last executing test programs: 2m51.549441795s ago: executing program 0 (id=315): r0 = socket(0x10, 0x803, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0xc, '\x00', 0x0, @fallback=0x3c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) read(0xffffffffffffffff, 0x0, 0x0) getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=ANY=[@ANYBLOB="60000000100039042cbd7000eaffffff000003e4", @ANYRES32=r2, @ANYBLOB="001100000000000040001280080001007369740034000280050009002900000008000200ac1414bb08000c"], 0x60}, 0x1, 0x0, 0x0, 0x8000}, 0x4040) 2m50.348779046s ago: executing program 0 (id=322): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$tipc(0x1e, 0x5, 0x0) socket$tipc(0x1e, 0x5, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) pipe2(&(0x7f0000001440)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0x1, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r4, 0x0, 0xffffffffffffffff}, 0x18) splice(r2, 0x0, r1, 0x0, 0x6, 0x0) fcntl$setpipe(r1, 0x407, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) sendmsg$NFNL_MSG_CTHELPER_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="14000000010901"], 0x14}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x13, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 2m49.195411422s ago: executing program 0 (id=328): syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000200)='./bus\x00', 0x1000000, &(0x7f00000005c0)=ANY=[], 0x1, 0x126f, &(0x7f0000001600)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) connect$inet6(0xffffffffffffffff, 0x0, 0x0) fdatasync(r0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) ftruncate(r0, 0x81ff) 2m47.033708631s ago: executing program 0 (id=338): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000640)=@migrate={0xa0, 0x21, 0x1, 0x0, 0x0, {{@in6=@mcast1, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0x2}}, [@migrate={0x50, 0x11, [{@in=@private=0xa010102, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, @in6=@private2, @in6=@local, 0xff, 0x3, 0x0, 0x2, 0x2, 0xa}]}]}, 0xa0}}, 0x0) 2m45.801586326s ago: executing program 0 (id=344): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000a40)=ANY=[@ANYBLOB="140000001000010000000000000000000700000a14000000020aff0100000000000000000200000114000000110001"], 0x3c}, 0x1, 0x0, 0x0, 0x4011}, 0x4000094) 2m45.232755664s ago: executing program 0 (id=349): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) socket$netlink(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000140), 0x1, 0x4fa, &(0x7f0000000ac0)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00') bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_open_dev$evdev(&(0x7f00000001c0), 0x3, 0x400) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) 2m29.994354582s ago: executing program 32 (id=349): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) socket$netlink(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000140), 0x1, 0x4fa, &(0x7f0000000ac0)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00') bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_open_dev$evdev(&(0x7f00000001c0), 0x3, 0x400) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) 9.298242605s ago: executing program 1 (id=1066): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[], 0x0}, 0x94) madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x15) syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x8000000000}, 0x18) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x20012, 0xffffffffffffffff, 0x8000000) socket$kcm(0x2, 0xa, 0x2) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x8, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2, 0x0, 0xfffffffffffffffd}, 0x18) syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x101c0ca, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x6, 0x2c0, &(0x7f0000000900)="$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") r3 = open(&(0x7f0000000100)='./file1\x00', 0x147842, 0x88) preadv2(r3, &(0x7f0000000040)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x1, 0x0, 0x0, 0x0) 5.37128415s ago: executing program 3 (id=1081): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x20241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd27, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {}, {0xa}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x9218}, @TCA_FLOW_BASECLASS={0x8, 0x3, {0xffe0, 0xd}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40090}, 0x20000800) 5.268142933s ago: executing program 2 (id=1082): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0x900, 0x12) 4.378511016s ago: executing program 2 (id=1087): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00') writev(r1, &(0x7f0000000100)=[{&(0x7f0000000280)='0', 0x1}], 0x1) 4.328797031s ago: executing program 3 (id=1088): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10) sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a90000000060a0b0400000000000000000200000064000480600001800a000100696e6e65720000005000028008000240000000840800034024000007"], 0xb8}}, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000006000000000084e27fc70000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r5}, 0x10) r6 = io_uring_setup(0x7c41, &(0x7f0000000300)={0x0, 0x0, 0x40}) io_uring_register$IORING_REGISTER_MEM_REGION(r6, 0x22, &(0x7f0000000080)={0x0}, 0x1) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x7, 0x2a, 0x5}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r7}, &(0x7f0000000280), &(0x7f00000002c0)}, 0x20) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_VENDOR(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="a1ab000000000000000032"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r10}, 0x10) r11 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r12, &(0x7f0000000380)=@file={0x0, './bus\x00'}, 0x6e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) r13 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r13, &(0x7f0000000200)={0x0, 0x73, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000006c000000160a01020000000000000000010000000900010073797a30000000000900020073797a3000000000400003802c00038004000100766c616e31000000000000000000000014000100776c616e3100000000000000000000000800014000000000080002"], 0xfc}}, 0x0) r14 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r14, 0x0, 0x3}, 0x18) 4.170776648s ago: executing program 4 (id=1089): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xe) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x90) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0)) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246) ioctl$PPPIOCSFLAGS1(r2, 0x4004743a, &(0x7f0000000300)) pwritev(r1, &(0x7f0000000080), 0x0, 0x20000002, 0x100000) 3.871471231s ago: executing program 1 (id=1090): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="3c02000019000100000000000008000000000000000000000000ffff00000000be14144416000000000000000000000000000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000084010500ff010000000000000000000000000001000004d2330000000a000000000000000000000000000000000000000135000001003b00830000000500000007000000fe8000000000000000000000000000aa000004d63c0000000a00"], 0x23c}}, 0x4000) 3.864958782s ago: executing program 5 (id=1091): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000002c0)='rpm_return_int\x00', r1}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000380)='rpm_return_int\x00', r1}, 0x18) syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581) 3.777673487s ago: executing program 2 (id=1092): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, r0}, 0x18) r1 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) fcntl$setlease(r1, 0x400, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x13, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8}, @initr0, @exit, @alu={0x6, 0x0, 0x3, 0xa, 0x0, 0x2}, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94) r2 = socket$inet(0x2, 0x4000000805, 0x0) listen(r2, 0x5) sendmmsg(r2, &(0x7f0000000e40)=[{{&(0x7f0000000000)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f0000000300)=[{&(0x7f00000000c0)="ae", 0x1}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000000000084"], 0x18}}], 0x2, 0x844) truncate(0x0, 0x0) fcntl$setlease(r1, 0x400, 0x2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c) bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r4, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) close_range(r3, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$ieee802154(&(0x7f00000018c0), 0xffffffffffffffff) r5 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f0000000000), 0x1, 0x503, &(0x7f0000000140)="$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") fsetxattr$security_evm(r5, &(0x7f0000000680), &(0x7f00000006c0)=@v2={0x5, 0x0, 0x1, 0x2, 0x3d, "211601d7157eef5910a87fdae794b1d87186768361aa2a1b54be429da1196320774022863c5c6e870b7a982b0dc5afec5115b72965bfca7d3ee62e2c5a"}, 0x46, 0x0) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x6000, 0x1) socket$nl_netfilter(0x10, 0x3, 0xc) socket(0x10, 0x3, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x80, &(0x7f0000000000)={[{@lazytime}]}, 0x1, 0x3ef, &(0x7f0000000900)="$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") 3.279114386s ago: executing program 4 (id=1093): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000000110000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r2}, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), r0) 3.26412368s ago: executing program 5 (id=1094): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc90}, [@printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r0}, 0x10) lseek(0xffffffffffffffff, 0x2, 0x0) 3.088933486s ago: executing program 1 (id=1095): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000570000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10) getresuid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000500)) 3.039159688s ago: executing program 3 (id=1096): syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44}, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000"], 0x48) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) ioprio_get$pid(0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bdaa, 0xffffffff, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a40)=@newtfilter={0x68, 0x2c, 0xd27, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r5, {0xc, 0xffe0}, {}, {0xe, 0x6}}, [@filter_kind_options=@f_flow={{0x9}, {0x38, 0x2, [@TCA_FLOW_EMATCHES={0x34, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_LIST={0x28, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_CONTAINER={0x10, 0x2, 0x0, 0x0, {{0x5, 0x0, 0x200}, "81"}}]}]}]}}]}, 0x68}, 0x1, 0x0, 0x0, 0x40010}, 0x20040054) 2.583245483s ago: executing program 5 (id=1097): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0x900, 0x12) 2.280246734s ago: executing program 1 (id=1098): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x20241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd27, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {}, {0xa}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x9218}, @TCA_FLOW_BASECLASS={0x8, 0x3, {0xffe0, 0xd}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40090}, 0x20000800) 1.976926415s ago: executing program 4 (id=1099): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)="68377863ac6ea61666eaa696435a75f1626fe3a3acedcaf71527ff51d446daac757559d2d6fc2b90952355ec6c61d718c91784312b1b4771888a0811895b02ffb658934b0bbd6466c9cc04cc7252f1f1deea5a8b9c6797c8f1263db526cf88899f7ecab544662eb34743cefb660a78cb9468d2900b3cda4cca9d89ab6d341d145acf249276dda272407bc98d9e5431316d468b9e4750f2316589dc4de3157592d27fd723a512c85b08035842b75ec422346f9696f4bb3226b0ca75d135ebd8cae46fb83b71c103e1fdcb1934fd1d28b4916abe2c44e26ea72be426c27052e816212096000155788943b846746ccb492175fc9e01", 0xf4}, {&(0x7f00000003c0)="5453b4b759f9d4f4f33bda880b70e0dadde06223919f4585429ef69078a4956f646ea03bfd4c090a003c01f32b1a175baf38c1eb4572c8b372a4cf9128062e58ff575546876a2804144c3aea98c4a3533396f87e860de8c66bceb0e6b387ec853b7e91c57587d38436637e702ae18eeccefdcd7a3cdd7bfc327b5d619b57d56afe1628b65e2948af5ee0e3f52746a5aff58bb7c6d253a58bf745584d1bc19fe5e42b5534eab9e9d2587b413e81f68b60f56130f82b327f5fe900e3e107bc6b783d1d23a056426d6502133386b51e657046c1c43a2a2c4a7611ee6592a5ee08700d24d832163b3def", 0xe8}, {&(0x7f0000000640)="d48c8225ddfdf2c06c27763617468581389d34126760ba3dd0fe077a7c2ce378dd62cafeeb4ba1493766d09fd561d69a5bf8109ffcd3e43d8c16b9c3fa92d4439c5af1fa4775d01dcf0748a24ab51b52fbe75287a4b9aaa18fd479bdd154b4efe531a242d90a1ca2799c242bfd4ddd8271448d3415bd3a907ad340dc2fa2471393212d02eb25242808cffdc4e7a646211c18ac8602f5fc1e4f82b72871a8d42f37988365ff226c1523bf01617976641421438e16378094c94f2e55a44150d9a358d92606afb12f21a63daadbb143d6ccdae88d53521b9fe51ffabb08ff67cb98266eeb1fbf81ec1e", 0xe8}, {&(0x7f0000000040)="f96be6c391f1f8b23ae44a70a75f4a5ed0e013f80882907ab089ee65d16a6c6f5c666dad31257fb48b66d940a3819d0809971ea8274a65901b", 0x39}, {0x0}], 0x5}}], 0x1, 0xc0) 1.894217108s ago: executing program 2 (id=1100): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r1, 0x0, 0x200000000000006}, 0x18) personality(0x500006) 1.865160947s ago: executing program 3 (id=1101): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS \x00'}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='itimer_state\x00', r1}, 0x10) setitimer(0x2, 0x0, 0x0) 1.806391298s ago: executing program 5 (id=1102): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_ENABLE_BEARER(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="711700000000ffdbdf2501"], 0x34}}, 0x0) 1.611272472s ago: executing program 1 (id=1103): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xe) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff}, 0x90) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r1, 0xc004743e, &(0x7f00000000c0)) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246) ioctl$PPPIOCSFLAGS1(r2, 0x4004743a, &(0x7f0000000300)) pwritev(r1, &(0x7f0000000080)=[{0x0}], 0x1, 0x20000002, 0x100000) 1.293581759s ago: executing program 4 (id=1104): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e85"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000002c0)='rpm_return_int\x00', r1}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000380)='rpm_return_int\x00', r1}, 0x18) syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581) 1.243968508s ago: executing program 5 (id=1105): bpf$MAP_CREATE(0x0, 0x0, 0x50) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x18) syz_open_dev$usbfs(0x0, 0x77, 0x101301) open_tree(0xffffffffffffff9c, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0) 1.24310423s ago: executing program 3 (id=1106): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10) sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000940)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a90000000060a0b0400000000000000000200000064000480600001800a000100696e6e65720000005000028008000240000000840800034024000007"], 0xb8}}, 0x0) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff) r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000840)=ANY=[@ANYBLOB="1800000000000006000000000084e27fc70000000f000000c5000000a000020095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='io_uring_register\x00', r5}, 0x10) r6 = io_uring_setup(0x7c41, &(0x7f0000000300)={0x0, 0x0, 0x40}) io_uring_register$IORING_REGISTER_MEM_REGION(r6, 0x22, &(0x7f0000000080)={0x0}, 0x1) r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x7, 0x2a, 0x5}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r7}, &(0x7f0000000280), &(0x7f00000002c0)}, 0x20) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r8}, 0x10) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_VENDOR(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000180)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="a1ab000000000000000032"], 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x94) r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r10}, 0x10) r11 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r11, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x8844) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) bind$unix(r12, &(0x7f0000000380)=@file={0x0, './bus\x00'}, 0x6e) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) r13 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r13, &(0x7f0000000200)={0x0, 0x73, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000006c000000160a01020000000000000000010000000900010073797a30000000000900020073797a3000000000400003802c00038004000100766c616e31000000000000000000000014000100776c616e3100000000000000000000000800014000000000080002"], 0xfc}}, 0x0) r14 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r14, 0x0, 0x3}, 0x18) 899.560804ms ago: executing program 2 (id=1107): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x0, 0x0, 0x0, 0xc90}, [@printk={@lld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/tcp\x00') lseek(r0, 0x2, 0x0) 857.52008ms ago: executing program 4 (id=1108): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000570000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10) getresuid(&(0x7f00000003c0), &(0x7f0000000400), &(0x7f0000000500)) 759.282307ms ago: executing program 1 (id=1109): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a000000020000000110000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r2}, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f00000013c0), r0) 509.197337ms ago: executing program 5 (id=1110): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, r0}, 0x18) r1 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) fcntl$setlease(r1, 0x400, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x13, 0x13, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0xffd0}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @map_fd={0x18, 0x0, 0x0}, @generic={0x66, 0x8}, @initr0, @exit, @alu={0x6, 0x0, 0x3, 0xa, 0x0, 0x2}, @printk={@x, {}, {}, {}, {}, {0x5, 0x0, 0xb, 0xa}}]}, 0x0, 0x2, 0x0, 0x0, 0x0, 0x8}, 0x94) r2 = socket$inet(0x2, 0x4000000805, 0x0) listen(r2, 0x5) sendmmsg(r2, &(0x7f0000000e40)=[{{&(0x7f0000000000)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f0000000300)=[{&(0x7f00000000c0)="ae", 0x1}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000000000084"], 0x18}}], 0x2, 0x844) truncate(0x0, 0x0) fcntl$setlease(r1, 0x400, 0x2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r4 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c) bind$inet6(r4, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) sendto$inet6(r4, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) close_range(r3, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$ieee802154(&(0x7f00000018c0), 0xffffffffffffffff) r5 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f0000000000), 0x1, 0x503, &(0x7f0000000140)="$eJzs3c9vG1kdAPDvOL+cbHaTXfYACNiyLBRU1Unc3Wi1B1hOCKGVEHsEqRsSN4pix1HsLJvQQ/o/IFGJExz5Azj3xJ0LghuXckDiRwRqKnHwasaT1E3tJm0SO4o/H2k08+Y5830v7rxnf934BTC0rkXEXkSMR8QnETGTn0/yLT5sb+njHu3fXT7Yv7ucRKv18b+TrD49Fx0/k3olv2YxIn7yg4ifJ8/Gbezsri9Vq5WtdnFyrlnbnGvs7N5cqy2tVlYrG+Xy4sLi/Pu33iufW1/fqo3nR199+Ke97/wybdZ0fqazH+ep3fWxozip0Yj40UUEG4CRvD/jg24IL6UQEW9ExNvZ/T8TI9mzCQBcZa3WTLRmOssAwFVXyHJgSaGU5wKmo1Aoldo5vDdjqlCtN5o37tS3N1baubLZGCvcWatW5vNc4WyMJWl5ITt+Ui4fK9+KiNcj4lcTk1m5tFyvrgzyhQ8ADLFXjs3//5toz/8AwBVXHHQDAIC+M/8DwPAx/wPA8DH/A8DwMf8DwPAx/wPA8DH/A8BQ+fFHH6Vb6yD//uuVT3e21+uf3lypNNZLte3l0nJ9a7O0Wq+vZt/ZUzvpetV6fXPh3dj+bPa7m43mXGNn93atvr3RvJ19r/ftylhfegUAPM/rbz34axIRex9MZlt0rOVgroarrTDoBgADMzLoBgADc7TalwXcYOic4T2+9ABcEV2W6H1KMSImj59stVqti2sScMGuf0n+H4ZVR/7f/wKGISP/D8NrdNANAAam1UpOu+Z/nPaBAMDlJscP9Pj8/418//v8w4GfrRx/xP2LbBUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABcbofr/5bytcCno1AolSJejYjZGEvurFUr8xHxWkT8ZWJsIi0vDLjNAMBZFf6R5Ot/XZ95Z/p47XjyeCLbR8QvfvPxrz9baja3/pye/89Ekp9v3s/PlwfSAQDgBIfzdLbveCP/aP/u8uHWz/b88/sRUWzHP9gfj4Oj+KMxmu2LMRYRU/9N8nJb0pG7OIu9exHxxW79T2I6y4G0Vz49Hj+N/Wpf4xeeil/I6tr79HfxhXNoCwybB+n482G3+68Q17J99/u/mI1QZ5ePf+mllg+yMfBJ/MPxb6TH+HfttDHe/eMP20eTz9bdi/jyaMRh7IOO8ecwftIj/junjP+3r3zt7V51rd9GXI/u8TtjzTVrm3ONnd2ba7Wl1cpqZaNcXlxYnH//1nvluSxHPdd7NvjXBzde61WX9n+qR/ziCf3/5in7/7v/f/LTrz8n/re/0S1+Id58Tvx0TvzWKeMvTf2h2Ksujb/So/8nPf83Thn/4d93n1k2HAAYnMbO7vpStVrZ6ufB4QuJvgZ18CIHI3G+F4yIvXO4Tvqv5lL8frocfK9fscbjhX6q1XqpWL1GjPPIugGXwdFNHxGPB90YAAAAAAAAAAAAAACgq378xdKg+wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDV9XkAAAD///ogzOo=") fsetxattr$security_evm(r5, &(0x7f0000000680), &(0x7f00000006c0)=@v2={0x5, 0x0, 0x1, 0x2, 0x3d, "211601d7157eef5910a87fdae794b1d87186768361aa2a1b54be429da1196320774022863c5c6e870b7a982b0dc5afec5115b72965bfca7d3ee62e2c5a"}, 0x46, 0x0) mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x6000, 0x1) socket$nl_netfilter(0x10, 0x3, 0xc) socket(0x10, 0x3, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r6}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x80, &(0x7f0000000000)={[{@lazytime}]}, 0x1, 0x3ef, &(0x7f0000000900)="$eJzs3M1uG1UbAOB3Jn9f0h/nk1igwiISCIKAuA4EKEKisOVnA1yAlaSlwm2qxki0ZAGIFSsWiB2L3gALLqCqEBISe1bcAKpUoTQLWGE09ozjxLETE7dO6PNII58zM857Xs9kcs7EcwJ4aM1FxPmIGIuIxYgo5evTfInPWku2373NjeWtzY3lJBqN9/5IIsnXFT8ryV9P5JX5NCL9MuKxX7vjrl+/8VG1Vlu9ltfL9ctXy+vXbzx/6XL14urF1SuVl89VKkuLr1ReHFqu3z75zLmxN8+f+e630u2lycnprL0n822decT/hhNvLuban8luS8MJcWRMtkvpSNsBAEB/ad73H2/2/0sx1iy1lKK8MdLGAQAAAEPReD1/3cfEvnsAAAAAR1diZA8AAAD/ccX3AO5tbiwXywi/jvDA3X0jIma3n23eauc/3n4MeGLH863DNRcRV59KStkSu59DBgC4D25n/Z+ze/X/0ni0Y7+pfFqU6SHHn9tV7+7/pHeGHHKHrP/3WkRsdfX/2vOYzI7ltVPNruJEcuFSbfVsRJyOiPmYmMrqlT4x3vrz+3d7bcvy/yk5dbpYsvjZ6/Ye6Z3xqZ3vWanWq4fJudPdzyPOjO+Vf9Lu/yYRMXOIGGOf3ny117b987+/Gjcjnt7z+G/P3JP0n5+o3DwfysVZ0e2vL354p1f8UeefHf+Z/vnPJp3zNa0PHuPWh7883mtb5/hnkPN/Mnm/WS7GZZ9U6/VrlYjJ5O3u9Yvb7y3qxf5Z/vNP7P37X1z/knxOq5P5NWBQX33943MHyT9bsvitsWBj6l+EGliW/8pAx3/wwku3fv5g8PwL2fFvzQE2n6/pd/0r/j4dtIGH/fwAAADgOEib9zWSdKFdTtOFhdb9jkdiJq2trdefvbD28ZWV1v2P2ZhIiztdpY77oZXWv9Hb9cVd9Rci4v8R8U1pullfWF6rrYw6eQAAAHhInOgx/s/8Xhp16wAAAIChmT3wnsN+/AsAAAB4UA4+/gcAAACOocPM66dwbAvJ30eiGQpHtzDqKxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDx9k8AAAD//8DAtgI=") 269.7721ms ago: executing program 4 (id=1111): syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44}, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000"], 0x48) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r1}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) ioprio_get$pid(0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bdaa, 0xffffffff, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x0, 0xa}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000a40)=@newtfilter={0x68, 0x2c, 0xd27, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r5, {0xc, 0xffe0}, {}, {0xe, 0x6}}, [@filter_kind_options=@f_flow={{0x9}, {0x38, 0x2, [@TCA_FLOW_EMATCHES={0x34, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x3}}, @TCA_EMATCH_TREE_LIST={0x28, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_CONTAINER={0x10, 0x2, 0x0, 0x0, {{0x5, 0x0, 0x200}, "81"}}]}]}]}}]}, 0x68}, 0x1, 0x0, 0x0, 0x40010}, 0x20040054) 114.938225ms ago: executing program 3 (id=1112): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141a82, 0x0) write$cgroup_int(r2, &(0x7f0000000040)=0x900, 0x12) 0s ago: executing program 2 (id=1113): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x20241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd27, 0x8000, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {}, {0xa}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_KEYS={0x8, 0x1, 0x9218}, @TCA_FLOW_BASECLASS={0x8, 0x3, {0xffe0, 0xd}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40090}, 0x20000800) kernel console output (not intermixed with test programs): ip=0xf709e539 code=0x7ffc0000 [ 280.576423][ T30] audit: type=1326 audit(1750912616.644:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6071 comm="syz.2.32" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 280.607668][ T30] audit: type=1326 audit(1750912616.654:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6071 comm="syz.2.32" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 281.467055][ T6080] loop0: detected capacity change from 0 to 512 [ 281.870945][ T6080] EXT4-fs (loop0): 1 orphan inode deleted [ 281.880660][ T6080] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 281.903638][ T4486] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:28: Failed to release dquot type 1 [ 281.992465][ T6080] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 282.200880][ T6080] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 282.212657][ T6097] netlink: 8 bytes leftover after parsing attributes in process `syz.4.38'. [ 282.684469][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 283.738581][ T6110] netlink: 8 bytes leftover after parsing attributes in process `syz.3.46'. [ 283.958995][ T6111] sch_tbf: burst 0 is lower than device veth0_virt_wifi mtu (1514) ! [ 284.667678][ T6117] netlink: 132 bytes leftover after parsing attributes in process `syz.0.48'. [ 285.420229][ T6123] capability: warning: `syz.2.52' uses deprecated v2 capabilities in a way that may be insecure [ 285.946070][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 285.952984][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 288.109266][ T6152] loop4: detected capacity change from 0 to 128 [ 289.348315][ T4486] kworker/u8:28: attempt to access beyond end of device [ 289.348315][ T4486] loop4: rw=1, sector=145, nr_sectors = 8 limit=128 [ 289.363053][ T4486] kworker/u8:28: attempt to access beyond end of device [ 289.363053][ T4486] loop4: rw=1, sector=161, nr_sectors = 8 limit=128 [ 289.378198][ T4486] kworker/u8:28: attempt to access beyond end of device [ 289.378198][ T4486] loop4: rw=1, sector=177, nr_sectors = 8 limit=128 [ 289.404532][ T4486] kworker/u8:28: attempt to access beyond end of device [ 289.404532][ T4486] loop4: rw=1, sector=193, nr_sectors = 8 limit=128 [ 289.421653][ T4486] kworker/u8:28: attempt to access beyond end of device [ 289.421653][ T4486] loop4: rw=1, sector=209, nr_sectors = 8 limit=128 [ 289.436158][ T4486] kworker/u8:28: attempt to access beyond end of device [ 289.436158][ T4486] loop4: rw=1, sector=225, nr_sectors = 8 limit=128 [ 289.450238][ T4486] kworker/u8:28: attempt to access beyond end of device [ 289.450238][ T4486] loop4: rw=1, sector=241, nr_sectors = 8 limit=128 [ 289.464522][ T4486] kworker/u8:28: attempt to access beyond end of device [ 289.464522][ T4486] loop4: rw=1, sector=257, nr_sectors = 8 limit=128 [ 289.478599][ T4486] kworker/u8:28: attempt to access beyond end of device [ 289.478599][ T4486] loop4: rw=1, sector=273, nr_sectors = 8 limit=128 [ 289.492698][ T4486] kworker/u8:28: attempt to access beyond end of device [ 289.492698][ T4486] loop4: rw=1, sector=289, nr_sectors = 8 limit=128 [ 289.737783][ T30] kauditd_printk_skb: 38 callbacks suppressed [ 289.737858][ T30] audit: type=1326 audit(1750912625.994:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 289.932840][ T30] audit: type=1326 audit(1750912626.054:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 289.955534][ T30] audit: type=1326 audit(1750912626.094:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 289.977939][ T30] audit: type=1326 audit(1750912626.094:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 290.000253][ T30] audit: type=1326 audit(1750912626.094:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 290.023359][ T30] audit: type=1326 audit(1750912626.104:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 290.045994][ T30] audit: type=1326 audit(1750912626.104:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 290.068420][ T30] audit: type=1326 audit(1750912626.104:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 290.090657][ T30] audit: type=1326 audit(1750912626.104:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 290.114582][ T30] audit: type=1326 audit(1750912626.104:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 292.575128][ T6182] loop2: detected capacity change from 0 to 512 [ 292.701807][ T6182] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 292.715186][ T6182] ext4 filesystem being mounted at /17/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 293.173840][ T6182] EXT4-fs error (device loop2): ext4_lookup:1787: inode #12: comm syz.2.79: iget: bad i_size value: 2533274857506816 [ 293.255590][ T6190] EXT4-fs error (device loop2): ext4_lookup:1787: inode #12: comm syz.2.79: iget: bad i_size value: 2533274857506816 [ 294.025146][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 295.511208][ T6212] loop0: detected capacity change from 0 to 512 [ 295.836601][ T6212] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 295.851042][ T6212] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 296.323779][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 298.586422][ T6254] loop0: detected capacity change from 0 to 128 [ 299.090493][ T6261] loop3: detected capacity change from 0 to 512 [ 299.688217][ T6269] Zero length message leads to an empty skb [ 299.763952][ T6261] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 299.778046][ T6261] ext4 filesystem being mounted at /20/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 300.627809][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 301.118049][ T30] kauditd_printk_skb: 56 callbacks suppressed [ 301.118125][ T30] audit: type=1326 audit(1750912637.374:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 301.311965][ T30] audit: type=1326 audit(1750912637.414:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=125 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 301.334464][ T30] audit: type=1326 audit(1750912637.414:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 301.357097][ T30] audit: type=1326 audit(1750912637.424:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 301.383965][ T30] audit: type=1326 audit(1750912637.434:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 301.406427][ T30] audit: type=1326 audit(1750912637.434:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 301.762602][ T30] audit: type=1326 audit(1750912637.744:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6290 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 301.786381][ T30] audit: type=1326 audit(1750912637.744:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 301.809235][ T30] audit: type=1326 audit(1750912637.744:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 301.831944][ T30] audit: type=1326 audit(1750912637.774:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.2.120" exe="/root/syz-executor" sig=0 arch=40000003 syscall=39 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 301.951017][ T6292] loop4: detected capacity change from 0 to 164 [ 302.053954][ T6292] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 303.297825][ T6311] loop4: detected capacity change from 0 to 512 [ 303.815500][ T6311] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 303.828922][ T6311] ext4 filesystem being mounted at /28/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 304.697594][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 305.772688][ T6344] sd 0:0:1:0: device reset [ 307.388745][ T6363] loop0: detected capacity change from 0 to 512 [ 307.447846][ T6361] loop2: detected capacity change from 0 to 512 [ 307.768152][ T6363] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 307.781848][ T6363] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 307.906485][ T30] kauditd_printk_skb: 16 callbacks suppressed [ 307.906558][ T30] audit: type=1800 audit(1750912644.164:141): pid=6363 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.152" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 307.944068][ T30] audit: type=1800 audit(1750912644.174:142): pid=6363 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.152" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 308.188888][ T6361] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 308.202790][ T6361] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 308.456919][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 308.993717][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 309.089050][ T6380] block device autoloading is deprecated and will be removed. [ 309.098332][ T6380] bio_check_eod: 29 callbacks suppressed [ 309.098403][ T6380] syz.1.157: attempt to access beyond end of device [ 309.098403][ T6380] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 310.442095][ T6395] usb usb1: usbfs: process 6395 (syz.4.165) did not claim interface 0 before use [ 310.938249][ T6402] loop0: detected capacity change from 0 to 1024 [ 310.981214][ T6402] ======================================================= [ 310.981214][ T6402] WARNING: The mand mount option has been deprecated and [ 310.981214][ T6402] and is ignored by this kernel. Remove the mand [ 310.981214][ T6402] option from the mount to silence this warning. [ 310.981214][ T6402] ======================================================= [ 311.019045][ T6402] EXT4-fs: Ignoring removed nobh option [ 311.025603][ T6402] EXT4-fs: Ignoring removed bh option [ 311.219646][ T6402] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 311.506073][ T6409] loop2: detected capacity change from 0 to 512 [ 311.808470][ T6409] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 311.822825][ T6409] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 311.935874][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 312.169817][ T6418] syz.4.173: attempt to access beyond end of device [ 312.169817][ T6418] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 312.785782][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 314.951002][ T30] audit: type=1326 audit(1750912650.954:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 314.973758][ T30] audit: type=1326 audit(1750912650.954:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 314.997254][ T30] audit: type=1326 audit(1750912650.964:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=40000003 syscall=234 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 315.020020][ T30] audit: type=1326 audit(1750912650.964:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6435 comm="syz.1.181" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 316.806416][ T6450] loop1: detected capacity change from 0 to 512 [ 317.038302][ T6450] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 317.059966][ T6450] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 317.766545][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 318.264154][ T6468] process 'syz.2.195' launched './file1' with NULL argv: empty string added [ 320.132372][ T6494] netlink: 4 bytes leftover after parsing attributes in process `syz.4.208'. [ 320.295700][ T6495] loop0: detected capacity change from 0 to 512 [ 320.533778][ T6495] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 320.547525][ T6495] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 321.055639][ T30] audit: type=1326 audit(1750912657.314:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.212" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 321.127248][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 321.160821][ T30] audit: type=1326 audit(1750912657.334:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.212" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 321.183849][ T30] audit: type=1326 audit(1750912657.344:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.212" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 321.206370][ T30] audit: type=1326 audit(1750912657.344:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.212" exe="/root/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 321.229153][ T30] audit: type=1326 audit(1750912657.344:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.212" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 321.252435][ T30] audit: type=1326 audit(1750912657.354:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.212" exe="/root/syz-executor" sig=0 arch=40000003 syscall=114 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 321.264052][ T6508] loop4: detected capacity change from 0 to 128 [ 321.275129][ T30] audit: type=1326 audit(1750912657.354:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.212" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 321.303771][ T30] audit: type=1326 audit(1750912657.354:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.212" exe="/root/syz-executor" sig=0 arch=40000003 syscall=356 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 321.326147][ T30] audit: type=1326 audit(1750912657.354:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.212" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 321.349451][ T30] audit: type=1326 audit(1750912657.364:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6506 comm="syz.4.212" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 321.613685][ T6511] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 321.952683][ T6508] syz.4.212: attempt to access beyond end of device [ 321.952683][ T6508] loop4: rw=2049, sector=129, nr_sectors = 8 limit=128 [ 322.152655][ T6508] syz.4.212: attempt to access beyond end of device [ 322.152655][ T6508] loop4: rw=2049, sector=169, nr_sectors = 8 limit=128 [ 322.324808][ T6516] syz.4.212: attempt to access beyond end of device [ 322.324808][ T6516] loop4: rw=2049, sector=145, nr_sectors = 24 limit=128 [ 322.339280][ T6516] syz.4.212: attempt to access beyond end of device [ 322.339280][ T6516] loop4: rw=2049, sector=177, nr_sectors = 8 limit=128 [ 322.353856][ T6516] syz.4.212: attempt to access beyond end of device [ 322.353856][ T6516] loop4: rw=2049, sector=193, nr_sectors = 8 limit=128 [ 322.369339][ T6516] syz.4.212: attempt to access beyond end of device [ 322.369339][ T6516] loop4: rw=2049, sector=209, nr_sectors = 8 limit=128 [ 322.409454][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4 [ 322.417857][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2 [ 322.428523][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.436826][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.444932][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.454616][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.462740][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.472069][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.480602][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.489284][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.497368][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.505588][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.514087][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.520063][ T6516] syz.4.212: attempt to access beyond end of device [ 322.520063][ T6516] loop4: rw=2049, sector=225, nr_sectors = 8 limit=128 [ 322.522069][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.522269][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.551871][ T9] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 322.695760][ T9] hid-generic 0000:3000000:0000.0001: hidraw0: HID v0.00 Device [sy] on syz0 [ 323.889663][ T6529] fido_id[6529]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 324.925596][ T6549] loop3: detected capacity change from 0 to 512 [ 324.996894][ T6549] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 325.116434][ T6549] EXT4-fs (loop3): orphan cleanup on readonly fs [ 325.124235][ T6549] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 325.149315][ T6549] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 325.159280][ T6549] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.226: bad orphan inode 768 [ 325.204560][ T6552] loop0: detected capacity change from 0 to 1024 [ 325.245311][ T6552] EXT4-fs: Ignoring removed nobh option [ 325.251234][ T6552] EXT4-fs: Ignoring removed bh option [ 325.267574][ T6553] loop1: detected capacity change from 0 to 1024 [ 325.282742][ T6549] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 325.395440][ T6556] netlink: 14 bytes leftover after parsing attributes in process `syz.2.229'. [ 325.426183][ T6552] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 325.432281][ T6553] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 325.462531][ T6553] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 325.912844][ T6563] netlink: 16 bytes leftover after parsing attributes in process `syz.4.230'. [ 325.923275][ T6563] netlink: 16 bytes leftover after parsing attributes in process `syz.4.230'. [ 326.082950][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 326.244641][ T6568] netlink: 4 bytes leftover after parsing attributes in process `syz.3.226'. [ 326.419306][ T3617] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm kworker/u8:15: bg 0: block 393: padding at end of block bitmap is not set [ 326.444570][ T3617] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 544 with error 117 [ 326.457828][ T3617] EXT4-fs (loop1): This should not happen!! Data will be lost [ 326.457828][ T3617] [ 326.538177][ T3617] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28 [ 326.551345][ T3617] EXT4-fs (loop1): This should not happen!! Data will be lost [ 326.551345][ T3617] [ 326.561236][ T3617] EXT4-fs (loop1): Total free blocks count 0 [ 326.569230][ T3617] EXT4-fs (loop1): Free/Dirty block details [ 326.575765][ T3617] EXT4-fs (loop1): free_blocks=0 [ 326.580932][ T3617] EXT4-fs (loop1): dirty_blocks=32 [ 326.586356][ T3617] EXT4-fs (loop1): Block reservation details [ 327.055586][ T30] kauditd_printk_skb: 55 callbacks suppressed [ 327.055667][ T30] audit: type=1326 audit(1750912663.304:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6570 comm="syz.2.232" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 327.095382][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4 [ 327.103782][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2 [ 327.112303][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.120340][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.129026][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.137194][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.145454][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.153704][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.161897][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.169919][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.178212][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.195673][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.207182][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.215486][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.223663][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.231835][ T5851] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0 [ 327.289446][ T30] audit: type=1326 audit(1750912663.374:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6570 comm="syz.2.232" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 327.330837][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 327.623599][ T5851] hid-generic 0000:3000000:0000.0002: hidraw0: HID v0.00 Device [sy] on syz0 [ 327.746565][ T30] audit: type=1326 audit(1750912663.984:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6570 comm="syz.2.232" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 327.925734][ T30] audit: type=1326 audit(1750912664.054:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6570 comm="syz.2.232" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 327.948681][ T30] audit: type=1326 audit(1750912664.174:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6580 comm="syz.0.236" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45539 code=0x7ffc0000 [ 327.972472][ T30] audit: type=1326 audit(1750912664.174:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6580 comm="syz.0.236" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45539 code=0x7ffc0000 [ 327.995349][ T30] audit: type=1326 audit(1750912664.184:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6580 comm="syz.0.236" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f45539 code=0x7ffc0000 [ 328.018574][ T30] audit: type=1326 audit(1750912664.184:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6580 comm="syz.0.236" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45539 code=0x7ffc0000 [ 328.075155][ T6581] mmap: syz.0.236 (6581) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 328.395807][ T6579] loop4: detected capacity change from 0 to 512 [ 328.415014][ T6581] loop0: detected capacity change from 0 to 1024 [ 328.466385][ T6581] EXT4-fs: Ignoring removed orlov option [ 328.472090][ T30] audit: type=1326 audit(1750912664.334:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6580 comm="syz.0.236" exe="/root/syz-executor" sig=0 arch=40000003 syscall=257 compat=1 ip=0xf7f45539 code=0x7ffc0000 [ 328.495690][ T30] audit: type=1326 audit(1750912664.414:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6580 comm="syz.0.236" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45539 code=0x7ffc0000 [ 328.553844][ T6581] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 328.622916][ T6581] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 328.708640][ T6579] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 328.723859][ T6579] ext4 filesystem being mounted at /48/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 328.746647][ T6581] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e840e01c, mo2=0000] [ 328.803729][ T6588] fido_id[6588]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 328.853912][ T6581] System zones: 0-1, 3-12 [ 328.912769][ T6581] EXT4-fs error (device loop0): ext4_map_blocks:816: inode #3: block 1: comm syz.0.236: lblock 1 mapped to illegal pblock 1 (length 1) [ 328.962068][ T6581] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.236: Failed to acquire dquot type 0 [ 328.992565][ T6581] EXT4-fs error (device loop0): ext4_free_blocks:6587: comm syz.0.236: Freeing blocks not in datazone - block = 0, count = 4096 [ 329.085317][ T6581] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.236: Invalid inode bitmap blk 0 in block_group 0 [ 329.127782][ T3617] EXT4-fs error (device loop0): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:15: lblock 1 mapped to illegal pblock 1 (length 1) [ 329.205809][ T6581] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem [ 329.236261][ T3617] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:15: Failed to release dquot type 0 [ 329.272917][ T6581] EXT4-fs (loop0): 1 orphan inode deleted [ 329.281116][ T6581] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 329.397063][ T6581] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 329.530867][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 330.109214][ T6600] loop2: detected capacity change from 0 to 1024 [ 330.195031][ T6600] EXT4-fs: Ignoring removed nobh option [ 330.200947][ T6600] EXT4-fs: Ignoring removed bh option [ 330.225317][ T6581] loop0: detected capacity change from 0 to 2048 [ 330.349736][ T6600] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 330.442404][ T6602] loop1: detected capacity change from 0 to 512 [ 330.514380][ T6602] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 330.545305][ T6607] loop4: detected capacity change from 0 to 512 [ 330.561256][ T6581] Alternate GPT is invalid, using primary GPT. [ 330.570243][ T6581] loop0: p1 p2 p3 [ 330.623368][ T6602] EXT4-fs (loop1): orphan cleanup on readonly fs [ 330.641722][ T6607] EXT4-fs: Ignoring removed nobh option [ 330.680065][ T6602] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.243: iget: bad i_size value: 38620345925642 [ 330.778714][ T6602] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.243: couldn't read orphan inode 15 (err -117) [ 330.828529][ T6602] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 330.924054][ T6607] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #3: comm syz.4.242: corrupted inode contents [ 330.953558][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 330.972624][ T6607] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #3: comm syz.4.242: mark_inode_dirty error [ 331.080721][ T6607] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #3: comm syz.4.242: corrupted inode contents [ 331.148911][ T6607] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #3: comm syz.4.242: mark_inode_dirty error [ 331.233918][ T6607] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.242: Failed to acquire dquot type 0 [ 331.335465][ T6607] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.242: corrupted inode contents [ 331.409343][ T6310] udevd[6310]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 331.426647][ T5990] udevd[5990]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 331.435841][ T5963] udevd[5963]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 331.462722][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 331.481624][ T6607] EXT4-fs error (device loop4): ext4_dirty_inode:6459: inode #16: comm syz.4.242: mark_inode_dirty error [ 331.528292][ T6607] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.242: corrupted inode contents [ 331.648372][ T6607] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #16: comm syz.4.242: mark_inode_dirty error [ 331.736368][ T6607] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.242: corrupted inode contents [ 331.836717][ T6607] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 331.876088][ T6607] EXT4-fs error (device loop4): ext4_do_update_inode:5568: inode #16: comm syz.4.242: corrupted inode contents [ 331.920199][ T6607] EXT4-fs error (device loop4): ext4_truncate:4597: inode #16: comm syz.4.242: mark_inode_dirty error [ 331.940821][ T6607] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 331.970226][ T6607] EXT4-fs (loop4): 1 truncate cleaned up [ 331.978622][ T6607] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 331.994673][ T6607] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 332.848331][ T30] kauditd_printk_skb: 76 callbacks suppressed [ 332.848406][ T30] audit: type=1326 audit(1750912669.104:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6622 comm="syz.0.248" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45539 code=0x7ffc0000 [ 332.897366][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x4 [ 332.905650][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x2 [ 332.923052][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 332.933996][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 332.942275][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 332.950361][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 332.958567][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 332.966757][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 332.974982][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 332.983175][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 332.991176][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 332.999428][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 333.007668][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 333.026393][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 333.037207][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 333.045405][ T5851] hid-generic 0000:3000000:0000.0003: unknown main item tag 0x0 [ 333.061739][ T30] audit: type=1326 audit(1750912669.314:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6622 comm="syz.0.248" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f45539 code=0x7ffc0000 [ 333.344139][ T5851] hid-generic 0000:3000000:0000.0003: hidraw0: HID v0.00 Device [sy] on syz0 [ 333.424514][ T30] audit: type=1326 audit(1750912669.684:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6622 comm="syz.0.248" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45539 code=0x7ffc0000 [ 333.552936][ T30] audit: type=1326 audit(1750912669.714:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6622 comm="syz.0.248" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f45539 code=0x7ffc0000 [ 334.092425][ T6629] fido_id[6629]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 334.299411][ T6607] syz.4.242 (6607) used greatest stack depth: 3880 bytes left [ 334.399463][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 334.815938][ T6637] loop0: detected capacity change from 0 to 512 [ 334.918340][ T6640] loop2: detected capacity change from 0 to 1024 [ 334.959981][ T6640] EXT4-fs: Ignoring removed nobh option [ 334.974770][ T6640] EXT4-fs: Ignoring removed bh option [ 335.032875][ T6637] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 335.046505][ T6637] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 335.157951][ T6640] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 335.439363][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 335.643788][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 335.828294][ T6657] netlink: 36 bytes leftover after parsing attributes in process `syz.3.259'. [ 336.499644][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x4 [ 336.510693][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x2 [ 336.519277][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.527395][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.535647][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.543804][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.551938][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.559958][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.568210][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.576373][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.584604][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.592836][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.602216][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.610436][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.618938][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.627059][ T9] hid-generic 0000:3000000:0000.0004: unknown main item tag 0x0 [ 336.642376][ T30] audit: type=1326 audit(1750912672.754:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6661 comm="syz.2.262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 336.771497][ T30] audit: type=1326 audit(1750912672.934:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6661 comm="syz.2.262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 337.153127][ T9] hid-generic 0000:3000000:0000.0004: hidraw0: HID v0.00 Device [sy] on syz0 [ 337.272686][ T30] audit: type=1326 audit(1750912673.514:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6661 comm="syz.2.262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 337.295573][ T30] audit: type=1326 audit(1750912673.514:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6661 comm="syz.2.262" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 337.839948][ T6672] fido_id[6672]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 338.068230][ T6310] udevd[6310]: failed to send result of seq 11483 to main daemon: Connection refused [ 338.706526][ T6684] loop3: detected capacity change from 0 to 512 [ 338.858862][ T6684] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 338.872452][ T6684] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 339.653949][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 340.026800][ T6698] loop4: detected capacity change from 0 to 512 [ 340.126857][ T6698] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.277: bg 0: block 5: invalid block bitmap [ 340.178350][ T6698] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 340.228580][ T6698] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.277: invalid indirect mapped block 3 (level 2) [ 340.255144][ T30] audit: type=1326 audit(1750912676.514:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6700 comm="syz.2.279" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 340.277806][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x4 [ 340.287492][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x2 [ 340.296131][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.304318][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.312940][ T6698] EXT4-fs (loop4): 2 truncates cleaned up [ 340.313116][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.320875][ T6698] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 340.326932][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.327146][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.327341][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.327540][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.364885][ T30] audit: type=1326 audit(1750912676.604:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6700 comm="syz.2.279" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 340.372379][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.404412][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.412718][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.420727][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.428872][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.437711][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.445937][ T9] hid-generic 0000:3000000:0000.0005: unknown main item tag 0x0 [ 340.483482][ T30] audit: type=1326 audit(1750912676.714:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6700 comm="syz.2.279" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 340.746292][ T9] hid-generic 0000:3000000:0000.0005: hidraw0: HID v0.00 Device [sy] on syz0 [ 340.845860][ T30] audit: type=1326 audit(1750912677.104:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6700 comm="syz.2.279" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 340.932350][ T30] audit: type=1326 audit(1750912677.134:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6700 comm="syz.2.279" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 340.998369][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 342.188351][ T6734] loop1: detected capacity change from 0 to 512 [ 342.301812][ T6734] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 342.315373][ T6734] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 343.045716][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 343.547597][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x4 [ 343.556047][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x2 [ 343.573329][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.584287][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.592567][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.600576][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.608795][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.617175][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.625439][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.633651][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.641782][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.649791][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.658018][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.675335][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.686280][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.694602][ T5851] hid-generic 0000:3000000:0000.0006: unknown main item tag 0x0 [ 343.747732][ T30] audit: type=1326 audit(1750912680.004:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6755 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 343.777211][ T30] audit: type=1326 audit(1750912680.004:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6755 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 343.802214][ T30] audit: type=1326 audit(1750912680.004:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6755 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 343.920500][ T5851] hid-generic 0000:3000000:0000.0006: hidraw0: HID v0.00 Device [sy] on syz0 [ 343.994205][ T30] audit: type=1326 audit(1750912680.214:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6755 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 344.017484][ T30] audit: type=1326 audit(1750912680.214:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6755 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 344.188706][ T6768] syz.4.298 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 345.883069][ T6783] loop0: detected capacity change from 0 to 512 [ 345.947967][ T6782] loop1: detected capacity change from 0 to 512 [ 346.091809][ T6783] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.305: bg 0: block 248: padding at end of block bitmap is not set [ 346.111077][ T6782] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 346.132828][ T6782] ext4 filesystem being mounted at /58/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 346.157890][ T6783] Quota error (device loop0): write_blk: dquota write failed [ 346.169957][ T6783] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 346.183523][ T6783] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.305: Failed to acquire dquot type 1 [ 346.274915][ T6783] EXT4-fs (loop0): 1 truncate cleaned up [ 346.283723][ T6783] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 346.297093][ T6783] ext4 filesystem being mounted at /63/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 346.597964][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 346.745497][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.206819][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x4 [ 347.212341][ T30] audit: type=1326 audit(1750912683.464:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 347.215025][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x2 [ 347.245111][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.254343][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.262843][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.270869][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.279197][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.287449][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.295569][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.303793][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.311942][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.319983][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.328086][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.336227][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.344327][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.353584][ T9] hid-generic 0000:3000000:0000.0007: unknown main item tag 0x0 [ 347.428174][ T30] audit: type=1326 audit(1750912683.624:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 347.438352][ T6802] loop0: detected capacity change from 0 to 512 [ 347.470258][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 347.477287][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 347.623742][ T9] hid-generic 0000:3000000:0000.0007: hidraw0: HID v0.00 Device [sy] on syz0 [ 347.648687][ T6802] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 347.662898][ T6802] ext4 filesystem being mounted at /64/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 347.670682][ T30] audit: type=1326 audit(1750912683.904:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 347.696011][ T30] audit: type=1326 audit(1750912683.904:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.4.310" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 348.297425][ T5809] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 348.583484][ T6819] random: crng reseeded on system resumption [ 348.669863][ T6819] Restarting kernel threads ... [ 348.709035][ T6819] Done restarting kernel threads. [ 348.923486][ T6821] netlink: 24 bytes leftover after parsing attributes in process `syz.0.315'. [ 349.150846][ T6825] loop4: detected capacity change from 0 to 1024 [ 349.233997][ T30] audit: type=1326 audit(1750912685.494:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6826 comm="syz.2.320" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 349.244461][ T6825] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 349.256588][ T30] audit: type=1326 audit(1750912685.494:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6826 comm="syz.2.320" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 349.363283][ T30] audit: type=1326 audit(1750912685.564:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6826 comm="syz.2.320" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 349.386216][ T30] audit: type=1326 audit(1750912685.574:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6826 comm="syz.2.320" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e539 code=0x7ffc0000 [ 349.432593][ T6825] EXT4-fs error (device loop4): ext4_ext_check_inode:523: inode #3: comm syz.4.319: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 3(4), depth 0(0) [ 349.543668][ T6825] EXT4-fs error (device loop4): ext4_quota_enable:7127: comm syz.4.319: Bad quota inode: 3, type: 0 [ 349.571698][ T6825] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 349.641048][ T6825] EXT4-fs (loop4): mount failed [ 349.797993][ T6825] netlink: 4 bytes leftover after parsing attributes in process `syz.4.319'. [ 349.887476][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x4 [ 349.895976][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x2 [ 349.907266][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 349.916615][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 349.925128][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 349.933264][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 349.941494][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 349.949523][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 349.957770][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 349.966166][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 349.974323][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 349.982462][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 349.990466][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 349.998578][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 350.006685][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 350.015867][ T9] hid-generic 0000:3000000:0000.0008: unknown main item tag 0x0 [ 350.200776][ T9] hid-generic 0000:3000000:0000.0008: hidraw0: HID v0.00 Device [sy] on syz0 [ 351.766151][ T6850] loop0: detected capacity change from 0 to 8192 [ 352.083039][ T6858] syz.1.332: attempt to access beyond end of device [ 352.083039][ T6858] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 352.653256][ T6863] loop2: detected capacity change from 0 to 512 [ 352.814501][ T6863] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.334: bg 0: block 248: padding at end of block bitmap is not set [ 352.870712][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x4 [ 352.879103][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x2 [ 352.888535][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.897063][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.905375][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.913527][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.921739][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.929753][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.937917][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.946180][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.954644][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.962983][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.971008][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.979140][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.988468][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 352.996948][ T9] hid-generic 0000:3000000:0000.0009: unknown main item tag 0x0 [ 353.017625][ T6863] __quota_error: 47 callbacks suppressed [ 353.017699][ T6863] Quota error (device loop2): write_blk: dquota write failed [ 353.031898][ T6863] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 353.042307][ T6863] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.334: Failed to acquire dquot type 1 [ 353.065342][ T6863] EXT4-fs (loop2): 1 truncate cleaned up [ 353.073540][ T6872] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 353.074382][ T6863] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 353.099716][ T6863] ext4 filesystem being mounted at /70/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 353.168566][ T9] hid-generic 0000:3000000:0000.0009: hidraw0: HID v0.00 Device [sy] on syz0 [ 353.196893][ T6872] loop4: detected capacity change from 0 to 256 [ 353.273982][ T6872] vfat: Unknown parameter 'ÿÿÿÿf)°ÆÕº©ñ"' [ 353.448541][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 353.954416][ T6878] loop1: detected capacity change from 0 to 1024 [ 353.988279][ T6878] EXT4-fs: Ignoring removed nobh option [ 353.995181][ T6878] EXT4-fs: Ignoring removed bh option [ 354.161839][ T6878] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 354.420568][ T6892] syz.3.346: attempt to access beyond end of device [ 354.420568][ T6892] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 354.473043][ T9] IPVS: starting estimator thread 0... [ 354.480743][ T6891] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 354.517034][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.585568][ T6894] IPVS: using max 192 ests per chain, 9600 per kthread [ 354.834765][ T6896] loop4: detected capacity change from 0 to 256 [ 355.279569][ T6905] loop2: detected capacity change from 0 to 512 [ 355.398815][ T6905] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.351: bg 0: block 248: padding at end of block bitmap is not set [ 355.426630][ T6905] Quota error (device loop2): write_blk: dquota write failed [ 355.435070][ T6905] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 355.455492][ T6905] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.351: Failed to acquire dquot type 1 [ 355.499788][ T6905] EXT4-fs (loop2): 1 truncate cleaned up [ 355.508428][ T6905] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 355.522282][ T6905] ext4 filesystem being mounted at /73/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 355.824018][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 356.754563][ T6921] loop4: detected capacity change from 0 to 1024 [ 356.824745][ T6921] EXT4-fs: Ignoring removed nobh option [ 356.830752][ T6921] EXT4-fs: Ignoring removed bh option [ 356.862120][ T6927] IPVS: nq: UDP 224.0.0.2:0 - no destination available [ 356.969235][ T6921] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 357.333688][ T6935] tmpfs: Bad value for 'mpol' [ 357.357280][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 357.980231][ T6940] loop1: detected capacity change from 0 to 512 [ 358.127718][ T6943] loop0: detected capacity change from 0 to 512 [ 358.466561][ T6940] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.365: bg 0: block 248: padding at end of block bitmap is not set [ 358.483496][ T6940] Quota error (device loop1): write_blk: dquota write failed [ 358.491730][ T6940] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 358.502193][ T6940] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.365: Failed to acquire dquot type 1 [ 358.508792][ T6943] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 358.519961][ T6940] EXT4-fs (loop1): 1 truncate cleaned up [ 358.522362][ T6940] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 358.537695][ T6943] ext4 filesystem being mounted at /70/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 358.541047][ T6940] ext4 filesystem being mounted at /73/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 358.896778][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 360.167478][ T6966] loop2: detected capacity change from 0 to 1024 [ 360.179013][ T6966] EXT4-fs: Ignoring removed nobh option [ 360.185428][ T6966] EXT4-fs: Ignoring removed bh option [ 360.300173][ T6966] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 360.737117][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 364.900576][ T6994] loop3: detected capacity change from 0 to 1024 [ 364.973422][ T6994] EXT4-fs: Ignoring removed nobh option [ 364.979307][ T6994] EXT4-fs: Ignoring removed bh option [ 365.105677][ T6994] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 365.453965][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 368.986960][ T7029] loop3: detected capacity change from 0 to 1024 [ 369.024976][ T7029] EXT4-fs: Ignoring removed nobh option [ 369.031011][ T7029] EXT4-fs: Ignoring removed bh option [ 369.260531][ T7029] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 369.423573][ T7035] loop1: detected capacity change from 0 to 512 [ 369.575781][ T7035] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 369.589145][ T7035] ext4 filesystem being mounted at /82/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 369.753036][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 369.917061][ T7022] Bluetooth: hci0: command 0x0406 tx timeout [ 369.923875][ T7022] Bluetooth: hci2: command 0x0406 tx timeout [ 369.930132][ T7022] Bluetooth: hci4: command 0x0406 tx timeout [ 369.938744][ T5810] Bluetooth: hci1: command 0x0406 tx timeout [ 369.946723][ T49] Bluetooth: hci3: command 0x0406 tx timeout [ 370.080952][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 371.101818][ T5851] IPVS: starting estimator thread 0... [ 371.147341][ T5799] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 371.156819][ T5799] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 371.168106][ T5799] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 371.187237][ T5799] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 371.199525][ T5799] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 371.212960][ T7055] IPVS: using max 192 ests per chain, 9600 per kthread [ 372.804653][ T7072] loop3: detected capacity change from 0 to 1024 [ 372.812600][ T7054] chnl_net:caif_netlink_parms(): no params data found [ 372.881631][ T7072] EXT4-fs: Ignoring removed nobh option [ 372.887606][ T7072] EXT4-fs: Ignoring removed bh option [ 372.947893][ T7075] loop2: detected capacity change from 0 to 512 [ 373.019220][ T7076] loop1: detected capacity change from 0 to 512 [ 373.084097][ T7072] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 373.104327][ T7076] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 373.213037][ T7076] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 373.272470][ T5799] Bluetooth: hci5: command tx timeout [ 373.282421][ T7076] System zones: 0-2, 18-18, 34-34 [ 373.303483][ T7075] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 373.316987][ T7075] ext4 filesystem being mounted at /97/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 373.359148][ T7076] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 373.362591][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 373.383895][ T7076] ext4 filesystem being mounted at /86/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 373.816899][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 373.889031][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 374.190383][ T5851] IPVS: starting estimator thread 0... [ 374.281865][ T7096] IPVS: using max 240 ests per chain, 12000 per kthread [ 374.645697][ T7054] bridge0: port 1(bridge_slave_0) entered blocking state [ 374.653652][ T7054] bridge0: port 1(bridge_slave_0) entered disabled state [ 374.661701][ T7054] bridge_slave_0: entered allmulticast mode [ 374.673050][ T7054] bridge_slave_0: entered promiscuous mode [ 374.774795][ T7054] bridge0: port 2(bridge_slave_1) entered blocking state [ 374.782597][ T7054] bridge0: port 2(bridge_slave_1) entered disabled state [ 374.790406][ T7054] bridge_slave_1: entered allmulticast mode [ 374.801978][ T7054] bridge_slave_1: entered promiscuous mode [ 375.059489][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x4 [ 375.067868][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x2 [ 375.076241][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.084513][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.092663][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.100656][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.109860][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.118362][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.126570][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.134752][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.143042][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.151063][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.159269][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.167759][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.175905][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.183990][ T9] hid-generic 0000:3000000:0000.000A: unknown main item tag 0x0 [ 375.245864][ T7054] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 375.257055][ T30] audit: type=1326 audit(1750912711.494:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7103 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 375.280423][ T30] audit: type=1326 audit(1750912711.504:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7103 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 375.317886][ T7054] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 375.360853][ T5799] Bluetooth: hci5: command tx timeout [ 375.693054][ T9] hid-generic 0000:3000000:0000.000A: hidraw0: HID v0.00 Device [sy] on syz0 [ 375.748565][ T30] audit: type=1326 audit(1750912711.994:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7103 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 375.772402][ T30] audit: type=1326 audit(1750912711.994:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7103 comm="syz.1.424" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 375.833470][ T7054] team0: Port device team_slave_0 added [ 375.904452][ T7054] team0: Port device team_slave_1 added [ 376.207253][ T7054] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 376.219238][ T7054] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 376.254753][ T7054] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 376.276860][ T7054] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 376.284349][ T7054] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 376.311555][ T7054] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 376.707573][ T7120] loop1: detected capacity change from 0 to 512 [ 376.777502][ T7113] loop3: detected capacity change from 0 to 8192 [ 376.858224][ T7120] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 376.869660][ T7054] hsr_slave_0: entered promiscuous mode [ 376.871655][ T7120] ext4 filesystem being mounted at /89/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 376.881218][ T7054] hsr_slave_1: entered promiscuous mode [ 376.896379][ T7054] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 376.904329][ T7054] Cannot create hsr debugfs directory [ 376.906331][ T9] kernel read not supported for file /vga_arbiter (pid: 9 comm: kworker/0:0) [ 377.441711][ T5799] Bluetooth: hci5: command tx timeout [ 377.514197][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 378.170267][ T7054] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 378.283335][ T7054] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 378.403109][ T7054] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 378.466574][ T7054] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 378.510642][ T5851] IPVS: starting estimator thread 0... [ 378.614411][ T7140] IPVS: using max 192 ests per chain, 9600 per kthread [ 379.168572][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x4 [ 379.176963][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x2 [ 379.185291][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.193512][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.202710][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.211184][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.220046][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.228201][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.236429][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.244671][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.252830][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.260840][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.269023][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.277104][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.285241][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.293375][ T9] hid-generic 0000:3000000:0000.000B: unknown main item tag 0x0 [ 379.382822][ T30] audit: type=1326 audit(1750912715.584:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.4.439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 379.412149][ T30] audit: type=1326 audit(1750912715.614:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.4.439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 379.566057][ T5799] Bluetooth: hci5: command tx timeout [ 379.646102][ T9] hid-generic 0000:3000000:0000.000B: hidraw0: HID v0.00 Device [sy] on syz0 [ 379.664509][ T30] audit: type=1326 audit(1750912715.924:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.4.439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 379.687592][ T30] audit: type=1326 audit(1750912715.924:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.4.439" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 379.985488][ T7054] 8021q: adding VLAN 0 to HW filter on device bond0 [ 380.214613][ T7054] 8021q: adding VLAN 0 to HW filter on device team0 [ 380.302786][ T5082] bridge0: port 1(bridge_slave_0) entered blocking state [ 380.310387][ T5082] bridge0: port 1(bridge_slave_0) entered forwarding state [ 380.324176][ T7159] loop3: detected capacity change from 0 to 512 [ 380.450622][ T5082] bridge0: port 2(bridge_slave_1) entered blocking state [ 380.458592][ T5082] bridge0: port 2(bridge_slave_1) entered forwarding state [ 380.605925][ T7159] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 380.619482][ T7159] ext4 filesystem being mounted at /86/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 381.178373][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 381.215543][ T7156] loop1: detected capacity change from 0 to 8192 [ 382.744444][ T7054] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 383.349300][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x4 [ 383.360154][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x2 [ 383.368717][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.377726][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.385915][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.394144][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.414391][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.422792][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.430848][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.439123][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.447278][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.455534][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.463682][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.472038][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.480061][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.486867][ T7196] loop3: detected capacity change from 0 to 512 [ 383.488344][ T5851] hid-generic 0000:3000000:0000.000C: unknown main item tag 0x0 [ 383.657086][ T5851] hid-generic 0000:3000000:0000.000C: hidraw0: HID v0.00 Device [sy] on syz0 [ 383.660841][ T30] audit: type=1326 audit(1750912719.904:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.1.452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 383.690845][ T30] audit: type=1326 audit(1750912719.904:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.1.452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 383.823353][ T7196] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 383.837146][ T7196] ext4 filesystem being mounted at /89/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 383.904835][ T30] audit: type=1326 audit(1750912720.014:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.1.452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 383.928544][ T30] audit: type=1326 audit(1750912720.014:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.1.452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 383.951483][ T30] audit: type=1326 audit(1750912720.034:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.1.452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 383.974091][ T30] audit: type=1326 audit(1750912720.034:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.1.452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 383.998856][ T30] audit: type=1326 audit(1750912720.034:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.1.452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 384.022194][ T30] audit: type=1326 audit(1750912720.034:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.1.452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 384.044974][ T30] audit: type=1326 audit(1750912720.044:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.1.452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 384.067368][ T30] audit: type=1326 audit(1750912720.044:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7190 comm="syz.1.452" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 384.558409][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 385.890926][ T7054] veth0_vlan: entered promiscuous mode [ 386.004201][ T7054] veth1_vlan: entered promiscuous mode [ 386.120916][ T7222] loop3: detected capacity change from 0 to 8192 [ 386.325071][ T7054] veth0_macvtap: entered promiscuous mode [ 386.415816][ T7054] veth1_macvtap: entered promiscuous mode [ 386.602840][ T7054] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 386.651167][ T7054] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 386.740700][ T7054] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 386.750010][ T7054] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 386.759686][ T7054] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 386.768887][ T7054] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 387.581906][ T7244] loop3: detected capacity change from 0 to 512 [ 387.726272][ T9] kernel read not supported for file /vga_arbiter (pid: 9 comm: kworker/0:0) [ 387.832319][ T7244] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 387.845767][ T7244] ext4 filesystem being mounted at /91/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 388.444890][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 390.511750][ T7270] loop4: detected capacity change from 0 to 8192 [ 390.820436][ T7287] loop2: detected capacity change from 0 to 512 [ 390.938096][ T7287] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 390.952563][ T7287] ext4 filesystem being mounted at /114/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 391.014983][ T1568] kernel read not supported for file /vga_arbiter (pid: 1568 comm: kworker/1:2) [ 391.525602][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 393.304895][ T7321] 9pnet_fd: Insufficient options for proto=fd [ 394.070544][ T4167] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 394.080153][ T4167] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 394.165588][ T3617] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 394.173969][ T3617] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 394.463270][ T7317] loop4: detected capacity change from 0 to 8192 [ 395.148346][ T7337] loop1: detected capacity change from 0 to 1024 [ 395.213954][ T7337] EXT4-fs: Ignoring removed nobh option [ 395.219867][ T7337] EXT4-fs: Ignoring removed bh option [ 395.448769][ T7337] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 395.896963][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 396.541171][ T7358] 9pnet_fd: Insufficient options for proto=fd [ 396.703181][ T7361] syz.4.508: attempt to access beyond end of device [ 396.703181][ T7361] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 398.153452][ T7376] loop1: detected capacity change from 0 to 1024 [ 398.192304][ T7376] EXT4-fs: Ignoring removed nobh option [ 398.198400][ T7376] EXT4-fs: Ignoring removed bh option [ 398.465954][ T7376] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 398.548933][ T7371] loop3: detected capacity change from 0 to 8192 [ 398.746965][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 399.087505][ T7389] 9pnet_fd: Insufficient options for proto=fd [ 399.288089][ T7390] loop4: detected capacity change from 0 to 764 [ 399.946563][ T7403] syz.3.523: attempt to access beyond end of device [ 399.946563][ T7403] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 401.347460][ T7417] loop1: detected capacity change from 0 to 1024 [ 401.380475][ T7417] EXT4-fs: Ignoring removed nobh option [ 401.387323][ T7417] EXT4-fs: Ignoring removed bh option [ 401.481856][ T7417] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 401.846569][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 404.137571][ T7457] loop3: detected capacity change from 0 to 1024 [ 404.224598][ T7457] EXT4-fs: Ignoring removed nobh option [ 404.230466][ T7457] EXT4-fs: Ignoring removed bh option [ 404.400903][ T7457] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 404.749096][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 406.332517][ T7494] netlink: 56 bytes leftover after parsing attributes in process `syz.4.558'. [ 408.110925][ T7504] loop4: detected capacity change from 0 to 1024 [ 408.236382][ T7504] EXT4-fs: Ignoring removed nobh option [ 408.242514][ T7504] EXT4-fs: Ignoring removed bh option [ 408.436134][ T7504] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 408.837072][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 408.844750][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 409.489667][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 413.523984][ T7485] Set syz1 is full, maxelem 65536 reached [ 414.286174][ T7548] loop3: detected capacity change from 0 to 1024 [ 414.343839][ T7548] EXT4-fs: Ignoring removed nobh option [ 414.349731][ T7548] EXT4-fs: Ignoring removed bh option [ 414.460393][ T7548] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 414.916075][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 415.277065][ T7561] loop4: detected capacity change from 0 to 2048 [ 415.433615][ T7561] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 415.560227][ T7561] netlink: 4 bytes leftover after parsing attributes in process `syz.4.584'. [ 416.162442][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 416.795770][ T7589] netlink: 4 bytes leftover after parsing attributes in process `syz.2.593'. [ 417.581654][ T7596] loop1: detected capacity change from 0 to 1024 [ 417.637023][ T7596] EXT4-fs: Ignoring removed nobh option [ 417.643841][ T7596] EXT4-fs: Ignoring removed bh option [ 417.679980][ T7602] loop4: detected capacity change from 0 to 256 [ 417.839055][ T7596] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 418.335472][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 418.840327][ T7611] loop2: detected capacity change from 0 to 2048 [ 419.000859][ T7611] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 419.222916][ T7611] netlink: 4 bytes leftover after parsing attributes in process `syz.2.602'. [ 419.712152][ T7632] loop5: detected capacity change from 0 to 256 [ 419.815661][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 420.029604][ T7632] FAT-fs (loop5): Directory bread(block 64) failed [ 420.037600][ T7632] FAT-fs (loop5): Directory bread(block 65) failed [ 420.044822][ T7632] FAT-fs (loop5): Directory bread(block 66) failed [ 420.051735][ T7632] FAT-fs (loop5): Directory bread(block 67) failed [ 420.059733][ T7632] FAT-fs (loop5): Directory bread(block 68) failed [ 420.066947][ T7632] FAT-fs (loop5): Directory bread(block 69) failed [ 420.074325][ T7632] FAT-fs (loop5): Directory bread(block 70) failed [ 420.081121][ T7632] FAT-fs (loop5): Directory bread(block 71) failed [ 420.088182][ T7632] FAT-fs (loop5): Directory bread(block 72) failed [ 420.095357][ T7632] FAT-fs (loop5): Directory bread(block 73) failed [ 420.400169][ T7632] syz.5.610: attempt to access beyond end of device [ 420.400169][ T7632] loop5: rw=524288, sector=1768, nr_sectors = 4 limit=256 [ 420.414666][ T7632] syz.5.610: attempt to access beyond end of device [ 420.414666][ T7632] loop5: rw=0, sector=1768, nr_sectors = 4 limit=256 [ 420.472379][ T7636] loop3: detected capacity change from 0 to 512 [ 420.532005][ T7636] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 420.582999][ T7636] EXT4-fs (loop3): orphan cleanup on readonly fs [ 420.590010][ T7636] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 420.605349][ T7636] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 420.612312][ T7636] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.613: bad orphan inode 768 [ 420.635769][ T7636] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 421.445236][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.881164][ T7657] loop1: detected capacity change from 0 to 128 [ 421.924766][ T7655] loop5: detected capacity change from 0 to 1024 [ 422.016026][ T7655] EXT4-fs: Ignoring removed nobh option [ 422.022403][ T7655] EXT4-fs: Ignoring removed bh option [ 422.220421][ T7655] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 422.448238][ T7674] netlink: 4 bytes leftover after parsing attributes in process `syz.4.622'. [ 422.844759][ T7054] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.324432][ T6937] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 424.527708][ T5851] IPVS: starting estimator thread 0... [ 424.675085][ T7697] IPVS: using max 240 ests per chain, 12000 per kthread [ 424.996941][ T7703] loop3: detected capacity change from 0 to 1024 [ 425.042073][ T7703] EXT4-fs: Ignoring removed nobh option [ 425.048213][ T7703] EXT4-fs: Ignoring removed bh option [ 425.182616][ T7703] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 425.684012][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 425.773588][ T7722] netlink: 4 bytes leftover after parsing attributes in process `syz.4.637'. [ 425.848598][ T7723] loop5: detected capacity change from 0 to 128 [ 428.322444][ T7755] loop1: detected capacity change from 0 to 1024 [ 428.332739][ T7755] EXT4-fs: Ignoring removed nobh option [ 428.338612][ T7755] EXT4-fs: Ignoring removed bh option [ 428.506163][ T7755] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 428.666844][ T9] usb 6-1: new low-speed USB device number 2 using dummy_hcd [ 428.732752][ T7764] netlink: 4 bytes leftover after parsing attributes in process `syz.3.653'. [ 428.861949][ T9] usb 6-1: unable to get BOS descriptor or descriptor too short [ 428.912380][ T9] usb 6-1: unable to read config index 0 descriptor/start: -71 [ 428.920436][ T9] usb 6-1: can't read configurations, error -71 [ 429.023520][ T3617] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 429.063265][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 429.188269][ T3617] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 429.227179][ T7757] loop2: detected capacity change from 0 to 8192 [ 429.398120][ T3617] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 429.640550][ T3617] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 430.414694][ T3617] bridge_slave_1: left allmulticast mode [ 430.420636][ T3617] bridge_slave_1: left promiscuous mode [ 430.427640][ T3617] bridge0: port 2(bridge_slave_1) entered disabled state [ 430.562681][ T3617] bridge_slave_0: left allmulticast mode [ 430.568638][ T3617] bridge_slave_0: left promiscuous mode [ 430.575562][ T3617] bridge0: port 1(bridge_slave_0) entered disabled state [ 431.418804][ T3617] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 431.524366][ T3617] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 431.585231][ T3617] bond0 (unregistering): Released all slaves [ 431.925688][ T7793] loop2: detected capacity change from 0 to 1024 [ 431.966838][ T7793] EXT4-fs: Ignoring removed nobh option [ 431.973137][ T7793] EXT4-fs: Ignoring removed bh option [ 432.146095][ T7793] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 432.420158][ T3617] hsr_slave_0: left promiscuous mode [ 432.471972][ T3617] hsr_slave_1: left promiscuous mode [ 432.480361][ T3617] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 432.488521][ T3617] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 432.561909][ T3617] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 432.569864][ T3617] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 432.659237][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 432.684415][ T3617] veth1_macvtap: left promiscuous mode [ 432.690219][ T3617] veth0_macvtap: left promiscuous mode [ 432.696549][ T3617] veth1_vlan: left promiscuous mode [ 432.702538][ T3617] veth0_vlan: left promiscuous mode [ 433.780624][ T7806] loop5: detected capacity change from 0 to 8192 [ 433.804730][ T3617] team0 (unregistering): Port device team_slave_1 removed [ 433.895320][ T3617] team0 (unregistering): Port device team_slave_0 removed [ 435.298056][ T7832] loop3: detected capacity change from 0 to 1024 [ 435.355004][ T7832] EXT4-fs: Ignoring removed nobh option [ 435.360911][ T7832] EXT4-fs: Ignoring removed bh option [ 435.443140][ T7832] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 435.784295][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 436.463860][ T7852] loop3: detected capacity change from 0 to 512 [ 436.538872][ T7852] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 436.590713][ T7852] EXT4-fs (loop3): orphan cleanup on readonly fs [ 436.657446][ T7852] Quota error (device loop3): do_check_range: Getting block 196613 out of range 1-5 [ 436.667752][ T7852] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 436.677607][ T7852] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.689: Failed to acquire dquot type 1 [ 436.709941][ T7852] EXT4-fs (loop3): 1 truncate cleaned up [ 436.744335][ T7852] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-00000040ed00 ro without journal. Quota mode: writeback. [ 436.806798][ T7852] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 436.862049][ T7853] loop1: detected capacity change from 0 to 8192 [ 437.116510][ T7852] EXT4-fs warning (device loop3): ext4_multi_mount_protect:332: MMP startup interrupted, failing mount [ 437.116510][ T7852] [ 437.410325][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-00000040ed00. [ 437.415161][ T7868] loop4: detected capacity change from 0 to 256 [ 437.554721][ T7871] loop2: detected capacity change from 0 to 128 [ 437.812303][ T7868] FAT-fs (loop4): Directory bread(block 64) failed [ 437.819317][ T7868] FAT-fs (loop4): Directory bread(block 65) failed [ 437.826777][ T7868] FAT-fs (loop4): Directory bread(block 66) failed [ 437.833907][ T7868] FAT-fs (loop4): Directory bread(block 67) failed [ 437.840855][ T7868] FAT-fs (loop4): Directory bread(block 68) failed [ 437.847771][ T7868] FAT-fs (loop4): Directory bread(block 69) failed [ 437.854918][ T7868] FAT-fs (loop4): Directory bread(block 70) failed [ 437.862662][ T7868] FAT-fs (loop4): Directory bread(block 71) failed [ 437.869589][ T7868] FAT-fs (loop4): Directory bread(block 72) failed [ 437.885990][ T7868] FAT-fs (loop4): Directory bread(block 73) failed [ 438.041114][ T7876] loop5: detected capacity change from 0 to 1024 [ 438.052821][ T7876] EXT4-fs: Ignoring removed nobh option [ 438.058689][ T7876] EXT4-fs: Ignoring removed bh option [ 438.348831][ T7876] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 439.160346][ T7054] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 441.165182][ T7895] loop1: detected capacity change from 0 to 8192 [ 441.592644][ T7909] loop2: detected capacity change from 0 to 128 [ 442.267569][ T7915] loop5: detected capacity change from 0 to 1024 [ 442.299924][ T7915] EXT4-fs: Ignoring removed nobh option [ 442.306193][ T7915] EXT4-fs: Ignoring removed bh option [ 442.428441][ T7915] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 442.820147][ T7054] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 444.114594][ T7949] loop3: detected capacity change from 0 to 128 [ 444.176367][ T7940] loop5: detected capacity change from 0 to 8192 [ 445.249529][ T7955] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 445.415869][ T7961] loop3: detected capacity change from 0 to 1024 [ 445.442808][ T7961] EXT4-fs: Ignoring removed nobh option [ 445.448686][ T7961] EXT4-fs: Ignoring removed bh option [ 445.459445][ T7957] syzkaller1: entered promiscuous mode [ 445.459555][ T7957] syzkaller1: entered allmulticast mode [ 445.632350][ T7961] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 446.007894][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 447.435789][ T7982] loop3: detected capacity change from 0 to 128 [ 447.687316][ T7988] syz.5.742: attempt to access beyond end of device [ 447.687316][ T7988] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 448.346549][ T7984] loop2: detected capacity change from 0 to 8192 [ 448.882583][ T7996] loop3: detected capacity change from 0 to 1024 [ 448.933910][ T7996] EXT4-fs: Ignoring removed nobh option [ 448.940282][ T7996] EXT4-fs: Ignoring removed bh option [ 449.068126][ T7996] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 449.477447][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 450.030454][ T8016] loop2: detected capacity change from 0 to 128 [ 450.437239][ T8019] syz.4.755: attempt to access beyond end of device [ 450.437239][ T8019] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 451.462866][ T8032] loop2: detected capacity change from 0 to 1024 [ 451.473574][ T8032] EXT4-fs: Ignoring removed nobh option [ 451.479447][ T8032] EXT4-fs: Ignoring removed bh option [ 451.588220][ T8032] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 452.001655][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 452.099293][ T8028] loop4: detected capacity change from 0 to 8192 [ 453.129327][ T8051] loop4: detected capacity change from 0 to 128 [ 453.275657][ T8055] syz.3.769: attempt to access beyond end of device [ 453.275657][ T8055] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 455.212780][ T8085] syz.4.782: attempt to access beyond end of device [ 455.212780][ T8085] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 455.216909][ T8072] loop1: detected capacity change from 0 to 8192 [ 455.457141][ T8088] loop2: detected capacity change from 0 to 128 [ 457.627219][ T8114] syz.5.796: attempt to access beyond end of device [ 457.627219][ T8114] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 457.815908][ T8117] netlink: 20 bytes leftover after parsing attributes in process `syz.4.797'. [ 458.488498][ T8125] loop4: detected capacity change from 0 to 128 [ 458.715350][ T8118] loop1: detected capacity change from 0 to 8192 [ 458.764935][ T8126] netlink: 8 bytes leftover after parsing attributes in process `syz.3.787'. [ 458.798262][ T8128] netlink: 16 bytes leftover after parsing attributes in process `syz.2.802'. [ 459.133152][ T8126] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -4 [ 459.144721][ T8126] platform regulatory.0: Direct firmware load for regulatory.db failed with error -4 [ 459.154991][ T8126] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 459.427055][ T8128] infiniband syz!: set active [ 459.432274][ T8128] infiniband syz!: added team_slave_0 [ 459.722884][ T8128] RDS/IB: syz!: added [ 459.727506][ T8128] smc: adding ib device syz! with port count 1 [ 459.734240][ T8128] smc: ib device syz! port 1 has pnetid [ 460.572520][ T30] audit: type=1326 audit(1750912796.804:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.4.805" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 460.721701][ T30] audit: type=1326 audit(1750912796.934:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.4.805" exe="/root/syz-executor" sig=0 arch=40000003 syscall=290 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 460.744391][ T30] audit: type=1326 audit(1750912796.954:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.4.805" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 460.767190][ T30] audit: type=1326 audit(1750912796.954:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.4.805" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 460.933712][ T30] audit: type=1326 audit(1750912797.084:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.4.805" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 460.957557][ T30] audit: type=1326 audit(1750912797.084:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.4.805" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 460.980059][ T30] audit: type=1326 audit(1750912797.094:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.4.805" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 461.002658][ T30] audit: type=1326 audit(1750912797.094:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.4.805" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 461.026206][ T30] audit: type=1326 audit(1750912797.094:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.4.805" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 461.048815][ T30] audit: type=1326 audit(1750912797.094:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8139 comm="syz.4.805" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd2539 code=0x7ffc0000 [ 461.226309][ T8126] syz.3.787 (8126) used greatest stack depth: 2584 bytes left [ 462.594454][ T8158] syz.1.810: attempt to access beyond end of device [ 462.594454][ T8158] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 463.243680][ T8166] loop1: detected capacity change from 0 to 128 [ 464.179237][ T8161] loop3: detected capacity change from 0 to 8192 [ 465.251846][ T8191] syz.2.825: attempt to access beyond end of device [ 465.251846][ T8191] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 465.412854][ T8193] netlink: 16 bytes leftover after parsing attributes in process `syz.5.826'. [ 465.506383][ T8193] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 467.545069][ T8216] loop3: detected capacity change from 0 to 8192 [ 467.649892][ T8228] syz.2.841: attempt to access beyond end of device [ 467.649892][ T8228] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 467.940212][ T8231] veth0_to_hsr: entered promiscuous mode [ 467.994051][ T8231] netlink: 4 bytes leftover after parsing attributes in process `syz.5.842'. [ 468.115089][ T8231] veth0_to_hsr (unregistering): left promiscuous mode [ 468.199682][ T8231] hsr_slave_0 (unregistering): left promiscuous mode [ 468.327995][ T8237] netlink: 16 bytes leftover after parsing attributes in process `syz.4.844'. [ 468.415282][ T8237] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 470.250571][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 470.448414][ T8271] syz.1.857: attempt to access beyond end of device [ 470.448414][ T8271] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 471.056635][ T8276] netlink: 16 bytes leftover after parsing attributes in process `syz.5.860'. [ 471.123907][ T8276] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 471.216516][ T8265] loop3: detected capacity change from 0 to 8192 [ 472.931602][ T8307] syz.3.872: attempt to access beyond end of device [ 472.931602][ T8307] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 473.833220][ T8320] netlink: 16 bytes leftover after parsing attributes in process `syz.5.878'. [ 473.879410][ T8320] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 474.520902][ T8318] loop3: detected capacity change from 0 to 8192 [ 474.548479][ T8331] 9pnet_fd: Insufficient options for proto=fd [ 475.430070][ T8342] syz.5.887: attempt to access beyond end of device [ 475.430070][ T8342] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 476.232004][ T8353] netlink: 16 bytes leftover after parsing attributes in process `syz.3.892'. [ 476.324350][ T8353] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 476.494615][ T8358] syzkaller0: entered promiscuous mode [ 476.500396][ T8358] syzkaller0: entered allmulticast mode [ 477.944239][ T8367] loop4: detected capacity change from 0 to 8192 [ 478.040209][ T8380] syz.2.901: attempt to access beyond end of device [ 478.040209][ T8380] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 478.274537][ T3065] kernel read not supported for file /vga_arbiter (pid: 3065 comm: kworker/0:2) [ 479.331075][ T8396] netlink: 16 bytes leftover after parsing attributes in process `syz.2.909'. [ 479.408873][ T8396] syz!: rxe_newlink: already configured on team_slave_0 [ 479.707875][ T30] kauditd_printk_skb: 5 callbacks suppressed [ 479.707959][ T30] audit: type=1326 audit(1750912815.964:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.1.913" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 479.738020][ T30] audit: type=1326 audit(1750912815.964:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.1.913" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 479.761851][ T30] audit: type=1326 audit(1750912815.994:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.1.913" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 479.984716][ T8407] syz.3.914: attempt to access beyond end of device [ 479.984716][ T8407] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 480.072007][ T30] audit: type=1326 audit(1750912816.084:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.1.913" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 480.095204][ T30] audit: type=1326 audit(1750912816.084:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.1.913" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 480.117889][ T30] audit: type=1326 audit(1750912816.164:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.1.913" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 480.140710][ T30] audit: type=1326 audit(1750912816.204:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.1.913" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 480.163280][ T30] audit: type=1326 audit(1750912816.204:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.1.913" exe="/root/syz-executor" sig=0 arch=40000003 syscall=103 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 480.492490][ T30] audit: type=1326 audit(1750912816.724:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.1.913" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 480.589428][ T30] audit: type=1326 audit(1750912816.774:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8404 comm="syz.1.913" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce539 code=0x7ffc0000 [ 481.288337][ T8409] loop4: detected capacity change from 0 to 8192 [ 482.735697][ T8437] netlink: 16 bytes leftover after parsing attributes in process `syz.5.927'. [ 482.791608][ T8437] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 483.092390][ T8440] syz.2.928: attempt to access beyond end of device [ 483.092390][ T8440] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 483.891662][ T8448] random: crng reseeded on system resumption [ 484.549315][ T8448] loop2: detected capacity change from 0 to 8192 [ 485.070938][ T8451] loop5: detected capacity change from 0 to 8192 [ 486.322580][ T8472] syz.1.942: attempt to access beyond end of device [ 486.322580][ T8472] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 486.370809][ T8468] netlink: 16 bytes leftover after parsing attributes in process `syz.2.940'. [ 486.440026][ T8468] syz!: rxe_newlink: already configured on team_slave_0 [ 487.779558][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 487.779644][ T30] audit: type=1326 audit(1750912824.034:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.5.951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46539 code=0x7ffc0000 [ 487.881573][ T30] audit: type=1326 audit(1750912824.064:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.5.951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46539 code=0x7ffc0000 [ 487.904791][ T30] audit: type=1326 audit(1750912824.094:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.5.951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f46539 code=0x7ffc0000 [ 487.927494][ T30] audit: type=1326 audit(1750912824.094:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.5.951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46539 code=0x7ffc0000 [ 487.950761][ T30] audit: type=1326 audit(1750912824.094:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.5.951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46539 code=0x7ffc0000 [ 487.973483][ T30] audit: type=1326 audit(1750912824.114:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.5.951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f46539 code=0x7ffc0000 [ 487.996375][ T30] audit: type=1326 audit(1750912824.124:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.5.951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46539 code=0x7ffc0000 [ 488.018858][ T30] audit: type=1326 audit(1750912824.124:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.5.951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46539 code=0x7ffc0000 [ 488.041226][ T30] audit: type=1326 audit(1750912824.124:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.5.951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f46539 code=0x7ffc0000 [ 488.207944][ T30] audit: type=1326 audit(1750912824.364:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.5.951" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f46539 code=0x7ffc0000 [ 488.732780][ T8502] syz.1.954: attempt to access beyond end of device [ 488.732780][ T8502] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 488.813393][ T8491] loop4: detected capacity change from 0 to 8192 [ 488.946593][ T8504] netlink: 16 bytes leftover after parsing attributes in process `syz.2.956'. [ 489.046205][ T8504] syz!: rxe_newlink: already configured on team_slave_0 [ 490.526359][ T8524] netlink: 12 bytes leftover after parsing attributes in process `syz.5.963'. [ 490.553929][ T8524] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 490.563173][ T8524] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 490.572355][ T8524] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 490.581619][ T8524] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 490.644667][ T8524] vxlan0: entered promiscuous mode [ 491.012322][ T8529] syz.4.967: attempt to access beyond end of device [ 491.012322][ T8529] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 491.831040][ T8530] loop2: detected capacity change from 0 to 8192 [ 491.876006][ T8537] netlink: 16 bytes leftover after parsing attributes in process `syz.4.971'. [ 491.951692][ T8537] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 494.467934][ T8562] syz.2.981: attempt to access beyond end of device [ 494.467934][ T8562] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 495.243128][ T8574] netlink: 16 bytes leftover after parsing attributes in process `syz.5.987'. [ 495.277557][ T8574] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 495.297568][ T8567] loop4: detected capacity change from 0 to 8192 [ 496.174607][ T8578] loop2: detected capacity change from 0 to 512 [ 496.307955][ T8580] loop3: detected capacity change from 0 to 2048 [ 496.410355][ T8578] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 496.424005][ T8578] ext4 filesystem being mounted at /225/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 496.545558][ T8580] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 496.832777][ T8595] netlink: 4 bytes leftover after parsing attributes in process `syz.3.990'. [ 497.101927][ T8597] loop4: detected capacity change from 0 to 512 [ 497.149499][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 497.197499][ T8597] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 497.318044][ T8597] EXT4-fs (loop4): orphan cleanup on readonly fs [ 497.325964][ T8597] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 497.341432][ T8597] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 497.348296][ T8597] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.993: bad orphan inode 768 [ 497.408793][ T8597] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 497.467657][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 497.912335][ T5799] Bluetooth: hci5: command 0x0406 tx timeout [ 498.116634][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 498.127507][ T8613] syz.3.996: attempt to access beyond end of device [ 498.127507][ T8613] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 498.732767][ T8621] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1002'. [ 498.786292][ T8621] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 499.247649][ T8616] loop4: detected capacity change from 0 to 8192 [ 499.599107][ T8631] loop3: detected capacity change from 0 to 512 [ 499.778586][ T8633] loop5: detected capacity change from 0 to 2048 [ 499.784432][ T8631] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 499.798697][ T8631] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 499.913787][ T8633] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 500.037213][ T8633] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1006'. [ 500.345727][ T8649] loop4: detected capacity change from 0 to 512 [ 500.405979][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 500.434443][ T8649] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 500.529684][ T7054] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 500.559349][ T8649] EXT4-fs (loop4): orphan cleanup on readonly fs [ 500.566973][ T8649] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 500.582205][ T8649] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 500.589148][ T8649] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.1009: bad orphan inode 768 [ 500.694357][ T8649] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 500.865022][ T8655] syz.1.1013: attempt to access beyond end of device [ 500.865022][ T8655] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 501.350510][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 501.793834][ T8669] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1016'. [ 501.942073][ T8669] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 502.741075][ T8671] loop4: detected capacity change from 0 to 8192 [ 502.750667][ T8679] loop5: detected capacity change from 0 to 512 [ 502.987658][ T8683] loop2: detected capacity change from 0 to 2048 [ 503.101827][ T8683] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 503.145159][ T8679] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 503.158806][ T8679] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 503.286682][ T8696] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1024'. [ 503.295561][ T8694] syz.1.1026: attempt to access beyond end of device [ 503.295561][ T8694] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 504.029886][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 504.049072][ T7054] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 504.921569][ T8714] batadv_slave_0: entered promiscuous mode [ 504.940569][ T8714] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1035'. [ 504.952005][ T8714] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 505.002558][ T8714] batadv_slave_0 (unregistering): left promiscuous mode [ 505.010324][ T8714] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 505.063922][ T8712] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1033'. [ 505.181047][ T8712] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 506.019115][ T8730] syz.4.1039: attempt to access beyond end of device [ 506.019115][ T8730] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 506.369041][ T8732] loop1: detected capacity change from 0 to 2048 [ 506.524650][ T8732] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 506.629879][ T8741] loop3: detected capacity change from 0 to 512 [ 506.665386][ T8732] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1041'. [ 506.761177][ T8741] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 506.775779][ T8741] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 507.172215][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 507.562665][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 508.316915][ T8769] syz.1.1055: attempt to access beyond end of device [ 508.316915][ T8769] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 508.348283][ T8766] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1051'. [ 508.401917][ T8766] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 508.690197][ T8772] loop5: detected capacity change from 0 to 256 [ 509.185844][ T8778] loop1: detected capacity change from 0 to 2048 [ 509.295778][ T8778] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 509.549505][ T8740] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 509.574565][ T8784] syzkaller1: entered promiscuous mode [ 509.580511][ T8784] syzkaller1: entered allmulticast mode [ 509.593185][ T8792] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1059'. [ 509.736660][ T8795] loop3: detected capacity change from 0 to 512 [ 509.811820][ T8795] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 509.825312][ T8795] ext4 filesystem being mounted at /209/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 510.508462][ T5797] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 510.675704][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 511.184630][ T8814] syz.5.1069: attempt to access beyond end of device [ 511.184630][ T8814] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 511.251055][ T8815] netlink: 'syz.3.1068': attribute type 10 has an invalid length. [ 511.412811][ T8818] netlink: 'syz.3.1068': attribute type 10 has an invalid length. [ 511.441847][ T8815] team0: Port device dummy0 added [ 511.612232][ T8818] team0: Port device dummy0 removed [ 511.634491][ T8818] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 511.823173][ T8820] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1071'. [ 512.044327][ T8820] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1071'. [ 512.100137][ T8820] syz!: rxe_newlink: already configured on team_slave_0 [ 512.424840][ T8827] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1074'. [ 512.698911][ T8829] loop5: detected capacity change from 0 to 1024 [ 512.902397][ T8829] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 512.915428][ T8829] ext4 filesystem being mounted at /116/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 513.304351][ T8838] loop3: detected capacity change from 0 to 2048 [ 513.323330][ T8840] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1075: bg 0: block 393: padding at end of block bitmap is not set [ 513.354246][ T8839] loop2: detected capacity change from 0 to 512 [ 513.387593][ T8840] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 240 with error 117 [ 513.400966][ T8840] EXT4-fs (loop5): This should not happen!! Data will be lost [ 513.400966][ T8840] [ 513.459829][ T8838] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 513.596411][ T5082] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28 [ 513.609480][ T5082] EXT4-fs (loop5): This should not happen!! Data will be lost [ 513.609480][ T5082] [ 513.622702][ T5082] EXT4-fs (loop5): Total free blocks count 0 [ 513.628947][ T5082] EXT4-fs (loop5): Free/Dirty block details [ 513.635241][ T5082] EXT4-fs (loop5): free_blocks=0 [ 513.640419][ T5082] EXT4-fs (loop5): dirty_blocks=32 [ 513.645871][ T5082] EXT4-fs (loop5): Block reservation details [ 513.692816][ T8839] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 513.706130][ T8839] ext4 filesystem being mounted at /245/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 513.762492][ T8811] loop1: detected capacity change from 0 to 256 [ 513.825459][ T8851] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1077'. [ 513.883435][ T8811] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 513.898148][ T30] kauditd_printk_skb: 50 callbacks suppressed [ 513.898226][ T30] audit: type=1800 audit(1750912850.124:478): pid=8811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1066" name="file1" dev="loop1" ino=1048669 res=0 errno=0 [ 514.450617][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 514.543615][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 515.087254][ T8861] syz.2.1082: attempt to access beyond end of device [ 515.087254][ T8861] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 515.838722][ T8873] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1088'. [ 516.032962][ T8873] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1088'. [ 516.112577][ T8873] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 516.353377][ T8882] netlink: 392 bytes leftover after parsing attributes in process `syz.1.1090'. [ 516.895264][ T8883] loop2: detected capacity change from 0 to 512 [ 517.147887][ T8883] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 517.161645][ T8883] ext4 filesystem being mounted at /248/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 517.267719][ T30] audit: type=1326 audit(1750912853.524:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.3.1096" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71539 code=0x7ffc0000 [ 517.291083][ T30] audit: type=1326 audit(1750912853.524:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.3.1096" exe="/root/syz-executor" sig=0 arch=40000003 syscall=290 compat=1 ip=0xf7f71539 code=0x7ffc0000 [ 517.314154][ T30] audit: type=1326 audit(1750912853.524:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.3.1096" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71539 code=0x7ffc0000 [ 517.344009][ T30] audit: type=1326 audit(1750912853.554:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.3.1096" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71539 code=0x7ffc0000 [ 517.369306][ T30] audit: type=1326 audit(1750912853.554:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.3.1096" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f71539 code=0x7ffc0000 [ 517.392045][ T30] audit: type=1326 audit(1750912853.554:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.3.1096" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71539 code=0x7ffc0000 [ 517.414602][ T30] audit: type=1326 audit(1750912853.554:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.3.1096" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f71539 code=0x7ffc0000 [ 517.437238][ T30] audit: type=1326 audit(1750912853.574:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.3.1096" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f71539 code=0x7ffc0000 [ 517.467623][ T30] audit: type=1326 audit(1750912853.574:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8891 comm="syz.3.1096" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f71539 code=0x7ffc0000 [ 517.672997][ T8896] syz.5.1097: attempt to access beyond end of device [ 517.672997][ T8896] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 517.979961][ T5803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 518.947863][ T8915] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1106'. [ 519.131563][ T8915] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1106'. [ 519.152991][ T8915] rdma_rxe: rxe_newlink: failed to add team_slave_0 [ 519.877346][ T8924] ===================================================== [ 519.885129][ T8924] BUG: KMSAN: uninit-value in sctp_assoc_bh_rcv+0x34e/0xbc0 [ 519.893576][ T8924] sctp_assoc_bh_rcv+0x34e/0xbc0 [ 519.908233][ T8924] sctp_inq_push+0x2a6/0x350 [ 519.916695][ T8924] sctp_backlog_rcv+0x3c7/0xda0 [ 519.922124][ T8924] sk_backlog_rcv+0x142/0x420 [ 519.927064][ T8924] __release_sock+0x1d3/0x330 [ 519.932207][ T8924] release_sock+0x6b/0x270 [ 519.936864][ T8924] sctp_wait_for_connect+0x458/0x820 [ 519.943082][ T8924] sctp_sendmsg_to_asoc+0x223a/0x2260 [ 519.948687][ T8924] sctp_sendmsg+0x3910/0x49f0 [ 519.953829][ T8924] inet_sendmsg+0x269/0x2a0 [ 519.958542][ T8924] __sock_sendmsg+0x278/0x3d0 [ 519.963635][ T8924] __sys_sendto+0x593/0x720 [ 519.968424][ T8924] __ia32_sys_sendto+0x12f/0x200 [ 519.973750][ T8924] ia32_sys_call+0x1397/0x42c0 [ 519.978731][ T8924] __do_fast_syscall_32+0xb0/0x150 [ 519.984670][ T8924] do_fast_syscall_32+0x38/0x80 [ 519.989753][ T8924] do_SYSENTER_32+0x1f/0x30 [ 519.996467][ T8924] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 520.012809][ T8924] [ 520.015279][ T8924] Uninit was created at: [ 520.019801][ T8924] __kmalloc_node_track_caller_noprof+0x96d/0x12f0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 520.029467][ T8924] kmalloc_reserve+0x22f/0x4b0 [ 520.034720][ T8924] __alloc_skb+0x347/0x7d0 [ 520.039408][ T8924] sctp_packet_transmit+0x18a1/0x46d0 [ 520.045203][ T8924] sctp_outq_flush+0x1c7d/0x67c0 [ 520.050388][ T8924] sctp_outq_uncork+0x9e/0xc0 [ 520.055481][ T8924] sctp_do_sm+0x8c8e/0x9720 [ 520.060223][ T8924] sctp_assoc_bh_rcv+0x88b/0xbc0 [ 520.065590][ T8924] sctp_inq_push+0x2a6/0x350 [ 520.070595][ T8924] sctp_backlog_rcv+0x3c7/0xda0 [ 520.075986][ T8924] sk_backlog_rcv+0x142/0x420 [ 520.080916][ T8924] __release_sock+0x1d3/0x330 [ 520.086971][ T8924] release_sock+0x6b/0x270 [ 520.091784][ T8924] sctp_wait_for_connect+0x458/0x820 [ 520.097296][ T8924] sctp_sendmsg_to_asoc+0x223a/0x2260 [ 520.113078][ T8924] sctp_sendmsg+0x3910/0x49f0 [ 520.118011][ T8924] inet_sendmsg+0x269/0x2a0 [ 520.125730][ T8924] __sock_sendmsg+0x278/0x3d0 [ 520.130670][ T8924] __sys_sendto+0x593/0x720 [ 520.135719][ T8924] __ia32_sys_sendto+0x12f/0x200 [ 520.140897][ T8924] ia32_sys_call+0x1397/0x42c0 [ 520.146155][ T8924] __do_fast_syscall_32+0xb0/0x150 [ 520.151715][ T8924] do_fast_syscall_32+0x38/0x80 [ 520.156790][ T8924] do_SYSENTER_32+0x1f/0x30 [ 520.161769][ T8924] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 520.168377][ T8924] [ 520.170851][ T8924] CPU: 1 UID: 0 PID: 8924 Comm: syz.5.1110 Not tainted 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(undef) [ 520.183569][ T8924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 520.193968][ T8924] ===================================================== [ 520.201066][ T8924] Disabling lock debugging due to kernel taint [ 520.217188][ T8924] Kernel panic - not syncing: kmsan.panic set ... [ 520.223856][ T8924] CPU: 1 UID: 0 PID: 8924 Comm: syz.5.1110 Tainted: G B 6.16.0-rc3-syzkaller-00057-g92ca6c498a5e #0 PREEMPT(undef) [ 520.237775][ T8924] Tainted: [B]=BAD_PAGE [ 520.242071][ T8924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 520.252324][ T8924] Call Trace: [ 520.255747][ T8924] [ 520.258805][ T8924] __dump_stack+0x26/0x30 [ 520.263381][ T8924] dump_stack_lvl+0x53/0x270 [ 520.268232][ T8924] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 520.274337][ T8924] dump_stack+0x1e/0x25 [ 520.278737][ T8924] panic+0x4bd/0xd50 [ 520.282937][ T8924] kmsan_report+0x31c/0x320 [ 520.287708][ T8924] ? __msan_warning+0x1b/0x30 [ 520.292620][ T8924] ? sctp_assoc_bh_rcv+0x34e/0xbc0 [ 520.297959][ T8924] ? sctp_inq_push+0x2a6/0x350 [ 520.302957][ T8924] ? sctp_backlog_rcv+0x3c7/0xda0 [ 520.308224][ T8924] ? sk_backlog_rcv+0x142/0x420 [ 520.313335][ T8924] ? __release_sock+0x1d3/0x330 [ 520.318405][ T8924] ? release_sock+0x6b/0x270 [ 520.323226][ T8924] ? sctp_wait_for_connect+0x458/0x820 [ 520.328907][ T8924] ? sctp_sendmsg_to_asoc+0x223a/0x2260 [ 520.334664][ T8924] ? sctp_sendmsg+0x3910/0x49f0 [ 520.339714][ T8924] ? inet_sendmsg+0x269/0x2a0 [ 520.344581][ T8924] ? __sock_sendmsg+0x278/0x3d0 [ 520.349640][ T8924] ? __sys_sendto+0x593/0x720 [ 520.354546][ T8924] ? __ia32_sys_sendto+0x12f/0x200 [ 520.359837][ T8924] ? ia32_sys_call+0x1397/0x42c0 [ 520.364964][ T8924] ? __do_fast_syscall_32+0xb0/0x150 [ 520.370449][ T8924] ? do_fast_syscall_32+0x38/0x80 [ 520.375670][ T8924] ? do_SYSENTER_32+0x1f/0x30 [ 520.380544][ T8924] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 520.387295][ T8924] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 520.393482][ T8924] ? load_gs_index+0x51/0x100 [ 520.398393][ T8924] ? kmsan_get_metadata+0xfb/0x160 [ 520.403732][ T8924] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 520.409800][ T8924] ? kmsan_get_metadata+0xfb/0x160 [ 520.415157][ T8924] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 520.421223][ T8924] ? sctp_inq_pop+0x15ea/0x19e0 [ 520.426292][ T8924] ? kmsan_get_metadata+0xfb/0x160 [ 520.431658][ T8924] __msan_warning+0x1b/0x30 [ 520.436366][ T8924] sctp_assoc_bh_rcv+0x34e/0xbc0 [ 520.441555][ T8924] ? __pfx_sctp_assoc_bh_rcv+0x10/0x10 [ 520.447225][ T8924] sctp_inq_push+0x2a6/0x350 [ 520.452031][ T8924] sctp_backlog_rcv+0x3c7/0xda0 [ 520.457117][ T8924] ? kmsan_get_metadata+0xfb/0x160 [ 520.462513][ T8924] ? __pfx_sctp_backlog_rcv+0x10/0x10 [ 520.468116][ T8924] sk_backlog_rcv+0x142/0x420 [ 520.473041][ T8924] __release_sock+0x1d3/0x330 [ 520.477943][ T8924] release_sock+0x6b/0x270 [ 520.482587][ T8924] sctp_wait_for_connect+0x458/0x820 [ 520.488091][ T8924] ? __pfx_autoremove_wake_function+0x10/0x10 [ 520.494435][ T8924] sctp_sendmsg_to_asoc+0x223a/0x2260 [ 520.500009][ T8924] ? kmsan_get_metadata+0xfb/0x160 [ 520.505358][ T8924] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 520.511474][ T8924] sctp_sendmsg+0x3910/0x49f0 [ 520.516362][ T8924] ? kmsan_save_stack_with_flags+0x10/0x60 [ 520.522471][ T8924] ? __pfx_sctp_sendmsg+0x10/0x10 [ 520.527689][ T8924] inet_sendmsg+0x269/0x2a0 [ 520.532444][ T8924] __sock_sendmsg+0x278/0x3d0 [ 520.537359][ T8924] __sys_sendto+0x593/0x720 [ 520.542100][ T8924] ? do_futex+0x3a1/0x480 [ 520.546696][ T8924] ? kmsan_get_metadata+0xfb/0x160 [ 520.552171][ T8924] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 520.558284][ T8924] __ia32_sys_sendto+0x12f/0x200 [ 520.563464][ T8924] ia32_sys_call+0x1397/0x42c0 [ 520.568427][ T8924] __do_fast_syscall_32+0xb0/0x150 [ 520.573762][ T8924] do_fast_syscall_32+0x38/0x80 [ 520.578818][ T8924] do_SYSENTER_32+0x1f/0x30 [ 520.583521][ T8924] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 520.590115][ T8924] RIP: 0023:0xf7f46539 [ 520.594332][ T8924] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 520.614180][ T8924] RSP: 002b:00000000f506655c EFLAGS: 00000206 ORIG_RAX: 0000000000000171 [ 520.622831][ T8924] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080847fff [ 520.630981][ T8924] RDX: 000000000000fee4 RSI: 0000000000000000 RDI: 000000008005ffe4 [ 520.639124][ T8924] RBP: 000000000000001c R08: 0000000000000000 R09: 0000000000000000 [ 520.647245][ T8924] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 520.655369][ T8924] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 520.663547][ T8924] [ 520.667013][ T8924] Kernel Offset: disabled [ 520.671446][ T8924] Rebooting in 86400 seconds..