: mark_inode_dirty error [ 153.382157][ T5515] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.647: inode #1: comm syz.0.647: iget: illegal inode # [ 153.387056][ T3656] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5885: Out of memory [ 153.416141][ T3656] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #2: comm syz-executor: mark_inode_dirty error [ 153.424214][ T5515] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.647: error while reading EA inode 1 err=-117 [ 153.431309][ T3656] EXT4-fs (loop4): unmounting filesystem. [ 153.467493][ T5515] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.647: inode #1: comm syz.0.647: iget: illegal inode # [ 153.518592][ T5515] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.647: error while reading EA inode 1 err=-117 [ 153.542483][ T5515] EXT4-fs (loop0): 1 orphan inode deleted [ 153.548439][ T5515] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 153.562833][ T3946] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.593042][ T5515] process 'syz.0.647' launched './file1' with NULL argv: empty string added [ 153.789813][ T4040] EXT4-fs (loop0): unmounting filesystem. [ 154.353395][ T3946] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.582351][ T3946] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.761594][ T3946] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.916417][ T3653] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 154.918381][ T3653] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 154.919499][ T3653] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 154.921061][ T3653] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 154.921613][ T3653] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 154.921934][ T3653] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 155.141711][ T5541] netlink: 'syz.1.659': attribute type 2 has an invalid length. [ 155.185812][ T3946] tipc: Left network mode [ 155.543849][ T5550] loop0: detected capacity change from 0 to 512 [ 155.562472][ T5550] EXT4-fs: Ignoring removed orlov option [ 155.589452][ T5553] loop2: detected capacity change from 0 to 128 [ 155.621397][ T5550] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 155.621514][ T5550] ext4 filesystem being mounted at /86/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 155.665695][ T26] kauditd_printk_skb: 67 callbacks suppressed [ 155.665712][ T26] audit: type=1804 audit(1729340176.998:831): pid=5553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.663" name="/newroot/141/file2/file0" dev="loop2" ino=1048631 res=1 errno=0 [ 155.775304][ T5544] loop1: detected capacity change from 0 to 8192 [ 155.823379][ T5544] FAT-fs (loop1): Unrecognized mount option "kfree" or missing value [ 155.905438][ T4040] EXT4-fs (loop0): unmounting filesystem. [ 156.048482][ T5564] loop3: detected capacity change from 0 to 128 [ 156.100672][ T26] audit: type=1804 audit(1729340177.428:832): pid=5564 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.665" name="/newroot/134/file2/file0" dev="loop3" ino=1048632 res=1 errno=0 [ 156.141134][ T5533] chnl_net:caif_netlink_parms(): no params data found [ 156.954855][ T48] Bluetooth: hci4: command tx timeout [ 157.071551][ T5579] loop2: detected capacity change from 0 to 512 [ 157.164804][ T5579] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 157.249433][ T5533] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.257798][ T5579] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 157.274943][ T5533] bridge0: port 1(bridge_slave_0) entered disabled state [ 157.315488][ T26] audit: type=1326 audit(1729340178.648:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5583 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 157.339591][ T5579] ext4 filesystem being mounted at /143/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.356154][ T5533] device bridge_slave_0 entered promiscuous mode [ 157.394267][ T26] audit: type=1326 audit(1729340178.678:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5583 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 157.463807][ T5579] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 157.551387][ T26] audit: type=1326 audit(1729340178.678:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5583 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 157.623495][ T26] audit: type=1326 audit(1729340178.678:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5583 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 157.646620][ T26] audit: type=1326 audit(1729340178.678:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5583 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 157.670795][ T26] audit: type=1326 audit(1729340178.678:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5583 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 157.672060][ T5533] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.722807][ T26] audit: type=1326 audit(1729340178.748:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5583 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 158.331661][ T26] audit: type=1326 audit(1729340178.748:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5583 comm="syz.0.669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f647397dff9 code=0x7ffc0000 [ 158.414831][ T5533] bridge0: port 2(bridge_slave_1) entered disabled state [ 158.423379][ T5533] device bridge_slave_1 entered promiscuous mode [ 158.791963][ T5533] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 159.038600][ T3653] Bluetooth: hci4: command tx timeout [ 160.686004][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 160.743477][ T5533] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 160.897238][ T5533] team0: Port device team_slave_0 added [ 161.010381][ T5533] team0: Port device team_slave_1 added [ 161.114412][ T3653] Bluetooth: hci4: command tx timeout [ 161.291340][ T5626] loop1: detected capacity change from 0 to 128 [ 161.308327][ T3946] device hsr_slave_0 left promiscuous mode [ 161.355480][ T3946] device hsr_slave_1 left promiscuous mode [ 161.367984][ T3946] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 161.381997][ T26] kauditd_printk_skb: 31 callbacks suppressed [ 161.382012][ T26] audit: type=1804 audit(1729340182.708:872): pid=5626 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.677" name="/newroot/137/file2/file0" dev="loop1" ino=1048646 res=1 errno=0 [ 161.402082][ T3946] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 161.427248][ T3946] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 161.441583][ T3946] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 161.463198][ T3946] device bridge_slave_1 left promiscuous mode [ 161.471717][ T3946] bridge0: port 2(bridge_slave_1) entered disabled state [ 161.495094][ T3946] device bridge_slave_0 left promiscuous mode [ 161.505095][ T3946] bridge0: port 1(bridge_slave_0) entered disabled state [ 161.562553][ T3946] device veth1_macvtap left promiscuous mode [ 161.574242][ T3946] device veth0_macvtap left promiscuous mode [ 161.625029][ T3946] device veth1_vlan left promiscuous mode [ 161.644795][ T3946] device veth0_vlan left promiscuous mode [ 161.951975][ T5638] loop3: detected capacity change from 0 to 512 [ 162.070671][ T5638] EXT4-fs: Ignoring removed orlov option [ 162.500313][ T5638] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 162.600861][ T5638] ext4 filesystem being mounted at /140/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 162.789832][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 163.204301][ T3653] Bluetooth: hci4: command tx timeout [ 163.378571][ T3946] team0 (unregistering): Port device team_slave_1 removed [ 163.418747][ T3946] team0 (unregistering): Port device team_slave_0 removed [ 163.458128][ T3946] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 163.498930][ T3946] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 163.691753][ T3946] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 163.912065][ T3946] bond0 (unregistering): Released all slaves [ 163.986710][ T5533] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 163.993788][ T5533] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 164.023377][ T5533] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 164.046954][ T5661] tipc: Started in network mode [ 164.051893][ T5661] tipc: Node identity ac14140f, cluster identity 4711 [ 164.073694][ T5661] tipc: New replicast peer: 255.255.255.255 [ 164.081075][ T5661] tipc: Enabled bearer , priority 10 [ 164.106667][ T5533] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 164.127203][ T5533] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 164.181061][ T5533] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 164.237658][ T5663] loop3: detected capacity change from 0 to 128 [ 164.319575][ T26] audit: type=1804 audit(1729340185.648:873): pid=5663 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.688" name="/newroot/143/file2/file0" dev="loop3" ino=1048647 res=1 errno=0 [ 164.383418][ T5669] loop1: detected capacity change from 0 to 128 [ 164.409228][ T5533] device hsr_slave_0 entered promiscuous mode [ 164.427449][ T26] audit: type=1804 audit(1729340185.758:874): pid=5669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.689" name="/newroot/142/file2/file0" dev="loop1" ino=1048648 res=1 errno=0 [ 164.492381][ T5533] device hsr_slave_1 entered promiscuous mode [ 164.499566][ T5533] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 164.523899][ T5533] Cannot create hsr debugfs directory [ 164.734668][ T5674] loop2: detected capacity change from 0 to 2048 [ 166.677222][ T3735] tipc: Node number set to 2886997007 [ 166.925111][ T5674] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 167.060803][ T5674] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 167.127702][ T5674] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 33 with error 28 [ 167.181388][ T5674] EXT4-fs (loop2): This should not happen!! Data will be lost [ 167.181388][ T5674] [ 167.224215][ T5674] EXT4-fs (loop2): Total free blocks count 0 [ 167.234582][ T5674] EXT4-fs (loop2): Free/Dirty block details [ 167.274343][ T5674] EXT4-fs (loop2): free_blocks=2415919104 [ 167.280245][ T5674] EXT4-fs (loop2): dirty_blocks=64 [ 167.309883][ T5674] EXT4-fs (loop2): Block reservation details [ 167.323059][ T5674] EXT4-fs (loop2): i_reserved_data_blocks=4 [ 167.483282][ T5702] loop1: detected capacity change from 0 to 1024 [ 167.527505][ T46] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 167.554953][ T5702] EXT4-fs: Ignoring removed orlov option [ 167.580905][ T5702] EXT4-fs: Ignoring removed nomblk_io_submit option [ 167.698280][ T5702] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 167.953084][ T48] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 167.963718][ T48] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 167.973139][ T48] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 167.983951][ T48] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 167.997180][ T48] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 168.015513][ T48] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 168.133218][ T5719] loop3: detected capacity change from 0 to 128 [ 168.213527][ T26] audit: type=1804 audit(1729340189.538:875): pid=5719 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.700" name="/newroot/147/file2/file0" dev="loop3" ino=1048649 res=1 errno=0 [ 168.511319][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 168.676135][ T5533] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 168.713781][ T5533] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 168.789099][ T5533] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 168.861381][ T5533] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 168.988630][ T5712] chnl_net:caif_netlink_parms(): no params data found [ 169.097154][ T5744] loop3: detected capacity change from 0 to 512 [ 169.191225][ T5744] EXT4-fs: Ignoring removed orlov option [ 169.240829][ T5747] netlink: 44 bytes leftover after parsing attributes in process `syz.2.708'. [ 169.899698][ T5744] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 169.926961][ T5744] ext4 filesystem being mounted at /150/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 169.954827][ T5533] 8021q: adding VLAN 0 to HW filter on device bond0 [ 170.064334][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 170.072241][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 170.098894][ T48] Bluetooth: hci5: command tx timeout [ 170.136051][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 170.204550][ T5533] 8021q: adding VLAN 0 to HW filter on device team0 [ 170.207828][ T5760] loop1: detected capacity change from 0 to 1024 [ 170.227851][ T5760] EXT4-fs: Ignoring removed nobh option [ 170.233625][ T5761] loop2: detected capacity change from 0 to 512 [ 170.263116][ T5760] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 170.304933][ T3946] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.318208][ T5761] EXT4-fs (loop2): can't mount with data=, fs mounted w/o journal [ 170.332845][ T5712] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.348332][ T5712] bridge0: port 1(bridge_slave_0) entered disabled state [ 170.359042][ T5760] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 170.372407][ T5712] device bridge_slave_0 entered promiscuous mode [ 170.406928][ T26] audit: type=1800 audit(1729340191.738:876): pid=5760 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.711" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 170.434019][ T5712] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.454753][ T5712] bridge0: port 2(bridge_slave_1) entered disabled state [ 170.484851][ T5712] device bridge_slave_1 entered promiscuous mode [ 170.504993][ T2475] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 170.530816][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 170.540576][ T2475] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 170.585238][ T2475] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.592380][ T2475] bridge0: port 1(bridge_slave_0) entered forwarding state [ 170.645378][ T2475] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 170.684612][ T2475] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 170.703352][ T2475] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.710575][ T2475] bridge0: port 2(bridge_slave_1) entered forwarding state [ 170.753783][ T3946] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 170.819691][ T5774] netlink: 28 bytes leftover after parsing attributes in process `syz.2.715'. [ 170.839683][ T2475] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 170.887845][ T2475] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 170.989016][ T3946] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 171.055907][ T5712] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 171.079925][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 171.101494][ T5712] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 171.361292][ T3946] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.080727][ T5799] loop3: detected capacity change from 0 to 512 [ 172.111470][ T5799] EXT4-fs: Ignoring removed orlov option [ 172.122539][ T5712] team0: Port device team_slave_0 added [ 172.231047][ T48] Bluetooth: hci5: command tx timeout [ 172.262099][ T5799] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 172.276924][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 172.288780][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 172.297315][ T5799] ext4 filesystem being mounted at /155/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 172.297792][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 172.318585][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 172.328447][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 172.352063][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 172.361171][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 172.388878][ T5712] team0: Port device team_slave_1 added [ 172.430033][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 172.441924][ T5533] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 172.472197][ T5533] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 172.484427][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 172.493890][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 172.575724][ T5712] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 172.582718][ T5712] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 172.645940][ T5814] syz.3.724[5814] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 172.646055][ T5814] syz.3.724[5814] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 172.661748][ T5712] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 172.690322][ T5712] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 172.697638][ T5712] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 172.726998][ T5712] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 172.896810][ T5712] device hsr_slave_0 entered promiscuous mode [ 172.911729][ T5712] device hsr_slave_1 entered promiscuous mode [ 172.922228][ T5712] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 172.984404][ T5712] Cannot create hsr debugfs directory [ 173.098167][ T3946] tipc: Left network mode [ 173.102716][ T5829] netlink: 28 bytes leftover after parsing attributes in process `syz.1.727'. [ 173.172383][ T26] audit: type=1326 audit(1729340194.498:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5827 comm="syz.2.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 173.229559][ T26] audit: type=1326 audit(1729340194.498:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5827 comm="syz.2.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 173.337414][ T26] audit: type=1326 audit(1729340194.528:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5827 comm="syz.2.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 173.396671][ T5840] 9pnet_fd: Insufficient options for proto=fd [ 173.423808][ T26] audit: type=1326 audit(1729340194.528:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5827 comm="syz.2.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 173.506026][ T26] audit: type=1326 audit(1729340194.528:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5827 comm="syz.2.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 173.585319][ T26] audit: type=1326 audit(1729340194.528:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5827 comm="syz.2.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 173.693680][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 173.708776][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 173.792670][ T26] audit: type=1326 audit(1729340194.658:883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5827 comm="syz.2.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 173.840784][ T26] audit: type=1326 audit(1729340194.658:884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5827 comm="syz.2.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 173.866711][ T26] audit: type=1326 audit(1729340194.708:885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5827 comm="syz.2.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 174.091626][ T26] audit: type=1326 audit(1729340194.708:886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5827 comm="syz.2.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 174.315242][ T48] Bluetooth: hci5: command tx timeout [ 174.365329][ T26] audit: type=1326 audit(1729340194.708:887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5827 comm="syz.2.728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 174.679237][ T5533] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 174.769778][ T5860] loop1: detected capacity change from 0 to 128 [ 174.959179][ T5866] loop3: detected capacity change from 0 to 2048 [ 175.074722][ T5866] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 175.241744][ T5863] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 175.434956][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 175.449428][ T5880] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.627027][ T5880] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.648440][ T5885] netlink: 28 bytes leftover after parsing attributes in process `syz.3.738'. [ 175.862444][ T5880] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.158272][ T5880] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.394606][ T48] Bluetooth: hci5: command tx timeout [ 176.859547][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 176.889433][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 177.192510][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 177.211288][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 177.262812][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 177.288775][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 177.313365][ T5880] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 177.339443][ T5533] device veth0_vlan entered promiscuous mode [ 177.481499][ T5880] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 177.507677][ T5712] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 177.530129][ T5712] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 177.566780][ T5880] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 177.592738][ T3946] device hsr_slave_0 left promiscuous mode [ 177.613376][ T3946] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 177.625527][ T5929] syz.2.747[5929] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.625631][ T5929] syz.2.747[5929] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.638014][ T3946] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 177.647517][ T5929] netlink: 16 bytes leftover after parsing attributes in process `syz.2.747'. [ 177.667337][ T3946] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 177.681635][ T3946] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 177.695054][ T3946] device bridge_slave_1 left promiscuous mode [ 177.703686][ T3946] bridge0: port 2(bridge_slave_1) entered disabled state [ 177.713099][ T3946] device bridge_slave_0 left promiscuous mode [ 177.721879][ T3946] bridge0: port 1(bridge_slave_0) entered disabled state [ 177.790474][ T3946] device veth1_macvtap left promiscuous mode [ 177.803146][ T5934] syz.2.748[5934] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.803265][ T5934] syz.2.748[5934] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 177.804884][ T3946] device veth0_macvtap left promiscuous mode [ 177.858598][ T3946] device veth1_vlan left promiscuous mode [ 177.864667][ T3946] device veth0_vlan left promiscuous mode [ 178.447315][ T3946] team0 (unregistering): Port device team_slave_1 removed [ 178.489944][ T3946] team0 (unregistering): Port device team_slave_0 removed [ 178.530101][ T3946] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 178.571892][ T3946] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 178.981079][ T3946] bond0 (unregistering): Released all slaves [ 179.049155][ T5712] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 179.059183][ T5712] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 179.085844][ T5880] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 179.111268][ T5533] device veth1_vlan entered promiscuous mode [ 179.226449][ T26] kauditd_printk_skb: 92 callbacks suppressed [ 179.226466][ T26] audit: type=1326 audit(1729340200.548:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5944 comm="syz.2.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 179.286013][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 179.298832][ T26] audit: type=1326 audit(1729340200.588:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5944 comm="syz.2.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 179.300655][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 179.356006][ T26] audit: type=1326 audit(1729340200.588:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5944 comm="syz.2.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 179.361440][ T5533] device veth0_macvtap entered promiscuous mode [ 179.386074][ T26] audit: type=1326 audit(1729340200.588:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5944 comm="syz.2.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 179.443549][ T5533] device veth1_macvtap entered promiscuous mode [ 179.452843][ T26] audit: type=1326 audit(1729340200.588:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5944 comm="syz.2.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 179.485457][ T26] audit: type=1326 audit(1729340200.588:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5944 comm="syz.2.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 179.498199][ T5949] loop2: detected capacity change from 0 to 512 [ 179.516433][ T5949] EXT4-fs: Ignoring removed orlov option [ 179.546068][ T5949] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 179.591799][ T5533] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 179.602588][ T5949] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 179.620624][ T5533] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.624163][ T26] audit: type=1326 audit(1729340200.588:986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5944 comm="syz.2.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 179.633684][ T5533] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 179.664805][ T5533] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.679212][ T5533] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 179.689960][ T5533] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.693156][ T5949] EXT4-fs (loop2): 1 orphan inode deleted [ 179.701795][ T5533] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 179.715854][ T5533] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 179.726586][ T5949] EXT4-fs (loop2): 1 truncate cleaned up [ 179.726831][ T5533] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.732323][ T5949] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 179.742914][ T5533] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 179.761628][ T5533] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.764617][ T26] audit: type=1326 audit(1729340200.588:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5944 comm="syz.2.750" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 179.771772][ T5533] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 179.812787][ T5949] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 179.822937][ T5533] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 179.839836][ T5533] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 179.853052][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 179.861829][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 179.870239][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 179.889709][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 179.901707][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 179.910949][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 179.930799][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 179.976710][ T5533] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.007496][ T5533] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.019468][ T5533] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.033821][ T5533] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 180.060985][ T5712] 8021q: adding VLAN 0 to HW filter on device bond0 [ 180.087692][ T5958] netlink: 4 bytes leftover after parsing attributes in process `syz.1.755'. [ 180.096913][ T5958] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 180.107023][ T5958] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 180.115665][ T5958] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 180.123073][ T5958] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 180.166719][ T5957] device hsr0 entered promiscuous mode [ 180.211835][ T5960] device hsr_slave_0 left promiscuous mode [ 180.220042][ T5960] device hsr_slave_1 left promiscuous mode [ 180.288998][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 180.299041][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 180.311458][ T5712] 8021q: adding VLAN 0 to HW filter on device team0 [ 180.364550][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 180.382850][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 180.405354][ T3743] bridge0: port 1(bridge_slave_0) entered blocking state [ 180.412439][ T3743] bridge0: port 1(bridge_slave_0) entered forwarding state [ 180.420550][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 180.464530][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 180.473216][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 180.490537][ T4532] bridge0: port 2(bridge_slave_1) entered blocking state [ 180.497731][ T4532] bridge0: port 2(bridge_slave_1) entered forwarding state [ 180.513598][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 180.522990][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 180.536300][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 180.557465][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 180.566359][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 180.575607][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 180.606784][ T3743] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 180.609601][ T5712] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 180.636347][ T3743] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 180.657064][ T5712] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 180.684243][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 180.709824][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 180.725125][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 180.733914][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 180.751277][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 180.760402][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 180.775408][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 180.832897][ T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 180.852419][ T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 180.888113][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 180.896405][ T26] audit: type=1326 audit(1729340202.228:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5966 comm="syz.2.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 180.940100][ T26] audit: type=1326 audit(1729340202.248:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5966 comm="syz.2.758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 181.154038][ T5972] syz.4.652[5972] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 181.160616][ T5972] syz.4.652[5972] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 181.181100][ T5974] netlink: 44 bytes leftover after parsing attributes in process `syz.3.760'. [ 181.416022][ T5983] loop4: detected capacity change from 0 to 164 [ 181.465883][ T5983] Unable to read rock-ridge attributes [ 181.467658][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 181.483787][ T5983] Unable to read rock-ridge attributes [ 181.496710][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 181.551253][ T5712] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 181.614693][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 181.627110][ T4532] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 181.666005][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 181.683485][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 181.722737][ T5712] device veth0_vlan entered promiscuous mode [ 181.730872][ T5985] loop3: detected capacity change from 0 to 4096 [ 181.746191][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 181.759589][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 181.766368][ T5985] EXT4-fs: Ignoring removed nomblk_io_submit option [ 181.798346][ T5712] device veth1_vlan entered promiscuous mode [ 181.867562][ T5985] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 181.881948][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 181.945284][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 181.953852][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 181.962647][ T3945] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 181.978689][ T5712] device veth0_macvtap entered promiscuous mode [ 182.037038][ T5712] device veth1_macvtap entered promiscuous mode [ 182.045867][ T5985] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #15: comm syz.3.764: corrupted inode contents [ 182.089887][ T5712] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 182.103175][ T5712] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 182.104475][ T5985] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #15: comm syz.3.764: mark_inode_dirty error [ 182.113157][ T5712] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 182.149753][ T5985] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #15: comm syz.3.764: corrupted inode contents [ 182.161303][ T5712] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 182.180617][ T5985] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #15: comm syz.3.764: mark_inode_dirty error [ 182.182440][ T5712] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 182.193029][ T5985] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #15: comm syz.3.764: corrupted inode contents [ 182.221534][ T5985] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #15: comm syz.3.764: mark_inode_dirty error [ 182.225783][ T5712] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 182.235416][ T5985] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #15: comm syz.3.764: corrupted inode contents [ 182.282791][ T5985] EXT4-fs error (device loop3): ext4_truncate:4311: inode #15: comm syz.3.764: mark_inode_dirty error [ 182.288843][ T5712] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 182.296897][ T5985] EXT4-fs error (device loop3) in ext4_setattr:5628: Corrupt filesystem [ 182.331267][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 182.342944][ T5993] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #15: comm syz.3.764: corrupted inode contents [ 182.385076][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 182.403087][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 182.431349][ T5062] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 182.509851][ T3643] EXT4-fs warning (device loop3): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 182.556895][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 182.646196][ T5712] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 182.667082][ T5712] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 182.677114][ T5712] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 182.687728][ T5712] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 182.720947][ T5712] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 182.897583][ T5712] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 183.193803][ T5712] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 183.394113][ T6004] loop3: detected capacity change from 0 to 1024 [ 183.442327][ T6004] EXT4-fs: Ignoring removed orlov option [ 183.450962][ T6004] EXT4-fs: Ignoring removed bh option [ 183.462343][ T6004] EXT4-fs: Invalid want_extra_isize 9 [ 183.491400][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 183.525534][ T3744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 183.632374][ T5712] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.673483][ T5712] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.701726][ T5712] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.720975][ T5712] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.619409][ T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 184.648757][ T6021] loop2: detected capacity change from 0 to 1024 [ 184.668591][ T6021] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 184.669994][ T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 184.710257][ T6021] EXT4-fs error (device loop2): ext4_get_journal_inode:5734: inode #32: comm syz.2.777: iget: special inode unallocated [ 184.752659][ T3945] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 184.780907][ T3945] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 184.791159][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 184.809674][ T6021] EXT4-fs (loop2): no journal found [ 184.816510][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 184.838177][ T6021] EXT4-fs (loop2): can't get journal size [ 184.862606][ T6021] EXT4-fs error (device loop2): ext4_protect_reserved_inode:160: inode #32: comm syz.2.777: iget: special inode unallocated [ 184.900163][ T6021] EXT4-fs (loop2): failed to initialize system zone (-117) [ 184.914864][ T6021] EXT4-fs (loop2): mount failed [ 184.932830][ T26] kauditd_printk_skb: 26 callbacks suppressed [ 184.932847][ T26] audit: type=1326 audit(1729340206.258:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 185.066336][ T26] audit: type=1326 audit(1729340206.258:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 185.169494][ T26] audit: type=1326 audit(1729340206.258:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 185.237797][ T26] audit: type=1326 audit(1729340206.258:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 185.271487][ T26] audit: type=1326 audit(1729340206.258:1020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 185.318602][ T26] audit: type=1326 audit(1729340206.258:1021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 185.415056][ T26] audit: type=1326 audit(1729340206.348:1022): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 185.439991][ T26] audit: type=1326 audit(1729340206.348:1023): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 185.464285][ T26] audit: type=1326 audit(1729340206.438:1024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 185.532037][ T26] audit: type=1326 audit(1729340206.438:1025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6028 comm="syz.3.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 186.006272][ T3655] Bluetooth: hci3: command 0x0406 tx timeout [ 186.013523][ T3653] Bluetooth: hci1: command 0x0406 tx timeout [ 186.013933][ T3649] Bluetooth: hci2: command 0x0406 tx timeout [ 186.433493][ T6057] device hsr0 entered promiscuous mode [ 186.464556][ T6052] device hsr0 left promiscuous mode [ 186.558750][ T6062] netlink: 8 bytes leftover after parsing attributes in process `syz.3.788'. [ 186.602600][ T6053] loop1: detected capacity change from 0 to 8192 [ 186.657270][ T6064] tipc: Started in network mode [ 186.663128][ T6064] tipc: Node identity ff, cluster identity 4711 [ 186.671001][ T6064] tipc: Enabling of bearer rejected, failed to enable media [ 187.911967][ T6083] device pim6reg1 entered promiscuous mode [ 187.936417][ T6084] loop3: detected capacity change from 0 to 256 [ 188.125079][ T6092] device hsr_slave_0 left promiscuous mode [ 188.164585][ T6092] device hsr_slave_1 left promiscuous mode [ 188.373827][ T6098] hub 1-0:1.0: USB hub found [ 188.381974][ T6098] hub 1-0:1.0: 1 port detected [ 189.279900][ T6102] loop4: detected capacity change from 0 to 2048 [ 189.314028][ T6107] tipc: Enabling of bearer rejected, already enabled [ 189.433463][ T6102] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 189.678824][ T5533] EXT4-fs (loop4): unmounting filesystem. [ 190.457434][ T6132] lo speed is unknown, defaulting to 1000 [ 190.595938][ T6132] lo speed is unknown, defaulting to 1000 [ 190.627051][ T6132] lo speed is unknown, defaulting to 1000 [ 190.649610][ T6132] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 190.708909][ T6132] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 190.831514][ T6132] lo speed is unknown, defaulting to 1000 [ 190.869953][ T6132] lo speed is unknown, defaulting to 1000 [ 190.908083][ T6149] loop3: detected capacity change from 0 to 512 [ 190.914669][ T6132] lo speed is unknown, defaulting to 1000 [ 190.921558][ T6132] lo speed is unknown, defaulting to 1000 [ 190.934978][ T6149] EXT4-fs: Ignoring removed orlov option [ 190.956312][ T6132] lo speed is unknown, defaulting to 1000 [ 191.046812][ T6149] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 191.112197][ T6157] loop2: detected capacity change from 0 to 512 [ 191.131684][ T6149] ext4 filesystem being mounted at /179/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 191.191203][ T6157] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 191.271431][ T6157] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 191.338089][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 191.357342][ T6157] ext4 filesystem being mounted at /191/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 191.376024][ T6166] netlink: 'syz.0.827': attribute type 29 has an invalid length. [ 191.385220][ T6166] netlink: 'syz.0.827': attribute type 29 has an invalid length. [ 191.395237][ T6166] netlink: 'syz.0.827': attribute type 29 has an invalid length. [ 191.509414][ T26] kauditd_printk_skb: 67 callbacks suppressed [ 191.509433][ T26] audit: type=1326 audit(1729340212.838:1093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.4.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa798f7dff9 code=0x7ffc0000 [ 191.645548][ T6168] lo speed is unknown, defaulting to 1000 [ 191.651774][ T26] audit: type=1326 audit(1729340212.838:1094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.4.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa798f7dff9 code=0x7ffc0000 [ 191.731705][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 191.769177][ T26] audit: type=1326 audit(1729340212.838:1095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.4.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7fa798f7dff9 code=0x7ffc0000 [ 191.808842][ T26] audit: type=1326 audit(1729340212.838:1096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.4.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa798f7dff9 code=0x7ffc0000 [ 191.848227][ T26] audit: type=1326 audit(1729340212.838:1097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.4.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa798f7dff9 code=0x7ffc0000 [ 191.871571][ T26] audit: type=1326 audit(1729340212.838:1098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.4.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa798f7dff9 code=0x7ffc0000 [ 192.569885][ T6181] netlink: 'syz.0.830': attribute type 29 has an invalid length. [ 192.588660][ T26] audit: type=1326 audit(1729340212.838:1099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.4.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa798f7dff9 code=0x7ffc0000 [ 192.636226][ T6181] netlink: 'syz.0.830': attribute type 29 has an invalid length. [ 192.662245][ T6185] netlink: 'syz.0.830': attribute type 29 has an invalid length. [ 192.680336][ T26] audit: type=1326 audit(1729340212.838:1100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.4.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa798f7dff9 code=0x7ffc0000 [ 192.726268][ T26] audit: type=1326 audit(1729340212.838:1101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.4.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa798f7dff9 code=0x7ffc0000 [ 192.748752][ T6181] netlink: 'syz.0.830': attribute type 29 has an invalid length. [ 192.766979][ T6189] syz.3.832[6189] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 192.767089][ T6189] syz.3.832[6189] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 192.769920][ T26] audit: type=1326 audit(1729340212.838:1102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6167 comm="syz.4.825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa798f7dff9 code=0x7ffc0000 [ 192.814443][ T6181] netlink: 'syz.0.830': attribute type 29 has an invalid length. [ 192.827980][ T6181] netlink: 'syz.0.830': attribute type 29 has an invalid length. [ 192.837123][ T6181] netlink: 'syz.0.830': attribute type 29 has an invalid length. [ 192.851385][ T6187] IPv6: Can't replace route, no match found [ 192.930945][ T6192] loop1: detected capacity change from 0 to 512 [ 192.942503][ T6189] lo speed is unknown, defaulting to 1000 [ 193.117998][ T6192] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 193.131509][ T6192] ext4 filesystem being mounted at /172/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 193.353646][ T6200] lo speed is unknown, defaulting to 1000 [ 193.702711][ T6200] lo speed is unknown, defaulting to 1000 [ 194.040405][ T6204] loop3: detected capacity change from 0 to 512 [ 194.041148][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 194.047772][ T6204] EXT4-fs: Ignoring removed orlov option [ 194.107297][ T1244] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.217524][ T6206] netlink: 16 bytes leftover after parsing attributes in process `syz.2.839'. [ 194.229469][ T6204] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 194.274813][ T6204] ext4 filesystem being mounted at /182/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 194.334545][ T6209] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 194.348346][ T6212] device pim6reg1 entered promiscuous mode [ 194.382086][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 194.739336][ T6226] netlink: 132 bytes leftover after parsing attributes in process `syz.1.845'. [ 195.020285][ T6234] netlink: 16 bytes leftover after parsing attributes in process `syz.3.847'. [ 195.221477][ T6241] netdevsim netdevsim1 eth0: set [0, 0] type 1 family 0 port 8472 - 0 [ 195.230637][ T6241] netdevsim netdevsim1 eth1: set [0, 0] type 1 family 0 port 8472 - 0 [ 195.239514][ T6241] netdevsim netdevsim1 eth2: set [0, 0] type 1 family 0 port 8472 - 0 [ 195.247928][ T6241] netdevsim netdevsim1 eth3: set [0, 0] type 1 family 0 port 8472 - 0 [ 195.349493][ T6241] device vxlan0 entered promiscuous mode [ 195.371797][ T6241] netdevsim netdevsim1 eth0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 195.380477][ T6241] netdevsim netdevsim1 eth1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 195.388903][ T6241] netdevsim netdevsim1 eth2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 195.397374][ T6241] netdevsim netdevsim1 eth3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 195.829303][ T6256] lo speed is unknown, defaulting to 1000 [ 195.983475][ T6268] netlink: 16 bytes leftover after parsing attributes in process `syz.0.860'. [ 196.549455][ T26] kauditd_printk_skb: 104 callbacks suppressed [ 196.549495][ T26] audit: type=1326 audit(1729340217.848:1207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 196.979149][ T26] audit: type=1326 audit(1729340217.918:1208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 197.083761][ T26] audit: type=1326 audit(1729340217.928:1209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 197.112138][ T26] audit: type=1326 audit(1729340217.938:1210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 197.156608][ T26] audit: type=1326 audit(1729340217.958:1211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 197.244243][ T26] audit: type=1326 audit(1729340217.978:1212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 197.358158][ T26] audit: type=1326 audit(1729340217.998:1213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 197.435284][ T26] audit: type=1326 audit(1729340218.028:1214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 197.527697][ T26] audit: type=1326 audit(1729340218.038:1215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 197.563890][ T6303] loop3: detected capacity change from 0 to 512 [ 197.601268][ T6303] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 197.612536][ T26] audit: type=1326 audit(1729340218.048:1216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.866" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 197.647231][ T6306] device pim6reg1 entered promiscuous mode [ 197.725902][ T6303] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 197.748220][ T6303] ext4 filesystem being mounted at /192/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 197.816320][ T6303] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 197.867791][ T6315] loop1: detected capacity change from 0 to 512 [ 197.881255][ T6315] EXT4-fs: Ignoring removed orlov option [ 197.909009][ T6315] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 197.932579][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 197.943350][ T6315] ext4 filesystem being mounted at /183/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 198.185724][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 198.224056][ T6327] siw: device registration error -23 [ 199.098153][ T6334] netlink: 8 bytes leftover after parsing attributes in process `syz.2.887'. [ 199.543206][ T6347] loop3: detected capacity change from 0 to 1024 [ 199.752600][ T6347] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 199.864626][ T6347] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 200.373773][ T6357] syz.2.895[6357] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 200.373886][ T6357] syz.2.895[6357] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 200.570821][ T6362] device pim6reg1 entered promiscuous mode [ 200.682991][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 201.023891][ T6374] No such timeout policy "syz0" [ 202.229112][ T6393] netlink: 'syz.0.910': attribute type 7 has an invalid length. [ 202.422937][ T6402] device pim6reg1 entered promiscuous mode [ 202.537234][ T6407] loop1: detected capacity change from 0 to 2048 [ 202.559387][ T6409] netlink: 4 bytes leftover after parsing attributes in process `syz.0.915'. [ 202.634397][ T6409] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 202.642005][ T6409] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 202.653581][ T6409] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 202.663700][ T6409] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 202.680107][ T6407] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 202.731672][ T26] kauditd_printk_skb: 16 callbacks suppressed [ 202.731689][ T26] audit: type=1800 audit(1729340224.058:1233): pid=6407 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.916" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 202.871940][ T6423] loop2: detected capacity change from 0 to 512 [ 202.981420][ T6423] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2759: inode #11: comm syz.2.919: corrupted xattr block 95 [ 202.994959][ T6423] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.919: bg 0: block 7: invalid block bitmap [ 203.036739][ T6423] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 203.066098][ T6423] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2925: inode #11: comm syz.2.919: corrupted xattr block 95 [ 203.127002][ T6423] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117) [ 203.152517][ T6423] EXT4-fs (loop2): 1 orphan inode deleted [ 203.171106][ T6423] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 203.205840][ T6423] netlink: 4 bytes leftover after parsing attributes in process `syz.2.919'. [ 203.273389][ T6434] loop4: detected capacity change from 0 to 164 [ 203.355004][ T26] audit: type=1326 audit(1729340224.688:1234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.0.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 203.381256][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 203.444164][ T26] audit: type=1326 audit(1729340224.718:1235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.0.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 203.538223][ T26] audit: type=1326 audit(1729340224.728:1236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.0.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 203.628006][ T26] audit: type=1326 audit(1729340224.728:1237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.0.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 203.715300][ T26] audit: type=1326 audit(1729340224.728:1238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.0.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 203.794455][ T26] audit: type=1326 audit(1729340224.728:1239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.0.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 203.833359][ T6449] loop2: detected capacity change from 0 to 1024 [ 203.841707][ T26] audit: type=1326 audit(1729340224.728:1240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.0.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 203.870041][ T6449] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 203.902000][ T26] audit: type=1326 audit(1729340224.728:1241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.0.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 203.906901][ T6449] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 203.967477][ T26] audit: type=1326 audit(1729340224.738:1242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.0.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f456617dff9 code=0x7ffc0000 [ 204.004042][ T6451] device pim6reg1 entered promiscuous mode [ 204.202941][ T6443] infiniband syz1: set active [ 204.234871][ T6443] infiniband syz1: added team_slave_0 [ 204.287096][ T6443] RDS/IB: syz1: added [ 204.292275][ T6443] smc: adding ib device syz1 with port count 1 [ 204.298910][ T6443] smc: ib device syz1 port 1 has pnetid [ 204.421582][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 205.012285][ T6468] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 205.323206][ T6468] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 205.362627][ T6476] lo speed is unknown, defaulting to 1000 [ 205.451387][ T6468] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 205.601021][ T6468] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 205.717174][ T6468] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 205.733655][ T6468] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 205.770769][ T6468] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 205.804490][ T6468] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 205.873178][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 206.355960][ T6494] device pim6reg1 entered promiscuous mode [ 208.573057][ T6532] lo speed is unknown, defaulting to 1000 [ 208.731308][ T6533] loop4: detected capacity change from 0 to 512 [ 209.281275][ T6539] No such timeout policy "syz0" [ 209.389570][ T6533] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 209.399527][ T6533] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 209.425037][ T6528] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #2: comm syz.4.954: corrupted inode contents [ 209.442479][ T6528] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #2: comm syz.4.954: mark_inode_dirty error [ 209.471451][ T6528] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #2: comm syz.4.954: corrupted inode contents [ 210.269025][ T6528] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #2: comm syz.4.954: mark_inode_dirty error [ 210.397956][ T5533] EXT4-fs (loop4): unmounting filesystem. [ 210.495392][ T6554] loop1: detected capacity change from 0 to 512 [ 210.526357][ T6554] EXT4-fs: Ignoring removed orlov option [ 210.593390][ T6554] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 210.605520][ T6554] ext4 filesystem being mounted at /197/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 210.729293][ T6562] loop2: detected capacity change from 0 to 512 [ 210.765555][ T26] kauditd_printk_skb: 18 callbacks suppressed [ 210.765572][ T26] audit: type=1326 audit(1729340232.098:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 210.772934][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 210.835948][ T6564] IPVS: Error connecting to the multicast addr [ 210.879386][ T6562] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 210.912021][ T26] audit: type=1326 audit(1729340232.148:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=18 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 210.934882][ T6562] ext4 filesystem being mounted at /221/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 211.039362][ T26] audit: type=1326 audit(1729340232.148:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 211.064998][ T26] audit: type=1326 audit(1729340232.148:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 211.119876][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 211.216719][ T26] audit: type=1326 audit(1729340232.148:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 211.251802][ T26] audit: type=1326 audit(1729340232.148:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 211.286153][ T26] audit: type=1326 audit(1729340232.148:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 211.296343][ T6572] loop4: detected capacity change from 0 to 8192 [ 211.308745][ T26] audit: type=1326 audit(1729340232.158:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 211.308785][ T26] audit: type=1326 audit(1729340232.158:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 211.308822][ T26] audit: type=1326 audit(1729340232.158:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6563 comm="syz.3.966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f9c4057dff9 code=0x7ffc0000 [ 211.980964][ T6591] loop4: detected capacity change from 0 to 4096 [ 212.019792][ T6591] EXT4-fs: Ignoring removed nomblk_io_submit option [ 212.076744][ T6591] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 212.114214][ T6591] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #15: comm syz.4.975: corrupted inode contents [ 212.127673][ T6591] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #15: comm syz.4.975: mark_inode_dirty error [ 212.149700][ T6591] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #15: comm syz.4.975: corrupted inode contents [ 212.193543][ T6605] IPv6: NLM_F_CREATE should be specified when creating new route [ 212.234635][ T6591] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #15: comm syz.4.975: mark_inode_dirty error [ 212.263695][ T6591] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #15: comm syz.4.975: corrupted inode contents [ 212.301784][ T6591] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #15: comm syz.4.975: mark_inode_dirty error [ 212.324707][ T6591] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #15: comm syz.4.975: corrupted inode contents [ 212.389773][ T6591] EXT4-fs error (device loop4): ext4_truncate:4311: inode #15: comm syz.4.975: mark_inode_dirty error [ 212.443480][ T6591] EXT4-fs error (device loop4) in ext4_setattr:5628: Corrupt filesystem [ 212.488399][ T6603] EXT4-fs error (device loop4): ext4_do_update_inode:5224: inode #15: comm syz.4.975: corrupted inode contents [ 212.759933][ T5533] EXT4-fs warning (device loop4): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 212.770410][ T6617] loop3: detected capacity change from 0 to 128 [ 213.253675][ T5533] EXT4-fs (loop4): unmounting filesystem. [ 213.419813][ T6617] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 1, start 00000001) [ 213.594218][ T6617] FAT-fs (loop3): Filesystem has been set read-only [ 214.375863][ T6648] loop1: detected capacity change from 0 to 512 [ 214.395431][ T6649] IPv6: Can't replace route, no match found [ 214.437527][ T6648] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 214.465898][ T6648] ext4 filesystem being mounted at /203/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 214.652807][ T3648] EXT4-fs (loop1): unmounting filesystem. [ 215.734304][ T6672] loop3: detected capacity change from 0 to 764 [ 215.808143][ T6675] device pim6reg1 entered promiscuous mode [ 215.921313][ T26] kauditd_printk_skb: 51 callbacks suppressed [ 215.921330][ T26] audit: type=1326 audit(1729340237.248:1322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 215.984280][ T26] audit: type=1326 audit(1729340237.288:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 216.012128][ T26] audit: type=1326 audit(1729340237.288:1324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 216.017158][ T6683] loop2: detected capacity change from 0 to 1024 [ 216.075279][ T6683] EXT4-fs: Ignoring removed mblk_io_submit option [ 216.094658][ T26] audit: type=1326 audit(1729340237.288:1325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 216.133417][ T26] audit: type=1326 audit(1729340237.288:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 216.203474][ T26] audit: type=1326 audit(1729340237.288:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 216.228981][ T6691] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1014'. [ 216.251282][ T6683] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 216.324728][ T6693] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1014'. [ 216.334957][ T26] audit: type=1326 audit(1729340237.288:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 216.415392][ T26] audit: type=1326 audit(1729340237.308:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 216.441340][ T26] audit: type=1326 audit(1729340237.308:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 216.482170][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 216.489184][ T26] audit: type=1326 audit(1729340237.308:1331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6680 comm="syz.2.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7febfdd7dff9 code=0x7ffc0000 [ 216.629560][ T6707] loop2: detected capacity change from 0 to 512 [ 216.646522][ T6691] device hsr_slave_1 left promiscuous mode [ 216.660989][ T6707] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 216.671407][ T6696] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1015'. [ 216.703185][ T6707] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 216.719330][ T6707] EXT4-fs (loop2): orphan cleanup on readonly fs [ 216.732358][ T6707] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 216.764446][ T6707] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 216.801605][ T6707] EXT4-fs (loop2): 1 truncate cleaned up [ 216.811325][ T6707] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 216.912755][ T6710] loop3: detected capacity change from 0 to 4096 [ 216.959005][ T6710] EXT4-fs: Ignoring removed nomblk_io_submit option [ 217.041562][ T6710] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 217.051328][ T6726] device geneve2 entered promiscuous mode [ 217.139166][ T6710] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #15: comm syz.3.1020: corrupted inode contents [ 217.163129][ T6710] EXT4-fs error (device loop3): ext4_dirty_inode:6089: inode #15: comm syz.3.1020: mark_inode_dirty error [ 217.253831][ T6710] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #15: comm syz.3.1020: corrupted inode contents [ 217.368834][ T6710] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #15: comm syz.3.1020: mark_inode_dirty error [ 217.381817][ T6710] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #15: comm syz.3.1020: corrupted inode contents [ 217.404231][ T6710] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #15: comm syz.3.1020: mark_inode_dirty error [ 217.695139][ T6710] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #15: comm syz.3.1020: corrupted inode contents [ 218.058362][ T6710] EXT4-fs error (device loop3): ext4_truncate:4311: inode #15: comm syz.3.1020: mark_inode_dirty error [ 218.108583][ T6710] EXT4-fs error (device loop3) in ext4_setattr:5628: Corrupt filesystem [ 218.151417][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 218.268249][ T6734] EXT4-fs error (device loop3): ext4_do_update_inode:5224: inode #15: comm syz.3.1020: corrupted inode contents [ 218.384453][ T3643] EXT4-fs warning (device loop3): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 218.427440][ T3643] EXT4-fs (loop3): unmounting filesystem. [ 218.581486][ T6759] loop2: detected capacity change from 0 to 512 [ 218.616376][ T6764] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1039'. [ 218.651305][ T6759] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 218.727635][ T6759] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 218.796649][ T6759] EXT4-fs (loop2): 1 truncate cleaned up [ 218.802370][ T6759] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 218.913967][ T6778] device pim6reg1 entered promiscuous mode [ 218.926207][ T6759] syz.2.1037[6759] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 218.926313][ T6759] syz.2.1037[6759] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 218.940092][ T6759] ip6t_rpfilter: only valid in 'raw' or 'mangle' table, not '' [ 219.139471][ T3646] EXT4-fs (loop2): unmounting filesystem. [ 219.151460][ T6786] loop3: detected capacity change from 0 to 256 [ 219.258130][ T6788] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1048'. [ 220.173777][ T6800] loop3: detected capacity change from 0 to 164 [ 220.222582][ T6800] Unable to read rock-ridge attributes [ 220.240838][ T6800] Unable to read rock-ridge attributes [ 220.282328][ T6802] loop4: detected capacity change from 0 to 128 [ 220.489532][ T6794] syz.4.1053: attempt to access beyond end of device [ 220.489532][ T6794] loop4: rw=2049, sector=129, nr_sectors = 912 limit=128 [ 220.522885][ T6815] tipc: Enabling of bearer rejected, already enabled [ 220.557168][ T6802] syz.4.1053: attempt to access beyond end of device [ 220.557168][ T6802] loop4: rw=34817, sector=97, nr_sectors = 32 limit=128 [ 220.677049][ T6821] device pim6reg1 entered promiscuous mode [ 220.782874][ T6825] loop1: detected capacity change from 0 to 512 [ 220.819013][ T6830] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1067'. [ 220.826981][ T6825] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 220.830172][ T6830] bond0: (slave bond_slave_0): Slave does not support ipsec offload [ 220.870986][ T6832] loop2: detected capacity change from 0 to 164 [ 220.880367][ T6825] EXT4-fs (loop1): 1 truncate cleaned up [ 220.890397][ T6825] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 220.901983][ T6832] Unable to read rock-ridge attributes [ 220.922176][ T6832] Unable to read rock-ridge attributes [ 221.086851][ T6825] ================================================================== [ 221.094959][ T6825] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x8ca/0x1f30 [ 221.102704][ T6825] Read of size 18446744073709551572 at addr ffff88805b179050 by task syz.1.1064/6825 [ 221.112163][ T6825] [ 221.114491][ T6825] CPU: 0 PID: 6825 Comm: syz.1.1064 Not tainted 6.1.113-syzkaller #0 [ 221.122561][ T6825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 221.132715][ T6825] Call Trace: [ 221.135994][ T6825] [ 221.138928][ T6825] dump_stack_lvl+0x1e3/0x2cb [ 221.143622][ T6825] ? nf_tcp_handle_invalid+0x642/0x642 [ 221.149083][ T6825] ? panic+0x764/0x764 [ 221.153157][ T6825] ? _printk+0xd1/0x111 [ 221.157324][ T6825] ? __virt_addr_valid+0x17f/0x530 [ 221.162445][ T6825] ? __virt_addr_valid+0x17f/0x530 [ 221.167566][ T6825] print_report+0x15f/0x4f0 [ 221.172071][ T6825] ? __virt_addr_valid+0x17f/0x530 [ 221.177192][ T6825] ? __virt_addr_valid+0x17f/0x530 [ 221.182310][ T6825] ? __virt_addr_valid+0x45b/0x530 [ 221.187484][ T6825] ? __phys_addr+0xb6/0x170 [ 221.192005][ T6825] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 221.197470][ T6825] kasan_report+0x136/0x160 [ 221.201980][ T6825] ? __x64_sys_unlink+0x45/0x50 [ 221.206851][ T6825] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 221.212404][ T6825] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 221.217888][ T6825] kasan_check_range+0x27f/0x290 [ 221.222828][ T6825] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 221.228290][ T6825] memmove+0x25/0x60 [ 221.232220][ T6825] ext4_xattr_set_entry+0x8ca/0x1f30 [ 221.237519][ T6825] ? ext4_xattr_inode_lookup_create+0x1ef0/0x1ef0 [ 221.243933][ T6825] ? ext4_xattr_block_set+0x884/0x3920 [ 221.249402][ T6825] ? kmemdup+0x41/0x60 [ 221.253477][ T6825] ? memcpy+0x3c/0x60 [ 221.257487][ T6825] ext4_xattr_block_set+0xa58/0x3920 [ 221.262781][ T6825] ? __getblk_gfp+0x50/0xa20 [ 221.267375][ T6825] ? _raw_spin_unlock+0x24/0x40 [ 221.272236][ T6825] ? ext4_xattr_block_find+0x510/0x510 [ 221.277702][ T6825] ? ext4_xattr_block_find+0x468/0x510 [ 221.283169][ T6825] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 221.289079][ T6825] ? ext4_xattr_set+0x3d0/0x3d0 [ 221.293929][ T6825] ? rwsem_write_trylock+0x166/0x210 [ 221.299227][ T6825] ? clear_nonspinnable+0x60/0x60 [ 221.304259][ T6825] ? ext4_reserve_inode_write+0x2b3/0x360 [ 221.309986][ T6825] ? dquot_initialize_needed+0x128/0x320 [ 221.315637][ T6825] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 221.321285][ T6825] __ext4_mark_inode_dirty+0x54f/0x920 [ 221.326767][ T6825] ? ext4_blocks_for_truncate+0x270/0x270 [ 221.332493][ T6825] ? current_time+0x1ba/0x300 [ 221.337184][ T6825] ? atime_needs_update+0x7b0/0x7b0 [ 221.342427][ T6825] __ext4_unlink+0x6ed/0xba0 [ 221.347029][ T6825] ? __ext4_read_dirblock+0x890/0x890 [ 221.352408][ T6825] ? rwsem_write_trylock+0x166/0x210 [ 221.357703][ T6825] ? inode_permission+0xf7/0x450 [ 221.362648][ T6825] ? clear_nonspinnable+0x60/0x60 [ 221.367683][ T6825] ext4_unlink+0x1d5/0x670 [ 221.372104][ T6825] vfs_unlink+0x359/0x5f0 [ 221.376442][ T6825] do_unlinkat+0x4a5/0x820 [ 221.380864][ T6825] ? fsnotify_link_count+0xf0/0xf0 [ 221.385992][ T6825] __x64_sys_unlink+0x45/0x50 [ 221.390677][ T6825] do_syscall_64+0x3b/0xb0 [ 221.395092][ T6825] ? clear_bhb_loop+0x45/0xa0 [ 221.399775][ T6825] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 221.405709][ T6825] RIP: 0033:0x7f864b17dff9 [ 221.410144][ T6825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.429761][ T6825] RSP: 002b:00007f864bec5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 221.438180][ T6825] RAX: ffffffffffffffda RBX: 00007f864b335f80 RCX: 00007f864b17dff9 [ 221.446160][ T6825] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 221.454132][ T6825] RBP: 00007f864b1f0296 R08: 0000000000000000 R09: 0000000000000000 [ 221.462103][ T6825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 221.470075][ T6825] R13: 0000000000000000 R14: 00007f864b335f80 R15: 00007ffd688d8a98 [ 221.478057][ T6825] [ 221.481075][ T6825] [ 221.483393][ T6825] Allocated by task 6825: [ 221.487804][ T6825] kasan_set_track+0x4b/0x70 [ 221.492408][ T6825] __kasan_kmalloc+0x97/0xb0 [ 221.496995][ T6825] __kmalloc_node_track_caller+0xb1/0x220 [ 221.502718][ T6825] kmemdup+0x26/0x60 [ 221.506624][ T6825] ext4_xattr_block_set+0x884/0x3920 [ 221.511912][ T6825] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 221.517809][ T6825] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 221.523448][ T6825] __ext4_mark_inode_dirty+0x54f/0x920 [ 221.528921][ T6825] __ext4_unlink+0x6ed/0xba0 [ 221.533514][ T6825] ext4_unlink+0x1d5/0x670 [ 221.538021][ T6825] vfs_unlink+0x359/0x5f0 [ 221.542356][ T6825] do_unlinkat+0x4a5/0x820 [ 221.546777][ T6825] __x64_sys_unlink+0x45/0x50 [ 221.551459][ T6825] do_syscall_64+0x3b/0xb0 [ 221.555893][ T6825] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 221.561814][ T6825] [ 221.564134][ T6825] The buggy address belongs to the object at ffff88805b179000 [ 221.564134][ T6825] which belongs to the cache kmalloc-1k of size 1024 [ 221.578186][ T6825] The buggy address is located 80 bytes inside of [ 221.578186][ T6825] 1024-byte region [ffff88805b179000, ffff88805b179400) [ 221.591464][ T6825] [ 221.593793][ T6825] The buggy address belongs to the physical page: [ 221.600213][ T6825] page:ffffea00016c5e00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5b178 [ 221.610373][ T6825] head:ffffea00016c5e00 order:3 compound_mapcount:0 compound_pincount:0 [ 221.618702][ T6825] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 221.626695][ T6825] raw: 00fff00000010200 dead000000000100 dead000000000122 ffff888017c41dc0 [ 221.635278][ T6825] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000 [ 221.643850][ T6825] page dumped because: kasan: bad access detected [ 221.650258][ T6825] page_owner tracks the page as allocated [ 221.655960][ T6825] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3648, tgid 3648 (syz-executor), ts 64137798441, free_ts 16475738493 [ 221.677412][ T6825] post_alloc_hook+0x18d/0x1b0 [ 221.682184][ T6825] get_page_from_freelist+0x322e/0x33b0 [ 221.687735][ T6825] __alloc_pages+0x28d/0x770 [ 221.692335][ T6825] alloc_slab_page+0x6a/0x150 [ 221.697023][ T6825] new_slab+0x84/0x2d0 [ 221.701104][ T6825] ___slab_alloc+0xc20/0x1270 [ 221.705792][ T6825] __kmem_cache_alloc_node+0x19f/0x260 [ 221.711281][ T6825] kmalloc_trace+0x26/0xe0 [ 221.715701][ T6825] new_nbp+0x18c/0x430 [ 221.719778][ T6825] br_add_if+0x29f/0xed0 [ 221.724072][ T6825] do_setlink+0xe99/0x3de0 [ 221.728544][ T6825] rtnl_newlink+0x172c/0x2050 [ 221.733239][ T6825] rtnetlink_rcv_msg+0x818/0xff0 [ 221.738191][ T6825] netlink_rcv_skb+0x1cd/0x410 [ 221.742994][ T6825] netlink_unicast+0x7d8/0x970 [ 221.747771][ T6825] netlink_sendmsg+0xa26/0xd60 [ 221.752541][ T6825] page last free stack trace: [ 221.757214][ T6825] free_unref_page_prepare+0xf63/0x1120 [ 221.762803][ T6825] free_unref_page+0x33/0x3e0 [ 221.767495][ T6825] free_contig_range+0x9a/0x150 [ 221.772351][ T6825] destroy_args+0xfe/0x997 [ 221.776778][ T6825] debug_vm_pgtable+0x416/0x46b [ 221.781635][ T6825] do_one_initcall+0x265/0x8f0 [ 221.786450][ T6825] do_initcall_level+0x157/0x207 [ 221.791398][ T6825] do_initcalls+0x49/0x86 [ 221.795732][ T6825] kernel_init_freeable+0x45c/0x60f [ 221.800945][ T6825] kernel_init+0x19/0x290 [ 221.805298][ T6825] ret_from_fork+0x1f/0x30 [ 221.809857][ T6825] [ 221.812182][ T6825] Memory state around the buggy address: [ 221.817812][ T6825] ffff88805b178f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 221.825880][ T6825] ffff88805b178f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 221.833987][ T6825] >ffff88805b179000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 221.842048][ T6825] ^ [ 221.848724][ T6825] ffff88805b179080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 221.856787][ T6825] ffff88805b179100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 221.864860][ T6825] ================================================================== [ 221.943046][ T6825] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 221.950380][ T6825] CPU: 0 PID: 6825 Comm: syz.1.1064 Not tainted 6.1.113-syzkaller #0 [ 221.958471][ T6825] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 221.968531][ T6825] Call Trace: [ 221.971807][ T6825] [ 221.974759][ T6825] dump_stack_lvl+0x1e3/0x2cb [ 221.979456][ T6825] ? nf_tcp_handle_invalid+0x642/0x642 [ 221.984916][ T6825] ? panic+0x764/0x764 [ 221.988986][ T6825] ? preempt_schedule_common+0xa6/0xd0 [ 221.994448][ T6825] ? vscnprintf+0x59/0x80 [ 221.998786][ T6825] panic+0x318/0x764 [ 222.002684][ T6825] ? check_panic_on_warn+0x1d/0xa0 [ 222.007809][ T6825] ? memcpy_page_flushcache+0xfc/0xfc [ 222.013186][ T6825] ? _raw_spin_unlock_irqrestore+0x128/0x130 [ 222.019259][ T6825] ? _raw_spin_unlock+0x40/0x40 [ 222.024122][ T6825] check_panic_on_warn+0x7e/0xa0 [ 222.029063][ T6825] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 222.034525][ T6825] end_report+0x66/0x110 [ 222.038769][ T6825] kasan_report+0x143/0x160 [ 222.043274][ T6825] ? __x64_sys_unlink+0x45/0x50 [ 222.048132][ T6825] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 222.053591][ T6825] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 222.059049][ T6825] kasan_check_range+0x27f/0x290 [ 222.064001][ T6825] ? ext4_xattr_set_entry+0x8ca/0x1f30 [ 222.069457][ T6825] memmove+0x25/0x60 [ 222.073370][ T6825] ext4_xattr_set_entry+0x8ca/0x1f30 [ 222.078667][ T6825] ? ext4_xattr_inode_lookup_create+0x1ef0/0x1ef0 [ 222.085085][ T6825] ? ext4_xattr_block_set+0x884/0x3920 [ 222.090545][ T6825] ? kmemdup+0x41/0x60 [ 222.094634][ T6825] ? memcpy+0x3c/0x60 [ 222.098649][ T6825] ext4_xattr_block_set+0xa58/0x3920 [ 222.103946][ T6825] ? __getblk_gfp+0x50/0xa20 [ 222.108545][ T6825] ? _raw_spin_unlock+0x24/0x40 [ 222.113401][ T6825] ? ext4_xattr_block_find+0x510/0x510 [ 222.118867][ T6825] ? ext4_xattr_block_find+0x468/0x510 [ 222.124351][ T6825] ext4_expand_extra_isize_ea+0x10d5/0x1bb0 [ 222.130262][ T6825] ? ext4_xattr_set+0x3d0/0x3d0 [ 222.135111][ T6825] ? rwsem_write_trylock+0x166/0x210 [ 222.140407][ T6825] ? clear_nonspinnable+0x60/0x60 [ 222.145443][ T6825] ? ext4_reserve_inode_write+0x2b3/0x360 [ 222.151263][ T6825] ? dquot_initialize_needed+0x128/0x320 [ 222.156902][ T6825] __ext4_expand_extra_isize+0x2f7/0x3d0 [ 222.162547][ T6825] __ext4_mark_inode_dirty+0x54f/0x920 [ 222.168015][ T6825] ? ext4_blocks_for_truncate+0x270/0x270 [ 222.173741][ T6825] ? current_time+0x1ba/0x300 [ 222.178433][ T6825] ? atime_needs_update+0x7b0/0x7b0 [ 222.183646][ T6825] __ext4_unlink+0x6ed/0xba0 [ 222.188259][ T6825] ? __ext4_read_dirblock+0x890/0x890 [ 222.193640][ T6825] ? rwsem_write_trylock+0x166/0x210 [ 222.198944][ T6825] ? inode_permission+0xf7/0x450 [ 222.203887][ T6825] ? clear_nonspinnable+0x60/0x60 [ 222.208931][ T6825] ext4_unlink+0x1d5/0x670 [ 222.213360][ T6825] vfs_unlink+0x359/0x5f0 [ 222.217786][ T6825] do_unlinkat+0x4a5/0x820 [ 222.222210][ T6825] ? fsnotify_link_count+0xf0/0xf0 [ 222.227335][ T6825] __x64_sys_unlink+0x45/0x50 [ 222.232037][ T6825] do_syscall_64+0x3b/0xb0 [ 222.236457][ T6825] ? clear_bhb_loop+0x45/0xa0 [ 222.241170][ T6825] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 222.247072][ T6825] RIP: 0033:0x7f864b17dff9 [ 222.251508][ T6825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 222.271116][ T6825] RSP: 002b:00007f864bec5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 222.279539][ T6825] RAX: ffffffffffffffda RBX: 00007f864b335f80 RCX: 00007f864b17dff9 [ 222.287511][ T6825] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000180 [ 222.295481][ T6825] RBP: 00007f864b1f0296 R08: 0000000000000000 R09: 0000000000000000 [ 222.303448][ T6825] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.311416][ T6825] R13: 0000000000000000 R14: 00007f864b335f80 R15: 00007ffd688d8a98 [ 222.319399][ T6825] [ 222.322661][ T6825] Kernel Offset: disabled [ 222.326985][ T6825] Rebooting in 86400 seconds..