last executing test programs: 3m25.968453597s ago: executing program 32 (id=692): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3, 0x800000000003}, 0x100000, 0x5dd8, 0x3, 0x7, 0x0, 0x8, 0x3, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0) mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0) 3m20.427812025s ago: executing program 33 (id=840): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000200)='rss_stat\x00', r1}, 0x18) syz_clone(0x240c7000, 0x0, 0x0, 0x0, 0x0, 0x0) 2m54.702336211s ago: executing program 34 (id=1717): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="0202000311000000000000000000000005000500000000000a00000000000000fe8000000000000000000000000000bb000000000000000002000100000007000000000b000000000200090000000000000000000000000005000600000000000a00000000000000fe8800000000000000000000000000010000000000000000010018"], 0x88}}, 0x0) 2m39.515169188s ago: executing program 7 (id=2307): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000140)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0}) 2m39.458162158s ago: executing program 7 (id=2309): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f00000000c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0xb, 0x0, 0x0, 0x7995}, 0xfcb5, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0}) 2m39.401252669s ago: executing program 7 (id=2312): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2) sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)={0x1c, r3, 0x1, 0x0, 0xfffffffd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x0) write$nci(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="510301e8"], 0x4) 2m39.209129718s ago: executing program 7 (id=2318): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0xc040, &(0x7f0000000380), 0x2, 0x24d, &(0x7f0000000440)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0) r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x800}, &(0x7f0000000040)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0}) io_uring_enter(r0, 0x47ba, 0x0, 0x0, 0x0, 0x0) 2m39.048575907s ago: executing program 7 (id=2324): r0 = syz_io_uring_setup(0x124a, &(0x7f00000000c0)={0x0, 0x2170, 0x1, 0x3, 0x4000000}, &(0x7f0000000180)=0x0, &(0x7f0000000280)=0x0) io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000000)=[0xffffffffffffffff], 0x1}) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) io_uring_enter(r0, 0x47f6, 0x0, 0x0, 0x0, 0x0) 2m38.293049236s ago: executing program 7 (id=2344): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x1}, 0x8002, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000180)=0x38, 0x4) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) recvmmsg(r0, &(0x7f0000000e80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10020, 0x0) 2m38.292953926s ago: executing program 35 (id=2344): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3f, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x0, 0x1}, 0x8002, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000180)=0x38, 0x4) bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) recvmmsg(r0, &(0x7f0000000e80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x10020, 0x0) 2m2.104900739s ago: executing program 6 (id=3677): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0x922, 0x12) 2m2.066232628s ago: executing program 6 (id=3680): socket$nl_route(0x10, 0x3, 0x0) mremap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x7ffffffff000, 0x3, &(0x7f0000ff9000/0x4000)=nil) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) pipe(&(0x7f00000002c0)={0xffffffffffffffff}) vmsplice(r1, &(0x7f00000014c0)=[{&(0x7f0000000000)='|', 0xfd}], 0xf, 0x0) 2m1.215694947s ago: executing program 6 (id=3712): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10) bind$bt_hci(r0, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6) io_setup(0x2, &(0x7f0000002400)=0x0) io_submit(r3, 0x1, &(0x7f0000000340)=[&(0x7f0000000100)={0x2000000000, 0x4, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)="0200ffff0000", 0x6, 0x0, 0x0, 0x2}]) 2m1.139313007s ago: executing program 6 (id=3714): set_mempolicy(0x6, &(0x7f0000001440)=0x5, 0x6) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f00000002c0)='mm_page_alloc\x00', r1}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 2m1.138889756s ago: executing program 6 (id=3715): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@grpid}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$eJzs3U1vW1kZAODXzpeTyUwywywAAVOGgYKqOonbRlUXUFYIoUqILkFqQ+JGUew4ip3ShC7S/4BEJVaw5Aew7oo9GwQ7NmWBxEcEaiqxMLrXN6mb2k1oEjuKn0e6uvfcY/s9J849x36d+AQwsC5FxE5EjEbE/YiYys7nsi1ut7bkdi92Hy/u7T5ezEWzefefubQ+ORdt90m8lz1mISJ+9L2In+bejFvf2l5dqFTKG63i+Eyjuj5T39q+ulJdWC4vl9dKpfm5+dmb126UTq2vn1RHs6MvP//Dzrd+njRrMjvT3o/T1Or6yEGcxHBE/OAsgvXBUNaf0X43hHeSj4iPIuLT9PqfiqH02QQALrJmcyqaU+1lAOCiy6c5sFy+mOUCJiOfLxZbObyPYyJfqdUbVx7UNteWWrmy6RjJP1iplGezXOF0jOSS8lx6/KpcOlS+FhEfRsQvxsbTcnGxVlnq5wsfABhg7x2a//8z1pr/AYALrtDvBgAAPWf+B4DBY/4HgMFj/geAwWP+B4DBY/4HgMFj/geAgfLDO3eSrbmXff/10sOtzdXaw6tL5fpqsbq5WFysbawXl2u15fQ7e6pHPV6lVlufux6bj6a/vV5vzNS3tu9Va5trjXvp93rfK4/0pFcAwNt8+MmzP+ciYufWeLpF21oO5mq42PL9bgDQN0P9bgDQN1b7gsF1gvf40gNwQXRYovc1hYgYP3yy2Ww2z65JwBm7/AX5fxhUbfl/fwUMA0b+HwaX/D8MrmYzd9w1/+O4NwQAzjc5fqDL5/8fZfvfZh8O/GTp8C2enmWrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HzbX/+3mK0FPhn5fLEY8X5ETMdI7sFKpTwbER9ExJ/GRsaS8lyf2wwAnFT+b7ls/a/LU59NHq4dzb0cS/cR8bNf3f3lo4VGY+OPyfl/HZxvPM3Ol/rRfgDgKPvzdLpveyP/Yvfx4v7Wy/b8/bsRUWjF39sdjb2D+MMxnO4LMRIRE//OZeWWXFvu4iR2nkTE5zv1PxeTaQ6ktfLp4fhJ7Pd7Gj//Wvx8WtfaJz+Lz51CW2DQPEvGn9udrr98XEr3na//QjpCnVw2/iUPtbiXjoGv4u+Pf0Ndxr9Lx41x/fffbx2Nv1n3JOKLwxH7sffaxp/9+Lku8T87Zvy/fOkrn3ara/464nJ0jt8ea6ZRXZ+pb21fXakuLJeXy2ul0vzc/OzNazdKM2mOeqb7bPCPW1c+6FaX9H+iS/zCEf3/+jH7/5v/3v/xV98S/5tf6xQ/Hx+/JX4yJ37jmPEXJn5X6FaXxF/q0v+jnv8rx4z//K/bbywbDgD0T31re3WhUilv9PJg/4VET4M6uAAHyW/NOWhGx4Pv9CrWaPxf92o23ylWtxHjNLJuwHlwcNFHxMt+NwYAAAAAAAAAAAAAAOioF/+x1O8+AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcHH9LwAA//89fM7W") mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x80, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'}) 2m1.029096497s ago: executing program 6 (id=3718): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x18) r2 = epoll_create(0x3ff) r3 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000240)={0xa0000000}) epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000000280)={0x2000000}) 1m58.689675222s ago: executing program 8 (id=3772): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xb, &(0x7f0000000980)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'vxcan1\x00', 0x0}) sendmsg$ETHTOOL_MSG_PAUSE_SET(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000000080)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000010651fbe347b2c2b00000c00018008000100", @ANYRES32=r4], 0x20}, 0x1, 0x0, 0x0, 0xc000}, 0x0) 1m58.650731412s ago: executing program 8 (id=3774): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000ff01000000000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000400)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) read(0xffffffffffffffff, 0x0, 0x0) clock_adjtime(0x0, &(0x7f0000000000)={0x3ff, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, 0xfffffffffffffffe, 0x9, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x8, 0x2, 0x3, 0x0, 0x3}) socket$nl_netfilter(0x10, 0x3, 0xc) 1m58.560810241s ago: executing program 8 (id=3776): mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) futex(0x0, 0x3, 0x0, &(0x7f0000fd7ff0)={0x77359400}, 0x0, 0xfffffffd) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) 1m58.513150391s ago: executing program 8 (id=3777): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x32600) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r2, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0}) 1m58.484066011s ago: executing program 8 (id=3779): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@grpid}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$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") mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x80, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10) r2 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'}) 1m58.208091951s ago: executing program 8 (id=3782): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) r2 = syz_open_dev$evdev(&(0x7f0000000080), 0x1, 0x0) syz_usb_disconnect(r2) 1m45.931960624s ago: executing program 36 (id=3718): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r1}, 0x18) r2 = epoll_create(0x3ff) r3 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r3, &(0x7f0000000240)={0xa0000000}) epoll_ctl$EPOLL_CTL_MOD(r2, 0x3, r3, &(0x7f0000000280)={0x2000000}) 1m42.918497928s ago: executing program 37 (id=3782): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) r2 = syz_open_dev$evdev(&(0x7f0000000080), 0x1, 0x0) syz_usb_disconnect(r2) 59.718848116s ago: executing program 3 (id=5519): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x40000000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000800850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0) r2 = socket$inet6_sctp(0xa, 0x801, 0x84) sendto$inet6(r2, &(0x7f0000000040)="f9", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3}, 0x3}, 0x1c) 59.668107446s ago: executing program 3 (id=5521): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000001640)='kfree\x00', r1}, 0x10) r2 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$SG_IO(r3, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x40002, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0}) 59.667712946s ago: executing program 3 (id=5523): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001400)={{r0}, 0x0, &(0x7f00000013c0)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f00000002c0)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) set_mempolicy_home_node(&(0x7f0000349000/0xa000)=nil, 0xa000, 0x0, 0x0) 59.610995226s ago: executing program 3 (id=5525): syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000040)={[{@barrier}, {@data_err_ignore}, {@nodelalloc}]}, 0x1, 0x4a3, &(0x7f0000000580)="$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") r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) io_setup(0x202, &(0x7f0000000200)=0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r2 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r2, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x10, "ef359f413bb90900f7d6a4ae6dddfbd11000000000000000000ff8ee09e737ff0edf110ff4117639c2eb8f18d2b8f6277dd41905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61ffcf33524bbd9bffbcc2542ded71038232d71e14efbac003000000852f2036dc783800000000e9b49600", "f28359738e229a4c6681000000000000000100"}) io_submit(r1, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x0, 0x1, 0x0, r0, &(0x7f0000000000), 0x4000000}]) 59.254005605s ago: executing program 3 (id=5540): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) clock_nanosleep(0x2, 0x0, &(0x7f0000000300)={0x0, 0x989680}, 0x0) unshare(0x40000000) 58.832932054s ago: executing program 3 (id=5552): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000000)='kfree\x00', r1}, 0x18) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f00000006c0)={0x34, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}}, 0x0) 58.832785655s ago: executing program 38 (id=5552): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000000)='kfree\x00', r1}, 0x18) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f00000006c0)={0x34, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}}, 0x0) 51.714523779s ago: executing program 2 (id=5759): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x18) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10) bind$bt_hci(r1, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6) 51.688290039s ago: executing program 2 (id=5760): r0 = syz_io_uring_setup(0x5d15, &(0x7f00000014c0)={0x0, 0x9353, 0x80, 0x0, 0x3e3}, &(0x7f00000003c0)=0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10) syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_LINKAT={0x27, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000180)='./file0\x00', 0xffffffffffffffff, 0x1000}) io_uring_enter(r0, 0x47f6, 0x0, 0x0, 0x0, 0x0) 51.258703329s ago: executing program 2 (id=5765): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) fcntl$setpipe(r2, 0x407, 0x2000000) 51.231339929s ago: executing program 2 (id=5766): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0) chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00') mount$bind(&(0x7f0000000200)='./file0\x00', &(0x7f0000000680)='./file0/../file0/../file0/../file0\x00', 0x0, 0x1333404, 0x0) chroot(&(0x7f0000000040)='./file0/../file0/../file0/../file0\x00') move_mount(0xffffffffffffffff, 0x0, 0xffffffffffffff9c, 0x0, 0x0) pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f0000000200)='./file0/../file0/../file0/../file0\x00') 51.202327988s ago: executing program 2 (id=5769): r0 = perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r2}, 0x18) move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) pwritev(r0, 0x0, 0x0, 0x101, 0x3) syz_emit_ethernet(0x42, &(0x7f0000000000)={@local, @link_local, @void, {@ipv6={0x86dd, @udp={0x8, 0x6, "7fefc0", 0xc, 0x11, 0x1, @private2, @local, {[], {0x4e23, 0x4e21, 0xc, 0x0, @gue={{0x1, 0x1, 0x2, 0x8, 0x100, @void}}}}}}}}, 0x0) 50.613023757s ago: executing program 2 (id=5775): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) sendfile(r3, r2, 0x0, 0x3a) 50.612905467s ago: executing program 39 (id=5775): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0) r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) sendfile(r3, r2, 0x0, 0x3a) 2.271101834s ago: executing program 9 (id=7310): r0 = fsopen(&(0x7f0000000000)='hugetlbfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1803000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000800b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) r3 = fsmount(r0, 0x0, 0x0) name_to_handle_at(r3, &(0x7f0000000080)='.\x00', 0x0, 0x0, 0x0) 2.156829274s ago: executing program 9 (id=7315): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x80000, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000001680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000001700)=ANY=[@ANYBLOB="540200001600010000000000fedbdf25ff0100000000000000000000000000010a0101010000000000000000000000004e2200004e2300000a00200021000000", @ANYRES32=r2, @ANYRES32, @ANYBLOB="fc0000000000000000000000000000000000000033000000e0000002000000000000000000000000060000000000000019d000000000000009000000000000000000000000000000000000000000000008000000000000000000000000000000ff030000100000000300000000000000ffffffff00000000ffffff7f000000000900000000000000000000007f000000070000002bbd7000000000000200013f000000000000000001000000060000002c001300200100000000000000000000000000010000000000000000000000020000001c00040003004e204e210000fe"], 0x254}}, 0x40808) 2.042636904s ago: executing program 9 (id=7330): syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000006c0), 0xfe, 0x246, &(0x7f0000000ac0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x141842, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0) write(r1, &(0x7f0000004200)='t', 0x1) sendfile(r1, r0, 0x0, 0x40001) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000740)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000c00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='ext4_sync_file_enter\x00', r2}, 0x10) 1.817481973s ago: executing program 5 (id=7327): socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000080000207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000002000000850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) sendmsg$tipc(r0, &(0x7f00000003c0)={&(0x7f0000000180), 0x10, &(0x7f0000000380)=[{&(0x7f0000000480)="c3e972bd85a6d84136d6dd55048d3593a74f338ce6772ab9a6f64041c2f6fbbecdc08ebcd3192b6a53662dae7c8e9c665e80a5d0925f728dcac30c29793992e588952653d414cb8ccdabc38767fee819ec5af0c5ee936880fe8549b4ed347779cab4ffd4e0b62c53a1c01db28f2b3f91c34211c9353bc1dece61511917c2245fd66cb8dffeacb4d46d627c97b498bf1ff6b313bfbc9765457c831771d5eec7997ec242e4505f01c1bb3e069b2e630f42a2be86598a61", 0x64}, {&(0x7f0000000300)='V', 0x1}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000000340)="b768eb20304f2fdc5a9694a4867840d93170ca1a86406f", 0xfffffec0}], 0x4, 0x0, 0x0, 0x8010}, 0x0) dup2(r1, r0) setsockopt$sock_attach_bpf(r0, 0x1, 0x21, &(0x7f0000000040), 0x4) sendmmsg(r0, &(0x7f0000006880)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x5, 0x200000d1) 1.157011962s ago: executing program 9 (id=7329): unshare(0x2c020400) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = syz_io_uring_setup(0x5c2, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x3, 0x3d9}, &(0x7f0000000240)=0x0, &(0x7f0000000040)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_READ=@pass_buffer={0x16, 0xa, 0x2004, @fd_index=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x2}) io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0x0) 1.156459452s ago: executing program 5 (id=7340): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) readv(r1, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1) write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000740)=ANY=[], 0xfffffea8) readv(r1, &(0x7f0000001240)=[{&(0x7f0000000040)=""/73, 0x49}], 0x1) 465.27424ms ago: executing program 0 (id=7356): r0 = getpid() r1 = syz_pidfd_open(r0, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r3, 0xc08c5332, &(0x7f0000000040)={0x0, 0x0, 0x0, 'queue0\x00'}) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000640)={0x8, 0x1, 0x0, 'queue1\x00', 0xa4}) close_range(r1, 0xffffffffffffffff, 0x0) 453.068541ms ago: executing program 1 (id=7357): syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@user_xattr}, {@grpjquota}, {@nodelalloc}]}, 0x1, 0x4a3, &(0x7f0000000580)="$eJzs3c1rXOUaAPBnZpo0SXNvP+7l0vbCbaEXej9oJh9IE3XjSl0UxIIbhRqTaayZZEJmUpvQRaq7LlyIoiAu3PsXuLEriyCudS8upKI1ggrCyDkzk+Zr4qBpBnJ+Pzid95z3dJ73zfC8nHnPOXMCyKyzyT+5iMGI+DwijjZWN+9wtvGydv/mVLLkol6//F0u3S9Zb+3a+n9HImI1Ivoi4tknI17KbY9bXV6ZnSyXS4vN9WJtbqFYXV65cG1ucqY0U5ofGb84MTE+PDY6sWd9vf3GK7cvffR074c/vX7v7puffJw0a7BZt7Efe6nR9Z44vmHboYh4/GEE64JCsz/93W4If0jy+f0tIs6l+X80CumnCWRBvV6v/1o/3K56tQ4cWPn0GDiXH4qIRjmfHxpqHMP/PQby5Uq19v+rlaX56cax8rHoyV+9Vi4NN78rHIueXLI+kpYfrI9uWR+LSI+B3yr0p+tDU5Xy9P4OdcAWR7bk/4+FRv4DGeErP2SX/Ifskv+QXfIfskv+Q3bJf8gu+Q/ZJf8hu+Q/ZJf8h+yS/5BJz1y6lCz11v3v09eXl2Yr1y9Ml6qzQ3NLU0NTlcWFoZlKZSa9Z2fu996vXKksjDwSSzeKtVK1Vqwur1yZqyzN166k9/VfKfXsS6+AThw/c+fLXESsPtqfLoneZp1chYOtXs9Ft+9BBrqj0O0BCOgaU3+QXb7jAzv8RO8mfe0qFva+LcD+yHe7AUDXnD/l/B9klfl/yC7z/5BdjvEB8/+QPeb/IbsG2zz/6y8bnt01HBF/jYgvCj2HW8/6Ag6C/De55vH/+aP/Htxa25v7OT1F0BsRr753+Z0bk7Xa4kiy/fv17bV3m9tHu9F+oFOtPG3lMQCQXWv3b061lv2M++0TjYsQtsc/1Jyb7EvPUQ6s5TZdq5Dbo2sXVm9FxMmd4ueazztvnPkYWCtsi3+i+ZprvEXa3kPpc9P3J/6pDfH/tSH+6T/9V4FsuJOMP8M75V8+zelYz7/N48/gHl070X78y6+Pf4U249+ZDmO8/P5rX7eNfyvi9I7xW/H60lhb4ydtO99h/HsvPPePdnX1Dxrvs1P8lqRUrM0tFKvLKxfS35GbKc2PjF+cmBgfHhudKKZz1MXWTPV2j5387O5u/R9oE3+3/ifb/tth/3/556fPn90l/n/O7fz5n9glfn9E/K/D+D+MfvViu7ok/nSb/ud3iZ9sG+swfvXtpw53uCsAsA+qyyuzk+VyaVFBQUFhvdDtkQl42B4kfbdbAgAAAAAAAAAAAHRqPy4n7nYfAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOgt8CAAD//1kn1ls=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x102) pwritev2(r0, &(0x7f0000001940)=[{&(0x7f0000001b40)="a7", 0x1}], 0x1, 0x8800, 0x8, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x103042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x8141, 0x0) fallocate(r2, 0x10, 0x1, 0x8010000) pwritev2(r1, &(0x7f00000001c0)=[{&(0x7f0000000780)="f7", 0x1}], 0x1, 0x7fff, 0x0, 0x0) 446.662651ms ago: executing program 0 (id=7358): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d) r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1809000000000000000000000001000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r2}, &(0x7f0000000540), &(0x7f0000000580)=r3}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r2, &(0x7f0000000780)}, 0x20) 413.33388ms ago: executing program 0 (id=7360): syz_emit_ethernet(0x8a, &(0x7f0000000140)=ANY=[@ANYBLOB="aaaaaaaaaaaac4bc9cac968686dd600000000054060000000000000000000000ffff07000000fe8000000000000000000000000000aa00004e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="50e2000090780000080a0000000000000000030a0000000000000000fe08f989e8e82b840502000b317275"], 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001240)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000000000000000000002"], 0x3c}}, 0x0) mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f00000000c0)='nfs\x00', 0x0, &(0x7f0000000000)='\x06\x00\x00\x00\x04\xb0\xfe\x98\x9a!s\x91]\xab\xc9\xa2IV\xb6-\xd9z\x81\x91\x8aP}I\xc6\x0e\xd9\v\xda\xbfS\x16 \x04\r\xcd\xdb\x9a\xd4\xaf\r\x11\xa0\xd7\xd7\xb6\x9bz\x99\xaf\xfd\x87fN\xad\x90U\xb4A\xdf\xabB\xbba\x7f\xb8\x96\x1a\xe7\xc1\xab\x16\x02\x000xffffffffffffffff}) r3 = dup(r2) getsockname$packet(r3, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newlink={0xec, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r4}, [@IFLA_AF_SPEC={0xcc, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0x2, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @local}]}, @AF_INET={0x30, 0x2, 0x0, 0x1, {0x8, 0x1, 0x0, 0x1, [{0x3}, {0x8}, {0x4}, {0x8}, {0x8}]}}, @AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x11}, {0x8}]}}, @AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @dev}]}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x0, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x0, 0x7, @rand_addr=' \x01\x00'}, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_TOKEN={0x0, 0x7, @dev}, @IFLA_INET6_TOKEN={0x0, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @rand_addr=' \x01\x00'}, @IFLA_INET6_TOKEN={0x0, 0x7, @private1}, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_ADDR_GEN_MODE]}, @AF_MPLS={0x4}]}]}, 0xec}}, 0x0) 288.80485ms ago: executing program 5 (id=7366): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$kcm(0x29, 0x2, 0x0) sendmmsg$inet(r2, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000580)="89", 0x1}], 0x1, &(0x7f0000000040)=ANY=[], 0xd0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000001c0)="bc", 0x1}], 0x1}}], 0x2, 0x0) close(r2) 288.36915ms ago: executing program 0 (id=7377): r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) readv(r1, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1) write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000740)=ANY=[], 0xfffffea8) readv(r1, &(0x7f0000001240)=[{&(0x7f0000000040)=""/73, 0x49}], 0x1) 260.70141ms ago: executing program 4 (id=7367): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x100}, 0x18) r2 = socket(0x28, 0x5, 0x0) connect$vsock_stream(r2, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10) connect$vsock_stream(r2, &(0x7f0000000400)={0x28, 0x0, 0x2710, @host}, 0x10) 239.92952ms ago: executing program 5 (id=7368): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000700000045000000a000020095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x12, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x1, 0x803, 0x0) getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="58000000100003040000000000000000000000c8", @ANYRES32=0x0, @ANYBLOB="42420000000000002800128009000100766c616e00000000180002800c0002001f0000001f000000060001000100000008000500", @ANYRES32=r3, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r3], 0x58}, 0x1, 0x0, 0x0, 0x600}, 0x0) 226.5454ms ago: executing program 9 (id=7369): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") openat(0xffffffffffffff9c, &(0x7f00000003c0)='./bus\x00', 0x141842, 0x12b) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000340)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f00000005c0)='./bus\x00', 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000540), &(0x7f0000000240)='./file0\x00', 0x800000, &(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x0, 0x307, &(0x7f0000000580)="$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") ioctl$FS_IOC_SETFLAGS(r0, 0x4c02, &(0x7f0000000140)) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0) 152.49217ms ago: executing program 1 (id=7370): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='rxrpc_recvmsg\x00', r0}, 0x10) r1 = socket(0x21, 0x2, 0x10000000000002) connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x24) sendmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0) recvmmsg(r1, &(0x7f0000002d40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 146.59358ms ago: executing program 4 (id=7382): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xb, &(0x7f0000000c80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) fcntl$setlease(r1, 0x400, 0x0) fsetxattr$trusted_overlay_redirect(r1, &(0x7f0000000040), 0x0, 0x0, 0x0) fremovexattr(r1, &(0x7f00000000c0)=@known='trusted.overlay.redirect\x00') 128.34864ms ago: executing program 4 (id=7371): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1e000000000000000100000007"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0x401, 0x0) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) close_range(r2, 0xffffffffffffffff, 0x0) 128.17146ms ago: executing program 1 (id=7372): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000002c0)='rpm_return_int\x00', r1}, 0x10) syz_open_dev$usbfs(&(0x7f0000000040), 0x12, 0x0) 112.29447ms ago: executing program 1 (id=7374): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r1}, 0x18) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000300)={0x0, 0x0, 0x0, 'queue1\x00'}) ioctl$SNDRV_SEQ_IOCTL_DELETE_QUEUE(r2, 0x408c5333, &(0x7f0000000580)={0x0, 0x0, 0x0, 'queue0\x00'}) 53.387539ms ago: executing program 9 (id=7375): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000003c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x2d) r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f00000004c0)=ANY=[@ANYBLOB="1809000000000000000000000001000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b70000000000000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r2}, &(0x7f0000000540), &(0x7f0000000580)=r3}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r2, &(0x7f0000000780)}, 0x20) 52.683379ms ago: executing program 5 (id=7376): bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[], 0x50) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) r1 = inotify_init() r2 = creat(&(0x7f0000000100)='./file0\x00', 0xd931d3864d39dcca) r3 = inotify_add_watch(r1, &(0x7f0000000240)='./file0\x00', 0x8c7) write$binfmt_elf32(r2, &(0x7f0000000040)=ANY=[@ANYRES64=r3], 0x69) close_range(r0, 0xffffffffffffffff, 0x200000000000000) 394.44µs ago: executing program 5 (id=7378): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4}}}]}, 0x38}}, 0x20000000) sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xe}, {}, {0xffe0, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_HASH={0x8, 0x2, 0xbd81}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0) 0s ago: executing program 1 (id=7379): r0 = socket$unix(0x1, 0x5, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000180)={'vxcan1\x00', 0x0}) connect$can_bcm(r2, &(0x7f0000000280)={0x1d, r3}, 0xb) sendmsg$can_bcm(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0100000003ece1e40ad8871461ab0800", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=r1, @ANYBLOB="3bf81bb9f9"], 0x20000600}}, 0x0) sendmsg$can_bcm(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000580)=ANY=[], 0x4640}, 0x2}, 0x4020) kernel console output (not intermixed with test programs): [ 199.127635][T18338] loop9: detected capacity change from 0 to 512 [ 199.136672][ T29] audit: type=1400 audit(1740709813.348:5337): avc: denied { read append } for pid=18337 comm="syz.9.5567" name="mISDNtimer" dev="devtmpfs" ino=248 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 199.164345][ T8027] batman_adv: batadv2: No IGMP Querier present - multicast optimizations disabled [ 199.173602][ T8027] batman_adv: batadv2: No MLD Querier present - multicast optimizations disabled [ 199.190781][T18298] team0: Port device team_slave_0 added [ 199.197362][T18298] team0: Port device team_slave_1 added [ 199.219117][T18338] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.5567: bg 0: block 248: padding at end of block bitmap is not set [ 199.244474][T18298] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 199.249434][T18338] EXT4-fs error (device loop9): ext4_acquire_dquot:6927: comm syz.9.5567: Failed to acquire dquot type 1 [ 199.251404][T18298] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 199.288543][T18298] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 199.300238][T18298] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 199.307370][T18298] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 199.308746][T18338] EXT4-fs (loop9): 1 truncate cleaned up [ 199.333377][T18298] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 199.351695][T18338] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 199.364370][T18338] ext4 filesystem being mounted at /322/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 199.381135][T18344] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5569'. [ 199.394976][T18298] hsr_slave_0: entered promiscuous mode [ 199.401489][T18298] hsr_slave_1: entered promiscuous mode [ 199.411308][T18298] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 199.421246][T18298] Cannot create hsr debugfs directory [ 199.467573][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.508917][T18356] loop9: detected capacity change from 0 to 2048 [ 199.531456][T18356] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 199.548946][T18356] ext4 filesystem being mounted at /323/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 199.578908][T18364] loop2: detected capacity change from 0 to 164 [ 199.678796][T18368] ipvlan2: entered promiscuous mode [ 199.684321][T18368] bridge0: port 2(ipvlan2) entered blocking state [ 199.690804][T18368] bridge0: port 2(ipvlan2) entered disabled state [ 199.697453][T18368] ipvlan2: entered allmulticast mode [ 199.702750][T18368] bridge0: entered allmulticast mode [ 199.708607][T18368] ipvlan2: left allmulticast mode [ 199.713940][T18368] bridge0: left allmulticast mode [ 199.824107][T18371] netlink: 'syz.5.5580': attribute type 4 has an invalid length. [ 199.830437][T18298] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 199.851837][T18298] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 199.870474][T18298] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 199.887423][T18366] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.5582: bg 0: block 345: padding at end of block bitmap is not set [ 199.919931][T18366] EXT4-fs (loop9): Remounting filesystem read-only [ 199.944678][T18378] loop5: detected capacity change from 0 to 512 [ 199.975903][T18298] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 199.999805][T18378] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 200.021697][T18298] 8021q: adding VLAN 0 to HW filter on device bond0 [ 200.034058][T18378] ext4 filesystem being mounted at /926/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 200.046302][ C1] sd 0:0:1:0: [sda] tag#3366 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 200.056699][ C1] sd 0:0:1:0: [sda] tag#3366 CDB: Read(6) 08 00 bc b2 00 00 [ 200.064990][T18298] 8021q: adding VLAN 0 to HW filter on device team0 [ 200.074864][ T8027] bridge0: port 1(bridge_slave_0) entered blocking state [ 200.082000][ T8027] bridge0: port 1(bridge_slave_0) entered forwarding state [ 200.110581][T18378] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.134819][ T8027] bridge0: port 2(bridge_slave_1) entered blocking state [ 200.141903][ T8027] bridge0: port 2(bridge_slave_1) entered forwarding state [ 200.187689][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.249878][T18298] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 200.328388][T18298] veth0_vlan: entered promiscuous mode [ 200.339327][T18298] veth1_vlan: entered promiscuous mode [ 200.360872][T18401] loop9: detected capacity change from 0 to 164 [ 200.374610][T18298] veth0_macvtap: entered promiscuous mode [ 200.381099][T18401] Unable to read rock-ridge attributes [ 200.393015][T18401] Unable to read rock-ridge attributes [ 200.400762][T18298] veth1_macvtap: entered promiscuous mode [ 200.413408][T18298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 200.424021][T18298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.434234][T18298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 200.444734][T18298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.458114][T18298] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 200.468329][T18298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.478842][T18298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.488707][T18298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 200.499152][T18298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 200.510274][T18298] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 200.536080][T18406] ipvlan2: entered promiscuous mode [ 200.542625][T18406] bridge0: port 3(ipvlan2) entered blocking state [ 200.549342][T18406] bridge0: port 3(ipvlan2) entered disabled state [ 200.556534][T18406] ipvlan2: entered allmulticast mode [ 200.562285][T18406] ipvlan2: left allmulticast mode [ 200.585537][T18298] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.586157][T18414] loop5: detected capacity change from 0 to 512 [ 200.594312][T18298] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.609465][T18298] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.618259][T18298] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 200.643517][T18414] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5594: bg 0: block 248: padding at end of block bitmap is not set [ 200.672595][T18414] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.5594: Failed to acquire dquot type 1 [ 200.684356][T18414] EXT4-fs (loop5): 1 truncate cleaned up [ 200.690651][T18414] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 200.703472][T18414] ext4 filesystem being mounted at /929/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 200.760901][ T5451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.684620][T18458] loop1: detected capacity change from 0 to 512 [ 201.726822][T18458] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.5610: bg 0: block 248: padding at end of block bitmap is not set [ 201.749185][T18458] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.5610: Failed to acquire dquot type 1 [ 201.763937][T18474] loop2: detected capacity change from 0 to 512 [ 201.774156][T18458] EXT4-fs (loop1): 1 truncate cleaned up [ 201.780050][T18458] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 201.793723][T18458] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 201.824849][T18480] batadv_slave_1: entered promiscuous mode [ 201.830732][T18298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.840844][T18474] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 201.855905][T18474] ext4 filesystem being mounted at /1147/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 201.868350][T18474] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.940255][T18479] batadv_slave_1: left promiscuous mode [ 201.950836][T18490] loop9: detected capacity change from 0 to 512 [ 201.975588][T18490] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 201.992028][T18490] ext4 filesystem being mounted at /332/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 202.070693][T18502] loop2: detected capacity change from 0 to 512 [ 202.081593][T18502] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 202.101883][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.121401][T18502] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.138125][T18502] ext4 filesystem being mounted at /1150/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 202.165697][T18518] loop9: detected capacity change from 0 to 512 [ 202.178403][ T3302] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.194943][T18518] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.232559][T18518] ext4 filesystem being mounted at /333/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 202.268717][T18518] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.363083][T18514] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 202.378146][T18514] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 202.458416][T18558] loop5: detected capacity change from 0 to 128 [ 202.541230][T18571] loop5: detected capacity change from 0 to 4096 [ 202.553503][T18571] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.555184][T18576] binfmt_misc: register: failed to install interpreter file ./file1 [ 202.578698][T18571] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: writeback. [ 202.597110][T18579] loop9: detected capacity change from 0 to 512 [ 202.611491][ T5451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.625006][T18579] EXT4-fs warning (device loop9): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 202.642770][T18579] EXT4-fs (loop9): mount failed [ 202.676812][T18586] loop5: detected capacity change from 0 to 2048 [ 202.683975][T18586] ext4: Unknown parameter 'noacl' [ 202.703802][T18586] loop5: detected capacity change from 0 to 2048 [ 202.725928][T18586] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 202.758769][T18598] netlink: 252 bytes leftover after parsing attributes in process `syz.9.5674'. [ 202.940984][T18609] xt_recent: hitcount (4294967295) is larger than allowed maximum (65535) [ 202.979515][T18615] loop9: detected capacity change from 0 to 512 [ 203.022093][T18620] rdma_op ffff888110e9b580 conn xmit_rdma 0000000000000000 [ 203.032744][T18615] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 203.049253][T18615] ext4 filesystem being mounted at /350/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 203.098577][T18625] netlink: 68 bytes leftover after parsing attributes in process `syz.0.5687'. [ 203.123991][T18627] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5688'. [ 203.159574][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.556286][T18654] netlink: 60 bytes leftover after parsing attributes in process `syz.9.5700'. [ 203.565591][T18654] netlink: 60 bytes leftover after parsing attributes in process `syz.9.5700'. [ 203.590568][T18654] netlink: 60 bytes leftover after parsing attributes in process `syz.9.5700'. [ 203.647727][T18654] netlink: 60 bytes leftover after parsing attributes in process `syz.9.5700'. [ 203.691718][T18654] netlink: 60 bytes leftover after parsing attributes in process `syz.9.5700'. [ 203.711988][T18654] netlink: 60 bytes leftover after parsing attributes in process `syz.9.5700'. [ 203.728998][ T29] kauditd_printk_skb: 185 callbacks suppressed [ 203.729078][ T29] audit: type=1326 audit(1740709817.958:5516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18660 comm="syz.0.5702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 203.758800][ T29] audit: type=1326 audit(1740709817.958:5517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18660 comm="syz.0.5702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 203.870354][ T29] audit: type=1326 audit(1740709818.018:5518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18660 comm="syz.0.5702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 203.871422][ T5451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.893899][ T29] audit: type=1326 audit(1740709818.018:5519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18660 comm="syz.0.5702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 203.893977][ T29] audit: type=1326 audit(1740709818.018:5520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18660 comm="syz.0.5702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 203.950078][ T29] audit: type=1326 audit(1740709818.018:5521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18660 comm="syz.0.5702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 203.973738][ T29] audit: type=1326 audit(1740709818.018:5522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18660 comm="syz.0.5702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 203.997315][ T29] audit: type=1326 audit(1740709818.028:5523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18660 comm="syz.0.5702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 204.020882][ T29] audit: type=1326 audit(1740709818.028:5524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18660 comm="syz.0.5702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 204.044404][ T29] audit: type=1326 audit(1740709818.028:5525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18660 comm="syz.0.5702" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 204.164201][T18691] ref_ctr increment failed for inode: 0x7c8 offset: 0x9 ref_ctr_offset: 0x82 of mm: 0xffff88811733ee00 [ 204.192560][T18690] uprobe: syz.0.5712:18690 failed to unregister, leaking uprobe [ 204.435677][T18729] vlan3: entered allmulticast mode [ 204.655827][T18748] loop1: detected capacity change from 0 to 512 [ 204.712887][T18748] EXT4-fs warning (device loop1): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 204.773865][T18748] EXT4-fs (loop1): mount failed [ 204.844707][T18758] netlink: 252 bytes leftover after parsing attributes in process `syz.1.5738'. [ 204.914557][T18760] netlink: 96 bytes leftover after parsing attributes in process `syz.1.5740'. [ 205.149922][T18770] loop1: detected capacity change from 0 to 256 [ 205.168979][T18770] vfat: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ' [ 205.608177][T18785] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 205.667165][T18795] blktrace: Concurrent blktraces are not allowed on loop5 [ 205.887888][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.895355][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.902766][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.925375][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.932993][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.940416][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.947911][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.955393][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.962808][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.970286][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.977722][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.985143][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.992524][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 205.999951][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.007619][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.015088][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.022504][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.030201][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.037904][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.045361][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.052770][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.060212][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.067676][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.075117][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.076575][T18811] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5763'. [ 206.082485][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.098885][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.099523][T18811] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5763'. [ 206.106317][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.106345][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.106440][ T1106] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0 [ 206.109222][ T1106] hid-generic 0000:0000:0000.0007: hidraw0: HID v0.01 Device [syz0] on syz1 [ 206.309649][T18826] block device autoloading is deprecated and will be removed. [ 206.485722][T18831] loop9: detected capacity change from 0 to 512 [ 206.493708][T18831] EXT4-fs (loop9): mounting ext3 file system using the ext4 subsystem [ 206.523796][T18831] EXT4-fs (loop9): invalid journal inode [ 206.529472][T18831] EXT4-fs (loop9): can't get journal size [ 206.554362][T18836] batman_adv: batadv0: Adding interface: dummy0 [ 206.560623][T18836] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 206.605665][T18836] batman_adv: batadv0: Interface activated: dummy0 [ 206.615539][T18831] EXT4-fs (loop9): 1 truncate cleaned up [ 206.619820][T18836] batadv0: mtu less than device minimum [ 206.621525][T18831] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 206.627165][T18836] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 206.649553][T18836] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 206.660305][T18836] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 206.670980][T18836] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 206.681769][T18836] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 206.692563][T18836] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 206.703392][T18836] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 206.714177][T18836] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 206.725040][T18836] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 206.742805][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.820627][T18841] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 206.847670][T18841] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 206.931229][T18856] pimreg: entered allmulticast mode [ 206.941254][T18856] pimreg: left allmulticast mode [ 206.993133][T18862] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=18862 comm=syz.9.5783 [ 207.005867][T18862] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=18862 comm=syz.9.5783 [ 207.042937][T18843] chnl_net:caif_netlink_parms(): no params data found [ 207.122588][T18843] bridge0: port 1(bridge_slave_0) entered blocking state [ 207.129802][T18843] bridge0: port 1(bridge_slave_0) entered disabled state [ 207.136980][T18843] bridge_slave_0: entered allmulticast mode [ 207.145068][T18843] bridge_slave_0: entered promiscuous mode [ 207.151842][T18843] bridge0: port 2(bridge_slave_1) entered blocking state [ 207.158967][T18843] bridge0: port 2(bridge_slave_1) entered disabled state [ 207.166200][T18843] bridge_slave_1: entered allmulticast mode [ 207.172534][T18843] bridge_slave_1: entered promiscuous mode [ 207.189595][T18843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 207.199953][T18843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 207.237872][T18843] team0: Port device team_slave_0 added [ 207.244572][T18843] team0: Port device team_slave_1 added [ 207.263265][T18843] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 207.270258][T18843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 207.296359][T18843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 207.307941][T18843] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 207.314928][T18843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 207.340921][T18843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 207.460794][T18883] batman_adv: batadv0: Adding interface: dummy0 [ 207.467258][T18883] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 207.492681][T18883] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active [ 207.499704][T18885] loop5: detected capacity change from 0 to 8192 [ 207.542872][T18843] hsr_slave_0: entered promiscuous mode [ 207.554166][T18843] hsr_slave_1: entered promiscuous mode [ 207.560260][T18843] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 207.601116][T18843] Cannot create hsr debugfs directory [ 207.685216][T18905] loop5: detected capacity change from 0 to 128 [ 207.712479][T18905] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 207.738332][T18912] netlink: 'syz.9.5803': attribute type 10 has an invalid length. [ 207.754143][T18905] ext4 filesystem being mounted at /957/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 207.791765][T18912] hsr_slave_0: left promiscuous mode [ 207.805798][T18912] hsr_slave_1: left promiscuous mode [ 207.868268][T18916] netlink: 'syz.9.5805': attribute type 1 has an invalid length. [ 207.883117][ T5451] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 207.900700][T18916] netlink: 'syz.9.5805': attribute type 1 has an invalid length. [ 207.972695][T18927] batman_adv: batadv0: Adding interface: dummy0 [ 207.979018][T18927] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 208.004326][T18927] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active [ 208.111938][T18933] loop9: detected capacity change from 0 to 512 [ 208.131688][T18843] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 208.150911][T18843] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 208.157849][T18933] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 208.178489][T18843] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 208.198310][T18843] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 208.217675][T18933] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 208.259684][T18933] ext4 filesystem being mounted at /384/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 208.326809][T18843] 8021q: adding VLAN 0 to HW filter on device bond0 [ 208.371979][T18948] bond0: entered promiscuous mode [ 208.377185][T18948] bond_slave_0: entered promiscuous mode [ 208.404540][T18843] 8021q: adding VLAN 0 to HW filter on device team0 [ 208.431278][ T8041] bridge0: port 1(bridge_slave_0) entered blocking state [ 208.438512][ T8041] bridge0: port 1(bridge_slave_0) entered forwarding state [ 208.488316][ T8041] bridge0: port 2(bridge_slave_1) entered blocking state [ 208.495480][ T8041] bridge0: port 2(bridge_slave_1) entered forwarding state [ 208.591996][T18843] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 208.689975][T18843] veth0_vlan: entered promiscuous mode [ 208.702660][T18843] veth1_vlan: entered promiscuous mode [ 208.718562][T18843] veth0_macvtap: entered promiscuous mode [ 208.729318][T18843] veth1_macvtap: entered promiscuous mode [ 208.742423][T18843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 208.753012][T18843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 208.762917][T18843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 208.773356][T18843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 208.783191][T18843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 208.793709][T18843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 208.809264][T18843] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 208.819363][T18843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 208.829907][T18843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 208.839803][T18843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 208.850248][T18843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 208.860109][T18843] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 208.870645][T18843] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 208.881482][T18843] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 208.890697][T18843] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 208.899421][T18843] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 208.908231][T18843] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 208.916981][T18843] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 209.088807][T18992] batman_adv: batadv0: Adding interface: dummy0 [ 209.095305][T18992] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 209.167335][T18992] batman_adv: batadv0: Interface activated: dummy0 [ 209.326692][T19003] IPVS: Error connecting to the multicast addr [ 209.460793][T18986] netlink: 'syz.0.5837': attribute type 4 has an invalid length. [ 209.508923][ T29] kauditd_printk_skb: 112 callbacks suppressed [ 209.508938][ T29] audit: type=1400 audit(1740709823.738:5637): avc: denied { read } for pid=19021 comm="syz.9.5842" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 209.608697][T19032] batman_adv: batadv0: Adding interface: dummy0 [ 209.615027][T19032] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 209.710167][T19032] batman_adv: batadv0: Interface activated: dummy0 [ 209.843957][ T29] audit: type=1326 audit(1740709824.068:5638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19042 comm="syz.4.5849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 209.845591][T19041] IPVS: Error connecting to the multicast addr [ 209.867565][ T29] audit: type=1326 audit(1740709824.068:5639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19042 comm="syz.4.5849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 209.897275][ T29] audit: type=1326 audit(1740709824.068:5640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19042 comm="syz.4.5849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 209.920934][ T29] audit: type=1326 audit(1740709824.068:5641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19042 comm="syz.4.5849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 209.944542][ T29] audit: type=1326 audit(1740709824.068:5642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19042 comm="syz.4.5849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 209.968074][ T29] audit: type=1326 audit(1740709824.068:5643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19042 comm="syz.4.5849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 209.991589][ T29] audit: type=1326 audit(1740709824.068:5644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19042 comm="syz.4.5849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 210.015168][ T29] audit: type=1326 audit(1740709824.068:5645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19042 comm="syz.4.5849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 210.038710][ T29] audit: type=1326 audit(1740709824.068:5646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19042 comm="syz.4.5849" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 210.093281][T19027] netlink: 'syz.9.5854': attribute type 4 has an invalid length. [ 210.502722][T19079] netlink: 'syz.0.5867': attribute type 10 has an invalid length. [ 210.526796][T19079] hsr_slave_0: left promiscuous mode [ 210.535299][T19079] hsr_slave_1: left promiscuous mode [ 210.577893][T19086] vlan2: entered allmulticast mode [ 211.249343][T19120] vlan2: entered allmulticast mode [ 211.636141][T19127] netlink: 'syz.1.5886': attribute type 4 has an invalid length. [ 211.752786][T19158] loop5: detected capacity change from 0 to 512 [ 211.818778][T19160] usb usb1: usbfs: process 19160 (syz.1.5902) did not claim interface 8 before use [ 211.859087][T19164] __nla_validate_parse: 2 callbacks suppressed [ 211.859180][T19164] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5903'. [ 211.874515][T19164] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5903'. [ 211.919327][T19164] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5903'. [ 211.956557][T19164] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5903'. [ 212.008091][T19164] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5903'. [ 212.039115][T19164] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5903'. [ 212.118841][T19183] binfmt_misc: register: failed to install interpreter file ./file1 [ 212.288522][T19201] netlink: 'syz.9.5919': attribute type 10 has an invalid length. [ 212.315304][T19207] IPv6: Can't replace route, no match found [ 212.363144][T19212] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5923'. [ 212.445452][T19219] xt_TPROXY: Can be used only with -p tcp or -p udp [ 212.760805][T19239] loop5: detected capacity change from 0 to 2048 [ 212.803234][T19239] EXT4-fs: Ignoring removed oldalloc option [ 212.815590][T19246] netlink: 264 bytes leftover after parsing attributes in process `syz.9.5939'. [ 212.876787][T19256] netlink: 'syz.0.5943': attribute type 11 has an invalid length. [ 212.884683][T19256] netlink: 36 bytes leftover after parsing attributes in process `syz.0.5943'. [ 213.720465][T19273] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 213.857495][T19288] batadv0: entered promiscuous mode [ 213.872810][T19288] batadv_slave_0: entered promiscuous mode [ 213.885738][T19288] debugfs: Directory 'hsr1' with parent 'hsr' already present! [ 213.903137][T19288] Cannot create hsr debugfs directory [ 214.108828][T19304] netlink: 24 bytes leftover after parsing attributes in process `syz.9.5964'. [ 214.151527][T19310] bridge0: port 4(macsec1) entered blocking state [ 214.158040][T19310] bridge0: port 4(macsec1) entered disabled state [ 214.164860][T19310] macsec1: entered allmulticast mode [ 214.170161][T19310] bridge0: entered allmulticast mode [ 214.180458][T19310] macsec1: left allmulticast mode [ 214.185829][T19310] bridge0: left allmulticast mode [ 214.551286][T19341] loop5: detected capacity change from 0 to 2048 [ 214.604423][T19341] loop5: p1 < > p4 [ 214.611653][T19341] loop5: p4 size 8388608 extends beyond EOD, truncated [ 214.628123][ T29] kauditd_printk_skb: 49 callbacks suppressed [ 214.628140][ T29] audit: type=1326 audit(1740709828.858:5696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19347 comm="syz.9.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 214.658006][ T29] audit: type=1326 audit(1740709828.858:5697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19347 comm="syz.9.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 214.681856][ T29] audit: type=1326 audit(1740709828.858:5698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19347 comm="syz.9.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 214.705786][ T29] audit: type=1326 audit(1740709828.858:5699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19347 comm="syz.9.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 214.729313][ T29] audit: type=1326 audit(1740709828.858:5700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19347 comm="syz.9.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 214.752943][ T29] audit: type=1326 audit(1740709828.858:5701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19347 comm="syz.9.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 214.776521][ T29] audit: type=1326 audit(1740709828.858:5702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19347 comm="syz.9.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 214.800028][ T29] audit: type=1326 audit(1740709828.858:5703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19347 comm="syz.9.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 214.973171][ T29] audit: type=1326 audit(1740709828.918:5704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19347 comm="syz.9.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 214.996788][ T29] audit: type=1326 audit(1740709828.918:5705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19347 comm="syz.9.5982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 215.175583][T19378] loop4: detected capacity change from 0 to 512 [ 215.198310][T19378] EXT4-fs: dax option not supported [ 215.240865][T19386] dvmrp0: entered allmulticast mode [ 215.253278][T19386] dvmrp0: left allmulticast mode [ 215.268834][T19389] netlink: 'syz.4.6001': attribute type 10 has an invalid length. [ 215.284318][T19389] hsr_slave_0: left promiscuous mode [ 215.319603][T19389] hsr_slave_1: left promiscuous mode [ 215.339103][T19355] netlink: 'syz.5.5983': attribute type 4 has an invalid length. [ 215.639036][T19419] netlink: 'syz.1.6016': attribute type 10 has an invalid length. [ 215.664069][T19419] hsr_slave_0: left promiscuous mode [ 215.669737][T19419] hsr_slave_1: left promiscuous mode [ 215.824653][T19442] 9pnet: p9_errstr2errno: server reported unknown error  [ 215.949438][T19451] loop1: detected capacity change from 0 to 2048 [ 216.022570][T19460] netlink: 'syz.5.6034': attribute type 10 has an invalid length. [ 216.038926][T19460] hsr_slave_0: left promiscuous mode [ 216.040825][T19427] netlink: 'syz.4.6020': attribute type 4 has an invalid length. [ 216.052327][T19460] hsr_slave_1: left promiscuous mode [ 216.058621][T19451] loop1: p1 < > p4 [ 216.062934][T19451] loop1: p4 size 8388608 extends beyond EOD, truncated [ 216.220465][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.228040][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.235555][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.278777][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.286299][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.293869][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.301255][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.308694][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.316109][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.323546][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.330960][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.338375][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.345827][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.353249][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.409632][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.417095][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.424663][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.432087][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.439520][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.446997][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.454427][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.461910][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.469391][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.476818][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.484238][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.491687][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.491766][T19493] loop4: detected capacity change from 0 to 512 [ 216.499170][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.512865][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.519207][T19493] EXT4-fs: Ignoring removed oldalloc option [ 216.520275][ T3387] hid-generic 0080:0000:0000.0008: unknown main item tag 0x0 [ 216.560039][T19498] netlink: 'syz.1.6051': attribute type 10 has an invalid length. [ 216.591360][ T3387] hid-generic 0080:0000:0000.0008: hidraw0: HID v0.01 Device [syz0] on syz1 [ 216.638001][T19493] EXT4-fs error (device loop4): ext4_xattr_inode_iget:436: comm syz.4.6048: Parent and EA inode have the same ino 15 [ 216.652410][T19503] ÿÿÿÿÿÿ: renamed from vlan1 (while UP) [ 216.705262][T19493] EXT4-fs (loop4): Remounting filesystem read-only [ 216.711938][T19493] EXT4-fs warning (device loop4): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 216.738779][T19493] EXT4-fs (loop4): 1 orphan inode deleted [ 216.744876][T19493] SELinux: (dev loop4, type ext4) getxattr errno 5 [ 217.415662][T19569] 9pnet: p9_errstr2errno: server reported unknown error  [ 217.550076][T19588] __nla_validate_parse: 6 callbacks suppressed [ 217.550093][T19588] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6093'. [ 217.577364][T19592] loop5: detected capacity change from 0 to 128 [ 217.673433][T19607] netlink: 1196 bytes leftover after parsing attributes in process `syz.9.6102'. [ 217.711842][T19603] loop4: detected capacity change from 0 to 8192 [ 217.933363][T19631] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6107'. [ 218.014384][T19639] loop9: detected capacity change from 0 to 2048 [ 218.035429][T19641] vlan1: entered allmulticast mode [ 218.078983][T19645] atomic_op ffff888105261128 conn xmit_atomic 0000000000000000 [ 218.583635][T19673] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6124'. [ 218.598902][T19675] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 218.646403][T19678] 9pnet: p9_errstr2errno: server reported unknown error  [ 218.659757][T19682] syz_tun: entered allmulticast mode [ 218.665999][T19682] syz_tun: left allmulticast mode [ 218.807805][T19701] xt_hashlimit: max too large, truncated to 1048576 [ 218.815756][T19701] Cannot find set identified by id 0 to match [ 218.909543][ T3363] hid-generic 0000:0000:0000.0009: unknown main item tag 0x0 [ 218.921394][T19713] loop4: detected capacity change from 0 to 1024 [ 218.928449][T19713] SELinux: security_context_str_to_sid (root) failed with errno=-22 [ 218.938167][ T3363] hid-generic 0000:0000:0000.0009: hidraw0: HID v0.00 Device [syz1] on syz0 [ 218.966490][T19717] loop9: detected capacity change from 0 to 256 [ 219.007107][T19724] netlink: 'syz.4.6152': attribute type 1 has an invalid length. [ 219.034666][T19727] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6154'. [ 219.043667][T19727] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6154'. [ 219.098906][T19732] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6156'. [ 219.185685][T19736] loop1: detected capacity change from 0 to 256 [ 219.192581][T19736] FAT-fs (loop1): bogus number of FAT sectors [ 219.198793][T19736] FAT-fs (loop1): Can't find a valid FAT filesystem [ 219.289094][T19742] loop1: detected capacity change from 0 to 512 [ 219.296189][T19742] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 219.329488][T19742] EXT4-fs mount: 9 callbacks suppressed [ 219.329543][T19742] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 219.391100][T19742] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.6160: corrupted inode contents [ 219.424059][T19742] EXT4-fs error (device loop1): ext4_dirty_inode:6042: inode #2: comm syz.1.6160: mark_inode_dirty error [ 219.459517][T19742] EXT4-fs error (device loop1): ext4_do_update_inode:5154: inode #2: comm syz.1.6160: corrupted inode contents [ 219.515155][T18298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.624628][T19766] 9pnet: p9_errstr2errno: server reported unknown error  [ 219.701235][T19770] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 219.914692][ T29] kauditd_printk_skb: 220 callbacks suppressed [ 219.914746][ T29] audit: type=1400 audit(1740709834.148:5926): avc: denied { bind } for pid=19784 comm="syz.1.6178" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 219.955210][ T29] audit: type=1400 audit(1740709834.178:5927): avc: denied { listen } for pid=19784 comm="syz.1.6178" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 220.012245][ T29] audit: type=1400 audit(1740709834.238:5928): avc: denied { name_bind } for pid=19790 comm="syz.0.6181" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 220.125945][T19800] loop1: detected capacity change from 0 to 512 [ 220.132580][T19800] EXT4-fs: Ignoring removed oldalloc option [ 220.150699][T19800] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.6182: Parent and EA inode have the same ino 15 [ 220.168147][T19800] EXT4-fs (loop1): Remounting filesystem read-only [ 220.174756][T19800] EXT4-fs warning (device loop1): ext4_evict_inode:259: couldn't mark inode dirty (err -5) [ 220.185462][T19800] EXT4-fs (loop1): 1 orphan inode deleted [ 220.215811][T19809] loop9: detected capacity change from 0 to 2048 [ 220.222629][T19809] EXT4-fs: Ignoring removed mblk_io_submit option [ 220.229196][T19809] EXT4-fs: Ignoring removed i_version option [ 220.229545][T19800] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 220.257008][T19800] SELinux: (dev loop1, type ext4) getxattr errno 5 [ 220.272992][T19800] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.290604][ T29] audit: type=1400 audit(1740709834.518:5929): avc: denied { mount } for pid=19815 comm="syz.0.6191" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 220.317324][T19809] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 220.333124][ T29] audit: type=1400 audit(1740709834.558:5930): avc: denied { map } for pid=19808 comm="syz.9.6188" path="/473/file0/bus" dev="loop9" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 220.386068][ T29] audit: type=1400 audit(1740709834.618:5931): avc: denied { unmount } for pid=14380 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 220.424205][ T29] audit: type=1400 audit(1740709834.648:5932): avc: denied { read } for pid=19825 comm="syz.0.6194" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1 [ 220.520398][ T29] audit: type=1326 audit(1740709834.748:5933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19841 comm="syz.0.6203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 220.543957][ T29] audit: type=1326 audit(1740709834.748:5934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19841 comm="syz.0.6203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 220.582220][ T29] audit: type=1326 audit(1740709834.808:5935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19841 comm="syz.0.6203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0dd7a1d169 code=0x7ffc0000 [ 220.634646][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.776194][T19873] loop5: detected capacity change from 0 to 2048 [ 220.891427][T19885] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6222'. [ 221.064540][T19902] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6229'. [ 221.073573][T19902] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6229'. [ 221.167924][T19911] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 221.321389][T19937] loop9: detected capacity change from 0 to 512 [ 221.332417][T19937] EXT4-fs (loop9): couldn't mount as ext2 due to feature incompatibilities [ 221.346719][T19941] wireguard0: entered promiscuous mode [ 221.352203][T19941] wireguard0: entered allmulticast mode [ 221.388721][T19935] loop5: detected capacity change from 0 to 8192 [ 221.415575][T19935] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 0) [ 221.424163][T19935] FAT-fs (loop5): Filesystem has been set read-only [ 221.487811][T19955] bridge0: port 4(macsec0) entered blocking state [ 221.494404][T19955] bridge0: port 4(macsec0) entered disabled state [ 221.503948][T19955] macsec0: entered allmulticast mode [ 221.509251][T19955] bridge0: entered allmulticast mode [ 221.537931][T19955] macsec0: left allmulticast mode [ 221.543066][T19955] bridge0: left allmulticast mode [ 221.565429][T19964] loop5: detected capacity change from 0 to 512 [ 221.584946][T19964] EXT4-fs: Ignoring removed oldalloc option [ 221.631616][T19968] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0 [ 221.663464][T19964] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c01c, mo2=0002] [ 221.672491][T19964] System zones: 1-12 [ 221.703350][T19964] EXT4-fs error (device loop5): ext4_xattr_inode_iget:436: comm syz.5.6256: Parent and EA inode have the same ino 15 [ 221.733061][T19964] EXT4-fs error (device loop5): ext4_xattr_inode_iget:436: comm syz.5.6256: Parent and EA inode have the same ino 15 [ 221.763201][T19964] EXT4-fs (loop5): 1 orphan inode deleted [ 221.769506][T19964] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 221.826305][ T5451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.944558][T20004] loop9: detected capacity change from 0 to 1024 [ 221.951539][T20004] EXT4-fs: Ignoring removed nobh option [ 221.966182][T20004] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 222.048744][T20004] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.6272: bg 0: block 456: padding at end of block bitmap is not set [ 222.100734][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.313170][T20044] SELinux: Context : is not valid (left unmapped). [ 222.324133][T20042] usb usb6: usbfs: process 20042 (syz.4.6291) did not claim interface 0 before use [ 222.389693][T20052] netem: change failed [ 222.495878][T20069] loop5: detected capacity change from 0 to 512 [ 222.502799][T20069] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 222.518518][T20069] EXT4-fs (loop5): 1 truncate cleaned up [ 222.524696][T20069] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 222.552739][ T5451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.672450][T20094] netlink: 'syz.4.6316': attribute type 1 has an invalid length. [ 222.680387][T20094] netlink: 'syz.4.6316': attribute type 4 has an invalid length. [ 222.688514][T20094] __nla_validate_parse: 3 callbacks suppressed [ 222.688580][T20094] netlink: 9462 bytes leftover after parsing attributes in process `syz.4.6316'. [ 222.967870][T20142] loop5: detected capacity change from 0 to 512 [ 222.975789][T20142] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 222.987399][T20142] EXT4-fs (loop5): 1 truncate cleaned up [ 222.993389][T20142] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 223.006286][T20142] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.084739][T20155] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6343'. [ 223.094742][T20155] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 223.596787][T20196] netlink: 'syz.1.6362': attribute type 1 has an invalid length. [ 223.632529][ T8090] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 223.686344][ T8090] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 223.726289][ T8090] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 223.795942][ T8090] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 223.893023][T20204] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 223.909363][ T8090] bridge_slave_1: left allmulticast mode [ 223.915148][ T8090] bridge_slave_1: left promiscuous mode [ 223.920851][ T8090] bridge0: port 2(bridge_slave_1) entered disabled state [ 223.940714][ T8090] bridge_slave_0: left allmulticast mode [ 223.946513][ T8090] bridge_slave_0: left promiscuous mode [ 223.952225][ T8090] bridge0: port 1(bridge_slave_0) entered disabled state [ 223.988393][T20210] loop4: detected capacity change from 0 to 512 [ 224.032928][T20210] EXT4-fs warning (device loop4): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 224.048156][T20210] EXT4-fs (loop4): mount failed [ 224.124005][T20222] SELinux: syz.1.6374 (20222) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 224.139348][ T8090] team0: Port device geneve1 removed [ 224.207895][ T8090] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 224.229707][ T8090] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 224.249415][ T8090] bond0 (unregistering): Released all slaves [ 224.276804][T20232] netlink: 'syz.5.6379': attribute type 12 has an invalid length. [ 224.326117][T20249] netlink: 542 bytes leftover after parsing attributes in process `syz.5.6386'. [ 224.404616][ T8090] hsr_slave_0: left promiscuous mode [ 224.406720][T20258] loop1: detected capacity change from 0 to 2048 [ 224.416636][ T8090] hsr_slave_1: left promiscuous mode [ 224.422259][ T8090] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 224.429771][ T8090] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 224.437084][T20252] loop5: detected capacity change from 0 to 1024 [ 224.446737][ T8090] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 224.454232][ T8090] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 224.474477][ T8090] vlan0: left allmulticast mode [ 224.479381][ T8090] veth0_vlan: left allmulticast mode [ 224.484866][ T8090] vlan0: left promiscuous mode [ 224.490216][ T8090] veth1_macvtap: left promiscuous mode [ 224.495735][ T8090] veth0_macvtap: left promiscuous mode [ 224.501842][ T8090] veth1_vlan: left promiscuous mode [ 224.510752][ T8090] veth0_vlan: left promiscuous mode [ 224.521788][T20252] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 224.538513][T20258] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 224.603127][ T8090] team0 (unregistering): Port device vlan2 removed [ 224.637705][ T5451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.657529][ T8090] team0 (unregistering): Port device team_slave_0 removed [ 224.742292][T18298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.756555][T20287] netlink: 'syz.0.6404': attribute type 10 has an invalid length. [ 224.764514][T20287] netlink: 2 bytes leftover after parsing attributes in process `syz.0.6404'. [ 224.783957][T20287] team0: entered promiscuous mode [ 224.789137][T20287] team_slave_0: entered promiscuous mode [ 224.795027][T20287] team_slave_1: entered promiscuous mode [ 224.811451][T20287] bridge0: port 3(team0) entered blocking state [ 224.817837][T20287] bridge0: port 3(team0) entered disabled state [ 224.832627][T20287] team0: entered allmulticast mode [ 224.837923][T20287] team_slave_0: entered allmulticast mode [ 224.843794][T20287] team_slave_1: entered allmulticast mode [ 224.858244][T20287] bridge0: port 3(team0) entered blocking state [ 224.864625][T20287] bridge0: port 3(team0) entered forwarding state [ 224.871698][T20293] loop4: detected capacity change from 0 to 2048 [ 224.878575][T20293] EXT4-fs: Ignoring removed bh option [ 224.886491][T20301] xt_hashlimit: max too large, truncated to 1048576 [ 224.897842][T20301] Cannot find set identified by id 0 to match [ 224.919484][T20303] veth1_to_hsr: entered promiscuous mode [ 224.933062][T20303] bridge_slave_1: entered promiscuous mode [ 224.940919][T20303] hsr0: entered promiscuous mode [ 224.941618][T20293] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 224.947226][T20311] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6413'. [ 224.973646][ T29] kauditd_printk_skb: 210 callbacks suppressed [ 224.973659][ T29] audit: type=1400 audit(1740709839.208:6146): avc: denied { mac_admin } for pid=20292 comm="syz.4.6406" capability=33 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 224.980974][T20293] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 225.010198][ T29] audit: type=1400 audit(1740709839.208:6147): avc: denied { relabelto } for pid=20292 comm="syz.4.6406" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0" [ 225.020679][T20313] loop5: detected capacity change from 0 to 128 [ 225.068452][T18843] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.080770][ T8090] IPVS: stop unused estimator thread 0... [ 225.090180][T20313] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 225.090666][ T29] audit: type=1400 audit(1740709839.318:6148): avc: denied { read } for pid=20315 comm="syz.0.6417" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 225.129166][T20313] ext4 filesystem being mounted at /1080/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 225.161146][ T29] audit: type=1400 audit(1740709839.378:6149): avc: denied { append } for pid=20312 comm="syz.5.6415" path="/1080/file0/cpu.stat" dev="loop5" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 225.184545][ T29] audit: type=1400 audit(1740709839.378:6150): avc: denied { ioctl } for pid=20312 comm="syz.5.6415" path="/1080/file0/cpu.stat" dev="loop5" ino=12 ioctlcmd=0x583b scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 225.213222][ T29] audit: type=1326 audit(1740709839.438:6151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20319 comm="syz.4.6416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 225.237252][ T29] audit: type=1326 audit(1740709839.438:6152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20319 comm="syz.4.6416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 225.242137][ T5451] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 225.260797][ T29] audit: type=1326 audit(1740709839.438:6153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20319 comm="syz.4.6416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 225.293234][ T29] audit: type=1326 audit(1740709839.438:6154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20319 comm="syz.4.6416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 225.316738][ T29] audit: type=1326 audit(1740709839.438:6155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20319 comm="syz.4.6416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 225.471139][T20339] loop4: detected capacity change from 0 to 1024 [ 225.504094][T20339] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 225.515051][T20339] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 225.537429][T20339] JBD2: no valid journal superblock found [ 225.543182][T20339] EXT4-fs (loop4): Could not load journal inode [ 225.620584][T20348] sctp: [Deprecated]: syz.9.6431 (pid 20348) Use of int in max_burst socket option. [ 225.620584][T20348] Use struct sctp_assoc_value instead [ 225.805130][T20373] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6443'. [ 225.860699][T20380] veth0_vlan: entered allmulticast mode [ 225.868249][T20380] ÿÿÿÿÿÿ: renamed from vlan1 [ 226.026406][T20406] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6460'. [ 226.283365][T20454] loop1: detected capacity change from 0 to 256 [ 226.290051][T20449] netlink: 'syz.4.6481': attribute type 5 has an invalid length. [ 226.333275][T20454] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 226.474163][T20489] loop9: detected capacity change from 0 to 128 [ 226.493735][T20486] netlink: 'syz.0.6498': attribute type 5 has an invalid length. [ 226.507518][T20489] FAT-fs (loop9): Directory bread(block 32) failed [ 226.514246][T20489] FAT-fs (loop9): Directory bread(block 33) failed [ 226.520795][T20489] FAT-fs (loop9): Directory bread(block 34) failed [ 226.544972][T20489] FAT-fs (loop9): Directory bread(block 35) failed [ 226.551650][T20489] FAT-fs (loop9): Directory bread(block 36) failed [ 226.558468][T20489] FAT-fs (loop9): Directory bread(block 37) failed [ 226.565932][T20489] FAT-fs (loop9): Directory bread(block 38) failed [ 226.572588][T20489] FAT-fs (loop9): Directory bread(block 39) failed [ 226.663713][T20489] FAT-fs (loop9): Directory bread(block 40) failed [ 226.670252][T20489] FAT-fs (loop9): Directory bread(block 41) failed [ 230.415920][ T29] kauditd_printk_skb: 149 callbacks suppressed [ 230.416011][ T29] audit: type=1400 audit(1740709844.648:6305): avc: denied { create } for pid=20506 comm="syz.1.6505" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 230.447107][T20489] syz.9.6496: attempt to access beyond end of device [ 230.447107][T20489] loop9: rw=524288, sector=4108, nr_sectors = 4 limit=128 [ 230.473303][T20489] syz.9.6496: attempt to access beyond end of device [ 230.473303][T20489] loop9: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 230.510191][T20511] loop5: detected capacity change from 0 to 512 [ 230.533320][ T29] audit: type=1400 audit(1740709844.748:6306): avc: denied { connect } for pid=20506 comm="syz.1.6505" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 230.560918][ T29] audit: type=1326 audit(1740709844.788:6307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20512 comm="syz.4.6508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 230.584617][ T29] audit: type=1326 audit(1740709844.788:6308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20512 comm="syz.4.6508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 230.620584][ T29] audit: type=1326 audit(1740709844.838:6309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20512 comm="syz.4.6508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 230.644200][ T29] audit: type=1326 audit(1740709844.838:6310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20512 comm="syz.4.6508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 230.667973][ T29] audit: type=1326 audit(1740709844.848:6311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20512 comm="syz.4.6508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 230.691982][ T29] audit: type=1326 audit(1740709844.878:6312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20512 comm="syz.4.6508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 230.715550][ T29] audit: type=1326 audit(1740709844.878:6313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20512 comm="syz.4.6508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 230.739060][ T29] audit: type=1326 audit(1740709844.878:6314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20512 comm="syz.4.6508" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7f55ed73d169 code=0x7ffc0000 [ 230.745790][T20511] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.6504: bg 0: block 248: padding at end of block bitmap is not set [ 230.782063][T20511] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.6504: Failed to acquire dquot type 1 [ 230.831701][T20511] EXT4-fs (loop5): 1 truncate cleaned up [ 230.842422][T20511] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 230.855147][T20511] ext4 filesystem being mounted at /1100/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 230.947838][ T5451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.011255][T20547] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma? [ 231.139630][T20563] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6526'. [ 231.191673][T20545] IPVS: You probably need to specify IP address on multicast interface. [ 231.197504][T20568] loop1: detected capacity change from 0 to 512 [ 231.204450][T20545] IPVS: Error connecting to the multicast addr [ 231.214036][T20568] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 231.238095][T20568] EXT4-fs (loop1): 1 truncate cleaned up [ 231.244270][T20568] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 231.379578][T20579] netlink: 'syz.5.6533': attribute type 1 has an invalid length. [ 231.379613][T18298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.387407][T20579] netlink: 'syz.5.6533': attribute type 4 has an invalid length. [ 231.387421][T20579] netlink: 9462 bytes leftover after parsing attributes in process `syz.5.6533'. [ 231.432932][T20588] netlink: 'syz.5.6539': attribute type 1 has an invalid length. [ 231.506353][T20597] loop1: detected capacity change from 0 to 512 [ 231.558369][T20610] netlink: 'syz.9.6557': attribute type 1 has an invalid length. [ 231.558642][T20597] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 231.569898][T20603] macsec0: entered promiscuous mode [ 231.582997][T20597] ext4 filesystem being mounted at /192/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 231.584166][T20603] macsec0: entered allmulticast mode [ 231.599683][T20603] veth1_macvtap: entered allmulticast mode [ 231.624150][T18298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.680352][T20616] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6549'. [ 231.689625][T20616] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 231.894572][T20640] bridge0: entered promiscuous mode [ 231.906396][T20640] bridge0: port 3(macsec1) entered blocking state [ 231.912871][T20640] bridge0: port 3(macsec1) entered disabled state [ 231.920288][T20640] macsec1: entered allmulticast mode [ 231.925636][T20640] bridge0: entered allmulticast mode [ 231.936955][T20640] macsec1: left allmulticast mode [ 231.942032][T20640] bridge0: left allmulticast mode [ 231.962234][T20640] bridge0: left promiscuous mode [ 232.082982][T20655] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6567'. [ 232.106193][T20655] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 232.220692][T20665] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6571'. [ 232.229764][T20665] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6571'. [ 232.329082][T20674] bridge0: port 4(macsec1) entered blocking state [ 232.335778][T20674] bridge0: port 4(macsec1) entered disabled state [ 232.345873][T20674] macsec1: entered allmulticast mode [ 232.351577][T20674] macsec1: left allmulticast mode [ 232.396940][T20678] wireguard0: entered promiscuous mode [ 232.402454][T20678] wireguard0: entered allmulticast mode [ 232.508952][T20692] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6584'. [ 232.518087][T20692] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6584'. [ 232.665275][T20699] loop5: detected capacity change from 0 to 512 [ 232.682283][T20699] EXT4-fs: Ignoring removed i_version option [ 232.692966][T20699] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 232.727714][T20699] EXT4-fs (loop5): 1 truncate cleaned up [ 232.739471][T20699] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 232.797817][ T5451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.842371][T20709] netlink: 'syz.0.6591': attribute type 1 has an invalid length. [ 232.959337][T20718] loop9: detected capacity change from 0 to 2048 [ 232.997210][T20724] wireguard0: entered promiscuous mode [ 233.002725][T20724] wireguard0: entered allmulticast mode [ 233.978763][T20747] loop4: detected capacity change from 0 to 1024 [ 233.986138][T20747] EXT4-fs: Ignoring removed nobh option [ 233.997607][T20750] xt_hashlimit: max too large, truncated to 1048576 [ 234.025413][T20750] Cannot find set identified by id 0 to match [ 234.025665][T20747] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.065892][T20747] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6608: bg 0: block 456: padding at end of block bitmap is not set [ 234.121988][T18843] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.416679][T20801] loop1: detected capacity change from 0 to 128 [ 234.428011][T20801] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 234.442922][T20801] ext4 filesystem being mounted at /206/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 234.468404][T18298] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 234.534271][T20808] loop1: detected capacity change from 0 to 1024 [ 234.542114][T20808] EXT4-fs: Ignoring removed nobh option [ 234.551394][T20814] loop4: detected capacity change from 0 to 2048 [ 234.568868][T20814] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.582672][T20808] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.618666][T20808] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.6634: bg 0: block 456: padding at end of block bitmap is not set [ 234.646273][T18298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.704331][T20822] loop1: detected capacity change from 0 to 2048 [ 234.711026][T20822] EXT4-fs: Ignoring removed bh option [ 234.725858][T20822] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.762035][T18843] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.765772][T20822] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 234.807747][T18298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.851528][T20826] loop4: detected capacity change from 0 to 1024 [ 234.867240][T20826] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.922278][T18843] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.984361][T20842] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6645'. [ 235.064006][T20847] loop4: detected capacity change from 0 to 128 [ 235.082255][T20847] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 235.104902][T20847] ext4 filesystem being mounted at /159/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 235.148678][T18843] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 235.183647][T20861] loop9: detected capacity change from 0 to 512 [ 235.190301][T20861] EXT4-fs: Ignoring removed oldalloc option [ 235.222349][T20861] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c01c, mo2=0002] [ 235.237127][T20861] System zones: 1-12 [ 235.243630][T20861] EXT4-fs error (device loop9): ext4_xattr_inode_iget:436: comm syz.9.6653: Parent and EA inode have the same ino 15 [ 235.258858][T20861] EXT4-fs error (device loop9): ext4_xattr_inode_iget:436: comm syz.9.6653: Parent and EA inode have the same ino 15 [ 235.271661][T20861] EXT4-fs (loop9): 1 orphan inode deleted [ 235.277912][T20861] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 235.301550][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.314631][T20867] netlink: 'syz.4.6656': attribute type 10 has an invalid length. [ 235.322511][T20867] netlink: 2 bytes leftover after parsing attributes in process `syz.4.6656'. [ 235.334465][T20867] team0: entered promiscuous mode [ 235.339528][T20867] team_slave_0: entered promiscuous mode [ 235.345460][T20867] team_slave_1: entered promiscuous mode [ 235.352214][T20868] loop5: detected capacity change from 0 to 2048 [ 235.352966][T20867] bridge0: port 3(team0) entered blocking state [ 235.363308][T20868] EXT4-fs: Ignoring removed bh option [ 235.364910][T20867] bridge0: port 3(team0) entered disabled state [ 235.377260][T20867] team0: entered allmulticast mode [ 235.382409][T20867] team_slave_0: entered allmulticast mode [ 235.388282][T20867] team_slave_1: entered allmulticast mode [ 235.400977][T20868] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 235.405728][T20870] loop9: detected capacity change from 0 to 1024 [ 235.414213][T20867] bridge0: port 3(team0) entered blocking state [ 235.425683][T20867] bridge0: port 3(team0) entered forwarding state [ 235.426784][T20868] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 235.449820][T20870] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 235.479723][ T5451] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.508964][T20878] netlink: 'syz.4.6658': attribute type 12 has an invalid length. [ 235.546368][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.618058][ T29] kauditd_printk_skb: 174 callbacks suppressed [ 235.618076][ T29] audit: type=1400 audit(1740709849.848:6487): avc: denied { mount } for pid=20884 comm="syz.5.6661" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 235.646938][ T29] audit: type=1400 audit(1740709849.878:6488): avc: denied { unmount } for pid=20884 comm="syz.5.6661" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 235.726511][ T29] audit: type=1400 audit(1740709849.948:6489): avc: denied { read write } for pid=20892 comm="syz.5.6667" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 235.749863][ T29] audit: type=1400 audit(1740709849.948:6490): avc: denied { open } for pid=20892 comm="syz.5.6667" path="/dev/ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 235.773271][ T29] audit: type=1400 audit(1740709849.948:6491): avc: denied { ioctl } for pid=20892 comm="syz.5.6667" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 235.843457][T20900] loop9: detected capacity change from 0 to 2048 [ 235.866753][T20900] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 236.035912][ T29] audit: type=1400 audit(1740709850.238:6492): avc: denied { create } for pid=20904 comm="syz.1.6671" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 236.055475][ T29] audit: type=1400 audit(1740709850.248:6493): avc: denied { write } for pid=20904 comm="syz.1.6671" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 236.083208][ T29] audit: type=1326 audit(1740709850.308:6494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20906 comm="syz.1.6672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5f93ad169 code=0x7ffc0000 [ 236.106915][ T29] audit: type=1326 audit(1740709850.308:6495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20906 comm="syz.1.6672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5f93ad169 code=0x7ffc0000 [ 236.130626][ T29] audit: type=1326 audit(1740709850.308:6496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20906 comm="syz.1.6672" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb5f93ad169 code=0x7ffc0000 [ 236.190195][T20914] netlink: 'syz.1.6675': attribute type 12 has an invalid length. [ 236.197238][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.300637][T20917] loop9: detected capacity change from 0 to 2048 [ 236.313796][T20917] EXT4-fs: Ignoring removed bh option [ 236.337908][T20917] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 236.373282][T20917] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 236.375105][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x4 [ 236.395757][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x2 [ 236.403725][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.411471][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.419177][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.427055][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.434876][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.442564][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.450284][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.458004][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.465732][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.473409][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.481068][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.488761][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.496595][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.504337][ T3363] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 236.526722][T20925] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6676'. [ 236.535781][T20925] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6676'. [ 236.572922][ T3363] hid-generic 0000:3000000:0000.000A: hidraw0: HID v0.00 Device [sy] on syz0 [ 236.587277][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.815969][T20941] serio: Serial port ptm0 [ 236.855023][T20939] Falling back ldisc for ttyS3. [ 236.965126][T20959] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6694'. [ 236.974253][T20959] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6694'. [ 237.059734][T20968] loop1: detected capacity change from 0 to 1024 [ 237.121242][T20968] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 237.161867][T20968] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 237.181366][T20968] EXT4-fs (loop1): orphan cleanup on readonly fs [ 237.262489][T20968] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 237.454645][T20968] EXT4-fs (loop1): Remounting filesystem read-only [ 237.461418][T20968] EXT4-fs (loop1): 1 orphan inode deleted [ 237.496654][T20968] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 237.517649][T20968] SELinux: (dev loop1, type ext4) getxattr errno 5 [ 237.525233][T20968] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.097457][T20989] loop1: detected capacity change from 0 to 2048 [ 238.192179][T20989] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 238.247375][T20989] EXT4-fs error (device loop1): ext4_find_extent:938: inode #2: comm syz.1.6704: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 238.265883][T21001] SELinux: failed to load policy [ 238.266352][T20989] EXT4-fs (loop1): Remounting filesystem read-only [ 238.316387][T18298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.335768][T21007] IPv6: NLM_F_CREATE should be specified when creating new route [ 238.377450][T21011] loop9: detected capacity change from 0 to 256 [ 238.409967][T21011] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 238.591932][T21025] loop5: detected capacity change from 0 to 128 [ 238.592888][T21022] syzkaller0: entered promiscuous mode [ 238.603849][T21022] syzkaller0: entered allmulticast mode [ 238.762227][T21035] xt_hashlimit: size too large, truncated to 1048576 [ 238.795470][T21034] ALSA: seq fatal error: cannot create timer (-19) [ 238.874744][T21038] SELinux: security_context_str_to_sid (u) failed with errno=-22 [ 239.340485][T21068] netlink: 'syz.5.6737': attribute type 3 has an invalid length. [ 239.509888][T21081] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6744'. [ 239.606555][T21093] loop9: detected capacity change from 0 to 512 [ 239.650475][T21098] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6750'. [ 239.660498][T21093] EXT4-fs warning (device loop9): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 239.683995][T21102] netlink: 'syz.4.6752': attribute type 3 has an invalid length. [ 239.694489][T21093] EXT4-fs (loop9): mount failed [ 239.831388][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.838860][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.846298][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.857465][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.865209][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.872639][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.880090][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.887494][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.894982][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.902455][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.909988][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.917546][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.925100][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.932486][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.949327][T21141] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6764'. [ 239.952916][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.961773][T21141] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6764'. [ 239.965683][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.981898][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.989314][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 239.996848][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 240.004242][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 240.011622][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 240.019069][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 240.026553][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 240.033953][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 240.041339][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 240.048766][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 240.056170][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 240.063571][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 240.071028][ T3376] hid-generic 0080:0000:0000.000B: unknown main item tag 0x0 [ 240.081048][T21139] SELinux: syz.4.6766 (21139) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 240.105943][ T3376] hid-generic 0080:0000:0000.000B: hidraw0: HID v0.01 Device [syz0] on syz1 [ 240.255574][T21164] netlink: 48 bytes leftover after parsing attributes in process `syz.9.6778'. [ 240.264668][T21164] netlink: 48 bytes leftover after parsing attributes in process `syz.9.6778'. [ 240.351260][T21171] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 240.458015][T21171] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 240.534343][T21171] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 240.596869][T21171] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 240.641811][T21171] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.653853][T21171] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.665112][T21171] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.676469][T21171] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 240.715148][ T29] kauditd_printk_skb: 210 callbacks suppressed [ 240.715164][ T29] audit: type=1400 audit(1740709854.948:6703): avc: denied { read } for pid=21199 comm="syz.1.6791" name="ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 240.783397][ T29] audit: type=1400 audit(1740709854.948:6704): avc: denied { open } for pid=21199 comm="syz.1.6791" path="/dev/ptp0" dev="devtmpfs" ino=245 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 240.807057][ T29] audit: type=1400 audit(1740709854.948:6705): avc: denied { ioctl } for pid=21199 comm="syz.1.6791" path="/dev/ptp0" dev="devtmpfs" ino=245 ioctlcmd=0x3d01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 240.832106][ T29] audit: type=1400 audit(1740709854.948:6706): avc: denied { execmem } for pid=21199 comm="syz.1.6791" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 240.906304][ T29] audit: type=1400 audit(1740709855.058:6707): avc: denied { create } for pid=21204 comm="syz.4.6793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 240.926032][ T29] audit: type=1400 audit(1740709855.058:6708): avc: denied { bind } for pid=21204 comm="syz.4.6793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 240.945387][ T29] audit: type=1400 audit(1740709855.108:6709): avc: denied { setopt } for pid=21204 comm="syz.4.6793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 241.083599][ T29] audit: type=1400 audit(1740709855.158:6710): avc: denied { create } for pid=21208 comm="syz.0.6795" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 241.103228][ T29] audit: type=1400 audit(1740709855.158:6711): avc: denied { setopt } for pid=21208 comm="syz.0.6795" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 241.122806][ T29] audit: type=1400 audit(1740709855.218:6712): avc: denied { write } for pid=21208 comm="syz.0.6795" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 241.792510][T21245] veth0_vlan: entered allmulticast mode [ 241.877655][T21245] ÿÿÿÿÿÿ: renamed from vlan1 [ 241.891479][T21251] loop9: detected capacity change from 0 to 512 [ 241.938406][T21251] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.6809: bg 0: block 248: padding at end of block bitmap is not set [ 241.976895][T21251] EXT4-fs error (device loop9): ext4_acquire_dquot:6927: comm syz.9.6809: Failed to acquire dquot type 1 [ 241.990828][T21251] EXT4-fs (loop9): 1 truncate cleaned up [ 241.999379][T21251] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 242.013816][T21251] ext4 filesystem being mounted at /601/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 242.152540][T14317] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 242.427047][T21275] loop4: detected capacity change from 0 to 512 [ 242.463825][T21281] IPv6: NLM_F_CREATE should be specified when creating new route [ 242.467562][T21275] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.6827: bg 0: block 248: padding at end of block bitmap is not set [ 242.499154][T21275] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.6827: Failed to acquire dquot type 1 [ 242.533150][T21275] EXT4-fs (loop4): 1 truncate cleaned up [ 242.545733][T21275] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 242.558404][T21275] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 242.617952][T18843] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 243.156820][T21287] loop1: detected capacity change from 0 to 1024 [ 243.181665][T21295] loop9: detected capacity change from 0 to 2048 [ 243.190852][T21287] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 243.223914][T21295] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 243.253645][T21291] Falling back ldisc for ttyS3. [ 243.266795][T21295] EXT4-fs error (device loop9): ext4_find_extent:938: inode #2: comm syz.9.6824: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 243.303024][T21295] EXT4-fs (loop9): Remounting filesystem read-only [ 243.370126][T21316] syzkaller0: entered promiscuous mode [ 243.375695][T21316] syzkaller0: entered allmulticast mode [ 243.534893][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x4 [ 243.535059][T21336] Falling back ldisc for ttyS3. [ 243.542563][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x2 [ 243.555844][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.563583][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.571260][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.579066][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.586859][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.594571][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.602203][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.609979][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.615235][T21342] loop5: detected capacity change from 0 to 1024 [ 243.617680][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.631590][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.639244][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.646908][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.654560][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.662204][ T1106] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 243.671698][ T1106] hid-generic 0000:3000000:0000.000C: hidraw0: HID v0.00 Device [sy] on syz0 [ 243.700563][T21351] netlink: 'syz.9.6862': attribute type 3 has an invalid length. [ 243.782560][T21362] __nla_validate_parse: 10 callbacks suppressed [ 243.782574][T21362] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6854'. [ 243.839458][T21365] serio: Serial port ptm0 [ 243.860226][T21369] SELinux: security_context_str_to_sid (u) failed with errno=-22 [ 243.883727][T21368] loop1: detected capacity change from 0 to 512 [ 243.908923][T21368] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.6851: bg 0: block 248: padding at end of block bitmap is not set [ 243.937301][T21368] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.6851: Failed to acquire dquot type 1 [ 243.949561][T21368] EXT4-fs (loop1): 1 truncate cleaned up [ 243.955779][T21368] ext4 filesystem being mounted at /245/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 244.024114][T21384] loop5: detected capacity change from 0 to 1024 [ 244.045916][T21392] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6870'. [ 244.091555][T21396] SELinux: security_context_str_to_sid (u) failed with errno=-22 [ 244.140657][T21401] serio: Serial port ptm0 [ 244.151513][T21407] loop9: detected capacity change from 0 to 1024 [ 244.202184][T21414] loop1: detected capacity change from 0 to 128 [ 244.272262][T21422] loop5: detected capacity change from 0 to 1024 [ 244.290941][T21427] SELinux: syz.1.6881 (21427) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace. [ 244.335684][T21430] loop4: detected capacity change from 0 to 128 [ 244.346676][T21432] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6882'. [ 244.362258][T21430] FAT-fs (loop4): Directory bread(block 32) failed [ 244.368995][T21430] FAT-fs (loop4): Directory bread(block 33) failed [ 244.379296][T21430] FAT-fs (loop4): Directory bread(block 34) failed [ 244.386245][T21430] FAT-fs (loop4): Directory bread(block 35) failed [ 244.394335][T21430] FAT-fs (loop4): Directory bread(block 36) failed [ 244.400965][T21430] FAT-fs (loop4): Directory bread(block 37) failed [ 244.407602][T21430] FAT-fs (loop4): Directory bread(block 38) failed [ 244.414274][T21430] FAT-fs (loop4): Directory bread(block 39) failed [ 244.420893][T21430] FAT-fs (loop4): Directory bread(block 40) failed [ 244.427640][T21430] FAT-fs (loop4): Directory bread(block 41) failed [ 244.439371][T21436] loop5: detected capacity change from 0 to 1024 [ 244.446360][T21434] Falling back ldisc for ttyS3. [ 244.472057][T21430] syz.4.6894: attempt to access beyond end of device [ 244.472057][T21430] loop4: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 244.485575][T21430] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 196) [ 244.493803][T21430] FAT-fs (loop4): Filesystem has been set read-only [ 244.523740][T21440] SELinux: security_context_str_to_sid (u) failed with errno=-22 [ 244.549132][T21430] syz.4.6894: attempt to access beyond end of device [ 244.549132][T21430] loop4: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 244.562488][T21430] Buffer I/O error on dev loop4, logical block 1027, async page read [ 244.833834][T21470] loop5: detected capacity change from 0 to 1024 [ 244.841217][T21470] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 244.852569][T21470] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 244.867799][T21470] EXT4-fs (loop5): orphan cleanup on readonly fs [ 244.874920][T21470] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 244.884618][T21470] EXT4-fs (loop5): Remounting filesystem read-only [ 244.891284][T21470] EXT4-fs (loop5): 1 orphan inode deleted [ 244.897577][T21470] SELinux: (dev loop5, type ext4) getxattr errno 5 [ 244.913658][T21472] Falling back ldisc for ttyS3. [ 244.952103][T21477] loop1: detected capacity change from 0 to 1024 [ 245.060611][T21487] loop1: detected capacity change from 0 to 128 [ 245.071544][T21487] FAT-fs (loop1): Directory bread(block 32) failed [ 245.081356][T21487] FAT-fs (loop1): Directory bread(block 33) failed [ 245.088694][T21487] FAT-fs (loop1): Directory bread(block 34) failed [ 245.099075][T21487] FAT-fs (loop1): Directory bread(block 35) failed [ 245.105900][T21487] FAT-fs (loop1): Directory bread(block 36) failed [ 245.113374][T21487] FAT-fs (loop1): Directory bread(block 37) failed [ 245.122934][T21487] FAT-fs (loop1): Directory bread(block 38) failed [ 245.129894][T21487] FAT-fs (loop1): Directory bread(block 39) failed [ 245.140034][T21487] FAT-fs (loop1): Directory bread(block 40) failed [ 245.148662][T21487] FAT-fs (loop1): Directory bread(block 41) failed [ 245.183273][T21487] syz.1.6904: attempt to access beyond end of device [ 245.183273][T21487] loop1: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 245.196923][T21487] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 196) [ 245.205029][T21487] FAT-fs (loop1): Filesystem has been set read-only [ 245.213455][T21487] syz.1.6904: attempt to access beyond end of device [ 245.213455][T21487] loop1: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 245.226709][T21487] Buffer I/O error on dev loop1, logical block 1027, async page read [ 245.346557][T21510] netlink: 'syz.5.6916': attribute type 10 has an invalid length. [ 245.595912][T21537] atomic_op ffff888128d66d28 conn xmit_atomic 0000000000000000 [ 245.646788][T21541] loop5: detected capacity change from 0 to 512 [ 245.677404][T21547] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 245.689476][T21541] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.6941: bg 0: block 248: padding at end of block bitmap is not set [ 245.699622][T21545] IPVS: stopping master sync thread 21547 ... [ 245.717626][T21541] EXT4-fs error (device loop5): ext4_acquire_dquot:6927: comm syz.5.6941: Failed to acquire dquot type 1 [ 245.740468][T21541] EXT4-fs (loop5): 1 truncate cleaned up [ 245.750137][T21541] ext4 filesystem being mounted at /1193/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 245.761717][T21550] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.773412][ T29] kauditd_printk_skb: 216 callbacks suppressed [ 245.773425][ T29] audit: type=1400 audit(1740709860.008:6917): avc: denied { cpu } for pid=21551 comm="syz.0.6935" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 245.842096][T21550] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.886834][ T29] audit: type=1400 audit(1740709860.118:6918): avc: denied { write } for pid=21558 comm="syz.5.6947" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 245.906953][ T29] audit: type=1400 audit(1740709860.128:6919): avc: denied { mount } for pid=21558 comm="syz.5.6947" name="/" dev="ramfs" ino=61818 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 245.929412][ T29] audit: type=1400 audit(1740709860.128:6920): avc: denied { create } for pid=21558 comm="syz.5.6947" name="file7" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=chr_file permissive=1 [ 245.950146][T21565] ref_ctr_offset mismatch. inode: 0xca9 offset: 0x0 ref_ctr_offset(old): 0x0 ref_ctr_offset(new): 0xc080 [ 245.964416][T21550] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 245.985545][ T29] audit: type=1400 audit(1740709860.218:6921): avc: denied { bind } for pid=21566 comm="syz.1.6939" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 246.006019][ T29] audit: type=1400 audit(1740709860.218:6922): avc: denied { setopt } for pid=21566 comm="syz.1.6939" lport=135 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 246.026705][ T29] audit: type=1400 audit(1740709860.218:6923): avc: denied { connect } for pid=21566 comm="syz.1.6939" lport=135 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 246.083027][T21550] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 246.097989][ T29] audit: type=1400 audit(1740709860.328:6924): avc: denied { mounton } for pid=21571 comm="syz.0.6943" path="/626/file0" dev="tmpfs" ino=3252 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 246.181179][T21586] loop1: detected capacity change from 0 to 164 [ 246.189157][ T29] audit: type=1400 audit(1740709860.418:6925): avc: denied { mount } for pid=21585 comm="syz.1.6950" name="/" dev="loop1" ino=1792 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:iso9660_t tclass=filesystem permissive=1 [ 246.190627][T21586] syz.1.6950: attempt to access beyond end of device [ 246.190627][T21586] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 246.212377][ T29] audit: type=1400 audit(1740709860.418:6926): avc: denied { execute } for pid=21585 comm="syz.1.6950" dev="tmpfs" ino=351 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 246.228768][T21586] syz.1.6950: attempt to access beyond end of device [ 246.228768][T21586] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 246.270999][T21550] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.283406][T21550] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.294838][T21550] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.306125][T21550] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.343784][T21592] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6953'. [ 246.518576][T21615] netlink: 'syz.9.6973': attribute type 1 has an invalid length. [ 246.526447][T21615] netlink: 16 bytes leftover after parsing attributes in process `syz.9.6973'. [ 246.567396][T21622] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 246.606230][T21622] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 246.680982][T21622] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 246.736656][T21622] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 246.790301][T21622] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.801523][T21622] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.812392][T21622] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 246.823343][T21622] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 247.141095][T21665] netlink: 132 bytes leftover after parsing attributes in process `syz.1.6985'. [ 247.498964][T21694] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=21694 comm=syz.5.6997 [ 247.511926][T21694] netlink: 'syz.5.6997': attribute type 1 has an invalid length. [ 247.524849][T21694] 8021q: adding VLAN 0 to HW filter on device bond6 [ 247.538519][T21694] bond6: (slave ip6gretap1): making interface the new active one [ 247.547281][T21694] bond6: (slave ip6gretap1): Enslaving as an active interface with an up link [ 247.606819][T21702] SELinux: failed to load policy [ 247.889289][T21733] loop5: detected capacity change from 0 to 164 [ 247.896782][T21733] Unable to read rock-ridge attributes [ 247.910525][T21733] Unable to read rock-ridge attributes [ 247.914073][T21734] SELinux: failed to load policy [ 247.960128][T21739] IPVS: Error connecting to the multicast addr [ 247.985474][T21745] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7019'. [ 247.987049][T21744] loop4: detected capacity change from 0 to 164 [ 248.017464][T21744] syz.4.7020: attempt to access beyond end of device [ 248.017464][T21744] loop4: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 248.034998][T21744] syz.4.7020: attempt to access beyond end of device [ 248.034998][T21744] loop4: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 248.186472][T21763] SELinux: failed to load policy [ 248.256536][T21778] loop9: detected capacity change from 0 to 164 [ 248.280301][T21778] syz.9.7035: attempt to access beyond end of device [ 248.280301][T21778] loop9: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 248.300323][T21778] syz.9.7035: attempt to access beyond end of device [ 248.300323][T21778] loop9: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 248.355150][T21789] loop9: detected capacity change from 0 to 1024 [ 248.361861][T21789] EXT4-fs: Ignoring removed orlov option [ 248.367627][T21789] EXT4-fs: Ignoring removed nomblk_io_submit option [ 248.651174][T21823] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7054'. [ 248.920230][T21841] netlink: 4 bytes leftover after parsing attributes in process `syz.9.7060'. [ 249.117209][T21863] netlink: 96 bytes leftover after parsing attributes in process `syz.5.7082'. [ 249.161648][T21871] SELinux: policydb version 0 does not match my version range 15-34 [ 249.180579][T21871] SELinux: failed to load policy [ 249.387491][T21899] bridge2: entered promiscuous mode [ 249.437617][T21902] netlink: 'syz.5.7089': attribute type 7 has an invalid length. [ 249.445433][T21902] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7089'. [ 249.553875][T21910] SELinux: policydb version 0 does not match my version range 15-34 [ 249.572052][T21910] SELinux: failed to load policy [ 249.601501][T21916] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7095'. [ 249.613533][T21916] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7095'. [ 249.654730][T21920] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=49 sclass=netlink_audit_socket pid=21920 comm=syz.0.7097 [ 249.860633][T21939] loop1: detected capacity change from 0 to 1024 [ 249.867633][T21941] netlink: 4 bytes leftover after parsing attributes in process `syz.9.7107'. [ 249.888090][T21939] EXT4-fs: Ignoring removed orlov option [ 249.893869][T21939] EXT4-fs: Ignoring removed nomblk_io_submit option [ 249.903480][T21941] netlink: 4 bytes leftover after parsing attributes in process `syz.9.7107'. [ 249.948390][T21939] EXT4-fs mount: 22 callbacks suppressed [ 249.948408][T21939] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 250.077568][T21952] loop4: detected capacity change from 0 to 1024 [ 250.092987][T18298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.123471][T21952] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a040c018, mo2=0002] [ 250.141709][T21956] loop1: detected capacity change from 0 to 4096 [ 250.146805][T21952] System zones: 0-1, 3-12 [ 250.156629][T21952] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 250.183108][T21956] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 250.206548][T21965] netlink: 4 bytes leftover after parsing attributes in process `syz.9.7116'. [ 250.220116][T21952] EXT4-fs error (device loop4): ext4_expand_extra_isize_ea:2793: inode #12: comm syz.4.7110: corrupted in-inode xattr: bad magic number in in-inode xattr [ 250.270064][T18298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.287932][T18843] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.463816][T21986] IPVS: Error connecting to the multicast addr [ 250.480915][T21988] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7126'. [ 250.505931][T21990] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7127'. [ 250.606182][T21994] bond1: entered promiscuous mode [ 250.611318][T21994] bond1: entered allmulticast mode [ 250.623655][T21994] 8021q: adding VLAN 0 to HW filter on device bond1 [ 250.633944][T21994] bond1 (unregistering): Released all slaves [ 250.871557][ T29] kauditd_printk_skb: 185 callbacks suppressed [ 250.871573][ T29] audit: type=1326 audit(1740709865.098:7112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22014 comm="syz.9.7138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 250.908789][ T29] audit: type=1326 audit(1740709865.138:7113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22014 comm="syz.9.7138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 250.932531][ T29] audit: type=1326 audit(1740709865.138:7114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22014 comm="syz.9.7138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 250.956031][ T29] audit: type=1326 audit(1740709865.138:7115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22014 comm="syz.9.7138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 250.979578][ T29] audit: type=1326 audit(1740709865.138:7116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22014 comm="syz.9.7138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 251.003050][ T29] audit: type=1326 audit(1740709865.138:7117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22014 comm="syz.9.7138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 251.026526][ T29] audit: type=1326 audit(1740709865.138:7118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22014 comm="syz.9.7138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 251.049996][ T29] audit: type=1326 audit(1740709865.138:7119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22014 comm="syz.9.7138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 251.073481][ T29] audit: type=1326 audit(1740709865.138:7120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22014 comm="syz.9.7138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 251.096871][ T29] audit: type=1326 audit(1740709865.138:7121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22014 comm="syz.9.7138" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc7e2fd169 code=0x7ffc0000 [ 251.200980][T22030] netlink: 'syz.9.7144': attribute type 3 has an invalid length. [ 251.588646][T22071] net_ratelimit: 50 callbacks suppressed [ 251.588663][T22071] batadv0: mtu less than device minimum [ 251.600307][T22071] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0) [ 251.610902][T22071] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0) [ 251.621313][T22071] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0) [ 251.631773][T22071] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0) [ 251.642457][T22071] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0) [ 251.653076][T22071] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0) [ 251.663439][T22071] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0) [ 251.674166][T22071] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0) [ 251.684628][T22071] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (0) [ 251.711458][T22056] IPVS: You probably need to specify IP address on multicast interface. [ 251.720222][T22056] IPVS: Error connecting to the multicast addr [ 251.754981][T22080] pimreg: entered allmulticast mode [ 251.797018][T22080] pimreg: left allmulticast mode [ 251.950564][T22106] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 251.984995][T22106] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.074778][T22106] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.146036][T22106] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.202750][T22106] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.220129][T22106] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.232029][T22106] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.274948][T22124] Cannot find add_set index 0 as target [ 252.296474][T22106] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.394369][T22134] loop5: detected capacity change from 0 to 128 [ 252.413294][T22134] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 252.429183][T22134] ext4 filesystem being mounted at /1249/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 252.454695][T22140] bond3: entered promiscuous mode [ 252.459807][T22140] bond3: entered allmulticast mode [ 252.466739][ T5451] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 252.473378][T22140] 8021q: adding VLAN 0 to HW filter on device bond3 [ 252.488604][T22140] bond3 (unregistering): Released all slaves [ 252.721001][T22174] netlink: 'syz.4.7209': attribute type 3 has an invalid length. [ 253.164215][ T35] Process accounting resumed [ 253.241014][T22229] IPv6: Can't replace route, no match found [ 253.401896][ T35] Process accounting resumed [ 253.809414][T22270] loop1: detected capacity change from 0 to 128 [ 253.827228][T22270] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 253.839643][T22270] ext4 filesystem being mounted at /336/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 253.867273][T18298] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 253.912215][T22282] netlink: 'syz.9.7261': attribute type 1 has an invalid length. [ 254.024282][T22297] rdma_op ffff8881290d3d80 conn xmit_rdma 0000000000000000 [ 254.118521][T22302] __nla_validate_parse: 6 callbacks suppressed [ 254.118539][T22302] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7270'. [ 254.133709][T22302] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7270'. [ 254.146240][T22302] gtp0: entered promiscuous mode [ 254.151266][T22302] gtp0: entered allmulticast mode [ 254.234644][T22317] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 254.243338][T22317] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 254.616731][T22349] netlink: 268 bytes leftover after parsing attributes in process `syz.4.7291'. [ 254.976128][T22378] netlink: 8 bytes leftover after parsing attributes in process `syz.9.7303'. [ 254.985204][T22378] netlink: 16 bytes leftover after parsing attributes in process `syz.9.7303'. [ 255.009115][T22378] gtp0: entered promiscuous mode [ 255.014136][T22378] gtp0: entered allmulticast mode [ 255.150005][T22390] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=22390 comm=syz.5.7309 [ 255.250131][T22402] netlink: 268 bytes leftover after parsing attributes in process `syz.9.7315'. [ 255.339715][T22410] netlink: 36 bytes leftover after parsing attributes in process `syz.5.7319'. [ 255.348872][T22410] netlink: 16 bytes leftover after parsing attributes in process `syz.5.7319'. [ 255.357962][T22410] netlink: 36 bytes leftover after parsing attributes in process `syz.5.7319'. [ 255.386973][T22413] loop9: detected capacity change from 0 to 128 [ 255.419261][T22410] netlink: 36 bytes leftover after parsing attributes in process `syz.5.7319'. [ 255.451537][T22413] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 255.506826][T22413] ext4 filesystem being mounted at /706/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 256.262037][T14317] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 256.271078][ T3363] page_pool_release_retry() stalled pool shutdown: id 99, 1 inflight 60 sec [ 256.380758][ T29] kauditd_printk_skb: 122 callbacks suppressed [ 256.380774][ T29] audit: type=1400 audit(1740709870.608:7244): avc: denied { append } for pid=22447 comm="syz.1.7344" name="snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 256.413666][T22448] random: crng reseeded on system resumption [ 256.475270][ T29] audit: type=1400 audit(1740709870.648:7245): avc: denied { open } for pid=22447 comm="syz.1.7344" path="/dev/snapshot" dev="devtmpfs" ino=90 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:acpi_bios_t tclass=chr_file permissive=1 [ 256.502195][ T29] audit: type=1400 audit(1740709870.728:7246): avc: denied { connect } for pid=22458 comm="syz.0.7338" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 256.521815][ T29] audit: type=1400 audit(1740709870.728:7247): avc: denied { read } for pid=22458 comm="syz.0.7338" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 256.541324][ T29] audit: type=1326 audit(1740709870.748:7248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22447 comm="syz.1.7344" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb5f93ad169 code=0x0 [ 256.599668][T22466] bridge0: left promiscuous mode [ 256.604670][T22466] bridge0: left allmulticast mode [ 256.610811][T22466] bond0: left promiscuous mode [ 256.615646][T22466] bond_slave_0: left promiscuous mode [ 256.621963][T22466] 8021q: adding VLAN 0 to HW filter on device bond0 [ 256.636865][T22466] net_ratelimit: 10 callbacks suppressed [ 256.636875][T22466] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 256.707951][ T29] audit: type=1326 audit(1740709870.938:7249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22477 comm="syz.1.7348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5f93ad169 code=0x7ffc0000 [ 256.731616][ T29] audit: type=1326 audit(1740709870.938:7250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22477 comm="syz.1.7348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5f93ad169 code=0x7ffc0000 [ 256.755216][ T29] audit: type=1326 audit(1740709870.938:7251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22477 comm="syz.1.7348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fb5f93ad169 code=0x7ffc0000 [ 256.778880][ T29] audit: type=1326 audit(1740709870.938:7252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22477 comm="syz.1.7348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb5f93ad169 code=0x7ffc0000 [ 256.802733][ T29] audit: type=1326 audit(1740709870.938:7253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22477 comm="syz.1.7348" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7fb5f93ad169 code=0x7ffc0000 [ 256.852472][T22481] vlan2: entered allmulticast mode [ 256.858154][T22481] bond0: entered allmulticast mode [ 256.863301][T22481] bond_slave_0: entered allmulticast mode [ 256.869186][T22481] bond_slave_1: entered allmulticast mode [ 256.880055][T22481] bond0: left allmulticast mode [ 256.885020][T22481] bond_slave_0: left allmulticast mode [ 256.890554][T22481] bond_slave_1: left allmulticast mode [ 256.969764][T22498] loop1: detected capacity change from 0 to 512 [ 256.978400][T22498] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 257.006782][T22504] SELinux: security_context_str_to_sid (u) failed with errno=-22 [ 257.019682][T22498] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 257.033218][T22498] ext4 filesystem being mounted at /358/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 257.073202][T18298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 257.195249][T22529] loop9: detected capacity change from 0 to 512 [ 257.196690][T22527] vlan1: entered allmulticast mode [ 257.216593][T22527] bond0: entered allmulticast mode [ 257.216760][T22529] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 257.240475][T22529] ext4 filesystem being mounted at /708/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 257.253677][T22527] bond0: left allmulticast mode [ 257.293049][T22541] random: crng reseeded on system resumption [ 257.337682][T14317] EXT4-fs error (device loop9): ext4_readdir:261: inode #12: block 32: comm syz-executor: path /708/bus/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 257.495482][ C1] ================================================================== [ 257.503584][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 257.510271][ C1] [ 257.512591][ C1] read-write to 0xffff88811d4d4f68 of 8 bytes by interrupt on cpu 0: [ 257.520657][ C1] can_receive+0x62/0x1f0 [ 257.524990][ C1] canfd_rcv+0xe7/0x180 [ 257.529155][ C1] __netif_receive_skb+0x123/0x280 [ 257.534272][ C1] process_backlog+0x22e/0x440 [ 257.539062][ C1] __napi_poll+0x63/0x3c0 [ 257.543419][ C1] net_rx_action+0x3a1/0x7f0 [ 257.548022][ C1] handle_softirqs+0xbf/0x280 [ 257.552713][ C1] do_softirq+0x5e/0x90 [ 257.556874][ C1] __local_bh_enable_ip+0x6e/0x70 [ 257.561904][ C1] netif_rx+0x83/0x240 [ 257.565977][ C1] can_send+0x586/0x6d0 [ 257.570136][ C1] bcm_can_tx+0x314/0x420 [ 257.574481][ C1] bcm_tx_setup+0x911/0xd30 [ 257.578998][ C1] bcm_sendmsg+0x38b/0x470 [ 257.583443][ C1] __sock_sendmsg+0x140/0x180 [ 257.588138][ C1] ____sys_sendmsg+0x326/0x4b0 [ 257.592916][ C1] __sys_sendmsg+0x19d/0x230 [ 257.597516][ C1] __x64_sys_sendmsg+0x46/0x50 [ 257.602282][ C1] x64_sys_call+0x2734/0x2dc0 [ 257.606971][ C1] do_syscall_64+0xc9/0x1c0 [ 257.611542][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 257.617451][ C1] [ 257.619775][ C1] read-write to 0xffff88811d4d4f68 of 8 bytes by interrupt on cpu 1: [ 257.627838][ C1] can_receive+0x62/0x1f0 [ 257.632189][ C1] canfd_rcv+0xe7/0x180 [ 257.636348][ C1] __netif_receive_skb+0x123/0x280 [ 257.641472][ C1] process_backlog+0x22e/0x440 [ 257.646266][ C1] __napi_poll+0x63/0x3c0 [ 257.650605][ C1] net_rx_action+0x3a1/0x7f0 [ 257.655208][ C1] handle_softirqs+0xbf/0x280 [ 257.659886][ C1] do_softirq+0x5e/0x90 [ 257.664047][ C1] __local_bh_enable_ip+0x6e/0x70 [ 257.669083][ C1] _raw_read_unlock_bh+0x1b/0x20 [ 257.674036][ C1] ipv6_get_lladdr+0x116/0x150 [ 257.678808][ C1] mld_newpack+0x1df/0x500 [ 257.683243][ C1] add_grec+0xa07/0xbd0 [ 257.687400][ C1] mld_ifc_work+0x4cc/0x7e0 [ 257.691912][ C1] process_scheduled_works+0x4db/0xa20 [ 257.697377][ C1] worker_thread+0x51d/0x6f0 [ 257.701974][ C1] kthread+0x4ae/0x520 [ 257.706048][ C1] ret_from_fork+0x4b/0x60 [ 257.710470][ C1] ret_from_fork_asm+0x1a/0x30 [ 257.715261][ C1] [ 257.717584][ C1] value changed: 0x000000000000120d -> 0x000000000000120e [ 257.724687][ C1] [ 257.727005][ C1] Reported by Kernel Concurrency Sanitizer on: [ 257.733159][ C1] CPU: 1 UID: 0 PID: 3363 Comm: kworker/1:2 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 257.743921][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 257.753979][ C1] Workqueue: mld mld_ifc_work [ 257.758673][ C1] ================================================================== [ 257.773306][ C0] ================================================================== [ 257.781400][ C0] BUG: KCSAN: data-race in can_send / can_send [ 257.787569][ C0] [ 257.789894][ C0] read-write to 0xffff88811d4d4f70 of 8 bytes by interrupt on cpu 1: [ 257.797957][ C0] can_send+0x5b6/0x6d0 [ 257.802132][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 257.806826][ C0] can_rcv_filter+0xbf/0x4c0 [ 257.811420][ C0] can_receive+0x182/0x1f0 [ 257.815842][ C0] canfd_rcv+0xe7/0x180 [ 257.820003][ C0] __netif_receive_skb+0x123/0x280 [ 257.825125][ C0] process_backlog+0x22e/0x440 [ 257.829895][ C0] __napi_poll+0x63/0x3c0 [ 257.834263][ C0] net_rx_action+0x3a1/0x7f0 [ 257.838874][ C0] handle_softirqs+0xbf/0x280 [ 257.843560][ C0] do_softirq+0x5e/0x90 [ 257.847728][ C0] __local_bh_enable_ip+0x6e/0x70 [ 257.852756][ C0] ip6t_do_table+0xadd/0xbb0 [ 257.857360][ C0] nf_hook_slow+0x86/0x1b0 [ 257.861788][ C0] mld_sendpack+0x689/0x6d0 [ 257.866302][ C0] mld_ifc_work+0x51a/0x7e0 [ 257.870812][ C0] process_scheduled_works+0x4db/0xa20 [ 257.876275][ C0] worker_thread+0x51d/0x6f0 [ 257.880868][ C0] kthread+0x4ae/0x520 [ 257.884946][ C0] ret_from_fork+0x4b/0x60 [ 257.889372][ C0] ret_from_fork_asm+0x1a/0x30 [ 257.894178][ C0] [ 257.896499][ C0] read-write to 0xffff88811d4d4f70 of 8 bytes by interrupt on cpu 0: [ 257.904563][ C0] can_send+0x5b6/0x6d0 [ 257.908736][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 257.913434][ C0] can_rcv_filter+0xbf/0x4c0 [ 257.918035][ C0] can_receive+0x182/0x1f0 [ 257.922460][ C0] canfd_rcv+0xe7/0x180 [ 257.926625][ C0] __netif_receive_skb+0x123/0x280 [ 257.931741][ C0] process_backlog+0x22e/0x440 [ 257.936511][ C0] __napi_poll+0x63/0x3c0 [ 257.940854][ C0] net_rx_action+0x3a1/0x7f0 [ 257.945466][ C0] handle_softirqs+0xbf/0x280 [ 257.950146][ C0] do_softirq+0x5e/0x90 [ 257.954321][ C0] __local_bh_enable_ip+0x6e/0x70 [ 257.959436][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 257.964382][ C0] batadv_nc_purge_paths+0x220/0x270 [ 257.969686][ C0] batadv_nc_worker+0x402/0xad0 [ 257.974550][ C0] process_scheduled_works+0x4db/0xa20 [ 257.980017][ C0] worker_thread+0x51d/0x6f0 [ 257.984612][ C0] kthread+0x4ae/0x520 [ 257.988708][ C0] ret_from_fork+0x4b/0x60 [ 257.993145][ C0] ret_from_fork_asm+0x1a/0x30 [ 257.997945][ C0] [ 258.000296][ C0] value changed: 0x0000000000006676 -> 0x0000000000006678 [ 258.007412][ C0] [ 258.009736][ C0] Reported by Kernel Concurrency Sanitizer on: [ 258.015885][ C0] CPU: 0 UID: 0 PID: 8048 Comm: kworker/u8:37 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 258.026817][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 258.036883][ C0] Workqueue: bat_events batadv_nc_worker [ 258.042539][ C0] ================================================================== [ 258.051659][ C0] ================================================================== [ 258.059744][ C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv [ 258.066967][ C0] [ 258.069286][ C0] read-write to 0xffff888113288690 of 4 bytes by interrupt on cpu 1: [ 258.077357][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 258.082058][ C0] can_rcv_filter+0xbf/0x4c0 [ 258.086654][ C0] can_receive+0x182/0x1f0 [ 258.091067][ C0] canfd_rcv+0xe7/0x180 [ 258.095226][ C0] __netif_receive_skb+0x123/0x280 [ 258.100360][ C0] process_backlog+0x22e/0x440 [ 258.105147][ C0] __napi_poll+0x63/0x3c0 [ 258.109487][ C0] net_rx_action+0x3a1/0x7f0 [ 258.114092][ C0] handle_softirqs+0xbf/0x280 [ 258.118784][ C0] run_ksoftirqd+0x1c/0x30 [ 258.123222][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 258.128179][ C0] kthread+0x4ae/0x520 [ 258.132269][ C0] ret_from_fork+0x4b/0x60 [ 258.136699][ C0] ret_from_fork_asm+0x1a/0x30 [ 258.141475][ C0] [ 258.143795][ C0] read-write to 0xffff888113288690 of 4 bytes by interrupt on cpu 0: [ 258.151865][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 258.156560][ C0] can_rcv_filter+0xbf/0x4c0 [ 258.161155][ C0] can_receive+0x182/0x1f0 [ 258.165575][ C0] canfd_rcv+0xe7/0x180 [ 258.169901][ C0] __netif_receive_skb+0x123/0x280 [ 258.175018][ C0] process_backlog+0x22e/0x440 [ 258.179779][ C0] __napi_poll+0x63/0x3c0 [ 258.184111][ C0] net_rx_action+0x3a1/0x7f0 [ 258.188709][ C0] handle_softirqs+0xbf/0x280 [ 258.193388][ C0] do_softirq+0x5e/0x90 [ 258.197546][ C0] __local_bh_enable_ip+0x6e/0x70 [ 258.202570][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 258.207505][ C0] batadv_nc_purge_paths+0x220/0x270 [ 258.212808][ C0] batadv_nc_worker+0x402/0xad0 [ 258.217668][ C0] process_scheduled_works+0x4db/0xa20 [ 258.223124][ C0] worker_thread+0x51d/0x6f0 [ 258.227707][ C0] kthread+0x4ae/0x520 [ 258.231772][ C0] ret_from_fork+0x4b/0x60 [ 258.236186][ C0] ret_from_fork_asm+0x1a/0x30 [ 258.240956][ C0] [ 258.243273][ C0] value changed: 0x00008486 -> 0x00008487 [ 258.248981][ C0] [ 258.251297][ C0] Reported by Kernel Concurrency Sanitizer on: [ 258.257434][ C0] CPU: 0 UID: 0 PID: 8048 Comm: kworker/u8:37 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 258.268367][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 258.278426][ C0] Workqueue: bat_events batadv_nc_worker [ 258.284079][ C0] ================================================================== [ 258.303932][ C1] ================================================================== [ 258.312027][ C1] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter [ 258.319242][ C1] [ 258.321567][ C1] read-write to 0xffff8881012cb5b8 of 8 bytes by interrupt on cpu 0: [ 258.329637][ C1] can_rcv_filter+0xd1/0x4c0 [ 258.334239][ C1] can_receive+0x182/0x1f0 [ 258.338674][ C1] canfd_rcv+0xe7/0x180 [ 258.342841][ C1] __netif_receive_skb+0x123/0x280 [ 258.347984][ C1] process_backlog+0x22e/0x440 [ 258.352772][ C1] __napi_poll+0x63/0x3c0 [ 258.357111][ C1] net_rx_action+0x3a1/0x7f0 [ 258.361719][ C1] handle_softirqs+0xbf/0x280 [ 258.366401][ C1] do_softirq+0x5e/0x90 [ 258.370559][ C1] __local_bh_enable_ip+0x6e/0x70 [ 258.375589][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 258.380528][ C1] batadv_nc_purge_paths+0x220/0x270 [ 258.385834][ C1] batadv_nc_worker+0x402/0xad0 [ 258.390698][ C1] process_scheduled_works+0x4db/0xa20 [ 258.396164][ C1] worker_thread+0x51d/0x6f0 [ 258.400757][ C1] kthread+0x4ae/0x520 [ 258.404837][ C1] ret_from_fork+0x4b/0x60 [ 258.409263][ C1] ret_from_fork_asm+0x1a/0x30 [ 258.414043][ C1] [ 258.416365][ C1] read-write to 0xffff8881012cb5b8 of 8 bytes by interrupt on cpu 1: [ 258.424427][ C1] can_rcv_filter+0xd1/0x4c0 [ 258.429039][ C1] can_receive+0x182/0x1f0 [ 258.433488][ C1] canfd_rcv+0xe7/0x180 [ 258.437654][ C1] __netif_receive_skb+0x123/0x280 [ 258.442766][ C1] process_backlog+0x22e/0x440 [ 258.447535][ C1] __napi_poll+0x63/0x3c0 [ 258.451861][ C1] net_rx_action+0x3a1/0x7f0 [ 258.456453][ C1] handle_softirqs+0xbf/0x280 [ 258.461132][ C1] run_ksoftirqd+0x1c/0x30 [ 258.465549][ C1] smpboot_thread_fn+0x31c/0x4c0 [ 258.470487][ C1] kthread+0x4ae/0x520 [ 258.474565][ C1] ret_from_fork+0x4b/0x60 [ 258.478998][ C1] ret_from_fork_asm+0x1a/0x30 [ 258.483775][ C1] [ 258.486093][ C1] value changed: 0x000000000000a279 -> 0x000000000000a27a [ 258.493197][ C1] [ 258.495510][ C1] Reported by Kernel Concurrency Sanitizer on: [ 258.501646][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 258.512223][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 258.522275][ C1] ================================================================== [ 258.540067][ C1] ================================================================== [ 258.548169][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 258.554869][ C1] [ 258.557189][ C1] read-write to 0xffff88811d4d4f18 of 8 bytes by interrupt on cpu 0: [ 258.565261][ C1] can_receive+0x1b6/0x1f0 [ 258.569677][ C1] canfd_rcv+0xe7/0x180 [ 258.573840][ C1] __netif_receive_skb+0x123/0x280 [ 258.578968][ C1] process_backlog+0x22e/0x440 [ 258.583752][ C1] __napi_poll+0x63/0x3c0 [ 258.588108][ C1] net_rx_action+0x3a1/0x7f0 [ 258.592736][ C1] handle_softirqs+0xbf/0x280 [ 258.597422][ C1] do_softirq+0x5e/0x90 [ 258.601583][ C1] __local_bh_enable_ip+0x6e/0x70 [ 258.606618][ C1] _raw_write_unlock_bh+0x1f/0x30 [ 258.611647][ C1] neigh_periodic_work+0x605/0x6b0 [ 258.616768][ C1] process_scheduled_works+0x4db/0xa20 [ 258.622237][ C1] worker_thread+0x51d/0x6f0 [ 258.626834][ C1] kthread+0x4ae/0x520 [ 258.630916][ C1] ret_from_fork+0x4b/0x60 [ 258.635350][ C1] ret_from_fork_asm+0x1a/0x30 [ 258.640148][ C1] [ 258.642471][ C1] read-write to 0xffff88811d4d4f18 of 8 bytes by interrupt on cpu 1: [ 258.650539][ C1] can_receive+0x1b6/0x1f0 [ 258.654964][ C1] canfd_rcv+0xe7/0x180 [ 258.659139][ C1] __netif_receive_skb+0x123/0x280 [ 258.664262][ C1] process_backlog+0x22e/0x440 [ 258.669042][ C1] __napi_poll+0x63/0x3c0 [ 258.673385][ C1] net_rx_action+0x3a1/0x7f0 [ 258.677990][ C1] handle_softirqs+0xbf/0x280 [ 258.682682][ C1] do_softirq+0x5e/0x90 [ 258.686839][ C1] __local_bh_enable_ip+0x6e/0x70 [ 258.691872][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 258.696812][ C1] lock_sock_nested+0x10f/0x140 [ 258.701695][ C1] __inet_bind+0x2c5/0x5c0 [ 258.706124][ C1] inet_bind+0x96/0xb0 [ 258.710200][ C1] kernel_bind+0x96/0xe0 [ 258.714458][ C1] rds_tcp_conn_path_connect+0x2f7/0x440 [ 258.720109][ C1] rds_connect_worker+0x12c/0x1b0 [ 258.725158][ C1] process_scheduled_works+0x4db/0xa20 [ 258.730626][ C1] worker_thread+0x51d/0x6f0 [ 258.735252][ C1] kthread+0x4ae/0x520 [ 258.739328][ C1] ret_from_fork+0x4b/0x60 [ 258.743754][ C1] ret_from_fork_asm+0x1a/0x30 [ 258.748538][ C1] [ 258.750861][ C1] value changed: 0x000000000000c26e -> 0x000000000000c26f [ 258.757976][ C1] [ 258.760300][ C1] Reported by Kernel Concurrency Sanitizer on: [ 258.766446][ C1] CPU: 1 UID: 0 PID: 8017 Comm: kworker/u8:15 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 258.777382][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 258.787440][ C1] Workqueue: krdsd rds_connect_worker [ 258.792820][ C1] ================================================================== [ 258.801901][ C1] ================================================================== [ 258.809974][ C1] BUG: KCSAN: data-race in can_send / can_send [ 258.816139][ C1] [ 258.818467][ C1] read-write to 0xffff88811d4d4f10 of 8 bytes by interrupt on cpu 0: [ 258.826534][ C1] can_send+0x5a2/0x6d0 [ 258.830688][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 258.835378][ C1] can_rcv_filter+0xbf/0x4c0 [ 258.839977][ C1] can_receive+0x182/0x1f0 [ 258.844405][ C1] canfd_rcv+0xe7/0x180 [ 258.848576][ C1] __netif_receive_skb+0x123/0x280 [ 258.853708][ C1] process_backlog+0x22e/0x440 [ 258.858490][ C1] __napi_poll+0x63/0x3c0 [ 258.862838][ C1] net_rx_action+0x3a1/0x7f0 [ 258.867439][ C1] handle_softirqs+0xbf/0x280 [ 258.872142][ C1] do_softirq+0x5e/0x90 [ 258.876327][ C1] __local_bh_enable_ip+0x6e/0x70 [ 258.881359][ C1] _raw_write_unlock_bh+0x1f/0x30 [ 258.886397][ C1] neigh_periodic_work+0x605/0x6b0 [ 258.891528][ C1] process_scheduled_works+0x4db/0xa20 [ 258.896994][ C1] worker_thread+0x51d/0x6f0 [ 258.901587][ C1] kthread+0x4ae/0x520 [ 258.905673][ C1] ret_from_fork+0x4b/0x60 [ 258.910097][ C1] ret_from_fork_asm+0x1a/0x30 [ 258.914868][ C1] [ 258.917191][ C1] read-write to 0xffff88811d4d4f10 of 8 bytes by interrupt on cpu 1: [ 258.925255][ C1] can_send+0x5a2/0x6d0 [ 258.929417][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 258.934112][ C1] can_rcv_filter+0xbf/0x4c0 [ 258.938711][ C1] can_receive+0x182/0x1f0 [ 258.943141][ C1] canfd_rcv+0xe7/0x180 [ 258.947302][ C1] __netif_receive_skb+0x123/0x280 [ 258.952424][ C1] process_backlog+0x22e/0x440 [ 258.957200][ C1] __napi_poll+0x63/0x3c0 [ 258.961534][ C1] net_rx_action+0x3a1/0x7f0 [ 258.966162][ C1] handle_softirqs+0xbf/0x280 [ 258.970858][ C1] do_softirq+0x5e/0x90 [ 258.975014][ C1] __local_bh_enable_ip+0x6e/0x70 [ 258.980067][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 258.985037][ C1] inet_csk_get_port+0xe42/0x1070 [ 258.990082][ C1] __inet_bind+0x469/0x5c0 [ 258.994510][ C1] inet_bind+0x96/0xb0 [ 258.998595][ C1] kernel_bind+0x96/0xe0 [ 259.002861][ C1] rds_tcp_conn_path_connect+0x2f7/0x440 [ 259.008519][ C1] rds_connect_worker+0x12c/0x1b0 [ 259.013554][ C1] process_scheduled_works+0x4db/0xa20 [ 259.019042][ C1] worker_thread+0x51d/0x6f0 [ 259.023655][ C1] kthread+0x4ae/0x520 [ 259.027742][ C1] ret_from_fork+0x4b/0x60 [ 259.032172][ C1] ret_from_fork_asm+0x1a/0x30 [ 259.036949][ C1] [ 259.039271][ C1] value changed: 0x000000000001f840 -> 0x000000000001f842 [ 259.046380][ C1] [ 259.048707][ C1] Reported by Kernel Concurrency Sanitizer on: [ 259.054860][ C1] CPU: 1 UID: 0 PID: 8017 Comm: kworker/u8:15 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 259.065820][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 259.075882][ C1] Workqueue: krdsd rds_connect_worker [ 259.081266][ C1] ================================================================== [ 259.090463][ C0] ================================================================== [ 259.098567][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 259.105267][ C0] [ 259.107595][ C0] read-write to 0xffff88811d4d4f78 of 8 bytes by interrupt on cpu 1: [ 259.115663][ C0] can_receive+0x1ca/0x1f0 [ 259.120110][ C0] canfd_rcv+0xe7/0x180 [ 259.124296][ C0] __netif_receive_skb+0x123/0x280 [ 259.129420][ C0] process_backlog+0x22e/0x440 [ 259.134199][ C0] __napi_poll+0x63/0x3c0 [ 259.138544][ C0] net_rx_action+0x3a1/0x7f0 [ 259.143152][ C0] handle_softirqs+0xbf/0x280 [ 259.147834][ C0] do_softirq+0x5e/0x90 [ 259.152003][ C0] __local_bh_enable_ip+0x6e/0x70 [ 259.157034][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 259.161977][ C0] inet_csk_get_port+0xe42/0x1070 [ 259.167006][ C0] __inet_bind+0x469/0x5c0 [ 259.171426][ C0] inet_bind+0x96/0xb0 [ 259.175497][ C0] kernel_bind+0x96/0xe0 [ 259.179742][ C0] rds_tcp_conn_path_connect+0x2f7/0x440 [ 259.185378][ C0] rds_connect_worker+0x12c/0x1b0 [ 259.190396][ C0] process_scheduled_works+0x4db/0xa20 [ 259.195851][ C0] worker_thread+0x51d/0x6f0 [ 259.200438][ C0] kthread+0x4ae/0x520 [ 259.204510][ C0] ret_from_fork+0x4b/0x60 [ 259.208938][ C0] ret_from_fork_asm+0x1a/0x30 [ 259.213715][ C0] [ 259.216029][ C0] read-write to 0xffff88811d4d4f78 of 8 bytes by interrupt on cpu 0: [ 259.224086][ C0] can_receive+0x1ca/0x1f0 [ 259.228510][ C0] canfd_rcv+0xe7/0x180 [ 259.232667][ C0] __netif_receive_skb+0x123/0x280 [ 259.237781][ C0] process_backlog+0x22e/0x440 [ 259.242552][ C0] __napi_poll+0x63/0x3c0 [ 259.246880][ C0] net_rx_action+0x3a1/0x7f0 [ 259.251468][ C0] handle_softirqs+0xbf/0x280 [ 259.256140][ C0] do_softirq+0x5e/0x90 [ 259.260291][ C0] __local_bh_enable_ip+0x6e/0x70 [ 259.265311][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 259.270239][ C0] lock_sock_nested+0x10f/0x140 [ 259.275090][ C0] sockopt_lock_sock+0x42/0x50 [ 259.279843][ C0] do_ip_getsockopt+0xbf3/0x1270 [ 259.284777][ C0] ip_getsockopt+0x5c/0x170 [ 259.289275][ C0] tcp_getsockopt+0xaa/0xe0 [ 259.293782][ C0] sock_common_getsockopt+0x5b/0x70 [ 259.298992][ C0] do_sock_getsockopt+0x1ca/0x260 [ 259.304029][ C0] __x64_sys_getsockopt+0x18c/0x200 [ 259.309231][ C0] x64_sys_call+0x1288/0x2dc0 [ 259.313910][ C0] do_syscall_64+0xc9/0x1c0 [ 259.318431][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.324336][ C0] [ 259.326652][ C0] value changed: 0x0000000000007bac -> 0x0000000000007bad [ 259.333748][ C0] [ 259.336064][ C0] Reported by Kernel Concurrency Sanitizer on: [ 259.342211][ C0] CPU: 0 UID: 0 PID: 14380 Comm: syz-executor Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 259.353137][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 259.363199][ C0] ================================================================== [ 259.406744][ C1] ================================================================== [ 259.414867][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 259.421555][ C1] [ 259.423965][ C1] read-write to 0xffff88811d4d4f08 of 8 bytes by interrupt on cpu 0: [ 259.432035][ C1] can_receive+0x4e/0x1f0 [ 259.436372][ C1] canfd_rcv+0xe7/0x180 [ 259.440533][ C1] __netif_receive_skb+0x123/0x280 [ 259.445685][ C1] process_backlog+0x22e/0x440 [ 259.450463][ C1] __napi_poll+0x63/0x3c0 [ 259.454806][ C1] net_rx_action+0x3a1/0x7f0 [ 259.459409][ C1] handle_softirqs+0xbf/0x280 [ 259.464096][ C1] do_softirq+0x5e/0x90 [ 259.468267][ C1] __local_bh_enable_ip+0x6e/0x70 [ 259.473311][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 259.478256][ C1] release_sock+0x117/0x150 [ 259.482790][ C1] tcp_close+0x2e/0xd0 [ 259.486864][ C1] inet_release+0xce/0xf0 [ 259.491205][ C1] sock_close+0x68/0x150 [ 259.495456][ C1] __fput+0x2ac/0x640 [ 259.499441][ C1] __fput_sync+0x96/0xc0 [ 259.503682][ C1] __x64_sys_close+0x55/0xe0 [ 259.508285][ C1] x64_sys_call+0x266c/0x2dc0 [ 259.512983][ C1] do_syscall_64+0xc9/0x1c0 [ 259.517496][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 259.523395][ C1] [ 259.525714][ C1] read-write to 0xffff88811d4d4f08 of 8 bytes by interrupt on cpu 1: [ 259.533774][ C1] can_receive+0x4e/0x1f0 [ 259.538110][ C1] canfd_rcv+0xe7/0x180 [ 259.542287][ C1] __netif_receive_skb+0x123/0x280 [ 259.547436][ C1] process_backlog+0x22e/0x440 [ 259.552251][ C1] __napi_poll+0x63/0x3c0 [ 259.556589][ C1] net_rx_action+0x3a1/0x7f0 [ 259.561188][ C1] handle_softirqs+0xbf/0x280 [ 259.565871][ C1] do_softirq+0x5e/0x90 [ 259.570030][ C1] __local_bh_enable_ip+0x6e/0x70 [ 259.575061][ C1] update_defense_level+0x575/0x5b0 [ 259.580265][ C1] defense_work_handler+0x1f/0x80 [ 259.585296][ C1] process_scheduled_works+0x4db/0xa20 [ 259.590759][ C1] worker_thread+0x51d/0x6f0 [ 259.595353][ C1] kthread+0x4ae/0x520 [ 259.599431][ C1] ret_from_fork+0x4b/0x60 [ 259.603852][ C1] ret_from_fork_asm+0x1a/0x30 [ 259.608634][ C1] [ 259.610958][ C1] value changed: 0x0000000000015429 -> 0x000000000001542a [ 259.618067][ C1] [ 259.620395][ C1] Reported by Kernel Concurrency Sanitizer on: [ 259.626540][ C1] CPU: 1 UID: 0 PID: 3376 Comm: kworker/1:5 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 259.637302][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 259.647358][ C1] Workqueue: events_long defense_work_handler [ 259.653433][ C1] ================================================================== [ 260.630553][ C0] ================================================================== [ 260.638670][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 260.645355][ C0] [ 260.647677][ C0] read-write to 0xffff88811d4d4f68 of 8 bytes by interrupt on cpu 1: [ 260.655738][ C0] can_receive+0x62/0x1f0 [ 260.660075][ C0] canfd_rcv+0xe7/0x180 [ 260.664255][ C0] __netif_receive_skb+0x123/0x280 [ 260.669398][ C0] process_backlog+0x22e/0x440 [ 260.674169][ C0] __napi_poll+0x63/0x3c0 [ 260.678513][ C0] net_rx_action+0x3a1/0x7f0 [ 260.683126][ C0] handle_softirqs+0xbf/0x280 [ 260.687813][ C0] run_ksoftirqd+0x1c/0x30 [ 260.692238][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 260.697193][ C0] kthread+0x4ae/0x520 [ 260.701274][ C0] ret_from_fork+0x4b/0x60 [ 260.705702][ C0] ret_from_fork_asm+0x1a/0x30 [ 260.710479][ C0] [ 260.712799][ C0] read-write to 0xffff88811d4d4f68 of 8 bytes by interrupt on cpu 0: [ 260.720869][ C0] can_receive+0x62/0x1f0 [ 260.725210][ C0] canfd_rcv+0xe7/0x180 [ 260.729372][ C0] __netif_receive_skb+0x123/0x280 [ 260.734498][ C0] process_backlog+0x22e/0x440 [ 260.739274][ C0] __napi_poll+0x63/0x3c0 [ 260.743611][ C0] net_rx_action+0x3a1/0x7f0 [ 260.748217][ C0] handle_softirqs+0xbf/0x280 [ 260.752908][ C0] run_ksoftirqd+0x1c/0x30 [ 260.757337][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 260.762283][ C0] kthread+0x4ae/0x520 [ 260.766375][ C0] ret_from_fork+0x4b/0x60 [ 260.770802][ C0] ret_from_fork_asm+0x1a/0x30 [ 260.775579][ C0] [ 260.777932][ C0] value changed: 0x0000000000002f09 -> 0x0000000000002f0a [ 260.785037][ C0] [ 260.787356][ C0] Reported by Kernel Concurrency Sanitizer on: [ 260.793502][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 260.804091][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 260.814148][ C0] ================================================================== [ 260.827499][ C0] ================================================================== [ 260.835581][ C0] BUG: KCSAN: data-race in can_send / can_send [ 260.841732][ C0] [ 260.844055][ C0] read-write to 0xffff88811d4d4f70 of 8 bytes by interrupt on cpu 1: [ 260.852118][ C0] can_send+0x5b6/0x6d0 [ 260.856273][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 260.860969][ C0] can_rcv_filter+0xbf/0x4c0 [ 260.865578][ C0] can_receive+0x182/0x1f0 [ 260.870001][ C0] canfd_rcv+0xe7/0x180 [ 260.874165][ C0] __netif_receive_skb+0x123/0x280 [ 260.879289][ C0] process_backlog+0x22e/0x440 [ 260.884064][ C0] __napi_poll+0x63/0x3c0 [ 260.888399][ C0] net_rx_action+0x3a1/0x7f0 [ 260.893008][ C0] handle_softirqs+0xbf/0x280 [ 260.897695][ C0] do_softirq+0x5e/0x90 [ 260.901860][ C0] __local_bh_enable_ip+0x6e/0x70 [ 260.906892][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 260.911834][ C0] release_sock+0x117/0x150 [ 260.916357][ C0] tcp_close+0x2e/0xd0 [ 260.920437][ C0] inet_release+0xce/0xf0 [ 260.924785][ C0] sock_close+0x68/0x150 [ 260.929043][ C0] __fput+0x2ac/0x640 [ 260.933046][ C0] __fput_sync+0x96/0xc0 [ 260.937295][ C0] __x64_sys_close+0x55/0xe0 [ 260.941919][ C0] x64_sys_call+0x266c/0x2dc0 [ 260.946607][ C0] do_syscall_64+0xc9/0x1c0 [ 260.951144][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 260.957050][ C0] [ 260.959375][ C0] read-write to 0xffff88811d4d4f70 of 8 bytes by interrupt on cpu 0: [ 260.967436][ C0] can_send+0x5b6/0x6d0 [ 260.971595][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 260.976281][ C0] can_rcv_filter+0xbf/0x4c0 [ 260.980873][ C0] can_receive+0x182/0x1f0 [ 260.985297][ C0] canfd_rcv+0xe7/0x180 [ 260.989454][ C0] __netif_receive_skb+0x123/0x280 [ 260.994571][ C0] process_backlog+0x22e/0x440 [ 260.999359][ C0] __napi_poll+0x63/0x3c0 [ 261.003714][ C0] net_rx_action+0x3a1/0x7f0 [ 261.008331][ C0] handle_softirqs+0xbf/0x280 [ 261.013032][ C0] do_softirq+0x5e/0x90 [ 261.017202][ C0] __local_bh_enable_ip+0x6e/0x70 [ 261.022245][ C0] _raw_write_unlock_bh+0x1f/0x30 [ 261.027283][ C0] neigh_periodic_work+0x605/0x6b0 [ 261.032410][ C0] process_scheduled_works+0x4db/0xa20 [ 261.037873][ C0] worker_thread+0x51d/0x6f0 [ 261.042511][ C0] kthread+0x4ae/0x520 [ 261.046600][ C0] ret_from_fork+0x4b/0x60 [ 261.051041][ C0] ret_from_fork_asm+0x1a/0x30 [ 261.055830][ C0] [ 261.058159][ C0] value changed: 0x000000000000a4d7 -> 0x000000000000a4d9 [ 261.065271][ C0] [ 261.067590][ C0] Reported by Kernel Concurrency Sanitizer on: [ 261.073735][ C0] CPU: 0 UID: 0 PID: 1106 Comm: kworker/0:2 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 261.084513][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 261.094607][ C0] Workqueue: events_power_efficient neigh_periodic_work [ 261.101576][ C0] ================================================================== [ 261.111026][ C0] ================================================================== [ 261.119146][ C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv [ 261.126381][ C0] [ 261.128707][ C0] read-write to 0xffff888113288690 of 4 bytes by interrupt on cpu 1: [ 261.136781][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 261.141474][ C0] can_rcv_filter+0xbf/0x4c0 [ 261.146080][ C0] can_receive+0x182/0x1f0 [ 261.150501][ C0] canfd_rcv+0xe7/0x180 [ 261.154660][ C0] __netif_receive_skb+0x123/0x280 [ 261.159789][ C0] process_backlog+0x22e/0x440 [ 261.164585][ C0] __napi_poll+0x63/0x3c0 [ 261.168924][ C0] net_rx_action+0x3a1/0x7f0 [ 261.173532][ C0] handle_softirqs+0xbf/0x280 [ 261.178223][ C0] do_softirq+0x5e/0x90 [ 261.182397][ C0] __local_bh_enable_ip+0x6e/0x70 [ 261.187428][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 261.192366][ C0] release_sock+0x117/0x150 [ 261.196882][ C0] sockopt_release_sock+0x42/0x50 [ 261.201916][ C0] do_ip_getsockopt+0xd4a/0x1270 [ 261.206863][ C0] ip_getsockopt+0x5c/0x170 [ 261.211377][ C0] tcp_getsockopt+0xaa/0xe0 [ 261.215892][ C0] sock_common_getsockopt+0x5b/0x70 [ 261.221108][ C0] do_sock_getsockopt+0x1ca/0x260 [ 261.226140][ C0] __x64_sys_getsockopt+0x18c/0x200 [ 261.231352][ C0] x64_sys_call+0x1288/0x2dc0 [ 261.236041][ C0] do_syscall_64+0xc9/0x1c0 [ 261.240556][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.246463][ C0] [ 261.248783][ C0] read-write to 0xffff888113288690 of 4 bytes by interrupt on cpu 0: [ 261.256847][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 261.261536][ C0] can_rcv_filter+0xbf/0x4c0 [ 261.266126][ C0] can_receive+0x182/0x1f0 [ 261.270544][ C0] canfd_rcv+0xe7/0x180 [ 261.274704][ C0] __netif_receive_skb+0x123/0x280 [ 261.279828][ C0] process_backlog+0x22e/0x440 [ 261.284598][ C0] __napi_poll+0x63/0x3c0 [ 261.288936][ C0] net_rx_action+0x3a1/0x7f0 [ 261.293547][ C0] handle_softirqs+0xbf/0x280 [ 261.298235][ C0] do_softirq+0x5e/0x90 [ 261.302402][ C0] __local_bh_enable_ip+0x6e/0x70 [ 261.307432][ C0] update_defense_level+0x575/0x5b0 [ 261.312634][ C0] defense_work_handler+0x1f/0x80 [ 261.317659][ C0] process_scheduled_works+0x4db/0xa20 [ 261.323123][ C0] worker_thread+0x51d/0x6f0 [ 261.327718][ C0] kthread+0x4ae/0x520 [ 261.331804][ C0] ret_from_fork+0x4b/0x60 [ 261.336229][ C0] ret_from_fork_asm+0x1a/0x30 [ 261.341005][ C0] [ 261.343325][ C0] value changed: 0x00032e8f -> 0x00032e90 [ 261.349038][ C0] [ 261.351372][ C0] Reported by Kernel Concurrency Sanitizer on: [ 261.357513][ C0] CPU: 0 UID: 0 PID: 3387 Comm: kworker/0:4 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 261.368281][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 261.378349][ C0] Workqueue: events_long defense_work_handler [ 261.384437][ C0] ================================================================== [ 261.448195][ C1] ================================================================== [ 261.456294][ C1] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter [ 261.463501][ C1] [ 261.465823][ C1] read-write to 0xffff8881012cb4c8 of 8 bytes by interrupt on cpu 0: [ 261.473903][ C1] can_rcv_filter+0xd1/0x4c0 [ 261.478515][ C1] can_receive+0x182/0x1f0 [ 261.482942][ C1] canfd_rcv+0xe7/0x180 [ 261.487103][ C1] __netif_receive_skb+0x123/0x280 [ 261.492222][ C1] process_backlog+0x22e/0x440 [ 261.496996][ C1] __napi_poll+0x63/0x3c0 [ 261.501330][ C1] net_rx_action+0x3a1/0x7f0 [ 261.505936][ C1] handle_softirqs+0xbf/0x280 [ 261.510625][ C1] do_softirq+0x5e/0x90 [ 261.514788][ C1] __local_bh_enable_ip+0x6e/0x70 [ 261.519832][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 261.524782][ C1] lock_sock_nested+0x10f/0x140 [ 261.529651][ C1] sockopt_lock_sock+0x42/0x50 [ 261.534426][ C1] do_ip_getsockopt+0xbf3/0x1270 [ 261.539383][ C1] ip_getsockopt+0x5c/0x170 [ 261.543912][ C1] tcp_getsockopt+0xaa/0xe0 [ 261.548435][ C1] sock_common_getsockopt+0x5b/0x70 [ 261.553669][ C1] do_sock_getsockopt+0x1ca/0x260 [ 261.558721][ C1] __x64_sys_getsockopt+0x18c/0x200 [ 261.563941][ C1] x64_sys_call+0x1288/0x2dc0 [ 261.568641][ C1] do_syscall_64+0xc9/0x1c0 [ 261.573172][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 261.579083][ C1] [ 261.581417][ C1] read-write to 0xffff8881012cb4c8 of 8 bytes by interrupt on cpu 1: [ 261.589481][ C1] can_rcv_filter+0xd1/0x4c0 [ 261.594075][ C1] can_receive+0x182/0x1f0 [ 261.598495][ C1] canfd_rcv+0xe7/0x180 [ 261.602664][ C1] __netif_receive_skb+0x123/0x280 [ 261.607778][ C1] process_backlog+0x22e/0x440 [ 261.612541][ C1] __napi_poll+0x63/0x3c0 [ 261.616870][ C1] net_rx_action+0x3a1/0x7f0 [ 261.621485][ C1] handle_softirqs+0xbf/0x280 [ 261.626170][ C1] do_softirq+0x5e/0x90 [ 261.630335][ C1] __local_bh_enable_ip+0x6e/0x70 [ 261.635366][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 261.640311][ C1] batadv_nc_purge_paths+0x220/0x270 [ 261.645621][ C1] batadv_nc_worker+0x402/0xad0 [ 261.650487][ C1] process_scheduled_works+0x4db/0xa20 [ 261.655954][ C1] worker_thread+0x51d/0x6f0 [ 261.660545][ C1] kthread+0x4ae/0x520 [ 261.664625][ C1] ret_from_fork+0x4b/0x60 [ 261.669056][ C1] ret_from_fork_asm+0x1a/0x30 [ 261.673874][ C1] [ 261.676227][ C1] value changed: 0x0000000000039732 -> 0x0000000000039733 [ 261.683333][ C1] [ 261.685652][ C1] Reported by Kernel Concurrency Sanitizer on: [ 261.691794][ C1] CPU: 1 UID: 0 PID: 8048 Comm: kworker/u8:37 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 261.702729][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 261.712784][ C1] Workqueue: bat_events batadv_nc_worker [ 261.718442][ C1] ================================================================== [ 261.763426][ C0] ================================================================== [ 261.771534][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 261.778225][ C0] [ 261.780547][ C0] read-write to 0xffff88811d4d4f18 of 8 bytes by interrupt on cpu 1: [ 261.788614][ C0] can_receive+0x1b6/0x1f0 [ 261.793106][ C0] canfd_rcv+0xe7/0x180 [ 261.797293][ C0] __netif_receive_skb+0x123/0x280 [ 261.802413][ C0] process_backlog+0x22e/0x440 [ 261.807190][ C0] __napi_poll+0x63/0x3c0 [ 261.811530][ C0] net_rx_action+0x3a1/0x7f0 [ 261.816133][ C0] handle_softirqs+0xbf/0x280 [ 261.820822][ C0] do_softirq+0x5e/0x90 [ 261.824995][ C0] __local_bh_enable_ip+0x6e/0x70 [ 261.830022][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 261.834965][ C0] batadv_nc_purge_paths+0x220/0x270 [ 261.840276][ C0] batadv_nc_worker+0x402/0xad0 [ 261.845149][ C0] process_scheduled_works+0x4db/0xa20 [ 261.850609][ C0] worker_thread+0x51d/0x6f0 [ 261.855204][ C0] kthread+0x4ae/0x520 [ 261.859282][ C0] ret_from_fork+0x4b/0x60 [ 261.863710][ C0] ret_from_fork_asm+0x1a/0x30 [ 261.868486][ C0] [ 261.870809][ C0] read-write to 0xffff88811d4d4f18 of 8 bytes by interrupt on cpu 0: [ 261.878880][ C0] can_receive+0x1b6/0x1f0 [ 261.883312][ C0] canfd_rcv+0xe7/0x180 [ 261.887471][ C0] __netif_receive_skb+0x123/0x280 [ 261.892591][ C0] process_backlog+0x22e/0x440 [ 261.897366][ C0] __napi_poll+0x63/0x3c0 [ 261.901707][ C0] net_rx_action+0x3a1/0x7f0 [ 261.906310][ C0] handle_softirqs+0xbf/0x280 [ 261.911000][ C0] do_softirq+0x5e/0x90 [ 261.915163][ C0] __local_bh_enable_ip+0x6e/0x70 [ 261.920198][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 261.925151][ C0] wg_packet_encrypt_worker+0x180/0xb80 [ 261.930709][ C0] process_scheduled_works+0x4db/0xa20 [ 261.936179][ C0] worker_thread+0x51d/0x6f0 [ 261.940785][ C0] kthread+0x4ae/0x520 [ 261.944880][ C0] ret_from_fork+0x4b/0x60 [ 261.949353][ C0] ret_from_fork_asm+0x1a/0x30 [ 261.954142][ C0] [ 261.956461][ C0] value changed: 0x0000000000039f4b -> 0x0000000000039f4c [ 261.963561][ C0] [ 261.965878][ C0] Reported by Kernel Concurrency Sanitizer on: [ 261.972025][ C0] CPU: 0 UID: 0 PID: 6692 Comm: kworker/0:5 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 261.982801][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 261.992868][ C0] Workqueue: wg-crypt-wg0 wg_packet_encrypt_worker [ 261.999395][ C0] ================================================================== [ 262.018041][ C0] ================================================================== [ 262.026133][ C0] BUG: KCSAN: data-race in can_send / can_send [ 262.032300][ C0] [ 262.034618][ C0] read-write to 0xffff88811d4d4f10 of 8 bytes by interrupt on cpu 1: [ 262.042678][ C0] can_send+0x5a2/0x6d0 [ 262.046838][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 262.051530][ C0] can_rcv_filter+0xbf/0x4c0 [ 262.056130][ C0] can_receive+0x182/0x1f0 [ 262.060550][ C0] canfd_rcv+0xe7/0x180 [ 262.064712][ C0] __netif_receive_skb+0x123/0x280 [ 262.069827][ C0] process_backlog+0x22e/0x440 [ 262.074616][ C0] __napi_poll+0x63/0x3c0 [ 262.078960][ C0] net_rx_action+0x3a1/0x7f0 [ 262.083572][ C0] handle_softirqs+0xbf/0x280 [ 262.088260][ C0] run_ksoftirqd+0x1c/0x30 [ 262.092697][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 262.097653][ C0] kthread+0x4ae/0x520 [ 262.101733][ C0] ret_from_fork+0x4b/0x60 [ 262.106165][ C0] ret_from_fork_asm+0x1a/0x30 [ 262.110943][ C0] [ 262.113278][ C0] read-write to 0xffff88811d4d4f10 of 8 bytes by interrupt on cpu 0: [ 262.121353][ C0] can_send+0x5a2/0x6d0 [ 262.125541][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 262.130244][ C0] can_rcv_filter+0xbf/0x4c0 [ 262.134847][ C0] can_receive+0x182/0x1f0 [ 262.139268][ C0] canfd_rcv+0xe7/0x180 [ 262.143444][ C0] __netif_receive_skb+0x123/0x280 [ 262.148572][ C0] process_backlog+0x22e/0x440 [ 262.153363][ C0] __napi_poll+0x63/0x3c0 [ 262.157707][ C0] net_rx_action+0x3a1/0x7f0 [ 262.162314][ C0] handle_softirqs+0xbf/0x280 [ 262.167011][ C0] do_softirq+0x5e/0x90 [ 262.171174][ C0] __local_bh_enable_ip+0x6e/0x70 [ 262.176209][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 262.181158][ C0] lock_sock_nested+0x10f/0x140 [ 262.186027][ C0] tcp_close+0x1b/0xd0 [ 262.190107][ C0] inet_release+0xce/0xf0 [ 262.194451][ C0] inet6_release+0x3e/0x60 [ 262.198895][ C0] sock_close+0x68/0x150 [ 262.203191][ C0] __fput+0x2ac/0x640 [ 262.207183][ C0] __fput_sync+0x96/0xc0 [ 262.211434][ C0] __x64_sys_close+0x55/0xe0 [ 262.216031][ C0] x64_sys_call+0x266c/0x2dc0 [ 262.220730][ C0] do_syscall_64+0xc9/0x1c0 [ 262.225261][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 262.231173][ C0] [ 262.233502][ C0] value changed: 0x000000000007a63e -> 0x000000000007a63f [ 262.240616][ C0] [ 262.242947][ C0] Reported by Kernel Concurrency Sanitizer on: [ 262.249117][ C0] CPU: 0 UID: 0 PID: 14380 Comm: syz-executor Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 262.260055][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 262.270112][ C0] ================================================================== [ 262.293677][ C1] ================================================================== [ 262.301775][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 262.308466][ C1] [ 262.310789][ C1] read-write to 0xffff88811d4d4f78 of 8 bytes by interrupt on cpu 0: [ 262.318863][ C1] can_receive+0x1ca/0x1f0 [ 262.323296][ C1] canfd_rcv+0xe7/0x180 [ 262.327455][ C1] __netif_receive_skb+0x123/0x280 [ 262.332568][ C1] process_backlog+0x22e/0x440 [ 262.337338][ C1] __napi_poll+0x63/0x3c0 [ 262.341681][ C1] net_rx_action+0x3a1/0x7f0 [ 262.346283][ C1] handle_softirqs+0xbf/0x280 [ 262.350979][ C1] do_softirq+0x5e/0x90 [ 262.355142][ C1] __local_bh_enable_ip+0x6e/0x70 [ 262.360176][ C1] wg_timers_any_authenticated_packet_traversal+0xe5/0x110 [ 262.367411][ C1] wg_packet_tx_worker+0xe9/0x360 [ 262.372446][ C1] process_scheduled_works+0x4db/0xa20 [ 262.377936][ C1] worker_thread+0x51d/0x6f0 [ 262.382541][ C1] kthread+0x4ae/0x520 [ 262.386618][ C1] ret_from_fork+0x4b/0x60 [ 262.391040][ C1] ret_from_fork_asm+0x1a/0x30 [ 262.395818][ C1] [ 262.398142][ C1] read-write to 0xffff88811d4d4f78 of 8 bytes by interrupt on cpu 1: [ 262.406213][ C1] can_receive+0x1ca/0x1f0 [ 262.410634][ C1] canfd_rcv+0xe7/0x180 [ 262.414794][ C1] __netif_receive_skb+0x123/0x280 [ 262.419905][ C1] process_backlog+0x22e/0x440 [ 262.424685][ C1] __napi_poll+0x63/0x3c0 [ 262.429024][ C1] net_rx_action+0x3a1/0x7f0 [ 262.433660][ C1] handle_softirqs+0xbf/0x280 [ 262.438354][ C1] do_softirq+0x5e/0x90 [ 262.442524][ C1] __local_bh_enable_ip+0x6e/0x70 [ 262.447556][ C1] _raw_read_unlock_bh+0x1b/0x20 [ 262.452499][ C1] ipv6_get_lladdr+0x116/0x150 [ 262.457267][ C1] mld_newpack+0x1df/0x500 [ 262.461693][ C1] add_grec+0xa07/0xbd0 [ 262.465859][ C1] mld_send_initial_cr+0xdf/0x1e0 [ 262.470892][ C1] mld_dad_work+0x34/0x300 [ 262.475320][ C1] process_scheduled_works+0x4db/0xa20 [ 262.480789][ C1] worker_thread+0x51d/0x6f0 [ 262.485389][ C1] kthread+0x4ae/0x520 [ 262.489471][ C1] ret_from_fork+0x4b/0x60 [ 262.493891][ C1] ret_from_fork_asm+0x1a/0x30 [ 262.498668][ C1] [ 262.500996][ C1] value changed: 0x000000000000a2fe -> 0x000000000000a2ff [ 262.508107][ C1] [ 262.510431][ C1] Reported by Kernel Concurrency Sanitizer on: [ 262.516578][ C1] CPU: 1 UID: 0 PID: 3373 Comm: kworker/1:3 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 262.527344][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 262.537400][ C1] Workqueue: mld mld_dad_work [ 262.542085][ C1] ================================================================== [ 262.564119][ C1] ================================================================== [ 262.572230][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 262.578918][ C1] [ 262.581243][ C1] read-write to 0xffff88811d4d4f08 of 8 bytes by interrupt on cpu 0: [ 262.589314][ C1] can_receive+0x4e/0x1f0 [ 262.593647][ C1] canfd_rcv+0xe7/0x180 [ 262.597803][ C1] __netif_receive_skb+0x123/0x280 [ 262.602922][ C1] process_backlog+0x22e/0x440 [ 262.607700][ C1] __napi_poll+0x63/0x3c0 [ 262.612040][ C1] net_rx_action+0x3a1/0x7f0 [ 262.616658][ C1] handle_softirqs+0xbf/0x280 [ 262.621335][ C1] do_softirq+0x5e/0x90 [ 262.625495][ C1] __local_bh_enable_ip+0x6e/0x70 [ 262.630526][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 262.635478][ C1] nsim_dev_trap_report_work+0x522/0x620 [ 262.641117][ C1] process_scheduled_works+0x4db/0xa20 [ 262.646586][ C1] worker_thread+0x51d/0x6f0 [ 262.651185][ C1] kthread+0x4ae/0x520 [ 262.655264][ C1] ret_from_fork+0x4b/0x60 [ 262.659691][ C1] ret_from_fork_asm+0x1a/0x30 [ 262.664494][ C1] [ 262.666822][ C1] read-write to 0xffff88811d4d4f08 of 8 bytes by interrupt on cpu 1: [ 262.674881][ C1] can_receive+0x4e/0x1f0 [ 262.679218][ C1] canfd_rcv+0xe7/0x180 [ 262.683377][ C1] __netif_receive_skb+0x123/0x280 [ 262.688498][ C1] process_backlog+0x22e/0x440 [ 262.693286][ C1] __napi_poll+0x63/0x3c0 [ 262.697618][ C1] net_rx_action+0x3a1/0x7f0 [ 262.702220][ C1] handle_softirqs+0xbf/0x280 [ 262.706916][ C1] do_softirq+0x5e/0x90 [ 262.711076][ C1] __local_bh_enable_ip+0x6e/0x70 [ 262.716107][ C1] update_defense_level+0x575/0x5b0 [ 262.721312][ C1] defense_work_handler+0x1f/0x80 [ 262.726341][ C1] process_scheduled_works+0x4db/0xa20 [ 262.731798][ C1] worker_thread+0x51d/0x6f0 [ 262.736405][ C1] kthread+0x4ae/0x520 [ 262.740495][ C1] ret_from_fork+0x4b/0x60 [ 262.744930][ C1] ret_from_fork_asm+0x1a/0x30 [ 262.749711][ C1] [ 262.752034][ C1] value changed: 0x0000000000044727 -> 0x0000000000044728 [ 262.759145][ C1] [ 262.761468][ C1] Reported by Kernel Concurrency Sanitizer on: [ 262.767635][ C1] CPU: 1 UID: 0 PID: 3376 Comm: kworker/1:5 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 262.778402][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 262.788473][ C1] Workqueue: events_long defense_work_handler [ 262.794560][ C1] ================================================================== [ 263.666506][ C0] ================================================================== [ 263.674620][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 263.681305][ C0] [ 263.683624][ C0] read-write to 0xffff88811d4d4f68 of 8 bytes by interrupt on cpu 1: [ 263.691689][ C0] can_receive+0x62/0x1f0 [ 263.696016][ C0] canfd_rcv+0xe7/0x180 [ 263.700179][ C0] __netif_receive_skb+0x123/0x280 [ 263.705313][ C0] process_backlog+0x22e/0x440 [ 263.710092][ C0] __napi_poll+0x63/0x3c0 [ 263.714436][ C0] net_rx_action+0x3a1/0x7f0 [ 263.719057][ C0] handle_softirqs+0xbf/0x280 [ 263.723747][ C0] do_softirq+0x5e/0x90 [ 263.727975][ C0] __local_bh_enable_ip+0x6e/0x70 [ 263.733017][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 263.737985][ C0] nsim_dev_trap_report_work+0x522/0x620 [ 263.743633][ C0] process_scheduled_works+0x4db/0xa20 [ 263.749107][ C0] worker_thread+0x51d/0x6f0 [ 263.753721][ C0] kthread+0x4ae/0x520 [ 263.757810][ C0] ret_from_fork+0x4b/0x60 [ 263.762238][ C0] ret_from_fork_asm+0x1a/0x30 [ 263.767014][ C0] [ 263.769335][ C0] read-write to 0xffff88811d4d4f68 of 8 bytes by interrupt on cpu 0: [ 263.777399][ C0] can_receive+0x62/0x1f0 [ 263.781740][ C0] canfd_rcv+0xe7/0x180 [ 263.785895][ C0] __netif_receive_skb+0x123/0x280 [ 263.791007][ C0] process_backlog+0x22e/0x440 [ 263.795779][ C0] __napi_poll+0x63/0x3c0 [ 263.800116][ C0] net_rx_action+0x3a1/0x7f0 [ 263.804719][ C0] handle_softirqs+0xbf/0x280 [ 263.809403][ C0] do_softirq+0x5e/0x90 [ 263.813568][ C0] __local_bh_enable_ip+0x6e/0x70 [ 263.818603][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 263.823552][ C0] batadv_nc_purge_paths+0x220/0x270 [ 263.828861][ C0] batadv_nc_worker+0x402/0xad0 [ 263.833743][ C0] process_scheduled_works+0x4db/0xa20 [ 263.839220][ C0] worker_thread+0x51d/0x6f0 [ 263.843831][ C0] kthread+0x4ae/0x520 [ 263.847933][ C0] ret_from_fork+0x4b/0x60 [ 263.852371][ C0] ret_from_fork_asm+0x1a/0x30 [ 263.857136][ C0] [ 263.859457][ C0] value changed: 0x0000000000002edd -> 0x0000000000002ede [ 263.866564][ C0] [ 263.868889][ C0] Reported by Kernel Concurrency Sanitizer on: [ 263.875044][ C0] CPU: 0 UID: 0 PID: 8046 Comm: kworker/u8:35 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 263.885982][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 263.896046][ C0] Workqueue: bat_events batadv_nc_worker [ 263.901698][ C0] ================================================================== [ 263.925378][ C1] ================================================================== [ 263.933468][ C1] BUG: KCSAN: data-race in can_send / can_send [ 263.939628][ C1] [ 263.941951][ C1] read-write to 0xffff88811d4d4f70 of 8 bytes by interrupt on cpu 0: [ 263.950014][ C1] can_send+0x5b6/0x6d0 [ 263.954175][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 263.958865][ C1] can_rcv_filter+0xbf/0x4c0 [ 263.963475][ C1] can_receive+0x182/0x1f0 [ 263.967932][ C1] canfd_rcv+0xe7/0x180 [ 263.972108][ C1] __netif_receive_skb+0x123/0x280 [ 263.977243][ C1] process_backlog+0x22e/0x440 [ 263.982023][ C1] __napi_poll+0x63/0x3c0 [ 263.986359][ C1] net_rx_action+0x3a1/0x7f0 [ 263.990959][ C1] handle_softirqs+0xbf/0x280 [ 263.995644][ C1] do_softirq+0x5e/0x90 [ 263.999810][ C1] __local_bh_enable_ip+0x6e/0x70 [ 264.004842][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 264.009783][ C1] batadv_nc_purge_paths+0x220/0x270 [ 264.015096][ C1] batadv_nc_worker+0x402/0xad0 [ 264.019974][ C1] process_scheduled_works+0x4db/0xa20 [ 264.025451][ C1] worker_thread+0x51d/0x6f0 [ 264.030049][ C1] kthread+0x4ae/0x520 [ 264.034124][ C1] ret_from_fork+0x4b/0x60 [ 264.038554][ C1] ret_from_fork_asm+0x1a/0x30 [ 264.043338][ C1] [ 264.045670][ C1] read-write to 0xffff88811d4d4f70 of 8 bytes by interrupt on cpu 1: [ 264.053756][ C1] can_send+0x5b6/0x6d0 [ 264.057951][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 264.062654][ C1] can_rcv_filter+0xbf/0x4c0 [ 264.067249][ C1] can_receive+0x182/0x1f0 [ 264.071678][ C1] canfd_rcv+0xe7/0x180 [ 264.075844][ C1] __netif_receive_skb+0x123/0x280 [ 264.080976][ C1] process_backlog+0x22e/0x440 [ 264.085768][ C1] __napi_poll+0x63/0x3c0 [ 264.090114][ C1] net_rx_action+0x3a1/0x7f0 [ 264.094723][ C1] handle_softirqs+0xbf/0x280 [ 264.099411][ C1] do_softirq+0x5e/0x90 [ 264.103581][ C1] __local_bh_enable_ip+0x6e/0x70 [ 264.108624][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 264.113577][ C1] lock_sock_nested+0x10f/0x140 [ 264.118449][ C1] __inet_bind+0x2c5/0x5c0 [ 264.122888][ C1] inet_bind+0x96/0xb0 [ 264.126966][ C1] kernel_bind+0x96/0xe0 [ 264.131222][ C1] rds_tcp_conn_path_connect+0x2f7/0x440 [ 264.136867][ C1] rds_connect_worker+0x12c/0x1b0 [ 264.141900][ C1] process_scheduled_works+0x4db/0xa20 [ 264.147361][ C1] worker_thread+0x51d/0x6f0 [ 264.151958][ C1] kthread+0x4ae/0x520 [ 264.156035][ C1] ret_from_fork+0x4b/0x60 [ 264.160462][ C1] ret_from_fork_asm+0x1a/0x30 [ 264.165237][ C1] [ 264.167558][ C1] value changed: 0x000000000000bafc -> 0x000000000000bafe [ 264.174663][ C1] [ 264.177003][ C1] Reported by Kernel Concurrency Sanitizer on: [ 264.183150][ C1] CPU: 1 UID: 0 PID: 8017 Comm: kworker/u8:15 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 264.194084][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 264.204151][ C1] Workqueue: krdsd rds_connect_worker [ 264.209541][ C1] ================================================================== [ 264.228728][ C0] ================================================================== [ 264.236866][ C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv [ 264.244100][ C0] [ 264.246422][ C0] read-write to 0xffff8881132889c8 of 4 bytes by interrupt on cpu 1: [ 264.254502][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 264.259218][ C0] can_rcv_filter+0xbf/0x4c0 [ 264.263815][ C0] can_receive+0x182/0x1f0 [ 264.268239][ C0] canfd_rcv+0xe7/0x180 [ 264.272414][ C0] __netif_receive_skb+0x123/0x280 [ 264.277540][ C0] process_backlog+0x22e/0x440 [ 264.282324][ C0] __napi_poll+0x63/0x3c0 [ 264.286660][ C0] net_rx_action+0x3a1/0x7f0 [ 264.291266][ C0] handle_softirqs+0xbf/0x280 [ 264.295947][ C0] run_ksoftirqd+0x1c/0x30 [ 264.300376][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 264.305320][ C0] kthread+0x4ae/0x520 [ 264.309399][ C0] ret_from_fork+0x4b/0x60 [ 264.313819][ C0] ret_from_fork_asm+0x1a/0x30 [ 264.318602][ C0] [ 264.320935][ C0] read-write to 0xffff8881132889c8 of 4 bytes by interrupt on cpu 0: [ 264.329002][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 264.333718][ C0] can_rcv_filter+0xbf/0x4c0 [ 264.338320][ C0] can_receive+0x182/0x1f0 [ 264.342751][ C0] canfd_rcv+0xe7/0x180 [ 264.346913][ C0] __netif_receive_skb+0x123/0x280 [ 264.352055][ C0] process_backlog+0x22e/0x440 [ 264.356824][ C0] __napi_poll+0x63/0x3c0 [ 264.361167][ C0] net_rx_action+0x3a1/0x7f0 [ 264.365769][ C0] handle_softirqs+0xbf/0x280 [ 264.370454][ C0] run_ksoftirqd+0x1c/0x30 [ 264.374884][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 264.379839][ C0] kthread+0x4ae/0x520 [ 264.383936][ C0] ret_from_fork+0x4b/0x60 [ 264.388375][ C0] ret_from_fork_asm+0x1a/0x30 [ 264.393162][ C0] [ 264.395487][ C0] value changed: 0x00065f06 -> 0x00065f07 [ 264.401202][ C0] [ 264.403524][ C0] Reported by Kernel Concurrency Sanitizer on: [ 264.409674][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 264.420262][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 264.430409][ C0] ================================================================== [ 264.464900][ C0] ================================================================== [ 264.472991][ C0] BUG: KCSAN: data-race in can_rcv_filter / can_rcv_filter [ 264.480211][ C0] [ 264.482534][ C0] read-write to 0xffff8881012cb5b8 of 8 bytes by interrupt on cpu 1: [ 264.490598][ C0] can_rcv_filter+0xd1/0x4c0 [ 264.495189][ C0] can_receive+0x182/0x1f0 [ 264.499613][ C0] canfd_rcv+0xe7/0x180 [ 264.503769][ C0] __netif_receive_skb+0x123/0x280 [ 264.508894][ C0] process_backlog+0x22e/0x440 [ 264.513677][ C0] __napi_poll+0x63/0x3c0 [ 264.518053][ C0] net_rx_action+0x3a1/0x7f0 [ 264.522658][ C0] handle_softirqs+0xbf/0x280 [ 264.527346][ C0] do_softirq+0x5e/0x90 [ 264.531508][ C0] __local_bh_enable_ip+0x6e/0x70 [ 264.536534][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 264.541479][ C0] wg_packet_encrypt_worker+0x180/0xb80 [ 264.547041][ C0] process_scheduled_works+0x4db/0xa20 [ 264.552502][ C0] worker_thread+0x51d/0x6f0 [ 264.557096][ C0] kthread+0x4ae/0x520 [ 264.561164][ C0] ret_from_fork+0x4b/0x60 [ 264.565593][ C0] ret_from_fork_asm+0x1a/0x30 [ 264.570368][ C0] [ 264.572684][ C0] read-write to 0xffff8881012cb5b8 of 8 bytes by interrupt on cpu 0: [ 264.580747][ C0] can_rcv_filter+0xd1/0x4c0 [ 264.585337][ C0] can_receive+0x182/0x1f0 [ 264.589753][ C0] canfd_rcv+0xe7/0x180 [ 264.593911][ C0] __netif_receive_skb+0x123/0x280 [ 264.599036][ C0] process_backlog+0x22e/0x440 [ 264.603847][ C0] __napi_poll+0x63/0x3c0 [ 264.608190][ C0] net_rx_action+0x3a1/0x7f0 [ 264.612807][ C0] handle_softirqs+0xbf/0x280 [ 264.617490][ C0] do_softirq+0x5e/0x90 [ 264.621650][ C0] __local_bh_enable_ip+0x6e/0x70 [ 264.626679][ C0] _raw_write_unlock_bh+0x1f/0x30 [ 264.631709][ C0] neigh_periodic_work+0x605/0x6b0 [ 264.636836][ C0] process_scheduled_works+0x4db/0xa20 [ 264.642297][ C0] worker_thread+0x51d/0x6f0 [ 264.646889][ C0] kthread+0x4ae/0x520 [ 264.650956][ C0] ret_from_fork+0x4b/0x60 [ 264.655378][ C0] ret_from_fork_asm+0x1a/0x30 [ 264.660149][ C0] [ 264.662471][ C0] value changed: 0x0000000000067009 -> 0x000000000006700a [ 264.669578][ C0] [ 264.671922][ C0] Reported by Kernel Concurrency Sanitizer on: [ 264.678080][ C0] CPU: 0 UID: 0 PID: 1106 Comm: kworker/0:2 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 264.688861][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 264.698938][ C0] Workqueue: events_power_efficient neigh_periodic_work [ 264.705909][ C0] ================================================================== [ 264.781364][ C0] ================================================================== [ 264.789472][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 264.796156][ C0] [ 264.798485][ C0] read-write to 0xffff88811d4d4f18 of 8 bytes by interrupt on cpu 1: [ 264.806561][ C0] can_receive+0x1b6/0x1f0 [ 264.810979][ C0] canfd_rcv+0xe7/0x180 [ 264.815136][ C0] __netif_receive_skb+0x123/0x280 [ 264.820261][ C0] process_backlog+0x22e/0x440 [ 264.825042][ C0] __napi_poll+0x63/0x3c0 [ 264.829380][ C0] net_rx_action+0x3a1/0x7f0 [ 264.833977][ C0] handle_softirqs+0xbf/0x280 [ 264.838706][ C0] run_ksoftirqd+0x1c/0x30 [ 264.843142][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 264.848089][ C0] kthread+0x4ae/0x520 [ 264.852173][ C0] ret_from_fork+0x4b/0x60 [ 264.856590][ C0] ret_from_fork_asm+0x1a/0x30 [ 264.861365][ C0] [ 264.863685][ C0] read-write to 0xffff88811d4d4f18 of 8 bytes by interrupt on cpu 0: [ 264.871751][ C0] can_receive+0x1b6/0x1f0 [ 264.876166][ C0] canfd_rcv+0xe7/0x180 [ 264.880327][ C0] __netif_receive_skb+0x123/0x280 [ 264.885452][ C0] process_backlog+0x22e/0x440 [ 264.890226][ C0] __napi_poll+0x63/0x3c0 [ 264.894567][ C0] net_rx_action+0x3a1/0x7f0 [ 264.899169][ C0] handle_softirqs+0xbf/0x280 [ 264.903856][ C0] do_softirq+0x5e/0x90 [ 264.908025][ C0] __local_bh_enable_ip+0x6e/0x70 [ 264.913069][ C0] _raw_write_unlock_bh+0x1f/0x30 [ 264.918099][ C0] neigh_periodic_work+0x605/0x6b0 [ 264.923236][ C0] process_scheduled_works+0x4db/0xa20 [ 264.928707][ C0] worker_thread+0x51d/0x6f0 [ 264.933318][ C0] kthread+0x4ae/0x520 [ 264.937395][ C0] ret_from_fork+0x4b/0x60 [ 264.941830][ C0] ret_from_fork_asm+0x1a/0x30 [ 264.946603][ C0] [ 264.948927][ C0] value changed: 0x0000000000065fc6 -> 0x0000000000065fc7 [ 264.956041][ C0] [ 264.958371][ C0] Reported by Kernel Concurrency Sanitizer on: [ 264.964543][ C0] CPU: 0 UID: 0 PID: 1106 Comm: kworker/0:2 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 264.975308][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 264.985368][ C0] Workqueue: events_power_efficient neigh_periodic_work [ 264.992322][ C0] ================================================================== [ 265.040908][ C0] ================================================================== [ 265.049014][ C0] BUG: KCSAN: data-race in can_send / can_send [ 265.055183][ C0] [ 265.057506][ C0] read-write to 0xffff88811d4d4f10 of 8 bytes by interrupt on cpu 1: [ 265.065595][ C0] can_send+0x5a2/0x6d0 [ 265.069763][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 265.074465][ C0] can_rcv_filter+0xbf/0x4c0 [ 265.079087][ C0] can_receive+0x182/0x1f0 [ 265.083529][ C0] canfd_rcv+0xe7/0x180 [ 265.087695][ C0] __netif_receive_skb+0x123/0x280 [ 265.092830][ C0] process_backlog+0x22e/0x440 [ 265.097609][ C0] __napi_poll+0x63/0x3c0 [ 265.101948][ C0] net_rx_action+0x3a1/0x7f0 [ 265.106549][ C0] handle_softirqs+0xbf/0x280 [ 265.111237][ C0] run_ksoftirqd+0x1c/0x30 [ 265.115676][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 265.120787][ C0] kthread+0x4ae/0x520 [ 265.124880][ C0] ret_from_fork+0x4b/0x60 [ 265.129315][ C0] ret_from_fork_asm+0x1a/0x30 [ 265.134084][ C0] [ 265.136405][ C0] read-write to 0xffff88811d4d4f10 of 8 bytes by interrupt on cpu 0: [ 265.144475][ C0] can_send+0x5a2/0x6d0 [ 265.148654][ C0] can_can_gw_rcv+0x77d/0x7e0 [ 265.153362][ C0] can_rcv_filter+0xbf/0x4c0 [ 265.157966][ C0] can_receive+0x182/0x1f0 [ 265.162397][ C0] canfd_rcv+0xe7/0x180 [ 265.166554][ C0] __netif_receive_skb+0x123/0x280 [ 265.171676][ C0] process_backlog+0x22e/0x440 [ 265.176457][ C0] __napi_poll+0x63/0x3c0 [ 265.180798][ C0] net_rx_action+0x3a1/0x7f0 [ 265.185416][ C0] handle_softirqs+0xbf/0x280 [ 265.190103][ C0] do_softirq+0x5e/0x90 [ 265.194267][ C0] __local_bh_enable_ip+0x6e/0x70 [ 265.199294][ C0] update_defense_level+0x575/0x5b0 [ 265.204493][ C0] defense_work_handler+0x1f/0x80 [ 265.209526][ C0] process_scheduled_works+0x4db/0xa20 [ 265.215002][ C0] worker_thread+0x51d/0x6f0 [ 265.219605][ C0] kthread+0x4ae/0x520 [ 265.223692][ C0] ret_from_fork+0x4b/0x60 [ 265.228127][ C0] ret_from_fork_asm+0x1a/0x30 [ 265.232912][ C0] [ 265.235239][ C0] value changed: 0x00000000000d0db3 -> 0x00000000000d0db5 [ 265.242336][ C0] [ 265.244655][ C0] Reported by Kernel Concurrency Sanitizer on: [ 265.250805][ C0] CPU: 0 UID: 0 PID: 6692 Comm: kworker/0:5 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 265.261569][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 265.271626][ C0] Workqueue: events_long defense_work_handler [ 265.277706][ C0] ================================================================== [ 265.334357][ C1] ================================================================== [ 265.342464][ C1] BUG: KCSAN: data-race in can_receive / can_receive [ 265.349171][ C1] [ 265.351498][ C1] read-write to 0xffff88811d4d4f78 of 8 bytes by interrupt on cpu 0: [ 265.359569][ C1] can_receive+0x1ca/0x1f0 [ 265.364000][ C1] canfd_rcv+0xe7/0x180 [ 265.368171][ C1] __netif_receive_skb+0x123/0x280 [ 265.373301][ C1] process_backlog+0x22e/0x440 [ 265.378087][ C1] __napi_poll+0x63/0x3c0 [ 265.382443][ C1] net_rx_action+0x3a1/0x7f0 [ 265.387048][ C1] handle_softirqs+0xbf/0x280 [ 265.391728][ C1] run_ksoftirqd+0x1c/0x30 [ 265.396158][ C1] smpboot_thread_fn+0x31c/0x4c0 [ 265.401100][ C1] kthread+0x4ae/0x520 [ 265.405177][ C1] ret_from_fork+0x4b/0x60 [ 265.409614][ C1] ret_from_fork_asm+0x1a/0x30 [ 265.414397][ C1] [ 265.416717][ C1] read-write to 0xffff88811d4d4f78 of 8 bytes by interrupt on cpu 1: [ 265.424782][ C1] can_receive+0x1ca/0x1f0 [ 265.429232][ C1] canfd_rcv+0xe7/0x180 [ 265.433395][ C1] __netif_receive_skb+0x123/0x280 [ 265.438526][ C1] process_backlog+0x22e/0x440 [ 265.443310][ C1] __napi_poll+0x63/0x3c0 [ 265.447655][ C1] net_rx_action+0x3a1/0x7f0 [ 265.452261][ C1] handle_softirqs+0xbf/0x280 [ 265.456948][ C1] do_softirq+0x5e/0x90 [ 265.461144][ C1] __local_bh_enable_ip+0x6e/0x70 [ 265.466182][ C1] _raw_spin_unlock_bh+0x36/0x40 [ 265.471130][ C1] wg_index_hashtable_insert+0xaa/0x2a0 [ 265.476699][ C1] wg_noise_handshake_create_initiation+0x4f6/0x5b0 [ 265.483298][ C1] wg_packet_handshake_send_worker+0xb3/0x150 [ 265.489394][ C1] process_scheduled_works+0x4db/0xa20 [ 265.494869][ C1] worker_thread+0x51d/0x6f0 [ 265.499484][ C1] kthread+0x4ae/0x520 [ 265.503577][ C1] ret_from_fork+0x4b/0x60 [ 265.508009][ C1] ret_from_fork_asm+0x1a/0x30 [ 265.512802][ C1] [ 265.515132][ C1] value changed: 0x000000000000828e -> 0x000000000000828f [ 265.522242][ C1] [ 265.524568][ C1] Reported by Kernel Concurrency Sanitizer on: [ 265.530720][ C1] CPU: 1 UID: 0 PID: 8066 Comm: kworker/u8:45 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 265.541678][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 265.551747][ C1] Workqueue: wg-kex-wg0 wg_packet_handshake_send_worker [ 265.558716][ C1] ================================================================== [ 265.604469][ C0] ================================================================== [ 265.612761][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 265.619475][ C0] [ 265.621805][ C0] read-write to 0xffff88811d4d4f08 of 8 bytes by interrupt on cpu 1: [ 265.629881][ C0] can_receive+0x4e/0x1f0 [ 265.634213][ C0] canfd_rcv+0xe7/0x180 [ 265.638377][ C0] __netif_receive_skb+0x123/0x280 [ 265.643509][ C0] process_backlog+0x22e/0x440 [ 265.648295][ C0] __napi_poll+0x63/0x3c0 [ 265.652648][ C0] net_rx_action+0x3a1/0x7f0 [ 265.657248][ C0] handle_softirqs+0xbf/0x280 [ 265.661928][ C0] run_ksoftirqd+0x1c/0x30 [ 265.666346][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 265.671289][ C0] kthread+0x4ae/0x520 [ 265.675371][ C0] ret_from_fork+0x4b/0x60 [ 265.679800][ C0] ret_from_fork_asm+0x1a/0x30 [ 265.684587][ C0] [ 265.686913][ C0] read-write to 0xffff88811d4d4f08 of 8 bytes by interrupt on cpu 0: [ 265.694974][ C0] can_receive+0x4e/0x1f0 [ 265.699319][ C0] canfd_rcv+0xe7/0x180 [ 265.703501][ C0] __netif_receive_skb+0x123/0x280 [ 265.708626][ C0] process_backlog+0x22e/0x440 [ 265.713420][ C0] __napi_poll+0x63/0x3c0 [ 265.717759][ C0] net_rx_action+0x3a1/0x7f0 [ 265.722366][ C0] handle_softirqs+0xbf/0x280 [ 265.727053][ C0] do_softirq+0x5e/0x90 [ 265.731214][ C0] __local_bh_enable_ip+0x6e/0x70 [ 265.736243][ C0] _raw_spin_unlock_bh+0x36/0x40 [ 265.741182][ C0] batadv_nc_purge_paths+0x220/0x270 [ 265.746492][ C0] batadv_nc_worker+0x3db/0xad0 [ 265.751356][ C0] process_scheduled_works+0x4db/0xa20 [ 265.756819][ C0] worker_thread+0x51d/0x6f0 [ 265.761431][ C0] kthread+0x4ae/0x520 [ 265.765517][ C0] ret_from_fork+0x4b/0x60 [ 265.769948][ C0] ret_from_fork_asm+0x1a/0x30 [ 265.774723][ C0] [ 265.777044][ C0] value changed: 0x0000000000071485 -> 0x0000000000071486 [ 265.784143][ C0] [ 265.786463][ C0] Reported by Kernel Concurrency Sanitizer on: [ 265.792607][ C0] CPU: 0 UID: 0 PID: 8046 Comm: kworker/u8:35 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 265.803546][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 265.813605][ C0] Workqueue: bat_events batadv_nc_worker [ 265.819261][ C0] ================================================================== [ 266.702581][ C0] ================================================================== [ 266.710687][ C0] BUG: KCSAN: data-race in can_receive / can_receive [ 266.717377][ C0] [ 266.719705][ C0] read-write to 0xffff88811d4d4f68 of 8 bytes by interrupt on cpu 1: [ 266.727780][ C0] can_receive+0x62/0x1f0 [ 266.732126][ C0] canfd_rcv+0xe7/0x180 [ 266.736292][ C0] __netif_receive_skb+0x123/0x280 [ 266.741419][ C0] process_backlog+0x22e/0x440 [ 266.746200][ C0] __napi_poll+0x63/0x3c0 [ 266.750539][ C0] net_rx_action+0x3a1/0x7f0 [ 266.755135][ C0] handle_softirqs+0xbf/0x280 [ 266.759820][ C0] do_softirq+0x5e/0x90 [ 266.763985][ C0] __local_bh_enable_ip+0x6e/0x70 [ 266.769047][ C0] update_defense_level+0x575/0x5b0 [ 266.774268][ C0] defense_work_handler+0x1f/0x80 [ 266.779396][ C0] process_scheduled_works+0x4db/0xa20 [ 266.784872][ C0] worker_thread+0x51d/0x6f0 [ 266.789474][ C0] kthread+0x4ae/0x520 [ 266.793555][ C0] ret_from_fork+0x4b/0x60 [ 266.797991][ C0] ret_from_fork_asm+0x1a/0x30 [ 266.802779][ C0] [ 266.805096][ C0] read-write to 0xffff88811d4d4f68 of 8 bytes by interrupt on cpu 0: [ 266.813154][ C0] can_receive+0x62/0x1f0 [ 266.817497][ C0] canfd_rcv+0xe7/0x180 [ 266.821655][ C0] __netif_receive_skb+0x123/0x280 [ 266.826781][ C0] process_backlog+0x22e/0x440 [ 266.831554][ C0] __napi_poll+0x63/0x3c0 [ 266.835900][ C0] net_rx_action+0x3a1/0x7f0 [ 266.840530][ C0] handle_softirqs+0xbf/0x280 [ 266.845223][ C0] run_ksoftirqd+0x1c/0x30 [ 266.849663][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 266.854612][ C0] kthread+0x4ae/0x520 [ 266.858699][ C0] ret_from_fork+0x4b/0x60 [ 266.863132][ C0] ret_from_fork_asm+0x1a/0x30 [ 266.867929][ C0] [ 266.870272][ C0] value changed: 0x00000000000048da -> 0x00000000000048db [ 266.877375][ C0] [ 266.879695][ C0] Reported by Kernel Concurrency Sanitizer on: [ 266.885842][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 266.896429][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 266.906494][ C0] ================================================================== [ 266.934375][ C1] ================================================================== [ 266.942471][ C1] BUG: KCSAN: data-race in can_send / can_send [ 266.948640][ C1] [ 266.950972][ C1] read-write to 0xffff88811d4d4f70 of 8 bytes by interrupt on cpu 0: [ 266.959046][ C1] can_send+0x5b6/0x6d0 [ 266.963228][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 266.967937][ C1] can_rcv_filter+0xbf/0x4c0 [ 266.972545][ C1] can_receive+0x182/0x1f0 [ 266.976966][ C1] canfd_rcv+0xe7/0x180 [ 266.981136][ C1] __netif_receive_skb+0x123/0x280 [ 266.986261][ C1] process_backlog+0x22e/0x440 [ 266.991041][ C1] __napi_poll+0x63/0x3c0 [ 266.995379][ C1] net_rx_action+0x3a1/0x7f0 [ 266.999981][ C1] handle_softirqs+0xbf/0x280 [ 267.004683][ C1] do_softirq+0x5e/0x90 [ 267.008853][ C1] __local_bh_enable_ip+0x6e/0x70 [ 267.013896][ C1] _raw_write_unlock_bh+0x1f/0x30 [ 267.018939][ C1] neigh_periodic_work+0x605/0x6b0 [ 267.024074][ C1] process_scheduled_works+0x4db/0xa20 [ 267.029556][ C1] worker_thread+0x51d/0x6f0 [ 267.034158][ C1] kthread+0x4ae/0x520 [ 267.038242][ C1] ret_from_fork+0x4b/0x60 [ 267.042696][ C1] ret_from_fork_asm+0x1a/0x30 [ 267.047473][ C1] [ 267.049793][ C1] read-write to 0xffff88811d4d4f70 of 8 bytes by interrupt on cpu 1: [ 267.057859][ C1] can_send+0x5b6/0x6d0 [ 267.062035][ C1] can_can_gw_rcv+0x77d/0x7e0 [ 267.066728][ C1] can_rcv_filter+0xbf/0x4c0 [ 267.071328][ C1] can_receive+0x182/0x1f0 [ 267.075748][ C1] canfd_rcv+0xe7/0x180 [ 267.079909][ C1] __netif_receive_skb+0x123/0x280 [ 267.085028][ C1] process_backlog+0x22e/0x440 [ 267.089801][ C1] __napi_poll+0x63/0x3c0 [ 267.094136][ C1] net_rx_action+0x3a1/0x7f0 [ 267.098743][ C1] handle_softirqs+0xbf/0x280 [ 267.103439][ C1] run_ksoftirqd+0x1c/0x30 [ 267.107873][ C1] smpboot_thread_fn+0x31c/0x4c0 [ 267.112848][ C1] kthread+0x4ae/0x520 [ 267.116928][ C1] ret_from_fork+0x4b/0x60 [ 267.121361][ C1] ret_from_fork_asm+0x1a/0x30 [ 267.126143][ C1] [ 267.128473][ C1] value changed: 0x000000000000f0d0 -> 0x000000000000f0d3 [ 267.135590][ C1] [ 267.137935][ C1] Reported by Kernel Concurrency Sanitizer on: [ 267.144091][ C1] CPU: 1 UID: 0 PID: 23 Comm: ksoftirqd/1 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 267.154685][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 267.164746][ C1] ================================================================== [ 267.261051][ C0] ================================================================== [ 267.269178][ C0] BUG: KCSAN: data-race in can_can_gw_rcv / can_can_gw_rcv [ 267.276390][ C0] [ 267.278712][ C0] read-write to 0xffff8881132889c8 of 4 bytes by interrupt on cpu 1: [ 267.286774][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 267.291461][ C0] can_rcv_filter+0xbf/0x4c0 [ 267.296047][ C0] can_receive+0x182/0x1f0 [ 267.300461][ C0] canfd_rcv+0xe7/0x180 [ 267.304628][ C0] __netif_receive_skb+0x123/0x280 [ 267.309750][ C0] process_backlog+0x22e/0x440 [ 267.314529][ C0] __napi_poll+0x63/0x3c0 [ 267.318870][ C0] net_rx_action+0x3a1/0x7f0 [ 267.323484][ C0] handle_softirqs+0xbf/0x280 [ 267.328176][ C0] do_softirq+0x5e/0x90 [ 267.332340][ C0] __local_bh_enable_ip+0x6e/0x70 [ 267.337367][ C0] wg_timers_any_authenticated_packet_traversal+0xe5/0x110 [ 267.344576][ C0] wg_packet_tx_worker+0xe9/0x360 [ 267.349611][ C0] process_scheduled_works+0x4db/0xa20 [ 267.355077][ C0] worker_thread+0x51d/0x6f0 [ 267.359671][ C0] kthread+0x4ae/0x520 [ 267.363753][ C0] ret_from_fork+0x4b/0x60 [ 267.368181][ C0] ret_from_fork_asm+0x1a/0x30 [ 267.372970][ C0] [ 267.375288][ C0] read-write to 0xffff8881132889c8 of 4 bytes by interrupt on cpu 0: [ 267.383349][ C0] can_can_gw_rcv+0x7cb/0x7e0 [ 267.388050][ C0] can_rcv_filter+0xbf/0x4c0 [ 267.392651][ C0] can_receive+0x182/0x1f0 [ 267.397092][ C0] canfd_rcv+0xe7/0x180 [ 267.401251][ C0] __netif_receive_skb+0x123/0x280 [ 267.406371][ C0] process_backlog+0x22e/0x440 [ 267.411147][ C0] __napi_poll+0x63/0x3c0 [ 267.415488][ C0] net_rx_action+0x3a1/0x7f0 [ 267.420097][ C0] handle_softirqs+0xbf/0x280 [ 267.424795][ C0] run_ksoftirqd+0x1c/0x30 [ 267.429232][ C0] smpboot_thread_fn+0x31c/0x4c0 [ 267.434181][ C0] kthread+0x4ae/0x520 [ 267.438263][ C0] ret_from_fork+0x4b/0x60 [ 267.442694][ C0] ret_from_fork_asm+0x1a/0x30 [ 267.447462][ C0] [ 267.449785][ C0] value changed: 0x000931ad -> 0x000931af [ 267.455499][ C0] [ 267.457814][ C0] Reported by Kernel Concurrency Sanitizer on: [ 267.463959][ C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted 6.14.0-rc4-syzkaller-00169-g1e15510b71c9 #0 [ 267.474555][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 267.484617][ C0] ================================================================== [ 267.500281][ C0] ==================================================================