last executing test programs: 12.87360178s ago: executing program 0 (id=5095): r0 = socket$vsock_stream(0x28, 0x1, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10) getitimer(0x0, &(0x7f0000000080)) ioctl$int_in(r0, 0x5421, &(0x7f0000000240)=0x2) connect$vsock_stream(r0, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0a00000005000000020000000700000000000000", @ANYRES32=0x1, @ANYBLOB="008000"/18, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000000000000000000000000000d5c800a4b43e91a3913c3ff998c9a589c85f60575df8047447105a95be540c972784997e5699c6dba39f74ff475ae0d5143677dc93706e78df4e423f77684dbdd48da5494ef6f1e74f0dee51b4029f77dd86d9b88cb938bd647be2d29d51aa3455f42a6181b351f804974d72764637eaab823d0ec5ccb4f3961f27a8d9e2150d9eeb7213dcf778e47283aafff67985e64eb647a0cfd4"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$gtp(&(0x7f0000000180), 0xffffffffffffffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r5, 0x0, 0x0) pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0) shutdown(r0, 0x0) 11.818895875s ago: executing program 0 (id=5099): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x40, 0x9, 0x7ffc1fff}]}) sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4) 10.849712558s ago: executing program 0 (id=5101): prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000400850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = socket(0x8000000010, 0x2, 0x0) write(r3, &(0x7f00000002c0)="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", 0xfc) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8953, &(0x7f0000000180)={{0x2, 0x0, @empty}, {}, 0x0, {0x2, 0x0, @multicast1=0xe000cc02}}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x4000, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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") 9.583379403s ago: executing program 1 (id=5107): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0) sendmmsg$inet6(r2, &(0x7f0000005800)=[{{0x0, 0x0, 0x0}}], 0x1, 0x8014) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) close(r4) syz_clone3(&(0x7f0000000600)={0x4040100, 0x0, 0x0, 0x0, {0x2d}, 0x0, 0x0, 0x0, 0x0}, 0x58) 8.601267436s ago: executing program 0 (id=5108): socket$inet_tcp(0x2, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0xffffffb3, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) r5 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r5, &(0x7f0000000440), 0x10) listen(r5, 0x0) r6 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r6, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) r7 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TCXONC(r7, 0x540a, 0x2) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x31}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x70) 8.462549001s ago: executing program 1 (id=5110): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]}) close_range(r2, 0xffffffffffffffff, 0x0) r3 = getpid() r4 = syz_pidfd_open(r3, 0x0) setns(r4, 0x24020000) r5 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0) syz_pidfd_open(r5, 0x0) socket$unix(0x1, 0x3, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r7, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r7, @ANYRES64=r6], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r7, 0x0) ioctl$KVM_X86_SETUP_MCE(r7, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r6, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r8 = fsopen(&(0x7f0000000040)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r8, 0x7, 0x0, 0x0, 0x0) 8.444941412s ago: executing program 2 (id=5111): sendto(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x14, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50) 8.301312429s ago: executing program 2 (id=5112): madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4}) sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r4, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) write(r2, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r5, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r7}, 0x10) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 7.971866693s ago: executing program 2 (id=5114): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000ac0)=@updsa={0x13c, 0x1a, 0x1, 0x0, 0x0, {{@in=@loopback, @in6=@empty}, {@in=@local, 0x0, 0x33}, @in=@empty, {}, {}, {}, 0x0, 0x0, 0x2}, [@algo_auth_trunc={0x4c, 0x14, {{'xcbc(aes)\x00'}}}]}, 0x13c}}, 0x0) 7.306622012s ago: executing program 0 (id=5115): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b000000"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000000c0)='sched_switch\x00', r3}, 0x10) socket$inet6(0xa, 0x3, 0xff) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x6c) r4 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f00000020c0), 0x0, &(0x7f0000000240)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x8000}}) syz_fuse_handle_req(r4, &(0x7f0000002100)="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", 0x2000, 0x0) truncate(&(0x7f0000000000)='./file0\x00', 0x20080000001) 7.241430445s ago: executing program 1 (id=5116): io_uring_setup(0x31b9, &(0x7f0000000140)={0x0, 0x41eb, 0x200, 0x2, 0x256}) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000040)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x12, r0, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) rt_sigtimedwait(&(0x7f0000000000)={[0x9]}, 0x0, &(0x7f0000000100), 0x8) 7.240994305s ago: executing program 2 (id=5117): prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000400850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = socket(0x8000000010, 0x2, 0x0) write(r3, &(0x7f00000002c0)="fc0000001c000704ab5b2509b868030002ab087a010000000d481093210001c0f0030584050060100000000000039815fa2c53c28648000000b9d95662537a00bc000c00f0ff7f0000b400600033d44000040560916a0033f436313012dafd5a32e273fc83ab82d710f74cec184406f90d435ef8b29d3ef3d92c94170e5bba2e177312e081bea05d3a021e8ca062914a46ccfc510bb73c9455cdc8363ae4f5df77bc4cfd6239ec2a0f0d1bcae5fa0f5f9dcdd51af51af8502943283f4bb102b2b8f5566791cf190201ded815b2ccd243f395ed94e0ad91bd6433802e0784f2013cd1890058a10000c880ac801fe4af000049f0d4796f0000090548de", 0xfc) ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8953, &(0x7f0000000180)={{0x2, 0x0, @empty}, {}, 0x0, {0x2, 0x0, @multicast1=0xe000cc02}}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x4000, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$eJzs3ctvW1UaAPDPdpMmaWb6mNGo7UjTSh2p81DjPDRqMjObWc3MotJoKrEBqYTEDSVOHMVOaaIuUth1wQKBQEIs2PMXsKErKiTEGvaIBSqCEiRAQjK613abOHGwII1p7u8n3ebch/2dU+s7Ovf4Xt8AMuts8k8uYjgiPoyIo43VrQecbfzZuH9zJllyUa9f/iKXHpestw5tve5IRKxHxEBE/P/fEc/ktsetrq7NT5fLpeXmerG2sFSsrq5duLYwPVeaKy2OTV6cmpocnRif2rO23n7puduX3vlv/9vfvHjv7svvvZtUa7i5b3M79lKj6X1xfNO2QxHxz0cRrAcKzfYM9roi/CTJ5/ebiDiX5v/RKKSfJpAF9Xq9/n39cKfd63XgwMqnY+BcfiQiGuV8fmSkMYb/bQzly5Vq7a9XKyuLs42x8rHoy1+9Vi6NNs8VjkVfLlkfS8sP18fb1ici0jHwK4XBdH1kplKe3d+uDmhzpC3/vy408h/ICKf8kF3yH7JL/kN2yX/ILvkP2SX/IbvkP2SX/Ifskv+QXfIfskv+Qyb979KlZKm37n+fvb66Ml+5fmG2VJ0fWViZGZmpLC+NzFUqc+k9Ows/9n7lSmVp7G+xcqNYK1Vrxerq2pWFyspi7Up6X/+VUt++tAroxvEzdz7ORcT63wfTJdHf3CdX4WCr13PR63uQgd4o9LoDAnrG1B9kl3N8oP0netvHBQOdXrj0cL4QeLzke10BoGfOn/L9H2SV+X/ILvP/kF3G+MAOj+jbYrf5f+DxZP4fsmu4w/O/frXp2V2jEfHriPio0He49awv4CDIf5Zrjv/PH/3jcPve/ty36VcE/RHx/BuXX7sxXastjyXbv3ywvfZ6c/v4phd2PGEAeqWVp608BgCya+P+zZnWsp9xP/9X4yKE7fEPNecmB9LvKIc2cluuVcjt0bUL67ci4uRO8XPN5503TmSGNgrb4p9o/s013iKt76H0uen7E//Upvh/2BT/9M/+X4FsuJP0P6M75V8+zel4kH9b+5/hPbp2onP/l3/Q/xU69H9nuozx7JsvfNox/q2I0zvGb8UbSGO1x0/qdr7L+PeeeuJ3nfbV32q8z07xW5JSsbawVKyurl1If0durrQ4NnlxampydGJ8qpjOURdbM9Xb/ePkB3d3a/9Qh/i7tT/Z9ucu2//d799/8uwu8f90bufP/8Qu8Qcj4i9dxv9q/JOnO+1L4s92aH9+l/jJtoku41df/c/hLg8FAPZBdXVtfrpcLi0rKCj0pHDrl1GNtkKveybgUauuJqfmSdL3uiYAAAAAAAAAAABAt/bjcuJetxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4CD4IQAA//9HcdTQ") 7.172688628s ago: executing program 3 (id=5118): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@local, @in6=@loopback, 0x4e21, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x2f}, {0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x800, 0x0, 0x6}}, {{@in=@multicast1, 0x4d5, 0x2b}, 0x0, @in6=@mcast2, 0x0, 0x3}}, 0xe8) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x48) sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0xc044) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r4}, 0x18) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x2, 0x3, 0x0, 0x9, 0xf, 0x0, 0x0, 0x0, [@sadb_x_sec_ctx={0x1, 0x18, 0x9f, 0x3}, @sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x9}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0xfffd, 0x0, @empty}}]}, 0x78}, 0x1, 0x7}, 0x0) 5.263675781s ago: executing program 1 (id=5119): ptrace(0x10, 0x0) syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb49, &(0x7f0000000c40)="$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") syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x12141) r0 = userfaultfd(0x80001) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x5) sched_setaffinity(0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f0000000480), 0x400034f, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) socket$nl_route(0x10, 0x3, 0x0) ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)) ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000001c0)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000080)={{&(0x7f00003fe000/0x4000)=nil, 0x4000}, 0x1}) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={0xffffffffffffffff, 0xfeffff, 0xa40, 0x3f000002, &(0x7f0000000700)="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", 0x0, 0xf0, 0x0, 0xf0, 0xffffff0c}, 0x40) ptrace$setregset(0x4205, 0x0, 0x202, &(0x7f0000000040)={&(0x7f0000000d00)}) 3.377369153s ago: executing program 3 (id=5120): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 3.326941015s ago: executing program 2 (id=5121): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0xa, [@fwd={0x6}, @ptr={0x0, 0x0, 0x0, 0x2, 0x1}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x5f, 0x30]}}, &(0x7f0000000180)=""/246, 0x3a, 0xf6, 0x1}, 0x20) 2.827778107s ago: executing program 2 (id=5122): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r0 = getpid() sched_setscheduler(r0, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) ioctl$INCFS_IOC_PERMIT_FILL(r1, 0x40046721, &(0x7f0000000180)={r2}) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r4 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x58}}, 0x10) r5 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x201, 0xa401) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000200)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x3, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0x0, [{0x1}]}]}, {0x0, [0x30]}}, &(0x7f0000000f40)=""/4089, 0x33, 0xff9, 0x1}, 0x28) ioctl$USBDEVFS_DISCONNECT_CLAIM(r5, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "ec9fe44d4dbe56a65274d7c727e7e53c1bb714e315eeb406bfdd73835e57efa94b1a0275781c647aa7e3470c6028642b17832b10b386a6f73791011c26a9aa141f406e312295ee620a9a46577b9249b738fe7750bec83bf6ed5b67213fa7d6c0823fd154ed29ed7eff0d26ff199ee1ff379742c3f0b46caa357d70ee438f901d7645c3f87e4b21482b76f2ad8eaac090272081f98fd2e3e5a63e006204df635e731a5bfcf142f4529517454618de595cd179445b4bdbf698b9986356f0ebf7d25a57774ef474f86a3ad24ae9f0bf94b99e6b87de5f79d383d05bb32701daed400785a49788f08caecc9e0c48a3740bbe6e1c1fd400cfdfe756bcb7d08e36655c"}) r6 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r6, &(0x7f0000000080)={0xa, 0x0, 0xe, @dev={0xfe, 0x80, '\x00', 0x43}, 0x4}, 0x1c) sendmsg(r6, &(0x7f00000000c0)={0x0, 0x9504, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xd8ef}], 0x1, 0x0, 0x0, 0x2c}, 0x4) 2.826733127s ago: executing program 3 (id=5123): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) shutdown(r0, 0x1) setsockopt$sock_int(r1, 0x1, 0x22, &(0x7f0000000040)=0x7, 0x4) recvmmsg(r1, &(0x7f0000000480)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x0, 0x0) 2.649163945s ago: executing program 3 (id=5124): socket$inet_tcp(0x2, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0xffffffb3, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$inet_tcp(0x2, 0x1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001140)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) r5 = socket$vsock_stream(0x28, 0x1, 0x0) bind$vsock_stream(r5, &(0x7f0000000440), 0x10) listen(r5, 0x0) r6 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r6, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10) sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0) r7 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TCXONC(r7, 0x540a, 0x2) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x8, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x31}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb}, 0x70) 529.587997ms ago: executing program 1 (id=5125): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) madvise(&(0x7f0000234000/0x800000)=nil, 0x800000, 0xe) 217.939471ms ago: executing program 3 (id=5126): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0) ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4}) sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x6000, 0x1) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='9p_protocol_dump\x00', r3}, 0x18) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r6 = dup(r5) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f00000004c0)={'trans=fd,', {'rfdno', 0x3d, r4}, 0x2c, {'wfdno', 0x3d, r6}}) 141.432574ms ago: executing program 1 (id=5127): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0) ioctl$KVM_X86_SETUP_MCE(r0, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4}) r1 = syz_open_dev$evdev(&(0x7f0000000040), 0x8000000000000021, 0x0) syz_usb_disconnect(r1) syz_usb_connect$cdc_ncm(0x7, 0x6e, &(0x7f00000002c0)=ANY=[], 0x0) ioctl$EVIOCRMFF(r1, 0xc0085508, &(0x7f0000000000)) 88.994026ms ago: executing program 0 (id=5128): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000640)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10) r5 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r5, 0x6, 0x0, 0x0, 0x0) r6 = fsmount(r5, 0x0, 0x0) openat$cgroup_subtree(r6, &(0x7f0000000100), 0x2, 0x0) 0s ago: executing program 3 (id=5129): r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000000)={0x3, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x8, @empty, 0x2}}}, 0x108) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107042, 0x0) getsockopt$inet6_buf(r0, 0x29, 0x30, &(0x7f0000000000)=""/40, &(0x7f0000001000)=0xf9) kernel console output (not intermixed with test programs): utes in process `syz.3.3843'. [ 955.223795][T17139] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3843'. [ 955.489160][T17143] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3846'. [ 955.498441][T17145] syzkaller0: entered promiscuous mode [ 955.498463][T17145] syzkaller0: entered allmulticast mode [ 956.714273][T17154] loop2: detected capacity change from 0 to 512 [ 956.758053][ T28] audit: type=1326 audit(1763627945.978:4102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17152 comm="syz.1.3850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 956.789457][ T28] audit: type=1326 audit(1763627945.978:4103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17152 comm="syz.1.3850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 956.814733][ T28] audit: type=1326 audit(1763627946.024:4104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17152 comm="syz.1.3850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 956.838500][ T28] audit: type=1326 audit(1763627946.024:4105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17152 comm="syz.1.3850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 956.871401][ T28] audit: type=1326 audit(1763627946.024:4106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17156 comm="syz.1.3850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fe91cdc2005 code=0x7ffc0000 [ 956.903374][T17154] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002] [ 956.915783][ T28] audit: type=1326 audit(1763627946.024:4107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17152 comm="syz.1.3850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=247 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 956.927262][T17154] System zones: 0-2, 18-18, 34-35 [ 956.947016][T17154] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 956.962825][ T28] audit: type=1326 audit(1763627946.181:4108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17156 comm="syz.1.3850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 956.977509][T17154] ext4 filesystem being mounted at /287/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 957.016062][ T28] audit: type=1326 audit(1763627946.190:4109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17152 comm="syz.1.3850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe91cd2b829 code=0x7ffc0000 [ 957.382574][ T28] audit: type=1326 audit(1763627946.190:4110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17152 comm="syz.1.3850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 958.025978][ T28] audit: type=1326 audit(1763627946.190:4111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17152 comm="syz.1.3850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 958.102327][T13051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 958.370685][T17170] loop2: detected capacity change from 0 to 128 [ 958.406900][T17170] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 958.424893][T17170] FAT-fs (loop2): Filesystem has been set read-only [ 958.658077][T17176] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3856'. [ 958.882838][T17180] syzkaller0: entered promiscuous mode [ 958.896015][T17180] syzkaller0: entered allmulticast mode [ 960.014408][T17190] netlink: 292 bytes leftover after parsing attributes in process `syz.3.3859'. [ 963.043242][T17216] batadv_slave_0: entered promiscuous mode [ 964.053300][T17225] loop1: detected capacity change from 0 to 256 [ 964.211448][ T28] audit: type=1326 audit(1763627952.845:4112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17231 comm="syz.2.3876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 964.256768][T17225] FAT-fs (loop1): Directory bread(block 64) failed [ 964.271120][T17225] FAT-fs (loop1): Directory bread(block 65) failed [ 964.294906][T17225] FAT-fs (loop1): Directory bread(block 66) failed [ 964.301763][ T28] audit: type=1326 audit(1763627952.845:4113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17231 comm="syz.2.3876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 964.351613][T17225] FAT-fs (loop1): Directory bread(block 67) failed [ 964.374906][ T28] audit: type=1326 audit(1763627952.845:4114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17231 comm="syz.2.3876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 964.379765][T17225] FAT-fs (loop1): Directory bread(block 68) failed [ 964.399450][ T28] audit: type=1326 audit(1763627952.845:4115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17231 comm="syz.2.3876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 964.427960][ T28] audit: type=1326 audit(1763627952.845:4116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17231 comm="syz.2.3876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 964.451644][ T28] audit: type=1326 audit(1763627952.845:4117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17231 comm="syz.2.3876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 964.461162][T17225] FAT-fs (loop1): Directory bread(block 69) failed [ 964.485649][ T28] audit: type=1326 audit(1763627952.845:4118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17231 comm="syz.2.3876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 964.493988][T17225] FAT-fs (loop1): Directory bread(block 70) failed [ 964.520001][ T28] audit: type=1326 audit(1763627952.845:4119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17231 comm="syz.2.3876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 964.542781][ T28] audit: type=1326 audit(1763627952.845:4120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17231 comm="syz.2.3876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 964.565523][ T28] audit: type=1326 audit(1763627952.845:4121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17231 comm="syz.2.3876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 964.599503][T17225] FAT-fs (loop1): Directory bread(block 71) failed [ 964.628369][T17225] FAT-fs (loop1): Directory bread(block 72) failed [ 964.652147][T17225] FAT-fs (loop1): Directory bread(block 73) failed [ 964.712316][T17237] loop3: detected capacity change from 0 to 512 [ 964.908230][T17237] EXT4-fs warning (device loop3): ext4_xattr_inode_get:563: inode #11: comm syz.3.3874: EA inode hash validation failed [ 964.997613][T17237] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #15: comm syz.3.3874: corrupted inode contents [ 966.103049][T17237] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #15: comm syz.3.3874: mark_inode_dirty error [ 966.264364][T17248] netlink: 64 bytes leftover after parsing attributes in process `syz.2.3880'. [ 966.887443][T17237] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #15: comm syz.3.3874: corrupted inode contents [ 966.909915][T17237] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3017: inode #15: comm syz.3.3874: mark_inode_dirty error [ 966.918206][T17250] loop1: detected capacity change from 0 to 256 [ 966.960519][T17237] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3020: inode #15: comm syz.3.3874: mark inode dirty (error -117) [ 967.003598][T17237] EXT4-fs warning (device loop3): ext4_evict_inode:272: xattr delete (err -117) [ 967.032108][T17237] EXT4-fs (loop3): 1 orphan inode deleted [ 967.054734][T17250] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 967.082918][T17237] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 968.600997][T17273] bridge1: port 2(veth0_to_bond) entered disabled state [ 968.742282][T17275] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3891'. [ 968.777582][T17277] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3892'. [ 970.223709][ T28] kauditd_printk_skb: 95 callbacks suppressed [ 970.223726][ T28] audit: type=1326 audit(1763627958.430:4217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17293 comm="syz.1.3899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 970.289066][ T28] audit: type=1326 audit(1763627958.467:4218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17293 comm="syz.1.3899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 970.332438][ T28] audit: type=1326 audit(1763627958.467:4219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17293 comm="syz.1.3899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 970.381951][ T28] audit: type=1326 audit(1763627958.476:4220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17293 comm="syz.1.3899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 970.421364][ T28] audit: type=1326 audit(1763627958.476:4221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17293 comm="syz.1.3899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 970.464799][ T28] audit: type=1326 audit(1763627958.476:4222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17293 comm="syz.1.3899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 970.516651][ T28] audit: type=1326 audit(1763627958.476:4223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17293 comm="syz.1.3899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 970.610186][ T28] audit: type=1326 audit(1763627958.476:4224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17293 comm="syz.1.3899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 970.673219][ T28] audit: type=1326 audit(1763627958.476:4225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17293 comm="syz.1.3899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 970.681291][T17300] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3901'. [ 970.740035][ T28] audit: type=1326 audit(1763627958.476:4226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17293 comm="syz.1.3899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 972.698113][T17328] syzkaller0: entered promiscuous mode [ 972.714119][T17328] syzkaller0: entered allmulticast mode [ 972.783497][T11946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 973.578576][T17347] syz.1.3920[17347] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 973.578722][T17347] syz.1.3920[17347] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 974.161785][T17358] syzkaller0: entered promiscuous mode [ 974.206315][T17358] syzkaller0: entered allmulticast mode [ 974.632591][T17366] netlink: 292 bytes leftover after parsing attributes in process `syz.1.3927'. [ 975.080222][T17375] xt_TCPMSS: Only works on TCP SYN packets [ 976.009460][T17380] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3932'. [ 976.184597][ T28] kauditd_printk_skb: 172 callbacks suppressed [ 976.184613][ T28] audit: type=1326 audit(1763627963.941:4399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17383 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 976.277456][ T28] audit: type=1326 audit(1763627963.941:4400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17383 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 976.324855][ T28] audit: type=1326 audit(1763627963.941:4401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17383 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 976.391306][ T28] audit: type=1326 audit(1763627963.941:4402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17383 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 976.435486][ T28] audit: type=1326 audit(1763627963.941:4403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17383 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 976.474264][ T28] audit: type=1326 audit(1763627963.941:4404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17383 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 976.476461][T17387] loop3: detected capacity change from 0 to 4096 [ 976.502033][ T28] audit: type=1326 audit(1763627963.941:4405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17383 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 976.527478][ T28] audit: type=1326 audit(1763627963.941:4406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17383 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 976.550309][ T28] audit: type=1326 audit(1763627963.941:4407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17383 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 976.577354][T17387] EXT4-fs (loop3): invalid inodes per group: 204800 [ 976.577354][T17387] [ 976.610538][ T28] audit: type=1326 audit(1763627963.941:4408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17383 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe91cd8f749 code=0x7ffc0000 [ 978.175576][T17393] syzkaller0: entered promiscuous mode [ 978.194393][T17393] syzkaller0: entered allmulticast mode [ 979.642931][T17408] xt_TCPMSS: Only works on TCP SYN packets [ 979.792000][T17410] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3942'. [ 980.631325][T17422] loop1: detected capacity change from 0 to 512 [ 980.668795][T17422] EXT4-fs: Ignoring removed nobh option [ 980.742776][T17422] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 980.766150][T17420] xt_CT: No such helper "netbios-ns" [ 980.794844][T17422] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it [ 980.899744][T17422] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.3946: Corrupt directory, running e2fsck is recommended [ 981.138489][T17422] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117 [ 981.272187][T17422] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2249: inode #15: comm syz.1.3946: corrupted in-inode xattr: invalid ea_ino [ 981.528531][T17422] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.3946: couldn't read orphan inode 15 (err -117) [ 981.734436][T17422] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 981.908863][T17422] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 981.953911][T17422] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it [ 981.992775][T17422] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.3946: Corrupt directory, running e2fsck is recommended [ 982.158624][T12381] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 985.017197][T17442] xt_TCPMSS: Only works on TCP SYN packets [ 985.092950][T17460] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3959'. [ 985.192747][T17460] bridge2: port 1(veth0_to_bond) entered blocking state [ 985.212057][T17460] bridge2: port 1(veth0_to_bond) entered disabled state [ 985.220736][T17460] veth0_to_bond: entered allmulticast mode [ 985.232492][T17460] veth0_to_bond: entered promiscuous mode [ 985.583658][T17467] netlink: 116 bytes leftover after parsing attributes in process `syz.1.3961'. [ 985.612281][T17467] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3961'. [ 986.723732][ T6272] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 986.930230][ T6272] usb 2-1: Using ep0 maxpacket: 16 [ 986.942195][ T6272] usb 2-1: config 0 has an invalid interface number: 105 but max is 0 [ 986.954697][ T6272] usb 2-1: config 0 has an invalid descriptor of length 231, skipping remainder of the config [ 986.990090][ T6272] usb 2-1: config 0 has no interface number 0 [ 987.017731][ T6272] usb 2-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 987.037810][ T6272] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=21 [ 987.054196][ T6272] usb 2-1: Product: syz [ 987.062126][ T6272] usb 2-1: Manufacturer: syz [ 987.066809][ T6272] usb 2-1: SerialNumber: syz [ 987.094451][ T6272] usb 2-1: config 0 descriptor?? [ 987.105753][ T6272] usb 2-1: Found UVC 0.00 device syz (046d:08f3) [ 987.124217][ T6272] usb 2-1: No valid video chain found. [ 987.346187][ T6272] usb 2-1: USB disconnect, device number 9 [ 987.443066][T17493] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.3970'. [ 990.644266][T17511] loop1: detected capacity change from 0 to 128 [ 990.712137][T17511] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 990.764923][T17511] ext4 filesystem being mounted at /437/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 990.847603][T12381] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 991.212226][T17517] veth0: entered promiscuous mode [ 991.229420][T17517] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3978'. [ 991.549104][T17519] netlink: 1752 bytes leftover after parsing attributes in process `syz.2.3979'. [ 992.053197][T17527] futex_wake_op: syz.2.3983 tries to shift op by 32; fix this program [ 993.652245][ T28] kauditd_printk_skb: 104 callbacks suppressed [ 993.652261][ T28] audit: type=1107 audit(1763627980.057:4513): pid=17536 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 993.671841][T17540] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3987'. [ 997.023494][T17575] loop3: detected capacity change from 0 to 512 [ 997.217991][T17575] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 997.275605][T17575] ext4 filesystem being mounted at /413/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 997.358297][T17575] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.3999: corrupted inode contents [ 997.407710][T17575] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #2: comm syz.3.3999: mark_inode_dirty error [ 997.463821][T17575] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.3999: corrupted inode contents [ 997.527950][T17575] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.3999: mark_inode_dirty error [ 997.673605][T11946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 998.432078][ T28] audit: type=1107 audit(1763627984.469:4514): pid=17581 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 1002.536195][ T28] audit: type=1326 audit(1763627988.254:4515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17607 comm="syz.0.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1002.647053][ T28] audit: type=1326 audit(1763627988.282:4516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17607 comm="syz.0.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1002.740527][ T28] audit: type=1326 audit(1763627988.282:4517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17607 comm="syz.0.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1002.826826][ T28] audit: type=1326 audit(1763627988.282:4518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17607 comm="syz.0.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1002.912416][ T28] audit: type=1326 audit(1763627988.282:4519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17607 comm="syz.0.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1003.004405][ T28] audit: type=1326 audit(1763627988.282:4520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17607 comm="syz.0.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1003.036674][ T28] audit: type=1326 audit(1763627988.282:4521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17607 comm="syz.0.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1003.059428][ T28] audit: type=1326 audit(1763627988.291:4522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17607 comm="syz.0.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1003.082055][ T28] audit: type=1326 audit(1763627988.291:4523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17607 comm="syz.0.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1003.105341][ T28] audit: type=1326 audit(1763627988.300:4524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17607 comm="syz.0.4010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1005.178943][T17625] xt_TCPMSS: Only works on TCP SYN packets [ 1006.500179][T17613] loop2: detected capacity change from 0 to 40427 [ 1006.516521][T17613] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1007.315976][T17613] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1007.329899][T17613] F2FS-fs (loop2): invalid crc value [ 1007.340196][T17613] F2FS-fs (loop2): Failed to start F2FS issue_checkpoint_thread (-4) [ 1008.033750][T17642] netlink: 'syz.3.4022': attribute type 12 has an invalid length. [ 1008.436776][ T28] kauditd_printk_skb: 34 callbacks suppressed [ 1008.436792][ T28] audit: type=1326 audit(1763627993.709:4559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.3.4023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b798f749 code=0x7ffc0000 [ 1008.585888][ T28] audit: type=1326 audit(1763627993.709:4560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.3.4023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f67b798f749 code=0x7ffc0000 [ 1008.952665][ T28] audit: type=1326 audit(1763627993.709:4561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.3.4023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b798f749 code=0x7ffc0000 [ 1009.271958][ T28] audit: type=1326 audit(1763627993.709:4562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.3.4023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b798f749 code=0x7ffc0000 [ 1009.387847][ T28] audit: type=1326 audit(1763627993.728:4563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.3.4023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f67b798f749 code=0x7ffc0000 [ 1009.502753][ T28] audit: type=1326 audit(1763627993.728:4564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.3.4023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b798f749 code=0x7ffc0000 [ 1009.570569][T17656] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4025'. [ 1009.593372][ T28] audit: type=1326 audit(1763627993.737:4565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.3.4023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f67b798f749 code=0x7ffc0000 [ 1009.636847][ T28] audit: type=1326 audit(1763627993.737:4566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.3.4023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b798f749 code=0x7ffc0000 [ 1009.801895][ T28] audit: type=1326 audit(1763627993.737:4567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.3.4023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67b798f749 code=0x7ffc0000 [ 1009.923789][ T28] audit: type=1326 audit(1763627993.737:4568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17646 comm="syz.3.4023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f67b798f749 code=0x7ffc0000 [ 1012.992193][T17679] loop3: detected capacity change from 0 to 512 [ 1013.043396][T17679] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.4033: bg 0: block 288: padding at end of block bitmap is not set [ 1013.116648][T17679] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 1013.149481][T17679] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.4033: attempt to clear invalid blocks 1024 len 1 [ 1013.223070][T17679] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.4033: invalid indirect mapped block 1819239214 (level 0) [ 1013.254259][T17675] loop2: detected capacity change from 0 to 4096 [ 1013.263125][T17675] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1013.275108][T17679] EXT4-fs (loop3): 1 truncate cleaned up [ 1013.283582][T17675] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 1013.285321][T17679] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1013.299461][T17675] System zones: 0-5 [ 1013.333972][T17675] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1013.369371][T17690] loop1: detected capacity change from 0 to 4096 [ 1013.380447][T17690] EXT4-fs (loop1): invalid inodes per group: 204800 [ 1013.380447][T17690] [ 1013.382060][T11946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1013.931024][T13051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1014.897839][T17708] netlink: 292 bytes leftover after parsing attributes in process `syz.2.4041'. [ 1016.911611][T17723] netlink: 148 bytes leftover after parsing attributes in process `syz.3.4047'. [ 1016.941557][T17723] netlink: 116 bytes leftover after parsing attributes in process `syz.3.4047'. [ 1016.973120][T17723] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4047'. [ 1018.221149][ T28] kauditd_printk_skb: 41 callbacks suppressed [ 1018.221165][ T28] audit: type=1326 audit(1763628002.727:4610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17738 comm="syz.2.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1018.366294][ T28] audit: type=1326 audit(1763628002.727:4611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17738 comm="syz.2.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1018.438103][ T28] audit: type=1326 audit(1763628002.727:4612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17738 comm="syz.2.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1018.480188][ T28] audit: type=1326 audit(1763628002.727:4613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17738 comm="syz.2.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1018.526096][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 1018.542001][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 1018.569010][ T28] audit: type=1326 audit(1763628002.727:4614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17738 comm="syz.2.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1018.633952][ T28] audit: type=1326 audit(1763628002.727:4615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17738 comm="syz.2.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1018.801983][ T28] audit: type=1326 audit(1763628002.727:4616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17738 comm="syz.2.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1020.029268][ T28] audit: type=1326 audit(1763628002.727:4617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17738 comm="syz.2.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1020.154437][T17750] loop1: detected capacity change from 0 to 4096 [ 1020.164537][ T28] audit: type=1326 audit(1763628002.727:4618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17738 comm="syz.2.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1020.460424][T17750] EXT4-fs (loop1): invalid inodes per group: 204800 [ 1020.460424][T17750] [ 1020.473984][ T28] audit: type=1326 audit(1763628002.727:4619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17738 comm="syz.2.4054" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1020.832102][T17763] netlink: 292 bytes leftover after parsing attributes in process `syz.0.4059'. [ 1021.922831][T17768] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4062'. [ 1030.552599][T17780] loop2: detected capacity change from 0 to 512 [ 1030.567128][T17780] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1030.624830][T17780] EXT4-fs (loop2): 1 truncate cleaned up [ 1030.631933][T17780] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1030.719139][ T28] kauditd_printk_skb: 40 callbacks suppressed [ 1030.719156][ T28] audit: type=1326 audit(1763628014.275:4660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17791 comm="syz.0.4072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1030.840868][ T28] audit: type=1326 audit(1763628014.275:4661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17791 comm="syz.0.4072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1032.131783][ T28] audit: type=1107 audit(1763628014.284:4662): pid=17785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 1032.288682][ T28] audit: type=1326 audit(1763628014.386:4663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17791 comm="syz.0.4072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fa5cc58f749 code=0x7ffc0000 [ 1032.317941][ T28] audit: type=1326 audit(1763628014.386:4664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17791 comm="syz.0.4072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa5cc58f783 code=0x7ffc0000 [ 1032.340717][ T28] audit: type=1326 audit(1763628014.524:4665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17791 comm="syz.0.4072" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa5cc58e1ff code=0x7ffc0000 [ 1032.743357][T13051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1035.728875][ T28] audit: type=1107 audit(1763628018.899:4666): pid=17821 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 1036.268875][T17839] netlink: 96 bytes leftover after parsing attributes in process `syz.2.4086'. [ 1038.382671][T17854] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4093'. [ 1041.970766][ T28] audit: type=1107 audit(1763628024.659:4667): pid=17869 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 1045.005214][ T28] audit: type=1107 audit(1763628027.456:4668): pid=17904 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 1045.029053][T17908] loop2: detected capacity change from 0 to 512 [ 1045.058605][T17908] EXT4-fs: Ignoring removed mblk_io_submit option [ 1045.112032][T17908] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13 [ 1045.148751][T17908] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz.2.4111: attempt to clear invalid blocks 2 len 1 [ 1045.167513][T17908] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1045.191133][T17908] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.4111: invalid indirect mapped block 1819239214 (level 0) [ 1045.211119][T17908] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.4111: invalid indirect mapped block 1819239214 (level 1) [ 1045.235452][T17908] EXT4-fs (loop2): 1 truncate cleaned up [ 1045.649031][T17908] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1046.696963][T13051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1048.603983][ T28] audit: type=1107 audit(1763628030.779:4669): pid=17944 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 1049.498165][T17951] netlink: 'syz.0.4123': attribute type 4 has an invalid length. [ 1050.295843][T17966] netlink: 'syz.0.4128': attribute type 13 has an invalid length. [ 1051.245618][T17966] gretap0: refused to change device tx_queue_len [ 1051.252477][T17966] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 1051.769393][T17973] tipc: Cannot configure node identity twice [ 1054.379039][ T28] audit: type=1107 audit(1763628036.105:4670): pid=17981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 1055.255381][T17996] loop3: detected capacity change from 0 to 512 [ 1055.270778][T17996] ext4: Unknown parameter 'nouser_xattr' [ 1055.322588][T17988] overlayfs: failed to resolve './file1': -2 [ 1056.331712][T18005] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4142'. [ 1057.792634][T18021] xt_TCPMSS: Only works on TCP SYN packets [ 1059.600242][T18031] overlayfs: missing 'lowerdir' [ 1059.828243][T18034] xt_bpf: check failed: parse error [ 1059.835505][T18036] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4150'. [ 1059.850555][T18036] bridge_slave_1: left allmulticast mode [ 1059.856272][T18036] bridge_slave_1: left promiscuous mode [ 1059.872524][T18036] bridge0: port 2(bridge_slave_1) entered disabled state [ 1059.891907][T18036] bridge_slave_0: left allmulticast mode [ 1059.901851][T18036] bridge_slave_0: left promiscuous mode [ 1059.908757][T18036] bridge0: port 1(bridge_slave_0) entered disabled state [ 1061.492599][T18062] overlayfs: missing 'lowerdir' [ 1061.782007][T18073] loop1: detected capacity change from 0 to 512 [ 1061.958012][T18073] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.4164: inode has both inline data and extents flags [ 1062.137181][T18073] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.4164: couldn't read orphan inode 15 (err -117) [ 1062.479033][T18073] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1062.705373][T12381] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1063.724890][ T28] audit: type=1107 audit(1763628044.736:4671): pid=18079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 1064.390483][T18093] overlayfs: missing 'lowerdir' [ 1064.601958][T18101] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 1064.770273][T18109] loop1: detected capacity change from 0 to 4096 [ 1064.787637][T18109] EXT4-fs (loop1): invalid inodes per group: 204800 [ 1064.787637][T18109] [ 1066.958199][T18119] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4180'. [ 1067.278041][T18123] tipc: Cannot configure node identity twice [ 1067.521273][T18125] overlayfs: missing 'lowerdir' [ 1071.306714][T18155] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1071.315675][T18155] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1072.794240][T18168] netlink: 'syz.3.4197': attribute type 72 has an invalid length. [ 1075.832349][T18184] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1075.851465][T18184] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1076.052999][T18186] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4203'. [ 1077.821046][T18200] netlink: 'syz.3.4207': attribute type 72 has an invalid length. [ 1078.406085][T18208] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1078.435497][T18208] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1078.750320][T18215] loop1: detected capacity change from 0 to 4096 [ 1078.763372][T18215] EXT4-fs (loop1): invalid inodes per group: 204800 [ 1078.763372][T18215] [ 1078.872788][T18221] netlink: 'syz.2.4216': attribute type 72 has an invalid length. [ 1080.107633][T18234] overlayfs: missing 'lowerdir' [ 1082.320793][T18257] tipc: Cannot configure node identity twice [ 1082.363123][T18259] overlayfs: missing 'lowerdir' [ 1084.920455][T18289] overlayfs: missing 'lowerdir' [ 1085.066628][T18291] tipc: Cannot configure node identity twice [ 1085.087538][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 1085.094043][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 1086.254475][T18313] overlayfs: missing 'workdir' [ 1087.807150][T18322] loop1: detected capacity change from 0 to 40427 [ 1087.818991][T18322] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1087.841502][T18322] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1087.868406][T18322] F2FS-fs (loop1): invalid crc value [ 1087.880323][T18322] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1087.985793][T18322] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1087.992913][T18322] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1088.339827][T18327] loop2: detected capacity change from 0 to 40427 [ 1088.406854][T18327] F2FS-fs (loop2): build fault injection attr: rate: 14, type: 0x7ffff [ 1088.419351][ C0] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of blk_update_request+0x597/0xe40 [ 1088.433556][T18327] F2FS-fs (loop2): inject kmalloc in f2fs_kmalloc of f2fs_build_segment_manager+0x2fde/0x4730 [ 1088.435316][T18339] overlayfs: missing 'workdir' [ 1088.444084][T18327] F2FS-fs (loop2): Failed to initialize F2FS segment manager (-12) [ 1091.262536][T18347] overlayfs: failed to clone upperpath [ 1091.870146][T18357] tipc: Enabling of bearer rejected, failed to enable media [ 1092.132383][T18362] overlayfs: missing 'workdir' [ 1092.786789][ T6272] kernel write not supported for file bpf-prog (pid: 6272 comm: kworker/0:5) [ 1093.192236][T18384] tipc: Cannot configure node identity twice [ 1093.383297][T18388] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1095.490519][T18402] loop2: detected capacity change from 0 to 256 [ 1096.226517][T18402] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x368b264c, utbl_chksum : 0xe619d30d) [ 1096.595379][T18402] exFAT-fs (loop2): IO charset B not found [ 1099.010082][T18431] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4293'. [ 1099.774316][T18444] netlink: 104 bytes leftover after parsing attributes in process `syz.2.4297'. [ 1100.795004][T18452] loop1: detected capacity change from 0 to 1024 [ 1100.816340][T18452] EXT4-fs: Ignoring removed nobh option [ 1100.834049][T18452] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1100.873953][T18452] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #11: comm syz.1.4300: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 1100.906988][T18452] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.4300: couldn't read orphan inode 11 (err -117) [ 1100.962006][T18452] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1101.100738][T18452] block device autoloading is deprecated and will be removed. [ 1101.683130][T12381] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1102.205214][T18472] loop3: detected capacity change from 0 to 128 [ 1102.277104][T18478] xt_hashlimit: size too large, truncated to 1048576 [ 1102.683083][T18482] xt_TCPMSS: Only works on TCP SYN packets [ 1103.724785][T18491] loop2: detected capacity change from 0 to 2048 [ 1103.873555][T18491] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1104.153458][T13051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1104.558161][T18505] loop3: detected capacity change from 0 to 512 [ 1104.615793][T18505] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.4317: inode has both inline data and extents flags [ 1104.671654][T18505] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.4317: couldn't read orphan inode 15 (err -117) [ 1104.724558][T18505] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1104.925906][T11946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1107.707179][T18532] overlayfs: failed to clone upperpath [ 1107.917444][T18536] ipip0: entered promiscuous mode [ 1107.945139][T18536] ipip0: entered allmulticast mode [ 1112.768618][T18548] loop2: detected capacity change from 0 to 512 [ 1112.776280][T18548] EXT4-fs: Ignoring removed mblk_io_submit option [ 1112.848209][T18548] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13 [ 1112.968527][T18548] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz.2.4332: attempt to clear invalid blocks 2 len 1 [ 1113.012010][T18548] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1113.044396][T18548] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.4332: invalid indirect mapped block 1819239214 (level 0) [ 1113.097778][T18548] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.4332: invalid indirect mapped block 1819239214 (level 1) [ 1113.138982][T18548] EXT4-fs (loop2): 1 truncate cleaned up [ 1113.160019][T18557] overlayfs: failed to clone upperpath [ 1113.163726][T18548] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1113.550227][T18565] EXT4-fs (loop2): Quota file not on filesystem root. Journaled quota will not work [ 1113.819208][T13051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1119.062803][T18624] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4358'. [ 1123.351014][T18659] loop1: detected capacity change from 0 to 8192 [ 1123.364607][T18659] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1123.481511][T18661] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1123.816465][T18669] loop3: detected capacity change from 0 to 512 [ 1123.834708][T18669] EXT4-fs: Ignoring removed mblk_io_submit option [ 1124.189983][T18669] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 1124.665269][T18671] xt_CT: No such helper "snmp_trap" [ 1124.712651][T18669] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.4376: attempt to clear invalid blocks 2 len 1 [ 1124.744933][T18669] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1124.818496][T18669] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.4376: invalid indirect mapped block 1819239214 (level 0) [ 1124.879842][T18669] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.4376: invalid indirect mapped block 1819239214 (level 1) [ 1124.924069][T18669] EXT4-fs (loop3): 1 truncate cleaned up [ 1124.942426][T18669] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1125.373830][T18683] EXT4-fs (loop3): Quota file not on filesystem root. Journaled quota will not work [ 1125.656093][T11946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1127.413606][T18698] loop3: detected capacity change from 0 to 512 [ 1127.464811][T18698] [EXT4 FS bs=4096, gc=1, bpg=95, ipg=32, mo=e040e01c, mo2=0000] [ 1127.484337][T18698] System zones: 0-2, 18-18, 34-34 [ 1127.509557][T18698] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #3: comm syz.3.4384: corrupted inode contents [ 1127.577562][T18698] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #3: comm syz.3.4384: mark_inode_dirty error [ 1127.649112][T18698] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #3: comm syz.3.4384: corrupted inode contents [ 1127.703320][T18698] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #3: comm syz.3.4384: mark_inode_dirty error [ 1127.797819][T18698] Quota error (device loop3): write_blk: dquota write failed [ 1127.821445][T18698] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 1127.858413][T18698] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.4384: Failed to acquire dquot type 0 [ 1128.139272][T18698] EXT4-fs (loop3): 1 orphan inode deleted [ 1128.147092][T18698] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1128.443147][T18698] ext4 filesystem being mounted at /516/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1129.005648][T18718] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 1129.066061][T18718] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u4:19: Failed to release dquot type 1 [ 1129.114975][ T28] audit: type=1326 audit(1763628105.094:4672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18749 comm="syz.2.4389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1129.169866][T11946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1129.192487][ T28] audit: type=1326 audit(1763628105.094:4673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18749 comm="syz.2.4389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1129.282660][ T28] audit: type=1326 audit(1763628105.122:4674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18749 comm="syz.2.4389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1129.324803][ T28] audit: type=1326 audit(1763628105.122:4675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18749 comm="syz.2.4389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1129.351552][ T28] audit: type=1326 audit(1763628105.122:4676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18749 comm="syz.2.4389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1130.739126][T18761] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4393'. [ 1130.749735][T18761] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4393'. [ 1131.159056][T18766] loop2: detected capacity change from 0 to 16 [ 1131.189585][T18766] erofs: (device loop2): mounted with root inode @ nid 36. [ 1131.209822][T18766] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1131.252375][T18766] erofs: (device loop2): z_erofs_readahead: readahead error at folio 2 @ nid 89 [ 1131.272084][T18766] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1131.309079][T18766] erofs: (device loop2): z_erofs_readahead: readahead error at folio 1 @ nid 89 [ 1131.327057][T18766] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1131.336805][T18766] erofs: (device loop2): z_erofs_readahead: readahead error at folio 0 @ nid 89 [ 1131.347015][T18766] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1131.356869][T18766] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1131.375783][T18766] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 0 of nid 89 [ 1131.392043][T18774] loop1: detected capacity change from 0 to 512 [ 1131.399941][ T28] audit: type=1800 audit(1763628107.208:4677): pid=18766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4394" name="file2" dev="loop2" ino=89 res=0 errno=0 [ 1131.438125][T18774] EXT4-fs: inline encryption not supported [ 1131.453482][T18774] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2 [ 1131.471880][T18774] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.4397: invalid indirect mapped block 2683928664 (level 1) [ 1131.503531][T18774] EXT4-fs (loop1): Remounting filesystem read-only [ 1131.510600][T18774] EXT4-fs (loop1): 1 truncate cleaned up [ 1131.538214][T18774] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1131.645428][T12381] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1133.028604][T18806] loop2: detected capacity change from 0 to 256 [ 1133.049287][T18806] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d) [ 1133.139455][T15114] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 1133.531698][T15114] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1133.550263][T15114] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1133.560131][T15114] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1133.572789][T15114] usb 2-1: Product: syz [ 1133.578002][T15114] usb 2-1: Manufacturer: syz [ 1133.583298][T15114] usb 2-1: SerialNumber: syz [ 1133.821817][ C1] hrtimer: interrupt took 57683 ns [ 1134.882702][T18832] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4420'. [ 1134.925211][T18798] netlink: 'syz.1.4404': attribute type 3 has an invalid length. [ 1134.941502][T18798] netlink: 32 bytes leftover after parsing attributes in process `syz.1.4404'. [ 1135.066346][T15114] cdc_ncm 2-1:1.0: bind() failure [ 1135.077133][T15114] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found [ 1135.085055][T15114] cdc_ncm 2-1:1.1: bind() failure [ 1135.094861][T15114] usb 2-1: USB disconnect, device number 10 [ 1136.025829][ T28] audit: type=1326 audit(1763628111.463:4678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18838 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1136.059895][ T28] audit: type=1326 audit(1763628111.463:4679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18838 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1136.163793][T18843] syz.3.4424: attempt to access beyond end of device [ 1136.163793][T18843] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 1136.428200][T18848] loop2: detected capacity change from 0 to 512 [ 1136.455667][T18848] EXT4-fs: Ignoring removed bh option [ 1136.456182][ T28] audit: type=1326 audit(1763628111.870:4680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18838 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1136.476143][T18848] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 1136.509002][ T28] audit: type=1326 audit(1763628111.870:4681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18838 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1136.545546][T18848] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1136.569081][T18848] EXT4-fs (loop2): 1 truncate cleaned up [ 1136.578316][T18848] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1136.617728][ T28] audit: type=1326 audit(1763628112.008:4682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18838 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1136.708898][ T28] audit: type=1326 audit(1763628112.008:4683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18838 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1136.764965][T13051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1136.779724][T15114] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 1136.817214][ T28] audit: type=1326 audit(1763628112.008:4684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18838 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1136.882225][ T28] audit: type=1326 audit(1763628112.008:4685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18838 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1136.931113][ T28] audit: type=1326 audit(1763628112.017:4686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18838 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1136.977292][ T28] audit: type=1326 audit(1763628112.017:4687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18838 comm="syz.2.4422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1137.000534][T15114] usb 2-1: Using ep0 maxpacket: 32 [ 1137.013512][T15114] usb 2-1: config 0 has no interfaces? [ 1137.023425][T15114] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 1137.050264][T15114] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1137.081424][T15114] usb 2-1: config 0 descriptor?? [ 1137.348577][ T8706] usb 2-1: USB disconnect, device number 11 [ 1137.456303][T18862] loop2: detected capacity change from 0 to 512 [ 1137.564067][T18862] EXT4-fs warning (device loop2): ext4_xattr_inode_get:563: inode #11: comm syz.2.4429: EA inode hash validation failed [ 1137.582297][T18862] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #15: comm syz.2.4429: corrupted inode contents [ 1137.602161][T18862] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #15: comm syz.2.4429: mark_inode_dirty error [ 1137.682533][T18862] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #15: comm syz.2.4429: corrupted inode contents [ 1137.818099][T18862] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3017: inode #15: comm syz.2.4429: mark_inode_dirty error [ 1137.924538][T18862] EXT4-fs error (device loop2): ext4_xattr_delete_inode:3020: inode #15: comm syz.2.4429: mark inode dirty (error -117) [ 1138.022445][T18862] EXT4-fs warning (device loop2): ext4_evict_inode:272: xattr delete (err -117) [ 1138.084585][T18862] EXT4-fs (loop2): 1 orphan inode deleted [ 1138.125428][T18862] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1138.563180][T18880] loop1: detected capacity change from 0 to 512 [ 1138.589802][T18880] EXT4-fs: Ignoring removed mblk_io_submit option [ 1138.615468][T18880] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 1138.642920][T18880] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.4437: attempt to clear invalid blocks 2 len 1 [ 1138.678769][T18880] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1138.740524][T18880] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.4437: invalid indirect mapped block 1819239214 (level 0) [ 1138.784104][T18880] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.4437: invalid indirect mapped block 1819239214 (level 1) [ 1138.843841][T18880] EXT4-fs (loop1): 1 truncate cleaned up [ 1138.860994][T18880] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1139.301554][T18885] EXT4-fs (loop1): Quota file not on filesystem root. Journaled quota will not work [ 1139.890333][T12381] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1140.507640][T18898] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4442'. [ 1140.518662][T18898] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1140.542953][T18898] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1140.570265][T18898] batman_adv: batadv0: Removing interface: virt_wifi0 [ 1141.056105][T18906] loop1: detected capacity change from 0 to 4096 [ 1141.096133][T18906] EXT4-fs (loop1): invalid inodes per group: 204800 [ 1141.096133][T18906] [ 1142.886277][T18923] loop3: detected capacity change from 0 to 256 [ 1145.735788][T13051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1145.809285][T18940] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4456'. [ 1146.629789][T15119] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 1147.041221][T15119] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1147.231736][T15119] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 1147.274842][T15119] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1147.301465][T15119] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1147.324863][T15119] usb 4-1: Product: syz [ 1147.351692][T15119] usb 4-1: Manufacturer: syz [ 1147.372504][T15119] usb 4-1: SerialNumber: syz [ 1147.399636][T15119] cdc_mbim 4-1:1.0: skipping garbage [ 1147.447809][T18964] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4465'. [ 1147.612188][T18966] loop2: detected capacity change from 0 to 512 [ 1147.628912][T18954] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1147.641980][T18966] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1147.664086][T18966] EXT4-fs (loop2): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1147.706809][T18966] EXT4-fs error (device loop2): ext4_add_entry:2486: inode #2: comm syz.2.4466: Directory hole found for htree leaf block 0 [ 1147.748072][T18966] EXT4-fs (loop2): Remounting filesystem read-only [ 1147.835354][T13051] EXT4-fs (loop2): unmounting filesystem 00000005-0000-0000-0000-000000000000. [ 1148.092862][T15119] cdc_mbim 4-1:1.0: failed GET_NTB_PARAMETERS [ 1148.099371][T15119] cdc_mbim 4-1:1.0: bind() failure [ 1148.115609][T15119] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 1148.133387][T15119] cdc_ncm 4-1:1.1: bind() failure [ 1150.269803][T15112] usb 4-1: USB disconnect, device number 7 [ 1150.678396][T18998] wireguard0: entered promiscuous mode [ 1150.685476][T18998] wireguard0: entered allmulticast mode [ 1151.679508][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 1151.690512][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 1152.007953][T19011] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 1152.020860][T19011] overlayfs: missing 'lowerdir' [ 1155.459099][T19051] loop2: detected capacity change from 0 to 40427 [ 1155.478366][T19051] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 1155.486176][T19051] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1155.498855][T19051] F2FS-fs (loop2): invalid crc value [ 1155.527368][T19051] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1155.608210][T19051] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1155.615327][T19051] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1155.660689][T19051] syz.2.4496: attempt to access beyond end of device [ 1155.660689][T19051] loop2: rw=2049, sector=77824, nr_sectors = 136 limit=40427 [ 1155.891574][T19062] loop1: detected capacity change from 0 to 256 [ 1155.911724][T19062] exFAT-fs (loop1): invalid fs_name [ 1155.917006][T19062] exFAT-fs (loop1): failed to read boot sector [ 1155.927315][T19062] exFAT-fs (loop1): failed to recognize exfat type [ 1157.906000][T19087] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4509'. [ 1162.608470][T19146] netlink: 308 bytes leftover after parsing attributes in process `syz.2.4527'. [ 1163.944428][T19157] tipc: Failed to remove unknown binding: 66,1,1/4:306445070/306445072 [ 1163.954685][T19157] tipc: Failed to remove unknown binding: 66,1,1/4:306445070/306445072 [ 1164.253787][T19157] tipc: Failed to remove unknown binding: 66,1,1/4:306445070/306445072 [ 1164.315319][T19163] random: crng reseeded on system resumption [ 1166.126442][T19174] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4537'. [ 1166.146630][T19174] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4537'. [ 1168.765228][T19199] netlink: 308 bytes leftover after parsing attributes in process `syz.1.4543'. [ 1171.944780][T19248] netlink: 308 bytes leftover after parsing attributes in process `syz.1.4563'. [ 1172.167350][T19253] loop2: detected capacity change from 0 to 128 [ 1172.190023][T19253] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1172.229414][T19253] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1175.523875][T19287] loop3: detected capacity change from 0 to 512 [ 1175.572414][T19287] EXT4-fs warning (device loop3): ext4_xattr_inode_get:563: inode #11: comm syz.3.4575: EA inode hash validation failed [ 1175.715863][T19287] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #15: comm syz.3.4575: corrupted inode contents [ 1175.750931][T19287] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #15: comm syz.3.4575: mark_inode_dirty error [ 1175.783756][T19287] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #15: comm syz.3.4575: corrupted inode contents [ 1175.823270][T19287] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3017: inode #15: comm syz.3.4575: mark_inode_dirty error [ 1175.864111][T19287] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3020: inode #15: comm syz.3.4575: mark inode dirty (error -117) [ 1175.913858][T19287] EXT4-fs warning (device loop3): ext4_evict_inode:272: xattr delete (err -117) [ 1175.973290][T19287] EXT4-fs (loop3): 1 orphan inode deleted [ 1176.008169][T19287] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1176.534170][T19304] netlink: 300 bytes leftover after parsing attributes in process `syz.0.4578'. [ 1177.228876][T19307] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4581'. [ 1177.614064][T19315] overlayfs: failed to resolve './file1': -2 [ 1177.864096][T19317] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 1177.958624][T19317] loop1: detected capacity change from 0 to 1024 [ 1177.973140][T19317] EXT4-fs: Ignoring removed bh option [ 1178.105154][T19317] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 1180.218654][T12381] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1182.885739][T11946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1182.895266][T19343] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4591'. [ 1183.640516][T19361] netlink: 'syz.3.4596': attribute type 12 has an invalid length. [ 1183.732393][T19361] loop3: detected capacity change from 0 to 512 [ 1183.835724][T19360] netlink: 300 bytes leftover after parsing attributes in process `syz.0.4594'. [ 1183.901828][T19361] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1183.915167][T19361] ext4 filesystem being mounted at /564/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1185.827594][T11946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1187.151555][T19384] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4602'. [ 1189.416017][T19405] netlink: 'syz.3.4608': attribute type 12 has an invalid length. [ 1191.213935][T19418] xt_TCPMSS: Only works on TCP SYN packets [ 1192.234288][T19429] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4616'. [ 1192.653290][T19436] overlay: Unknown parameter '/' [ 1192.687757][T19436] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 1193.252973][T19438] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4618'. [ 1195.246600][T19456] netlink: 56 bytes leftover after parsing attributes in process `syz.3.4624'. [ 1195.365161][T19460] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4626'. [ 1195.681982][T19469] random: crng reseeded on system resumption [ 1195.960127][T19473] loop2: detected capacity change from 0 to 2048 [ 1196.014813][T19473] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1196.075975][T19473] ext4 filesystem being mounted at /480/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1196.296240][T13051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1196.441620][T19479] loop1: detected capacity change from 0 to 512 [ 1196.453722][T19479] EXT4-fs: Ignoring removed mblk_io_submit option [ 1196.477635][T19479] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 1196.497325][T19479] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.4634: attempt to clear invalid blocks 2 len 1 [ 1196.512423][T19479] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1196.531187][T19479] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.4634: invalid indirect mapped block 1819239214 (level 0) [ 1196.547287][T19479] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.4634: invalid indirect mapped block 1819239214 (level 1) [ 1196.566405][T19479] EXT4-fs (loop1): 1 truncate cleaned up [ 1196.574179][T19479] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1196.838105][T19486] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1196.849303][T19486] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1196.858368][T19486] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1197.361295][T19487] EXT4-fs (loop1): Quota file not on filesystem root. Journaled quota will not work [ 1197.802751][T12666] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1198.030444][T12381] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1198.081463][T12666] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1198.089299][T12666] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1198.865372][T19483] chnl_net:caif_netlink_parms(): no params data found [ 1199.126408][T19483] bridge0: port 1(bridge_slave_0) entered blocking state [ 1199.153619][T19483] bridge0: port 1(bridge_slave_0) entered disabled state [ 1199.170416][T19483] bridge_slave_0: entered allmulticast mode [ 1199.192010][T19483] bridge_slave_0: entered promiscuous mode [ 1199.201354][T19483] bridge0: port 2(bridge_slave_1) entered blocking state [ 1199.217536][T19483] bridge0: port 2(bridge_slave_1) entered disabled state [ 1199.337322][T19483] bridge_slave_1: entered allmulticast mode [ 1199.356530][T19483] bridge_slave_1: entered promiscuous mode [ 1199.457762][T19483] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1199.502646][T19483] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1199.637855][T19483] team0: Port device team_slave_0 added [ 1199.644672][T19503] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4637'. [ 1199.674135][T19483] team0: Port device team_slave_1 added [ 1199.740308][T19483] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1199.748751][T19483] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1199.776156][T19483] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1199.804143][T19483] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1199.825425][T19483] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1199.882970][T19483] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1199.955260][T19513] loop2: detected capacity change from 0 to 256 [ 1199.985084][T19513] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1200.006656][T19513] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 1200.066796][T19483] hsr_slave_0: entered promiscuous mode [ 1200.070074][T19513] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 1200.086046][T19483] hsr_slave_1: entered promiscuous mode [ 1200.113753][T19483] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1200.133103][T19483] Cannot create hsr debugfs directory [ 1200.340931][ T5799] Bluetooth: hci4: command tx timeout [ 1201.270028][T19521] random: crng reseeded on system resumption [ 1201.647152][T19483] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1201.668923][T19483] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1201.704698][T19483] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1201.740105][T19483] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1205.234137][ T5799] Bluetooth: hci4: command tx timeout [ 1205.430958][T19483] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1205.496545][T19483] 8021q: adding VLAN 0 to HW filter on device team0 [ 1205.597826][T18734] bridge0: port 1(bridge_slave_0) entered blocking state [ 1205.605110][T18734] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1205.680292][T18734] bridge0: port 2(bridge_slave_1) entered blocking state [ 1205.687553][T18734] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1205.873690][T19556] random: crng reseeded on system resumption [ 1205.942415][ T8706] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 1206.146937][ T8706] usb 4-1: Using ep0 maxpacket: 16 [ 1206.155371][ T8706] usb 4-1: config 0 has an invalid interface number: 41 but max is 0 [ 1206.172190][ T8706] usb 4-1: config 0 has no interface number 0 [ 1206.186665][T19483] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1206.193829][ T8706] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16 [ 1206.210243][ T8706] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64 [ 1206.338465][ T8706] usb 4-1: config 0 interface 41 has no altsetting 0 [ 1206.353189][ T8706] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a [ 1206.375847][ T8706] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1206.383906][ T8706] usb 4-1: Product: syz [ 1206.396555][ T8706] usb 4-1: Manufacturer: syz [ 1206.407750][ T8706] usb 4-1: SerialNumber: syz [ 1206.414029][T19483] veth0_vlan: entered promiscuous mode [ 1206.416586][ T8706] usb 4-1: config 0 descriptor?? [ 1206.427182][T19551] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1206.439768][T19551] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1206.456471][T19483] veth1_vlan: entered promiscuous mode [ 1206.528898][T19483] veth0_macvtap: entered promiscuous mode [ 1206.546064][T19483] veth1_macvtap: entered promiscuous mode [ 1206.616270][T19483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1206.627777][T19483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1206.647317][T19483] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1206.671416][T19483] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1206.699973][T19551] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1206.710349][T19483] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1206.725783][T19551] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1206.736389][T19483] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1206.752515][T19483] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1206.761902][T19483] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1206.770802][T19483] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1206.780759][T19483] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1207.448610][ T5799] Bluetooth: hci4: command tx timeout [ 1207.568576][T18734] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1207.603609][T18734] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1207.714669][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1207.742484][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1208.080083][T19580] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4657'. [ 1208.136750][T19580] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4657'. [ 1208.866068][ T8706] Error reading MAC address [ 1208.877532][T19551] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1208.885467][T19551] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1209.574695][ T8706] sr9700: probe of 4-1:0.41 failed with error -71 [ 1209.585463][ T8706] usb 4-1: USB disconnect, device number 8 [ 1209.732829][ T5799] Bluetooth: hci4: command tx timeout [ 1215.027658][T19646] netlink: 'syz.2.4678': attribute type 13 has an invalid length. [ 1215.039979][T19636] loop3: detected capacity change from 0 to 40427 [ 1215.076614][T19636] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1215.347644][T19636] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1215.663395][T19646] bridge0: port 2(bridge_slave_1) entered disabled state [ 1215.670888][T19646] bridge0: port 1(bridge_slave_0) entered disabled state [ 1215.911646][T11946] syz-executor: attempt to access beyond end of device [ 1215.911646][T11946] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 1215.958029][T11946] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 1216.662266][T19646] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1216.869982][T19646] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1217.380313][T19646] batman_adv: batadv0: Interface deactivated: virt_wifi0 [ 1217.694933][T19682] loop1: detected capacity change from 0 to 256 [ 1217.790953][T19682] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d) [ 1218.150483][T19646] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1218.176271][T19646] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1218.197845][T19646] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1218.209996][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 1218.216759][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 1218.237166][T19646] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1218.777563][T19701] netlink: 9 bytes leftover after parsing attributes in process `syz.2.4692'. [ 1218.786888][T19701] z00ªX¹¦: renamed from gretap0 [ 1218.795011][T19701] z00ªX¹¦: entered allmulticast mode [ 1219.141298][T19710] loop0: detected capacity change from 0 to 256 [ 1219.157101][T19710] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x64c916ba, utbl_chksum : 0xe619d30d) [ 1219.770806][T19718] team0: Port device team_slave_0 removed [ 1220.282123][T19729] loop0: detected capacity change from 0 to 256 [ 1221.336288][T19739] loop3: detected capacity change from 0 to 4096 [ 1221.358399][T19739] EXT4-fs: Ignoring removed mblk_io_submit option [ 1221.396846][T19739] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1221.425605][T19739] EXT4-fs (loop3): Test dummy encryption mode enabled [ 1221.460587][T19739] EXT4-fs (loop3): can't mount with data_err=abort, fs mounted w/o journal [ 1224.001482][T19762] loop2: detected capacity change from 0 to 512 [ 1224.028318][T19762] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1224.057477][T19762] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1224.064250][T19762] EXT4-fs: Ignoring removed i_version option [ 1224.129396][T19762] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a816c099, mo2=0002] [ 1224.141636][T19762] System zones: 1-12 [ 1224.154640][T19762] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2249: inode #15: comm syz.2.4715: corrupted in-inode xattr: invalid ea_ino [ 1224.201628][T19762] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.4715: couldn't read orphan inode 15 (err -117) [ 1224.249533][T19762] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1224.418510][T13051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1226.155934][T19787] loop2: detected capacity change from 0 to 256 [ 1232.468489][T19836] loop0: detected capacity change from 0 to 512 [ 1232.481873][T19836] EXT4-fs: Ignoring removed mblk_io_submit option [ 1232.490866][T19836] EXT4-fs: inline encryption not supported [ 1232.513909][T19836] EXT4-fs: Ignoring removed mblk_io_submit option [ 1232.528387][T19836] EXT4-fs (loop0): Test dummy encryption mode enabled [ 1232.548315][T19836] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1232.743963][T19836] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002] [ 1232.801857][T19836] System zones: 1-12 [ 1232.863406][T19836] EXT4-fs (loop0): 1 truncate cleaned up [ 1233.243950][T19836] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1234.728870][T19483] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1235.049959][T19861] xt_TCPMSS: Only works on TCP SYN packets [ 1236.444271][T12666] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1236.467063][T12666] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1236.478392][T12666] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1236.507278][T12666] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1236.962785][T12666] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 1236.979593][T12666] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1237.149681][T18730] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1237.696491][T18730] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1237.831249][T18730] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1237.917048][T18730] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1238.163224][T19870] chnl_net:caif_netlink_parms(): no params data found [ 1238.310591][T18730] tipc: Left network mode [ 1238.409428][T19870] bridge0: port 1(bridge_slave_0) entered blocking state [ 1238.416885][T19870] bridge0: port 1(bridge_slave_0) entered disabled state [ 1238.430385][T19870] bridge_slave_0: entered allmulticast mode [ 1238.438187][T19870] bridge_slave_0: entered promiscuous mode [ 1238.646109][T19870] bridge0: port 2(bridge_slave_1) entered blocking state [ 1238.673136][T19870] bridge0: port 2(bridge_slave_1) entered disabled state [ 1238.693560][T19870] bridge_slave_1: entered allmulticast mode [ 1238.710199][T19870] bridge_slave_1: entered promiscuous mode [ 1239.267829][T12666] Bluetooth: hci1: command tx timeout [ 1239.356566][T19870] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1240.024069][T19870] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1240.279742][T19870] team0: Port device team_slave_0 added [ 1240.381756][T19870] team0: Port device team_slave_1 added [ 1240.513214][T19870] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1240.522091][T19870] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1240.586788][T19870] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1240.650703][T19909] xt_TCPMSS: Only works on TCP SYN packets [ 1240.707185][T19870] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1240.714212][T19870] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1240.781696][T19870] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1241.117105][T19870] hsr_slave_0: entered promiscuous mode [ 1241.136899][T19870] hsr_slave_1: entered promiscuous mode [ 1241.178905][T19870] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1241.199378][T19870] Cannot create hsr debugfs directory [ 1241.518589][T12666] Bluetooth: hci1: command tx timeout [ 1241.576776][T18730] hsr_slave_0: left promiscuous mode [ 1241.601922][T18730] hsr_slave_1: left promiscuous mode [ 1241.660557][T18730] veth1_macvtap: left promiscuous mode [ 1241.681500][T18730] veth0_macvtap: left promiscuous mode [ 1241.976530][T19918] loop3: detected capacity change from 0 to 512 [ 1241.993049][T19918] EXT4-fs: Ignoring removed mblk_io_submit option [ 1242.025067][T19918] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 1242.055555][T19918] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.4760: attempt to clear invalid blocks 2 len 1 [ 1242.087721][T19918] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1242.142212][T19918] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.4760: invalid indirect mapped block 1819239214 (level 0) [ 1242.184796][T19918] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.4760: invalid indirect mapped block 1819239214 (level 1) [ 1242.291903][T19918] EXT4-fs (loop3): 1 truncate cleaned up [ 1242.325342][T19918] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1242.713104][T19922] EXT4-fs (loop3): Quota file not on filesystem root. Journaled quota will not work [ 1243.149063][T11946] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1243.765331][T12666] Bluetooth: hci1: command tx timeout [ 1245.543273][T19943] fuse: Bad value for 'fd' [ 1246.039918][T12666] Bluetooth: hci1: command tx timeout [ 1246.062949][T19945] loop0: detected capacity change from 0 to 512 [ 1246.083731][T19945] EXT4-fs: Ignoring removed mblk_io_submit option [ 1246.136721][T19945] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13 [ 1246.148742][T19945] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #13: comm syz.0.4768: attempt to clear invalid blocks 2 len 1 [ 1246.180335][T19945] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1246.198695][T19945] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.4768: invalid indirect mapped block 1819239214 (level 0) [ 1246.226872][T19945] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.4768: invalid indirect mapped block 1819239214 (level 1) [ 1246.249755][T19945] EXT4-fs (loop0): 1 truncate cleaned up [ 1246.257150][T19945] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1246.577235][T19949] EXT4-fs (loop0): Quota file not on filesystem root. Journaled quota will not work [ 1246.816230][T19950] xt_TCPMSS: Only works on TCP SYN packets [ 1247.046624][T19483] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1249.877358][T18730] bond0 (unregistering): Released all slaves [ 1253.064976][T19870] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1253.116194][T19870] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1253.140322][T19870] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1253.161772][T19870] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1254.411464][T19870] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1254.504486][T19870] 8021q: adding VLAN 0 to HW filter on device team0 [ 1254.581851][T18730] bridge0: port 1(bridge_slave_0) entered blocking state [ 1254.589104][T18730] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1254.642133][T18730] bridge0: port 2(bridge_slave_1) entered blocking state [ 1254.649374][T18730] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1257.134752][T19870] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1257.305064][T19870] veth0_vlan: entered promiscuous mode [ 1257.352649][T19870] veth1_vlan: entered promiscuous mode [ 1257.478259][T19870] veth0_macvtap: entered promiscuous mode [ 1257.519227][T19870] veth1_macvtap: entered promiscuous mode [ 1257.585996][T19870] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1257.610773][T19870] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1257.623433][T19870] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1257.637073][T19870] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1257.648193][T19870] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1257.659755][T19870] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1257.680002][T19870] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1257.689368][T19870] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1257.698186][T19870] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1257.707167][T19870] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1258.124707][T18730] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1258.225493][T18730] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1258.357438][T18710] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1258.367265][T18710] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1260.641913][T20072] netlink: 'syz.2.4806': attribute type 2 has an invalid length. [ 1261.266715][T20083] netlink: 180 bytes leftover after parsing attributes in process `syz.0.4810'. [ 1261.336598][T20083] netlink: 180 bytes leftover after parsing attributes in process `syz.0.4810'. [ 1261.462810][T20087] fuse: Bad value for 'fd' [ 1262.460334][ T5799] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 1262.471838][ T5799] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 1262.484192][ T5799] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 1262.514507][ T5799] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 1262.524316][ T5799] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 1262.531901][ T5799] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 1263.271797][T20096] chnl_net:caif_netlink_parms(): no params data found [ 1263.697237][T20096] bridge0: port 1(bridge_slave_0) entered blocking state [ 1263.719378][T20096] bridge0: port 1(bridge_slave_0) entered disabled state [ 1263.741789][T20096] bridge_slave_0: entered allmulticast mode [ 1263.751310][T20096] bridge_slave_0: entered promiscuous mode [ 1263.810569][T20096] bridge0: port 2(bridge_slave_1) entered blocking state [ 1263.818239][T20096] bridge0: port 2(bridge_slave_1) entered disabled state [ 1263.830165][T20096] bridge_slave_1: entered allmulticast mode [ 1263.841938][T20096] bridge_slave_1: entered promiscuous mode [ 1264.112621][T20127] fuse: Bad value for 'fd' [ 1264.734994][T12666] Bluetooth: hci3: command tx timeout [ 1264.853273][T20096] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1264.872406][T20096] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1264.977498][T20096] team0: Port device team_slave_0 added [ 1265.014313][T20096] team0: Port device team_slave_1 added [ 1265.108072][T20096] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1265.121878][T20096] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1265.148579][T20096] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1265.818606][T20096] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1265.850847][T20096] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1265.904101][T20096] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1266.311672][T20096] hsr_slave_0: entered promiscuous mode [ 1266.325889][T20096] hsr_slave_1: entered promiscuous mode [ 1266.332599][T20096] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1266.364348][T20096] Cannot create hsr debugfs directory [ 1266.370500][T18719] tipc: Left network mode [ 1267.186809][T12666] Bluetooth: hci3: command tx timeout [ 1268.511800][T20155] netlink: 'syz.1.4830': attribute type 13 has an invalid length. [ 1268.520009][T20155] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4830'. [ 1270.511796][T12666] Bluetooth: hci3: command tx timeout [ 1270.971683][T20172] team0: Port device team_slave_0 removed [ 1271.075841][T18719] veth0_to_bond: left allmulticast mode [ 1271.081491][T18719] veth0_to_bond: left promiscuous mode [ 1271.112617][T18719] bridge2: port 1(veth0_to_bond) entered disabled state [ 1271.153564][T18719] hsr_slave_0: left promiscuous mode [ 1271.175455][T18719] hsr_slave_1: left promiscuous mode [ 1271.186630][T18719] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1271.214499][T18719] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1271.222542][T18719] batman_adv: batadv0: Removing interface: virt_wifi0 [ 1271.248212][T18719] bridge_slave_1: left allmulticast mode [ 1271.253946][T18719] bridge_slave_1: left promiscuous mode [ 1271.283943][T18719] bridge0: port 2(bridge_slave_1) entered disabled state [ 1271.302273][T18719] bridge_slave_0: left allmulticast mode [ 1271.308005][T18719] bridge_slave_0: left promiscuous mode [ 1271.321757][T18719] bridge0: port 1(bridge_slave_0) entered disabled state [ 1271.487455][T20177] overlayfs: missing 'lowerdir' [ 1272.533440][T18719] team0 (unregistering): Port device team_slave_1 removed [ 1272.605058][T18719] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1272.678588][T18719] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1272.719367][T12666] Bluetooth: hci3: command tx timeout [ 1273.725049][T18719] bond0 (unregistering): Released all slaves [ 1273.895578][T20096] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1273.930145][T20096] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1273.969395][T20096] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1273.983677][T20096] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1274.219307][T20096] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1274.295649][T20096] 8021q: adding VLAN 0 to HW filter on device team0 [ 1274.320149][T18734] bridge0: port 1(bridge_slave_0) entered blocking state [ 1274.327400][T18734] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1274.374276][T18734] bridge0: port 2(bridge_slave_1) entered blocking state [ 1274.381588][T18734] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1276.106127][T20212] overlayfs: missing 'lowerdir' [ 1276.432276][T20096] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1276.743723][T20096] veth0_vlan: entered promiscuous mode [ 1276.774812][T20096] veth1_vlan: entered promiscuous mode [ 1276.913705][T18719] IPVS: stop unused estimator thread 0... [ 1276.974883][T20096] veth0_macvtap: entered promiscuous mode [ 1277.007972][T20096] veth1_macvtap: entered promiscuous mode [ 1277.125835][T20096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1277.422234][T20096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1277.572814][T20096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1277.838898][T20096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1278.000639][T20096] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1278.031394][T20096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1278.081695][T20096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1278.091935][T20096] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1278.102828][T20096] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1278.113724][T20237] random: crng reseeded on system resumption [ 1278.128784][T20096] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1278.255864][T20096] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1278.266898][T20240] overlayfs: missing 'lowerdir' [ 1278.286819][T20096] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1278.306964][T20096] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1278.326993][T20096] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1278.569403][T18730] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1278.595767][T18730] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1278.670336][T12477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1278.678459][T12477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1278.959432][T20257] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1279.109685][T20264] overlayfs: missing 'lowerdir' [ 1279.464473][T20261] random: crng reseeded on system resumption [ 1279.517902][T20274] raw_sendmsg: syz.1.4869 forgot to set AF_INET. Fix it! [ 1279.889728][T20282] syz.2.4873[20282] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1279.889868][T20282] syz.2.4873[20282] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1280.003378][T20287] overlayfs: missing 'lowerdir' [ 1281.169617][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 1281.169638][ T28] audit: type=1326 audit(1763628245.445:4695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20299 comm="syz.2.4880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1281.311004][ T28] audit: type=1326 audit(1763628245.445:4696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20299 comm="syz.2.4880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1281.423292][ T28] audit: type=1326 audit(1763628245.445:4697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20299 comm="syz.2.4880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1281.466843][ T28] audit: type=1326 audit(1763628245.445:4698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20299 comm="syz.2.4880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1281.490650][ T28] audit: type=1326 audit(1763628245.445:4699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20299 comm="syz.2.4880" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f73db78f749 code=0x7ffc0000 [ 1282.220586][T20309] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1282.229415][T20309] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1284.503322][T20337] x_tables: ip6_tables: NETMAP.0 target: invalid size 40 (kernel) != (user) 0 [ 1284.541448][T20339] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1284.566306][T20339] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1284.628599][T20333] random: crng reseeded on system resumption [ 1284.765172][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 1284.773296][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 1285.049442][ T28] audit: type=1326 audit(1763628249.036:4700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20349 comm="syz.1.4899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b1d98f749 code=0x7ffc0000 [ 1285.072576][ T28] audit: type=1326 audit(1763628249.036:4701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20349 comm="syz.1.4899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b1d98f749 code=0x7ffc0000 [ 1285.096150][ T28] audit: type=1326 audit(1763628249.036:4702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20349 comm="syz.1.4899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b1d98f749 code=0x7ffc0000 [ 1285.122195][ T28] audit: type=1326 audit(1763628249.036:4703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20349 comm="syz.1.4899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0b1d98f749 code=0x7ffc0000 [ 1285.145179][ T28] audit: type=1326 audit(1763628249.036:4704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20349 comm="syz.1.4899" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f0b1d98f749 code=0x7ffc0000 [ 1285.428509][T20360] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1285.444152][T20360] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1285.724804][T20367] x_tables: ip6_tables: sctp match: only valid for protocol 132 [ 1286.117378][T20380] overlayfs: missing 'lowerdir' [ 1286.292603][T20387] loop0: detected capacity change from 0 to 128 [ 1286.323039][T20387] FAT-fs (loop0): error, invalid access to FAT (entry 0x0fff0000) [ 1286.335275][T20387] FAT-fs (loop0): Filesystem has been set read-only [ 1286.345029][T20387] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 550, start 05000006) [ 1286.775200][T20404] overlayfs: missing 'lowerdir' [ 1287.122265][T20413] tipc: Failed to remove unknown binding: 66,1,1/4:3983076042/3983076044 [ 1287.378989][T20424] overlayfs: missing 'lowerdir' [ 1287.705657][T20435] netlink: 68 bytes leftover after parsing attributes in process `syz.1.4938'. [ 1288.976251][T20448] overlayfs: missing 'workdir' [ 1290.624857][T20473] overlayfs: missing 'workdir' [ 1290.887182][T20476] loop3: detected capacity change from 0 to 8192 [ 1293.737723][T20504] overlayfs: missing 'workdir' [ 1295.717113][T20544] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off. [ 1295.745695][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 1295.745712][ T28] audit: type=1326 audit(1763628258.894:4709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20545 comm="syz.3.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3aa38f749 code=0x7ffc0000 [ 1295.802289][ T28] audit: type=1326 audit(1763628258.894:4710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20545 comm="syz.3.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3aa38f749 code=0x7ffc0000 [ 1295.837434][ T28] audit: type=1326 audit(1763628258.903:4711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20545 comm="syz.3.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff3aa38df90 code=0x7ffc0000 [ 1295.899708][ T28] audit: type=1326 audit(1763628258.903:4712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20545 comm="syz.3.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff3aa38df90 code=0x7ffc0000 [ 1295.989413][ T28] audit: type=1326 audit(1763628258.903:4713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20545 comm="syz.3.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3aa38f749 code=0x7ffc0000 [ 1296.012322][ T28] audit: type=1326 audit(1763628258.903:4714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20545 comm="syz.3.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3aa38f749 code=0x7ffc0000 [ 1296.083097][ T28] audit: type=1326 audit(1763628258.903:4715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20545 comm="syz.3.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7ff3aa38f749 code=0x7ffc0000 [ 1296.136782][T18710] tipc: Left network mode [ 1296.147812][ T28] audit: type=1326 audit(1763628258.922:4716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20545 comm="syz.3.4975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3aa38f749 code=0x7ffc0000 [ 1302.104809][T20577] loop0: detected capacity change from 0 to 1024 [ 1302.114531][T20577] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1302.126703][T20577] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 1302.143325][T20577] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (53380!=20869) [ 1302.383993][T20577] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 1302.394469][T20577] EXT4-fs error (device loop0): ext4_get_journal_inode:5800: comm syz.0.4986: inode #1: comm syz.0.4986: iget: illegal inode # [ 1302.415475][T20577] EXT4-fs (loop0): no journal found [ 1307.998168][T18710] vlan2: left promiscuous mode [ 1308.008754][T18710] veth0_to_bond: left promiscuous mode [ 1308.023471][T18710] bridge1: port 3(vlan2) entered disabled state [ 1308.046834][T18710] veth5: left allmulticast mode [ 1308.057618][T18710] veth5: left promiscuous mode [ 1308.072723][T18710] bridge1: port 1(veth5) entered disabled state [ 1308.109088][T18710] hsr_slave_0: left promiscuous mode [ 1308.117303][T18710] hsr_slave_1: left promiscuous mode [ 1308.209923][T19290] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 1308.408921][T19290] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 1308.445322][T19290] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1308.470270][ T5799] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1308.482125][ T5799] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1308.483747][T19290] usb 1-1: config 0 descriptor?? [ 1308.491298][ T5799] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1308.505814][ T5799] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1308.515573][ T5799] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1308.523040][ T5799] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1310.276039][T19290] [drm] vendor descriptor length:b9 data:00 00 00 00 00 00 00 00 00 00 00 [ 1310.293574][T19290] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor [ 1310.303816][T19290] [drm:udl_init] *ERROR* Selecting channel failed [ 1310.345933][T19290] [drm] Initialized udl 0.0.1 20120220 for 1-1:0.0 on minor 2 [ 1310.353491][T19290] [drm] Initialized udl on minor 2 [ 1310.393553][T19290] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1310.440939][T19290] udl 1-1:0.0: [drm] Cannot find any crtc or sizes [ 1310.469419][ T6272] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1310.485273][ T6272] udl 1-1:0.0: [drm] Cannot find any crtc or sizes [ 1310.510005][T19290] usb 1-1: USB disconnect, device number 4 [ 1310.758876][ T5799] Bluetooth: hci0: command tx timeout [ 1311.668585][T18710] team0 (unregistering): Port device team_slave_1 removed [ 1311.778992][T18710] team0 (unregistering): Port device team_slave_0 removed [ 1311.893033][T18710] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1311.996822][T18710] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1313.009412][ T5799] Bluetooth: hci0: command tx timeout [ 1313.301004][T18710] bond0 (unregistering): Released all slaves [ 1313.430299][T20646] netlink: 'syz.0.5008': attribute type 16 has an invalid length. [ 1313.438353][T20646] netlink: 'syz.0.5008': attribute type 17 has an invalid length. [ 1313.458707][T20646] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1313.518326][T20649] tipc: Started in network mode [ 1313.543210][T20649] tipc: Node identity 4, cluster identity 4711 [ 1313.549449][T20649] tipc: Node number set to 4 [ 1313.656760][T20652] loop3: detected capacity change from 0 to 512 [ 1313.686949][T20652] EXT4-fs: Ignoring removed mblk_io_submit option [ 1313.740359][T20652] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 1313.813522][T20652] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.5011: attempt to clear invalid blocks 2 len 1 [ 1313.848350][T20652] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1313.969789][T20652] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.5011: invalid indirect mapped block 1819239214 (level 0) [ 1313.997931][T20652] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.5011: invalid indirect mapped block 1819239214 (level 1) [ 1314.043848][T20652] EXT4-fs (loop3): 1 truncate cleaned up [ 1314.055426][T20652] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1314.315435][T20627] chnl_net:caif_netlink_parms(): no params data found [ 1314.481445][T20668] EXT4-fs (loop3): Quota file not on filesystem root. Journaled quota will not work [ 1314.532226][T20627] bridge0: port 1(bridge_slave_0) entered blocking state [ 1314.556390][T20627] bridge0: port 1(bridge_slave_0) entered disabled state [ 1314.585093][T20627] bridge_slave_0: entered allmulticast mode [ 1314.599990][T20627] bridge_slave_0: entered promiscuous mode [ 1314.633367][T20627] bridge0: port 2(bridge_slave_1) entered blocking state [ 1314.649968][T20627] bridge0: port 2(bridge_slave_1) entered disabled state [ 1314.666070][T20627] bridge_slave_1: entered allmulticast mode [ 1314.682229][T20627] bridge_slave_1: entered promiscuous mode [ 1314.898973][T20627] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1314.942460][T20627] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1315.164502][T20627] team0: Port device team_slave_0 added [ 1315.258218][T20627] team0: Port device team_slave_1 added [ 1315.265854][ T5799] Bluetooth: hci0: command tx timeout [ 1315.487178][T20627] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1315.500580][T20096] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1315.502975][T20627] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1315.550218][T20673] netlink: 32 bytes leftover after parsing attributes in process `syz.0.5016'. [ 1315.586852][T20627] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1315.629044][T20627] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1315.636355][T20627] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1315.671276][T20627] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1315.820875][T20627] hsr_slave_0: entered promiscuous mode [ 1315.835215][T20627] hsr_slave_1: entered promiscuous mode [ 1315.861043][T20627] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1315.879683][T20627] Cannot create hsr debugfs directory [ 1316.220633][T18710] tipc: Left network mode [ 1317.068213][T20691] loop0: detected capacity change from 0 to 512 [ 1317.079212][T20691] EXT4-fs: Ignoring removed mblk_io_submit option [ 1317.164724][T20691] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13 [ 1317.178052][T20691] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #13: comm syz.0.5024: attempt to clear invalid blocks 2 len 1 [ 1317.201478][T20691] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1317.250917][T20691] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.5024: invalid indirect mapped block 1819239214 (level 0) [ 1317.323182][T20691] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.5024: invalid indirect mapped block 1819239214 (level 1) [ 1317.385681][T20691] EXT4-fs (loop0): 1 truncate cleaned up [ 1317.403942][T20691] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1317.516047][ T5799] Bluetooth: hci0: command tx timeout [ 1317.991339][T20703] EXT4-fs (loop0): Quota file not on filesystem root. Journaled quota will not work [ 1320.161813][T18710] hsr_slave_0: left promiscuous mode [ 1320.168099][T18710] hsr_slave_1: left promiscuous mode [ 1320.177334][T20712] loop3: detected capacity change from 0 to 512 [ 1320.184331][T18710] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1320.201144][T20712] EXT4-fs: Ignoring removed i_version option [ 1320.203556][T18710] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1320.225599][T20712] EXT4-fs: Ignoring removed bh option [ 1320.248069][T18710] batman_adv: batadv0: Removing interface: virt_wifi0 [ 1320.255884][T18710] bridge_slave_1: left allmulticast mode [ 1320.267795][T18710] bridge_slave_1: left promiscuous mode [ 1320.272924][T20712] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1320.273650][T18710] bridge0: port 2(bridge_slave_1) entered disabled state [ 1320.305644][T20712] ext4 filesystem being mounted at /41/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1320.351931][T18710] bridge_slave_0: left allmulticast mode [ 1320.366982][T18710] bridge_slave_0: left promiscuous mode [ 1320.386820][T18710] bridge0: port 1(bridge_slave_0) entered disabled state [ 1320.503504][T19483] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1320.564943][T20096] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1321.419317][T20729] random: crng reseeded on system resumption [ 1321.647469][T20731] loop0: detected capacity change from 0 to 1024 [ 1321.659380][T20731] EXT4-fs: Ignoring removed bh option [ 1321.928416][T20731] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 1323.457909][T18710] team0 (unregistering): Port device team_slave_1 removed [ 1323.645317][T19483] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 1323.772120][T18710] team0 (unregistering): Port device team_slave_0 removed [ 1323.923216][T18710] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1324.099399][T18710] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1324.174450][T20738] loop3: detected capacity change from 0 to 512 [ 1324.183504][T20738] EXT4-fs: Ignoring removed mblk_io_submit option [ 1324.208124][T20738] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 1324.219928][T20738] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.5037: attempt to clear invalid blocks 2 len 1 [ 1324.240310][T20738] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1324.284534][T20738] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.5037: invalid indirect mapped block 1819239214 (level 0) [ 1324.310955][T20738] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.5037: invalid indirect mapped block 1819239214 (level 1) [ 1324.356541][T20738] EXT4-fs (loop3): 1 truncate cleaned up [ 1324.364081][T20738] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1324.816409][T20745] EXT4-fs (loop3): Quota file not on filesystem root. Journaled quota will not work [ 1325.349130][T18710] bond0 (unregistering): Released all slaves [ 1325.485780][T20627] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1325.497594][T20627] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1325.513108][T20627] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1325.558324][T20627] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1326.310909][T20096] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1326.647670][T20627] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1326.691700][T20627] 8021q: adding VLAN 0 to HW filter on device team0 [ 1326.751292][T18734] bridge0: port 1(bridge_slave_0) entered blocking state [ 1326.758564][T18734] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1327.002658][T20627] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 1327.013183][T20627] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1327.042802][T18734] bridge0: port 2(bridge_slave_1) entered blocking state [ 1327.050112][T18734] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1328.149210][T20779] loop3: detected capacity change from 0 to 512 [ 1328.161108][T20779] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 1328.171179][T20779] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 1328.181397][T20779] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 1328.192772][T20779] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 1328.201528][T20779] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e042e11c, mo2=0000] [ 1328.299745][T20779] EXT4-fs (loop3): failed to initialize system zone (-117) [ 1328.409158][T20779] EXT4-fs (loop3): mount failed [ 1329.211561][T20627] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1329.369770][T20627] veth0_vlan: entered promiscuous mode [ 1329.414044][T20627] veth1_vlan: entered promiscuous mode [ 1329.442632][T20789] loop1: detected capacity change from 0 to 512 [ 1329.473187][T20789] EXT4-fs: Ignoring removed mblk_io_submit option [ 1329.516398][T20627] veth0_macvtap: entered promiscuous mode [ 1329.529489][T20789] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 1329.552777][T20627] veth1_macvtap: entered promiscuous mode [ 1329.554638][T20789] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.5049: attempt to clear invalid blocks 2 len 1 [ 1329.577649][T20627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1329.586236][T20789] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1329.597546][T20627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1329.612470][T20627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1329.625070][T20789] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.5049: invalid indirect mapped block 1819239214 (level 0) [ 1329.632487][T20627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1329.710843][T20627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1329.731486][T20627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1329.772791][T20789] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.5049: invalid indirect mapped block 1819239214 (level 1) [ 1329.798577][T20627] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1329.810518][T20789] EXT4-fs (loop1): 1 truncate cleaned up [ 1329.832793][T20789] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1329.873004][T20627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1329.906642][T20627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.168260][T20627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1330.206896][T20627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.231018][T20627] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1330.289872][T20627] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1330.345586][T20798] EXT4-fs (loop1): Quota file not on filesystem root. Journaled quota will not work [ 1330.357087][T20627] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1330.431909][T20627] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1330.480067][T20627] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1330.529694][T20627] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1330.546869][T20627] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1331.732825][T12666] Bluetooth: hci4: command 0x0406 tx timeout [ 1331.880958][T18719] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1332.060466][T18719] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1332.436008][T18734] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1332.443943][T18734] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1332.798075][T20817] loop2: detected capacity change from 0 to 4096 [ 1332.810548][T20817] EXT4-fs (loop2): invalid inodes per group: 204800 [ 1332.810548][T20817] [ 1332.972284][T19870] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1337.701408][T20844] netlink: 'syz.1.5066': attribute type 12 has an invalid length. [ 1337.766110][T20844] loop1: detected capacity change from 0 to 512 [ 1338.535152][T20844] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1338.548408][T20844] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1338.847479][T20852] loop3: detected capacity change from 0 to 512 [ 1338.874613][T20852] EXT4-fs: Ignoring removed mblk_io_submit option [ 1339.162808][T20852] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 1339.185749][T20852] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.5067: attempt to clear invalid blocks 2 len 1 [ 1339.329558][T20852] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1339.367455][T20852] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.5067: invalid indirect mapped block 1819239214 (level 0) [ 1339.763896][T20852] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.5067: invalid indirect mapped block 1819239214 (level 1) [ 1339.950095][T20852] EXT4-fs (loop3): 1 truncate cleaned up [ 1339.959206][T20852] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1340.360372][T19870] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1340.460013][T20861] loop0: detected capacity change from 0 to 256 [ 1342.682901][T20096] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1343.582110][T20875] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1344.270763][T20880] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5075'. [ 1345.915934][T20895] netlink: 'syz.3.5081': attribute type 153 has an invalid length. [ 1347.706372][T20923] loop2: detected capacity change from 0 to 1024 [ 1347.718644][T20923] EXT4-fs: Ignoring removed bh option [ 1350.098609][T20931] overlayfs: failed to resolve './file0': -2 [ 1350.507484][T20923] EXT4-fs warning (device loop2): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop2. [ 1351.401316][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 1351.419650][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 1351.460764][ T28] audit: type=1326 audit(1763628310.188:4717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20945 comm="syz.0.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a678f749 code=0x7ffc0000 [ 1351.897322][ T28] audit: type=1326 audit(1763628310.188:4718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20945 comm="syz.0.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a678f749 code=0x7ffc0000 [ 1352.126974][ T28] audit: type=1326 audit(1763628310.511:4719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20945 comm="syz.0.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fd2a678f749 code=0x7ffc0000 [ 1352.226757][ T28] audit: type=1326 audit(1763628310.539:4720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20945 comm="syz.0.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a678f749 code=0x7ffc0000 [ 1352.271476][ T28] audit: type=1326 audit(1763628310.557:4721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20945 comm="syz.0.5099" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2a678f749 code=0x7ffc0000 [ 1352.377097][T20957] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5103'. [ 1352.566537][T20960] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5105'. [ 1352.647750][T20962] netlink: 'syz.0.5101': attribute type 12 has an invalid length. [ 1352.703987][T20962] loop0: detected capacity change from 0 to 512 [ 1352.843924][T20962] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1352.857378][T20962] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1353.471011][T20969] loop2: detected capacity change from 0 to 512 [ 1353.496657][T20969] EXT4-fs: Ignoring removed nobh option [ 1353.522292][T20969] EXT4-fs: old and new quota format mixing [ 1354.409855][T19483] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1354.534829][T20977] netlink: 'syz.3.5109': attribute type 9 has an invalid length. [ 1354.553426][T20977] netlink: 92 bytes leftover after parsing attributes in process `syz.3.5109'. [ 1356.511902][T21008] netlink: 'syz.2.5117': attribute type 12 has an invalid length. [ 1356.584442][T21008] loop2: detected capacity change from 0 to 512 [ 1359.366134][T21008] EXT4-fs warning (device loop2): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop2. [ 1359.690206][T21010] loop1: detected capacity change from 0 to 4096 [ 1359.737078][T21010] EXT4-fs (loop1): invalid inodes per group: 204800 [ 1359.737078][T21010] [ 1363.160757][T21035] ------------[ cut here ]------------ [ 1363.166337][T21035] WARNING: CPU: 0 PID: 21035 at mm/page_alloc.c:4433 __alloc_pages+0x2de/0x460 [ 1363.175558][T21035] Modules linked in: [ 1363.179645][T21035] CPU: 0 PID: 21035 Comm: syz.1.5127 Not tainted syzkaller #0 [ 1363.187142][T21035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1363.198468][T21035] RIP: 0010:__alloc_pages+0x2de/0x460 [ 1363.204108][T21035] Code: 0c 25 28 00 00 00 48 3b 8c 24 a0 00 00 00 0f 85 a0 00 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 c6 05 dc 21 64 0c 01 <0f> 0b eb a5 a9 00 00 08 00 8b 74 24 0c 75 3e 44 89 f1 81 e1 7f ff [ 1363.223932][T21035] RSP: 0018:ffffc9000b49fa00 EFLAGS: 00010246 [ 1363.230055][T21035] RAX: ffffc9000b49fa00 RBX: 1ffff92001693f44 RCX: 0000000000000000 [ 1363.238294][T21035] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000b49fa68 [ 1363.246443][T21035] RBP: ffffc9000b49fb00 R08: ffffc9000b49fa67 R09: 0000000000000000 [ 1363.254470][T21035] R10: ffffc9000b49fa40 R11: fffff52001693f4d R12: 0000000000000014 [ 1363.262539][T21035] R13: 0000000000000000 R14: 0000000000040cc0 R15: dffffc0000000000 [ 1363.270807][T21035] FS: 00007f0b1e8236c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 1363.279891][T21035] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1363.287046][T21035] CR2: 000000110c4412bb CR3: 0000000050dcb000 CR4: 00000000003506f0 [ 1363.295330][T21035] Call Trace: [ 1363.298811][T21035] [ 1363.301803][T21035] ? zone_statistics+0x170/0x170 [ 1363.307594][T21035] ? __might_fault+0xaa/0x120 [ 1363.312517][T21035] ? __lock_acquire+0x7c80/0x7c80 [ 1363.317652][T21035] __kmalloc_large_node+0x8c/0x1e0 [ 1363.322878][T21035] ? raw_ioctl+0x1944/0x3b70 [ 1363.327531][T21035] __kmalloc+0x111/0x240 [ 1363.331947][T21035] raw_ioctl+0x1944/0x3b70 [ 1363.336420][T21035] ? tomoyo_path_number_perm+0x477/0x590 [ 1363.342178][T21035] ? __kmem_cache_free+0xba/0x1f0 [ 1363.347276][T21035] ? tomoyo_path_number_perm+0x4dc/0x590 [ 1363.353031][T21035] ? tomoyo_path_number_perm+0x1ba/0x590 [ 1363.358739][T21035] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 1363.364345][T21035] ? make_qualifier+0x250/0x250 [ 1363.369304][T21035] ? __fget_files+0x28/0x4d0 [ 1363.373988][T21035] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1363.379046][T21035] ? security_file_ioctl+0x80/0xa0 [ 1363.384222][T21035] ? make_qualifier+0x250/0x250 [ 1363.389195][T21035] __se_sys_ioctl+0xfd/0x170 [ 1363.393846][T21035] do_syscall_64+0x55/0xb0 [ 1363.398395][T21035] ? clear_bhb_loop+0x40/0x90 [ 1363.403137][T21035] ? clear_bhb_loop+0x40/0x90 [ 1363.407913][T21035] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1363.413871][T21035] RIP: 0033:0x7f0b1d98f749 [ 1363.419181][T21035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1363.439119][T21035] RSP: 002b:00007f0b1e823038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1363.447643][T21035] RAX: ffffffffffffffda RBX: 00007f0b1dbe5fa0 RCX: 00007f0b1d98f749 [ 1363.455768][T21035] RDX: 0000200000000000 RSI: 00000000c0085508 RDI: 0000000000000004 [ 1363.463837][T21035] RBP: 00007f0b1da13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1363.471951][T21035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1363.479984][T21035] R13: 00007f0b1dbe6038 R14: 00007f0b1dbe5fa0 R15: 00007fffdcda0258 [ 1363.488073][T21035] [ 1363.491143][T21035] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1363.498459][T21035] CPU: 0 PID: 21035 Comm: syz.1.5127 Not tainted syzkaller #0 [ 1363.505971][T21035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1363.516092][T21035] Call Trace: [ 1363.519400][T21035] [ 1363.522351][T21035] dump_stack_lvl+0x16c/0x230 [ 1363.527064][T21035] ? show_regs_print_info+0x20/0x20 [ 1363.532290][T21035] ? load_image+0x3b0/0x3b0 [ 1363.536830][T21035] panic+0x2c0/0x710 [ 1363.540754][T21035] ? bpf_jit_dump+0xd0/0xd0 [ 1363.545280][T21035] __warn+0x2e0/0x470 [ 1363.549274][T21035] ? __alloc_pages+0x2de/0x460 [ 1363.554060][T21035] ? __alloc_pages+0x2de/0x460 [ 1363.558843][T21035] report_bug+0x2be/0x4f0 [ 1363.563198][T21035] ? __alloc_pages+0x2de/0x460 [ 1363.567983][T21035] ? __alloc_pages+0x2de/0x460 [ 1363.572771][T21035] ? __alloc_pages+0x2e0/0x460 [ 1363.577554][T21035] handle_bug+0xcf/0x120 [ 1363.581819][T21035] exc_invalid_op+0x1a/0x50 [ 1363.586340][T21035] asm_exc_invalid_op+0x1a/0x20 [ 1363.591215][T21035] RIP: 0010:__alloc_pages+0x2de/0x460 [ 1363.596610][T21035] Code: 0c 25 28 00 00 00 48 3b 8c 24 a0 00 00 00 0f 85 a0 00 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 c6 05 dc 21 64 0c 01 <0f> 0b eb a5 a9 00 00 08 00 8b 74 24 0c 75 3e 44 89 f1 81 e1 7f ff [ 1363.616243][T21035] RSP: 0018:ffffc9000b49fa00 EFLAGS: 00010246 [ 1363.622331][T21035] RAX: ffffc9000b49fa00 RBX: 1ffff92001693f44 RCX: 0000000000000000 [ 1363.630321][T21035] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000b49fa68 [ 1363.638308][T21035] RBP: ffffc9000b49fb00 R08: ffffc9000b49fa67 R09: 0000000000000000 [ 1363.646327][T21035] R10: ffffc9000b49fa40 R11: fffff52001693f4d R12: 0000000000000014 [ 1363.654322][T21035] R13: 0000000000000000 R14: 0000000000040cc0 R15: dffffc0000000000 [ 1363.662332][T21035] ? zone_statistics+0x170/0x170 [ 1363.667307][T21035] ? __might_fault+0xaa/0x120 [ 1363.671997][T21035] ? __lock_acquire+0x7c80/0x7c80 [ 1363.677036][T21035] __kmalloc_large_node+0x8c/0x1e0 [ 1363.682174][T21035] ? raw_ioctl+0x1944/0x3b70 [ 1363.686775][T21035] __kmalloc+0x111/0x240 [ 1363.691038][T21035] raw_ioctl+0x1944/0x3b70 [ 1363.695487][T21035] ? tomoyo_path_number_perm+0x477/0x590 [ 1363.701166][T21035] ? __kmem_cache_free+0xba/0x1f0 [ 1363.706253][T21035] ? tomoyo_path_number_perm+0x4dc/0x590 [ 1363.711941][T21035] ? tomoyo_path_number_perm+0x1ba/0x590 [ 1363.717599][T21035] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 1363.723082][T21035] ? make_qualifier+0x250/0x250 [ 1363.727974][T21035] ? __fget_files+0x28/0x4d0 [ 1363.732591][T21035] ? bpf_lsm_file_ioctl+0x9/0x10 [ 1363.737542][T21035] ? security_file_ioctl+0x80/0xa0 [ 1363.742676][T21035] ? make_qualifier+0x250/0x250 [ 1363.747545][T21035] __se_sys_ioctl+0xfd/0x170 [ 1363.752157][T21035] do_syscall_64+0x55/0xb0 [ 1363.756596][T21035] ? clear_bhb_loop+0x40/0x90 [ 1363.761290][T21035] ? clear_bhb_loop+0x40/0x90 [ 1363.765983][T21035] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1363.771908][T21035] RIP: 0033:0x7f0b1d98f749 [ 1363.776338][T21035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1363.795960][T21035] RSP: 002b:00007f0b1e823038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1363.804407][T21035] RAX: ffffffffffffffda RBX: 00007f0b1dbe5fa0 RCX: 00007f0b1d98f749 [ 1363.812405][T21035] RDX: 0000200000000000 RSI: 00000000c0085508 RDI: 0000000000000004 [ 1363.820397][T21035] RBP: 00007f0b1da13f91 R08: 0000000000000000 R09: 0000000000000000 [ 1363.828381][T21035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1363.836364][T21035] R13: 00007f0b1dbe6038 R14: 00007f0b1dbe5fa0 R15: 00007fffdcda0258 [ 1363.844384][T21035] [ 1363.847812][T21035] Kernel Offset: disabled [ 1363.852149][T21035] Rebooting in 86400 seconds..