last executing test programs: 2m41.589216364s ago: executing program 0 (id=101): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000440)='kfree\x00', r1}, 0x18) r2 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$USBDEVFS_SUBMITURB(r3, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x80, 0x13, 0x0, 0x0, 0x7995}, 0x10022, 0x0, 0x0, 0x48000000, 0x0, 0x0, 0x0}) 2m41.479528333s ago: executing program 0 (id=110): syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='setgroups\x00') r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x40082, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140)) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x804000, &(0x7f0000000180)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0]) 2m40.960069969s ago: executing program 0 (id=106): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, 0x0, 0x0) r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000280)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f0000000040)=@framed={{0x18, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00'}, 0x94) 2m40.764014837s ago: executing program 0 (id=111): getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000000), &(0x7f0000000080)=0xc) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="060000000400000099000000"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYRES32=r0, @ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, r1}, 0x18) preadv(0xffffffffffffffff, 0x0, 0x0, 0x12e, 0x0) mq_open(0x0, 0x42, 0x0, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a310000000014000780050015000c00000008001240000000000500050002000000050004000000000010000300686173683a6970"], 0x5c}}, 0x0) sendmsg$IPSET_CMD_DESTROY(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x1c, 0x3, 0x6, 0x201, 0x0, 0x0, {0xa, 0x0, 0x1}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4004810}, 0x840) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x45, &(0x7f0000000080), 0x67, 0x52e, &(0x7f0000000480)="$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") r3 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) r4 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000100), 0x1, 0x0) write$binfmt_register(r4, &(0x7f0000000440)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32) socket$inet6(0xa, 0x4, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r3, 0x7, 0x0, 0x0, 0x0) 2m39.133792671s ago: executing program 0 (id=121): openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x40940, 0x0) r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000b80)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48) r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r1) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prctl$PR_SCHED_CORE(0x3e, 0x0, r1, 0x1, &(0x7f0000000180)) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r2}, &(0x7f0000000000), &(0x7f00000005c0)=r3}, 0x20) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000f00)='kfree\x00', r5, 0x0, 0x34}, 0x18) mkdir(&(0x7f0000000400)='./file0\x00', 0x0) r6 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='.\x00', 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000300)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x1c, 0x0, 0x7ffc1ffb}]}) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="0700000004"], 0x48) r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r7, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x18) faccessat(r6, &(0x7f0000000000)='./file0\x00', 0x2) capset(0x0, 0x0) mq_timedsend(r6, &(0x7f0000000200)="1a14206b01208d4b6490f01ac2429600f837f1dd8352f2f5c8832e07c07cbf5646bd06f7a9a89f460b2ee5669356c2b0f1515a74ca2452ad3d181d20b7d92dc8a5b4d03e2e8149827c4582", 0x4b, 0x5, 0x0) r9 = memfd_create(&(0x7f0000000100)='\vem\xda\x99R@m\xfc\xfe\x9b#*\xff', 0x0) write(r9, &(0x7f0000000040)="0600", 0x2) syz_open_dev$usbfs(&(0x7f00000001c0), 0x800000001fe, 0x2) ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x4, 0x7, 0x0, 0x0, 0x0}) 2m38.451441332s ago: executing program 0 (id=125): ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000000)=0x5) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x33, &(0x7f0000000000)=0x7, 0x4) getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000001500)=""/19, &(0x7f0000000080)=0x13) 2m37.977335673s ago: executing program 32 (id=125): ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000000)=0x5) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x33, &(0x7f0000000000)=0x7, 0x4) getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000001500)=""/19, &(0x7f0000000080)=0x13) 4.985604138s ago: executing program 3 (id=1032): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0}) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080000000100000000", @ANYBLOB, @ANYRES32], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000500)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7030000001f0000850000001b000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18) unshare(0x62040200) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000001c40)=@filter={'filter\x00', 0x8000000, 0x4, 0x370, 0xffffffff, 0xe8, 0x0, 0xe8, 0xfeffffff, 0xffffffff, 0x2a0, 0x2a0, 0x2a0, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x29}, @private2, [0xffffff00, 0xff000000, 0xff, 0xffffff00], [0xffffffff, 0xffffffff, 0xffffffff, 0xffffffff], 'macvlan0\x00', 'sit0\x00', {}, {}, 0x87, 0x3, 0x4, 0x15}, 0x2f2, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x3, 0x5, {0x7}}}}, {{@ipv6={@private2, @empty, [0x0, 0x0, 0x0, 0xff000000], [0x0, 0x0, 0xff000000], 'sit0\x00', 'batadv_slave_1\x00'}, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x3, 0x5, {0x2000010}}}}, {{@ipv6={@private2, @private2={0xfc, 0x2, '\x00', 0x1}, [0x0, 0xffffff00, 0xff], [0x0, 0xffffff00, 0xf97f1f27bc0fd003, 0xff000000], 'bridge_slave_0\x00', 'ip6tnl0\x00', {}, {0xff}, 0x11, 0x80, 0x2, 0x6a}, 0x0, 0xa8, 0xd0}, @REJECT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d0) 3.456056964s ago: executing program 4 (id=1038): setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) socket$nl_generic(0x10, 0x3, 0x10) bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) mknod(&(0x7f0000000180)='./file0\x00', 0x1ffa, 0x0) acct(&(0x7f0000000140)='./file0\x00') 3.101060245s ago: executing program 2 (id=1041): prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000800)='./file0\x00', 0x280000, &(0x7f0000000c00)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB="dd99401b1f441a835c3dfe053e0e094515e504b6316f2a67a040e860c8118441fc09df1fd193dfa63fcceb82dbd8c0c71b933214389bdf97fd6c3e72b4b836a0ee9b4d75f459e9e7a400ad5c01c749b8e8c6fc439e19077b744912af535044eab14e1a16e1ed9b2552408b230507bb3d8db6c4b28f2bc0e55df68ae70f3f51e1a6f9a3931a26f5"], 0x2, 0x69d, &(0x7f0000001c00)="$eJzs3V1vG1kdx/HfOE7iZNFqBahUVR9OW1ZKRXHHzjZVVCTWjMfJgO2xZhyUSEirsk1WVZ0utEWiuVlyw4O0vAHuuOGCF4HE9b4LbhBIK7hD4mbQPDl2/dRs3XSXfj/Rrscz/znnP3Nc/zWJ51gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAECWU7ftiqWm197ZNZM59cBvTdmetraoG+nCjZn9Slb8n0olnU9Xnf/myeZz8f+u6WL67KJK8UNJR2+de+fuN4qFfP8pCX0ROm2DT54dPbzX6+0/foHYBZ26+ddJhXxpJRuTMUFbbtsLfa9V23KNF/pmc2PDvrXdCE3Da7rhXth1W8YJ3ELXD8yac8NUNjfXjVve83faW/Va081X3vlu1bY3zA+X04GWVA6dba/Z9NpbSUy8OY65Yz79SRrg1lrGHDzo7a/POpI4qPIiQdVZQVW7Wq1UqtXKxu3N23dsuziywo5Zdp9GIub+osVXzHzeuIE5KMT1/2+W1FRJbe1oV2bsj6O6AvlqTdieyev/u7fcqf0O1v+8yp+Xvp9tvqCk/l9On12eVP8n5GJkkh3GbbEmrD/dz2KSkdETPdORHuqeeuppX4/n0LaRuTKXVs7gZ0uu2vIUypenlmrJGpOtMdrUhjZk6wNtq6FQRg15aspVqD2F6spNXlGOArmqqStfgYzW5OiGjCra1KbWZeSqrD352lFbW6qrpv9EUXSgB8l5X5+So/KgyoSA5cGg6pSWJtX/n36Svk6z+m9T/99U6etgOX34bFoM8CUQZdf/gwqzd7vy6jICAAAAAADzZiW/fbeSv91fkhSp4TVd+3WnBQAAAAAA5shStKyLsuLrf0mXZHH9DwAAAADA/xsrucfOkrSafKjfOrkT6kV+CbBwBikCAAAAAICXlNz5f3lJipJJK67IOtX1PwAAAAAA+Ar47cAc+8V8jt0o/7N+QVLYWbb+8q9lBYvWcWf329ZhLd5SO8xiRj4B0G1csN7OJupNHpYkJc8c96KV9ZZNgtmfd/Dzg1lz/VvBcwksLQw2MCEBK+55o5g906e6mu5yNZtn/v5RQcmWtJfVhtd0y47fvFtRrfZ2oevudn/x6MEvpaB/nAcPevvlDz/u3U9yOY5XHR/GjX4ylE5h/Mk4yeVpMt9Ccs/FuCNeUSPv8nft1qqV9Gvnx7+g2mFhsKNpA3DS5691LR2za6tp7OpRf8b9+PhL8fFXysmQDR19sGidZFF5/sjHDcSELEpJFtfTmOtr11X9e7rcH4WCVfrOglQtj47BUBbVwSxmnwvr3yPnYiCL5CHfMnAu1uMs/ho3NCGL9dNlMTIiAPC6HOiSknehS0omMe9XoVJWd/PykL+pfaG6M7u6vz9c3Z/+IYqSHRakYva3iam9lBS/o69ZSR1aSg+peGHMO7qd1ZWSJryj2y9R3eK+/nzyHUhZ2iNZ/DeKoruVpN/fP1dV/zjU3Ui/YbO6EJ/CW08Pf5ZMgB/7aP+j/UfV6vqG/Z5t365qMTmM7GFB1B4AwIjZ37EzM8J6T1fTiKv3//luujRU8b7e/0hBWR/qY/V0XzfzrxC4Mr7V1YGPIdxMr1o1cNVqzr1zN/leuuHYim5OvKpLaulAbLUfu6h8l+FKfRK7/opHAQCAs3VtRh0eX/9LQ/X/ptbSiLULY6+7h2t5dnXcv6SfFFuZnfz78z4bAAC8Gdzgc2u1+xsrCLzOB5XNzUqtu+2awHd+ZAKvvuUar911A2e71t5yTSfwu77jN00n0LJXd0MT7nQ6ftA1DT8wHT/0dpNvfjfZV7+HbqvW7npO2Gm6tdA1jt/u1pyuqXuhYzo7P2h64bYbJDuHHdfxGp5T63p+24T+TuC4ZWNC1x0I9Opuu+s1vHixbTqB16oFe+bHfnOn5Zq6GzqB1+n6aYN5X1674QetpNlyMRr3eQEAAN44T54dPbzX6+0/fn5hJb40T9cca0LM6MKSnjyLr8rjNcVsE3MEAQDwJXNSwE+xU+kVJgQAAAAAAAAAAAAAAAAAAAAAAEbMvqXvlAuL424WlPprfv52tka/0skthiPtWFqcc2KnWSicdq/8loijh59NCV7JF/IZBzUYc3xmB/iPr0lvJWv0+Fu77YM4k3n3tTJlcF/FwvcO0jM6MSbeOHbTcn8sivP/5xAvPPrThE1RFEXTd18ePodL0w5weKEYj+nSSwzBmb8VAThj/wsAAP//EHYw2w==") mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1/file3\x00', 0x11e) renameat2(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0x0) 2.272664589s ago: executing program 3 (id=1042): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000140)=[{0x20, 0x1, 0x0, 0xfffff034}, {0x6, 0x0, 0x0, 0x4}]}, 0x10) syz_emit_ethernet(0x3e, &(0x7f0000000080)=ANY=[@ANYBLOB="8380c2000000bbcfbbbbbbbb080045000030000190"], 0x0) 2.14129019s ago: executing program 4 (id=1043): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000280)='kfree\x00', r0}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001740)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a310000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a3100"], 0xf4}}, 0x10) 2.026319441s ago: executing program 2 (id=1044): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000800), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002e40)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="8b332ebd700000000000150000000c009900040000003a00000004001d"], 0x38}}, 0x40000) 1.986671214s ago: executing program 1 (id=1045): madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) unshare(0x20060400) r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x301080, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0, 0x0, 0x2}, 0x18) 1.889214553s ago: executing program 3 (id=1046): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000b80)=[{0x6}]}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kmem_cache_free\x00', r2}, 0x18) bind$bt_hci(r0, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6) 1.889060353s ago: executing program 4 (id=1047): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41000}, 0x86) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0b0000000e000000cc0002000600000005"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000200)='P', &(0x7f0000000740), 0x4af, r2}, 0x38) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, &(0x7f0000000080)=""/231, &(0x7f0000000180), &(0x7f0000000240), 0x2, r2}, 0x38) 1.851987646s ago: executing program 2 (id=1048): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_MSG_GETSETELEM(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001cc0)={0x30, 0xd, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x4}]}, 0x30}, 0x1, 0x0, 0x0, 0x4004001}, 0x8000) 1.747624925s ago: executing program 1 (id=1049): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x18) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000004500), 0x0, &(0x7f0000000100)) 1.681202561s ago: executing program 2 (id=1050): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = syz_io_uring_setup(0xbc0, &(0x7f0000000280)={0x0, 0x5568, 0x10000, 0x2, 0x285}, &(0x7f0000000040)=0x0, &(0x7f00000000c0)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x2, 0xa3d8, &(0x7f00000005c0)=[{&(0x7f0000000240)="5db5bd", 0x3}], 0x10000000000002a8, 0x8, 0x1, {0x2}}) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x0, 0x0) pread64(r5, &(0x7f0000000180)=""/73, 0xfffffdef, 0x55) io_uring_enter(r2, 0x29ab, 0xd480, 0x0, 0x0, 0x0) 1.680953401s ago: executing program 3 (id=1051): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="18010000008000000000000000000004850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xc, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000380)='kfree\x00', r0}, 0x18) r1 = socket$kcm(0x2, 0x1000000000000002, 0x0) sendmsg$inet(r1, &(0x7f0000000040)={&(0x7f0000000880)={0x2, 0x4e1d, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="2800000000000000000000000700000083070400"], 0x28}, 0x0) 1.653078554s ago: executing program 4 (id=1052): prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000800)='./file0\x00', 0x280000, &(0x7f0000000c00)=ANY=[@ANYBLOB="757466382c626c6f636b3d307830303030303030303030303030323030006e6f726f636b2c63727566742c6d61703d6f66662c646d6f64653d3078303430303030303030303030303063664173657373696f6e3d3078303030303030303030303030303033382c756e686964652c756e686964652c6769643d29e0cd5c372ab078c28fb05c6421428d066455368833565fd726743513f4466efa8d4fba06d57341875f5775ab343c0f6bc59fbde784ec3597e0e286d8d0dbf360afa3bc5c145b6e4f8b0305932fb55ff13f9fcb5035769f5fca33ac02bdeacb24c58103edc3d8b46df7614aa493952584ee662174309b11a4ad19e64dcdeeca1c148170b8d1aaf26082364b0d90d63d8502ffa63dde945e4612ac134315f389af667a04931ad25ff10b9b5107e517dbbcf5dcb60f564f54b344218d9325b53e829c38c96c69adc9e745202923a1b8124333cce0a8f1c748d42a272eb3e5502051090f1ac34fe5e8f038", @ANYRES32, @ANYBLOB="dd99401b1f441a835c3dfe053e0e094515e504b6316f2a67a040e860c8118441fc09df1fd193dfa63fcceb82dbd8c0c71b933214389bdf97fd6c3e72b4b836a0ee9b4d75f459e9e7a400ad5c01c749b8e8c6fc439e19077b744912af535044eab14e1a16e1ed9b2552408b230507bb3d8db6c4b28f2bc0e55df68ae70f3f51e1a6f9a3931a26f5"], 0x2, 0x69d, &(0x7f0000001c00)="$eJzs3V1vG1kdx/HfOE7iZNFqBahUVR9OW1ZKRXHHzjZVVCTWjMfJgO2xZhyUSEirsk1WVZ0utEWiuVlyw4O0vAHuuOGCF4HE9b4LbhBIK7hD4mbQPDl2/dRs3XSXfj/Rrscz/znnP3Nc/zWJ51gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAECWU7ftiqWm197ZNZM59cBvTdmetraoG+nCjZn9Slb8n0olnU9Xnf/myeZz8f+u6WL67KJK8UNJR2+de+fuN4qFfP8pCX0ROm2DT54dPbzX6+0/foHYBZ26+ddJhXxpJRuTMUFbbtsLfa9V23KNF/pmc2PDvrXdCE3Da7rhXth1W8YJ3ELXD8yac8NUNjfXjVve83faW/Va081X3vlu1bY3zA+X04GWVA6dba/Z9NpbSUy8OY65Yz79SRrg1lrGHDzo7a/POpI4qPIiQdVZQVW7Wq1UqtXKxu3N23dsuziywo5Zdp9GIub+osVXzHzeuIE5KMT1/2+W1FRJbe1oV2bsj6O6AvlqTdieyev/u7fcqf0O1v+8yp+Xvp9tvqCk/l9On12eVP8n5GJkkh3GbbEmrD/dz2KSkdETPdORHuqeeuppX4/n0LaRuTKXVs7gZ0uu2vIUypenlmrJGpOtMdrUhjZk6wNtq6FQRg15aspVqD2F6spNXlGOArmqqStfgYzW5OiGjCra1KbWZeSqrD352lFbW6qrpv9EUXSgB8l5X5+So/KgyoSA5cGg6pSWJtX/n36Svk6z+m9T/99U6etgOX34bFoM8CUQZdf/gwqzd7vy6jICAAAAAADzZiW/fbeSv91fkhSp4TVd+3WnBQAAAAAA5shStKyLsuLrf0mXZHH9DwAAAADA/xsrucfOkrSafKjfOrkT6kV+CbBwBikCAAAAAICXlNz5f3lJipJJK67IOtX1PwAAAAAA+Ar47cAc+8V8jt0o/7N+QVLYWbb+8q9lBYvWcWf329ZhLd5SO8xiRj4B0G1csN7OJupNHpYkJc8c96KV9ZZNgtmfd/Dzg1lz/VvBcwksLQw2MCEBK+55o5g906e6mu5yNZtn/v5RQcmWtJfVhtd0y47fvFtRrfZ2oevudn/x6MEvpaB/nAcPevvlDz/u3U9yOY5XHR/GjX4ylE5h/Mk4yeVpMt9Ccs/FuCNeUSPv8nft1qqV9Gvnx7+g2mFhsKNpA3DS5691LR2za6tp7OpRf8b9+PhL8fFXysmQDR19sGidZFF5/sjHDcSELEpJFtfTmOtr11X9e7rcH4WCVfrOglQtj47BUBbVwSxmnwvr3yPnYiCL5CHfMnAu1uMs/ho3NCGL9dNlMTIiAPC6HOiSknehS0omMe9XoVJWd/PykL+pfaG6M7u6vz9c3Z/+IYqSHRakYva3iam9lBS/o69ZSR1aSg+peGHMO7qd1ZWSJryj2y9R3eK+/nzyHUhZ2iNZ/DeKoruVpN/fP1dV/zjU3Ui/YbO6EJ/CW08Pf5ZMgB/7aP+j/UfV6vqG/Z5t365qMTmM7GFB1B4AwIjZ37EzM8J6T1fTiKv3//luujRU8b7e/0hBWR/qY/V0XzfzrxC4Mr7V1YGPIdxMr1o1cNVqzr1zN/leuuHYim5OvKpLaulAbLUfu6h8l+FKfRK7/opHAQCAs3VtRh0eX/9LQ/X/ptbSiLULY6+7h2t5dnXcv6SfFFuZnfz78z4bAAC8Gdzgc2u1+xsrCLzOB5XNzUqtu+2awHd+ZAKvvuUar911A2e71t5yTSfwu77jN00n0LJXd0MT7nQ6ftA1DT8wHT/0dpNvfjfZV7+HbqvW7npO2Gm6tdA1jt/u1pyuqXuhYzo7P2h64bYbJDuHHdfxGp5T63p+24T+TuC4ZWNC1x0I9Opuu+s1vHixbTqB16oFe+bHfnOn5Zq6GzqB1+n6aYN5X1674QetpNlyMRr3eQEAAN44T54dPbzX6+0/fn5hJb40T9cca0LM6MKSnjyLr8rjNcVsE3MEAQDwJXNSwE+xU+kVJgQAAAAAAAAAAAAAAAAAAAAAAEbMvqXvlAuL424WlPprfv52tka/0skthiPtWFqcc2KnWSicdq/8loijh59NCV7JF/IZBzUYc3xmB/iPr0lvJWv0+Fu77YM4k3n3tTJlcF/FwvcO0jM6MSbeOHbTcn8sivP/5xAvPPrThE1RFEXTd18ePodL0w5weKEYj+nSSwzBmb8VAThj/wsAAP//EHYw2w==") mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1/file3\x00', 0x11e) renameat2(0xffffffffffffff9c, &(0x7f0000000400)='./file1/file3\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file0\x00', 0x0) 1.568636531s ago: executing program 1 (id=1053): bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41002, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20000000}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r2, 0x0, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, &(0x7f00000000c0)='\x00', 0x0}, 0x48) 1.484862138s ago: executing program 3 (id=1054): getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0ff5b14104fe62cc60e413905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf2364149215108333719acd97cfa107d40224edc5465a93df8513a32ec450bebc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe511195418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4929330142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da8c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000dd11e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15f2a169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f000010000000000000905ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400bee3dfc8fb24f67c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341b74abaa7c95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb232bbdb9dc33cbd7643866fde41f94290c2a5ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595270fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f76dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d2e959efc71f665c4d75cf2458e3322c9062ece84c99a061997a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99f0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d164118e4cbe02400000000ff0700000000cc9d8046c216c1f895778cb25122a2a998de44aeadea2a40da8daccf080842a4867217373934bbd42dcb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcd62981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba495aea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b60000000000001700d6d5210d7560eb92d6a97a27602b81f76386f1535b1fad6ec9a31137abf9a404abde7750898b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294059323e7a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd704e4214de5946932d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1fc8df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1785eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba891cea599b079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be2f5656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b70ebc660309e1e245b0fd78f9743af932cd6db49a47613808bad959719c0000000000378a921c7f7f6933c2e24c7e800003c9e8095e02985f28de0bbc76d58dd92606b1ef6486c85fa3e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6968d12418a4d2a0d086d8438d415d713acebc5b014e61a543a5a391f03daca80f08f0e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e112645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c000000000000000000000000000000a1c3da144589dcaddb71cf9374843e23f992a237a9040747e0434a8a643990b4059a98411ce867d1af7e8ea89f49e6f564d4dce8a7d6939a9214a7f39e83bd247e03a09dba000000000000000000000000aaf033d47249c8444bc13844cbf1be617d82b269e5ea0c0d525603c0ec543ea581f63893ae414a6683e941fdbdff03cfc5f8744583c0aa766a65321f907927a59d75b47f06895e8471ebc2840ce5bd054df223fb09"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000018c0)='block_bio_remap\x00', r0}, 0x18) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 1.35009523s ago: executing program 2 (id=1055): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000080)={0xa04c, 0x35e8b531, 0x1, 0x8, 0x13, "53af0f0b4ecf6c29bf81c173f4a8f5f73eb62f"}) 1.073865484s ago: executing program 1 (id=1056): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) process_vm_writev(0x0, &(0x7f00000000c0)=[{0x0}, {0xffffffffffffffff}, {0xfffffffffffffffc}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x0, 0x0) 1.01312669s ago: executing program 2 (id=1057): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000008c0)={0x11, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000020000000000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff5}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x406, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, &(0x7f00000000c0)="a0", 0x0}, 0x31) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001cc0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0) r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/mdstat\x00', 0x0, 0x0) lseek(r3, 0x4, 0x1) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000140)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_DEL_PMKSA(r3, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2}, 0x41, &(0x7f00000001c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\"\x00\x00', @ANYRES16=r4, @ANYBLOB="00002cbd7000fbdbdf253500000008000300", @ANYRES32=r5, @ANYBLOB="0c009900ffffff7f6900000014005500d9440195ea55c13c7e7ecb39e0714f40"], 0x3c}, 0x1, 0x0, 0x0, 0x40810}, 0x800) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]}) r6 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000086b97ea3e0e6ffee9c214400000000dfaa8c45a270ef2747e451ded8f235f88a19b3e3874988e671f0fb255ca4e0451a49f39b5676040e3a0ee1de4a155d285dcdc3942d8e3a747988ff121edb136b6305fd1236097d7a3f247a20ae2b3b4844ad1db6e09c14a79ae2c0d00b5dd10691826922270d1eedd70ccac3adb34c7198585f2892d693f1f1cd17754cce447140e3209e74eca6732fac4ab5eef09227342f62a5aa9c63424ff661a19038649a93418fb7fdbdcc2a01dabaf7e15475a24ce4e7f0465c558f942d93cce77485ff98453c5300"/243, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="180500ecffffffffffffff0000000000b7080000000000007b8af8ff00000000b7080400000010007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70400000800000085000000950000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r7}, 0x10) r8 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0) pwrite64(r8, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) lseek(r8, 0x5, 0x4) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000300)={[{@init_itable_val}, {@jqfmt_vfsold}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6a}}, {@jqfmt_vfsold}, {@minixdf}, {@quota}]}, 0x3, 0x44c, &(0x7f0000000c00)="$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") r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000020000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000000000020003000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', r9}, 0x10) r10 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x8010) sendmsg$NFT_BATCH(r10, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0) sendmsg$NFT_BATCH(r10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000740)=ANY=[], 0x6c}, 0x1, 0x0, 0x0, 0x90}, 0x880) setxattr$system_posix_acl(0x0, &(0x7f0000000000)='system.posix_acl_access\x00', 0x0, 0x24, 0x3) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) 694.262668ms ago: executing program 1 (id=1058): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r0}, 0x18) syz_io_uring_setup(0x5196, &(0x7f0000000100)={0x0, 0x343b, 0xc0c9, 0x2, 0x30e}, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={0x0}, 0x18) bpf$MAP_CREATE(0x0, 0x0, 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x9, 0x4, 0x8, 0x4, 0x2}, 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x18, 0xd, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000001000000000000000000000418110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000797b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000010000008500000003000000850000001100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000002c0)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@auto_da_alloc}, {@nodioread_nolock}]}, 0x1, 0x59c, &(0x7f0000001840)="$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") r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) sendfile(r3, r3, 0x0, 0x800000009) 517.736994ms ago: executing program 4 (id=1059): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="09000000040000"], 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]}) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r4) sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010028bd7000070000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x8004) write$nci(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="414601", @ANYRES8], 0x4) 341.458189ms ago: executing program 3 (id=1060): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000180)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000680)='kfree\x00', r1}, 0x18) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x47f, &(0x7f00000004c0)="$eJzs281vFGUYAPBnpt0F5KMV8QNErRKTRmNLCyoHLxpMjMFoogc81nYhDQs1tBpBIsUYTyaGRM/Go9G/wJsxMerJxKsnT4aEKBfAU83MzpTt0g+w225hf79kZt93592d59n5enfe3QC61kA2SyK2RcQfEdHXqC5sMNB4uHbl3Pj1K+fGk5ibe/PvJG939cq58bJp+bqtRWUwjUg/SYqVLDR95uyJsXq9drqoD8+cfHd4+szZZ94/OXa8drx2avTQoYMHRp5/bvTZtuSZ5XV1z0dTe3e/8vbF18aPXnznl++yeLcVy5vzaJeBLPF/5nKty55s98o6bHs+35TPk94OB8Mt64mIbHNV8uO/L3rixsbri5c/7mhwwJrKrk2bll48OwfcxZK41ZaVpnMGcOcrL/TZ999yWodux4Zx+cXGF6As72vF1FjSG2nRpjL//bb9BiLi6Oy/X2VTrNF9CACAZp+Nf3mkGhEfXv/21azv0Te/JI0H8sc/8/mOYgylPyLujYidEXFfROyKiPsj8rYPRsRDq4zn5v5PemmVb7msrP/3QjG2tbD/V/b+or+nqG3P868kxybrtf3FZzIYlU1ZfWSZdfxw+PfPl1rW3P/Lpmz9ZV+wiONSb8sNuomxmbGorCbrGy5fiNjTu1j+yfxIQBIRuyNiz+299Y6yMPnUN3uXarRy/stowzjT3NdZerNZ/rPRkn8paR6fnLxpfHJ4c9Rr+4fLveJmv/726RtLrX9V+bfB5VrjsWn7tzbpT5rHa6fbu/7/uf+n1eStfJy5Wow5fjA2M3N6JKKaHMnr1aJt/vzojdeW9bJ9tv8P7lv8+N9ZvCbL/+GIyHbiRyLi0Yh4rIj98Yh4IiL2LZPjzy+tnH+kHdr+FyImFj3/ze//Ldv/9gs9J376fqn139r2P5iXBotn8vPfChYLJztdtAa4ms8OAAAA7hRp/hv4JB2aL6fp0FDjN/y74p60PjU98/SxqfdOTTR+K98flbS809VX3A+tT9ZrI8ls8Y6V5HDUa6PFveLyfumB4r7xFz1b8vrQ+FR9osO5Q7fbusTxn/mrp9PRAWtsy6LPjlbXPRCgA1rH0dOF1fOvh5MB3K38Xxu61wrHf7pecQDrz/Ufutdix//5lrqxALg7uf5D93L8Q5dKf+x0BEAHuf5DV1rN//rXsLD5NhpXN0jMbSts1I2SFyLKQroh4lFYo0Knz0wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADt8V8AAAD//zuB3as=") 237.089639ms ago: executing program 1 (id=1061): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000240)={0x1, &(0x7f00000004c0)=[{0x6, 0x85, 0x7, 0x7ffc0001}]}) get_mempolicy(0x0, 0x0, 0x4, &(0x7f0000ffa000/0x3000)=nil, 0x3) 0s ago: executing program 4 (id=1062): r0 = socket(0x2a, 0x2, 0x0) r1 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x48, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {0x0, 0x2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_prio={{0x9}, {0x18, 0x2, {0x8}}}]}, 0x48}}, 0x0) r4 = socket(0x10, 0x3, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) sendmsg$nl_route_sched(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newtfilter={0x44, 0x2c, 0xd27, 0x10, 0x0, {0x0, 0x0, 0x0, r5, {}, {}, {0x8, 0xa}}, [@filter_kind_options=@f_u32={{0x8}, {0x18, 0x2, [@TCA_U32_SEL={0x14, 0x5, {0x12, 0x4, 0x0, 0x6fb, 0x8, 0xfcf, 0x7, 0x1}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000001}, 0xc004) getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14) sendmsg$nl_route_sched(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=@newtfilter={0xa4, 0x2c, 0xd27, 0x10, 0x0, {0x0, 0x0, 0x0, r6, {0xf}, {}, {0x8, 0xa}}, [@filter_kind_options=@f_u32={{0x8}, {0x78, 0x2, [@TCA_U32_SEL={0x74, 0x5, {0x2, 0x7, 0x6, 0xfffb, 0x8, 0x5, 0xffff, 0x5, [{0x7, 0x9, 0x81, 0xfff}, {0x7, 0x9, 0x5, 0x2}, {0x8, 0x8, 0x8, 0x6e}, {0x1, 0x1, 0x4, 0x5}, {0xb, 0x4, 0x8, 0x6}, {0x4, 0x3, 0x1ff, 0x3}]}}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4000001}, 0xc004) r7 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r7, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r7, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000440)=0x10) kernel console output (not intermixed with test programs): aligned with cluster size (16), stripe is disabled [ 139.795350][ T6643] ext4 filesystem being mounted at /16/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 139.838109][ T27] kauditd_printk_skb: 13 callbacks suppressed [ 139.838125][ T27] audit: type=1326 audit(1767600587.706:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 139.891997][ T6644] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 139.904523][ T27] audit: type=1326 audit(1767600587.746:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 139.904578][ T27] audit: type=1326 audit(1767600587.746:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 139.904625][ T27] audit: type=1326 audit(1767600587.746:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 139.904669][ T27] audit: type=1326 audit(1767600587.746:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 139.904714][ T27] audit: type=1326 audit(1767600587.746:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 139.905007][ T27] audit: type=1326 audit(1767600587.776:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 139.907215][ T27] audit: type=1326 audit(1767600587.776:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 140.112690][ T27] audit: type=1326 audit(1767600587.776:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 140.193829][ T27] audit: type=1326 audit(1767600587.846:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.4.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 140.268985][ T6246] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 140.416767][ T5769] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.747907][ T6666] loop3: detected capacity change from 0 to 512 [ 140.762645][ T6667] loop2: detected capacity change from 0 to 512 [ 140.786233][ T6666] EXT4-fs: Ignoring removed orlov option [ 140.822351][ T6666] EXT4-fs: Mount option(s) incompatible with ext2 [ 141.012185][ T6667] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 141.142297][ T6677] loop1: detected capacity change from 0 to 512 [ 141.149312][ T6667] ext4 filesystem being mounted at /59/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 141.205108][ T6677] EXT4-fs (loop1): Test dummy encryption mode enabled [ 141.212059][ T6677] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 141.275495][ T6677] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 141.307122][ T6677] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.238: bad orphan inode 131083 [ 141.340295][ T6677] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 141.722383][ T6692] netlink: 12 bytes leftover after parsing attributes in process `syz.1.238'. [ 142.346206][ T5769] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.374157][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.545329][ T6707] capability: warning: `syz.4.246' uses deprecated v2 capabilities in a way that may be insecure [ 142.692015][ T6708] netlink: 24 bytes leftover after parsing attributes in process `syz.3.245'. [ 142.779110][ T6708] netlink: 4 bytes leftover after parsing attributes in process `syz.3.245'. [ 142.812326][ T6708] netlink: 4 bytes leftover after parsing attributes in process `syz.3.245'. [ 143.032926][ T6718] bridge1: entered promiscuous mode [ 143.044027][ T6718] bridge1: entered allmulticast mode [ 143.110255][ T6710] lo speed is unknown, defaulting to 1000 [ 143.255113][ T6723] netlink: 4 bytes leftover after parsing attributes in process `syz.2.250'. [ 143.264037][ T6723] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 143.323535][ T6729] loop3: detected capacity change from 0 to 164 [ 143.390341][ T6723] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 143.406675][ T6723] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 143.467204][ T6723] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 144.802075][ T6757] netlink: 8 bytes leftover after parsing attributes in process `syz.2.264'. [ 145.259269][ T6763] pimreg: entered allmulticast mode [ 145.304388][ T6763] pimreg: left allmulticast mode [ 145.817721][ T6771] loop4: detected capacity change from 0 to 512 [ 145.913922][ T6771] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 145.937872][ T6771] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 146.091261][ T6771] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 146.148343][ T6771] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 31 with max blocks 1 with error 28 [ 146.202101][ T6771] EXT4-fs (loop4): This should not happen!! Data will be lost [ 146.202101][ T6771] [ 146.245877][ T6771] EXT4-fs (loop4): Total free blocks count 0 [ 146.252851][ T6771] EXT4-fs (loop4): Free/Dirty block details [ 146.284539][ T6771] EXT4-fs (loop4): free_blocks=65280 [ 146.290032][ T6771] EXT4-fs (loop4): dirty_blocks=1 [ 146.334506][ T6771] EXT4-fs (loop4): Block reservation details [ 146.348104][ T6771] EXT4-fs (loop4): i_reserved_data_blocks=1 [ 146.383872][ T27] kauditd_printk_skb: 260 callbacks suppressed [ 146.383889][ T27] audit: type=1326 audit(1767600594.246:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6785 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 146.463377][ T27] audit: type=1326 audit(1767600594.246:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6785 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 146.505009][ T6246] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.544489][ T27] audit: type=1326 audit(1767600594.266:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6785 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 146.629161][ T27] audit: type=1326 audit(1767600594.266:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6785 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 146.682613][ T6788] bridge0: entered promiscuous mode [ 146.725356][ T6788] bridge0: left promiscuous mode [ 146.733215][ T27] audit: type=1326 audit(1767600594.266:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6785 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 146.825412][ T27] audit: type=1326 audit(1767600594.286:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6785 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 146.956025][ T27] audit: type=1326 audit(1767600594.286:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6785 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 147.026949][ T27] audit: type=1326 audit(1767600594.286:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6785 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 147.112873][ T6797] loop1: detected capacity change from 0 to 512 [ 147.131070][ T27] audit: type=1326 audit(1767600594.286:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6785 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 147.179622][ T6797] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 147.229428][ T27] audit: type=1326 audit(1767600594.286:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6785 comm="syz.1.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 147.252720][ T6797] EXT4-fs (loop1): orphan cleanup on readonly fs [ 147.290968][ T6797] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4031: comm syz.1.281: Allocating blocks 41-42 which overlap fs metadata [ 147.381580][ T6800] loop4: detected capacity change from 0 to 2048 [ 147.466547][ T6797] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4031: comm syz.1.281: Allocating blocks 41-42 which overlap fs metadata [ 147.533073][ T6797] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.281: Failed to acquire dquot type 1 [ 147.547180][ T6800] Alternate GPT is invalid, using primary GPT. [ 147.564870][ T6800] loop4: p2 p3 p7 [ 147.577140][ T6797] EXT4-fs error (device loop1): mb_free_blocks:1938: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 147.654622][ T6797] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #12: comm syz.1.281: corrupted inode contents [ 147.727500][ T6797] EXT4-fs error (device loop1): ext4_dirty_inode:6120: inode #12: comm syz.1.281: mark_inode_dirty error [ 147.795776][ T6797] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #12: comm syz.1.281: corrupted inode contents [ 147.848742][ T6812] loop2: detected capacity change from 0 to 256 [ 147.863028][ T6797] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #12: comm syz.1.281: mark_inode_dirty error [ 147.865866][ T6328] I/O error, dev loop4, sector 408 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 147.878605][ T6246] __loop_clr_fd: partition scan of loop4 failed (rc=-16) [ 147.886074][ T6327] I/O error, dev loop4, sector 208 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 147.904508][ T6636] I/O error, dev loop4, sector 608 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 147.925763][ T6327] I/O error, dev loop4, sector 208 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 147.935529][ T6328] I/O error, dev loop4, sector 408 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 147.940984][ T6636] I/O error, dev loop4, sector 608 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 147.967302][ T6327] Buffer I/O error on dev loop4p3, logical block 8, async page read [ 147.976699][ T6797] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #12: comm syz.1.281: corrupted inode contents [ 147.977504][ T6328] Buffer I/O error on dev loop4p7, logical block 8, async page read [ 148.015137][ T6327] I/O error, dev loop4, sector 209 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 148.044532][ T6636] Buffer I/O error on dev loop4p2, logical block 8, async page read [ 148.059952][ T6797] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem [ 148.070599][ T6327] Buffer I/O error on dev loop4p3, logical block 9, async page read [ 148.086411][ T6636] I/O error, dev loop4, sector 609 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 148.091452][ T6328] I/O error, dev loop4, sector 409 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 148.121287][ T6797] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #12: comm syz.1.281: corrupted inode contents [ 148.141307][ T6327] I/O error, dev loop4, sector 210 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 148.151176][ T6636] Buffer I/O error on dev loop4p2, logical block 9, async page read [ 148.179503][ T6328] Buffer I/O error on dev loop4p7, logical block 9, async page read [ 148.189389][ T6327] Buffer I/O error on dev loop4p3, logical block 10, async page read [ 148.194998][ T6636] Buffer I/O error on dev loop4p2, logical block 10, async page read [ 148.204076][ T6797] EXT4-fs error (device loop1): ext4_truncate:4294: inode #12: comm syz.1.281: mark_inode_dirty error [ 148.238315][ T6328] Buffer I/O error on dev loop4p7, logical block 10, async page read [ 148.247624][ T6327] Buffer I/O error on dev loop4p3, logical block 11, async page read [ 148.311193][ T6797] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem [ 148.390732][ T6797] EXT4-fs (loop1): 1 truncate cleaned up [ 148.420789][ T6369] udevd[6369]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 148.432400][ T6328] udevd[6328]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 148.433634][ T6797] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 148.458841][ T6636] udevd[6636]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 148.554466][ T6797] netlink: 19 bytes leftover after parsing attributes in process `syz.1.281'. [ 148.669509][ T6369] udevd[6369]: inotify_add_watch(7, /dev/loop4p7, 10) failed: No such file or directory [ 148.687853][ T6327] udevd[6327]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 148.700582][ T6636] udevd[6636]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 149.040591][ T6807] bridge0: port 2(bridge_slave_1) entered disabled state [ 149.049892][ T6807] bridge0: port 1(bridge_slave_0) entered disabled state [ 149.062556][ T5769] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.572338][ T6835] netlink: 36 bytes leftover after parsing attributes in process `syz.4.287'. [ 150.115063][ T6807] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 150.153775][ T6807] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 150.358213][ T6807] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.369846][ T6807] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.381259][ T6807] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.393461][ T6807] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 150.512985][ T6807] bridge1: left promiscuous mode [ 150.522928][ T6807] bridge1: left allmulticast mode [ 150.535474][ T6835] netlink: 36 bytes leftover after parsing attributes in process `syz.4.287'. [ 150.586940][ T6825] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12 [ 150.644525][ T6825] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12 [ 150.654185][ T6825] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 152.272382][ T27] kauditd_printk_skb: 17 callbacks suppressed [ 152.272399][ T27] audit: type=1326 audit(1767600600.136:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 152.354751][ T27] audit: type=1326 audit(1767600600.176:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 152.436752][ T27] audit: type=1326 audit(1767600600.176:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 152.515285][ T27] audit: type=1326 audit(1767600600.176:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 152.588466][ T27] audit: type=1326 audit(1767600600.176:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 152.672078][ T27] audit: type=1326 audit(1767600600.176:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 152.707495][ T27] audit: type=1326 audit(1767600600.176:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 152.734425][ T27] audit: type=1326 audit(1767600600.176:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 152.778100][ T27] audit: type=1326 audit(1767600600.176:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 152.845758][ T27] audit: type=1326 audit(1767600600.176:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6916 comm="syz.3.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 152.879462][ T6930] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.066978][ T6930] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.114190][ T6939] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 153.141567][ T6943] loop2: detected capacity change from 0 to 2048 [ 153.213442][ T6943] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 153.280519][ T6943] ext4 filesystem being mounted at /83/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 153.413024][ T6930] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.460125][ T6949] pim6reg: entered allmulticast mode [ 153.489540][ T6952] pim6reg: left allmulticast mode [ 153.515561][ T6955] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.321: bg 0: block 345: padding at end of block bitmap is not set [ 153.596001][ T6955] EXT4-fs (loop2): Remounting filesystem read-only [ 153.663299][ T6930] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 153.888777][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.055277][ T6930] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.116029][ T6930] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.174056][ T6930] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.241743][ T6930] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 154.581624][ T6985] loop3: detected capacity change from 0 to 512 [ 154.616939][ T6985] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 154.685294][ T6985] EXT4-fs (loop3): orphan cleanup on readonly fs [ 154.694089][ T6985] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:512: comm syz.3.327: Block bitmap for bg 0 marked uninitialized [ 154.765709][ T6985] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 154.805339][ T6991] netlink: 'gtp': attribute type 1 has an invalid length. [ 154.812564][ T6991] netlink: 224 bytes leftover after parsing attributes in process `gtp'. [ 154.843019][ T6985] EXT4-fs (loop3): 1 orphan inode deleted [ 154.879476][ T6985] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 154.920610][ T6993] bridge0: port 3(batadv1) entered blocking state [ 154.964812][ T6993] bridge0: port 3(batadv1) entered disabled state [ 154.986866][ T6993] batadv1: entered allmulticast mode [ 155.028392][ T6993] batadv1: entered promiscuous mode [ 155.051352][ T6966] EXT4-fs: Ignoring removed orlov option [ 155.144935][ T6966] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 155.174137][ T6966] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 155.438035][ T2961] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled [ 155.448054][ T2961] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled [ 155.686931][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 155.884047][ T7024] netlink: 28 bytes leftover after parsing attributes in process `syz.4.347'. [ 157.131848][ T7061] loop4: detected capacity change from 0 to 736 [ 157.216333][ T6636] blk_print_req_error: 17 callbacks suppressed [ 157.216350][ T6636] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 157.489267][ T7071] hub 8-0:1.0: USB hub found [ 157.526017][ T7071] hub 8-0:1.0: 1 port detected [ 157.857214][ T7077] loop2: detected capacity change from 0 to 1024 [ 157.927472][ T7077] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 158.095425][ T7077] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #11: comm syz.2.351: iget: bogus i_mode (1) [ 158.189247][ T7077] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.351: couldn't read orphan inode 11 (err -117) [ 158.243936][ T7077] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 159.577087][ T7034] syz.2.351: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1 [ 159.623753][ T7034] CPU: 0 PID: 7034 Comm: syz.2.351 Not tainted syzkaller #0 [ 159.631145][ T7034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 159.641258][ T7034] Call Trace: [ 159.644593][ T7034] [ 159.647583][ T7034] dump_stack_lvl+0x16c/0x230 [ 159.652345][ T7034] ? show_regs_print_info+0x20/0x20 [ 159.657616][ T7034] ? load_image+0x3b0/0x3b0 [ 159.662198][ T7034] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 159.668686][ T7034] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 159.675268][ T7034] warn_alloc+0x210/0x300 [ 159.679683][ T7034] ? zone_watermark_ok_safe+0x230/0x230 [ 159.685311][ T7034] ? _raw_spin_unlock+0x28/0x40 [ 159.690232][ T7034] __vmalloc_node_range+0x662/0x1320 [ 159.695668][ T7034] ? free_vm_area+0x50/0x50 [ 159.700353][ T7034] ? _raw_spin_unlock+0x28/0x40 [ 159.705283][ T7034] ? __kasan_kmalloc+0x8f/0xa0 [ 159.710140][ T7034] __vmalloc_node_range+0x568/0x1320 [ 159.715504][ T7034] ? hash_netiface_create+0x361/0xff0 [ 159.721045][ T7034] ? __asan_memset+0x22/0x40 [ 159.725745][ T7034] ? free_vm_area+0x50/0x50 [ 159.730308][ T7034] ? kvmalloc_node+0x70/0x180 [ 159.735079][ T7034] ? rcu_is_watching+0x15/0xb0 [ 159.739889][ T7034] ? kvmalloc_node+0x70/0x180 [ 159.744604][ T7034] ? trace_kmalloc+0x1f/0xa0 [ 159.749239][ T7034] kvmalloc_node+0x13f/0x180 [ 159.753874][ T7034] ? hash_netiface_create+0x361/0xff0 [ 159.759384][ T7034] hash_netiface_create+0x361/0xff0 [ 159.764735][ T7034] ? __lock_acquire+0x7c80/0x7c80 [ 159.769858][ T7034] ? __nla_parse+0x40/0x50 [ 159.774509][ T7034] ? hash_netport6_gc+0x570/0x570 [ 159.779597][ T7034] ip_set_create+0xa87/0x18e0 [ 159.784323][ T7034] ? ip_set_create+0x4b2/0x18e0 [ 159.789228][ T7034] ? ip_set_protocol+0x5d0/0x5d0 [ 159.794217][ T7034] ? trace_contention_end+0x39/0xe0 [ 159.800020][ T7034] nfnetlink_rcv_msg+0xb49/0x1130 [ 159.805201][ T7034] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 159.811328][ T7034] ? nfnetlink_rcv_msg+0x20e/0x1130 [ 159.816590][ T7034] ? nfnetlink_unbind+0x160/0x160 [ 159.822866][ T7034] ? __dev_queue_xmit+0x1a64/0x35a0 [ 159.828479][ T7034] ? __netlink_deliver_tap+0x5ab/0x830 [ 159.834094][ T7034] ? netlink_deliver_tap+0x19c/0x1b0 [ 159.839470][ T7034] ? netlink_unicast+0x72c/0x8d0 [ 159.844566][ T7034] ? netlink_sendmsg+0x8c1/0xbe0 [ 159.849554][ T7034] ? ____sys_sendmsg+0x5bf/0x950 [ 159.854543][ T7034] ? ___sys_sendmsg+0x220/0x290 [ 159.859604][ T7034] ? __se_sys_sendmsg+0x1a5/0x270 [ 159.864667][ T7034] ? do_syscall_64+0x55/0xb0 [ 159.869400][ T7034] netlink_rcv_skb+0x216/0x480 [ 159.874213][ T7034] ? nfnetlink_unbind+0x160/0x160 [ 159.879423][ T7034] ? netlink_ack+0x1110/0x1110 [ 159.885204][ T7034] ? apparmor_capable+0x137/0x1a0 [ 159.890383][ T7034] ? bpf_lsm_capable+0x9/0x10 [ 159.895324][ T7034] ? security_capable+0x89/0xb0 [ 159.900327][ T7034] nfnetlink_rcv+0x274/0x2180 [ 159.905067][ T7034] ? __local_bh_enable_ip+0x12e/0x1c0 [ 159.910487][ T7034] ? lockdep_hardirqs_on+0x98/0x150 [ 159.915818][ T7034] ? __local_bh_enable_ip+0x12e/0x1c0 [ 159.921279][ T7034] ? _local_bh_enable+0xa0/0xa0 [ 159.926180][ T7034] ? __dev_queue_xmit+0x245/0x35a0 [ 159.931349][ T7034] ? nfnetlink_net_exit_batch+0xa0/0xa0 [ 159.936978][ T7034] ? __dev_queue_xmit+0x245/0x35a0 [ 159.942174][ T7034] ? ref_tracker_free+0x634/0x7d0 [ 159.947253][ T7034] ? __copy_skb_header+0xa7/0x550 [ 159.952330][ T7034] ? refcount_inc+0x70/0x70 [ 159.956921][ T7034] ? __skb_clone+0x63/0x790 [ 159.961563][ T7034] ? __skb_clone+0x480/0x790 [ 159.966207][ T7034] ? __netlink_deliver_tap+0x7e8/0x830 [ 159.971708][ T7034] ? netlink_deliver_tap+0x2e/0x1b0 [ 159.976974][ T7034] ? __lock_acquire+0x7c80/0x7c80 [ 159.982148][ T7034] ? netlink_deliver_tap+0x2e/0x1b0 [ 159.987390][ T7034] netlink_unicast+0x751/0x8d0 [ 159.992214][ T7034] netlink_sendmsg+0x8c1/0xbe0 [ 159.997109][ T7034] ? netlink_getsockopt+0x580/0x580 [ 160.002437][ T7034] ? aa_sock_msg_perm+0x94/0x150 [ 160.007418][ T7034] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 160.012822][ T7034] ? security_socket_sendmsg+0x80/0xa0 [ 160.018759][ T7034] ? netlink_getsockopt+0x580/0x580 [ 160.023993][ T7034] ____sys_sendmsg+0x5bf/0x950 [ 160.028806][ T7034] ? __asan_memset+0x22/0x40 [ 160.033470][ T7034] ? __sys_sendmsg_sock+0x30/0x30 [ 160.038542][ T7034] ? __import_iovec+0x5f2/0x860 [ 160.043688][ T7034] ? import_iovec+0x73/0xa0 [ 160.048272][ T7034] ___sys_sendmsg+0x220/0x290 [ 160.053525][ T7034] ? __sys_sendmsg+0x270/0x270 [ 160.058387][ T7034] __se_sys_sendmsg+0x1a5/0x270 [ 160.063368][ T7034] ? __x64_sys_sendmsg+0x80/0x80 [ 160.068448][ T7034] ? lockdep_hardirqs_on+0x98/0x150 [ 160.073695][ T7034] do_syscall_64+0x55/0xb0 [ 160.078147][ T7034] ? clear_bhb_loop+0x40/0x90 [ 160.082866][ T7034] ? clear_bhb_loop+0x40/0x90 [ 160.087584][ T7034] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 160.093521][ T7034] RIP: 0033:0x7f9fc538f749 [ 160.097971][ T7034] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 160.117790][ T7034] RSP: 002b:00007f9fc61b1038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 160.126252][ T7034] RAX: ffffffffffffffda RBX: 00007f9fc55e5fa0 RCX: 00007f9fc538f749 [ 160.134257][ T7034] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000003 [ 160.142360][ T7034] RBP: 00007f9fc5413f91 R08: 0000000000000000 R09: 0000000000000000 [ 160.150542][ T7034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 160.158640][ T7034] R13: 00007f9fc55e6038 R14: 00007f9fc55e5fa0 R15: 00007ffda39ca738 [ 160.166774][ T7034] [ 160.233405][ T7034] Mem-Info: [ 160.252827][ T7034] active_anon:34158 inactive_anon:0 isolated_anon:0 [ 160.252827][ T7034] active_file:11047 inactive_file:39966 isolated_file:0 [ 160.252827][ T7034] unevictable:768 dirty:28 writeback:0 [ 160.252827][ T7034] slab_reclaimable:10256 slab_unreclaimable:100345 [ 160.252827][ T7034] mapped:30377 shmem:26560 pagetables:700 [ 160.252827][ T7034] sec_pagetables:0 bounce:0 [ 160.252827][ T7034] kernel_misc_reclaimable:0 [ 160.252827][ T7034] free:1286422 free_pcp:6310 free_cma:0 [ 160.302279][ T7034] Node 0 active_anon:136732kB inactive_anon:0kB active_file:44188kB inactive_file:159660kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:121508kB dirty:112kB writeback:0kB shmem:104704kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12308kB pagetables:2800kB sec_pagetables:0kB all_unreclaimable? no [ 160.348906][ T7034] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 160.397595][ T7034] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 160.559845][ T7115] syz.4.365 (7115) used greatest stack depth: 17064 bytes left [ 160.604675][ T7034] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 160.624601][ T7034] Node 0 DMA32 free:1235112kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:139768kB inactive_anon:0kB active_file:44188kB inactive_file:158340kB unevictable:1536kB writepending:112kB present:3129332kB managed:2589640kB mlocked:0kB bounce:0kB free_pcp:4324kB local_pcp:2028kB free_cma:0kB [ 160.751375][ T7034] lowmem_reserve[]: 0 0 1 1 1 [ 160.774474][ T7034] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:0kB free_cma:0kB [ 160.875592][ T7034] lowmem_reserve[]: 0 0 0 0 0 [ 160.880548][ T7034] Node 1 Normal free:3891936kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:21220kB local_pcp:9444kB free_cma:0kB [ 160.953606][ T7034] lowmem_reserve[]: 0 0 0 0 0 [ 160.960086][ T7034] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 160.973119][ T7034] Node 0 DMA32: 4*4kB (UE) 4*8kB (ME) 1*16kB (E) 4*32kB (UE) 2*64kB (E) 1*128kB (M) 3*256kB (UME) 1*512kB (E) 1*1024kB (M) 3*2048kB (UME) 299*4096kB (M) = 1233600kB [ 160.990597][ T7034] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 161.003485][ T7034] Node 1 Normal: 266*4kB (U) 61*8kB (UME) 37*16kB (UME) 46*32kB (UME) 9*64kB (UE) 3*128kB (UM) 1*256kB (E) 2*512kB (ME) 1*1024kB (E) 1*2048kB (E) 948*4096kB (UM) = 3891936kB [ 161.021256][ T7034] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 161.031132][ T7034] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 161.040737][ T7034] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 161.050758][ T7034] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 161.060972][ T7034] 74715 total pagecache pages [ 161.065854][ T7034] 0 pages in swap cache [ 161.070134][ T7034] Free swap = 124984kB [ 161.080355][ T7034] Total swap = 124996kB [ 161.102858][ T7034] 2097051 pages RAM [ 161.114402][ T7034] 0 pages HighMem/MovableOnly [ 161.135066][ T7034] 416127 pages reserved [ 161.139634][ T7034] 0 pages cma reserved [ 161.678675][ T7088] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 10: padding at end of block bitmap is not set [ 161.726149][ T7137] netlink: 12 bytes leftover after parsing attributes in process `syz.4.374'. [ 161.783523][ T7137] loop4: detected capacity change from 0 to 512 [ 161.803530][ T7137] EXT4-fs: inline encryption not supported [ 161.834703][ T7137] EXT4-fs: inline encryption not supported [ 161.856948][ T7137] EXT4-fs: Ignoring removed bh option [ 161.862996][ T7141] netlink: 28 bytes leftover after parsing attributes in process `syz.3.375'. [ 161.888648][ T7137] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 161.950201][ T7137] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.974635][ T7137] ext4 filesystem being mounted at /63/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.036295][ T7137] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #4: comm syz.4.374: corrupted inode contents [ 162.154713][ T7137] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #4: comm syz.4.374: mark_inode_dirty error [ 162.610372][ T27] kauditd_printk_skb: 135 callbacks suppressed [ 162.610390][ T27] audit: type=1326 audit(1767600610.476:779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 162.641968][ T27] audit: type=1326 audit(1767600610.476:780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 162.664611][ T27] audit: type=1326 audit(1767600610.476:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 162.688060][ T27] audit: type=1326 audit(1767600610.476:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 162.711170][ T27] audit: type=1326 audit(1767600610.476:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 162.734114][ T27] audit: type=1326 audit(1767600610.476:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 162.757217][ T27] audit: type=1326 audit(1767600610.476:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.3.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 162.790145][ T7137] EXT4-fs error (device loop4): ext4_do_update_inode:5244: inode #4: comm syz.4.374: corrupted inode contents [ 162.853671][ T7137] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #4: comm syz.4.374: mark_inode_dirty error [ 162.905088][ T7137] Quota error (device loop4): write_blk: dquota write failed [ 162.934905][ T7137] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 162.955247][ T7137] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.374: Failed to acquire dquot type 1 [ 163.081580][ T6246] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.512824][ T7164] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 163.678301][ T7167] netlink: 12 bytes leftover after parsing attributes in process `syz.3.382'. [ 163.722056][ T7167] : entered promiscuous mode [ 164.087041][ T7175] bridge1: entered promiscuous mode [ 164.092446][ T7175] bridge1: entered allmulticast mode [ 164.114189][ T7175] team0: Port device bridge1 added [ 164.124020][ T27] audit: type=1326 audit(1767600611.986:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7176 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 164.488529][ T7183] loop4: detected capacity change from 0 to 128 [ 164.894751][ T7110] SET target dimension over the limit! [ 165.551369][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.620109][ T23] IPVS: starting estimator thread 0... [ 165.714720][ T7197] IPVS: using max 20 ests per chain, 48000 per kthread [ 165.801595][ T7204] loop2: detected capacity change from 0 to 1024 [ 165.868188][ T7204] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.952215][ T7204] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.165788][ T7214] program syz.1.398 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 166.560433][ T7225] netlink: 4 bytes leftover after parsing attributes in process `syz.4.404'. [ 166.594417][ T7225] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 166.601920][ T7225] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 166.635839][ T7225] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 166.653882][ T7225] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 167.169334][ T7238] loop1: detected capacity change from 0 to 128 [ 167.327673][ T7243] syz.1.410: attempt to access beyond end of device [ 167.327673][ T7243] loop1: rw=2049, sector=145, nr_sectors = 232 limit=128 [ 167.470149][ T7236] syz.1.410: attempt to access beyond end of device [ 167.470149][ T7236] loop1: rw=524288, sector=145, nr_sectors = 224 limit=128 [ 168.136024][ T7272] netlink: 'syz.4.421': attribute type 3 has an invalid length. [ 168.154397][ T7272] netlink: 'syz.4.421': attribute type 1 has an invalid length. [ 168.162314][ T7272] netlink: 181400 bytes leftover after parsing attributes in process `syz.4.421'. [ 168.458258][ T27] kauditd_printk_skb: 65 callbacks suppressed [ 168.458275][ T27] audit: type=1326 audit(1767600616.326:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 168.502065][ T27] audit: type=1326 audit(1767600616.356:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 168.525741][ T7282] lo speed is unknown, defaulting to 1000 [ 168.531705][ T7282] lo speed is unknown, defaulting to 1000 [ 168.545560][ T7282] lo speed is unknown, defaulting to 1000 [ 168.561658][ T27] audit: type=1326 audit(1767600616.356:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 168.589458][ T7282] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 168.611423][ T27] audit: type=1326 audit(1767600616.356:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 168.669775][ T7282] lo speed is unknown, defaulting to 1000 [ 168.691575][ T27] audit: type=1326 audit(1767600616.366:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 168.722305][ T7282] lo speed is unknown, defaulting to 1000 [ 168.734970][ T7282] lo speed is unknown, defaulting to 1000 [ 168.742823][ T7282] lo speed is unknown, defaulting to 1000 [ 168.774515][ T27] audit: type=1326 audit(1767600616.366:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=166 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 168.880364][ T27] audit: type=1326 audit(1767600616.366:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 168.919694][ T7286] loop4: detected capacity change from 0 to 512 [ 168.992944][ T27] audit: type=1326 audit(1767600616.366:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 169.031256][ T7286] Quota error (device loop4): v2_read_file_info: Free block number 1 out of range (1, 6). [ 169.045214][ T27] audit: type=1326 audit(1767600616.366:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.3.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 169.081650][ T7286] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 169.156243][ T7286] EXT4-fs (loop4): mount failed [ 169.423662][ T7299] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6) [ 169.430926][ T7299] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 169.473362][ T7299] vhci_hcd vhci_hcd.0: Device attached [ 169.500081][ T7304] vhci_hcd: connection closed [ 169.503393][ T1091] vhci_hcd: stop threads [ 169.515001][ T1091] vhci_hcd: release socket [ 169.519548][ T1091] vhci_hcd: disconnect device [ 170.625962][ T7342] netlink: 'syz.3.442': attribute type 10 has an invalid length. [ 170.654686][ T7342] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 170.748006][ T7344] 8021q: adding VLAN 0 to HW filter on device bond1 [ 171.239027][ T7347] loop3: detected capacity change from 0 to 8192 [ 171.522153][ T7349] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 171.768562][ T7349] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 171.891836][ T5770] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1) [ 171.907417][ T5770] FAT-fs (loop3): Filesystem has been set read-only [ 171.971142][ T7349] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.043546][ T7360] netlink: 8 bytes leftover after parsing attributes in process `syz.1.449'. [ 172.155989][ T7349] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.199286][ T7360] netlink: 8 bytes leftover after parsing attributes in process `syz.1.449'. [ 172.427241][ T7349] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 172.481396][ T7349] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 172.528135][ T7349] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 172.573602][ T7349] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 172.840022][ T7378] loop3: detected capacity change from 0 to 512 [ 172.847368][ T7376] 9pnet_virtio: no channels available for device [ 172.879881][ T7378] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 172.948425][ T7378] EXT4-fs (loop3): 1 truncate cleaned up [ 173.010403][ T7378] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 173.221386][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 173.442097][ T7392] loop3: detected capacity change from 0 to 1024 [ 173.469465][ T7392] EXT4-fs: inline encryption not supported [ 173.487589][ T7392] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 173.546276][ T7392] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 173.772710][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 174.034691][ T7404] netlink: 68 bytes leftover after parsing attributes in process `syz.1.468'. [ 174.454497][ T7406] netlink: 'syz.4.469': attribute type 13 has an invalid length. [ 174.816389][ T6852] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 174.846827][ T6852] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 174.872184][ T7429] syz.2.476[7429] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 174.872335][ T7429] syz.2.476[7429] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 175.033476][ T7430] fido_id[7430]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 175.557042][ T27] kauditd_printk_skb: 113 callbacks suppressed [ 175.557059][ T27] audit: type=1326 audit(1767600879.416:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.2.480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 175.632187][ T27] audit: type=1326 audit(1767600879.426:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.2.480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 175.717873][ T27] audit: type=1326 audit(1767600879.426:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.2.480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 175.775858][ T27] audit: type=1326 audit(1767600879.426:977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.2.480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 175.829699][ T27] audit: type=1326 audit(1767600879.426:978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.2.480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 175.894405][ T27] audit: type=1326 audit(1767600879.426:979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.2.480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 175.954528][ T27] audit: type=1326 audit(1767600879.426:980): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.2.480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 175.977689][ T7446] loop4: detected capacity change from 0 to 512 [ 176.008435][ T7446] EXT4-fs: Ignoring removed i_version option [ 176.029808][ T27] audit: type=1326 audit(1767600879.426:981): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.2.480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 176.053157][ T7446] EXT4-fs: Ignoring removed bh option [ 176.075072][ T27] audit: type=1326 audit(1767600879.426:982): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.2.480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 176.109150][ T27] audit: type=1326 audit(1767600879.426:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7438 comm="syz.2.480" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 176.172600][ T7446] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 176.214094][ T7446] ext4 filesystem being mounted at /85/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 176.268224][ T7446] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 176.736730][ T6246] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 176.753971][ T7451] loop1: detected capacity change from 0 to 1024 [ 176.763755][ T7451] EXT4-fs: Ignoring removed bh option [ 176.873975][ T7451] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 177.089426][ T7464] loop2: detected capacity change from 0 to 164 [ 177.468808][ T5769] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 177.730353][ T7483] SET target dimension over the limit! [ 177.749966][ T7478] lo speed is unknown, defaulting to 1000 [ 178.660137][ T7507] netlink: 32 bytes leftover after parsing attributes in process `syz.3.507'. [ 178.786245][ T7510] netlink: 4 bytes leftover after parsing attributes in process `syz.2.508'. [ 178.880697][ T7478] lo speed is unknown, defaulting to 1000 [ 179.065283][ T7515] loop1: detected capacity change from 0 to 164 [ 179.536100][ T7517] loop1: detected capacity change from 0 to 2048 [ 179.988676][ T7517] loop1: unable to read partition table [ 179.994836][ T7517] loop_reread_partitions: partition scan of loop1 () failed (rc=-5) [ 180.038084][ T7515] lo speed is unknown, defaulting to 1000 [ 180.251543][ T7515] lo speed is unknown, defaulting to 1000 [ 180.502501][ T7527] syz.3.512[7527] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 180.502645][ T7527] syz.3.512[7527] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 181.661865][ T7553] loop3: detected capacity change from 0 to 512 [ 181.743974][ T7553] EXT4-fs: Ignoring removed i_version option [ 181.796744][ T7553] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 181.850182][ T27] kauditd_printk_skb: 22 callbacks suppressed [ 181.850196][ T27] audit: type=1800 audit(1767600885.716:1006): pid=7553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.523" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 181.992634][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.640179][ T7569] can0: slcan on ptm0. [ 182.671883][ T7569] hub 9-0:1.0: USB hub found [ 182.691771][ T7569] hub 9-0:1.0: 1 port detected [ 182.806149][ T7568] can0 (unregistered): slcan off ptm0. [ 183.041875][ T27] audit: type=1326 audit(1767600886.906:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7579 comm="syz.4.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 183.143402][ T27] audit: type=1326 audit(1767600886.906:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7579 comm="syz.4.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 183.222096][ T7580] loop4: detected capacity change from 0 to 2048 [ 183.234444][ T27] audit: type=1326 audit(1767600886.906:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7579 comm="syz.4.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 183.318946][ T27] audit: type=1326 audit(1767600886.906:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7579 comm="syz.4.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 183.412804][ T7580] EXT4-fs (loop4): failed to initialize system zone (-117) [ 183.432050][ T27] audit: type=1326 audit(1767600886.906:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7579 comm="syz.4.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 183.463849][ T7580] EXT4-fs (loop4): mount failed [ 183.471685][ T27] audit: type=1326 audit(1767600886.906:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7579 comm="syz.4.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 183.577501][ T27] audit: type=1326 audit(1767600886.906:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7579 comm="syz.4.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 183.675025][ T27] audit: type=1326 audit(1767600886.906:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7579 comm="syz.4.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 183.719396][ T7602] netlink: 8 bytes leftover after parsing attributes in process `syz.4.533'. [ 183.756224][ T27] audit: type=1326 audit(1767600886.906:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7579 comm="syz.4.533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 184.122463][ T6852] IPVS: starting estimator thread 0... [ 184.234531][ T7615] IPVS: using max 18 ests per chain, 43200 per kthread [ 184.329741][ T7624] netlink: 'syz.4.543': attribute type 1 has an invalid length. [ 184.358277][ T7624] netlink: 224 bytes leftover after parsing attributes in process `syz.4.543'. [ 184.923691][ T7593] warn_alloc: 3 callbacks suppressed [ 184.923709][ T7593] syz.1.536: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1 [ 184.988426][ T7593] CPU: 1 PID: 7593 Comm: syz.1.536 Not tainted syzkaller #0 [ 184.995815][ T7593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 185.005967][ T7593] Call Trace: [ 185.009305][ T7593] [ 185.012335][ T7593] dump_stack_lvl+0x16c/0x230 [ 185.017109][ T7593] ? show_regs_print_info+0x20/0x20 [ 185.022388][ T7593] ? load_image+0x3b0/0x3b0 [ 185.026977][ T7593] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 185.033459][ T7593] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 185.040051][ T7593] warn_alloc+0x210/0x300 [ 185.044454][ T7593] ? zone_watermark_ok_safe+0x230/0x230 [ 185.050077][ T7593] ? _raw_spin_unlock+0x28/0x40 [ 185.055081][ T7593] __vmalloc_node_range+0x662/0x1320 [ 185.060530][ T7593] ? __asan_memset+0x22/0x40 [ 185.065235][ T7593] ? free_vm_area+0x50/0x50 [ 185.069816][ T7593] ? kvmalloc_node+0x70/0x180 [ 185.074568][ T7593] ? rcu_is_watching+0x15/0xb0 [ 185.079395][ T7593] ? kvmalloc_node+0x70/0x180 [ 185.084134][ T7593] ? trace_kmalloc+0x1f/0xa0 [ 185.088792][ T7593] kvmalloc_node+0x13f/0x180 [ 185.093440][ T7593] ? translate_table+0x19c/0x2020 [ 185.098553][ T7593] translate_table+0x19c/0x2020 [ 185.103493][ T7593] ? ip6t_register_table+0x7b0/0x7b0 [ 185.108979][ T7593] ? __might_fault+0xaa/0x120 [ 185.113735][ T7593] ? __lock_acquire+0x7c80/0x7c80 [ 185.118838][ T7593] ? __virt_addr_valid+0x18c/0x540 [ 185.124039][ T7593] ? __might_fault+0xaa/0x120 [ 185.128796][ T7593] ? __might_fault+0xc6/0x120 [ 185.133563][ T7593] ? __might_fault+0xaa/0x120 [ 185.138349][ T7593] do_ip6t_set_ctl+0x969/0xcd0 [ 185.143477][ T7593] ? ip6t_unregister_table_exit+0x230/0x230 [ 185.149549][ T7593] ? __lock_acquire+0x7c80/0x7c80 [ 185.154654][ T7593] ? rcu_is_watching+0x15/0xb0 [ 185.159527][ T7593] ? trace_contention_end+0x39/0xe0 [ 185.164804][ T7593] ? __mutex_unlock_slowpath+0x1a2/0x6a0 [ 185.170511][ T7593] ? mutex_unlock+0x10/0x10 [ 185.175072][ T7593] ? __might_sleep+0xe0/0xe0 [ 185.179766][ T7593] ? mutex_lock_nested+0x20/0x20 [ 185.184782][ T7593] nf_setsockopt+0x263/0x280 [ 185.189455][ T7593] ? sock_common_recvmsg+0x1b0/0x1b0 [ 185.194812][ T7593] smc_setsockopt+0x229/0xab0 [ 185.199562][ T7593] ? smc_shutdown+0x9b0/0x9b0 [ 185.204404][ T7593] ? __fget_files+0x28/0x4d0 [ 185.209074][ T7593] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 185.214691][ T7593] ? security_socket_setsockopt+0x7e/0xa0 [ 185.220474][ T7593] ? smc_shutdown+0x9b0/0x9b0 [ 185.225218][ T7593] do_sock_setsockopt+0x175/0x1a0 [ 185.230318][ T7593] ? __fdget+0x180/0x210 [ 185.234655][ T7593] __x64_sys_setsockopt+0x184/0x200 [ 185.240015][ T7593] do_syscall_64+0x55/0xb0 [ 185.244677][ T7593] ? clear_bhb_loop+0x40/0x90 [ 185.249418][ T7593] ? clear_bhb_loop+0x40/0x90 [ 185.254167][ T7593] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 185.260133][ T7593] RIP: 0033:0x7f4fd218f749 [ 185.264613][ T7593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.284298][ T7593] RSP: 002b:00007f4fd2f5f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 185.292868][ T7593] RAX: ffffffffffffffda RBX: 00007f4fd23e5fa0 RCX: 00007f4fd218f749 [ 185.301005][ T7593] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003 [ 185.309122][ T7593] RBP: 00007f4fd2213f91 R08: 0000000000000330 R09: 0000000000000000 [ 185.317164][ T7593] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000 [ 185.325203][ T7593] R13: 00007f4fd23e6038 R14: 00007f4fd23e5fa0 R15: 00007ffe9b7da498 [ 185.333358][ T7593] [ 185.362818][ T7593] Mem-Info: [ 185.377894][ T7593] active_anon:25751 inactive_anon:380 isolated_anon:0 [ 185.377894][ T7593] active_file:11047 inactive_file:39972 isolated_file:0 [ 185.377894][ T7593] unevictable:768 dirty:95 writeback:0 [ 185.377894][ T7593] slab_reclaimable:10319 slab_unreclaimable:98949 [ 185.377894][ T7593] mapped:26664 shmem:20704 pagetables:674 [ 185.377894][ T7593] sec_pagetables:0 bounce:0 [ 185.377894][ T7593] kernel_misc_reclaimable:0 [ 185.377894][ T7593] free:1308347 free_pcp:10653 free_cma:0 [ 185.491725][ T7646] lo speed is unknown, defaulting to 1000 [ 185.535181][ T7593] Node 0 active_anon:104936kB inactive_anon:1520kB active_file:44188kB inactive_file:159684kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:106888kB dirty:376kB writeback:0kB shmem:81472kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12472kB pagetables:2736kB sec_pagetables:0kB all_unreclaimable? no [ 185.624422][ T7593] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 185.671909][ T7593] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 185.727920][ T7593] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 185.733806][ T7593] Node 0 DMA32 free:1325900kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:102788kB inactive_anon:20kB active_file:44188kB inactive_file:158364kB unevictable:1536kB writepending:376kB present:3129332kB managed:2589640kB mlocked:0kB bounce:0kB free_pcp:22436kB local_pcp:1484kB free_cma:0kB [ 185.820811][ T7593] lowmem_reserve[]: 0 0 1 1 1 [ 185.857761][ T7593] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB [ 185.922628][ T7593] lowmem_reserve[]: 0 0 0 0 0 [ 185.928521][ T7593] Node 1 Normal free:3892192kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:21124kB local_pcp:11552kB free_cma:0kB [ 185.980369][ T7593] lowmem_reserve[]: 0 0 0 0 0 [ 185.991095][ T7593] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 186.009150][ T7593] Node 0 DMA32: 68*4kB (ME) 19*8kB (UME) 199*16kB (ME) 194*32kB (ME) 31*64kB (ME) 35*128kB (ME) 76*256kB (UM) 71*512kB (UM) 22*1024kB (UM) 3*2048kB (UME) 299*4096kB (UM) = 1325464kB [ 186.037068][ T7593] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 186.051279][ T7593] Node 1 Normal: 266*4kB (U) 61*8kB (UME) 37*16kB (UME) 52*32kB (UME) 10*64kB (UE) 3*128kB (UM) 1*256kB (E) 2*512kB (ME) 1*1024kB (E) 1*2048kB (E) 948*4096kB (UM) = 3892192kB [ 186.073490][ T7593] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 186.084043][ T7593] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 186.118202][ T7593] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 186.131606][ T7593] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 186.188610][ T7593] 72832 total pagecache pages [ 186.203682][ T7593] 12 pages in swap cache [ 186.223911][ T7593] Free swap = 124436kB [ 186.237833][ T7593] Total swap = 124996kB [ 186.251096][ T7593] 2097051 pages RAM [ 186.261190][ T7593] 0 pages HighMem/MovableOnly [ 186.271320][ T7593] 416127 pages reserved [ 186.281486][ T7593] 0 pages cma reserved [ 186.667388][ T7646] lo speed is unknown, defaulting to 1000 [ 187.193069][ T7677] loop4: detected capacity change from 0 to 512 [ 187.260990][ T7677] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 187.370824][ T7677] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 187.394403][ T7677] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 187.611864][ T6246] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.628911][ T7686] tipc: Started in network mode [ 187.633965][ T7686] tipc: Node identity ac14140f, cluster identity 4711 [ 187.656652][ T7686] tipc: New replicast peer: 255.255.255.83 [ 187.716842][ T7686] tipc: Enabled bearer , priority 10 [ 187.830426][ T27] kauditd_printk_skb: 70 callbacks suppressed [ 187.830453][ T27] audit: type=1326 audit(1767600891.696:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.4.562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 187.947134][ T27] audit: type=1326 audit(1767600891.726:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.4.562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 188.024392][ T27] audit: type=1326 audit(1767600891.736:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.4.562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=217 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 188.082585][ T7693] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 188.085133][ T27] audit: type=1326 audit(1767600891.736:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.4.562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 188.812939][ T6852] tipc: Node number set to 2886997007 [ 189.086245][ T27] audit: type=1326 audit(1767600892.956:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 189.143995][ T27] audit: type=1326 audit(1767600892.976:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 189.211408][ T27] audit: type=1326 audit(1767600892.976:1092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 189.304451][ T27] audit: type=1326 audit(1767600892.976:1093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 189.344465][ T27] audit: type=1326 audit(1767600892.976:1094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 189.425561][ T27] audit: type=1326 audit(1767600892.986:1095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 189.555373][ T7716] loop3: detected capacity change from 0 to 512 [ 189.628312][ T7716] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 189.639139][ T7716] EXT4-fs (loop3): orphan cleanup on readonly fs [ 189.650577][ T7716] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.574: Failed to acquire dquot type 1 [ 189.677415][ T7716] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.574: bg 0: block 40: padding at end of block bitmap is not set [ 189.699836][ T7716] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 189.735389][ T7716] EXT4-fs (loop3): 1 truncate cleaned up [ 189.742642][ T7716] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 189.844562][ T7716] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 189.991773][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 190.440427][ T7735] loop3: detected capacity change from 0 to 512 [ 190.472945][ T7735] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 191.121328][ T7735] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 191.209408][ T7735] ext4 filesystem being mounted at /182/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 191.520797][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.575594][ T7749] netlink: 16 bytes leftover after parsing attributes in process `syz.2.584'. [ 191.668839][ T7752] loop1: detected capacity change from 0 to 128 [ 191.695928][ T7752] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 191.765503][ T7752] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 192.580024][ T49] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 193.027558][ T7782] loop1: detected capacity change from 0 to 512 [ 193.093080][ T7782] EXT4-fs error (device loop1): ext4_xattr_inode_iget:449: comm syz.1.597: error while reading EA inode 32 err=-116 [ 193.180838][ T7782] EXT4-fs (loop1): Remounting filesystem read-only [ 193.214536][ T7782] EXT4-fs warning (device loop1): ext4_evict_inode:255: couldn't mark inode dirty (err -5) [ 193.249108][ T7782] EXT4-fs (loop1): 1 orphan inode deleted [ 193.308914][ T7782] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 193.337833][ T7782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.354360][ T27] kauditd_printk_skb: 62 callbacks suppressed [ 194.354375][ T27] audit: type=1326 audit(1767600898.216:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 194.444855][ T27] audit: type=1326 audit(1767600898.216:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 194.489304][ T27] audit: type=1326 audit(1767600898.216:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 194.512582][ T27] audit: type=1326 audit(1767600898.216:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 194.552635][ T27] audit: type=1326 audit(1767600898.216:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 194.576519][ T27] audit: type=1326 audit(1767600898.216:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 194.602166][ T27] audit: type=1326 audit(1767600898.216:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 194.625182][ T27] audit: type=1326 audit(1767600898.226:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 194.664717][ T27] audit: type=1326 audit(1767600898.226:1164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 194.715935][ T27] audit: type=1326 audit(1767600898.226:1165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7821 comm="syz.1.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 194.815451][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.824614][ T1279] ieee802154 phy1 wpan1: encryption failed: -22 [ 195.559634][ T7842] loop3: detected capacity change from 0 to 164 [ 196.048375][ T7843] loop4: detected capacity change from 0 to 512 [ 196.397953][ T7843] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 196.435975][ T7843] EXT4-fs (loop4): mount failed [ 196.559362][ T7840] lo: Caught tx_queue_len zero misconfig [ 196.674810][ T7856] ªªªªªª: renamed from vlan0 (while UP) [ 197.279756][ T7872] loop2: detected capacity change from 0 to 164 [ 198.327687][ T7880] loop1: detected capacity change from 0 to 1024 [ 198.365543][ T7880] EXT4-fs: Ignoring removed nomblk_io_submit option [ 198.448451][ T7882] netlink: 96 bytes leftover after parsing attributes in process `syz.4.636'. [ 198.466315][ T7880] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 198.580484][ T5769] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.725623][ T7893] netlink: 9 bytes leftover after parsing attributes in process `syz.1.639'. [ 198.759707][ T7893] netlink: 9 bytes leftover after parsing attributes in process `syz.1.639'. [ 198.785614][ T7889] loop3: detected capacity change from 0 to 1024 [ 198.818696][ T7889] EXT4-fs: inline encryption not supported [ 198.849229][ T7889] EXT4-fs: Ignoring removed orlov option [ 198.946407][ T7895] usb usb1: usbfs: interface 0 claimed by hub while 'syz.4.641' sets config #0 [ 198.965847][ T7889] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c019, mo2=0002] [ 198.990130][ T7889] System zones: 0-1, 3-12 [ 199.011848][ T7889] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 199.215700][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.308364][ T7903] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 199.666751][ T7909] loop4: detected capacity change from 0 to 164 [ 200.570490][ T7912] netlink: 24 bytes leftover after parsing attributes in process `syz.3.645'. [ 200.916541][ T27] kauditd_printk_skb: 74 callbacks suppressed [ 200.916559][ T27] audit: type=1326 audit(1767600904.786:1239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7928 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 200.990933][ T27] audit: type=1326 audit(1767600904.786:1240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7928 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 201.065580][ T27] audit: type=1326 audit(1767600904.816:1241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7928 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 201.146430][ T27] audit: type=1326 audit(1767600904.816:1242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7928 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 201.196175][ T27] audit: type=1326 audit(1767600904.816:1243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7928 comm="syz.2.655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 201.875225][ T7946] loop1: detected capacity change from 0 to 164 [ 203.036049][ T7957] loop2: detected capacity change from 0 to 512 [ 203.055677][ T7957] EXT4-fs: Ignoring removed nomblk_io_submit option [ 203.163096][ T7957] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 203.214413][ T7957] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 203.330115][ T7957] Quota error (device loop2): do_check_range: Getting dqdh_next_free 31 out of range 0-5 [ 203.345213][ T7957] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 203.356197][ T7957] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.666: Failed to acquire dquot type 1 [ 203.391143][ T7957] EXT4-fs error (device loop2): mb_free_blocks:1938: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 203.425813][ T7957] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #12: comm syz.2.666: corrupted inode contents [ 203.474872][ T7957] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #12: comm syz.2.666: mark_inode_dirty error [ 203.525077][ T7957] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #12: comm syz.2.666: corrupted inode contents [ 203.578026][ T7957] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #12: comm syz.2.666: mark_inode_dirty error [ 203.607821][ T7957] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #12: comm syz.2.666: corrupted inode contents [ 203.621190][ T7971] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 203.649364][ T7957] EXT4-fs error (device loop2) in ext4_orphan_del:301: Corrupt filesystem [ 203.743190][ T7957] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #12: comm syz.2.666: corrupted inode contents [ 203.792734][ T7957] EXT4-fs error (device loop2): ext4_truncate:4294: inode #12: comm syz.2.666: mark_inode_dirty error [ 203.830517][ T7957] EXT4-fs error (device loop2) in ext4_process_orphan:343: Corrupt filesystem [ 204.101555][ T7978] loop4: detected capacity change from 0 to 164 [ 207.091026][ T7976] sched: RT throttling activated [ 209.365175][ T7957] EXT4-fs (loop2): 1 truncate cleaned up [ 209.375063][ T6636] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 209.397172][ T7957] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 209.541080][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.701391][ T7985] lo speed is unknown, defaulting to 1000 [ 209.939496][ T7995] loop4: detected capacity change from 0 to 1024 [ 209.957405][ T7995] EXT4-fs: inline encryption not supported [ 209.963402][ T7995] EXT4-fs: Ignoring removed orlov option [ 210.028469][ T7995] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 210.074320][ T7995] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e800c018, mo2=0002] [ 210.114538][ T7995] System zones: 0-1, 3-12 [ 210.120853][ T7995] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 210.218710][ T27] audit: type=1800 audit(1767600914.086:1244): pid=7995 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.678" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 210.358201][ T8001] loop3: detected capacity change from 0 to 1024 [ 210.385610][ T6246] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 210.408360][ T8001] EXT4-fs: Ignoring removed nobh option [ 210.466803][ T8001] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 210.559985][ T8001] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a856c118, mo2=0002] [ 210.604636][ T8001] System zones: 1-12 [ 210.610535][ T8001] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 210.639090][ T27] audit: type=1326 audit(1767600914.506:1245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 210.705700][ T27] audit: type=1326 audit(1767600914.556:1246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=314 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 210.794372][ T27] audit: type=1326 audit(1767600914.556:1247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 210.865450][ T27] audit: type=1326 audit(1767600914.556:1248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 210.926024][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 210.935367][ T27] audit: type=1326 audit(1767600914.556:1249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 211.005903][ T27] audit: type=1326 audit(1767600914.596:1250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 211.065765][ T27] audit: type=1326 audit(1767600914.596:1251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 211.167830][ T27] audit: type=1326 audit(1767600914.596:1252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 211.261676][ T27] audit: type=1326 audit(1767600914.996:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 211.414958][ T7985] lo speed is unknown, defaulting to 1000 [ 211.518391][ T8021] loop4: detected capacity change from 0 to 164 [ 212.038844][ T8035] netlink: 24 bytes leftover after parsing attributes in process `syz.2.692'. [ 212.234963][ T5777] Bluetooth: hci1: command 0x0406 tx timeout [ 212.242107][ T5083] Bluetooth: hci2: command 0x0406 tx timeout [ 212.248602][ T5083] Bluetooth: hci3: command 0x0406 tx timeout [ 212.550109][ T8046] loop2: detected capacity change from 0 to 164 [ 214.050978][ T8069] loop2: detected capacity change from 0 to 164 [ 214.116904][ T6636] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 214.323288][ T8073] netlink: 8 bytes leftover after parsing attributes in process `syz.2.707'. [ 216.558236][ T8110] syz.2.723[8110] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 216.558392][ T8110] syz.2.723[8110] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 216.772650][ T8114] Cannot find add_set index 0 as target [ 218.325089][ T8126] loop4: detected capacity change from 0 to 2048 [ 219.401064][ T8126] Alternate GPT is invalid, using primary GPT. [ 219.410400][ T8126] loop4: p2 p3 p7 [ 219.516580][ T8129] ip6t_rpfilter: unknown options [ 220.480708][ T8149] bond0: Caught tx_queue_len zero misconfig [ 221.099627][ T8166] loop2: detected capacity change from 0 to 164 [ 221.881965][ T8172] Invalid argument reading file caps for ./file0 [ 221.915459][ T27] kauditd_printk_skb: 440 callbacks suppressed [ 221.915476][ T27] audit: type=1326 audit(1767600925.776:1694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8171 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 222.012151][ T27] audit: type=1326 audit(1767600925.776:1695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8171 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 222.074771][ T27] audit: type=1326 audit(1767600925.786:1696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8171 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 222.161959][ T27] audit: type=1326 audit(1767600925.786:1697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8171 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 222.203905][ T27] audit: type=1326 audit(1767600925.786:1698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8171 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 222.266797][ T27] audit: type=1326 audit(1767600925.786:1699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8171 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 222.324166][ T27] audit: type=1326 audit(1767600925.786:1700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8171 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 222.355553][ T27] audit: type=1326 audit(1767600925.786:1701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8171 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 222.381760][ T27] audit: type=1326 audit(1767600925.786:1702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8171 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 222.408658][ T27] audit: type=1326 audit(1767600925.786:1703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8171 comm="syz.4.748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 222.556128][ T8190] program syz.2.755 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 223.711193][ T8200] loop3: detected capacity change from 0 to 164 [ 223.745542][ T8200] Unsupported NM flag settings (240) [ 224.480437][ T8217] syzkaller1: entered promiscuous mode [ 224.495054][ T8217] syzkaller1: entered allmulticast mode [ 224.957089][ T8221] loop4: detected capacity change from 0 to 164 [ 225.822847][ T8225] IPVS: Error connecting to the multicast addr [ 226.347206][ T8247] loop2: detected capacity change from 0 to 1024 [ 226.355746][ T8247] EXT4-fs: Ignoring removed orlov option [ 226.582960][ T8249] loop3: detected capacity change from 0 to 164 [ 228.121246][ T8249] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet. [ 228.163220][ T8247] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 228.413782][ T27] kauditd_printk_skb: 20 callbacks suppressed [ 228.413799][ T27] audit: type=1800 audit(1767600932.276:1724): pid=8247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.777" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 228.477533][ T27] audit: type=1804 audit(1767600932.336:1725): pid=8247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.777" name="/newroot/210/bus/bus" dev="loop2" ino=18 res=1 errno=0 [ 228.676699][ T8261] xt_CT: You must specify a L4 protocol and not use inversions on it [ 228.707796][ T8261] netlink: 8 bytes leftover after parsing attributes in process `syz.2.777'. [ 228.872421][ T8261] mmap: syz.2.777 (8261) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 229.181535][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.630922][ T8290] bridge0: port 3(gretap0) entered blocking state [ 230.646634][ T8290] bridge0: port 3(gretap0) entered disabled state [ 230.665369][ T8290] gretap0: entered allmulticast mode [ 230.686341][ T8290] gretap0: entered promiscuous mode [ 230.702912][ T8290] bridge0: port 3(gretap0) entered blocking state [ 230.710206][ T8290] bridge0: port 3(gretap0) entered forwarding state [ 230.722898][ T8293] gretap0: left allmulticast mode [ 230.729080][ T8293] gretap0: left promiscuous mode [ 230.738280][ T8293] bridge0: port 3(gretap0) entered disabled state [ 231.034465][ T5771] Bluetooth: hci4: command 0x1003 tx timeout [ 231.034502][ T5772] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 231.509685][ T8307] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 232.822473][ T8314] loop4: detected capacity change from 0 to 512 [ 233.008054][ T8314] EXT4-fs (loop4): 1 orphan inode deleted [ 233.017091][ T8314] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 233.033301][ T1106] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 233.045975][ T1106] EXT4-fs error (device loop4): ext4_release_dquot:6969: comm kworker/u4:7: Failed to release dquot type 1 [ 233.056285][ T8319] ip6t_rpfilter: unknown options [ 233.079955][ T8314] ext4 filesystem being mounted at /158/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 233.244127][ T6246] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.400778][ T8328] netlink: 36 bytes leftover after parsing attributes in process `syz.4.808'. [ 233.676235][ T27] audit: type=1326 audit(1767600937.546:1726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8335 comm="syz.1.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 233.735642][ T27] audit: type=1326 audit(1767600937.566:1727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8335 comm="syz.1.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 233.788398][ T27] audit: type=1326 audit(1767600937.566:1728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8335 comm="syz.1.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 233.845795][ T27] audit: type=1326 audit(1767600937.566:1729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8335 comm="syz.1.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 233.901673][ T27] audit: type=1326 audit(1767600937.566:1730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8335 comm="syz.1.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 233.901731][ T27] audit: type=1326 audit(1767600937.566:1731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8335 comm="syz.1.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 233.901779][ T27] audit: type=1326 audit(1767600937.566:1732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8335 comm="syz.1.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 233.901825][ T27] audit: type=1326 audit(1767600937.566:1733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8335 comm="syz.1.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 233.901871][ T27] audit: type=1326 audit(1767600937.566:1734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8335 comm="syz.1.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 233.901919][ T27] audit: type=1326 audit(1767600937.566:1735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8335 comm="syz.1.812" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 235.318595][ T8352] loop2: detected capacity change from 0 to 2048 [ 235.761111][ T8358] infiniband syb2: RDMA CMA: cma_listen_on_dev, error -98 [ 236.972717][ T8377] loop4: detected capacity change from 0 to 164 [ 237.723095][ T8381] IPv6: Can't replace route, no match found [ 238.137778][ T8398] netlink: 40 bytes leftover after parsing attributes in process `syz.1.837'. [ 238.170573][ T8398] ip6gre1: entered promiscuous mode [ 238.187754][ T8398] ip6gre1: entered allmulticast mode [ 238.635645][ T8413] loop2: detected capacity change from 0 to 164 [ 238.874840][ T27] kauditd_printk_skb: 25 callbacks suppressed [ 238.874856][ T27] audit: type=1326 audit(1767600942.746:1761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8411 comm="syz.3.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 239.264531][ T27] audit: type=1326 audit(1767600942.776:1762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8411 comm="syz.3.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 239.396134][ T27] audit: type=1326 audit(1767600942.776:1763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8411 comm="syz.3.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 239.423434][ T27] audit: type=1326 audit(1767600942.806:1764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8411 comm="syz.3.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 239.501744][ T27] audit: type=1326 audit(1767600942.806:1765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8411 comm="syz.3.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 239.583094][ T27] audit: type=1326 audit(1767600942.866:1766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8411 comm="syz.3.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 239.684012][ T27] audit: type=1326 audit(1767600942.866:1768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8411 comm="syz.3.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 239.750423][ T27] audit: type=1326 audit(1767600942.866:1767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8411 comm="syz.3.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 239.804359][ T27] audit: type=1326 audit(1767600942.926:1769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8411 comm="syz.3.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 239.877652][ T27] audit: type=1326 audit(1767600943.026:1771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8411 comm="syz.3.843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 240.548182][ T8446] loop4: detected capacity change from 0 to 164 [ 242.157231][ T8460] syz.4.861 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 242.407415][ T8463] syz.1.862[8463] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 242.407557][ T8463] syz.1.862[8463] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 242.772150][ T8476] loop3: detected capacity change from 0 to 1024 [ 242.834570][ T8476] EXT4-fs: Ignoring removed orlov option [ 242.940846][ T8477] wireguard0: entered promiscuous mode [ 242.960622][ T5771] Bluetooth: hci0: command 0x0406 tx timeout [ 242.981582][ T8476] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 243.873400][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.515412][ T27] kauditd_printk_skb: 61 callbacks suppressed [ 244.515429][ T27] audit: type=1326 audit(1767600948.386:1832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8506 comm="syz.3.876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 244.577698][ T8509] netlink: 76 bytes leftover after parsing attributes in process `syz.2.877'. [ 244.605191][ T27] audit: type=1326 audit(1767600948.386:1833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8506 comm="syz.3.876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 244.691452][ T27] audit: type=1326 audit(1767600948.386:1834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8506 comm="syz.3.876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 244.790388][ T8513] pim6reg: entered allmulticast mode [ 244.792544][ T27] audit: type=1326 audit(1767600948.386:1835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8506 comm="syz.3.876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 244.846252][ T8513] team0: entered allmulticast mode [ 244.874793][ T8513] team_slave_0: entered allmulticast mode [ 244.880626][ T8513] team_slave_1: entered allmulticast mode [ 245.282041][ T8525] loop4: detected capacity change from 0 to 164 [ 245.925193][ T8522] netlink: 8 bytes leftover after parsing attributes in process `syz.2.880'. [ 246.117248][ T27] audit: type=1326 audit(1767600949.986:1836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8529 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 246.171590][ T27] audit: type=1326 audit(1767600949.986:1837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8529 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 246.225469][ T27] audit: type=1326 audit(1767600950.036:1838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8529 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 246.275836][ T27] audit: type=1326 audit(1767600950.036:1839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8529 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 246.338655][ T27] audit: type=1326 audit(1767600950.036:1840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8529 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 246.402672][ T27] audit: type=1326 audit(1767600950.036:1841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8529 comm="syz.1.883" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 246.766926][ T8549] netlink: 332 bytes leftover after parsing attributes in process `syz.4.891'. [ 247.060460][ T8559] loop3: detected capacity change from 0 to 512 [ 247.250001][ T8559] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.895: Failed to acquire dquot type 1 [ 247.282036][ T8559] EXT4-fs (loop3): 1 truncate cleaned up [ 247.295863][ T8559] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 247.592155][ T8559] ext4 filesystem being mounted at /252/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 248.062524][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.756770][ T8578] random: crng reseeded on system resumption [ 249.532863][ T8596] loop2: detected capacity change from 0 to 164 [ 250.195505][ T8598] netlink: 'syz.3.910': attribute type 39 has an invalid length. [ 250.497952][ T8609] syz.4.914[8609] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 250.498102][ T8609] syz.4.914[8609] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 250.669180][ T27] kauditd_printk_skb: 36 callbacks suppressed [ 250.669197][ T27] audit: type=1326 audit(1767600954.536:1876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8612 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 250.864048][ T27] audit: type=1326 audit(1767600954.586:1877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8612 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 250.931718][ T27] audit: type=1326 audit(1767600954.586:1878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8612 comm="syz.1.916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4fd218f749 code=0x7ffc0000 [ 252.915854][ T8664] loop4: detected capacity change from 0 to 1024 [ 252.923483][ T8664] EXT4-fs: Ignoring removed nobh option [ 252.929806][ T8664] EXT4-fs: inline encryption not supported [ 252.937771][ T8664] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 252.996824][ T8664] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 253.161260][ T6246] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 253.327558][ T27] audit: type=1326 audit(1767600957.196:1879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 253.396683][ T27] audit: type=1326 audit(1767600957.196:1880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 253.469483][ T27] audit: type=1326 audit(1767600957.196:1881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 253.555240][ T27] audit: type=1326 audit(1767600957.196:1882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 253.599305][ T27] audit: type=1326 audit(1767600957.206:1883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 253.632538][ T27] audit: type=1326 audit(1767600957.206:1884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 253.674428][ T27] audit: type=1326 audit(1767600957.206:1885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8671 comm="syz.3.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 253.860655][ T8684] netlink: 4 bytes leftover after parsing attributes in process `syz.1.942'. [ 254.588247][ T8704] netlink: 134744 bytes leftover after parsing attributes in process `syz.1.951'. [ 254.743541][ T8705] loop3: detected capacity change from 0 to 164 [ 254.797893][ T6636] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 255.524124][ T8733] netlink: 'syz.1.961': attribute type 3 has an invalid length. [ 255.539217][ T8733] netlink: 'syz.1.961': attribute type 3 has an invalid length. [ 255.678489][ T27] kauditd_printk_skb: 310 callbacks suppressed [ 255.678506][ T27] audit: type=1326 audit(1767600959.546:2196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8730 comm="syz.3.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 255.739712][ T27] audit: type=1326 audit(1767600959.576:2197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8730 comm="syz.3.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 255.768586][ T27] audit: type=1326 audit(1767600959.576:2198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8730 comm="syz.3.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 255.796196][ T27] audit: type=1326 audit(1767600959.586:2199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8730 comm="syz.3.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 255.831644][ T27] audit: type=1326 audit(1767600959.586:2200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8730 comm="syz.3.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 255.871181][ T27] audit: type=1326 audit(1767600959.586:2201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8730 comm="syz.3.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 255.919408][ T27] audit: type=1326 audit(1767600959.586:2202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8730 comm="syz.3.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 255.994789][ T27] audit: type=1326 audit(1767600959.586:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8730 comm="syz.3.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 256.063655][ T27] audit: type=1326 audit(1767600959.586:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8730 comm="syz.3.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 256.137806][ T27] audit: type=1326 audit(1767600959.586:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8730 comm="syz.3.960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7f698c98f749 code=0x7ffc0000 [ 256.163686][ T8745] loop3: detected capacity change from 0 to 1024 [ 256.185556][ T8745] EXT4-fs: Ignoring removed nobh option [ 256.191212][ T8745] EXT4-fs: inline encryption not supported [ 256.231536][ T8745] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 256.248620][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.248910][ T1279] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.334731][ T8745] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 256.447872][ T8745] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4031: comm syz.3.964: Allocating blocks 385-513 which overlap fs metadata [ 256.506963][ T8744] EXT4-fs (loop3): pa ffff8880778c69f8: logic 16, phys. 129, len 24 [ 256.515830][ T8744] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8 [ 256.538505][ T8753] netlink: 348 bytes leftover after parsing attributes in process `syz.2.966'. [ 256.548649][ T8756] netlink: 28 bytes leftover after parsing attributes in process `syz.1.967'. [ 256.561121][ T8753] netlink: 4 bytes leftover after parsing attributes in process `syz.2.966'. [ 256.570837][ T8756] netem: change failed [ 256.643375][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.751972][ T8753] netlink: 348 bytes leftover after parsing attributes in process `syz.2.966'. [ 256.761738][ T8753] netlink: 4 bytes leftover after parsing attributes in process `syz.2.966'. [ 256.976027][ T8763] loop4: detected capacity change from 0 to 164 [ 257.044315][ T6327] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 257.134114][ T8753] netlink: 348 bytes leftover after parsing attributes in process `syz.2.966'. [ 257.159141][ T8753] netlink: 4 bytes leftover after parsing attributes in process `syz.2.966'. [ 257.984929][ T8783] netlink: 12 bytes leftover after parsing attributes in process `syz.2.978'. [ 258.020475][ T8783] : entered promiscuous mode [ 258.568065][ T8765] warn_alloc: 1 callbacks suppressed [ 258.568086][ T8765] syz.3.969: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz3,mems_allowed=0-1 [ 258.641656][ T8765] CPU: 1 PID: 8765 Comm: syz.3.969 Not tainted syzkaller #0 [ 258.649043][ T8765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 258.659254][ T8765] Call Trace: [ 258.662627][ T8765] [ 258.665613][ T8765] dump_stack_lvl+0x16c/0x230 [ 258.670369][ T8765] ? show_regs_print_info+0x20/0x20 [ 258.675651][ T8765] ? load_image+0x3b0/0x3b0 [ 258.680225][ T8765] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 258.686972][ T8765] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 258.693641][ T8765] warn_alloc+0x210/0x300 [ 258.698062][ T8765] ? zone_watermark_ok_safe+0x230/0x230 [ 258.703700][ T8765] ? _raw_spin_unlock+0x28/0x40 [ 258.708640][ T8765] __vmalloc_node_range+0x662/0x1320 [ 258.714027][ T8765] ? free_vm_area+0x50/0x50 [ 258.718596][ T8765] ? _raw_spin_unlock+0x28/0x40 [ 258.723514][ T8765] ? __kasan_kmalloc+0x8f/0xa0 [ 258.728345][ T8765] __vmalloc_node_range+0x568/0x1320 [ 258.733719][ T8765] ? hash_netiface_create+0x361/0xff0 [ 258.739249][ T8765] ? __asan_memset+0x22/0x40 [ 258.743911][ T8765] ? free_vm_area+0x50/0x50 [ 258.748458][ T8765] ? kvmalloc_node+0x70/0x180 [ 258.753182][ T8765] ? rcu_is_watching+0x15/0xb0 [ 258.757984][ T8765] ? kvmalloc_node+0x70/0x180 [ 258.762725][ T8765] ? trace_kmalloc+0x1f/0xa0 [ 258.767375][ T8765] kvmalloc_node+0x13f/0x180 [ 258.772015][ T8765] ? hash_netiface_create+0x361/0xff0 [ 258.777446][ T8765] hash_netiface_create+0x361/0xff0 [ 258.782696][ T8765] ? __lock_acquire+0x7c80/0x7c80 [ 258.787763][ T8765] ? __nla_parse+0x40/0x50 [ 258.792225][ T8765] ? hash_netport6_gc+0x570/0x570 [ 258.797308][ T8765] ip_set_create+0xa87/0x18e0 [ 258.802032][ T8765] ? ip_set_create+0x4b2/0x18e0 [ 258.806934][ T8765] ? ip_set_protocol+0x5d0/0x5d0 [ 258.812000][ T8765] ? trace_contention_end+0x39/0xe0 [ 258.817279][ T8765] nfnetlink_rcv_msg+0xb49/0x1130 [ 258.822363][ T8765] ? nfnetlink_rcv_msg+0x20e/0x1130 [ 258.827751][ T8765] ? nfnetlink_unbind+0x160/0x160 [ 258.832864][ T8765] netlink_rcv_skb+0x216/0x480 [ 258.837684][ T8765] ? nfnetlink_unbind+0x160/0x160 [ 258.842783][ T8765] ? netlink_ack+0x1110/0x1110 [ 258.847808][ T8765] ? apparmor_capable+0x137/0x1a0 [ 258.852911][ T8765] ? bpf_lsm_capable+0x9/0x10 [ 258.857812][ T8765] ? security_capable+0x89/0xb0 [ 258.862724][ T8765] nfnetlink_rcv+0x274/0x2180 [ 258.867535][ T8765] ? mark_lock+0x94/0x320 [ 258.871909][ T8765] ? mark_lock+0x94/0x320 [ 258.876392][ T8765] ? __lock_acquire+0x1260/0x7c80 [ 258.881488][ T8765] ? nfnetlink_net_exit_batch+0xa0/0xa0 [ 258.887097][ T8765] ? kmalloc_reserve+0x95/0x240 [ 258.892109][ T8765] ? verify_lock_unused+0x140/0x140 [ 258.897386][ T8765] ? __netlink_lookup+0xbe/0x810 [ 258.902418][ T8765] ? netlink_deliver_tap+0x2e/0x1b0 [ 258.907661][ T8765] ? __lock_acquire+0x7c80/0x7c80 [ 258.912818][ T8765] ? net_generic+0x1e/0x240 [ 258.917367][ T8765] ? netlink_deliver_tap+0x2e/0x1b0 [ 258.922640][ T8765] netlink_unicast+0x751/0x8d0 [ 258.927492][ T8765] netlink_sendmsg+0x8c1/0xbe0 [ 258.932399][ T8765] ? netlink_getsockopt+0x580/0x580 [ 258.937641][ T8765] ? aa_sock_msg_perm+0x94/0x150 [ 258.942630][ T8765] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 258.947989][ T8765] ? security_socket_sendmsg+0x80/0xa0 [ 258.953498][ T8765] ? netlink_getsockopt+0x580/0x580 [ 258.958735][ T8765] ____sys_sendmsg+0x5bf/0x950 [ 258.963700][ T8765] ? __asan_memset+0x22/0x40 [ 258.968345][ T8765] ? __sys_sendmsg_sock+0x30/0x30 [ 258.973427][ T8765] ? __import_iovec+0x5f2/0x860 [ 258.978555][ T8765] ? import_iovec+0x73/0xa0 [ 258.983105][ T8765] ___sys_sendmsg+0x220/0x290 [ 258.987843][ T8765] ? __sys_sendmsg+0x270/0x270 [ 258.992748][ T8765] __se_sys_sendmsg+0x1a5/0x270 [ 258.997649][ T8765] ? __x64_sys_sendmsg+0x80/0x80 [ 259.002644][ T8765] ? lockdep_hardirqs_on+0x98/0x150 [ 259.007978][ T8765] do_syscall_64+0x55/0xb0 [ 259.012432][ T8765] ? clear_bhb_loop+0x40/0x90 [ 259.017159][ T8765] ? clear_bhb_loop+0x40/0x90 [ 259.022014][ T8765] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 259.027957][ T8765] RIP: 0033:0x7f698c98f749 [ 259.032414][ T8765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 259.052238][ T8765] RSP: 002b:00007f698d7b8038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 259.060978][ T8765] RAX: ffffffffffffffda RBX: 00007f698cbe5fa0 RCX: 00007f698c98f749 [ 259.068997][ T8765] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000007 [ 259.077005][ T8765] RBP: 00007f698ca13f91 R08: 0000000000000000 R09: 0000000000000000 [ 259.085013][ T8765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 259.093118][ T8765] R13: 00007f698cbe6038 R14: 00007f698cbe5fa0 R15: 00007ffc912313b8 [ 259.101148][ T8765] [ 259.123604][ T8765] Mem-Info: [ 259.128063][ T8765] active_anon:26500 inactive_anon:204 isolated_anon:0 [ 259.128063][ T8765] active_file:11081 inactive_file:40006 isolated_file:0 [ 259.128063][ T8765] unevictable:768 dirty:30 writeback:0 [ 259.128063][ T8765] slab_reclaimable:10486 slab_unreclaimable:97495 [ 259.128063][ T8765] mapped:24654 shmem:20711 pagetables:646 [ 259.128063][ T8765] sec_pagetables:0 bounce:0 [ 259.128063][ T8765] kernel_misc_reclaimable:0 [ 259.128063][ T8765] free:1288280 free_pcp:13569 free_cma:0 [ 259.281313][ T8765] Node 0 active_anon:101000kB inactive_anon:16kB active_file:44324kB inactive_file:159820kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:98616kB dirty:120kB writeback:0kB shmem:81308kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:12216kB pagetables:2484kB sec_pagetables:0kB all_unreclaimable? no [ 259.327463][ T8765] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 259.387987][ T8765] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 259.421577][ T8765] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 259.428475][ T8765] Node 0 DMA32 free:1252384kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:101028kB inactive_anon:0kB active_file:44324kB inactive_file:158500kB unevictable:1536kB writepending:120kB present:3129332kB managed:2589640kB mlocked:0kB bounce:0kB free_pcp:31780kB local_pcp:13344kB free_cma:0kB [ 259.623335][ T8765] lowmem_reserve[]: 0 0 1 1 1 [ 259.632539][ T8765] Node 0 Normal free:4kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:12kB local_pcp:12kB free_cma:0kB [ 259.695542][ T8765] lowmem_reserve[]: 0 0 0 0 0 [ 259.701094][ T8765] Node 1 Normal free:3892708kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:20800kB local_pcp:9152kB free_cma:0kB [ 259.731964][ T8765] lowmem_reserve[]: 0 0 0 0 0 [ 259.739949][ T8765] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 259.758996][ T8799] loop2: detected capacity change from 0 to 512 [ 259.765581][ T8765] Node 0 DMA32: 238*4kB (ME) 174*8kB (UM) 157*16kB (UME) 116*32kB (ME) 77*64kB (ME) 17*128kB (UM) 1*256kB (E) 8*512kB (ME) 11*1024kB (UME) 2*2048kB (UM) 297*4096kB (UM) = 1251896kB [ 259.810439][ T8765] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB [ 259.828928][ T8765] Node 1 Normal: 267*4kB (U) 61*8kB (UME) 37*16kB (UME) 66*32kB (UME) 11*64kB (UE) 3*128kB (UM) 1*256kB (E) 2*512kB (ME) 1*1024kB (E) 1*2048kB (E) 948*4096kB (UM) = 3892708kB [ 259.850208][ T8765] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 259.861383][ T8765] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 259.873305][ T8765] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 259.874721][ T8799] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 259.891805][ T8765] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 259.911912][ T8765] 74737 total pagecache pages [ 259.923054][ T8765] 0 pages in swap cache [ 259.928604][ T8765] Free swap = 124476kB [ 259.933051][ T8765] Total swap = 124996kB [ 259.941266][ T8765] 2097051 pages RAM [ 259.946884][ T8765] 0 pages HighMem/MovableOnly [ 259.951928][ T8765] 416127 pages reserved [ 259.959351][ T8765] 0 pages cma reserved [ 259.982760][ T8799] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 260.013623][ T8799] ext4 filesystem being mounted at /256/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 260.091632][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.439751][ T8812] netlink: 12 bytes leftover after parsing attributes in process `gtp'. [ 260.527304][ T8814] tipc: Enabling of bearer rejected, failed to enable media [ 261.591571][ T27] kauditd_printk_skb: 22 callbacks suppressed [ 261.591588][ T27] audit: type=1326 audit(1767600965.456:2228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8826 comm="syz.4.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 261.611998][ T8825] loop2: detected capacity change from 0 to 512 [ 261.629908][ T27] audit: type=1326 audit(1767600965.486:2229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8826 comm="syz.4.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 261.653293][ T27] audit: type=1326 audit(1767600965.486:2230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8826 comm="syz.4.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 261.734382][ T27] audit: type=1326 audit(1767600965.486:2231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8826 comm="syz.4.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 261.767096][ T8825] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 261.808889][ T27] audit: type=1326 audit(1767600965.486:2232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8826 comm="syz.4.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 261.838978][ T8825] ext4 filesystem being mounted at /260/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 261.873920][ T27] audit: type=1326 audit(1767600965.496:2233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8826 comm="syz.4.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 261.932810][ T8825] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.995: corrupted inode contents [ 261.945029][ T8833] netlink: 'syz.1.997': attribute type 1 has an invalid length. [ 261.957084][ T8825] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #2: comm syz.2.995: mark_inode_dirty error [ 261.974335][ T27] audit: type=1326 audit(1767600965.496:2234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8826 comm="syz.4.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 262.021241][ T8825] EXT4-fs error (device loop2): ext4_do_update_inode:5244: inode #2: comm syz.2.995: corrupted inode contents [ 262.033339][ T27] audit: type=1326 audit(1767600965.496:2235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8826 comm="syz.4.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 262.033393][ T27] audit: type=1326 audit(1767600965.496:2236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8826 comm="syz.4.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 262.033440][ T27] audit: type=1326 audit(1767600965.496:2237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8826 comm="syz.4.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f730658f749 code=0x7ffc0000 [ 262.151198][ T8834] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address [ 262.253471][ T8834] bond1: (slave vxcan3): Error -95 calling set_mac_address [ 262.282839][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 262.402587][ T8833] bond1: (slave gretap1): making interface the new active one [ 262.416416][ T8833] bond1: (slave gretap1): Enslaving as an active interface with an up link [ 262.484685][ T8839] loop4: detected capacity change from 0 to 164 [ 262.541996][ T6327] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 262.551726][ T8838] macvlan2: entered promiscuous mode [ 262.572091][ T8838] macvlan2: entered allmulticast mode [ 262.603830][ T8838] bond1: entered promiscuous mode [ 262.626391][ T8838] gretap1: entered promiscuous mode [ 262.649092][ T8838] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 262.705569][ T8838] bond1: (slave macvlan2): the slave hw address is in use by the bond; giving it the hw address of gretap1 [ 262.760152][ T8838] bond1: left promiscuous mode [ 262.768128][ T8838] gretap1: left promiscuous mode [ 263.211668][ T8849] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1003'. [ 263.241194][ T8849] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1003'. [ 263.304920][ T8849] bridge2: entered promiscuous mode [ 263.333487][ T8849] bridge2: entered allmulticast mode [ 264.647455][ T8873] loop2: detected capacity change from 0 to 1024 [ 264.688750][ T8873] EXT4-fs: inline encryption not supported [ 264.738051][ T8873] EXT4-fs: Ignoring removed orlov option [ 264.778630][ T8873] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 264.814536][ T8873] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e800c018, mo2=0002] [ 264.822822][ T8873] System zones: 0-1, 3-12 [ 264.896589][ T8873] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 265.209290][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 265.617721][ T8899] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1019'. [ 265.878669][ T8906] sch_tbf: burst 4 is lower than device team_slave_0 mtu (1514) ! [ 266.319897][ T8911] lo speed is unknown, defaulting to 1000 [ 267.098404][ T8911] lo speed is unknown, defaulting to 1000 [ 267.395044][ T6855] usb 3-1: new full-speed USB device number 3 using dummy_hcd [ 267.471383][ T8929] netlink: 'syz.3.1029': attribute type 3 has an invalid length. [ 267.520799][ T8932] loop4: detected capacity change from 0 to 164 [ 267.673050][ T8934] loop3: detected capacity change from 0 to 764 [ 267.753626][ T8934] Symlink component flag not implemented [ 267.772005][ T8934] Symlink component flag not implemented (129) [ 267.843619][ T8934] rock: directory entry would overflow storage [ 267.855110][ T8934] rock: sig=0x4f50, size=4, remaining=3 [ 267.861466][ T6636] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 267.873239][ T8934] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 267.955612][ T6855] usb 3-1: no configurations [ 267.970198][ T6855] usb 3-1: can't read configurations, error -22 [ 268.185133][ T6855] usb 3-1: new full-speed USB device number 4 using dummy_hcd [ 268.397502][ T6855] usb 3-1: no configurations [ 268.433703][ T6855] usb 3-1: can't read configurations, error -22 [ 268.657372][ T8943] lo speed is unknown, defaulting to 1000 [ 269.216710][ T6855] usb usb3-port1: attempt power cycle [ 269.327750][ T8943] lo speed is unknown, defaulting to 1000 [ 269.500404][ T8951] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 33554436, id = 0 [ 269.781917][ T27] kauditd_printk_skb: 24 callbacks suppressed [ 269.781933][ T27] audit: type=1326 audit(1767600973.646:2262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8957 comm="syz.2.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 269.813353][ T27] audit: type=1326 audit(1767600973.646:2263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8957 comm="syz.2.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 269.837142][ T27] audit: type=1326 audit(1767600973.646:2264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8957 comm="syz.2.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 269.906965][ T27] audit: type=1326 audit(1767600973.646:2266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8957 comm="syz.2.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 269.971736][ T27] audit: type=1326 audit(1767600973.656:2267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8957 comm="syz.2.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 270.003574][ T27] audit: type=1326 audit(1767600973.656:2268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8957 comm="syz.2.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 270.026568][ T27] audit: type=1326 audit(1767600973.646:2265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8957 comm="syz.2.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 270.049432][ T27] audit: type=1326 audit(1767600973.676:2269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8957 comm="syz.2.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 270.073231][ T27] audit: type=1326 audit(1767600973.676:2270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8957 comm="syz.2.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 270.308694][ T27] audit: type=1326 audit(1767600973.676:2271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8957 comm="syz.2.1040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9fc538f749 code=0x7ffc0000 [ 270.454144][ T8962] loop2: detected capacity change from 0 to 164 [ 271.048234][ T8968] netlink: 'syz.2.1044': attribute type 29 has an invalid length. [ 271.344870][ T8978] 9pnet_fd: Insufficient options for proto=fd [ 271.796423][ T8993] loop4: detected capacity change from 0 to 164 [ 272.227787][ T6636] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 272.602922][ T8999] loop2: detected capacity change from 0 to 512 [ 272.676142][ T8999] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 272.756424][ T9008] loop3: detected capacity change from 0 to 512 [ 272.884426][ T8999] EXT4-fs (loop2): 1 truncate cleaned up [ 272.891575][ T8999] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 272.909628][ T9008] EXT4-fs warning (device loop3): ext4_xattr_inode_get:549: inode #11: comm syz.3.1060: ea_inode file size=6 entry size=458758 [ 273.008963][ T9008] ------------[ cut here ]------------ [ 273.015515][ T9008] EA inode 11 i_nlink=2 [ 273.046301][ T9008] WARNING: CPU: 0 PID: 9008 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550 [ 273.061163][ T9008] Modules linked in: [ 273.065229][ T9008] CPU: 0 PID: 9008 Comm: syz.3.1060 Not tainted syzkaller #0 [ 273.072670][ T9008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 273.083091][ T9008] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 273.089904][ T9008] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08 [ 273.109932][ T9008] RSP: 0018:ffffc900039ef2e0 EFLAGS: 00010246 [ 273.116365][ T9008] RAX: 06683cbf4004d600 RBX: 0000000000000002 RCX: 0000000000080000 [ 273.124674][ T9008] RDX: ffffc9000dbfd000 RSI: 000000000001d5a2 RDI: 000000000001d5a3 [ 273.133416][ T9008] RBP: ffffc900039ef3d0 R08: ffffc900039eeee7 R09: 1ffff9200073dddc [ 273.141789][ T9008] R10: dffffc0000000000 R11: fffff5200073dddd R12: dffffc0000000000 [ 273.149957][ T9008] R13: ffff88805c0d72a8 R14: ffff88805c0d70b0 R15: ffff88805c0d7100 [ 273.158066][ T9008] FS: 00007f698d7b86c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 273.167201][ T9008] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 273.173957][ T9008] CR2: 00007fad5b08c000 CR3: 000000004d5fb000 CR4: 00000000003506f0 [ 273.182417][ T9008] Call Trace: [ 273.185853][ T9008] [ 273.188943][ T9008] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 273.194883][ T9008] ? __ext4_journal_ensure_credits+0x30/0x450 [ 273.201302][ T9008] ext4_xattr_inode_dec_ref_all+0xa2b/0xf90 [ 273.208803][ T9008] ? ext4_xattr_delete_inode+0xc00/0xc00 [ 273.215096][ T9008] ? __ext4_journal_ensure_credits+0x450/0x450 [ 273.221873][ T9008] ext4_xattr_delete_inode+0xa45/0xc00 [ 273.228579][ T9008] ? ext4_truncate+0xc12/0x1060 [ 273.233523][ T9008] ? ext4_expand_extra_isize_ea+0x19e0/0x19e0 [ 273.240311][ T9008] ext4_evict_inode+0xaa3/0xea0 [ 273.245761][ T9008] ? _raw_spin_unlock+0x28/0x40 [ 273.250721][ T9008] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 273.257317][ T9008] ? do_raw_spin_unlock+0x121/0x230 [ 273.262612][ T9008] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 273.268953][ T9008] evict+0x486/0x870 [ 273.272933][ T9008] ? __lock_acquire+0x7c80/0x7c80 [ 273.278281][ T9008] ? proc_nr_inodes+0x230/0x230 [ 273.283220][ T9008] ? do_raw_spin_unlock+0x121/0x230 [ 273.288631][ T9008] ? _raw_spin_unlock+0x28/0x40 [ 273.293639][ T9008] ? iput+0x70a/0x920 [ 273.297814][ T9008] ext4_orphan_cleanup+0xbd4/0x1400 [ 273.303346][ T9008] ? ext4_orphan_del+0xba0/0xba0 [ 273.308567][ T9008] ? ext4_register_li_request+0x183/0x940 [ 273.314586][ T9008] ? errseq_check_and_advance+0x66/0x120 [ 273.320303][ T9008] ext4_fill_super+0x5de4/0x66c0 [ 273.325549][ T9008] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 273.332596][ T9008] ? __might_sleep+0xe0/0xe0 [ 273.337511][ T9008] ? read_lock_is_recursive+0x20/0x20 [ 273.343043][ T9008] ? snprintf+0xdb/0x120 [ 273.347573][ T9008] ? vscnprintf+0x80/0x80 [ 273.352001][ T9008] ? down_write+0x162/0x1f0 [ 273.356882][ T9008] ? down_read_killable+0x340/0x340 [ 273.363495][ T9008] ? setup_bdev_super+0x56b/0x660 [ 273.368783][ T9008] get_tree_bdev+0x3e4/0x510 [ 273.373466][ T9008] ? vfs_parse_fs_string+0x160/0x160 [ 273.378929][ T9008] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 273.385386][ T9008] ? setup_bdev_super+0x660/0x660 [ 273.390500][ T9008] ? apparmor_capable+0x137/0x1a0 [ 273.396124][ T9008] ? bpf_lsm_capable+0x9/0x10 [ 273.400887][ T9008] ? security_capable+0x89/0xb0 [ 273.405982][ T9008] vfs_get_tree+0x8c/0x280 [ 273.410583][ T9008] do_new_mount+0x24b/0xa40 [ 273.415248][ T9008] __se_sys_mount+0x2da/0x3c0 [ 273.420005][ T9008] ? __x64_sys_mount+0xc0/0xc0 [ 273.424917][ T9008] ? lockdep_hardirqs_on+0x98/0x150 [ 273.430187][ T9008] ? __x64_sys_mount+0x20/0xc0 [ 273.436048][ T9008] do_syscall_64+0x55/0xb0 [ 273.440709][ T9008] ? clear_bhb_loop+0x40/0x90 [ 273.445551][ T9008] ? clear_bhb_loop+0x40/0x90 [ 273.450306][ T9008] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 273.456322][ T9008] RIP: 0033:0x7f698c990eea [ 273.460814][ T9008] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.480802][ T9008] RSP: 002b:00007f698d7b7e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 273.489444][ T9008] RAX: ffffffffffffffda RBX: 00007f698d7b7ef0 RCX: 00007f698c990eea [ 273.497729][ T9008] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f698d7b7eb0 [ 273.505833][ T9008] RBP: 0000200000000180 R08: 00007f698d7b7ef0 R09: 0000000000800718 [ 273.513970][ T9008] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0 [ 273.522422][ T9008] R13: 00007f698d7b7eb0 R14: 000000000000047f R15: 0000200000000200 [ 273.530601][ T9008] [ 273.533686][ T9008] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 273.541013][ T9008] CPU: 0 PID: 9008 Comm: syz.3.1060 Not tainted syzkaller #0 [ 273.548448][ T9008] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 273.559180][ T9008] Call Trace: [ 273.562517][ T9008] [ 273.565502][ T9008] dump_stack_lvl+0x16c/0x230 [ 273.570258][ T9008] ? show_regs_print_info+0x20/0x20 [ 273.575529][ T9008] ? load_image+0x3b0/0x3b0 [ 273.580121][ T9008] panic+0x2c0/0x710 [ 273.584117][ T9008] ? bpf_jit_dump+0xd0/0xd0 [ 273.588720][ T9008] __warn+0x2e0/0x470 [ 273.592769][ T9008] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 273.598821][ T9008] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 273.604879][ T9008] report_bug+0x2be/0x4f0 [ 273.609281][ T9008] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 273.615332][ T9008] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 273.621373][ T9008] ? ext4_xattr_inode_update_ref+0x4fd/0x550 [ 273.627403][ T9008] handle_bug+0xcf/0x120 [ 273.631737][ T9008] exc_invalid_op+0x1a/0x50 [ 273.636466][ T9008] asm_exc_invalid_op+0x1a/0x20 [ 273.641476][ T9008] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 273.648231][ T9008] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08 [ 273.667986][ T9008] RSP: 0018:ffffc900039ef2e0 EFLAGS: 00010246 [ 273.674135][ T9008] RAX: 06683cbf4004d600 RBX: 0000000000000002 RCX: 0000000000080000 [ 273.682590][ T9008] RDX: ffffc9000dbfd000 RSI: 000000000001d5a2 RDI: 000000000001d5a3 [ 273.690634][ T9008] RBP: ffffc900039ef3d0 R08: ffffc900039eeee7 R09: 1ffff9200073dddc [ 273.698654][ T9008] R10: dffffc0000000000 R11: fffff5200073dddd R12: dffffc0000000000 [ 273.706680][ T9008] R13: ffff88805c0d72a8 R14: ffff88805c0d70b0 R15: ffff88805c0d7100 [ 273.714715][ T9008] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 273.720406][ T9008] ? __ext4_journal_ensure_credits+0x30/0x450 [ 273.726613][ T9008] ext4_xattr_inode_dec_ref_all+0xa2b/0xf90 [ 273.732572][ T9008] ? ext4_xattr_delete_inode+0xc00/0xc00 [ 273.738276][ T9008] ? __ext4_journal_ensure_credits+0x450/0x450 [ 273.744538][ T9008] ext4_xattr_delete_inode+0xa45/0xc00 [ 273.750291][ T9008] ? ext4_truncate+0xc12/0x1060 [ 273.755341][ T9008] ? ext4_expand_extra_isize_ea+0x19e0/0x19e0 [ 273.761658][ T9008] ext4_evict_inode+0xaa3/0xea0 [ 273.766567][ T9008] ? _raw_spin_unlock+0x28/0x40 [ 273.771526][ T9008] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 273.777488][ T9008] ? do_raw_spin_unlock+0x121/0x230 [ 273.782737][ T9008] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 273.788703][ T9008] evict+0x486/0x870 [ 273.792725][ T9008] ? __lock_acquire+0x7c80/0x7c80 [ 273.798136][ T9008] ? proc_nr_inodes+0x230/0x230 [ 273.803032][ T9008] ? do_raw_spin_unlock+0x121/0x230 [ 273.808268][ T9008] ? _raw_spin_unlock+0x28/0x40 [ 273.813179][ T9008] ? iput+0x70a/0x920 [ 273.817329][ T9008] ext4_orphan_cleanup+0xbd4/0x1400 [ 273.822603][ T9008] ? ext4_orphan_del+0xba0/0xba0 [ 273.827596][ T9008] ? ext4_register_li_request+0x183/0x940 [ 273.833458][ T9008] ? errseq_check_and_advance+0x66/0x120 [ 273.839227][ T9008] ext4_fill_super+0x5de4/0x66c0 [ 273.844326][ T9008] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 273.850639][ T9008] ? __might_sleep+0xe0/0xe0 [ 273.855356][ T9008] ? read_lock_is_recursive+0x20/0x20 [ 273.860776][ T9008] ? snprintf+0xdb/0x120 [ 273.865167][ T9008] ? vscnprintf+0x80/0x80 [ 273.869557][ T9008] ? down_write+0x162/0x1f0 [ 273.874289][ T9008] ? down_read_killable+0x340/0x340 [ 273.879704][ T9008] ? setup_bdev_super+0x56b/0x660 [ 273.884772][ T9008] get_tree_bdev+0x3e4/0x510 [ 273.889407][ T9008] ? vfs_parse_fs_string+0x160/0x160 [ 273.894930][ T9008] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 273.901364][ T9008] ? setup_bdev_super+0x660/0x660 [ 273.906468][ T9008] ? apparmor_capable+0x137/0x1a0 [ 273.911575][ T9008] ? bpf_lsm_capable+0x9/0x10 [ 273.916359][ T9008] ? security_capable+0x89/0xb0 [ 273.921263][ T9008] vfs_get_tree+0x8c/0x280 [ 273.925825][ T9008] do_new_mount+0x24b/0xa40 [ 273.930632][ T9008] __se_sys_mount+0x2da/0x3c0 [ 273.935437][ T9008] ? __x64_sys_mount+0xc0/0xc0 [ 273.940614][ T9008] ? lockdep_hardirqs_on+0x98/0x150 [ 273.946222][ T9008] ? __x64_sys_mount+0x20/0xc0 [ 273.951165][ T9008] do_syscall_64+0x55/0xb0 [ 273.955645][ T9008] ? clear_bhb_loop+0x40/0x90 [ 273.960432][ T9008] ? clear_bhb_loop+0x40/0x90 [ 273.965268][ T9008] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 273.971205][ T9008] RIP: 0033:0x7f698c990eea [ 273.975657][ T9008] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 273.995506][ T9008] RSP: 002b:00007f698d7b7e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 274.003981][ T9008] RAX: ffffffffffffffda RBX: 00007f698d7b7ef0 RCX: 00007f698c990eea [ 274.012004][ T9008] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f698d7b7eb0 [ 274.020029][ T9008] RBP: 0000200000000180 R08: 00007f698d7b7ef0 R09: 0000000000800718 [ 274.028216][ T9008] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0 [ 274.036228][ T9008] R13: 00007f698d7b7eb0 R14: 000000000000047f R15: 0000200000000200 [ 274.044344][ T9008] [ 274.047957][ T9008] Kernel Offset: disabled [ 274.052539][ T9008] Rebooting in 86400 seconds..