last executing test programs: 22.947850786s ago: executing program 1 (id=2810): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000200)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@user_xattr}, {@errors_remount}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$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") bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000100)=[0x7], 0x0, 0xe, 0x1}}, 0x40) 22.666671329s ago: executing program 1 (id=2811): syz_genetlink_get_family_id$ipvs(&(0x7f0000000000), 0xffffffffffffffff) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket(0x1, 0x803, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000008385000000710000"], &(0x7f0000000200)='GPL\x00', 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) sync() sync() recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, 0x0, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x82000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r2, 0x89f9, &(0x7f00000006c0)={'sit0\x00', &(0x7f0000000680)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x33}, 0x5, 0x15}}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) 22.007650977s ago: executing program 1 (id=2822): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) unlinkat(0xffffffffffffffff, 0x0, 0x200) 21.861457839s ago: executing program 1 (id=2825): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00'}, 0x18) r4 = syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file1\x00', 0x50, &(0x7f0000000280)={[{@usrquota}, {}, {@nobh}, {@grpjquota}, {@dioread_nolock}]}, 0x1, 0x3eb, &(0x7f0000000880)="$eJzs3M1uG0UcAPD/br5I+uEgcUCFQwQIgoCkDgQoQqJw5eMCPICVpKXCbarGSLTkUBAnThwQNw59AQ48QFUhJCRegRdAlSqU5gC3oLV3HTe2Qyw7der8ftLIM+txZv7ezWpmvTsBHFtzEXE+IsYiYikiSvn2NE9xs5Gyeve3Nle2tzZXktjZ+fjvJJJ8W/G3kvz1RF6YTyPSbyOeutne7sb1G59XqtW1a3l5sXb56uLG9RuvXLpcubh2ce1K+Y1z5fLy0pvl1wYW64/PvXhu7L3zZ376s3RneXJyOuvvyfy91jgGZS7mmt/JXsuDbmzIJofdAQAADiTNx/7j9fF/KcbquYZSLG4OtXMAAADAQOy8k78CAAAAIywx9wcAAIARV9wHcH9rc6VIB7pxoHRotyQ8VPfejYjZ3Webt5vxj8djeZ2JQ3y+dS4irj6flLIUh/QcMgBAqzvZ+Odsp/FfGk+21JuKqI+Hpgfc/tyecvv4J7074CYfkI3/3o6I7bbxX1pUmR3LS6fqQ8WJ5MKl6trZiDgdEfMxMZWVy/u08f4/P3/U7b0s/t+SU6eLlLWfve7WSO+OTz34mdVKrdJPzK3ufR1xZrxT/Elz/JtExEwfbYx9deutbu/9f/yHa+dWxAsd9//uyj3J/usTLdaPh8XiqGj37ze/fNit/WHHn+3/mf3jn01a12va6L2N25/98XQ90yGq1vlPL8f/ZPJJPV/My76s1GrXyhGTyQft25d2P1uUi/pZ/PPPdv7/L85/Sb6m1cn8HNCr777/9eX9azTiz1LWfjEXfBiy+Fd72v+9Z16//fun3dpv3f+d48/2f2MNsPl8y0HOfwftYD/fHQAAADwq0vp1jSRdaObTdGGhcb3jiZhJq+sbtZcurH9xZbVx/WM2JtLiSlep5XpoufEzerO8tKf8akQ8HhE/lKbr5YWV9erqsIMHAACAY+JEl/l/5q8RuccfAAAAyH+oBwAAAEab+T8AAACMtH7W9Tu+meybOwLdOPKZZ45GN4aQmYgj0Y0+MsM+MwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADza/gsAAP//Bdqy/A==") r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15) pwrite64(r5, &(0x7f0000000140)='2', 0xfdef, 0xe7c) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) ioctl$FS_IOC_GETFSSYSFSPATH(r4, 0x80811501, &(0x7f0000000580)={0x80}) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mlxsw_sp_acl_atcam_entry_add_ctcam_spill\x00', r7, 0x0, 0x6}, 0x18) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r6}, &(0x7f0000000380), &(0x7f00000003c0)=r7}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) 19.484532108s ago: executing program 1 (id=2848): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r0}, &(0x7f00000005c0), &(0x7f0000000580)=r1}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x0, 0x0) 19.43331091s ago: executing program 1 (id=2850): syz_mount_image$ext4(&(0x7f00000007c0)='ext4\x00', &(0x7f00000006c0)='./file1\x00', 0x40, &(0x7f00000000c0)={[{@user_xattr}, {@nodioread_nolock}]}, 0x1, 0x576, &(0x7f0000000140)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0) truncate(&(0x7f0000000900)='./file1\x00', 0xbf39) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001480)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x6}, 0x18) r2 = socket$rds(0x15, 0x5, 0x0) bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r2, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}], 0x48}, 0x0) 7.543825496s ago: executing program 4 (id=2941): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00'}, 0x18) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15) pwrite64(r4, &(0x7f0000000140)='2', 0xfdef, 0xe7c) ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000000)={0x8, 0x2}) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) ioctl$FS_IOC_GETFSSYSFSPATH(0xffffffffffffffff, 0x80811501, &(0x7f0000000580)={0x80}) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mlxsw_sp_acl_atcam_entry_add_ctcam_spill\x00', r6, 0x0, 0x6}, 0x18) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r5}, &(0x7f0000000380), &(0x7f00000003c0)=r6}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) 7.383504278s ago: executing program 0 (id=2944): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = socket$inet(0x2, 0x3, 0x8d) setsockopt$inet_msfilter(r1, 0x0, 0x8, &(0x7f00000000c0)=ANY=[], 0x1) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000200)={0x0, @local, @local}, &(0x7f0000000140)=0xc) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @multicast1}, 0x71, r2}) ioctl(r3, 0x8916, &(0x7f0000000000)) 6.562682099s ago: executing program 2 (id=2946): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) unshare(0x2c060000) r2 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0x79af, 0x3180, 0x7fff, 0x40024e}, &(0x7f0000000340)=0x0, &(0x7f0000000040)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4) syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x6, 0x0, r2, 0x0, 0x0, 0x0, 0x2}) io_uring_enter(r2, 0x627, 0x4c1, 0x43, 0x0, 0x0) 6.496695539s ago: executing program 0 (id=2947): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={0x0, 0xfc}}, 0x0) syz_emit_ethernet(0xfef3, &(0x7f0000000200)={@local, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x64, 0x11, 0x0, @remote, @local, {[], {0x4e20, 0xe22, 0x64, 0x0, @wg=@response={0x2, 0x1, 0x100004, "628e0960f6d6d3f6ee6d6b84b345dccac643e7df3e526ff07833b291322d4a74", "882ed6741e7632daeaec0c95f2ad1cd6", {"8fb3d9fd3efe8e4ea8b5ec7448ddd6a3", "215990e1b896120966af96b22cf049f0"}}}}}}}}, 0x0) 6.367907771s ago: executing program 3 (id=2948): r0 = open(&(0x7f0000000240)='./file0\x00', 0x145142, 0x114) ftruncate(r0, 0x401) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x27, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='mm_page_free\x00', r1}, 0x10) mmap(&(0x7f0000000000/0x400000)=nil, 0x1400000, 0x0, 0xc3072, 0xffffffffffffffff, 0x0) sendfile(r0, r0, 0x0, 0x800000009) 6.308569192s ago: executing program 2 (id=2949): bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x11) socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, 0x0, 0x0) sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x1c, 0x3, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24040800}, 0x8d0) 6.290624102s ago: executing program 0 (id=2950): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000002c8518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) umount2(0x0, 0x7) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge0\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x44}}, 0x0) r2 = socket(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0) 6.179814003s ago: executing program 3 (id=2951): syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) syz_open_dev$tty1(0xc, 0x4, 0x1) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = socket$inet(0x2, 0x3, 0x2) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB], 0x48) socketpair(0x0, 0x0, 0x0, &(0x7f00000006c0)) setsockopt$inet_mreqsrc(r4, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x55f, &(0x7f0000000d00)="$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") 6.141602634s ago: executing program 2 (id=2952): bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b708"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, @void, @value}, 0x94) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000400)={'batadv0\x00', 0x0}) sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000580)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010025bdf000fcdbdf251000000008000300", @ANYRES32=r2, @ANYBLOB="08000600", @ANYBLOB="05"], 0x34}}, 0x20004804) 6.138200264s ago: executing program 0 (id=2953): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nfc(0x0, r1) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000380)=0x0) sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, r2, 0x1, 0x70bd26, 0x23c, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r3}]}, 0x1c}}, 0x0) write$nci(r0, 0x0, 0x0) 5.748179919s ago: executing program 2 (id=2954): r0 = socket$nl_route(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@delchain={0x24, 0x5f, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x5, 0x2}, {0x1, 0xe}}}, 0x24}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@dellink={0x20, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10820, 0x400}}, 0x20}}, 0x4084) 5.748001068s ago: executing program 0 (id=2955): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'macvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="500000001000cff500000000ffffffff00000700", @ANYRES32=0x0, @ANYBLOB="000000000140060030001280080001006873720024000280050007000100000008000100", @ANYRES32=r2, @ANYBLOB="08000200", @ANYRES32], 0x50}}, 0x0) 5.232090405s ago: executing program 4 (id=2956): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = socket$inet(0x2, 0x3, 0x8d) setsockopt$inet_msfilter(r1, 0x0, 0x8, &(0x7f00000000c0)=ANY=[], 0x1) getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000200)={0x0, @local, @local}, &(0x7f0000000140)=0xc) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @multicast1}, 0x71, r2}) ioctl(r3, 0x8916, &(0x7f0000000000)) 1.266980354s ago: executing program 0 (id=2957): socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) r0 = socket$can_bcm(0x1d, 0x2, 0x2) ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000080)={'vxcan1\x00', 0x0}) connect$can_bcm(r0, &(0x7f0000000300)={0x1d, r1}, 0x10) sendmsg$can_bcm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=ANY=[@ANYBLOB="05"], 0x48}}, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000000c0)={'vxcan1\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000680)=@newtfilter={0x5c, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r4, {0x1}, {0x0, 0xa}}, [@TCA_RATE={0x6, 0x5, {0x0, 0x6}}, @TCA_RATE={0x6, 0x5, {0x3, 0x6}}, @filter_kind_options=@f_u32={{0x8}, {0x20, 0x2, [@TCA_U32_FLAGS={0x8, 0xb, 0x2}, @TCA_U32_INDEV={0x14, 0x8, 'syzkaller1\x00'}]}}]}, 0x5c}, 0x1, 0xf0ffffffffffff}, 0x0) 1.243040225s ago: executing program 2 (id=2958): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000300)={'bridge0\x00', 0x0}) sendmsg$ETHTOOL_MSG_DEBUG_GET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000580)={0x20, r1, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}}, 0x40) 1.226644795s ago: executing program 4 (id=2959): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={0x0, 0xfc}}, 0x0) syz_emit_ethernet(0xfef3, &(0x7f0000000200)={@local, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010100", 0x64, 0x11, 0x0, @remote, @local, {[], {0x4e20, 0xe22, 0x64, 0x0, @wg=@response={0x2, 0x1, 0x100004, "628e0960f6d6d3f6ee6d6b84b345dccac643e7df3e526ff07833b291322d4a74", "882ed6741e7632daeaec0c95f2ad1cd6", {"8fb3d9fd3efe8e4ea8b5ec7448ddd6a3", "215990e1b896120966af96b22cf049f0"}}}}}}}}, 0x0) 1.107955177s ago: executing program 4 (id=2960): r0 = syz_open_dev$loop(&(0x7f00000005c0), 0x9, 0x12d600) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cpuacct.usage_user\x00', 0x275a, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10) write$binfmt_misc(r1, &(0x7f0000001000), 0xe09) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x1000, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2abfc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0155aaffffffffffff0300", "2809e85397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac0000000000000000000400", "90010000009265406c09306903d800", [0x0, 0x1]}}) 1.107714807s ago: executing program 3 (id=2961): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfe000000, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0, 0x0, 0x5}, 0x18) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r1, 0x0) syz_emit_ethernet(0x4a, &(0x7f0000000640)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x2}}}}}}}, 0x0) 1.107596397s ago: executing program 4 (id=2962): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000002c8518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, @void, @value}, 0x94) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000006c0)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) umount2(0x0, 0x7) r1 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge0\x00'}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x44}}, 0x0) r2 = socket(0x10, 0x3, 0x0) sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0) 1.062972997s ago: executing program 3 (id=2963): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x597, &(0x7f0000000b80)="$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") openat(0xffffffffffffff9c, 0x0, 0x105042, 0x40) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x14}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, 0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000d0039000000000000b4a518110000", @ANYRES32=r1], 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) r3 = socket$unix(0x1, 0x2, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) 1.050651377s ago: executing program 4 (id=2964): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0x0) ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x0, &(0x7f0000000240)={0x0, 0x0, 0xfffc, 0x360}, 0x8, 0x9, 0x80, 0x0, 0x0, 0x101, 0x0}) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB="58000000020605000000000000000000000000000900020073797a3100000000050005000a000000050001000600000013000300686173683a6e65742c696661636500000c0007800800124005000000050004"], 0x58}, 0x1, 0x0, 0x0, 0x1}, 0x800) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000fc0)={0xffffffffffffffff}) sendmsg$inet(r2, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f0000000300)="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", 0xcb3}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0) syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0) 350.5µs ago: executing program 2 (id=2965): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00'}, 0x18) r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15) pwrite64(r4, &(0x7f0000000140)='2', 0xfdef, 0xe7c) ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000000)={0x8, 0x2}) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) ioctl$FS_IOC_GETFSSYSFSPATH(0xffffffffffffffff, 0x80811501, &(0x7f0000000580)={0x80}) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mlxsw_sp_acl_atcam_entry_add_ctcam_spill\x00', r6, 0x0, 0x6}, 0x18) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r5}, &(0x7f0000000380), &(0x7f00000003c0)=r6}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) 171.28µs ago: executing program 3 (id=2966): ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', 0x0}) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'macvlan0\x00', 0x0}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="500000001000cff500000000ffffffff00000700", @ANYRES32=0x0, @ANYBLOB="000000000140060030001280080001006873720024000280050007000100000008000100", @ANYRES32=r2, @ANYBLOB="08000200", @ANYRES32=r0], 0x50}}, 0x0) 0s ago: executing program 3 (id=2967): r0 = socket$nl_route(0x10, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000c00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'batadv_slave_1\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)=@delchain={0x24, 0x5f, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x5, 0x2}, {0x1, 0xe}}}, 0x24}}, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=@dellink={0x20, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3, 0x10820, 0x400}}, 0x20}}, 0x4084) kernel console output (not intermixed with test programs): BOS descriptor or descriptor too short [ 116.211989][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 116.213122][ T7] usb 1-1: unable to read config index 0 descriptor/start: -71 [ 116.216796][ T7] usb 1-1: can't read configurations, error -71 [ 116.220589][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 116.321314][ T6728] netlink: 8 bytes leftover after parsing attributes in process `syz.4.969'. [ 116.568857][ T6741] loop3: detected capacity change from 0 to 1024 [ 116.581475][ T6741] EXT4-fs: Ignoring removed orlov option [ 116.583007][ T6741] EXT4-fs: Ignoring removed nomblk_io_submit option [ 116.624215][ T6741] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 116.745231][ T6751] loop4: detected capacity change from 0 to 128 [ 116.791816][ T6751] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 116.812790][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 117.119139][ T6771] netlink: 20 bytes leftover after parsing attributes in process `syz.2.986'. [ 117.172605][ T4305] EXT4-fs (loop4): unmounting filesystem. [ 117.250063][ T6778] loop3: detected capacity change from 0 to 1024 [ 117.270455][ T6778] EXT4-fs: Ignoring removed orlov option [ 117.271942][ T6778] EXT4-fs: Ignoring removed nomblk_io_submit option [ 117.343029][ T6778] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 117.517770][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 117.774039][ T6803] loop3: detected capacity change from 0 to 128 [ 117.790411][ T6803] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 118.023781][ T6812] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1004'. [ 118.030261][ T6812] device bridge0 entered promiscuous mode [ 118.041450][ T6812] device macvtap1 entered promiscuous mode [ 118.046545][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 118.065890][ T6814] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1005'. [ 118.095190][ T6812] device bridge0 left promiscuous mode [ 118.637090][ T6841] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1018'. [ 118.737257][ T6845] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1020'. [ 118.747162][ T6847] loop3: detected capacity change from 0 to 1024 [ 118.752845][ T6847] EXT4-fs: Ignoring removed orlov option [ 118.777478][ T6847] EXT4-fs: Ignoring removed nomblk_io_submit option [ 118.838003][ T6847] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 118.924316][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 118.958179][ T6858] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1025'. [ 119.137316][ T6871] loop1: detected capacity change from 0 to 128 [ 119.171180][ T6871] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 119.205706][ T6874] vhci_hcd: default hub control req: 0000 v0000 i0000 l31125 [ 119.388388][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 119.406389][ T6879] loop4: detected capacity change from 0 to 1024 [ 119.408718][ T6879] EXT4-fs: Ignoring removed orlov option [ 119.410059][ T6879] EXT4-fs: Ignoring removed nomblk_io_submit option [ 119.440118][ T6879] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 119.578778][ T4305] EXT4-fs (loop4): unmounting filesystem. [ 119.661194][ T6897] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1040'. [ 119.680226][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.682329][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.708948][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.710951][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.729199][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.731153][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.733046][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.749740][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.751690][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.752747][ T6900] loop2: detected capacity change from 0 to 128 [ 119.763786][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.765620][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.767649][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.769611][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.771528][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.773393][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.774605][ T6900] EXT4-fs: Ignoring removed nobh option [ 119.801422][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.805442][ T6900] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 119.808965][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.810839][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.821851][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.827192][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.829110][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.830999][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.832749][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.866614][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.868508][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.870344][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.872257][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.904968][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.906913][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.908823][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.910738][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.912606][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.922692][ T6908] loop3: detected capacity change from 0 to 128 [ 119.945425][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.948440][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.950405][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.952336][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.955415][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.957365][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.959258][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.961212][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.963090][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.967804][ T6908] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 119.976120][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.980951][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.982902][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.985520][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.987604][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.989458][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.991409][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.993369][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.996517][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 119.998679][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.000548][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.002534][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.005694][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.007954][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.009871][ T27] kauditd_printk_skb: 112 callbacks suppressed [ 120.009880][ T27] audit: type=1326 audit(119.970:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz.3.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 120.017270][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.018249][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 120.019182][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.022767][ T27] audit: type=1326 audit(119.970:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz.3.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 120.029051][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.030940][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.032814][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.035198][ T27] audit: type=1326 audit(119.970:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz.3.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=293 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 120.040820][ T27] audit: type=1326 audit(119.970:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz.3.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 120.047142][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.049057][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.050856][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.052825][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.055205][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.057085][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.058933][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.060820][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.062702][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.065299][ T27] audit: type=1326 audit(119.970:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz.3.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 120.070957][ T27] audit: type=1326 audit(119.970:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz.3.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 120.076942][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.078829][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.080824][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.082756][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.085240][ T27] audit: type=1326 audit(120.010:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz.3.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 120.090909][ T27] audit: type=1326 audit(120.010:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz.3.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 120.096904][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.098858][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.100663][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.102475][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.104843][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.106717][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.107343][ T27] audit: type=1326 audit(120.010:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz.3.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 120.108630][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.108652][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.118870][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.120686][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.122539][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.124972][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.126883][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.128686][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.130589][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.132345][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.134753][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.136664][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.138438][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.140288][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.143828][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.145726][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.147643][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.149751][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.151734][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.153499][ T27] audit: type=1326 audit(120.050:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6907 comm="syz.3.1047" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 120.160525][ T6920] loop2: detected capacity change from 0 to 1024 [ 120.162722][ T6920] EXT4-fs: Ignoring removed orlov option [ 120.165179][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.167059][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.169001][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.170924][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.172723][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.184102][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.185981][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.187836][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.189737][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.191632][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.197989][ T6920] EXT4-fs: Ignoring removed nomblk_io_submit option [ 120.204023][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.205923][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.207762][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.209589][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.211419][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.213251][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.217559][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.219431][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.221255][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.223166][ T22] hid-generic 0400:0007:0003.0001: unknown main item tag 0x0 [ 120.232222][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 120.237887][ T6915] ALSA: seq fatal error: cannot create timer (-19) [ 120.251929][ T22] hid-generic 0400:0007:0003.0001: hidraw0: HID v0.00 Device [syz1] on syz1 [ 120.285250][ T6920] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 120.431745][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 120.468955][ T6932] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1056'. [ 120.779542][ T6954] loop1: detected capacity change from 0 to 1024 [ 120.781917][ T6954] EXT4-fs: Ignoring removed orlov option [ 120.802551][ T6954] EXT4-fs: Ignoring removed nomblk_io_submit option [ 120.844329][ T6954] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 120.935986][ T6966] netlink: 4500 bytes leftover after parsing attributes in process `syz.0.1072'. [ 120.990760][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 121.092095][ T6974] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1074'. [ 121.345469][ T6988] loop2: detected capacity change from 0 to 128 [ 121.372448][ T6988] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 121.514398][ T6964] fido_id[6964]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 121.530235][ T6995] can0: slcan on ttyS3. [ 121.558529][ T6999] loop3: detected capacity change from 0 to 1024 [ 121.560888][ T6999] EXT4-fs: Ignoring removed orlov option [ 121.562429][ T6999] EXT4-fs: Ignoring removed nomblk_io_submit option [ 121.619680][ T6999] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 121.635037][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 121.645121][ T7002] can0 (unregistered): slcan off ttyS3. [ 121.650408][ T6995] can0: slcan on ttyS3. [ 121.752276][ T7012] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1089'. [ 121.783868][ T6992] can0 (unregistered): slcan off ttyS3. [ 121.821780][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 122.237127][ T7047] loop4: detected capacity change from 0 to 128 [ 122.274658][ T7047] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 122.531055][ T4305] EXT4-fs (loop4): unmounting filesystem. [ 122.631979][ T7065] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1106'. [ 123.164932][ T7094] loop2: detected capacity change from 0 to 128 [ 123.210009][ T7094] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 123.278610][ T7100] loop1: detected capacity change from 0 to 1024 [ 123.304535][ T7100] EXT4-fs: Ignoring removed bh option [ 123.305917][ T7100] EXT4-fs: inline encryption not supported [ 123.352994][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 123.355785][ T7100] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000] [ 123.393968][ T7100] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #3: block 2: comm syz.1.1119: lblock 2 mapped to illegal pblock 2 (length 1) [ 123.454625][ T7100] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #3: block 48: comm syz.1.1119: lblock 0 mapped to illegal pblock 48 (length 1) [ 123.470230][ T7100] EXT4-fs error (device loop1): ext4_acquire_dquot:6802: comm syz.1.1119: Failed to acquire dquot type 0 [ 123.515160][ T7100] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5914: Corrupt filesystem [ 123.527120][ T7100] EXT4-fs error (device loop1): ext4_evict_inode:279: inode #11: comm syz.1.1119: mark_inode_dirty error [ 123.549056][ T7100] EXT4-fs warning (device loop1): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 123.562055][ T7100] EXT4-fs (loop1): 1 orphan inode deleted [ 123.570561][ T7100] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 123.574389][ T11] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:1: lblock 1 mapped to illegal pblock 1 (length 1) [ 123.579730][ T11] EXT4-fs error (device loop1): ext4_release_dquot:6838: comm kworker/u4:1: Failed to release dquot type 0 [ 123.594472][ T7100] EXT4-fs (loop1): re-mounted. Quota mode: writeback. [ 123.732707][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 123.763843][ T7118] loop4: detected capacity change from 0 to 512 [ 123.801804][ T7118] EXT4-fs warning (device loop4): ext4_enable_quotas:7054: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 123.810646][ T7127] netlink: 'syz.1.1129': attribute type 3 has an invalid length. [ 123.819132][ T7118] EXT4-fs (loop4): mount failed [ 123.860177][ T7129] loop3: detected capacity change from 0 to 128 [ 123.892775][ T7129] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 124.141989][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 125.743971][ T7213] lo speed is unknown, defaulting to 1000 [ 126.193869][ T2059] ieee802154 phy0 wpan0: encryption failed: -22 [ 126.195545][ T2059] ieee802154 phy1 wpan1: encryption failed: -22 [ 126.242389][ T7217] loop4: detected capacity change from 0 to 128 [ 126.281796][ T7217] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 126.317178][ T27] kauditd_printk_skb: 105 callbacks suppressed [ 126.317190][ T27] audit: type=1326 audit(262528.270:808): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7216 comm="syz.4.1169" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 126.334539][ T27] audit: type=1326 audit(262528.290:809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7216 comm="syz.4.1169" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 126.340095][ T27] audit: type=1326 audit(262528.290:810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7216 comm="syz.4.1169" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 126.450267][ T27] audit: type=1326 audit(262528.290:811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7216 comm="syz.4.1169" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=293 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 126.466726][ T27] audit: type=1326 audit(262528.290:812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7216 comm="syz.4.1169" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 126.473724][ T27] audit: type=1326 audit(262528.370:813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7216 comm="syz.4.1169" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 126.483706][ T27] audit: type=1326 audit(262528.370:814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7216 comm="syz.4.1169" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 126.489093][ T27] audit: type=1326 audit(262528.380:815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7216 comm="syz.4.1169" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 126.532786][ T27] audit: type=1326 audit(262528.430:816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7216 comm="syz.4.1169" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 126.574594][ T27] audit: type=1326 audit(262528.430:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7216 comm="syz.4.1169" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 127.101867][ T7267] IPv6: Can't replace route, no match found [ 127.556124][ T7285] loop4: detected capacity change from 0 to 512 [ 127.627845][ T7285] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 127.737940][ T7285] EXT4-fs (loop4): 1 truncate cleaned up [ 127.755058][ T7285] EXT4-fs warning (device loop4): verify_group_input:151: Cannot add at group 28729 (only 1 groups) [ 128.812817][ T7315] loop1: detected capacity change from 0 to 128 [ 129.122500][ T7325] loop1: detected capacity change from 0 to 4096 [ 129.717019][ T7353] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 129.718778][ T7353] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 129.729687][ T7353] vhci_hcd vhci_hcd.0: Device attached [ 129.771652][ T7353] loop3: detected capacity change from 0 to 512 [ 129.782849][ T7353] EXT4-fs: Ignoring removed mblk_io_submit option [ 129.807877][ T7353] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 129.856277][ T7354] vhci_hcd: connection closed [ 129.856593][ T5255] vhci_hcd: stop threads [ 129.858975][ T5255] vhci_hcd: release socket [ 129.864632][ T5255] vhci_hcd: disconnect device [ 129.923586][ T4611] vhci_hcd: vhci_device speed not set [ 130.397170][ T7388] serio: Serial port ptm0 [ 130.417692][ T7390] netlink: 328 bytes leftover after parsing attributes in process `syz.1.1244'. [ 130.459080][ T7388] IPVS: set_ctl: invalid protocol: 256 0.0.0.0:6145 [ 130.472504][ T7394] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1246'. [ 130.850971][ T7416] binfmt_misc: register: failed to install interpreter file ./file0 [ 130.922221][ T7420] loop3: detected capacity change from 0 to 128 [ 131.550088][ T7435] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 131.552584][ T7435] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 131.661905][ T7436] loop3: detected capacity change from 0 to 128 [ 132.512199][ T7453] loop4: detected capacity change from 0 to 128 [ 132.546185][ T27] kauditd_printk_skb: 82 callbacks suppressed [ 132.546198][ T27] audit: type=1326 audit(262534.500:900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7451 comm="syz.4.1271" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 132.563545][ T27] audit: type=1326 audit(262534.500:901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7451 comm="syz.4.1271" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 132.569233][ T27] audit: type=1326 audit(262534.500:902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7451 comm="syz.4.1271" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 132.642789][ T27] audit: type=1326 audit(262534.500:903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7451 comm="syz.4.1271" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=293 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 132.653520][ T27] audit: type=1326 audit(262534.500:904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7451 comm="syz.4.1271" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 132.658812][ T27] audit: type=1326 audit(262534.500:905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7451 comm="syz.4.1271" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 132.671847][ T27] audit: type=1326 audit(262534.500:906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7451 comm="syz.4.1271" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 132.683530][ T27] audit: type=1326 audit(262534.500:907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7451 comm="syz.4.1271" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 132.688452][ T27] audit: type=1326 audit(262534.520:908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7451 comm="syz.4.1271" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 132.697795][ T27] audit: type=1326 audit(262534.520:909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7451 comm="syz.4.1271" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 133.091098][ T7482] usb usb8: usbfs: process 7482 (syz.3.1284) did not claim interface 0 before use [ 133.233574][ T7485] loop2: detected capacity change from 0 to 512 [ 133.235900][ T7485] EXT4-fs: Ignoring removed mblk_io_submit option [ 133.412570][ T7493] loop1: detected capacity change from 0 to 128 [ 133.482828][ T7497] netlink: 'syz.4.1291': attribute type 1 has an invalid length. [ 133.502905][ T7500] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1292'. [ 133.553007][ T7500] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1292'. [ 134.399972][ T7537] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1307'. [ 134.400683][ T7536] loop1: detected capacity change from 0 to 128 [ 134.410970][ T7537] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1307'. [ 134.882455][ T7564] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1320'. [ 134.885167][ T7564] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1320'. [ 134.991390][ T7571] loop2: detected capacity change from 0 to 128 [ 135.427070][ T7594] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 135.430504][ T7594] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 135.446757][ T7596] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1333'. [ 135.449146][ T7596] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1333'. [ 135.451489][ T7596] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1333'. [ 135.459437][ T7596] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1333'. [ 135.758553][ T7610] loop3: detected capacity change from 0 to 128 [ 135.957261][ T7622] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1344'. [ 136.005280][ T7624] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1345'. [ 136.007821][ T7624] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1345'. [ 136.030507][ T7624] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1345'. [ 136.032865][ T7624] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1345'. [ 136.241708][ T7636] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1352'. [ 136.372021][ T7644] loop4: detected capacity change from 0 to 128 [ 136.422043][ T7641] loop3: detected capacity change from 0 to 8192 [ 136.468850][ T7641] loop3: p3 < > p4 [ 136.469866][ T7641] loop3: partition table partially beyond EOD, truncated [ 136.482042][ T7641] loop3: p4 start 131072 is beyond EOD, truncated [ 136.495741][ T7641] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 136.666878][ T7641] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 137.016315][ T7666] loop4: detected capacity change from 0 to 1024 [ 137.025050][ T7666] EXT4-fs: Ignoring removed oldalloc option [ 137.087766][ T6436] udevd[6436]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 137.362530][ T7676] loop3: detected capacity change from 0 to 128 [ 137.571473][ T27] kauditd_printk_skb: 252 callbacks suppressed [ 137.571486][ T27] audit: type=1326 audit(262539.520:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7675 comm="syz.3.1367" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=233 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 137.595665][ T27] audit: type=1326 audit(262539.550:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7675 comm="syz.3.1367" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 137.669240][ T27] audit: type=1326 audit(262539.620:1164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.4.1375" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 137.676933][ T27] audit: type=1326 audit(262539.640:1165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.4.1375" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=176 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 137.693298][ T27] audit: type=1326 audit(262539.640:1166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.4.1375" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 138.273346][ T7725] loop4: detected capacity change from 0 to 128 [ 138.333073][ T27] audit: type=1326 audit(262540.280:1167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.1391" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 138.338572][ T27] audit: type=1326 audit(262540.280:1168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.1391" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 138.369894][ T27] audit: type=1326 audit(262540.280:1169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.1391" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 138.412002][ T27] audit: type=1326 audit(262540.280:1170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.1391" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=293 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 138.474748][ T27] audit: type=1326 audit(262540.280:1171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.1391" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 138.642313][ T7738] loop4: detected capacity change from 0 to 512 [ 138.662073][ T7738] EXT4-fs: Ignoring removed nomblk_io_submit option [ 138.680069][ T7738] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 138.687553][ T7738] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters [ 138.703093][ T7738] EXT4-fs (loop4): Remounting filesystem read-only [ 138.714093][ T7738] EXT4-fs (loop4): 1 truncate cleaned up [ 138.720766][ T7738] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #2: block 4: comm syz.4.1396: lblock 0 mapped to illegal pblock 4 (length 1) [ 138.740496][ T7738] EXT4-fs (loop4): Remounting filesystem read-only [ 138.984318][ T7747] tipc: Started in network mode [ 138.985689][ T7747] tipc: Node identity 16c208b3f0ff, cluster identity 4711 [ 138.987538][ T7747] tipc: Enabled bearer , priority 0 [ 139.033302][ T7746] tipc: Resetting bearer [ 139.250607][ T7761] loop1: detected capacity change from 0 to 128 [ 139.282039][ T7761] EXT4-fs mount: 33 callbacks suppressed [ 139.282055][ T7761] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 139.491298][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 140.014658][ T4611] tipc: Node number set to 3862759603 [ 140.099706][ T7787] loop1: detected capacity change from 0 to 512 [ 140.210922][ T7789] loop1: detected capacity change from 0 to 128 [ 140.303377][ T7791] loop1: detected capacity change from 0 to 128 [ 140.341268][ T7791] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 140.433245][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 140.460965][ T7797] __nla_validate_parse: 15 callbacks suppressed [ 140.460979][ T7797] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1422'. [ 140.812250][ T7815] loop2: detected capacity change from 0 to 1024 [ 140.844577][ T7815] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 141.801860][ T7827] loop1: detected capacity change from 0 to 128 [ 141.822839][ T7827] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 141.887678][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 141.976618][ T7831] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1434'. [ 142.479805][ T7853] loop1: detected capacity change from 0 to 128 [ 142.504911][ T7853] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 142.557781][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 150.126787][ T7746] tipc: Disabling bearer [ 150.130286][ T7750] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1402'. [ 150.139930][ T7813] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1427'. [ 150.332621][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 150.438361][ T7885] loop4: detected capacity change from 0 to 128 [ 150.478453][ T7885] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 150.496586][ T27] kauditd_printk_skb: 113 callbacks suppressed [ 150.496598][ T27] audit: type=1326 audit(262552.450:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.4.1456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 150.505510][ T27] audit: type=1326 audit(262552.450:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.4.1456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 150.511085][ T27] audit: type=1326 audit(262552.450:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.4.1456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 150.517282][ T27] audit: type=1326 audit(262552.450:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.4.1456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=293 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 150.522929][ T27] audit: type=1326 audit(262552.450:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.4.1456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 150.529672][ T27] audit: type=1326 audit(262552.450:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.4.1456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 150.534242][ T7892] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1459'. [ 150.549304][ T27] audit: type=1326 audit(262552.470:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.4.1456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 150.561281][ T27] audit: type=1326 audit(262552.470:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.4.1456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=64 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 150.592042][ T27] audit: type=1326 audit(262552.510:1293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.4.1456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 150.623100][ T27] audit: type=1326 audit(262552.510:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.4.1456" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 150.701013][ T4305] EXT4-fs (loop4): unmounting filesystem. [ 150.802710][ T7907] bridge0: port 3(syz_tun) entered blocking state [ 150.811391][ T7907] bridge0: port 3(syz_tun) entered disabled state [ 150.845466][ T7907] device syz_tun entered promiscuous mode [ 150.848041][ T7907] bridge0: port 3(syz_tun) entered blocking state [ 150.849962][ T7907] bridge0: port 3(syz_tun) entered forwarding state [ 151.011550][ T7924] loop3: detected capacity change from 0 to 512 [ 151.049829][ T7927] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1475'. [ 151.110506][ T7924] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1474: bg 0: block 248: padding at end of block bitmap is not set [ 151.115774][ T7924] EXT4-fs error (device loop3): ext4_acquire_dquot:6802: comm syz.3.1474: Failed to acquire dquot type 1 [ 151.134952][ T7934] loop4: detected capacity change from 0 to 128 [ 151.148356][ T7924] EXT4-fs (loop3): 1 truncate cleaned up [ 151.150006][ T7924] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 151.159796][ T7934] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 151.189830][ T7940] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1480'. [ 151.305953][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 151.345068][ T4305] EXT4-fs (loop4): unmounting filesystem. [ 151.534923][ T7959] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1488'. [ 151.702472][ T7966] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1492'. [ 151.781095][ T7972] loop4: detected capacity change from 0 to 128 [ 151.804306][ T7972] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 151.896507][ T4305] EXT4-fs (loop4): unmounting filesystem. [ 152.018176][ T7982] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1500'. [ 152.187610][ T7993] loop3: detected capacity change from 0 to 4096 [ 152.202229][ T7998] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1507'. [ 152.226591][ T7993] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 152.290006][ T8006] loop1: detected capacity change from 0 to 128 [ 152.313960][ T8009] netlink: 'syz.4.1511': attribute type 1 has an invalid length. [ 152.322209][ T8006] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 152.354693][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 152.550795][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 152.607522][ T8022] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1516'. [ 152.636136][ T8025] loop1: detected capacity change from 0 to 1024 [ 152.706336][ T8025] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 152.867520][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 152.980365][ T8047] loop4: detected capacity change from 0 to 128 [ 153.021854][ T8047] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 153.189236][ T4305] EXT4-fs (loop4): unmounting filesystem. [ 153.209971][ T8064] syz.0.1535 (8064): /proc/8063/oom_adj is deprecated, please use /proc/8063/oom_score_adj instead. [ 153.353496][ T8073] netlink: 'syz.1.1541': attribute type 21 has an invalid length. [ 153.590873][ T8092] loop1: detected capacity change from 0 to 128 [ 153.642551][ T8092] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 153.796146][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 153.828181][ T8097] loop3: detected capacity change from 0 to 8192 [ 153.850824][ T8097] loop3: p1 p2 p3 p4 [ 153.850824][ T8097] p3: [ 153.852984][ T8097] loop3: partition table partially beyond EOD, truncated [ 153.855381][ T8097] loop3: p1 start 51379968 is beyond EOD, truncated [ 153.857005][ T8097] loop3: p2 start 4293394690 is beyond EOD, truncated [ 153.865450][ T8097] loop3: p3 size 100663552 extends beyond EOD, truncated [ 153.868864][ T8097] loop3: p4 size 50331648 extends beyond EOD, truncated [ 153.875483][ T8097] loop3: p5 start 51379968 is beyond EOD, truncated [ 153.877169][ T8097] loop3: p6 start 4293394690 is beyond EOD, truncated [ 153.886424][ T8097] loop3: p7 size 100663552 extends beyond EOD, truncated [ 154.250117][ T8131] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 154.635925][ T8157] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 154.637713][ T8157] vhci_hcd: default hub control req: 1f03 v0017 i0001 l0 [ 154.696176][ T7919] udevd[7919]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 154.701436][ T7916] udevd[7916]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 154.712079][ T7863] udevd[7863]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory [ 154.763888][ T8163] loop4: detected capacity change from 0 to 1024 [ 154.798589][ T8163] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 154.812050][ T8171] loop1: detected capacity change from 0 to 128 [ 154.876272][ T8171] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 154.898999][ T4305] EXT4-fs (loop4): unmounting filesystem. [ 155.064888][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 155.190911][ T8180] netlink: 'syz.4.1589': attribute type 3 has an invalid length. [ 155.317073][ T8192] __nla_validate_parse: 12 callbacks suppressed [ 155.317086][ T8192] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1594'. [ 155.370607][ T8187] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1592'. [ 155.548494][ T8202] loop1: detected capacity change from 0 to 512 [ 155.566525][ T8206] loop4: detected capacity change from 0 to 128 [ 155.568965][ T8202] EXT4-fs error (device loop1): ext4_get_journal_inode:5723: inode #32: comm syz.1.1599: iget: special inode unallocated [ 155.591777][ T8202] EXT4-fs (loop1): no journal found [ 155.593002][ T8202] EXT4-fs (loop1): can't get journal size [ 155.593160][ T8206] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 155.628420][ T8202] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 155.631224][ T8202] EXT4-fs error (device loop1): ext4_protect_reserved_inode:160: inode #32: comm syz.1.1599: iget: special inode unallocated [ 155.637460][ T8202] EXT4-fs (loop1): failed to initialize system zone (-117) [ 155.639342][ T8202] EXT4-fs (loop1): mount failed [ 155.668396][ T27] kauditd_printk_skb: 55 callbacks suppressed [ 155.668410][ T27] audit: type=1326 audit(262557.620:1348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8210 comm="syz.0.1603" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffa5d5a768 code=0x0 [ 155.782943][ T8202] lo speed is unknown, defaulting to 1000 [ 155.806542][ T8221] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1606'. [ 155.889161][ T4305] EXT4-fs (loop4): unmounting filesystem. [ 155.985929][ T8230] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1610'. [ 156.035860][ T8226] smc: net device bond0 applied user defined pnetid SYZ2 [ 156.038590][ T8226] smc: net device bond0 erased user defined pnetid SYZ2 [ 156.159108][ T8237] netlink: 'syz.3.1613': attribute type 1 has an invalid length. [ 156.192794][ T8237] 8021q: adding VLAN 0 to HW filter on device bond1 [ 156.207472][ T8237] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1613'. [ 156.211144][ T8244] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1616'. [ 156.365142][ T8251] loop2: detected capacity change from 0 to 128 [ 156.398003][ T8251] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 156.548613][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 156.925887][ T8237] bond1 (unregistering): Released all slaves [ 156.944912][ T8264] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1624'. [ 157.118460][ T8277] loop3: detected capacity change from 0 to 764 [ 157.185257][ T8283] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1631'. [ 157.196757][ T8277] rock: directory entry would overflow storage [ 157.198685][ T8277] rock: sig=0x4f50, size=4, remaining=3 [ 157.200019][ T8277] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 157.232924][ T8285] loop2: detected capacity change from 0 to 128 [ 157.314988][ T8285] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 157.537776][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 157.701985][ T8300] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1639'. [ 158.083113][ T8327] loop2: detected capacity change from 0 to 128 [ 158.106047][ T8327] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 158.338655][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 158.364361][ T8336] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1655'. [ 158.366687][ T8336] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 158.368400][ T8336] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 158.394329][ T8336] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 158.396300][ T8336] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 158.554098][ T8347] 8021q: VLANs not supported on ip6gre0 [ 158.744854][ T8355] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 158.746726][ T8355] vhci_hcd: default hub control req: 1f03 v0017 i0001 l0 [ 158.753574][ T4310] Bluetooth: hci0: command 0x0406 tx timeout [ 158.755828][ T4310] Bluetooth: hci1: command 0x0406 tx timeout [ 158.758455][ T4308] Bluetooth: hci3: command 0x0406 tx timeout [ 158.760122][ T4298] Bluetooth: hci4: command 0x0406 tx timeout [ 158.760164][ T47] Bluetooth: hci2: command 0x0406 tx timeout [ 159.136118][ T8369] loop3: detected capacity change from 0 to 8192 [ 159.148529][ T8369] FAT-fs (loop3): Unrecognized mount option "H!1`w )ea뀋-sà_uŪ][_Hqm5W)-3?b5e]C"XG \ZHPX017777777777777777777770xffffffffffffffff18446744073709551615" or missing value [ 159.201675][ T7919] I/O error, dev loop3, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 160.344745][ T8455] __nla_validate_parse: 5 callbacks suppressed [ 160.344759][ T8455] netlink: 9412 bytes leftover after parsing attributes in process `syz.1.1710'. [ 160.444336][ T8460] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1713'. [ 160.596015][ T8474] loop1: detected capacity change from 0 to 128 [ 160.623771][ T8474] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 160.690467][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 160.753851][ T8484] loop1: detected capacity change from 0 to 512 [ 160.774550][ T8484] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 160.777744][ T8484] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 160.791505][ T8484] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1723: invalid indirect mapped block 4294967295 (level 1) [ 160.810833][ T8484] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.1723: invalid indirect mapped block 4294967295 (level 1) [ 160.817597][ T8484] EXT4-fs (loop1): 2 truncates cleaned up [ 160.819015][ T8484] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 160.937624][ T8495] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1726'. [ 160.948380][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 160.976337][ T8494] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1728'. [ 160.999482][ T8499] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1731'. [ 161.001736][ T8499] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1731'. [ 161.977181][ T8514] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1736'. [ 161.989593][ T8513] lo speed is unknown, defaulting to 1000 [ 162.279749][ T8531] netlink: 44 bytes leftover after parsing attributes in process `syz.1.1744'. [ 162.281840][ T8531] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1744'. [ 162.306386][ T8536] loop2: detected capacity change from 0 to 128 [ 162.347610][ T8536] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 162.408396][ T8540] IPv6: NLM_F_CREATE should be specified when creating new route [ 162.613589][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 162.750748][ T8551] netlink: 'syz.0.1752': attribute type 1 has an invalid length. [ 162.839282][ T8559] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 162.841011][ T8559] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 162.847388][ T8559] vhci_hcd vhci_hcd.0: Device attached [ 162.865449][ T8559] vhci_hcd vhci_hcd.0: pdev(2) rhport(1) sockfd(5) [ 162.867075][ T8559] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 162.868953][ T8559] vhci_hcd vhci_hcd.0: Device attached [ 162.892702][ T8559] vhci_hcd vhci_hcd.0: pdev(2) rhport(2) sockfd(7) [ 162.894447][ T8559] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 162.896717][ T8559] vhci_hcd vhci_hcd.0: Device attached [ 162.913045][ T8559] vhci_hcd vhci_hcd.0: pdev(2) rhport(3) sockfd(9) [ 162.914769][ T8559] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 162.917180][ T8559] vhci_hcd vhci_hcd.0: Device attached [ 162.932227][ T8559] vhci_hcd vhci_hcd.0: pdev(2) rhport(4) sockfd(11) [ 162.933998][ T8559] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 162.942393][ T8559] vhci_hcd vhci_hcd.0: Device attached [ 162.961343][ T8576] loop4: detected capacity change from 0 to 128 [ 162.969647][ T8559] vhci_hcd vhci_hcd.0: pdev(2) rhport(5) sockfd(13) [ 162.971357][ T8559] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 162.993170][ T8559] vhci_hcd vhci_hcd.0: Device attached [ 163.015257][ T8579] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus [ 163.019215][ T8575] vhci_hcd: connection closed [ 163.019610][ T4341] vhci_hcd: stop threads [ 163.027289][ T4341] vhci_hcd: release socket [ 163.028161][ T8572] vhci_hcd: connection closed [ 163.028758][ T8570] vhci_hcd: connection closed [ 163.030332][ T8568] vhci_hcd: connection closed [ 163.031108][ T8565] vhci_hcd: connection closed [ 163.033057][ T8560] vhci_hcd: connection closed [ 163.034633][ T4341] vhci_hcd: disconnect device [ 163.037291][ T4341] vhci_hcd: stop threads [ 163.040670][ T4341] vhci_hcd: release socket [ 163.043010][ T4341] vhci_hcd: disconnect device [ 163.043580][ T4611] vhci_hcd: vhci_device speed not set [ 163.049944][ T4341] vhci_hcd: stop threads [ 163.052231][ T4341] vhci_hcd: release socket [ 163.059280][ T4341] vhci_hcd: disconnect device [ 163.066518][ T4341] vhci_hcd: stop threads [ 163.069915][ T4341] vhci_hcd: release socket [ 163.080418][ T4341] vhci_hcd: disconnect device [ 163.084923][ T4341] vhci_hcd: stop threads [ 163.087172][ T4341] vhci_hcd: release socket [ 163.090617][ T4341] vhci_hcd: disconnect device [ 163.102742][ T8582] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1761'. [ 163.108561][ T4341] vhci_hcd: stop threads [ 163.112407][ T4341] vhci_hcd: release socket [ 163.113872][ T4611] usb 6-1: new full-speed USB device number 2 using vhci_hcd [ 163.116205][ T4341] vhci_hcd: disconnect device [ 163.186568][ T8587] loop3: detected capacity change from 0 to 128 [ 163.197450][ T8587] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 163.478201][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 163.510995][ T27] audit: type=1326 audit(262565.460:1349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 163.530805][ T27] audit: type=1326 audit(262565.480:1350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 163.542603][ T8607] loop3: detected capacity change from 0 to 1024 [ 163.560269][ T8607] EXT4-fs (loop3): bad geometry: block count 1310720 exceeds size of device (512 blocks) [ 163.560368][ T27] audit: type=1326 audit(262565.510:1351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 163.588263][ T27] audit: type=1326 audit(262565.510:1352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 163.604104][ T27] audit: type=1326 audit(262565.510:1353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 163.611819][ T7919] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 163.628963][ T27] audit: type=1326 audit(262565.510:1354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 163.650160][ T8607] netlink: 'syz.3.1770': attribute type 1 has an invalid length. [ 163.653505][ T27] audit: type=1326 audit(262565.510:1355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 163.662810][ T8609] loop2: detected capacity change from 0 to 256 [ 163.684686][ T8609] FAT-fs (loop2): bogus number of FAT sectors [ 163.686242][ T8609] FAT-fs (loop2): Can't find a valid FAT filesystem [ 163.693637][ T27] audit: type=1326 audit(262565.510:1356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=38 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 163.709409][ T27] audit: type=1326 audit(262565.510:1357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8602 comm="syz.1.1771" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 163.969116][ T8626] loop2: detected capacity change from 0 to 128 [ 164.003078][ T8626] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 164.514059][ T8638] block device autoloading is deprecated and will be removed. [ 164.516760][ T8638] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1 [ 165.240580][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 165.259312][ T8645] loop0: detected capacity change from 0 to 512 [ 165.282626][ T8645] EXT2-fs (loop0): warning: feature flags set on rev 0 fs, running e2fsck is recommended [ 165.290825][ T27] audit: type=1326 audit(262567.250:1358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8646 comm="syz.1.1789" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 165.308010][ T8645] EXT2-fs (loop0): warning: maximal mount count reached, running e2fsck is recommended [ 165.310566][ T8645] EXT2-fs (loop0): 0.5b, 95/08/09, bs=4096, gc=1, bpg=32768, ipg=32, mo=8001c] [ 165.379041][ T8651] loop2: detected capacity change from 0 to 1024 [ 165.386338][ T8651] EXT4-fs (loop2): bad geometry: block count 1310720 exceeds size of device (512 blocks) [ 165.416728][ T8651] netlink: 'syz.2.1786': attribute type 1 has an invalid length. [ 165.439108][ T8655] __nla_validate_parse: 5 callbacks suppressed [ 165.439123][ T8655] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1792'. [ 165.450794][ T8655] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1792'. [ 165.472671][ T8655] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1792'. [ 165.483495][ T8655] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1792'. [ 165.935389][ T8663] loop2: detected capacity change from 0 to 512 [ 165.937570][ T8663] EXT4-fs: Ignoring removed nobh option [ 165.946663][ T8663] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 166.067151][ T8682] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1 [ 166.826517][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 167.011896][ T8697] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1810'. [ 167.033713][ T8697] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1810'. [ 167.035925][ T8697] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1810'. [ 167.037862][ T8697] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1810'. [ 167.067704][ T8701] loop1: detected capacity change from 0 to 1024 [ 167.083633][ T8701] EXT4-fs (loop1): bad geometry: block count 1310720 exceeds size of device (512 blocks) [ 167.249274][ T8710] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1816'. [ 167.567958][ T8715] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1 [ 167.576616][ T8720] loop4: detected capacity change from 0 to 512 [ 167.578873][ T8720] EXT4-fs: Ignoring removed nobh option [ 167.805978][ T8720] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 168.910910][ T4611] vhci_hcd: vhci_device speed not set [ 169.385820][ T8710] device hsr_slave_1 left promiscuous mode [ 170.471567][ T8738] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1825'. [ 170.474124][ T8738] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1825'. [ 170.659943][ T8736] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1824'. [ 170.666307][ T4305] EXT4-fs (loop4): unmounting filesystem. [ 170.998974][ T8762] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1835'. [ 171.041497][ T8757] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1843'. [ 171.142996][ T8767] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1837'. [ 171.155116][ T8767] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1837'. [ 171.286838][ T8768] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1 [ 172.015553][ T27] kauditd_printk_skb: 17 callbacks suppressed [ 172.015565][ T27] audit: type=1326 audit(262573.970:1376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8771 comm="syz.1.1838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 172.060446][ T27] audit: type=1326 audit(262573.970:1377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8771 comm="syz.1.1838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 172.067275][ T27] audit: type=1326 audit(262573.970:1378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8771 comm="syz.1.1838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=174 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 172.072556][ T27] audit: type=1326 audit(262573.970:1379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8771 comm="syz.1.1838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 172.114542][ T27] audit: type=1326 audit(262573.970:1380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8771 comm="syz.1.1838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 172.332891][ T8788] ieee802154 phy0 wpan0: encryption failed: -22 [ 172.338804][ T8757] device hsr_slave_1 left promiscuous mode [ 172.458381][ T8789] loop0: detected capacity change from 0 to 512 [ 172.466644][ T8789] EXT4-fs: Ignoring removed nobh option [ 172.761497][ T8789] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 174.067307][ T8773] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1839'. [ 174.072631][ T8793] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1848'. [ 174.453246][ T8804] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1853'. [ 174.892485][ T4307] EXT4-fs (loop0): unmounting filesystem. [ 175.537747][ T8793] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 175.585653][ T8793] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 175.631986][ T8793] bond0 (unregistering): Released all slaves [ 175.645306][ T8818] __nla_validate_parse: 1 callbacks suppressed [ 175.645319][ T8818] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1859'. [ 175.788663][ T8829] loop4: detected capacity change from 0 to 512 [ 175.826094][ T8829] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 175.849325][ T8837] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1867'. [ 175.860907][ T8829] EXT4-fs (loop4): 1 truncate cleaned up [ 175.862430][ T8829] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 175.940852][ T8842] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1868'. [ 175.946741][ T8845] loop2: detected capacity change from 0 to 512 [ 175.951878][ T8845] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 175.977655][ T4305] EXT4-fs (loop4): unmounting filesystem. [ 176.048422][ T8845] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 176.088935][ T4303] EXT4-fs (loop2): unmounting filesystem. [ 176.104477][ T8689] udevd[8689]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory [ 176.196739][ T8842] device hsr_slave_1 left promiscuous mode [ 176.439703][ T8852] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1873'. [ 176.440592][ T8853] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1881'. [ 176.442722][ T8854] netlink: 'syz.4.1874': attribute type 5 has an invalid length. [ 176.791837][ T8867] loop1: detected capacity change from 0 to 512 [ 176.800001][ T8867] EXT4-fs: Ignoring removed nobh option [ 177.083721][ T8867] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 178.452032][ T8689] udevd[8689]: inotify_add_watch(7, /dev/loop2, 10) failed: No such file or directory [ 178.464517][ T8689] udevd[8689]: inotify_add_watch(7, /dev/loop2, 10) failed: No such file or directory [ 179.211589][ T4296] EXT4-fs (loop1): unmounting filesystem. [ 179.328905][ T8885] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1887'. [ 179.355869][ T8890] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1888'. [ 179.425931][ T8891] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1885'. [ 180.509960][ T8903] loop3: detected capacity change from 0 to 2048 [ 180.528058][ T8903] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 180.566715][ T8903] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 180.581439][ T8903] EXT4-fs error (device loop3): ext4_ext_precache:627: inode #2: comm syz.3.1892: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 180.672546][ T4301] EXT4-fs (loop3): unmounting filesystem. [ 181.556935][ T8891] device hsr_slave_1 left promiscuous mode [ 181.756419][ T8922] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1901'. [ 181.800370][ T8924] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1900'. [ 182.284252][ T8959] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1914'. [ 183.016416][ T8968] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1917'. [ 183.700754][ T8959] device hsr_slave_1 left promiscuous mode [ 183.735095][ T8966] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1916'. [ 183.999379][ T8988] hub 4-0:1.0: USB hub found [ 184.001026][ T8988] hub 4-0:1.0: 8 ports detected [ 184.098190][ T8991] rdma_rxe: rxe_register_device failed with error -23 [ 184.100242][ T8991] rdma_rxe: failed to add lo [ 184.191355][ T8997] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1930'. [ 184.261064][ T8995] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1929'. [ 184.278051][ T8995] netlink: 196 bytes leftover after parsing attributes in process `syz.4.1929'. [ 184.280753][ T8995] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1929'. [ 184.298292][ T8995] netlink: 196 bytes leftover after parsing attributes in process `syz.4.1929'. [ 184.476534][ T9001] device bond1 entered promiscuous mode [ 184.484374][ T9001] 8021q: adding VLAN 0 to HW filter on device bond1 [ 184.749427][ T9030] infiniband syz0: set active [ 184.755584][ T4297] lo speed is unknown, defaulting to 1000 [ 184.841006][ T9035] lo speed is unknown, defaulting to 1000 [ 184.961789][ T9041] rdma_rxe: rxe_register_device failed with error -23 [ 184.973150][ T9041] rdma_rxe: failed to add lo [ 187.111616][ T9096] __nla_validate_parse: 4 callbacks suppressed [ 187.111630][ T9096] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1975'. [ 187.229402][ T9102] rdma_rxe: rxe_register_device failed with error -23 [ 187.231242][ T9102] rdma_rxe: failed to add lo [ 187.396257][ T2059] ieee802154 phy1 wpan1: encryption failed: -22 [ 187.446232][ T9122] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1987'. [ 188.361871][ T9135] block device autoloading is deprecated and will be removed. [ 188.570385][ T9151] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2000'. [ 188.581400][ T9151] IPv6: ADDRCONF(NETDEV_CHANGE): gre3: link becomes ready [ 188.649089][ T9158] rdma_rxe: rxe_register_device failed with error -23 [ 188.651089][ T9158] rdma_rxe: failed to add lo [ 188.689924][ T9162] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2013'. [ 188.703760][ T9162] IPv6: ADDRCONF(NETDEV_CHANGE): gre4: link becomes ready [ 189.040020][ T9195] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2019'. [ 189.049112][ T9195] IPv6: ADDRCONF(NETDEV_CHANGE): gre5: link becomes ready [ 189.076372][ T9199] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2021'. [ 189.326621][ T27] audit: type=1326 audit(262591.270:1381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9192 comm="syz.1.2018" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 189.354855][ T27] audit: type=1326 audit(262591.310:1382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9192 comm="syz.1.2018" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=208 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 189.383530][ T27] audit: type=1326 audit(262591.320:1383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9192 comm="syz.1.2018" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 189.389202][ T27] audit: type=1326 audit(262591.330:1384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9192 comm="syz.1.2018" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=167 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 189.448458][ T27] audit: type=1326 audit(262591.330:1385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9192 comm="syz.1.2018" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 190.212761][ T9229] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 190.230901][ T9229] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 190.251125][ T27] audit: type=1326 audit(262591.330:1386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9192 comm="syz.1.2018" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=209 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 190.274458][ T27] audit: type=1326 audit(262591.330:1387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9192 comm="syz.1.2018" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 190.299142][ T27] audit: type=1326 audit(262591.330:1388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9192 comm="syz.1.2018" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=73 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 190.317882][ T9231] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2035'. [ 190.322655][ T27] audit: type=1326 audit(262591.330:1389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9192 comm="syz.1.2018" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 190.340364][ T9231] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready [ 190.349631][ T27] audit: type=1326 audit(262591.330:1390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9192 comm="syz.1.2018" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 190.491899][ T9233] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2036'. [ 191.090880][ T9254] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2046'. [ 191.114194][ T9254] IPv6: ADDRCONF(NETDEV_CHANGE): gre5: link becomes ready [ 191.116190][ T9255] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2047'. [ 191.388611][ T9264] IPv6: ADDRCONF(NETDEV_CHANGE): gre6: link becomes ready [ 191.662473][ T9284] netlink: 'syz.1.2055': attribute type 3 has an invalid length. [ 191.845388][ T9296] IPv6: ADDRCONF(NETDEV_CHANGE): gre7: link becomes ready [ 191.881737][ T9300] (unnamed net_device) (uninitialized): ARP target 9.0.0.0 is already present [ 191.884606][ T9300] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (9) [ 191.889432][ T9300] 9pnet_fd: Insufficient options for proto=fd [ 192.630065][ T9328] lo speed is unknown, defaulting to 1000 [ 193.530927][ T9332] __nla_validate_parse: 4 callbacks suppressed [ 193.530942][ T9332] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2079'. [ 193.577242][ T9332] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready [ 193.750568][ T9338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2080'. [ 193.959462][ T9341] netlink: 4500 bytes leftover after parsing attributes in process `syz.4.2083'. [ 195.046111][ T9365] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2093'. [ 195.054464][ T9365] IPv6: ADDRCONF(NETDEV_CHANGE): gre4: link becomes ready [ 195.157430][ T27] kauditd_printk_skb: 31 callbacks suppressed [ 195.157443][ T27] audit: type=1326 audit(262597.110:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.3.2090" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 195.176355][ T27] audit: type=1326 audit(262597.130:1423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.3.2090" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=208 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 195.194444][ T27] audit: type=1326 audit(262597.150:1424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.3.2090" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 195.226786][ T27] audit: type=1326 audit(262597.150:1425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.3.2090" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=167 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 195.273167][ T27] audit: type=1326 audit(262597.150:1426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.3.2090" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 195.305674][ T27] audit: type=1326 audit(262597.150:1427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.3.2090" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=209 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 196.128805][ T27] audit: type=1326 audit(262597.150:1428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.3.2090" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 196.167510][ T27] audit: type=1326 audit(262597.150:1429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.3.2090" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=73 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 196.228552][ T27] audit: type=1326 audit(262597.150:1430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.3.2090" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 196.255658][ T9383] netlink: 4500 bytes leftover after parsing attributes in process `syz.1.2098'. [ 196.308658][ T27] audit: type=1326 audit(262597.150:1431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9361 comm="syz.3.2090" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=222 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 196.639570][ T9403] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2109'. [ 196.660007][ T9403] IPv6: ADDRCONF(NETDEV_CHANGE): gre8: link becomes ready [ 197.012834][ T9421] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2120'. [ 197.228495][ T9432] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2123'. [ 197.239013][ T9432] IPv6: ADDRCONF(NETDEV_CHANGE): gre3: link becomes ready [ 197.893117][ T9454] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2134'. [ 197.911845][ T9454] IPv6: ADDRCONF(NETDEV_CHANGE): gre9: link becomes ready [ 198.002881][ T9461] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2136'. [ 198.468583][ T9487] IPv6: ADDRCONF(NETDEV_CHANGE): gre5: link becomes ready [ 198.484267][ T9485] lo speed is unknown, defaulting to 1000 [ 198.992054][ T9514] __nla_validate_parse: 1 callbacks suppressed [ 198.992069][ T9514] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2161'. [ 199.013115][ T9514] IPv6: ADDRCONF(NETDEV_CHANGE): gre10: link becomes ready [ 199.605336][ T9543] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2175'. [ 199.888145][ T9548] sctp: [Deprecated]: syz.0.2177 (pid 9548) Use of int in max_burst socket option deprecated. [ 199.888145][ T9548] Use struct sctp_assoc_value instead [ 200.224046][ T9541] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2174'. [ 200.230288][ T9541] IPv6: ADDRCONF(NETDEV_CHANGE): gre4: link becomes ready [ 200.237008][ T9552] netlink: 'syz.0.2179': attribute type 13 has an invalid length. [ 200.340289][ T9559] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2182'. [ 200.387784][ T9562] siw: device registration error -23 [ 200.442777][ T9567] xt_hashlimit: size too large, truncated to 1048576 [ 202.551867][ T9552] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.554054][ T9552] bridge0: port 1(bridge_slave_0) entered disabled state [ 203.566938][ T9552] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 203.597385][ T9552] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 204.068131][ T9552] netdevsim netdevsim0 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.070354][ T9552] netdevsim netdevsim0 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.072289][ T9552] netdevsim netdevsim0 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.074754][ T9552] netdevsim netdevsim0 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 204.417095][ T9585] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2192'. [ 204.433994][ T9585] IPv6: ADDRCONF(NETDEV_CHANGE): gre6: link becomes ready [ 204.456542][ T9579] lo speed is unknown, defaulting to 1000 [ 204.577935][ T9595] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2196'. [ 204.696090][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 204.698291][ T9599] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 204.701112][ T9599] 8021q: adding VLAN 0 to HW filter on device bond0 [ 204.708680][ T9599] 8021q: adding VLAN 0 to HW filter on device team0 [ 204.753803][ T9599] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 204.757974][ T9598] netlink: 132 bytes leftover after parsing attributes in process `syz.4.2197'. [ 207.689162][ T9624] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2205'. [ 207.713794][ T9624] IPv6: ADDRCONF(NETDEV_CHANGE): gre6: link becomes ready [ 207.794637][ T9632] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2208'. [ 207.885273][ T9635] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2209'. [ 208.050036][ T9647] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2213'. [ 208.052358][ T9647] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 208.057206][ T9647] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 209.252123][ T9658] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2218'. [ 209.269994][ T9658] IPv6: ADDRCONF(NETDEV_CHANGE): gre7: link becomes ready [ 209.484234][ T9666] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2222'. [ 209.788697][ T27] kauditd_printk_skb: 16 callbacks suppressed [ 209.788709][ T27] audit: type=1326 audit(262611.740:1448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.2.2226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 209.804550][ T27] audit: type=1326 audit(262611.760:1449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.2.2226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 209.840559][ T27] audit: type=1326 audit(262611.760:1450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.2.2226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 209.864375][ T27] audit: type=1326 audit(262611.760:1451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.2.2226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 209.869570][ T27] audit: type=1326 audit(262611.760:1452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.2.2226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 209.875278][ T27] audit: type=1326 audit(262611.760:1453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.2.2226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 209.880674][ T27] audit: type=1326 audit(262611.760:1454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.2.2226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 209.886408][ T27] audit: type=1326 audit(262611.760:1455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.2.2226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=163 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 209.891947][ T27] audit: type=1326 audit(262611.760:1456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9673 comm="syz.2.2226" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 210.236535][ T9683] netlink: 2552 bytes leftover after parsing attributes in process `syz.1.2229'. [ 210.358067][ T9681] lo speed is unknown, defaulting to 1000 [ 210.655115][ T9689] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2232'. [ 210.659749][ T9689] IPv6: ADDRCONF(NETDEV_CHANGE): gre7: link becomes ready [ 211.275266][ T9697] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2235'. [ 212.830952][ T9723] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2243'. [ 212.869042][ T9723] IPv6: ADDRCONF(NETDEV_CHANGE): gre3: link becomes ready [ 213.484189][ T9734] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2248'. [ 213.848836][ T9743] netlink: 'syz.3.2252': attribute type 3 has an invalid length. [ 214.208289][ T9746] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 214.353697][ T4346] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 214.417484][ T9764] lo speed is unknown, defaulting to 1000 [ 214.555837][ T4346] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 214.558550][ T4346] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 214.561373][ T4346] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 214.569354][ T4346] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 214.571713][ T4346] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 214.582452][ T4346] usb 1-1: config 0 descriptor?? [ 214.722103][ T9774] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2264'. [ 214.730761][ T9774] IPv6: ADDRCONF(NETDEV_CHANGE): gre8: link becomes ready [ 215.099566][ T4346] usbhid 1-1:0.0: can't add hid device: -71 [ 215.101202][ T4346] usbhid: probe of 1-1:0.0 failed with error -71 [ 215.116912][ T4346] usb 1-1: USB disconnect, device number 8 [ 216.219152][ T27] audit: type=1326 audit(262618.170:1457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9789 comm="syz.1.2272" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 216.230062][ T27] audit: type=1326 audit(262618.180:1458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9789 comm="syz.1.2272" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 216.273496][ T27] audit: type=1326 audit(262618.180:1459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9789 comm="syz.1.2272" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 216.288985][ T27] audit: type=1326 audit(262618.180:1460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9789 comm="syz.1.2272" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 216.329506][ T27] audit: type=1326 audit(262618.180:1461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9789 comm="syz.1.2272" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 216.363647][ T27] audit: type=1326 audit(262618.180:1462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9789 comm="syz.1.2272" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=61 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 216.400373][ T27] audit: type=1326 audit(262618.180:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9789 comm="syz.1.2272" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 216.430728][ T27] audit: type=1326 audit(262618.180:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9789 comm="syz.1.2272" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9075a768 code=0x7ffc0000 [ 216.613280][ T9798] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2276'. [ 216.640077][ T9798] IPv6: ADDRCONF(NETDEV_CHANGE): gre9: link becomes ready [ 217.525674][ T9811] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 217.528214][ T9811] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 218.392532][ T9815] lo speed is unknown, defaulting to 1000 [ 218.464455][ T9820] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2284'. [ 218.630417][ T9831] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2289'. [ 218.648428][ T9831] IPv6: ADDRCONF(NETDEV_CHANGE): gre11: link becomes ready [ 218.782936][ T9843] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 218.788982][ T9843] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 220.413801][ T9860] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 220.416188][ T9860] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 221.550786][ T9868] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2301'. [ 221.563279][ T27] audit: type=1326 audit(262623.510:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.2300" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 221.574323][ T27] audit: type=1326 audit(262623.520:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.2300" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 221.590526][ T27] audit: type=1326 audit(262623.530:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.2300" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 221.624568][ T27] audit: type=1326 audit(262623.530:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.2300" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 221.630131][ T27] audit: type=1326 audit(262623.530:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.2300" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 221.649506][ T27] audit: type=1326 audit(262623.530:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.2300" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 221.658039][ T27] audit: type=1326 audit(262623.530:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.2300" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 221.670462][ T27] audit: type=1326 audit(262623.530:1472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.2300" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 221.677073][ T9876] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2306'. [ 221.681703][ T9876] IPv6: ADDRCONF(NETDEV_CHANGE): gre10: link becomes ready [ 221.684814][ T27] audit: type=1326 audit(262623.530:1473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.2300" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb6158c94 code=0x7ffc0000 [ 221.690486][ T27] audit: type=1326 audit(262623.530:1474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9862 comm="syz.2.2300" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=268 compat=0 ip=0xffffb615c2cc code=0x7ffc0000 [ 221.768031][ T9886] ieee802154 phy1 wpan1: encryption failed: -22 [ 221.880129][ T9893] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2324'. [ 221.897846][ T9893] IPv6: ADDRCONF(NETDEV_CHANGE): gre5: link becomes ready [ 222.807065][ T9908] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2318'. [ 223.425674][ T9922] lo speed is unknown, defaulting to 1000 [ 223.430254][ T9926] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2329'. [ 223.460843][ T9926] IPv6: ADDRCONF(NETDEV_CHANGE): gre11: link becomes ready [ 224.827197][ T9938] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2333'. [ 226.055972][ T9970] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2345'. [ 226.060656][ T9970] IPv6: ADDRCONF(NETDEV_CHANGE): gre12: link becomes ready [ 226.952924][ T9997] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2353'. [ 227.419946][T10017] netlink: 'syz.2.2358': attribute type 11 has an invalid length. [ 227.422123][T10017] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2358'. [ 227.623017][ T27] kauditd_printk_skb: 50 callbacks suppressed [ 227.623030][ T27] audit: type=1326 audit(262629.570:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10033 comm="syz.3.2363" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 227.640074][ T27] audit: type=1326 audit(262629.580:1526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10033 comm="syz.3.2363" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 227.657821][ T27] audit: type=1326 audit(262629.580:1527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10033 comm="syz.3.2363" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 227.673554][ T27] audit: type=1326 audit(262629.580:1528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10033 comm="syz.3.2363" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=100 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 227.686945][ T27] audit: type=1326 audit(262629.580:1529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10033 comm="syz.3.2363" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 228.005454][ T9997] team0 (unregistering): Port device team_slave_0 removed [ 228.018831][ T9997] team0 (unregistering): Port device team_slave_1 removed [ 228.083744][T10045] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2366'. [ 228.088426][T10045] IPv6: ADDRCONF(NETDEV_CHANGE): gre6: link becomes ready [ 229.451344][T10077] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2379'. [ 229.491893][T10077] IPv6: ADDRCONF(NETDEV_CHANGE): gre12: link becomes ready [ 230.222722][T10108] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2394'. [ 230.227326][T10108] IPv6: ADDRCONF(NETDEV_CHANGE): gre13: link becomes ready [ 230.425902][T10117] netlink: 'syz.4.2397': attribute type 2 has an invalid length. [ 230.431549][T10117] netlink: 'syz.4.2397': attribute type 1 has an invalid length. [ 230.609434][T10127] netlink: 256 bytes leftover after parsing attributes in process `syz.4.2402'. [ 230.668913][T10129] netlink: 'syz.4.2403': attribute type 1 has an invalid length. [ 230.687742][T10129] 8021q: adding VLAN 0 to HW filter on device bond1 [ 230.699961][T10129] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2403'. [ 231.465448][T10129] bond1 (unregistering): Released all slaves [ 235.605605][T10255] tipc: Started in network mode [ 235.619168][T10255] tipc: Node identity 7ac92403ba1e, cluster identity 4711 [ 235.621017][T10255] tipc: Enabled bearer , priority 0 [ 235.910042][T10251] tipc: Resetting bearer [ 236.114041][ T27] audit: type=1326 audit(262638.070:1530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.3.2471" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 236.121655][ T27] audit: type=1326 audit(262638.070:1531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.3.2471" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=54 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 236.138387][ T27] audit: type=1326 audit(262638.070:1532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.3.2471" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 236.743576][ T4611] tipc: Node number set to 3235324931 [ 247.815857][T10251] tipc: Disabling bearer [ 247.931275][T10301] infiniband syz0: set active [ 247.936665][T10301] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 247.941428][T10301] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 247.950679][T10301] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 247.960434][T10301] device bridge_slave_0 left promiscuous mode [ 247.963343][T10301] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.112341][T10301] device bridge_slave_1 left promiscuous mode [ 248.118558][T10301] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.187351][T10301] bond0: (slave bond_slave_0): Releasing backup interface [ 248.931835][T10301] bond0: (slave bond_slave_1): Releasing backup interface [ 248.959329][T10321] serio: Serial port ptm0 [ 249.075797][T10324] IPVS: set_ctl: invalid protocol: 256 0.0.0.0:6145 [ 249.955778][ T2059] ieee802154 phy1 wpan1: encryption failed: -22 [ 250.040938][T10301] team0: Port device team_slave_0 removed [ 250.061277][T10301] team0: Port device team_slave_1 removed [ 250.063906][T10301] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 250.065780][T10301] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 250.072373][T10301] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready [ 250.078803][T10301] IPv6: ADDRCONF(NETDEV_CHANGE): gre2: link becomes ready [ 250.080850][T10301] IPv6: ADDRCONF(NETDEV_CHANGE): gre3: link becomes ready [ 250.082844][T10301] IPv6: ADDRCONF(NETDEV_CHANGE): gre4: link becomes ready [ 250.085238][T10301] IPv6: ADDRCONF(NETDEV_CHANGE): gre5: link becomes ready [ 250.087090][T10301] IPv6: ADDRCONF(NETDEV_CHANGE): gre6: link becomes ready [ 250.090192][ T4297] lo speed is unknown, defaulting to 1000 [ 250.141689][T10318] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2488'. [ 250.340137][ T4346] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 250.343182][ T4346] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 250.346448][T10327] serio: Serial port ptm0 [ 250.760293][T10364] serio: Serial port ptm0 [ 250.827149][T10372] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 250.849671][T10364] IPVS: set_ctl: invalid protocol: 256 0.0.0.0:6145 [ 252.103589][T10379] serio: Serial port ptm0 [ 252.342691][T10388] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 252.635688][T10388] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 252.986854][ T27] audit: type=1107 audit(262654.940:1533): pid=10397 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 253.055236][ T111] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 253.059612][ T111] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz1] on syz0 [ 253.078992][T10399] tipc: New replicast peer: 0.0.255.255 [ 253.080451][T10399] tipc: Enabled bearer , priority 10 [ 253.254593][T10413] serio: Serial port ptm0 [ 253.301295][T10419] serio: Serial port ptm1 [ 253.339288][T10426] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 253.521233][T10434] IPVS: set_ctl: invalid protocol: 256 0.0.0.0:6145 [ 255.126595][T10466] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2548'. [ 255.452077][ T4611] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0 [ 255.456080][ T4611] hid-generic 0000:0000:0000.0004: hidraw0: HID v0.00 Device [syz1] on syz0 [ 255.689294][T10475] fido_id[10475]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 255.945779][T10496] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 256.059228][T10504] netlink: 'syz.1.2563': attribute type 4 has an invalid length. [ 256.062222][T10504] netlink: 'syz.1.2563': attribute type 4 has an invalid length. [ 257.667289][T10532] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2575'. [ 257.984761][ T27] audit: type=1326 audit(262659.940:1534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 257.990298][ T27] audit: type=1326 audit(262659.940:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 258.000118][ T27] audit: type=1326 audit(262659.940:1536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=130 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 258.041278][ T27] audit: type=1326 audit(262659.940:1537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 258.071658][ T27] audit: type=1326 audit(262659.940:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 258.091919][ T27] audit: type=1326 audit(262659.940:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=35 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 258.112194][ T27] audit: type=1326 audit(262659.940:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 258.209912][ T27] audit: type=1326 audit(262659.940:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 258.249917][ T27] audit: type=1326 audit(262659.940:1542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=261 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 258.272295][ T27] audit: type=1326 audit(262659.940:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 258.297942][ T27] audit: type=1326 audit(262659.940:1544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 258.341183][ T27] audit: type=1326 audit(262659.940:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10536 comm="syz.2.2577" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=119 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 258.938991][T10577] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2595'. [ 258.941158][T10577] netlink: 108 bytes leftover after parsing attributes in process `syz.2.2595'. [ 258.949732][T10577] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2595'. [ 258.951940][T10577] netlink: 108 bytes leftover after parsing attributes in process `syz.2.2595'. [ 258.954566][T10577] netlink: 84 bytes leftover after parsing attributes in process `syz.2.2595'. [ 261.941724][T10638] netlink: 'syz.2.2618': attribute type 39 has an invalid length. [ 262.097112][T10646] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2622'. [ 262.669588][T10675] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 262.735696][T10675] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 262.909597][T10675] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 263.699612][T10675] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 263.726051][ T27] kauditd_printk_skb: 64 callbacks suppressed [ 263.726063][ T27] audit: type=1326 audit(262665.680:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=215 compat=0 ip=0xffffb615a80c code=0x7ffc0000 [ 263.743573][ T27] audit: type=1326 audit(262665.690:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb6158c94 code=0x7ffc0000 [ 263.769550][ T27] audit: type=1326 audit(262665.690:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=57 compat=0 ip=0xffffb615906c code=0x7ffc0000 [ 263.808389][ T27] audit: type=1326 audit(262665.750:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 263.840256][ T27] audit: type=1326 audit(262665.780:1614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 263.870045][ T27] audit: type=1326 audit(262665.780:1615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 263.910093][T10675] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.912357][T10696] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2640'. [ 263.916710][ T27] audit: type=1326 audit(262665.780:1616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=287 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 263.950644][T10675] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.960713][ T27] audit: type=1326 audit(262665.780:1617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 263.979773][T10675] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.985227][T10675] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 263.989390][ T27] audit: type=1326 audit(262665.810:1618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=223 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 264.000932][ T27] audit: type=1326 audit(262665.810:1619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10686 comm="syz.3.2640" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 267.286655][T10799] netlink: 'syz.3.2688': attribute type 2 has an invalid length. [ 267.297312][T10799] netlink: 16126 bytes leftover after parsing attributes in process `syz.3.2688'. [ 267.561363][T10808] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 267.996108][T10832] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2704'. [ 268.045647][T10821] netlink: 'syz.4.2698': attribute type 39 has an invalid length. [ 268.059153][T10821] bridge0: port 3(syz_tun) entered disabled state [ 268.817634][T10821] device syz_tun left promiscuous mode [ 268.833774][T10821] bridge0: port 3(syz_tun) entered disabled state [ 271.997176][T10911] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2728'. [ 273.479038][T10953] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2753'. [ 273.665606][T10961] 9pnet: p9_errstr2errno: server reported unknown error [ 273.730063][T10963] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2758'. [ 273.809670][T10968] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 273.809670][T10968] The task syz.3.2759 (10968) triggered the difference, watch for misbehavior. [ 273.905711][ T27] kauditd_printk_skb: 45 callbacks suppressed [ 273.905726][ T27] audit: type=1326 audit(262675.800:1665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 273.917230][ T27] audit: type=1326 audit(262675.800:1666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=134 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 273.931648][ T27] audit: type=1326 audit(262675.800:1667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 273.948263][ T27] audit: type=1326 audit(262675.800:1668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=279 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 273.958489][ T27] audit: type=1326 audit(262675.800:1669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 273.967419][ T27] audit: type=1326 audit(262675.810:1670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=47 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 273.973284][ T27] audit: type=1326 audit(262675.810:1671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10969 comm="syz.4.2761" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 274.011381][T10953] device macvlan0 entered promiscuous mode [ 274.054042][T10953] device batadv_slave_1 entered promiscuous mode [ 274.104203][T10963] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 274.106966][T10971] netlink: 'syz.3.2759': attribute type 39 has an invalid length. [ 274.112447][T10963] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 274.221424][T10975] lo speed is unknown, defaulting to 1000 [ 274.534154][ T27] audit: type=1326 audit(262676.490:1672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10983 comm="syz.4.2767" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x0 [ 275.765213][T11018] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2783'. [ 275.767309][T11018] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2783'. [ 278.026279][T11034] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 278.039800][T11034] device batadv_slave_1 left promiscuous mode [ 278.167672][T11041] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2791'. [ 278.173923][T11045] device lo entered promiscuous mode [ 278.175657][T11047] tipc: New replicast peer: 255.255.255.255 [ 278.178659][T11047] tipc: Enabled bearer , priority 10 [ 279.605046][T11085] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2809'. [ 279.988418][T11085] device macvlan0 entered promiscuous mode [ 279.999002][T11087] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 280.024235][T11085] device batadv_slave_1 entered promiscuous mode [ 280.064789][T11085] debugfs: Directory 'hsr1' with parent 'hsr' already present! [ 280.066745][T11085] Cannot create hsr debugfs directory [ 280.336185][T11092] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 280.705733][T11092] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 280.709938][T11092] device batadv_slave_1 left promiscuous mode [ 281.000388][ T27] audit: type=1326 audit(262682.950:1673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11114 comm="syz.2.2824" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 281.018618][ T27] audit: type=1326 audit(262682.970:1674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11114 comm="syz.2.2824" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 281.043833][ T27] audit: type=1326 audit(262682.980:1675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11114 comm="syz.2.2824" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 281.064583][ T27] audit: type=1326 audit(262682.980:1676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11114 comm="syz.2.2824" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 281.088730][ T27] audit: type=1326 audit(262682.980:1677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11114 comm="syz.2.2824" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 281.110535][ T27] audit: type=1326 audit(262682.980:1678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11114 comm="syz.2.2824" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=110 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 281.135299][ T27] audit: type=1326 audit(262682.980:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11114 comm="syz.2.2824" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb615a768 code=0x7ffc0000 [ 281.208247][T11128] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2830'. [ 282.022602][T11132] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2827'. [ 282.179825][ T27] audit: type=1326 audit(262684.130:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11140 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa5d5a768 code=0x7ffc0000 [ 282.188147][ T27] audit: type=1326 audit(262684.150:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11140 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa5d5a768 code=0x7ffc0000 [ 282.205584][ T27] audit: type=1326 audit(262684.150:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11140 comm="syz.0.2832" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa5d5a768 code=0x7ffc0000 [ 282.589201][T11155] 9pnet: Could not find request transport: r [ 283.108170][T11172] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2842'. [ 283.167134][T11174] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 283.590176][T11191] 9pnet_fd: Insufficient options for proto=fd [ 283.848741][ T4310] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 283.852729][ T4310] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 283.859438][ T4310] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 283.861886][ T4310] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 283.878569][ T4310] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 283.880527][ T4310] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 283.908791][T11203] lo speed is unknown, defaulting to 1000 [ 285.953643][ T4300] Bluetooth: hci5: command 0x0409 tx timeout [ 286.401890][ T5256] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 286.413674][ T5256] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 286.430314][T11203] chnl_net:caif_netlink_parms(): no params data found [ 286.434662][T11226] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2862'. [ 286.618652][ T5256] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 286.621128][ T5256] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 286.665344][T11203] bridge0: port 1(bridge_slave_0) entered blocking state [ 286.667334][T11203] bridge0: port 1(bridge_slave_0) entered disabled state [ 286.669851][T11203] device bridge_slave_0 entered promiscuous mode [ 286.673366][T11203] bridge0: port 2(bridge_slave_1) entered blocking state [ 286.676980][T11203] bridge0: port 2(bridge_slave_1) entered disabled state [ 286.679558][T11203] device bridge_slave_1 entered promiscuous mode [ 286.797553][ T5256] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 286.809345][ T5256] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 286.852906][T11203] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 286.871366][T11203] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 287.978198][ T5256] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 287.981572][ T5256] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 1] type 2 family 0 port 20000 - 0 [ 288.012884][T11287] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2883'. [ 288.033703][ T4310] Bluetooth: hci5: command 0x041b tx timeout [ 288.049350][T11203] team0: Port device team_slave_0 added [ 288.066006][T11203] team0: Port device team_slave_1 added [ 288.127949][T11203] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 288.153744][T11203] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 288.193583][T11203] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 288.197601][T11203] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 288.199220][T11203] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 288.256150][T11203] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 288.459988][T11203] device hsr_slave_0 entered promiscuous mode [ 288.505160][T11203] device hsr_slave_1 entered promiscuous mode [ 288.557880][T11203] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 288.559667][T11203] Cannot create hsr debugfs directory [ 288.576039][T11294] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2886'. [ 288.880244][ T5256] tipc: Disabling bearer [ 288.884763][ T5256] tipc: Left network mode [ 289.474111][T11331] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2895'. [ 290.113571][ T4300] Bluetooth: hci5: command 0x040f tx timeout [ 290.719626][T11359] netlink: 256 bytes leftover after parsing attributes in process `syz.0.2905'. [ 290.824035][ T27] kauditd_printk_skb: 32 callbacks suppressed [ 290.824049][ T27] audit: type=1326 audit(262692.760:1715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11361 comm="syz.4.2907" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 290.872085][ T27] audit: type=1326 audit(262692.770:1716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11361 comm="syz.4.2907" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 290.898395][ T27] audit: type=1326 audit(262692.770:1717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11361 comm="syz.4.2907" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 290.922247][ T27] audit: type=1326 audit(262692.770:1718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11361 comm="syz.4.2907" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 290.979681][ T27] audit: type=1326 audit(262692.810:1719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11361 comm="syz.4.2907" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 291.023638][ T27] audit: type=1326 audit(262692.810:1720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11361 comm="syz.4.2907" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 291.083661][ T27] audit: type=1326 audit(262692.810:1721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11361 comm="syz.4.2907" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 291.111224][T11203] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 291.130764][ T27] audit: type=1326 audit(262692.810:1722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11361 comm="syz.4.2907" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=242 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 291.163582][ T27] audit: type=1326 audit(262692.810:1723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11361 comm="syz.4.2907" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d35a768 code=0x7ffc0000 [ 291.289986][T11203] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 291.377886][T11203] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 291.393721][T11375] serio: Serial port ptm0 [ 292.193537][ T4300] Bluetooth: hci5: command 0x0419 tx timeout [ 292.506000][T11203] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 292.552380][T11382] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2912'. [ 292.752599][T11203] 8021q: adding VLAN 0 to HW filter on device bond0 [ 292.760749][ T4374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 292.763225][ T4374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 292.778132][T11203] 8021q: adding VLAN 0 to HW filter on device team0 [ 292.782890][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 292.791619][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 292.794568][ T158] bridge0: port 1(bridge_slave_0) entered blocking state [ 292.797262][ T158] bridge0: port 1(bridge_slave_0) entered forwarding state [ 292.815624][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 292.817959][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 292.820653][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 292.823013][ T158] bridge0: port 2(bridge_slave_1) entered blocking state [ 292.824793][ T158] bridge0: port 2(bridge_slave_1) entered forwarding state [ 292.842763][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 292.862890][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 292.869080][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 292.875185][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 292.878256][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 292.881790][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 292.885720][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 292.889560][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 292.892039][ T158] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 292.900039][T11415] smc: net device bond0 applied user defined pnetid SYZ2 [ 292.902949][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 292.906093][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 293.883604][ T27] audit: type=1326 audit(262695.800:1724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11427 comm="syz.0.2928" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa5d5a768 code=0x7ffc0000 [ 295.087105][T11203] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 295.103759][T11436] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2931'. [ 295.568535][T11462] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2943'. [ 296.551823][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 296.554028][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 296.580917][T11203] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 296.600923][ T5256] device hsr_slave_0 left promiscuous mode [ 296.754105][ T5256] device bridge_slave_1 left promiscuous mode [ 296.757259][ T5256] bridge0: port 2(bridge_slave_1) entered disabled state [ 296.794823][ T5256] device bridge_slave_0 left promiscuous mode [ 296.797540][ T5256] bridge0: port 1(bridge_slave_0) entered disabled state [ 296.915353][T11488] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2952'. [ 299.227940][ T5256] team0 (unregistering): Port device team_slave_1 removed [ 299.445633][ T5256] team0 (unregistering): Port device team_slave_0 removed [ 301.625079][T11499] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2955'. [ 301.675577][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 301.678109][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 301.716046][T11203] device veth0_vlan entered promiscuous mode [ 301.724457][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 301.732225][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 301.735683][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 301.749624][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 301.751807][T11510] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2957'. [ 301.900384][T11203] device veth1_vlan entered promiscuous mode [ 301.930368][ T4374] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 301.932936][ T4374] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 301.949333][ T4374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 301.954424][ T4374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 301.959667][T11203] device veth0_macvtap entered promiscuous mode [ 301.969041][T11524] vhci_hcd: invalid port number 96 [ 301.970448][T11524] vhci_hcd: default hub control req: 0000 vfffc i0060 l0 [ 301.972238][T11203] device veth1_macvtap entered promiscuous mode [ 301.981361][T11203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 301.984907][T11203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 301.987351][T11203] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 301.989758][T11203] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 301.993210][T11203] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 301.998226][T11203] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 302.003199][T11203] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.006016][T11203] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.008116][T11203] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.009952][T11203] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 303.080469][T11524] ------------[ cut here ]------------ [ 303.082321][T11524] WARNING: CPU: 0 PID: 11524 at mm/vmscan.c:3839 lru_gen_look_around+0xb74/0x1330 [ 303.084920][T11524] Modules linked in: [ 303.085890][T11524] CPU: 0 PID: 11524 Comm: syz.4.2964 Not tainted 6.1.140-syzkaller #0 [ 303.088107][T11524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 303.090604][T11524] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 303.092511][T11524] pc : lru_gen_look_around+0xb74/0x1330 [ 303.093995][T11524] lr : lru_gen_look_around+0xb74/0x1330 [ 303.095420][T11524] sp : ffff800021285290 [ 303.096415][T11524] x29: ffff800021285320 x28: 0000000020040000 x27: 0160000125401fc3 [ 303.098453][T11524] x26: ffff0000da797000 x25: ffff0000cc8fc000 x24: 0000000000125401 [ 303.100461][T11524] x23: ffff0000da797008 x22: 0100000000000000 x21: 1fffe0001b4f2e01 [ 303.102497][T11524] x20: dfff800000000000 x19: 0000000020001000 x18: ffff800011a7bd00 [ 303.104572][T11524] x17: ffff8000181a0000 x16: ffff8000082d076c x15: 0000000000000002 [ 303.106557][T11524] x14: 0000000000000200 x13: 1ffff00002a0e0b1 x12: 0000000000080000 [ 303.108627][T11524] x11: 000000000007ffff x10: ffff80002875a000 x9 : ffff800008728cd8 [ 303.110649][T11524] x8 : 0000000000080000 x7 : ffff800008737f50 x6 : 0000000000000000 [ 303.112609][T11524] x5 : 0000000000000000 x4 : 0000000000000000 x3 : ffff800008728be0 [ 303.114577][T11524] x2 : 0000000000000001 x1 : 0100000000000000 x0 : 0000000000000000 [ 303.116615][T11524] Call trace: [ 303.117478][T11524] lru_gen_look_around+0xb74/0x1330 [ 303.118883][T11524] folio_referenced_one+0x368/0x9b4 [ 303.120162][T11524] rmap_walk_anon+0x348/0x4d4 [ 303.121293][T11524] folio_referenced+0x2dc/0x3e8 [ 303.122475][T11524] shrink_folio_list+0xb20/0x4448 [ 303.123726][T11524] evict_folios+0x387c/0x49d0 [ 303.124896][T11524] shrink_lruvec+0x958/0x34e4 [ 303.126098][T11524] shrink_node+0x52c/0x20ac [ 303.127207][T11524] do_try_to_free_pages+0x550/0x144c [ 303.128590][T11524] try_to_free_mem_cgroup_pages+0x2d8/0xa50 [ 303.130105][T11524] try_charge_memcg+0x48c/0x1448 [ 303.131296][T11524] __memcg_kmem_charge_page+0x304/0x54c [ 303.132663][T11524] __alloc_pages+0x1fc/0x53c [ 303.133876][T11524] alloc_pages+0x434/0x6f8 [ 303.135005][T11524] __vmalloc_node_range+0x734/0xe48 [ 303.136301][T11524] kvmalloc_node+0x168/0x1dc [ 303.137449][T11524] ip_set_alloc+0x2c/0x3c [ 303.138566][T11524] hash_netiface_create+0x2c4/0xcb8 [ 303.139846][T11524] ip_set_create+0x48c/0x1024 [ 303.140885][T11524] nfnetlink_rcv_msg+0x9d4/0xed8 [ 303.141868][T11524] netlink_rcv_skb+0x208/0x3c4 [ 303.143082][T11524] nfnetlink_rcv+0x1f8/0x1afc [ 303.144322][T11524] netlink_unicast+0x600/0x818 [ 303.145536][T11524] netlink_sendmsg+0x6e8/0x9b0 [ 303.146704][T11524] ____sys_sendmsg+0x5b8/0x918 [ 303.147901][T11524] __sys_sendmsg+0x25c/0x320 [ 303.148982][T11524] __arm64_sys_sendmsg+0x80/0x94 [ 303.150221][T11524] invoke_syscall+0x98/0x2bc [ 303.151366][T11524] el0_svc_common+0x138/0x258 [ 303.152584][T11524] do_el0_svc+0x58/0x13c [ 303.153629][T11524] el0_svc+0x58/0x138 [ 303.154642][T11524] el0t_64_sync_handler+0x84/0xf0 [ 303.155930][T11524] el0t_64_sync+0x18c/0x190 [ 303.157033][T11524] irq event stamp: 547134 [ 303.158106][T11524] hardirqs last enabled at (547133): [] _raw_spin_unlock_irq+0x3c/0x90 [ 303.160496][T11524] hardirqs last disabled at (547134): [] el1_dbg+0x24/0x80 [ 303.162718][T11524] softirqs last enabled at (1686): [] local_bh_enable+0x10/0x34 [ 303.164963][T11524] softirqs last disabled at (1680): [] local_bh_disable+0x10/0x34 [ 303.167267][T11524] ---[ end trace 0000000000000000 ]--- [ 303.190321][T11524] syz.4.2964 invoked oom-killer: gfp_mask=0x402dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_NOWARN|__GFP_ZERO), order=0, oom_score_adj=1000 [ 303.194514][T11524] CPU: 0 PID: 11524 Comm: syz.4.2964 Tainted: G W 6.1.140-syzkaller #0 [ 303.196962][T11524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 303.199207][T11524] Call trace: [ 303.200055][T11524] dump_backtrace+0x1c8/0x1f4 [ 303.201121][T11524] show_stack+0x2c/0x3c [ 303.202116][T11524] __dump_stack+0x30/0x40 [ 303.203235][T11524] dump_stack_lvl+0xf8/0x160 [ 303.204396][T11524] dump_stack+0x1c/0x5c [ 303.205389][T11524] dump_header+0xc0/0x724 [ 303.206452][T11524] oom_kill_process+0x360/0x674 [ 303.207644][T11524] out_of_memory+0xc5c/0xf68 [ 303.208862][T11524] mem_cgroup_out_of_memory+0x210/0x2bc [ 303.210319][T11524] try_charge_memcg+0xac4/0x1448 [ 303.211525][T11524] __memcg_kmem_charge_page+0x304/0x54c [ 303.212839][T11524] __alloc_pages+0x1fc/0x53c [ 303.213946][T11524] alloc_pages+0x434/0x6f8 [ 303.215071][T11524] __vmalloc_node_range+0x734/0xe48 [ 303.216364][T11524] kvmalloc_node+0x168/0x1dc [ 303.217450][T11524] ip_set_alloc+0x2c/0x3c [ 303.218487][T11524] hash_netiface_create+0x2c4/0xcb8 [ 303.219795][T11524] ip_set_create+0x48c/0x1024 [ 303.220959][T11524] nfnetlink_rcv_msg+0x9d4/0xed8 [ 303.222242][T11524] netlink_rcv_skb+0x208/0x3c4 [ 303.223379][T11524] nfnetlink_rcv+0x1f8/0x1afc [ 303.224526][T11524] netlink_unicast+0x600/0x818 [ 303.225718][T11524] netlink_sendmsg+0x6e8/0x9b0 [ 303.226860][T11524] ____sys_sendmsg+0x5b8/0x918 [ 303.227976][T11524] __sys_sendmsg+0x25c/0x320 [ 303.229096][T11524] __arm64_sys_sendmsg+0x80/0x94 [ 303.230295][T11524] invoke_syscall+0x98/0x2bc [ 303.231176][T11524] el0_svc_common+0x138/0x258 [ 303.231959][T11524] do_el0_svc+0x58/0x13c [ 303.232677][T11524] el0_svc+0x58/0x138 [ 303.233366][T11524] el0t_64_sync_handler+0x84/0xf0 [ 303.234234][T11524] el0t_64_sync+0x18c/0x190 [ 303.235270][T11524] memory: usage 307200kB, limit 307200kB, failcnt 2250 [ 303.236931][T11524] memory+swap: usage 307400kB, limit 9007199254740988kB, failcnt 0 [ 303.238707][T11524] kmem: usage 307128kB, limit 9007199254740988kB, failcnt 0 [ 303.240423][T11524] Memory cgroup stats for /syz4: [ 303.240803][T11524] anon 0 [ 303.240803][T11524] file 73728 [ 303.240803][T11524] kernel 314499072 [ 303.240803][T11524] kernel_stack 65536 [ 303.240803][T11524] pagetables 131072 [ 303.240803][T11524] sec_pagetables 0 [ 303.240803][T11524] percpu 9504 [ 303.240803][T11524] sock 0 [ 303.240803][T11524] vmalloc 0 [ 303.240803][T11524] shmem 0 [ 303.240803][T11524] zswap 0 [ 303.240803][T11524] zswapped 0 [ 303.240803][T11524] file_mapped 73728 [ 303.240803][T11524] file_dirty 73728 [ 303.240803][T11524] file_writeback 0 [ 303.240803][T11524] swapcached 5857280 [ 303.240803][T11524] anon_thp 0 [ 303.240803][T11524] file_thp 0 [ 303.240803][T11524] shmem_thp 0 [ 303.240803][T11524] inactive_anon 0 [ 303.240803][T11524] active_anon 0 [ 303.240803][T11524] inactive_file 0 [ 303.240803][T11524] active_file 73728 [ 303.240803][T11524] unevictable 0 [ 303.240803][T11524] slab_reclaimable 74736 [ 303.240803][T11524] slab_unreclaimable 328792 [ 303.240803][T11524] slab 403528 [ 303.263572][T11524] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=syz4,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.2964,pid=11523,uid=0 [ 303.268302][T11524] Memory cgroup out of memory: Killed process 11523 (syz.4.2964) total-vm:101656kB, anon-rss:916kB, file-rss:21832kB, shmem-rss:0kB, UID:0 pgtables:132kB oom_score_adj:1000 [ 303.914277][ T9047] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 303.916701][ T9047] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 303.920482][ T8769] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 305.072766][ T8769] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 306.190725][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 306.193253][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 306.196025][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 306.207246][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 306.210989][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 306.217913][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 306.220992][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 306.224159][ T4341] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 310.286696][ T2059] ieee802154 phy1 wpan1: encryption failed: -22