last executing test programs: 2.230467679s ago: executing program 1 (id=2697): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = dup(r0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x7}, 0x1c) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x9, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10) setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x4, 0x0, 0x0) 1.411753988s ago: executing program 0 (id=2741): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socketpair(0xa, 0x1, 0x0, 0x0) r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000001380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0) r3 = dup(r2) ioctl$PTP_EXTTS_REQUEST2(r3, 0x43403d05, 0x0) 1.409124838s ago: executing program 0 (id=2742): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000340)='kfree\x00'}, 0x18) syz_genetlink_get_family_id$netlbl_cipso(0x0, 0xffffffffffffffff) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x18) r2 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0xfe80, &(0x7f00000005c0)=[{&(0x7f0000000940)="2e00000010008188e6b62aa73772cc9f1ba1f8482e0000005e140602000000000e000a001000000002800000128c", 0x2e}], 0x1}, 0x0) 1.363502202s ago: executing program 1 (id=2743): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x18, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000000, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x13) r1 = io_uring_setup(0x36dc, &(0x7f00000001c0)) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$lock(r2, 0x6, &(0x7f0000002000)={0x1}) fcntl$lock(r2, 0x26, &(0x7f00000031c0)) close_range(r1, 0xffffffffffffffff, 0x0) 1.314551495s ago: executing program 0 (id=2744): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000495"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='rseq_update\x00', r0}, 0x18) rseq(&(0x7f0000000080), 0x20, 0x0, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r2 = eventfd2(0x0, 0x0) read$eventfd(r2, &(0x7f0000000040), 0x8) 1.24789611s ago: executing program 1 (id=2747): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = gettid() rt_sigprocmask(0x0, &(0x7f0000000000)={[0xffffffed]}, 0x0, 0x8) timer_create(0x3, &(0x7f000049efa0)={0x0, 0x14, 0x4, @tid=r0}, &(0x7f0000044000)=0x0) timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0) timer_gettime(r1, 0x0) rt_sigprocmask(0x2, &(0x7f0000001140)={[0x8386]}, 0x0, 0x8) 1.210215033s ago: executing program 1 (id=2748): pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) socket$nl_route(0x10, 0x3, 0x0) ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000040)={0x0, 0x2000, 0x0, {0x0, 0xa}, {0x1, 0x40}, @const={0x0, {0x0, 0x108, 0x4, 0x81}}}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4808000010001fff3a4ee9bfd5c3a3696c40af0b", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x3}}, 0x0) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0) 1.067355013s ago: executing program 3 (id=2751): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b000000000000000000"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1e, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10) bpf$MAP_CREATE_TAIL_CALL(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000) 955.550511ms ago: executing program 3 (id=2754): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001680)={0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000000000000000000000000851000000600000018020000", @ANYRES32, @ANYBLOB="00000000000000006600020000000000180000000000000000000000000000009500040000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a00000000000085000000060000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0x2, 0xff5c, &(0x7f0000000340)=""/222, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) 931.622193ms ago: executing program 3 (id=2755): bpf$MAP_CREATE(0x700000000000000, 0x0, 0x0) truncate(&(0x7f0000000400)='./file0\x00', 0x400) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) getpeername(0xffffffffffffffff, &(0x7f0000000240)=@nfc, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000c80)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x44, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x18, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x4}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}, @NFTA_FLOWTABLE_HOOK_NUM={0x8}]}]}], {0x14}}, 0x6c}}, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000040)="2e00000011008188040f80ec59acbc0413a1f8480b000000", 0x18}, {&(0x7f00000000c0)="bc588bb49cff7d081d465efc09c57bbfb7b83fa6366c", 0x16}], 0x2}, 0x0) 658.608553ms ago: executing program 3 (id=2761): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$TOKEN_CREATE(0x24, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x15, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='sys_enter\x00', r2, 0x0, 0x2}, 0x18) cachestat(r0, &(0x7f0000000000)={0xe1, 0x9}, &(0x7f0000000040), 0x0) 604.237787ms ago: executing program 4 (id=2764): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r2}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r3, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"}) 603.827747ms ago: executing program 3 (id=2765): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r0, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10) bind$tipc(r0, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42, 0x3}}}, 0x10) r1 = socket$tipc(0x1e, 0x5, 0x0) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000044850000000e0000003f0000000000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r2}, 0x18) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10) 586.207648ms ago: executing program 4 (id=2766): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8) setsockopt$inet6_int(r0, 0x29, 0x3a, &(0x7f0000000040)=0x8, 0x4) recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) 516.433503ms ago: executing program 3 (id=2769): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r1, 0x0, 0xc8, &(0x7f0000003d40), 0x4) setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10) setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8) syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @address_request}}}}, 0x0) syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0) close(r1) 496.111484ms ago: executing program 4 (id=2770): syz_read_part_table(0x5dc, &(0x7f0000000000)="$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") r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x200000000000011, 0x2, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000029000)={0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) bind$packet(r1, &(0x7f0000000180)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xb}}, 0x14) getsockname$packet(r1, &(0x7f00000015c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="3800000054000147880000000000000007008209", @ANYRES32=r4, @ANYBLOB="20000100"], 0x38}}, 0x4000) 452.962287ms ago: executing program 0 (id=2773): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', 0x0}) r2 = socket$packet(0x11, 0x3, 0x300) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000000080)={'batadv0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000cff5000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="00000000014006002000128008000100687372001400028008000200", @ANYRES32=r1, @ANYBLOB="08000100", @ANYRES32=r3], 0x40}}, 0x0) 375.742183ms ago: executing program 4 (id=2774): r0 = socket$packet(0x11, 0x2, 0x300) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000180)={'batadv_slave_1\x00', 0x0}) setsockopt$packet_add_memb(r2, 0x107, 0x1, &(0x7f0000000000)={r3, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x45}}, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', 0x0}) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003800c00010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c00010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r4, @ANYBLOB='\b\x00\n\x00', @ANYRESOCT], 0xb4}}, 0x0) 206.760025ms ago: executing program 1 (id=2776): r0 = socket(0x11, 0x3, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff010000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000400)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000005c0)={'gre0\x00', 0x0}) bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev}, 0x14) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0x4e6f, 0x4) sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="02011400012918000e3580009f000114dc05002f0600ac141430e0000003808a8972bd0b72e4108296a3d206163944f8afc1bf505602da9168d6f9ce320068ff1f7e345a170d1423c2e18c8ed410c8aab9a20b514d2b583b90a86da4483488c0fdc6c2"], 0xdd12}], 0x1, 0x0, 0x0, 0x4000}, 0x1) 148.11981ms ago: executing program 2 (id=2777): r0 = socket$inet(0x2, 0x3, 0x8) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000000000000000000000b1000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10) setsockopt$inet_int(r0, 0x0, 0x5, &(0x7f0000000080)=0x7, 0x4) r3 = socket$inet(0x2, 0x6000000000000003, 0x6) r4 = dup3(r0, r3, 0x0) setsockopt$inet_int(r4, 0x0, 0x5, &(0x7f0000000080)=0x7, 0x4) 147.637ms ago: executing program 1 (id=2778): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000340), 0x4) mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0, 0x12, r0, 0x0) perf_event_open(&(0x7f0000000000)={0x8, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080)}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x3e, 0x1, 0x0, 0x0, 0x0, 0x8000000003, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x5, 0x800000000003}, 0x115d2, 0x0, 0x10000005, 0x3, 0x3c, 0x8, 0xfffc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6000000002060103000000000000000000000004050001000700000013000300686173683a6e65742c696661636500000900020073797a30000000000500040000000000050005000a00000014000780050015000000000008001240"], 0x60}}, 0x0) 111.653772ms ago: executing program 2 (id=2779): r0 = syz_io_uring_setup(0x1725, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x400002, 0x3a6}, &(0x7f0000000040)=0x0, &(0x7f0000000200)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000240)=0xfffffc04, 0x0, 0x4) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r3}, &(0x7f0000000800), &(0x7f0000000840)}, 0x20) syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_MKDIRAT={0x25, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x84, 0x0, 0x1}) io_uring_enter(r0, 0x47f6, 0x0, 0x0, 0x0, 0x0) 111.104792ms ago: executing program 0 (id=2780): r0 = getpid() r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) setreuid(0xee00, 0x0) r3 = syz_pidfd_open(r0, 0x0) setns(r3, 0x24020000) syz_clone3(&(0x7f00000008c0)={0x95340580, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r0], 0x1}, 0x58) 94.218093ms ago: executing program 4 (id=2781): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="18020000002000000000000000000000850000000700000095"], &(0x7f0000000040)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x1, 0x5, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r4}, 0x10) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000880)={r1, r2, 0x25, 0x2, @val=@iter={0x0}}, 0x20) syz_emit_ethernet(0x3e, &(0x7f00000009c0)=ANY=[], 0x0) 92.335324ms ago: executing program 2 (id=2791): r0 = syz_open_dev$sg(&(0x7f00000004c0), 0x0, 0x20c02) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, 0x0, &(0x7f0000000040)=r2}, 0x20) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10) read(r0, 0x0, 0x0) 46.088357ms ago: executing program 2 (id=2782): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) socket$kcm(0xa, 0x5, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), r2) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000780)={'veth1_to_bridge\x00', 0x0}) sendmsg$ETHTOOL_MSG_CHANNELS_GET(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010026bd6000000000002d9300000c00018008000100", @ANYRES32=r4], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x20040814) 45.638897ms ago: executing program 4 (id=2783): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r0}, 0x10) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1000, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0) fcntl$setstatus(r1, 0x4, 0x42000) io_setup(0x2e, &(0x7f0000000100)=0x0) io_submit(r2, 0x1, &(0x7f00000001c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000000140)='^', 0x1}]) writev(r1, &(0x7f0000000000)=[{&(0x7f00000000c0)="14", 0x1}], 0x1) 26.812118ms ago: executing program 0 (id=2784): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000002c00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000008c0)='page_pool_state_hold\x00', r2}, 0x10) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 16.660939ms ago: executing program 2 (id=2785): perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x8000000c8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000300000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) close(r3) recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) write$cgroup_subtree(r4, 0x0, 0x2000fdef) 0s ago: executing program 2 (id=2786): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r1}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)={0x34, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_MSGMASK={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}, @ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x34}}, 0x0) kernel console output (not intermixed with test programs): pointer. Misfeature support will be removed [ 32.860215][ T3473] ext4 filesystem being mounted at /3/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 32.901284][ T29] audit: type=1400 audit(1739785641.850:151): avc: denied { setattr } for pid=3471 comm="syz.2.14" path="/3/mnt/file1" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 32.952375][ T29] audit: type=1400 audit(1739785641.880:152): avc: denied { ioctl } for pid=3471 comm="syz.2.14" path="/3/mnt/file1" dev="loop2" ino=12 ioctlcmd=0x6609 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 32.977881][ T3309] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 33.053539][ T29] audit: type=1400 audit(1739785642.000:153): avc: denied { create } for pid=3487 comm="syz.0.21" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 33.078263][ T3490] process 'syz.2.20' launched './file0' with NULL argv: empty string added [ 33.099493][ T3492] syz.4.22 (3492) used greatest stack depth: 10312 bytes left [ 33.206616][ T3499] syz.0.24 (3499) used greatest stack depth: 10072 bytes left [ 33.223145][ T3503] netlink: 146340 bytes leftover after parsing attributes in process `syz.1.27'. [ 33.235684][ T3501] netlink: 28 bytes leftover after parsing attributes in process `syz.2.26'. [ 33.261035][ T3503] netlink: zone id is out of range [ 33.266278][ T3503] netlink: zone id is out of range [ 33.285673][ T3503] netlink: zone id is out of range [ 33.303412][ T3503] netlink: zone id is out of range [ 33.308643][ T3503] netlink: zone id is out of range [ 33.332729][ T3503] netlink: zone id is out of range [ 33.339715][ T3510] netlink: 8 bytes leftover after parsing attributes in process `syz.3.30'. [ 33.343235][ T3503] netlink: zone id is out of range [ 33.361972][ T3503] netlink: del zone limit has 8 unknown bytes [ 33.415506][ T3526] loop3: detected capacity change from 0 to 128 [ 33.427494][ T3524] bridge_slave_0: left allmulticast mode [ 33.433188][ T3524] bridge_slave_0: left promiscuous mode [ 33.438957][ T3524] bridge0: port 1(bridge_slave_0) entered disabled state [ 33.457560][ T3524] bridge_slave_1: left allmulticast mode [ 33.463444][ T3524] bridge_slave_1: left promiscuous mode [ 33.469263][ T3524] bridge0: port 2(bridge_slave_1) entered disabled state [ 33.491170][ T3524] bond0: (slave bond_slave_0): Releasing backup interface [ 33.519662][ T3524] bond0: (slave bond_slave_1): Releasing backup interface [ 33.550071][ T3524] team0: Port device team_slave_0 removed [ 33.568841][ T3524] team0: Port device team_slave_1 removed [ 33.577949][ T3524] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 33.585430][ T3524] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 33.604891][ T3524] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 33.609243][ T3542] loop2: detected capacity change from 0 to 512 [ 33.612618][ T3524] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 33.640848][ T3542] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 33.669675][ T3538] netlink: 4 bytes leftover after parsing attributes in process `syz.3.41'. [ 33.679767][ T3547] netlink: 12 bytes leftover after parsing attributes in process `syz.4.44'. [ 33.695193][ T3542] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 33.772429][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 33.798702][ T3555] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 33.812138][ T3552] loop1: detected capacity change from 0 to 4096 [ 33.831096][ T3552] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 33.851924][ T3563] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 34.051159][ T3582] Illegal XDP return value 4294967274 on prog (id 49) dev N/A, expect packet loss! [ 34.076021][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 34.139198][ T3589] veth1_to_bond: entered allmulticast mode [ 34.169515][ T3589] lo: entered promiscuous mode [ 34.176953][ T3589] lo: left promiscuous mode [ 34.181609][ T3589] veth1_to_bond: left allmulticast mode [ 34.318829][ T3604] netem: incorrect ge model size [ 34.323837][ T3604] netem: change failed [ 34.397689][ T3613] Zero length message leads to an empty skb [ 34.582634][ T3626] loop2: detected capacity change from 0 to 4096 [ 34.617187][ T3626] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 34.685454][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 34.766015][ T3639] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 34.793523][ T3641] futex_wake_op: syz.4.83 tries to shift op by -1; fix this program [ 34.925019][ T3654] netlink: 12 bytes leftover after parsing attributes in process `syz.1.91'. [ 34.938332][ T3654] bridge0: port 3(batadv1) entered blocking state [ 34.944826][ T3654] bridge0: port 3(batadv1) entered disabled state [ 34.952007][ T3654] batadv1: entered allmulticast mode [ 34.954219][ T3656] netlink: 36 bytes leftover after parsing attributes in process `syz.0.92'. [ 34.957969][ T3654] batadv1: entered promiscuous mode [ 35.151583][ T3668] netdevsim netdevsim2: loading /lib/firmware/. failed with error -22 [ 35.159853][ T3668] netdevsim netdevsim2: Direct firmware load for . failed with error -22 [ 35.267812][ T3695] mmap: syz.1.103 (3695) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 35.368627][ T3707] loop1: detected capacity change from 0 to 8192 [ 35.413271][ T3707] loop1: p1 p2 p3 p4 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 [ 35.413696][ T3707] loop1: p1 size 65536 extends beyond EOD, truncated [ 35.506103][ T1564] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled [ 35.521202][ T1564] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled [ 35.524002][ T3707] loop1: p3 size 16744448 extends beyond EOD, truncated [ 35.570780][ T3732] bridge0: entered promiscuous mode [ 35.578913][ T3707] loop1: p5 size 65536 extends beyond EOD, truncated [ 35.605340][ T3732] bridge0: port 3(macsec1) entered blocking state [ 35.611991][ T3732] bridge0: port 3(macsec1) entered disabled state [ 35.633915][ T3707] loop1: p7 size 65536 extends beyond EOD, truncated [ 35.642572][ T3707] loop1: p9 size 65536 extends beyond EOD, truncated [ 35.667176][ T3732] macsec1: entered allmulticast mode [ 35.672589][ T3732] bridge0: entered allmulticast mode [ 35.696104][ T3707] loop1: p11 size 65536 extends beyond EOD, truncated [ 35.718082][ T3732] macsec1: left allmulticast mode [ 35.723307][ T3732] bridge0: left allmulticast mode [ 35.736971][ T3707] loop1: p13 size 65536 extends beyond EOD, truncated [ 35.748205][ T3707] loop1: p15 size 65536 extends beyond EOD, truncated [ 35.755628][ T3732] bridge0: left promiscuous mode [ 35.783223][ T3707] loop1: p17 size 65536 extends beyond EOD, truncated [ 35.796385][ T3707] loop1: p19 size 65536 extends beyond EOD, truncated [ 35.804843][ T3707] loop1: p21 size 65536 extends beyond EOD, truncated [ 35.843613][ T3707] loop1: p23 size 65536 extends beyond EOD, truncated [ 35.853186][ T3707] loop1: p25 size 65536 extends beyond EOD, truncated [ 35.863114][ T3707] loop1: p27 size 65536 extends beyond EOD, truncated [ 35.872667][ T3707] loop1: p29 size 65536 extends beyond EOD, truncated [ 35.886839][ T3707] loop1: p31 size 65536 extends beyond EOD, truncated [ 35.894915][ T3707] loop1: p33 size 65536 extends beyond EOD, truncated [ 35.903153][ T3707] loop1: p35 size 65536 extends beyond EOD, truncated [ 35.917223][ T3707] loop1: p37 size 65536 extends beyond EOD, truncated [ 35.927327][ T3707] loop1: p39 size 65536 extends beyond EOD, truncated [ 35.935468][ T3707] loop1: p41 size 65536 extends beyond EOD, truncated [ 35.943972][ T3707] loop1: p43 size 65536 extends beyond EOD, truncated [ 35.953164][ T3707] loop1: p45 size 65536 extends beyond EOD, truncated [ 35.961211][ T3707] loop1: p47 size 65536 extends beyond EOD, truncated [ 35.969370][ T3707] loop1: p49 size 65536 extends beyond EOD, truncated [ 36.018762][ T3757] 9pnet_fd: p9_fd_create_tcp (3757): problem connecting socket to 127.0.0.1 [ 36.028895][ T3707] loop1: p51 size 65536 extends beyond EOD, truncated [ 36.052857][ T3707] loop1: p53 size 65536 extends beyond EOD, truncated [ 36.081103][ T3707] loop1: p55 size 65536 extends beyond EOD, truncated [ 36.093791][ T3763] loop4: detected capacity change from 0 to 512 [ 36.107268][ T3707] loop1: p57 size 65536 extends beyond EOD, truncated [ 36.121468][ T3763] EXT4-fs (loop4): too many log groups per flexible block group [ 36.129263][ T3763] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 36.130155][ T3707] loop1: p59 size 65536 extends beyond EOD, truncated [ 36.144408][ T3707] loop1: p61 size 65536 extends beyond EOD, truncated [ 36.153003][ T3707] loop1: p63 size 65536 extends beyond EOD, truncated [ 36.153832][ T3763] EXT4-fs (loop4): mount failed [ 36.177680][ T3707] loop1: p65 size 65536 extends beyond EOD, truncated [ 36.194997][ T3707] loop1: p67 size 65536 extends beyond EOD, truncated [ 36.212968][ T3707] loop1: p69 size 65536 extends beyond EOD, truncated [ 36.220574][ T3771] netlink: 92 bytes leftover after parsing attributes in process `syz.0.118'. [ 36.221091][ T3707] loop1: p71 size 65536 extends beyond EOD, truncated [ 36.237411][ T3707] loop1: p73 size 65536 extends beyond EOD, truncated [ 36.237763][ T3772] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 36.244980][ T3707] loop1: p75 size 65536 extends beyond EOD, truncated [ 36.273785][ T3707] loop1: p77 size 65536 extends beyond EOD, truncated [ 36.282776][ T3707] loop1: p79 size 65536 extends beyond EOD, truncated [ 36.291189][ T3707] loop1: p81 size 65536 extends beyond EOD, truncated [ 36.299920][ T3774] wg2: entered promiscuous mode [ 36.304830][ T3774] wg2: entered allmulticast mode [ 36.317445][ T3707] loop1: p83 size 65536 extends beyond EOD, truncated [ 36.327061][ T3778] netlink: 8 bytes leftover after parsing attributes in process `syz.0.122'. [ 36.337994][ T3778] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 36.348319][ T3707] loop1: p85 size 65536 extends beyond EOD, truncated [ 36.356967][ T3707] loop1: p87 size 65536 extends beyond EOD, truncated [ 36.369144][ T3707] loop1: p89 size 65536 extends beyond EOD, truncated [ 36.377065][ T3707] loop1: p91 size 65536 extends beyond EOD, truncated [ 36.384791][ T3707] loop1: p93 size 65536 extends beyond EOD, truncated [ 36.393621][ T3707] loop1: p95 size 65536 extends beyond EOD, truncated [ 36.401373][ T3707] loop1: p97 size 65536 extends beyond EOD, truncated [ 36.423205][ T3707] loop1: p99 size 65536 extends beyond EOD, truncated [ 36.433225][ T3707] loop1: p101 size 65536 extends beyond EOD, truncated [ 36.444829][ T3707] loop1: p103 size 65536 extends beyond EOD, truncated [ 36.455191][ T3707] loop1: p105 size 65536 extends beyond EOD, truncated [ 36.464645][ T3707] loop1: p107 size 65536 extends beyond EOD, truncated [ 36.472794][ T3707] loop1: p109 size 65536 extends beyond EOD, truncated [ 36.482965][ T3707] loop1: p111 size 65536 extends beyond EOD, truncated [ 36.489631][ T3790] loop0: detected capacity change from 0 to 512 [ 36.491693][ T3707] loop1: p113 size 65536 extends beyond EOD, truncated [ 36.502138][ T3790] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 36.504140][ T3707] loop1: p115 size 65536 extends beyond EOD, [ 36.516124][ T3790] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 36.532223][ T3707] truncated [ 36.536806][ T3707] loop1: p117 size 65536 extends beyond EOD, truncated [ 36.544601][ T3707] loop1: p119 size 65536 extends beyond EOD, truncated [ 36.546895][ T3790] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 36.553030][ T3707] loop1: p121 size 65536 extends beyond EOD, truncated [ 36.565025][ T3790] EXT4-fs (loop0): 1 truncate cleaned up [ 36.577699][ T3790] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 36.600461][ T3707] loop1: p123 size 65536 extends beyond EOD, truncated [ 36.621162][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 36.630864][ T3707] loop1: p125 size 65536 extends beyond EOD, truncated [ 36.646353][ T3707] loop1: p127 size 65536 extends beyond EOD, truncated [ 36.655106][ T3707] loop1: p129 size 65536 extends beyond EOD, truncated [ 36.663916][ T3707] loop1: p131 size 65536 extends beyond EOD, truncated [ 36.681851][ T3707] loop1: p133 size 65536 extends beyond EOD, truncated [ 36.716231][ T3707] loop1: p135 size 65536 extends beyond EOD, truncated [ 36.731958][ T3707] loop1: p137 size 65536 extends beyond EOD, truncated [ 36.745184][ T3707] loop1: p139 size 65536 extends beyond EOD, truncated [ 36.763167][ T3707] loop1: p141 size 65536 extends beyond EOD, truncated [ 36.775581][ T3707] loop1: p143 size 65536 extends beyond EOD, truncated [ 36.783519][ T3707] loop1: p145 size 65536 extends beyond EOD, truncated [ 36.792582][ T3707] loop1: p147 size 65536 extends beyond EOD, truncated [ 36.801460][ T3707] loop1: p149 size 65536 extends beyond EOD, truncated [ 36.810414][ T3707] loop1: p151 size 65536 extends beyond EOD, truncated [ 36.818214][ T3707] loop1: p153 size 65536 extends beyond EOD, truncated [ 36.827951][ T3707] loop1: p155 size 65536 extends beyond EOD, truncated [ 36.844615][ T3707] loop1: p157 size 65536 extends beyond EOD, truncated [ 36.863070][ T3818] loop3: detected capacity change from 0 to 2048 [ 36.864986][ T3707] loop1: p159 size 65536 extends beyond EOD, truncated [ 36.886891][ T3707] loop1: p161 size 65536 extends beyond EOD, truncated [ 36.897536][ T3818] syz.3.138: attempt to access beyond end of device [ 36.897536][ T3818] loop3: rw=0, sector=1552, nr_sectors = 512 limit=2048 [ 36.917577][ T3707] loop1: p163 size 65536 extends beyond EOD, truncated [ 36.928795][ T3707] loop1: p165 size 65536 extends beyond EOD, truncated [ 36.937105][ T3707] loop1: p167 size 65536 extends beyond EOD, truncated [ 36.944996][ T3707] loop1: p169 size 65536 extends beyond EOD, truncated [ 36.952787][ T3707] loop1: p171 size 65536 extends beyond EOD, truncated [ 36.963650][ T3707] loop1: p173 size 65536 extends beyond EOD, truncated [ 36.971309][ T3707] loop1: p175 size 65536 extends beyond EOD, truncated [ 36.979050][ T3707] loop1: p177 size 65536 extends beyond EOD, truncated [ 36.987008][ T3707] loop1: p179 size 65536 extends beyond EOD, truncated [ 37.022093][ T3707] loop1: p181 size 65536 extends beyond EOD, truncated [ 37.036131][ T3707] loop1: p183 size 65536 extends beyond EOD, truncated [ 37.045052][ T3707] loop1: p185 size 65536 extends beyond EOD, truncated [ 37.071052][ T3707] loop1: p187 size 65536 extends beyond EOD, truncated [ 37.088883][ T3707] loop1: p189 size 65536 extends beyond EOD, truncated [ 37.098038][ T3707] loop1: p191 size 65536 extends beyond EOD, truncated [ 37.106836][ T3707] loop1: p193 size 65536 extends beyond EOD, truncated [ 37.114632][ T3707] loop1: p195 size 65536 extends beyond EOD, truncated [ 37.123882][ T3707] loop1: p197 size 65536 extends beyond EOD, truncated [ 37.131937][ T3707] loop1: p199 size 65536 extends beyond EOD, truncated [ 37.149508][ T3836] xt_CT: No such helper "pptp" [ 37.164185][ T3707] loop1: p201 size 65536 extends beyond EOD, truncated [ 37.181553][ T3707] loop1: p203 size 65536 extends beyond EOD, truncated [ 37.206015][ T3707] loop1: p205 size 65536 extends beyond EOD, truncated [ 37.220938][ T3842] netlink: 'syz.4.146': attribute type 30 has an invalid length. [ 37.231267][ T3707] loop1: p207 size 65536 extends beyond EOD, truncated [ 37.243799][ T3707] loop1: p209 size 65536 extends beyond EOD, truncated [ 37.258602][ T3707] loop1: p211 size 65536 extends beyond EOD, truncated [ 37.284225][ T3707] loop1: p213 size 65536 extends beyond EOD, truncated [ 37.374162][ T3707] loop1: p215 size 65536 extends beyond EOD, truncated [ 37.382301][ T3707] loop1: p217 size 65536 extends beyond EOD, truncated [ 37.402479][ T3707] loop1: p219 size 65536 extends beyond EOD, truncated [ 37.413600][ T3707] loop1: p221 size 65536 extends beyond EOD, truncated [ 37.426147][ T29] kauditd_printk_skb: 232 callbacks suppressed [ 37.426160][ T29] audit: type=1326 audit(1739785646.380:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3848 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 37.460488][ T3707] loop1: p223 size 65536 extends beyond EOD, truncated [ 37.475832][ T29] audit: type=1326 audit(1739785646.410:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3848 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 37.499362][ T29] audit: type=1326 audit(1739785646.410:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3848 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 37.522882][ T29] audit: type=1326 audit(1739785646.410:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3848 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 37.526646][ T3707] loop1: p225 size 65536 extends beyond EOD, [ 37.546200][ T29] audit: type=1326 audit(1739785646.410:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3848 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 37.552272][ T3707] truncated [ 37.579246][ T29] audit: type=1326 audit(1739785646.410:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3848 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 37.602589][ T29] audit: type=1326 audit(1739785646.410:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3848 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 37.625979][ T29] audit: type=1326 audit(1739785646.410:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3848 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 37.649442][ T29] audit: type=1326 audit(1739785646.410:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3848 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 37.672767][ T29] audit: type=1326 audit(1739785646.410:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3848 comm="syz.4.150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 37.698823][ T3707] loop1: p227 size 65536 extends beyond EOD, truncated [ 37.709529][ T3707] loop1: p229 size 65536 extends beyond EOD, truncated [ 37.717625][ T3707] loop1: p231 size 65536 extends beyond EOD, truncated [ 37.726833][ T3707] loop1: p233 size 65536 extends beyond EOD, truncated [ 37.738359][ T3855] vlan2: entered allmulticast mode [ 37.746096][ T3707] loop1: p235 size 65536 extends beyond EOD, truncated [ 37.757331][ T3707] loop1: p237 size 65536 extends beyond EOD, truncated [ 37.772183][ T3855] bond0: entered allmulticast mode [ 37.780130][ T3707] loop1: p239 size 65536 extends beyond EOD, truncated [ 37.789593][ T3855] bond0: left allmulticast mode [ 37.800245][ T3707] loop1: p241 size 65536 extends beyond EOD, truncated [ 37.803317][ T3857] vlan2: entered allmulticast mode [ 37.814254][ T3707] loop1: p243 size 65536 extends beyond EOD, truncated [ 37.833673][ T3707] loop1: p245 size 65536 extends beyond EOD, truncated [ 37.843104][ T3707] loop1: p247 size 65536 extends beyond EOD, truncated [ 37.853524][ T3707] loop1: p249 size 65536 extends beyond EOD, truncated [ 37.878656][ T3707] loop1: p251 size 65536 extends beyond EOD, truncated [ 37.894092][ T3707] loop1: p253 size 65536 extends beyond EOD, truncated [ 37.902150][ T3707] loop1: p255 size 65536 extends beyond EOD, truncated [ 38.414393][ T3944] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 38.430710][ T3944] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 38.432114][ T3945] loop3: detected capacity change from 0 to 4096 [ 38.450138][ T3945] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 38.582021][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 38.819206][ T4014] __nla_validate_parse: 3 callbacks suppressed [ 38.819249][ T4014] netlink: 12 bytes leftover after parsing attributes in process `syz.4.175'. [ 38.994747][ T4035] netlink: 4 bytes leftover after parsing attributes in process `syz.1.180'. [ 39.331252][ T4006] Set syz1 is full, maxelem 65536 reached [ 39.481956][ T4075] loop3: detected capacity change from 0 to 2048 [ 39.497900][ T4075] EXT4-fs: Ignoring removed mblk_io_submit option [ 39.518226][ T4075] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.579542][ T4084] loop1: detected capacity change from 0 to 512 [ 39.627045][ T4084] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 39.684798][ T4084] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 39.699255][ T4084] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 39.712833][ T4084] ======================================================= [ 39.712833][ T4084] WARNING: The mand mount option has been deprecated and [ 39.712833][ T4084] and is ignored by this kernel. Remove the mand [ 39.712833][ T4084] option from the mount to silence this warning. [ 39.712833][ T4084] ======================================================= [ 39.774973][ T4075] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.186: bg 0: block 234: padding at end of block bitmap is not set [ 39.794596][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.797962][ T4097] loop4: detected capacity change from 0 to 2048 [ 39.803905][ T4075] EXT4-fs (loop3): Remounting filesystem read-only [ 39.877519][ T4097] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.900694][ T4075] syz.3.186 (4075) used greatest stack depth: 9784 bytes left [ 39.980229][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.133756][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.143262][ T4109] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 40.155003][ T4109] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 40.346329][ T4147] netlink: 24 bytes leftover after parsing attributes in process `syz.3.207'. [ 40.367390][ T4149] netlink: 'syz.4.209': attribute type 10 has an invalid length. [ 40.375231][ T4149] netlink: 40 bytes leftover after parsing attributes in process `syz.4.209'. [ 40.390695][ T4149] team0: Port device geneve1 added [ 40.420135][ T4149] syz.4.209 (4149) used greatest stack depth: 9600 bytes left [ 40.604577][ T4173] loop2: detected capacity change from 0 to 2048 [ 40.654854][ T4181] netlink: 'syz.3.224': attribute type 10 has an invalid length. [ 40.662732][ T4181] netlink: 40 bytes leftover after parsing attributes in process `syz.3.224'. [ 40.666719][ T4173] loop2: p1 < > p4 [ 40.678769][ T4173] loop2: p4 size 8388608 extends beyond EOD, truncated [ 40.710574][ T4181] team0: Port device geneve1 added [ 40.817566][ T4196] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=4196 comm=syz.1.231 [ 40.831630][ T4196] netlink: 'syz.1.231': attribute type 10 has an invalid length. [ 40.839465][ T4196] netlink: 'syz.1.231': attribute type 19 has an invalid length. [ 40.847297][ T4196] netlink: 156 bytes leftover after parsing attributes in process `syz.1.231'. [ 40.881153][ T4199] program syz.3.232 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 41.003340][ T4210] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 41.253500][ T4226] loop1: detected capacity change from 0 to 764 [ 41.352366][ T4224] ALSA: seq fatal error: cannot create timer (-19) [ 41.416917][ T4195] Set syz1 is full, maxelem 65536 reached [ 41.530340][ T4240] bond_slave_1: entered promiscuous mode [ 41.536656][ T4240] bond_slave_1: left promiscuous mode [ 41.648376][ T4254] netem: incorrect gi model size [ 41.653353][ T4254] netem: change failed [ 41.666391][ T4255] loop4: detected capacity change from 0 to 512 [ 41.723822][ T4255] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 41.780480][ T4255] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 41.871588][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.052890][ T4298] netlink: 8 bytes leftover after parsing attributes in process `syz.1.273'. [ 42.098295][ T4298] netlink: 24 bytes leftover after parsing attributes in process `syz.1.273'. [ 42.157804][ T4315] loop2: detected capacity change from 0 to 128 [ 42.193209][ T4317] netlink: 'syz.1.282': attribute type 3 has an invalid length. [ 42.210882][ T4315] syz.2.280: attempt to access beyond end of device [ 42.210882][ T4315] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 42.281283][ T4315] syz.2.280: attempt to access beyond end of device [ 42.281283][ T4315] loop2: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 42.295549][ T4315] syz.2.280: attempt to access beyond end of device [ 42.295549][ T4315] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 42.310755][ T4315] syz.2.280: attempt to access beyond end of device [ 42.310755][ T4315] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 42.319159][ T4330] netlink: 12 bytes leftover after parsing attributes in process `syz.4.284'. [ 42.324096][ T4315] syz.2.280: attempt to access beyond end of device [ 42.324096][ T4315] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 42.332767][ T4330] netlink: 'syz.4.284': attribute type 13 has an invalid length. [ 42.348564][ T4315] syz.2.280: attempt to access beyond end of device [ 42.348564][ T4315] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 42.368555][ T4315] syz.2.280: attempt to access beyond end of device [ 42.368555][ T4315] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 42.381827][ T4315] syz.2.280: attempt to access beyond end of device [ 42.381827][ T4315] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 42.415175][ T4330] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 42.423951][ T4330] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 42.432801][ T4330] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 42.441537][ T4330] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 42.448977][ T29] kauditd_printk_skb: 248 callbacks suppressed [ 42.448993][ T29] audit: type=1400 audit(1739785651.400:644): avc: denied { create } for pid=4333 comm="syz.0.290" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 42.457409][ T4315] syz.2.280: attempt to access beyond end of device [ 42.457409][ T4315] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 42.485810][ T29] audit: type=1400 audit(1739785651.430:645): avc: denied { write } for pid=4333 comm="syz.0.290" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 42.490162][ T4315] syz.2.280: attempt to access beyond end of device [ 42.490162][ T4315] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 42.524074][ T4330] vxlan0: entered promiscuous mode [ 42.559821][ T4334] infiniband syz!: set down [ 42.564464][ T4334] infiniband syz!: added team_slave_0 [ 42.581557][ T29] audit: type=1400 audit(1739785651.470:646): avc: denied { create } for pid=4331 comm="syz.1.289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 42.600927][ T29] audit: type=1400 audit(1739785651.470:647): avc: denied { write } for pid=4331 comm="syz.1.289" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 42.670180][ T4334] RDS/IB: syz!: added [ 42.674394][ T4334] smc: adding ib device syz! with port count 1 [ 42.680667][ T4334] smc: ib device syz! port 1 has pnetid [ 42.688402][ T29] audit: type=1400 audit(1739785651.600:648): avc: denied { ioctl } for pid=4336 comm="syz.1.291" path="socket:[6779]" dev="sockfs" ino=6779 ioctlcmd=0x8915 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 42.713144][ T29] audit: type=1400 audit(1739785651.600:649): avc: denied { sqpoll } for pid=4336 comm="syz.1.291" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 42.833769][ C0] hrtimer: interrupt took 27417 ns [ 43.041489][ T29] audit: type=1400 audit(1739785651.990:650): avc: denied { write } for pid=4345 comm="syz.3.294" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 43.082177][ T29] audit: type=1400 audit(1739785652.030:651): avc: denied { unmount } for pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 43.115281][ T29] audit: type=1400 audit(1739785652.060:652): avc: denied { read } for pid=4347 comm="syz.3.295" dev="nsfs" ino=4026532724 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 43.136372][ T29] audit: type=1400 audit(1739785652.060:653): avc: denied { open } for pid=4347 comm="syz.3.295" path="net:[4026532724]" dev="nsfs" ino=4026532724 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 43.191986][ T4358] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 1, id = 0 [ 43.192048][ T4350] IPVS: stopping master sync thread 4358 ... [ 43.453087][ T4397] loop3: detected capacity change from 0 to 128 [ 43.459927][ T4397] EXT4-fs: Ignoring removed nobh option [ 43.467939][ T4397] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 43.480444][ T4397] ext4 filesystem being mounted at /71/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 43.661399][ T3311] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 44.099820][ T4433] loop1: detected capacity change from 0 to 128 [ 44.116256][ T4433] EXT4-fs: Ignoring removed nobh option [ 44.137940][ T4433] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 44.157965][ T4433] ext4 filesystem being mounted at /59/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 44.284949][ T4443] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in; [ 44.284949][ T4443] program syz.0.331 not setting count and/or reply_len properly [ 44.391311][ T4449] syz.0.334 uses obsolete (PF_INET,SOCK_PACKET) [ 44.479656][ T4455] loop4: detected capacity change from 0 to 2048 [ 44.505613][ T4455] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 44.552173][ T3298] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 44.590780][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.626933][ T4465] netem: change failed [ 44.740171][ T4477] loop2: detected capacity change from 0 to 1024 [ 44.752314][ T4477] EXT4-fs: Ignoring removed oldalloc option [ 44.787165][ T4477] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 44.847882][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.950512][ T4496] loop1: detected capacity change from 0 to 512 [ 44.996427][ T4496] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.353: bg 0: block 35: padding at end of block bitmap is not set [ 45.020836][ T4496] EXT4-fs (loop1): Remounting filesystem read-only [ 45.027595][ T4496] EXT4-fs (loop1): 1 truncate cleaned up [ 45.034229][ T4496] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 45.048191][ T4496] SELinux: (dev loop1, type ext4) getxattr errno 5 [ 45.055098][ T4496] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.230453][ T4518] ipip0: entered promiscuous mode [ 45.625363][ T4541] tipc: Started in network mode [ 45.630326][ T4541] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 45.639462][ T4541] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb [ 45.647855][ T4541] tipc: Enabled bearer , priority 10 [ 45.835433][ T4551] netlink: 96 bytes leftover after parsing attributes in process `syz.3.376'. [ 45.859858][ T4543] loop2: detected capacity change from 0 to 8192 [ 46.083998][ T4567] netlink: 9 bytes leftover after parsing attributes in process `syz.2.382'. [ 46.095531][ T4567] gretap0: entered promiscuous mode [ 46.123180][ T4567] netlink: 5 bytes leftover after parsing attributes in process `syz.2.382'. [ 46.145878][ T4567] 0猉功D: renamed from gretap0 [ 46.157505][ T4567] 0猉功D: left promiscuous mode [ 46.162534][ T4567] 0猉功D: entered allmulticast mode [ 46.183517][ T4567] A link change request failed with some changes committed already. Interface 30猉功D may have been left with an inconsistent configuration, please check. [ 46.404416][ T4600] netlink: 9 bytes leftover after parsing attributes in process `syz.4.398'. [ 46.439143][ T4600] gretap0: entered promiscuous mode [ 46.467523][ T4607] netlink: 5 bytes leftover after parsing attributes in process `syz.4.398'. [ 46.476587][ T4607] 0猉功D: renamed from gretap0 [ 46.484859][ T4607] 0猉功D: left promiscuous mode [ 46.489901][ T4607] 0猉功D: entered allmulticast mode [ 46.513773][ T4607] A link change request failed with some changes committed already. Interface 30猉功D may have been left with an inconsistent configuration, please check. [ 46.581123][ T4615] loop4: detected capacity change from 0 to 128 [ 46.665960][ T3368] tipc: Node number set to 1 [ 46.722583][ T4627] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 47.104109][ T4655] Q6阕\b4悵: renamed from lo (while UP) [ 47.265139][ T4667] netlink: 16 bytes leftover after parsing attributes in process `syz.2.431'. [ 47.274361][ T4667] netlink: 16 bytes leftover after parsing attributes in process `syz.2.431'. [ 47.283279][ T4667] netlink: 16 bytes leftover after parsing attributes in process `syz.2.431'. [ 47.337670][ T4667] netlink: 16 bytes leftover after parsing attributes in process `syz.2.431'. [ 47.346610][ T4667] netlink: 16 bytes leftover after parsing attributes in process `syz.2.431'. [ 47.453714][ T4687] gretap0: entered promiscuous mode [ 47.464165][ T4687] 0猉功D: renamed from gretap0 [ 47.473071][ T4687] 0猉功D: left promiscuous mode [ 47.478120][ T4687] 0猉功D: entered allmulticast mode [ 47.486251][ T4687] A link change request failed with some changes committed already. Interface 30猉功D may have been left with an inconsistent configuration, please check. [ 47.578532][ T29] kauditd_printk_skb: 5806 callbacks suppressed [ 47.578545][ T29] audit: type=1326 audit(1739785912.533:6460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4700 comm="syz.1.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 47.627608][ T29] audit: type=1326 audit(1739785912.563:6461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4700 comm="syz.1.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 47.651007][ T29] audit: type=1326 audit(1739785912.563:6462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4700 comm="syz.1.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 47.674454][ T29] audit: type=1326 audit(1739785912.563:6463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4700 comm="syz.1.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 47.698034][ T29] audit: type=1326 audit(1739785912.563:6464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4700 comm="syz.1.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 47.721406][ T29] audit: type=1326 audit(1739785912.563:6465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4700 comm="syz.1.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 47.744847][ T29] audit: type=1326 audit(1739785912.563:6466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4700 comm="syz.1.444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 47.771153][ T29] audit: type=1400 audit(1739785912.583:6467): avc: denied { name_bind } for pid=4705 comm="syz.1.447" src=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1 [ 48.223969][ T4729] loop2: detected capacity change from 0 to 128 [ 48.308297][ T4729] bio_check_eod: 5905 callbacks suppressed [ 48.308314][ T4729] syz.2.455: attempt to access beyond end of device [ 48.308314][ T4729] loop2: rw=2049, sector=145, nr_sectors = 896 limit=128 [ 48.341175][ T4729] syz.2.455: attempt to access beyond end of device [ 48.341175][ T4729] loop2: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 48.356636][ T4729] syz.2.455: attempt to access beyond end of device [ 48.356636][ T4729] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 48.386738][ T4729] syz.2.455: attempt to access beyond end of device [ 48.386738][ T4729] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 48.401601][ T4729] syz.2.455: attempt to access beyond end of device [ 48.401601][ T4729] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 48.416442][ T4734] syz.2.455: attempt to access beyond end of device [ 48.416442][ T4734] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 48.430893][ T4729] syz.2.455: attempt to access beyond end of device [ 48.430893][ T4729] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 48.448489][ T4734] syz.2.455: attempt to access beyond end of device [ 48.448489][ T4734] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 48.468640][ T4729] syz.2.455: attempt to access beyond end of device [ 48.468640][ T4729] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 48.483591][ T4734] syz.2.455: attempt to access beyond end of device [ 48.483591][ T4734] loop2: rw=0, sector=145, nr_sectors = 8 limit=128 [ 48.618692][ T4742] loop3: detected capacity change from 0 to 1024 [ 48.644403][ T4742] EXT4-fs: Ignoring removed orlov option [ 48.664377][ T29] audit: type=1326 audit(1739785913.613:6468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4745 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 48.688067][ T29] audit: type=1326 audit(1739785913.613:6469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4745 comm="syz.1.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 49.538183][ T4742] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.609257][ C1] IPv4: Oversized IP packet from 127.0.0.1 [ 49.615401][ C1] IPv4: Oversized IP packet from 127.0.0.1 [ 49.621996][ C1] IPv4: Oversized IP packet from 127.0.0.1 [ 49.636987][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.647736][ C1] IPv4: Oversized IP packet from 127.0.0.1 [ 49.653925][ C1] IPv4: Oversized IP packet from 127.0.0.1 [ 49.671978][ C1] IPv4: Oversized IP packet from 127.0.0.1 [ 49.679583][ C1] IPv4: Oversized IP packet from 127.0.0.1 [ 50.248507][ T4815] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 50.303602][ T4818] loop0: detected capacity change from 0 to 512 [ 50.322880][ T4820] random: crng reseeded on system resumption [ 50.327433][ T4818] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 50.337177][ T4818] EXT4-fs (loop0): orphan cleanup on readonly fs [ 50.349463][ T4818] EXT4-fs warning (device loop0): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 50.364416][ T4818] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 50.373021][ T4818] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.491: bg 0: block 40: padding at end of block bitmap is not set [ 50.389603][ T4818] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 50.407492][ T4818] EXT4-fs (loop0): 1 truncate cleaned up [ 50.416320][ T4818] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 50.434938][ T4818] EXT4-fs error (device loop0): ext4_xattr_block_get:596: inode #16: comm syz.0.491: corrupted xattr block 31: invalid header [ 50.450048][ T4818] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=16 [ 50.470635][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.502129][ T4824] bridge0: entered promiscuous mode [ 50.508419][ T4824] bridge0: port 1(macsec1) entered blocking state [ 50.514980][ T4824] bridge0: port 1(macsec1) entered disabled state [ 50.521890][ T4824] macsec1: entered allmulticast mode [ 50.527374][ T4824] bridge0: entered allmulticast mode [ 50.533611][ T4824] macsec1: left allmulticast mode [ 50.538712][ T4824] bridge0: left allmulticast mode [ 50.544415][ T4824] bridge0: left promiscuous mode [ 50.552351][ T4828] bridge0: port 3(veth0_to_bond) entered blocking state [ 50.559548][ T4828] bridge0: port 3(veth0_to_bond) entered disabled state [ 50.566832][ T4828] veth0_to_bond: entered allmulticast mode [ 50.573192][ T4828] veth0_to_bond: entered promiscuous mode [ 50.579222][ T4828] bridge0: port 3(veth0_to_bond) entered blocking state [ 50.586241][ T4828] bridge0: port 3(veth0_to_bond) entered forwarding state [ 50.693443][ T4842] SELinux: policydb version 0 does not match my version range 15-34 [ 50.702234][ T4842] SELinux: failed to load policy [ 50.808049][ T4852] macvtap1: entered promiscuous mode [ 50.813647][ T4852] syz_tun: entered promiscuous mode [ 50.821467][ T4852] team0: Device macvtap1 failed to register rx_handler [ 50.836428][ T4852] syz_tun: left promiscuous mode [ 50.854148][ T4858] SELinux: security_context_str_to_sid ({) failed with errno=-22 [ 50.979532][ T4875] rose0: refused to change device tx_queue_len [ 51.234673][ T4914] __nla_validate_parse: 10 callbacks suppressed [ 51.234690][ T4914] netlink: 12 bytes leftover after parsing attributes in process `syz.1.533'. [ 51.286238][ T4917] pim6reg: entered allmulticast mode [ 51.336997][ T4917] pim6reg: left allmulticast mode [ 51.361608][ T4925] bridge0: entered promiscuous mode [ 51.370063][ T4925] bridge0: port 4(macsec1) entered blocking state [ 51.376615][ T4925] bridge0: port 4(macsec1) entered disabled state [ 51.385080][ T4925] macsec1: entered allmulticast mode [ 51.390492][ T4925] bridge0: entered allmulticast mode [ 51.406106][ T4925] macsec1: left allmulticast mode [ 51.411265][ T4925] bridge0: left allmulticast mode [ 51.418292][ T4925] bridge0: left promiscuous mode [ 51.541515][ T4933] loop0: detected capacity change from 0 to 512 [ 51.567142][ T4933] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.551: Failed to acquire dquot type 1 [ 51.596602][ T4933] EXT4-fs (loop0): 1 truncate cleaned up [ 51.602708][ T4933] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 51.617133][ T4946] netlink: 8 bytes leftover after parsing attributes in process `syz.3.546'. [ 51.671195][ T4933] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 51.743143][ T4956] loop4: detected capacity change from 0 to 512 [ 51.758914][ T4956] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 51.776080][ T4956] EXT4-fs (loop4): orphan cleanup on readonly fs [ 51.805379][ T3307] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.815981][ T3687] EXT4-fs error (device loop0): ext4_release_dquot:6950: comm kworker/u8:17: Failed to release dquot type 1 [ 51.826402][ T4956] EXT4-fs warning (device loop4): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 51.860858][ T4956] EXT4-fs (loop4): Cannot turn on quotas: error -117 [ 51.895292][ C1] net_ratelimit: 25 callbacks suppressed [ 51.895310][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 51.947075][ T4956] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.549: bg 0: block 40: padding at end of block bitmap is not set [ 51.975232][ T4956] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 52.017458][ T4956] EXT4-fs (loop4): 1 truncate cleaned up [ 52.023521][ T4956] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 52.093865][ T4956] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #16: comm syz.4.549: corrupted xattr block 31: invalid header [ 52.106500][ T4980] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 52.131740][ T4980] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 52.136128][ T4956] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=16 [ 52.191506][ T3308] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.347546][ T4993] netlink: 232 bytes leftover after parsing attributes in process `syz.0.565'. [ 52.375028][ T4993] macvtap1: entered promiscuous mode [ 52.382337][ T4993] syz_tun: entered promiscuous mode [ 52.388766][ T4993] team0: Device macvtap1 failed to register rx_handler [ 52.398104][ T4993] syz_tun: left promiscuous mode [ 52.462191][ T5000] bridge0: port 3(veth0_to_bond) entered blocking state [ 52.469344][ T5000] bridge0: port 3(veth0_to_bond) entered disabled state [ 52.477635][ T5000] veth0_to_bond: entered allmulticast mode [ 52.484664][ T5000] veth0_to_bond: entered promiscuous mode [ 52.490976][ T5000] bridge0: port 3(veth0_to_bond) entered blocking state [ 52.498104][ T5000] bridge0: port 3(veth0_to_bond) entered forwarding state [ 52.516225][ T5003] netlink: 2028 bytes leftover after parsing attributes in process `syz.2.577'. [ 52.525335][ T5003] netlink: 24 bytes leftover after parsing attributes in process `syz.2.577'. [ 52.569177][ T5011] loop4: detected capacity change from 0 to 128 [ 52.594268][ T29] kauditd_printk_skb: 91 callbacks suppressed [ 52.594281][ T29] audit: type=1326 audit(1739785917.543:6556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5012 comm="syz.3.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 52.638632][ T29] audit: type=1326 audit(1739785917.583:6557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5012 comm="syz.3.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 52.662090][ T29] audit: type=1326 audit(1739785917.583:6558): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5012 comm="syz.3.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 52.685809][ T29] audit: type=1326 audit(1739785917.583:6559): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5012 comm="syz.3.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 52.709499][ T29] audit: type=1326 audit(1739785917.583:6560): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5012 comm="syz.3.573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 52.785435][ T5026] random: crng reseeded on system resumption [ 52.865676][ T29] audit: type=1326 audit(1739785917.813:6561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5025 comm="syz.1.579" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x0 [ 52.898034][ T29] audit: type=1400 audit(1739785917.843:6562): avc: denied { ioctl } for pid=5029 comm="syz.3.580" path="socket:[8008]" dev="sockfs" ino=8008 ioctlcmd=0x89f1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 53.008403][ T5039] loop3: detected capacity change from 0 to 128 [ 53.480416][ T29] audit: type=1326 audit(1739785918.433:6563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5095 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 53.503955][ T29] audit: type=1326 audit(1739785918.433:6564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5095 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 53.572053][ T29] audit: type=1326 audit(1739785918.483:6565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5095 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 53.706247][ T5120] loop1: detected capacity change from 0 to 128 [ 53.729523][ T5120] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 53.742750][ T5120] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 53.755799][ T5126] vlan2: entered allmulticast mode [ 53.780646][ T3743] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 53.839447][ T5144] capability: warning: `syz.1.606' uses 32-bit capabilities (legacy support in use) [ 54.340509][ T5236] loop4: detected capacity change from 0 to 256 [ 54.471258][ T5248] loop2: detected capacity change from 0 to 1024 [ 54.489393][ T5248] EXT4-fs: Ignoring removed orlov option [ 54.495149][ T5248] EXT4-fs: Ignoring removed nomblk_io_submit option [ 54.530845][ T5248] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 54.932096][ T3309] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 55.025511][ T5313] ref_ctr_offset mismatch. inode: 0x223 offset: 0x7 ref_ctr_offset(old): 0x2 ref_ctr_offset(new): 0x0 [ 55.928758][ T5449] loop2: detected capacity change from 0 to 256 [ 55.947434][ T5449] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 56.260261][ T5488] wg2: entered promiscuous mode [ 56.265170][ T5488] wg2: entered allmulticast mode [ 56.582703][ T5523] loop2: detected capacity change from 0 to 256 [ 56.695376][ T5534] netlink: 4 bytes leftover after parsing attributes in process `syz.1.698'. [ 56.707081][ C1] IPv4: Oversized IP packet from 172.20.20.24 [ 56.903878][ T5571] netlink: 24 bytes leftover after parsing attributes in process `syz.2.716'. [ 56.994681][ T5575] loop3: detected capacity change from 0 to 512 [ 57.026066][ T5575] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.719: bg 0: block 35: padding at end of block bitmap is not set [ 57.060939][ T5575] EXT4-fs (loop3): Remounting filesystem read-only [ 57.067878][ T5575] EXT4-fs (loop3): 1 truncate cleaned up [ 57.074031][ T5575] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.086525][ T5575] SELinux: (dev loop3, type ext4) getxattr errno 5 [ 57.093611][ T5575] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.308290][ T5598] vlan2: entered allmulticast mode [ 57.459372][ T5565] Set syz1 is full, maxelem 65536 reached [ 57.519398][ T5610] 9pnet_fd: Insufficient options for proto=fd [ 57.532850][ T5612] netem: change failed [ 57.755577][ T5631] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 57.762901][ T5631] IPv6: NLM_F_CREATE should be set when creating new route [ 57.770149][ T5631] IPv6: NLM_F_CREATE should be set when creating new route [ 57.872734][ T29] kauditd_printk_skb: 191 callbacks suppressed [ 57.872748][ T29] audit: type=1400 audit(1739785922.823:6757): avc: denied { read } for pid=5632 comm="syz.3.743" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 57.953766][ T29] audit: type=1400 audit(1739785922.893:6758): avc: denied { remount } for pid=5640 comm="syz.0.748" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 58.301776][ T29] audit: type=1326 audit(1739785923.253:6759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5658 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 58.364745][ T29] audit: type=1326 audit(1739785923.293:6760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5658 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 58.388028][ T29] audit: type=1326 audit(1739785923.293:6761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5658 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 58.411795][ T29] audit: type=1326 audit(1739785923.293:6762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5658 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 58.435292][ T29] audit: type=1326 audit(1739785923.293:6763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5658 comm="syz.0.754" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 58.578371][ T5635] Set syz1 is full, maxelem 65536 reached [ 58.593046][ T5667] loop3: detected capacity change from 0 to 128 [ 58.610086][ T29] audit: type=1400 audit(1739785923.563:6764): avc: denied { remount } for pid=5665 comm="syz.3.758" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 58.736760][ T29] audit: type=1326 audit(1739785923.683:6765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5675 comm="syz.2.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 58.760228][ T29] audit: type=1326 audit(1739785923.683:6766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5675 comm="syz.2.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 58.935394][ T5701] netlink: 96 bytes leftover after parsing attributes in process `syz.3.772'. [ 59.145177][ T5715] netlink: 'syz.0.779': attribute type 12 has an invalid length. [ 59.159094][ T5717] netlink: 12 bytes leftover after parsing attributes in process `syz.4.780'. [ 59.204863][ T5717] bridge0: port 3(batadv1) entered blocking state [ 59.211434][ T5717] bridge0: port 3(batadv1) entered disabled state [ 59.220073][ T5717] batadv1: entered allmulticast mode [ 59.228837][ T5717] batadv1: entered promiscuous mode [ 59.291149][ T5725] netlink: 'syz.3.785': attribute type 3 has an invalid length. [ 59.291631][ T5727] netlink: 4 bytes leftover after parsing attributes in process `syz.4.784'. [ 59.384595][ T5738] netlink: 'syz.0.789': attribute type 1 has an invalid length. [ 59.392372][ T5738] netlink: 16 bytes leftover after parsing attributes in process `syz.0.789'. [ 59.438646][ T5744] netlink: 4 bytes leftover after parsing attributes in process `syz.3.791'. [ 59.479827][ T5744] netlink: 4 bytes leftover after parsing attributes in process `syz.3.791'. [ 59.710305][ T3687] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled [ 59.719654][ T3687] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled [ 59.832037][ T5783] netlink: 8 bytes leftover after parsing attributes in process `syz.0.808'. [ 59.841335][ T5783] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 59.869350][ T5786] netlink: 24 bytes leftover after parsing attributes in process `syz.0.812'. [ 60.156160][ T5770] Set syz1 is full, maxelem 65536 reached [ 60.730601][ T5841] vlan2: entered allmulticast mode [ 60.800550][ T5851] IPv6: Can't replace route, no match found [ 60.843513][ T5860] loop3: detected capacity change from 0 to 512 [ 60.868825][ T5860] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 60.881913][ T5864] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5864 comm=syz.0.843 [ 60.888380][ T5860] ext4 filesystem being mounted at /198/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 61.030355][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 61.732201][ T5971] loop1: detected capacity change from 0 to 2048 [ 61.751329][ T5974] __nla_validate_parse: 5 callbacks suppressed [ 61.751347][ T5974] netlink: 24 bytes leftover after parsing attributes in process `syz.0.877'. [ 61.775177][ T5971] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 61.891433][ T5998] veth0_vlan: entered allmulticast mode [ 61.929803][ T5998] : renamed from vlan1 [ 61.997812][ T6013] team_slave_0: entered promiscuous mode [ 62.003530][ T6013] team_slave_1: entered promiscuous mode [ 62.018884][ T6013] macsec1: entered promiscuous mode [ 62.024154][ T6013] team0: entered promiscuous mode [ 62.029530][ T6013] macsec1: entered allmulticast mode [ 62.034833][ T6013] team0: entered allmulticast mode [ 62.039987][ T6013] team_slave_0: entered allmulticast mode [ 62.045728][ T6013] team_slave_1: entered allmulticast mode [ 62.183000][ T5971] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 62.229602][ T5971] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 22 with error 28 [ 62.242044][ T5971] EXT4-fs (loop1): This should not happen!! Data will be lost [ 62.242044][ T5971] [ 62.251788][ T5971] EXT4-fs (loop1): Total free blocks count 0 [ 62.257877][ T5971] EXT4-fs (loop1): Free/Dirty block details [ 62.263811][ T5971] EXT4-fs (loop1): free_blocks=2415919104 [ 62.269554][ T5971] EXT4-fs (loop1): dirty_blocks=32 [ 62.274784][ T5971] EXT4-fs (loop1): Block reservation details [ 62.280954][ T5971] EXT4-fs (loop1): i_reserved_data_blocks=2 [ 62.294612][ T6018] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 62.485029][ T6078] tipc: Started in network mode [ 62.490012][ T6078] tipc: Node identity ac14140f, cluster identity 4711 [ 62.501076][ T6078] tipc: New replicast peer: 255.0.0.255 [ 62.506762][ T6078] tipc: Enabled bearer , priority 10 [ 62.520377][ T6079] loop1: detected capacity change from 0 to 128 [ 62.574518][ T6088] netlink: 'syz.1.895': attribute type 3 has an invalid length. [ 62.599149][ T6093] netlink: 55631 bytes leftover after parsing attributes in process `syz.0.897'. [ 62.635227][ T6099] netlink: 24 bytes leftover after parsing attributes in process `syz.1.899'. [ 62.688019][ T6099] netlink: 4 bytes leftover after parsing attributes in process `syz.1.899'. [ 62.787322][ T6120] veth0_vlan: entered allmulticast mode [ 62.837281][ T6120] : renamed from vlan1 [ 62.877050][ T29] kauditd_printk_skb: 61 callbacks suppressed [ 62.877064][ T29] audit: type=1400 audit(1739785927.833:6828): avc: denied { ioctl } for pid=6130 comm="syz.1.906" path="socket:[11062]" dev="sockfs" ino=11062 ioctlcmd=0x89ed scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 63.041069][ T29] audit: type=1326 audit(1739785927.993:6829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6145 comm="syz.1.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 63.104804][ T29] audit: type=1326 audit(1739785927.993:6830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6145 comm="syz.1.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 63.128241][ T29] audit: type=1326 audit(1739785927.993:6831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6145 comm="syz.1.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 63.151578][ T29] audit: type=1326 audit(1739785927.993:6832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6145 comm="syz.1.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 63.175082][ T29] audit: type=1326 audit(1739785927.993:6833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6145 comm="syz.1.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 63.198432][ T29] audit: type=1326 audit(1739785927.993:6834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6145 comm="syz.1.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 63.221924][ T29] audit: type=1326 audit(1739785928.023:6835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6145 comm="syz.1.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 63.245283][ T29] audit: type=1326 audit(1739785928.053:6836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6145 comm="syz.1.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 63.268694][ T29] audit: type=1326 audit(1739785928.053:6837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6145 comm="syz.1.912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 63.301679][ T6161] netlink: 4 bytes leftover after parsing attributes in process `syz.4.918'. [ 63.349388][ T6169] loop1: detected capacity change from 0 to 512 [ 63.375872][ T6169] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 63.394096][ T6169] ext4 filesystem being mounted at /201/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 63.512491][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.635789][ T805] tipc: Node number set to 2886997007 [ 63.757744][ T6226] loop1: detected capacity change from 0 to 512 [ 63.768931][ T6226] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.947: bg 0: block 35: padding at end of block bitmap is not set [ 63.787748][ T6226] EXT4-fs (loop1): Remounting filesystem read-only [ 63.794701][ T6226] EXT4-fs (loop1): 1 truncate cleaned up [ 63.800834][ T6226] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 63.818045][ T6226] SELinux: (dev loop1, type ext4) getxattr errno 5 [ 63.828139][ T6226] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 63.840395][ T6236] capability: warning: `syz.0.951' uses deprecated v2 capabilities in a way that may be insecure [ 64.048642][ T6254] bond_slave_1: entered promiscuous mode [ 64.056509][ T6254] netlink: 4 bytes leftover after parsing attributes in process `syz.2.959'. [ 64.150651][ T6260] netlink: 'syz.1.963': attribute type 1 has an invalid length. [ 64.158429][ T6260] netlink: 16 bytes leftover after parsing attributes in process `syz.1.963'. [ 64.169139][ T6254] bond0: (slave bond_slave_1): Releasing backup interface [ 64.196210][ T6254] bond_slave_1 (unregistering): left promiscuous mode [ 64.398110][ T6242] Set syz1 is full, maxelem 65536 reached [ 64.451365][ T6271] bond1: entered promiscuous mode [ 64.456495][ T6271] bond1: entered allmulticast mode [ 64.465322][ T6271] 8021q: adding VLAN 0 to HW filter on device bond1 [ 64.483467][ T6271] bond1 (unregistering): Released all slaves [ 65.077740][ T6319] netlink: 8 bytes leftover after parsing attributes in process `syz.2.988'. [ 65.089608][ T6319] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 65.241346][ T6328] loop1: detected capacity change from 0 to 512 [ 65.261079][ T6330] pim6reg: entered allmulticast mode [ 65.274893][ T6330] pim6reg: left allmulticast mode [ 65.291603][ T6328] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 65.304461][ T6328] ext4 filesystem being mounted at /222/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 65.333796][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 65.456250][ T6342] sch_tbf: burst 4398 is lower than device lo mtu (65550) ! [ 65.676205][ T6361] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1004'. [ 65.695044][ T6356] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.1004'. [ 65.918021][ T6383] netlink: 'syz.1.1010': attribute type 13 has an invalid length. [ 66.008980][ T6383] 0猉功D: refused to change device tx_queue_len [ 66.048241][ T6383] A link change request failed with some changes committed already. Interface 30猉功D may have been left with an inconsistent configuration, please check. [ 66.065214][ T6392] veth1_macvtap: left promiscuous mode [ 66.120408][ T6400] loop3: detected capacity change from 0 to 128 [ 67.460140][ T6504] __nla_validate_parse: 3 callbacks suppressed [ 67.460156][ T6504] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1068'. [ 67.481216][ T6501] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1068'. [ 67.521002][ T6512] IPv4: Oversized IP packet from 127.202.26.0 [ 67.689320][ T6543] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 67.932946][ T29] kauditd_printk_skb: 152 callbacks suppressed [ 67.932962][ T29] audit: type=1400 audit(1739785932.883:6990): avc: denied { setopt } for pid=6577 comm="syz.2.1105" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 68.227720][ T6606] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1117'. [ 68.318169][ T6613] loop3: detected capacity change from 0 to 4096 [ 68.328864][ T6613] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 68.367193][ T29] audit: type=1326 audit(1739785933.313:6991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6618 comm="syz.2.1122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 68.390825][ T29] audit: type=1326 audit(1739785933.313:6992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6618 comm="syz.2.1122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 68.414413][ T29] audit: type=1326 audit(1739785933.313:6993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6618 comm="syz.2.1122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 68.437930][ T29] audit: type=1326 audit(1739785933.313:6994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6618 comm="syz.2.1122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 68.461410][ T29] audit: type=1326 audit(1739785933.313:6995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6618 comm="syz.2.1122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 68.484870][ T29] audit: type=1326 audit(1739785933.313:6996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6618 comm="syz.2.1122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 68.508375][ T29] audit: type=1326 audit(1739785933.313:6997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6618 comm="syz.2.1122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 68.531930][ T29] audit: type=1326 audit(1739785933.323:6998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6618 comm="syz.2.1122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 68.555336][ T29] audit: type=1326 audit(1739785933.323:6999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6618 comm="syz.2.1122" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 68.580311][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 69.104472][ T6660] batadv_slave_1: entered promiscuous mode [ 69.168848][ T6659] batadv_slave_1: left promiscuous mode [ 69.206940][ T3728] nci: nci_rsp_packet: unknown rsp opcode 0x303 [ 69.222058][ T6672] rdma_op ffff8881397f7d80 conn xmit_rdma 0000000000000000 [ 69.273176][ T6676] netlink: 9 bytes leftover after parsing attributes in process `syz.0.1144'. [ 69.282697][ T6676] gretap0: entered promiscuous mode [ 69.293803][ T6676] netlink: 5 bytes leftover after parsing attributes in process `syz.0.1144'. [ 69.303137][ T6676] 0猉功D: renamed from gretap0 [ 69.311200][ T6676] 0猉功D: left promiscuous mode [ 69.316108][ T6676] 0猉功D: entered allmulticast mode [ 69.322764][ T6676] A link change request failed with some changes committed already. Interface 30猉功D may have been left with an inconsistent configuration, please check. [ 69.891481][ T6710] wireguard0: entered promiscuous mode [ 69.897063][ T6710] wireguard0: entered allmulticast mode [ 70.378808][ T6744] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1174'. [ 70.699147][ T6795] netlink: 'syz.3.1194': attribute type 4 has an invalid length. [ 70.707064][ T6795] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1194'. [ 70.750754][ T6803] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1196'. [ 70.789264][ T6795] : renamed from bond0 (while UP) [ 70.803228][ T6809] x_tables: unsorted underflow at hook 2 [ 70.871263][ T6816] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1199'. [ 71.478575][ T6932] rdma_op ffff888121746d80 conn xmit_rdma 0000000000000000 [ 71.750076][ T6983] ip6gre1: entered allmulticast mode [ 71.940002][ T7002] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1234'. [ 72.026555][ T7013] wireguard0: entered promiscuous mode [ 72.032086][ T7013] wireguard0: entered allmulticast mode [ 72.304556][ T7059] vlan3: entered allmulticast mode [ 72.315201][ T7062] syz_tun: entered allmulticast mode [ 72.322421][ T7061] syz_tun: left allmulticast mode [ 72.516825][ T7086] __nla_validate_parse: 4 callbacks suppressed [ 72.516843][ T7086] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1253'. [ 72.566709][ T7086] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 72.575474][ T7086] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 72.584272][ T7086] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 72.592997][ T7086] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 72.602855][ T7086] vxlan0: entered promiscuous mode [ 72.894927][ T7152] gtp0: entered promiscuous mode [ 73.162747][ T7197] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1268'. [ 73.374303][ T7225] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1280'. [ 73.374303][ T29] kauditd_printk_skb: 89 callbacks suppressed [ 73.374371][ T29] audit: type=1400 audit(1739785938.323:7089): avc: denied { nlmsg_read } for pid=7224 comm="syz.3.1280" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 73.422409][ T29] audit: type=1326 audit(1739785938.373:7090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7226 comm="syz.1.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 73.445926][ T29] audit: type=1326 audit(1739785938.373:7091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7226 comm="syz.1.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 73.469467][ T29] audit: type=1326 audit(1739785938.373:7092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7226 comm="syz.1.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 73.493122][ T29] audit: type=1326 audit(1739785938.373:7093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7226 comm="syz.1.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 73.516709][ T29] audit: type=1326 audit(1739785938.373:7094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7226 comm="syz.1.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 73.543860][ T29] audit: type=1326 audit(1739785938.403:7095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7226 comm="syz.1.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 73.567440][ T29] audit: type=1326 audit(1739785938.403:7096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7226 comm="syz.1.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 73.591363][ T29] audit: type=1326 audit(1739785938.403:7097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7226 comm="syz.1.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 73.614859][ T29] audit: type=1326 audit(1739785938.403:7098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7226 comm="syz.1.1281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 74.093024][ T7299] netlink: 'syz.4.1312': attribute type 4 has an invalid length. [ 74.697446][ T7354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1338'. [ 75.183709][ T7412] wg2: entered promiscuous mode [ 75.188795][ T7412] wg2: entered allmulticast mode [ 75.604074][ T7447] bond1: entered promiscuous mode [ 75.612842][ T7447] 8021q: adding VLAN 0 to HW filter on device bond1 [ 76.033651][ T7476] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1395'. [ 76.870138][ T7534] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1429'. [ 76.880504][ T7534] 0猉功: renamed from caif0 [ 76.887336][ T7534] 0猉功: entered allmulticast mode [ 76.892594][ T7534] A link change request failed with some changes committed already. Interface 60猉功 may have been left with an inconsistent configuration, please check. [ 77.022718][ T7554] rose0: refused to change device tx_queue_len [ 77.036985][ T7555] xt_CT: No such helper "pptp" [ 77.356499][ T7581] netlink: 'syz.4.1441': attribute type 3 has an invalid length. [ 77.451996][ T7591] netlink: 'syz.4.1446': attribute type 1 has an invalid length. [ 77.459894][ T7591] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1446'. [ 77.574539][ T7607] xt_connbytes: Forcing CT accounting to be enabled [ 77.583894][ T7607] Cannot find set identified by id 0 to match [ 77.685402][ T7620] ip6erspan0: entered promiscuous mode [ 77.725834][ T7624] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 77.737876][ T7624] bond0: (slave lo): Error: Device can not be enslaved while up [ 77.953672][ T7646] netlink: 1196 bytes leftover after parsing attributes in process `syz.1.1468'. [ 78.000342][ T7651] pim6reg1: entered promiscuous mode [ 78.005702][ T7651] pim6reg1: entered allmulticast mode [ 78.163088][ T7668] SELinux: security_context_str_to_sid (u) failed with errno=-22 [ 78.402007][ T7692] pim6reg1: entered promiscuous mode [ 78.407405][ T7692] pim6reg1: entered allmulticast mode [ 78.449521][ T7694] bridge0: port 4(gretap0) entered blocking state [ 78.456089][ T7694] bridge0: port 4(gretap0) entered disabled state [ 78.463029][ T7694] gretap0: entered allmulticast mode [ 78.470784][ T7694] gretap0: entered promiscuous mode [ 78.492795][ T7694] bridge0: port 4(gretap0) entered blocking state [ 78.499402][ T7694] bridge0: port 4(gretap0) entered forwarding state [ 78.560072][ T29] kauditd_printk_skb: 215 callbacks suppressed [ 78.560088][ T29] audit: type=1400 audit(1739785943.513:7314): avc: denied { create } for pid=7705 comm="syz.0.1500" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1 [ 78.674863][ T7724] netlink: 1196 bytes leftover after parsing attributes in process `syz.0.1508'. [ 79.129567][ T29] audit: type=1326 audit(1739785944.083:7315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7753 comm="syz.3.1522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 79.202546][ T29] audit: type=1326 audit(1739785944.113:7316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7753 comm="syz.3.1522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 79.226130][ T29] audit: type=1326 audit(1739785944.113:7317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7753 comm="syz.3.1522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 79.249644][ T29] audit: type=1326 audit(1739785944.113:7318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7753 comm="syz.3.1522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 79.273121][ T29] audit: type=1326 audit(1739785944.113:7319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7753 comm="syz.3.1522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 79.296578][ T29] audit: type=1326 audit(1739785944.113:7320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7753 comm="syz.3.1522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 79.320156][ T29] audit: type=1326 audit(1739785944.113:7321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7753 comm="syz.3.1522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 79.343788][ T29] audit: type=1326 audit(1739785944.113:7322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7753 comm="syz.3.1522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 79.367357][ T29] audit: type=1326 audit(1739785944.113:7323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7753 comm="syz.3.1522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 79.431395][ T7722] Set syz1 is full, maxelem 65536 reached [ 79.502222][ T7764] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 79.522608][ T7764] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0' [ 79.866054][ T7799] Falling back ldisc for ttyS3. [ 79.894370][ T7809] 9pnet_fd: Insufficient options for proto=fd [ 80.073572][ T7839] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1562'. [ 80.082628][ T7839] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1562'. [ 80.198015][ T7853] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1568'. [ 80.210753][ T7853] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1568'. [ 80.237267][ T7857] netlink: 'syz.4.1570': attribute type 10 has an invalid length. [ 80.505067][ T7889] unsupported nla_type 60633 [ 81.142167][ T7958] netlink: 2036 bytes leftover after parsing attributes in process `syz.3.1617'. [ 81.151387][ T7958] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1617'. [ 81.197965][ T7948] Set syz1 is full, maxelem 65536 reached [ 81.598734][ T8003] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1640'. [ 81.607777][ T8003] netlink: 'syz.4.1640': attribute type 7 has an invalid length. [ 81.615557][ T8003] netlink: 'syz.4.1640': attribute type 8 has an invalid length. [ 81.623339][ T8003] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1640'. [ 81.634957][ T8003] netlink: 'syz.4.1640': attribute type 7 has an invalid length. [ 81.642775][ T8003] netlink: 'syz.4.1640': attribute type 8 has an invalid length. [ 81.699079][ T8015] netlink: 'syz.1.1645': attribute type 10 has an invalid length. [ 82.117746][ T8096] Process accounting resumed [ 82.691381][ T8153] Invalid ELF header magic: != ELF [ 82.989360][ T8177] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 83.006689][ T8179] __nla_validate_parse: 7 callbacks suppressed [ 83.006705][ T8179] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1719'. [ 83.077221][ T8183] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1721'. [ 83.101643][ T8185] netlink: 100 bytes leftover after parsing attributes in process `syz.2.1722'. [ 83.126093][ T8189] af_packet: tpacket_rcv: packet too big, clamped from 42 to 4294967286. macoff=82 [ 83.328342][ T8209] netlink: 116 bytes leftover after parsing attributes in process `syz.0.1733'. [ 83.337741][ T8208] netlink: 1196 bytes leftover after parsing attributes in process `syz.4.1732'. [ 83.351330][ T8209] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 83.359321][ T8209] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 83.678072][ T8242] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1748'. [ 83.796833][ T8157] syz.3.1709 (8157) used greatest stack depth: 7088 bytes left [ 83.842728][ T8258] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1755'. [ 84.142615][ T8274] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1762'. [ 84.162726][ T8271] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.1762'. [ 84.192885][ T29] kauditd_printk_skb: 169 callbacks suppressed [ 84.192963][ T29] audit: type=1326 audit(1739785949.143:7493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8275 comm="syz.2.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 84.222716][ T29] audit: type=1326 audit(1739785949.143:7494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8275 comm="syz.2.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 84.317722][ T8283] vlan4: entered allmulticast mode [ 84.323262][ T8283] : entered allmulticast mode [ 84.328080][ T8283] bond_slave_0: entered allmulticast mode [ 84.333814][ T8283] bond_slave_1: entered allmulticast mode [ 84.345800][ T29] audit: type=1326 audit(1739785949.153:7495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8277 comm="syz.3.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 84.369408][ T29] audit: type=1326 audit(1739785949.153:7496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8277 comm="syz.3.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 84.392892][ T29] audit: type=1326 audit(1739785949.183:7497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8277 comm="syz.3.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=227 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 84.416441][ T29] audit: type=1326 audit(1739785949.183:7498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8277 comm="syz.3.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 84.439938][ T29] audit: type=1326 audit(1739785949.183:7499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8277 comm="syz.3.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 84.463366][ T29] audit: type=1326 audit(1739785949.213:7500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8275 comm="syz.2.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 84.486827][ T29] audit: type=1326 audit(1739785949.213:7501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8275 comm="syz.2.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 84.510975][ T29] audit: type=1326 audit(1739785949.213:7502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8275 comm="syz.2.1764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 84.534731][ T8283] : left allmulticast mode [ 84.539431][ T8283] bond_slave_0: left allmulticast mode [ 84.544922][ T8283] bond_slave_1: left allmulticast mode [ 84.586484][ T8295] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1773'. [ 85.098655][ T8363] netlink: 'syz.3.1803': attribute type 39 has an invalid length. [ 85.232311][ T8374] xt_CT: No such helper "pptp" [ 86.257525][ T8444] netlink: 'syz.0.1834': attribute type 7 has an invalid length. [ 86.408272][ T8452] xt_CT: No such helper "pptp" [ 86.539452][ T8458] pim6reg: entered allmulticast mode [ 86.587638][ T8458] pim6reg: left allmulticast mode [ 86.831742][ T8489] bond0: entered promiscuous mode [ 86.836912][ T8489] bond0: entered allmulticast mode [ 86.842432][ T8489] 8021q: adding VLAN 0 to HW filter on device bond0 [ 86.854140][ T8489] bond0 (unregistering): Released all slaves [ 86.945947][ T8499] syzkaller0: entered promiscuous mode [ 86.951525][ T8499] syzkaller0: entered allmulticast mode [ 86.964598][ T8503] vlan0: entered allmulticast mode [ 87.438169][ T8563] block device autoloading is deprecated and will be removed. [ 88.408428][ T8654] __nla_validate_parse: 6 callbacks suppressed [ 88.408444][ T8654] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1921'. [ 88.428069][ T8655] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1919'. [ 88.437106][ T8655] netlink: 'syz.3.1919': attribute type 12 has an invalid length. [ 88.478028][ T8655] vxlan1: entered promiscuous mode [ 88.502306][ T8659] netlink: 'syz.0.1923': attribute type 39 has an invalid length. [ 88.544114][ T8665] block device autoloading is deprecated and will be removed. [ 89.493616][ T8729] IPv6: Can't replace route, no match found [ 89.625515][ T8747] hub 9-0:1.0: USB hub found [ 89.630472][ T8747] hub 9-0:1.0: 8 ports detected [ 89.631978][ T8750] IPVS: sync thread started: state = MASTER, mcast_ifn = wg1, syncid = 262145, id = 0 [ 89.645116][ T8749] IPVS: stopping master sync thread 8750 ... [ 89.666038][ T29] kauditd_printk_skb: 180 callbacks suppressed [ 89.666051][ T29] audit: type=1400 audit(1739785954.623:7683): avc: denied { read } for pid=8751 comm="syz.3.1965" laddr=127.0.0.1 lport=36364 faddr=127.0.0.1 fport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1 [ 89.711371][ T29] audit: type=1326 audit(1739785954.653:7684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8755 comm="syz.1.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 89.734880][ T29] audit: type=1326 audit(1739785954.653:7685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8755 comm="syz.1.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 89.758508][ T29] audit: type=1326 audit(1739785954.653:7686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8755 comm="syz.1.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 89.781905][ T29] audit: type=1326 audit(1739785954.653:7687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8755 comm="syz.1.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 89.805316][ T29] audit: type=1326 audit(1739785954.653:7688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8755 comm="syz.1.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 89.828870][ T29] audit: type=1326 audit(1739785954.653:7689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8755 comm="syz.1.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 89.852448][ T29] audit: type=1326 audit(1739785954.653:7690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8755 comm="syz.1.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 89.875991][ T29] audit: type=1326 audit(1739785954.653:7691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8755 comm="syz.1.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 89.899723][ T29] audit: type=1326 audit(1739785954.653:7692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8755 comm="syz.1.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f211540cde9 code=0x7ffc0000 [ 89.999003][ T8773] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1972'. [ 90.091489][ T8776] netlink: 'syz.2.1973': attribute type 1 has an invalid length. [ 90.453389][ T8805] xt_CT: No such helper "pptp" [ 90.814044][ T8844] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2003'. [ 90.942295][ T8859] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2010'. [ 90.994263][ T8871] vlan0: entered allmulticast mode [ 91.003807][ T8871] bond0: entered allmulticast mode [ 91.009118][ T8871] bond_slave_0: entered allmulticast mode [ 91.014977][ T8871] bond_slave_1: entered allmulticast mode [ 91.032589][ T8877] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2017'. [ 91.042273][ T8871] bond0: left allmulticast mode [ 91.047201][ T8871] bond_slave_0: left allmulticast mode [ 91.052832][ T8871] bond_slave_1: left allmulticast mode [ 91.379462][ T8902] Invalid ELF header magic: != ELF [ 91.633703][ T8945] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2048'. [ 91.743764][ T8956] IPv4: Oversized IP packet from 127.202.26.0 [ 91.828845][ T8960] SELinux: security_context_str_to_sid ({) failed with errno=-22 [ 91.867739][ T8964] loop3: detected capacity change from 0 to 2048 [ 91.885340][ T8964] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 91.957974][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.018973][ T8985] loop3: detected capacity change from 0 to 512 [ 92.027774][ T8985] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 92.056168][ T8985] EXT4-fs (loop3): 1 truncate cleaned up [ 92.074110][ T8985] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 92.125018][ T8985] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.429814][ T9041] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2089'. [ 92.464482][ T9041] 8021q: adding VLAN 0 to HW filter on device bond1 [ 93.784978][ T9187] block device autoloading is deprecated and will be removed. [ 94.040008][ T9213] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2167'. [ 94.432310][ T9261] netem: incorrect gi model size [ 94.664863][ T9286] sd 0:0:1:0: device reset [ 94.768150][ T29] kauditd_printk_skb: 215 callbacks suppressed [ 94.768169][ T29] audit: type=1326 audit(1739785959.723:7908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9291 comm="syz.0.2203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 94.820866][ T29] audit: type=1326 audit(1739785959.723:7909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9291 comm="syz.0.2203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 94.844466][ T29] audit: type=1326 audit(1739785959.753:7910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9291 comm="syz.0.2203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 94.867982][ T29] audit: type=1326 audit(1739785959.753:7911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9291 comm="syz.0.2203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 94.891638][ T29] audit: type=1326 audit(1739785959.753:7912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9291 comm="syz.0.2203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 94.915174][ T29] audit: type=1326 audit(1739785959.753:7913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9291 comm="syz.0.2203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 94.938512][ T29] audit: type=1326 audit(1739785959.753:7914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9291 comm="syz.0.2203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 94.962095][ T29] audit: type=1326 audit(1739785959.753:7915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9291 comm="syz.0.2203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 94.985578][ T29] audit: type=1326 audit(1739785959.753:7916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9291 comm="syz.0.2203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 95.009110][ T29] audit: type=1326 audit(1739785959.753:7917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9291 comm="syz.0.2203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ff82ccde9 code=0x7ffc0000 [ 95.038170][ T9294] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2204'. [ 95.130603][ T9300] vlan1: entered allmulticast mode [ 95.135805][ T9300] bridge_slave_0: entered allmulticast mode [ 95.143303][ T9300] bridge_slave_0: left allmulticast mode [ 95.274032][ T9314] wg2: entered promiscuous mode [ 95.279069][ T9314] wg2: entered allmulticast mode [ 95.292288][ T9316] ip6gre2: entered allmulticast mode [ 95.333035][ T9319] loop1: detected capacity change from 0 to 4096 [ 95.387076][ T9319] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 95.745972][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 95.805681][ T9353] bond1: entered promiscuous mode [ 95.810807][ T9353] bond1: entered allmulticast mode [ 95.854523][ T9353] 8021q: adding VLAN 0 to HW filter on device bond1 [ 95.868496][ T9353] bond1 (unregistering): Released all slaves [ 95.959038][ T9364] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2235'. [ 96.089222][ T9373] loop1: detected capacity change from 0 to 1024 [ 96.104455][ T9373] EXT4-fs: Ignoring removed orlov option [ 96.111665][ T9373] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 96.130193][ T9373] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 96.174334][ T3298] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.495035][ T9407] netlink: 56 bytes leftover after parsing attributes in process `syz.3.2255'. [ 96.603180][ T9413] netlink: 'syz.3.2258': attribute type 39 has an invalid length. [ 96.726601][ T9425] loop3: detected capacity change from 0 to 128 [ 96.757946][ T9425] FAT-fs (loop3): Directory bread(block 32) failed [ 96.764508][ T9425] FAT-fs (loop3): Directory bread(block 33) failed [ 96.785970][ T9425] FAT-fs (loop3): Directory bread(block 34) failed [ 96.809201][ T9425] FAT-fs (loop3): Directory bread(block 35) failed [ 96.822752][ T9425] FAT-fs (loop3): Directory bread(block 36) failed [ 96.829999][ T9425] FAT-fs (loop3): Directory bread(block 37) failed [ 96.853270][ T9425] FAT-fs (loop3): Directory bread(block 38) failed [ 96.861458][ T9425] FAT-fs (loop3): Directory bread(block 39) failed [ 96.868994][ T9425] FAT-fs (loop3): Directory bread(block 40) failed [ 96.878075][ T9425] FAT-fs (loop3): Directory bread(block 41) failed [ 97.204920][ T9462] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2280'. [ 97.226538][ T9462] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2280'. [ 97.307359][ T9469] loop1: detected capacity change from 0 to 128 [ 97.401937][ T9469] bio_check_eod: 22540 callbacks suppressed [ 97.401970][ T9469] syz.1.2284: attempt to access beyond end of device [ 97.401970][ T9469] loop1: rw=0, sector=121, nr_sectors = 920 limit=128 [ 97.425200][ T9402] syz.0.2253 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 97.436002][ T9402] CPU: 1 UID: 0 PID: 9402 Comm: syz.0.2253 Not tainted 6.14.0-rc3-syzkaller #0 [ 97.436025][ T9402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 97.436039][ T9402] Call Trace: [ 97.436047][ T9402] [ 97.436068][ T9402] dump_stack_lvl+0xf2/0x150 [ 97.436102][ T9402] dump_stack+0x15/0x1a [ 97.436167][ T9402] dump_header+0x83/0x2d0 [ 97.436225][ T9402] oom_kill_process+0x341/0x4c0 [ 97.436257][ T9402] out_of_memory+0x9af/0xbe0 [ 97.436293][ T9402] ? css_next_descendant_pre+0x11c/0x140 [ 97.436321][ T9402] mem_cgroup_out_of_memory+0x13e/0x190 [ 97.436392][ T9402] try_charge_memcg+0x508/0x7f0 [ 97.436422][ T9402] charge_memcg+0x50/0xc0 [ 97.436509][ T9402] __mem_cgroup_charge+0x29/0xb0 [ 97.436542][ T9402] filemap_add_folio+0x53/0x1b0 [ 97.436575][ T9402] __filemap_get_folio+0x32f/0x630 [ 97.436594][ T9402] filemap_fault+0x46d/0xb30 [ 97.436671][ T9402] __do_fault+0xb6/0x200 [ 97.436695][ T9402] handle_mm_fault+0xe98/0x2ac0 [ 97.436750][ T9402] exc_page_fault+0x3b9/0x650 [ 97.436773][ T9402] asm_exc_page_fault+0x26/0x30 [ 97.436801][ T9402] RIP: 0033:0x7f6ff8293bb5 [ 97.436814][ T9402] Code: 0f b6 44 07 e0 29 c8 e9 07 fe ff ff 66 0f 1f 84 00 00 00 00 00 83 fa 01 76 7b 89 f8 09 f0 25 ff 0f 00 00 3d e0 0f 00 00 7f 2b fe 6f 16 c5 ed 74 17 c5 fd d7 c2 ff c0 c4 e2 68 f5 d0 0f 85 c2 [ 97.436860][ T9402] RSP: 002b:00007ffc24133e68 EFLAGS: 00010287 [ 97.436874][ T9402] RAX: 0000000000000c7c RBX: 00007f6ff9015720 RCX: 00000000000153ac [ 97.436885][ T9402] RDX: 000000000000000c RSI: 0000001b31f0ac54 RDI: 0000001b31f1d02c [ 97.436895][ T9402] RBP: 0000001b31f0ac54 R08: 00000000005ffde8 R09: 0000000000010ce4 [ 97.436905][ T9402] R10: 0000001b31920218 R11: 000000000000000c R12: 00000000000153a0 [ 97.436916][ T9402] R13: 0000000000002fd4 R14: 0000001b31920220 R15: 0000001b31920218 [ 97.436947][ T9402] [ 97.436954][ T9402] memory: usage 307200kB, limit 307200kB, failcnt 229 [ 97.624796][ T9402] memory+swap: usage 307404kB, limit 9007199254740988kB, failcnt 0 [ 97.632817][ T9402] kmem: usage 307196kB, limit 9007199254740988kB, failcnt 0 [ 97.640120][ T9402] Memory cgroup stats for /syz0: [ 97.640747][ T9402] cache 0 [ 97.648641][ T9402] rss 0 [ 97.651586][ T9402] shmem 0 [ 97.654540][ T9402] mapped_file 0 [ 97.658087][ T9402] dirty 0 [ 97.661060][ T9402] writeback 0 [ 97.664445][ T9402] workingset_refault_anon 49 [ 97.669131][ T9402] workingset_refault_file 120 [ 97.673820][ T9402] swap 208896 [ 97.677154][ T9402] swapcached 0 [ 97.680618][ T9402] pgpgin 114695 [ 97.684064][ T9402] pgpgout 114694 [ 97.687734][ T9402] pgfault 133955 [ 97.691306][ T9402] pgmajfault 41 [ 97.694764][ T9402] inactive_anon 0 [ 97.698409][ T9402] active_anon 0 [ 97.701917][ T9402] inactive_file 0 [ 97.705569][ T9402] active_file 4096 [ 97.709352][ T9402] unevictable 0 [ 97.712894][ T9402] hierarchical_memory_limit 314572800 [ 97.718345][ T9402] hierarchical_memsw_limit 9223372036854771712 [ 97.724496][ T9402] total_cache 0 [ 97.728042][ T9402] total_rss 0 [ 97.731341][ T9402] total_shmem 0 [ 97.734781][ T9402] total_mapped_file 0 [ 97.738856][ T9402] total_dirty 0 [ 97.742329][ T9402] total_writeback 0 [ 97.746262][ T9402] total_workingset_refault_anon 49 [ 97.751439][ T9402] total_workingset_refault_file 120 [ 97.756766][ T9402] total_swap 208896 [ 97.760567][ T9402] total_swapcached 0 [ 97.764484][ T9402] total_pgpgin 114695 [ 97.768561][ T9402] total_pgpgout 114694 [ 97.772699][ T9402] total_pgfault 133955 [ 97.776831][ T9402] total_pgmajfault 41 [ 97.780808][ T9402] total_inactive_anon 0 [ 97.784969][ T9402] total_active_anon 0 [ 97.788966][ T9402] total_inactive_file 0 [ 97.793130][ T9402] total_active_file 4096 [ 97.797410][ T9402] total_unevictable 0 [ 97.801395][ T9402] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz0,task_memcg=/syz0,task=syz.0.2253,pid=9402,uid=0 [ 97.816191][ T9402] Memory cgroup out of memory: Killed process 9402 (syz.0.2253) total-vm:95628kB, anon-rss:920kB, file-rss:22056kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:0 [ 98.061685][ T9499] hsr_slave_0: left promiscuous mode [ 98.078467][ T9499] hsr_slave_1: left promiscuous mode [ 98.199240][ T9510] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 98.211738][ T9513] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 98.222023][ T3368] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 98.233641][ T3368] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 98.245656][ T9513] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 98.484941][ T9546] syz!: rxe_newlink: already configured on team_slave_0 [ 98.522015][ T9548] loop1: detected capacity change from 0 to 164 [ 98.531721][ T9548] syz.1.2319: attempt to access beyond end of device [ 98.531721][ T9548] loop1: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 98.547554][ T9548] syz.1.2319: attempt to access beyond end of device [ 98.547554][ T9548] loop1: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 99.255235][ T9577] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2331'. [ 99.753877][ T9588] netlink: 92 bytes leftover after parsing attributes in process `syz.4.2334'. [ 99.845386][ T9548] syz.1.2319 (9548) used greatest stack depth: 6304 bytes left [ 99.985898][ T29] kauditd_printk_skb: 164 callbacks suppressed [ 99.985915][ T29] audit: type=1326 audit(1739785964.933:8082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9617 comm="syz.4.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 100.029475][ T29] audit: type=1326 audit(1739785964.973:8083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9617 comm="syz.4.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 100.053028][ T29] audit: type=1326 audit(1739785964.973:8084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9617 comm="syz.4.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 100.076638][ T29] audit: type=1326 audit(1739785964.973:8085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9617 comm="syz.4.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 100.100316][ T29] audit: type=1326 audit(1739785964.973:8086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9617 comm="syz.4.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 100.123810][ T29] audit: type=1326 audit(1739785964.973:8087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9617 comm="syz.4.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 100.147489][ T29] audit: type=1326 audit(1739785964.973:8088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9617 comm="syz.4.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 100.171382][ T29] audit: type=1326 audit(1739785964.973:8089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9617 comm="syz.4.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 100.194954][ T29] audit: type=1326 audit(1739785964.973:8090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9617 comm="syz.4.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 100.218390][ T29] audit: type=1326 audit(1739785964.973:8091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9617 comm="syz.4.2349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f848c36cde9 code=0x7ffc0000 [ 100.254058][ T9631] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2354'. [ 100.344916][ T9636] bond_slave_1: entered promiscuous mode [ 100.351242][ T9636] bond_slave_1: left promiscuous mode [ 100.512843][ T9647] vlan2: entered allmulticast mode [ 100.523354][ T9647] bond0: entered allmulticast mode [ 100.528576][ T9647] bond_slave_0: entered allmulticast mode [ 100.536926][ T9647] bond0: left allmulticast mode [ 100.541896][ T9647] bond_slave_0: left allmulticast mode [ 100.741965][ T9675] ip6gre1: entered allmulticast mode [ 100.857736][ T9686] netlink: 96 bytes leftover after parsing attributes in process `syz.1.2379'. [ 100.964844][ T9694] vlan1: entered allmulticast mode [ 100.966482][ T9695] 9pnet_fd: Insufficient options for proto=fd [ 100.974502][ T9694] bond0: entered allmulticast mode [ 100.981516][ T9694] bond_slave_0: entered allmulticast mode [ 100.987391][ T9694] bond_slave_1: entered allmulticast mode [ 101.017713][ T9694] bond0: left allmulticast mode [ 101.022683][ T9694] bond_slave_0: left allmulticast mode [ 101.028256][ T9694] bond_slave_1: left allmulticast mode [ 101.075278][ T9701] loop3: detected capacity change from 0 to 256 [ 101.088492][ T9701] FAT-fs (loop3): Directory bread(block 64) failed [ 101.095186][ T9701] FAT-fs (loop3): Directory bread(block 65) failed [ 101.096836][ T9703] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2386'. [ 101.102385][ T9701] FAT-fs (loop3): Directory bread(block 66) failed [ 101.123913][ T9701] FAT-fs (loop3): Directory bread(block 67) failed [ 101.130977][ T9701] FAT-fs (loop3): Directory bread(block 68) failed [ 101.152905][ T9701] FAT-fs (loop3): Directory bread(block 69) failed [ 101.159707][ T9701] FAT-fs (loop3): Directory bread(block 70) failed [ 101.166594][ T9701] FAT-fs (loop3): Directory bread(block 71) failed [ 101.173299][ T9701] FAT-fs (loop3): Directory bread(block 72) failed [ 101.186350][ T9701] FAT-fs (loop3): Directory bread(block 73) failed [ 101.221902][ T9714] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 101.233760][ T9701] syz.3.2385: attempt to access beyond end of device [ 101.233760][ T9701] loop3: rw=0, sector=1800, nr_sectors = 20 limit=256 [ 101.353911][ T9725] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2394'. [ 101.523484][ T9737] vlan1: entered allmulticast mode [ 101.530260][ T9737] bond0: entered allmulticast mode [ 101.536699][ T9737] bond0: left allmulticast mode [ 101.657951][ T9749] netlink: 96 bytes leftover after parsing attributes in process `syz.0.2408'. [ 102.141014][ T9779] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2421'. [ 102.465242][ T9797] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2429'. [ 102.679871][ T9812] loop3: detected capacity change from 0 to 512 [ 102.703694][ T9812] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2436: bg 0: block 35: padding at end of block bitmap is not set [ 102.739589][ T9812] EXT4-fs (loop3): Remounting filesystem read-only [ 102.779586][ T9812] EXT4-fs (loop3): 1 truncate cleaned up [ 102.804423][ T9812] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.847588][ T9812] SELinux: (dev loop3, type ext4) getxattr errno 5 [ 102.869288][ T9812] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.008180][ T9838] bond_slave_1: entered promiscuous mode [ 103.014499][ T9838] bond_slave_1: left promiscuous mode [ 103.068307][ T9845] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2450'. [ 103.188214][ T9851] loop3: detected capacity change from 0 to 128 [ 103.270422][ T9851] syz.3.2453: attempt to access beyond end of device [ 103.270422][ T9851] loop3: rw=0, sector=121, nr_sectors = 920 limit=128 [ 103.818739][ T9903] ip6gre1: entered allmulticast mode [ 103.929622][ T9915] loop3: detected capacity change from 0 to 512 [ 103.939362][ T9915] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.2481: casefold flag without casefold feature [ 103.954824][ T9915] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2481: couldn't read orphan inode 15 (err -117) [ 103.968714][ T9915] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.039137][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.106466][ T9936] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 104.127472][ T9934] 9pnet: Could not find request transport: f [ 104.378312][ T9974] __nla_validate_parse: 2 callbacks suppressed [ 104.378362][ T9974] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2507'. [ 104.415584][ T9981] loop5: detected capacity change from 0 to 7 [ 104.422267][ T9981] Buffer I/O error on dev loop5, logical block 0, async page read [ 104.432415][ T9981] Buffer I/O error on dev loop5, logical block 0, async page read [ 104.440316][ T9981] loop5: unable to read partition table [ 104.446594][ T9981] loop_reread_partitions: partition scan of loop5 (x熝鵂诂Ыd皮脆杻荨夥 [ 104.446594][ T9981] ) failed (rc=-5) [ 104.787148][T10018] loop3: detected capacity change from 0 to 1024 [ 104.799714][T10018] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 104.839383][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.086205][T10065] vlan1: entered allmulticast mode [ 105.091756][T10064] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2543'. [ 105.139717][T10064] syzkaller1: entered promiscuous mode [ 105.145260][T10064] syzkaller1: entered allmulticast mode [ 105.450584][ T29] kauditd_printk_skb: 79 callbacks suppressed [ 105.450600][ T29] audit: type=1326 audit(1739785970.403:8171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10097 comm="syz.3.2559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 105.487260][T10098] loop3: detected capacity change from 0 to 512 [ 105.501598][ T29] audit: type=1326 audit(1739785970.433:8172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10097 comm="syz.3.2559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 105.525206][ T29] audit: type=1326 audit(1739785970.433:8173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10097 comm="syz.3.2559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 105.548765][ T29] audit: type=1326 audit(1739785970.433:8174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10097 comm="syz.3.2559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 105.572332][ T29] audit: type=1326 audit(1739785970.433:8175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10097 comm="syz.3.2559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 105.595859][ T29] audit: type=1326 audit(1739785970.433:8176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10097 comm="syz.3.2559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 105.619365][ T29] audit: type=1326 audit(1739785970.433:8177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10097 comm="syz.3.2559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 105.642877][ T29] audit: type=1326 audit(1739785970.433:8178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10097 comm="syz.3.2559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 105.666311][ T29] audit: type=1326 audit(1739785970.433:8179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10097 comm="syz.3.2559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 105.668965][T10098] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.2559: casefold flag without casefold feature [ 105.690502][ T29] audit: type=1326 audit(1739785970.433:8180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10097 comm="syz.3.2559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefdd26cde9 code=0x7ffc0000 [ 105.775382][T10098] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2559: couldn't read orphan inode 15 (err -117) [ 105.791292][T10098] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 105.815477][T10098] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.964728][T10130] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 106.007906][T10133] tipc: Started in network mode [ 106.012908][T10133] tipc: Node identity ac1414aa, cluster identity 4711 [ 106.040252][T10133] tipc: Enabled bearer , priority 10 [ 106.110637][T10141] loop3: detected capacity change from 0 to 1024 [ 106.125434][T10141] EXT4-fs: Ignoring removed orlov option [ 106.147658][T10141] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.521211][T10176] block device autoloading is deprecated and will be removed. [ 106.934650][T10199] vlan2: entered allmulticast mode [ 106.963889][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.064447][T10208] loop3: detected capacity change from 0 to 512 [ 107.092040][T10208] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2607: bg 0: block 248: padding at end of block bitmap is not set [ 107.115464][T10208] EXT4-fs error (device loop3): ext4_acquire_dquot:6927: comm syz.3.2607: Failed to acquire dquot type 1 [ 107.130306][T10208] EXT4-fs (loop3): 1 truncate cleaned up [ 107.137418][T10208] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.150077][T10208] ext4 filesystem being mounted at /512/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 107.160810][ T2963] tipc: Node number set to 2886997162 [ 107.191081][ T3311] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.203640][ T3713] EXT4-fs error (device loop3): ext4_release_dquot:6950: comm kworker/u8:35: Failed to release dquot type 1 [ 107.248729][ T805] IPVS: starting estimator thread 0... [ 107.345825][T10234] IPVS: using max 2304 ests per chain, 115200 per kthread [ 107.389997][T10252] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2625'. [ 107.563922][T10273] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2633'. [ 107.742227][T10292] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2642'. [ 107.815564][T10298] IPVS: lc: UDP 224.0.0.2:0 - no destination available [ 107.822800][ T3368] IPVS: starting estimator thread 0... [ 107.915822][T10302] IPVS: using max 2352 ests per chain, 117600 per kthread [ 108.045681][T10315] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2650'. [ 108.066007][T10315] IPVS: Error joining to the multicast group [ 108.139577][T10324] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2654'. [ 108.191317][T10331] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2656'. [ 108.581559][T10376] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2676'. [ 108.692365][T10384] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2690'. [ 108.780839][T10387] netlink: 'syz.4.2682': attribute type 11 has an invalid length. [ 108.927087][T10318] dccp_close: ABORT with 32 bytes unread [ 108.962925][T10412] SET target dimension over the limit! [ 109.128375][T10439] loop3: detected capacity change from 0 to 128 [ 109.422195][T10475] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 3895 [ 109.502511][T10489] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 3895 [ 109.622701][T10508] __nla_validate_parse: 3 callbacks suppressed [ 109.622715][T10508] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2735'. [ 109.655699][T10508] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2735'. [ 109.694995][T10513] ref_ctr_offset mismatch. inode: 0xa8e offset: 0x7 ref_ctr_offset(old): 0x2 ref_ctr_offset(new): 0x0 [ 109.843532][T10523] netlink: 'syz.0.2742': attribute type 10 has an invalid length. [ 109.865571][T10523] team0: Device hsr_slave_0 failed to register rx_handler [ 109.989020][T10533] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2746'. [ 110.090260][T10541] netlink: 'syz.1.2748': attribute type 4 has an invalid length. [ 110.098094][T10541] netlink: 1772 bytes leftover after parsing attributes in process `syz.1.2748'. [ 110.107301][T10541] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2748'. [ 110.127997][T10542] ref_ctr_offset mismatch. inode: 0xbf7 offset: 0x7 ref_ctr_offset(old): 0x2 ref_ctr_offset(new): 0x0 [ 110.306538][T10552] netlink: 14 bytes leftover after parsing attributes in process `syz.3.2755'. [ 110.499360][T10561] batadv_slave_1: entered promiscuous mode [ 110.510763][T10561] vlan0: entered allmulticast mode [ 110.582300][T10560] batadv_slave_1: left promiscuous mode [ 110.588440][T10571] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2762'. [ 110.659887][T10581] bridge0: port 4(syz_tun) entered blocking state [ 110.666582][T10581] bridge0: port 4(syz_tun) entered disabled state [ 110.673260][T10581] syz_tun: entered allmulticast mode [ 110.679367][T10581] syz_tun: entered promiscuous mode [ 110.684844][T10581] bridge0: port 4(syz_tun) entered blocking state [ 110.691459][T10581] bridge0: port 4(syz_tun) entered forwarding state [ 110.733832][T10586] lo: entered allmulticast mode [ 110.742032][T10586] lo: left allmulticast mode [ 110.778914][ T29] kauditd_printk_skb: 225 callbacks suppressed [ 110.779003][ T29] audit: type=1326 audit(1739785975.733:8403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10591 comm="syz.2.2772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 110.810772][ T29] audit: type=1326 audit(1739785975.733:8404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10591 comm="syz.2.2772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 110.834498][ T29] audit: type=1326 audit(1739785975.733:8405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10591 comm="syz.2.2772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 110.858054][ T29] audit: type=1326 audit(1739785975.733:8406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10591 comm="syz.2.2772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 110.863151][T10596] batadv_slave_1: entered promiscuous mode [ 110.881692][ T29] audit: type=1326 audit(1739785975.733:8407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10591 comm="syz.2.2772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 110.881725][ T29] audit: type=1326 audit(1739785975.733:8408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10591 comm="syz.2.2772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 110.891820][T10594] batadv0: entered promiscuous mode [ 110.911094][ T29] audit: type=1326 audit(1739785975.733:8409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10591 comm="syz.2.2772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 110.911129][ T29] audit: type=1326 audit(1739785975.733:8410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10591 comm="syz.2.2772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 110.945490][T10594] batadv_slave_0: entered promiscuous mode [ 110.963281][ T29] audit: type=1326 audit(1739785975.733:8411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10591 comm="syz.2.2772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 111.016203][ T29] audit: type=1326 audit(1739785975.763:8412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10591 comm="syz.2.2772" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd904bcde9 code=0x7ffc0000 [ 111.041119][T10598] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2775'. [ 111.053925][T10596] vlan0: entered allmulticast mode [ 111.103348][T10595] batadv_slave_1: left promiscuous mode [ 111.236945][ T3713] ================================================================== [ 111.245079][ T3713] BUG: KCSAN: data-race in __xa_set_mark / xas_find_marked [ 111.252306][ T3713] [ 111.254628][ T3713] read-write to 0xffff888110def468 of 8 bytes by task 10617 on cpu 1: [ 111.262779][ T3713] __xa_set_mark+0xdb/0x1b0 [ 111.267302][ T3713] __folio_mark_dirty+0x3b5/0x4e0 [ 111.272344][ T3713] mark_buffer_dirty+0x134/0x230 [ 111.277292][ T3713] block_page_mkwrite+0x29c/0x3f0 [ 111.282334][ T3713] ext4_page_mkwrite+0x73d/0xb70 [ 111.287272][ T3713] do_wp_page+0xca1/0x2340 [ 111.291706][ T3713] handle_mm_fault+0xc63/0x2ac0 [ 111.296575][ T3713] exc_page_fault+0x3b9/0x650 [ 111.301264][ T3713] asm_exc_page_fault+0x26/0x30 [ 111.306126][ T3713] [ 111.308454][ T3713] read to 0xffff888110def468 of 8 bytes by task 3713 on cpu 0: [ 111.315994][ T3713] xas_find_marked+0x217/0x650 [ 111.320777][ T3713] find_get_entry+0x54/0x390 [ 111.325370][ T3713] filemap_get_folios_tag+0x136/0x210 [ 111.330745][ T3713] mpage_prepare_extent_to_map+0x329/0xb80 [ 111.336553][ T3713] ext4_do_writepages+0x6ea/0x2130 [ 111.341678][ T3713] ext4_writepages+0x159/0x2e0 [ 111.346445][ T3713] do_writepages+0x1d8/0x480 [ 111.351051][ T3713] __writeback_single_inode+0x89/0x850 [ 111.356514][ T3713] writeback_sb_inodes+0x461/0xa30 [ 111.361631][ T3713] __writeback_inodes_wb+0x9a/0x1a0 [ 111.366833][ T3713] wb_writeback+0x274/0x640 [ 111.371338][ T3713] wb_workfn+0x4ea/0x940 [ 111.375591][ T3713] process_scheduled_works+0x4db/0xa20 [ 111.381059][ T3713] worker_thread+0x51d/0x6f0 [ 111.385652][ T3713] kthread+0x4ae/0x520 [ 111.389729][ T3713] ret_from_fork+0x4b/0x60 [ 111.394155][ T3713] ret_from_fork_asm+0x1a/0x30 [ 111.398930][ T3713] [ 111.401252][ T3713] value changed: 0x003ffc0000000000 -> 0x033ffc0000000000 [ 111.408359][ T3713] [ 111.410680][ T3713] Reported by Kernel Concurrency Sanitizer on: [ 111.416823][ T3713] CPU: 0 UID: 0 PID: 3713 Comm: kworker/u8:35 Not tainted 6.14.0-rc3-syzkaller #0 [ 111.426021][ T3713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 111.436086][ T3713] Workqueue: writeback wb_workfn (flush-8:0) [ 111.442084][ T3713] ================================================================== [ 111.939921][T10601] syz.1.2778 invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=1000 [ 111.950930][T10601] CPU: 0 UID: 0 PID: 10601 Comm: syz.1.2778 Not tainted 6.14.0-rc3-syzkaller #0 [ 111.950954][T10601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 111.950997][T10601] Call Trace: [ 111.951004][T10601] [ 111.951010][T10601] dump_stack_lvl+0xf2/0x150 [ 111.951041][T10601] dump_stack+0x15/0x1a [ 111.951066][T10601] dump_header+0x83/0x2d0 [ 111.951196][T10601] oom_kill_process+0x341/0x4c0 [ 111.951240][T10601] out_of_memory+0x9af/0xbe0 [ 111.951292][T10601] ? css_next_descendant_pre+0x11c/0x140 [ 111.951322][T10601] mem_cgroup_out_of_memory+0x13e/0x190 [ 111.951412][T10601] try_charge_memcg+0x508/0x7f0 [ 111.951436][T10601] charge_memcg+0x50/0xc0 [ 111.951459][T10601] mem_cgroup_swapin_charge_folio+0xd0/0x150 [ 111.951494][T10601] __read_swap_cache_async+0x236/0x480 [ 111.951552][T10601] swap_cluster_readahead+0x279/0x3f0 [ 111.951600][T10601] swapin_readahead+0xe4/0x6f0 [ 111.951628][T10601] ? __rcu_read_unlock+0x34/0x70 [ 111.951658][T10601] ? swap_cache_get_folio+0x77/0x210 [ 111.951747][T10601] do_swap_page+0x31b/0x2550 [ 111.951801][T10601] ? __rcu_read_lock+0x36/0x50 [ 111.951827][T10601] ? __pfx_default_wake_function+0x10/0x10 [ 111.951867][T10601] handle_mm_fault+0x8e4/0x2ac0 [ 111.951977][T10601] exc_page_fault+0x3b9/0x650 [ 111.952004][T10601] asm_exc_page_fault+0x26/0x30 [ 111.952038][T10601] RIP: 0033:0x7f21152e3bce [ 111.952055][T10601] Code: 0c 85 c0 74 e7 48 89 df 48 81 c3 e0 00 00 00 e8 18 c4 ff ff 48 39 eb 75 df 0f 1f 00 8b 05 e6 3f 34 00 85 c0 0f 8e a3 fd ff ff 7d a6 fe ff 49 39 c4 73 a0 48 8d 1d c1 23 34 00 83 3d c6 3f 34 [ 111.952077][T10601] RSP: 002b:00007ffc3978b790 EFLAGS: 00010202 [ 111.952096][T10601] RAX: 0000000000000001 RBX: 00007f2115627ba0 RCX: 0000000000000000 [ 111.952110][T10601] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555738d2808 [ 111.952136][T10601] RBP: 00007f2115627ba0 R08: 0000000000000000 R09: 7fffffffffffffff [ 111.952149][T10601] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000001b523 [ 111.952162][T10601] R13: 00007ffc3978b880 R14: ffffffffffffffff R15: 00007ffc3978b8a0 [ 111.952180][T10601] [ 111.952187][T10601] memory: usage 307200kB, limit 307200kB, failcnt 254 [ 112.162069][T10601] memory+swap: usage 307396kB, limit 9007199254740988kB, failcnt 0 [ 112.170069][T10601] kmem: usage 307188kB, limit 9007199254740988kB, failcnt 0 [ 112.177381][T10601] Memory cgroup stats for /syz1: [ 112.177719][T10601] cache 0 [ 112.185598][T10601] rss 0 [ 112.188431][T10601] shmem 0 [ 112.191384][T10601] mapped_file 0 [ 112.194859][T10601] dirty 0 [ 112.197834][T10601] writeback 0 [ 112.201127][T10601] workingset_refault_anon 1582 [ 112.205945][T10601] workingset_refault_file 160 [ 112.210705][T10601] swap 200704 [ 112.213985][T10601] swapcached 12288 [ 112.217785][T10601] pgpgin 132883 [ 112.221244][T10601] pgpgout 132880 [ 112.224871][T10601] pgfault 154141 [ 112.228478][T10601] pgmajfault 249 [ 112.232026][T10601] inactive_anon 12288 [ 112.236024][T10601] active_anon 0 [ 112.239549][T10601] inactive_file 0 [ 112.243180][T10601] active_file 0 [ 112.246677][T10601] unevictable 0 [ 112.250144][T10601] hierarchical_memory_limit 314572800 [ 112.255498][T10601] hierarchical_memsw_limit 9223372036854771712 [ 112.261666][T10601] total_cache 0 [ 112.265120][T10601] total_rss 0 [ 112.268416][T10601] total_shmem 0 [ 112.271897][T10601] total_mapped_file 0 [ 112.275930][T10601] total_dirty 0 [ 112.279406][T10601] total_writeback 0 [ 112.283271][T10601] total_workingset_refault_anon 1582 [ 112.288631][T10601] total_workingset_refault_file 160 [ 112.293848][T10601] total_swap 200704 [ 112.297734][T10601] total_swapcached 12288 [ 112.302028][T10601] total_pgpgin 132883 [ 112.306114][T10601] total_pgpgout 132880 [ 112.310177][T10601] total_pgfault 154141 [ 112.314280][T10601] total_pgmajfault 249 [ 112.318387][T10601] total_inactive_anon 12288 [ 112.322937][T10601] total_active_anon 0 [ 112.326955][T10601] total_inactive_file 0 [ 112.331110][T10601] total_active_file 0 [ 112.335112][T10601] total_unevictable 0 [ 112.339175][T10601] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz1,task_memcg=/syz1,task=syz.1.2778,pid=10601,uid=0 [ 112.353881][T10601] Memory cgroup out of memory: Killed process 10601 (syz.1.2778) total-vm:95628kB, anon-rss:1044kB, file-rss:22056kB, shmem-rss:0kB, UID:0 pgtables:128kB oom_score_adj:1000