last executing test programs: 7.216502799s ago: executing program 4 (id=356): r0 = socket$tipc(0x1e, 0x5, 0x0) setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10) bind$tipc(r0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = socket$kcm(0x10, 0x2, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/resume', 0x169a82, 0x109) sendfile(r2, r2, 0x0, 0xb) bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f0000000600)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x6f, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x94) sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="2e0000001000818807b62aa73f72cc9f0ba1f8483a0000005e120602000300000e000a0010000000028000001294", 0x2e}], 0x1}, 0x20008800) r3 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000700)=ANY=[@ANYBLOB="600000000206030000000000000000000200000205000100070000000900020073797a310000000014000780080013000000000008001240fffffff70500050002000000050004000100000013000300686173683a6e65742c6966616365"], 0x60}, 0x1, 0x0, 0x0, 0x4004800}, 0x20048889) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='kfree\x00', r4}, 0x10) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x17f}, 0x94) creat(&(0x7f00000002c0)='./file0\x00', 0xecf86c37d53049cc) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r5, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000003c0)=[0x45c], 0x0, 0x0, 0x100000, 0x1}}, 0x40) socket$inet_tcp(0x2, 0x1, 0x0) readv(0xffffffffffffffff, 0x0, 0x0) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10) sendmmsg$inet_sctp(0xffffffffffffffff, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c"], 0x30}], 0x1, 0x0) ioctl$PPPIOCGNPMODE(r2, 0xc008744c, &(0x7f00000002c0)={0xc223, 0x3}) 7.130246155s ago: executing program 1 (id=357): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_LBT_MODE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, r1, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}}, 0x0) 6.966900157s ago: executing program 1 (id=360): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = socket(0x15, 0x6, 0x4) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000140)={'batadv0\x00', 0x0}) r3 = socket$nl_route(0x10, 0x3, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000001f80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002a20702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000280)='kfree\x00', r4}, 0x18) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, 0x0, 0x20040844) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast2=0xe0000001}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x4}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x80, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x80}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0xfffffffffffffdca, &(0x7f0000000240)={&(0x7f0000000300)=@newtfilter={0x24, 0x11, 0x1, 0x691522eb, 0x0, {0x0, 0x0, 0x74, r2, {0x10, 0x4}, {}, {0xb}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x24060050}, 0x8000) setsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f0000000040)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', r2}, 0x14) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r8}, 0x0, 0x0}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00'}, 0x10) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff) 6.432992536s ago: executing program 1 (id=366): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'team0\x00'}) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x20004885}, 0x4054) 6.205052844s ago: executing program 1 (id=369): r0 = socket$inet_tcp(0x2, 0x1, 0x0) write(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0xfe, 0x2b7, &(0x7f0000001340)="$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") truncate(&(0x7f0000000080)='./file1\x00', 0xf62) r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x4842, 0x1cb) writev(r1, &(0x7f0000000140)=[{&(0x7f0000001200)="10", 0x64000}], 0x1) close_range(r0, 0xffffffffffffffff, 0x0) 5.636782435s ago: executing program 1 (id=371): pipe(&(0x7f0000000e00)={0xffffffffffffffff, 0xffffffffffffffff}) vmsplice(r1, &(0x7f00000007c0)=[{0x0}, {&(0x7f0000000280)="2ee97d629c7e44f81166cb7f6ff136f276b93d54b74333781a4c68225b61bae19833da1ace561825", 0x28}, {&(0x7f0000000b00)="ed48f0", 0x3}], 0x3, 0xc) r2 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r2, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10) connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) splice(r0, 0x0, r2, 0x0, 0x2000000002ffff, 0x0) 5.396957882s ago: executing program 1 (id=374): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x300000a, 0x13, r0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0) 5.367117395s ago: executing program 4 (id=375): r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r1, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000000)='yeah', 0x4) connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffb}]}) chroot(&(0x7f0000000080)='./file0\x00') sync() socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) close_range(r4, r5, 0x2) r6 = syz_io_uring_setup(0x499, &(0x7f0000000400)={0x0, 0xd146, 0x0, 0x3, 0x288, 0x0, r0}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x484, &(0x7f0000000040)={0x84, @multicast2, 0x4e23, 0x0, 'nq\x00', 0x3, 0x4, 0x3d}, 0x2c) syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='0'], 0x30}}) io_uring_enter(r6, 0x3516, 0xddd3, 0x4, 0x0, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0), 0x4) preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) 4.571493149s ago: executing program 0 (id=376): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000540), 0x1, 0x783, &(0x7f0000001000)="$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") seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r2, &(0x7f0000000140)='2', 0x1, 0x8000c61) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) sendfile(r3, r3, 0x0, 0xe3aa6ea) creat(&(0x7f00000003c0)='./file1\x00', 0x11) 4.391243197s ago: executing program 4 (id=378): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18) r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000002000000000000000008082295"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94) syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x66, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x8}}}}}, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0x63, 0x0, &(0x7f0000000000)="ff", 0x0, 0x149d, 0x503, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffff80fe}, 0x50) 3.767327418s ago: executing program 0 (id=380): sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000004c0)=ANY=[], 0x2c}}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x4}}, @call={0x85, 0x0, 0x0, 0x50}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) lseek(0xffffffffffffffff, 0x2, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000080)='kfree\x00', r0}, 0x18) creat(0x0, 0x0) r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000340)={0x114, 0x29, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x103, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac0b}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @loopback}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8", @typed={0x8, 0x145, 0x0, 0x0, @ipv4=@remote}]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0) 3.237064316s ago: executing program 4 (id=381): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000980)=ANY=[@ANYBLOB="3c0000001000030425bd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="0005000082180000140012800b00010062726964676500000400028008000a00", @ANYRES32], 0x3c}, 0x1, 0x0, 0x0, 0x24000804}, 0x8000) 3.066862557s ago: executing program 0 (id=384): bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000040)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) unshare(0x2c040000) r5 = socket(0x80000000000000a, 0x2, 0x0) r6 = getpgrp(r2) ptrace$PTRACE_SECCOMP_GET_FILTER(0x420c, r6, 0x80, &(0x7f0000000340)=""/102) setsockopt$inet6_group_source_req(r5, 0x29, 0x2a, &(0x7f0000000080)={0x1, {{0xa, 0x0, 0xffffffff, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108) setsockopt$inet6_group_source_req(r5, 0x29, 0x2b, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0xffff0000, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, 0x108) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r7, 0x29, 0x40, &(0x7f0000000000)=@filter={'filter\x00', 0xe, 0x4, 0x358, 0xffffffff, 0xe8, 0x1b8, 0xe8, 0xffffffff, 0xffffffff, 0xe8, 0x288, 0x288, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@inet=@SYNPROXY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3b8) r8 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x60040, 0x0) ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000040)=0x2) readv(r8, &(0x7f0000000000), 0x0) ioctl$TIOCVHANGUP(r8, 0x5437, 0x0) 1.983055295s ago: executing program 4 (id=386): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_clone3(0x0, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18) bpf$PROG_LOAD(0x5, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) io_setup(0x8f0, &(0x7f0000002400)) 1.828155866s ago: executing program 0 (id=387): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=ANY=[@ANYBLOB="14000000100001000c000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x44051}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000006000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc4c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000020000380100000800c00018006000100d10300000c000080080003400000000214000000110001"], 0xb0}}, 0x40) 1.549076005s ago: executing program 0 (id=388): r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000002f80)=[{{&(0x7f0000000080)={0x2, 0x4e23, @remote}, 0x10, 0x0}}, {{&(0x7f0000000300)={0x2, 0x4e23, @remote}, 0x10, 0x0}}], 0x2, 0x0) 1.469037731s ago: executing program 0 (id=389): mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6004, 0x1) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0xf4) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) munlockall() r3 = dup2(r0, r0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={0xffffffffffffffff, &(0x7f0000000180)}, 0x20) ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x200000a, 0x1, 0x8}) io_uring_setup(0x7d98, &(0x7f00000003c0)={0x0, 0xdf07, 0x2, 0x1, 0x105}) io_setup(0x8, &(0x7f00000001c0)=0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[], 0x50) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18) io_getevents(r4, 0x2, 0x2, &(0x7f0000001340)=[{}, {}], 0x0) write$P9_RATTACH(r3, &(0x7f0000000080)={0x14, 0x69, 0x2, {0xe0, 0x1, 0x3}}, 0x14) ioctl$BLKTRACESETUP(r3, 0x1276, 0x0) 1.41811494s ago: executing program 3 (id=390): r0 = socket$netlink(0x10, 0x3, 0x14) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB="88000000", @ANYRES16=0x0, @ANYRES16], 0x88}, 0x1, 0x0, 0x0, 0x4080}, 0x400c8a0) 1.109367457s ago: executing program 3 (id=392): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000680)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kmem_cache_free\x00', r0}, 0x18) lgetxattr(0x0, &(0x7f0000000800)=@known='trusted.overlay.nlink\x00', 0x0, 0x0) 1.049198861s ago: executing program 2 (id=393): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="0203000910000000000000000000000005000600000000000a00000000000000000000000000000000000000000000000000000000000000020001000000000000000702000000ff05000500000000000a00000000000000ff0100000000000000000000000000010000000000000000020008"], 0x80}}, 0x0) 847.024817ms ago: executing program 3 (id=394): prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00') r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d000000180100002020732600000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0x4}, 0x18) r1 = socket$can_raw(0x1d, 0x3, 0x1) setsockopt$CAN_RAW_ERR_FILTER(r1, 0x65, 0x7, &(0x7f00000001c0)=0x8, 0x4) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'vxcan1\x00', 0x0}) sendmsg$can_raw(r1, &(0x7f0000000140)={&(0x7f0000000000)={0x1d, r2}, 0x10, &(0x7f00000005c0)={&(0x7f0000000680)=@canfd={{0x1, 0x0, 0x1}, 0x16, 0x2, 0x0, 0x0, "ba0523e46f952b3c75478841caa818b9a0ec22de509f70d16253422c1d1350e93bc6b94f3337804507895a77445f04941373250928e044dfafaf0fd8d20d1e7d"}, 0x48}}, 0x0) 771.270028ms ago: executing program 2 (id=395): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0a000000050000000200000007"], 0x50) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r3}, 0x10) r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000018c0), 0x101000) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000bc0)={0x881e7, 0x41, 0x0, 'queue0\x00', 0x1}) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_TIMER(r4, 0x40605346, &(0x7f0000000400)={0x0, 0x0, {0x1, 0x1, 0x0, 0x0, 0xa}}) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10) r6 = socket$can_bcm(0x1d, 0x2, 0x2) r7 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newtaction={0x68, 0x30, 0xffff, 0x4, 0x0, {0x0, 0x0, 0x1300}, [{0x54, 0x1, [@m_mirred={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0x1, 0x400, 0xfffffffb}, 0x2}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x20008000}, 0x0) connect$can_bcm(r6, &(0x7f00000005c0), 0x10) sendmsg$can_raw(r6, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000380)={&(0x7f000000a000)=@canfd={{0x5}, 0x2, 0x2, 0x0, 0x0, "0327e1b22b5fcef7739c699f5ff986ca08990039576a7d5cb2bdac3fa80acf584ecb5fee496e6866856b76b5ee00000000000000094e2f9663a918fa1efd9b0b"}, 0x48}, 0x2}, 0x24000895) write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8) 573.07458ms ago: executing program 3 (id=396): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r1, 0x0, 0xc8, &(0x7f0000003d40), 0x4) setsockopt$MRT_ADD_VIF(r1, 0x0, 0xca, &(0x7f0000003d80)={0x1, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10) setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8) syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @address_request}}}}, 0x0) syz_emit_ethernet(0x66, &(0x7f00000000c0)={@multicast, @link_local, @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x2f, 0x0, @rand_addr=0x64010102, @multicast1=0xe000c800}, {{0x0, 0x0, 0x1, 0x0, 0xb, 0x0, 0x0, 0x4, 0x6558}, {0x0, 0x0, 0x0, 0x0, 0x11}, {}, {0x8, 0x88be, 0x0, {{}, 0xfffff788}}}}}}}, 0x0) 472.587981ms ago: executing program 2 (id=397): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x3, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1, 0x4, 0x40, 0x40, 0x41}, 0x50) bpf$MAP_LOOKUP_ELEM(0x15, &(0x7f0000000b80)={r1, 0x0, 0x0}, 0x20) 414.51169ms ago: executing program 3 (id=398): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000280)={'wg2\x00'}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r3}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r2}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000040)={'wg2\x00', @multicast}) 253.031009ms ago: executing program 2 (id=399): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000f00)={0x17, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x7a, 0x0, 0x0, 0x41100, 0x44, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18) r2 = socket(0x10, 0x3, 0x0) connect$netlink(r2, &(0x7f0000000280)=@proc={0x10, 0x0, 0x1}, 0xc) sendmsg$nl_route_sched(r2, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000001500)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {0x0, 0x0, 0x2}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4010}, 0x8084) 146.922095ms ago: executing program 3 (id=400): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x101042, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000040)) ioctl$PPPIOCSNPMODE(r0, 0x4008744b, &(0x7f0000000080)={0x283, 0x1}) 141.183789ms ago: executing program 2 (id=401): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180000008000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000c44185000000040000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200000a000000b703000000000000850000007500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sys_enter\x00', r0}, 0x10) getdents(0xffffffffffffffff, 0x0, 0x0) 36.936214ms ago: executing program 4 (id=402): r0 = epoll_create1(0x80000) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x800714, &(0x7f0000000000)={[{@nobarrier}]}, 0xff, 0x485, &(0x7f0000001040)="$eJzs3M9rHFUcAPDv7Db93SbWWm1tNVrF4o+kSav24EFFwYOCoId6jElaa7eNNBFsCRpF6lEK3sWj4F/gzYuoBxG8KniUQtEgNPW0Mr+a7WaTJmmSNdnPBzb73s6bfe87M2/3zbzMBtCxetM/ScTOiPgtIrrz7K0FevOnmenJ4RvTk8NJ1Otv/JVk5a5PTw6XRcv1dhSZI5WIyqdJPJ/MrXf84qWzQ7Xa6IUi3z9x7r3+8YuXnjpzbuj06OnR84MnThw/NvDsM4NPr0icaVzXD3w4dnD/K29deW345JW3f/wmbda+Q/nyxjhu60aLgFroTbfa3/VM87JHl9D29WBXQzrZ1MaGsCTViEh3V1fW/7ujGrM7rzte/qStjQNWVfrdtGX+xVN1YANLot0tANqj/KJPz3/LxxoNPf4Xrr0QsblIz0xPDs/cjL9arxSvd61i/b0RcXLq3y/TRyz1OgQAwDJkY5snW43/KrEve87nOnYXcyg9EXFXROyJiLsjYm9E3BORlb03Iu7LV653L7L+3qb83PFP5WrLNq+QdPz3XMPYb6Yh/uKpp1rkdmXxdyWnztRGjxbb5Eh0bUnzAwvU8d1Lv34+37LG8V/6SOsvx4JFA65uarpANzI0MbRSG+HaxxEHNrWKP7k5E5AeAfsj4sDS3np3mTjz+NcH5yt0+/gXsALzTPWvIh7L9/9UNMVfShaen+zfGrXRo/3lUTHXT79cfn2++u8o/hWQ7v/ttx7/TSW6/0ny+dquqNVGL4wvvY7Lv3827znNco//zcmb2Zz1z+/kr30wNDFxYSBic/Jqli/P6bLXB2fXLfNl+TT+I4db9/89xTpp/PdHRHoQH4qIByLiwaLtD0XEwxFxeIH4f3jxkXcXiD+JJNq6/0dafv7dPP57ksb5+mUkqme//3a+GfPF7f/jMZV91uayz7/bWGwD73DzAQAAwLpQiYidkVT68nTvzqhU+vry/+HfG9srtbHxiSdOjb1/fiS/R6Anuirlla7uhuuhA8lU8Y55frC4VlwuP1ZcN/6iui3L9w2P1UbaHDt0uh239v8o+3/qz2q7WwesOvdrQedq7v+VNrUDWHuL+f53LgAbU4v+v60d7QDWnvN/6Fyt+v9HTXnjf9iY5vb/P1r8ZB2wERn/Q+fS/6Fz6f/Qke7kvv7lJ8qbBZb/PlsXfYd/pyTKX7xYzbq2xewrUWl7yB2USHvM2lY6+xsqAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA69l/AQAA//9EvefZ") prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0x2}, 0x18) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b) r4 = creat(&(0x7f0000000380)='./bus\x00', 0x0) io_setup(0x202, &(0x7f0000000200)=0x0) mount(0x0, 0x0, 0x0, 0x44018, 0x0) io_submit(r5, 0x3b, &(0x7f0000000540)=[&(0x7f00000000c0)={0x25, 0xe7030003, 0x2, 0x1, 0x0, r4, &(0x7f0000000000), 0x100000, 0x3000}]) r6 = syz_io_uring_setup(0x8c3, &(0x7f0000000140)={0x0, 0x9296, 0x0, 0x200002, 0xbedffffc}, &(0x7f0000000040)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, 0x0, 0x0, 0x4) syz_io_uring_submit(r7, r8, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r6, &(0x7f0000000100)={0x20000014}) 0s ago: executing program 2 (id=403): socket$nl_route(0x10, 0x3, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000017030000000000000000000095000000000000007d2bc287843a11fdc83efc3a6a7b4913c94d6eeb971da3bae60bfc59ccaed7c4ac386fe00e58a3bf501033ee1ab990cf14a3509e9f512de6044528a5bd9bd53cc757efc13f5569960e430643ee1524ce9d482d6e9094438def42ccfcf49b4caa60f6d48d6ac8727c77464b91bdf541e82367b2a9"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[], 0x10}}, 0x40080) openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/devices.allow\x00', 0x24003, 0x177) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r1, 0x0, 0xffffffffffffffff}, 0x18) r2 = socket$inet_mptcp(0x2, 0x1, 0x106) bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e21, @empty}, 0x10) munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) r3 = fsmount(0xffffffffffffffff, 0x0, 0x1) fchdir(r3) connect$inet(r2, &(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10) sendto$inet(r2, &(0x7f00000004c0)="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", 0xffffffffffffff71, 0x400bfeb, 0x0, 0x0) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x8, 0x94, 0x7fff0000}]}) close_range(r4, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.41' (ED25519) to the list of known hosts. [ 85.262470][ T5809] cgroup: Unknown subsys name 'net' [ 85.393267][ T5809] cgroup: Unknown subsys name 'cpuset' [ 85.402186][ T5809] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 87.285408][ T5809] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 89.533266][ T5831] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 89.541694][ T5831] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 89.553170][ T5838] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 89.561838][ T5837] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 89.563377][ T5838] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 89.572307][ T5837] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 89.577485][ T5838] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 89.592534][ T5838] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 89.600801][ T5838] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 89.600827][ T5837] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 89.609763][ T5838] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 89.622299][ T5837] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 89.630014][ T5837] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 89.637321][ T5837] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 89.646635][ T5838] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 89.646960][ T5837] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 89.663123][ T5838] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 89.663412][ T5840] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 89.678524][ T5838] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 89.679454][ T5840] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 89.695203][ T5839] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 89.702937][ T5839] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 89.706205][ T5840] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 89.718282][ T5834] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 89.726587][ T5840] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 90.520086][ T5822] chnl_net:caif_netlink_parms(): no params data found [ 90.542768][ T5829] chnl_net:caif_netlink_parms(): no params data found [ 90.640958][ T5832] chnl_net:caif_netlink_parms(): no params data found [ 90.667421][ T5830] chnl_net:caif_netlink_parms(): no params data found [ 90.837020][ T5821] chnl_net:caif_netlink_parms(): no params data found [ 90.848531][ T5822] bridge0: port 1(bridge_slave_0) entered blocking state [ 90.856339][ T5822] bridge0: port 1(bridge_slave_0) entered disabled state [ 90.863821][ T5822] bridge_slave_0: entered allmulticast mode [ 90.871542][ T5822] bridge_slave_0: entered promiscuous mode [ 90.902356][ T5822] bridge0: port 2(bridge_slave_1) entered blocking state [ 90.909635][ T5822] bridge0: port 2(bridge_slave_1) entered disabled state [ 90.917147][ T5822] bridge_slave_1: entered allmulticast mode [ 90.925415][ T5822] bridge_slave_1: entered promiscuous mode [ 91.047724][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.055555][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.063061][ T5832] bridge_slave_0: entered allmulticast mode [ 91.070586][ T5832] bridge_slave_0: entered promiscuous mode [ 91.094781][ T5822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.104360][ T5829] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.111984][ T5829] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.119611][ T5829] bridge_slave_0: entered allmulticast mode [ 91.127000][ T5829] bridge_slave_0: entered promiscuous mode [ 91.135679][ T5829] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.142993][ T5829] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.150523][ T5829] bridge_slave_1: entered allmulticast mode [ 91.158365][ T5829] bridge_slave_1: entered promiscuous mode [ 91.189400][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.196793][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.204413][ T5832] bridge_slave_1: entered allmulticast mode [ 91.211751][ T5832] bridge_slave_1: entered promiscuous mode [ 91.221908][ T5822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.244022][ T5830] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.251739][ T5830] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.259203][ T5830] bridge_slave_0: entered allmulticast mode [ 91.266819][ T5830] bridge_slave_0: entered promiscuous mode [ 91.330805][ T5830] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.338121][ T5830] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.346123][ T5830] bridge_slave_1: entered allmulticast mode [ 91.353838][ T5830] bridge_slave_1: entered promiscuous mode [ 91.389765][ T5822] team0: Port device team_slave_0 added [ 91.398891][ T5829] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.449188][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.462389][ T5822] team0: Port device team_slave_1 added [ 91.471350][ T5829] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.484037][ T5830] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.498441][ T5830] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.508594][ T5821] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.516049][ T5821] bridge0: port 1(bridge_slave_0) entered disabled state [ 91.523316][ T5821] bridge_slave_0: entered allmulticast mode [ 91.530989][ T5821] bridge_slave_0: entered promiscuous mode [ 91.541791][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.632132][ T5821] bridge0: port 2(bridge_slave_1) entered blocking state [ 91.640184][ T5821] bridge0: port 2(bridge_slave_1) entered disabled state [ 91.648031][ T5821] bridge_slave_1: entered allmulticast mode [ 91.655746][ T5821] bridge_slave_1: entered promiscuous mode [ 91.680250][ T5840] Bluetooth: hci1: command tx timeout [ 91.707372][ T5830] team0: Port device team_slave_0 added [ 91.729714][ T5832] team0: Port device team_slave_0 added [ 91.736749][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.744354][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 91.771267][ T5840] Bluetooth: hci0: command tx timeout [ 91.771671][ T5840] Bluetooth: hci3: command tx timeout [ 91.783001][ T52] Bluetooth: hci2: command tx timeout [ 91.783100][ T5834] Bluetooth: hci4: command tx timeout [ 91.788667][ T5822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 91.808975][ T5829] team0: Port device team_slave_0 added [ 91.817294][ T5830] team0: Port device team_slave_1 added [ 91.852127][ T5832] team0: Port device team_slave_1 added [ 91.861287][ T5821] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 91.872105][ T5822] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 91.879246][ T5822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 91.905844][ T5822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 91.920069][ T5829] team0: Port device team_slave_1 added [ 91.956205][ T5821] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 91.985435][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 91.992724][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.019153][ T5830] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.087187][ T5830] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.095530][ T5830] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.099001][ T116] cfg80211: failed to load regulatory.db [ 92.122281][ T5830] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.139778][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.146843][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.173795][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.186697][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.193882][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.219890][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.233324][ T5821] team0: Port device team_slave_0 added [ 92.241385][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.248403][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.274825][ T5829] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.286986][ T5829] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.294070][ T5829] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.320253][ T5829] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.360094][ T5821] team0: Port device team_slave_1 added [ 92.397010][ T5822] hsr_slave_0: entered promiscuous mode [ 92.404267][ T5822] hsr_slave_1: entered promiscuous mode [ 92.490494][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 92.497652][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.524427][ T5821] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 92.579286][ T5821] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 92.586405][ T5821] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 92.612907][ T5821] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 92.642929][ T5832] hsr_slave_0: entered promiscuous mode [ 92.649583][ T5832] hsr_slave_1: entered promiscuous mode [ 92.656019][ T5832] debugfs: 'hsr0' already exists in 'hsr' [ 92.662000][ T5832] Cannot create hsr debugfs directory [ 92.674047][ T5829] hsr_slave_0: entered promiscuous mode [ 92.681150][ T5829] hsr_slave_1: entered promiscuous mode [ 92.688537][ T5829] debugfs: 'hsr0' already exists in 'hsr' [ 92.695060][ T5829] Cannot create hsr debugfs directory [ 92.706411][ T5830] hsr_slave_0: entered promiscuous mode [ 92.713420][ T5830] hsr_slave_1: entered promiscuous mode [ 92.720528][ T5830] debugfs: 'hsr0' already exists in 'hsr' [ 92.726368][ T5830] Cannot create hsr debugfs directory [ 92.911726][ T5821] hsr_slave_0: entered promiscuous mode [ 92.918637][ T5821] hsr_slave_1: entered promiscuous mode [ 92.925287][ T5821] debugfs: 'hsr0' already exists in 'hsr' [ 92.931216][ T5821] Cannot create hsr debugfs directory [ 93.407662][ T5822] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 93.421260][ T5822] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 93.433137][ T5822] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 93.453330][ T5822] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 93.530368][ T5832] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 93.541788][ T5832] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 93.572304][ T5832] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 93.584832][ T5832] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 93.674746][ T5829] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 93.688465][ T5829] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 93.707428][ T5829] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 93.718946][ T5829] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 93.760215][ T5840] Bluetooth: hci1: command tx timeout [ 93.840611][ T5834] Bluetooth: hci0: command tx timeout [ 93.841186][ T52] Bluetooth: hci3: command tx timeout [ 93.846381][ T5834] Bluetooth: hci4: command tx timeout [ 93.857751][ T5840] Bluetooth: hci2: command tx timeout [ 93.866472][ T5822] 8021q: adding VLAN 0 to HW filter on device bond0 [ 93.913286][ T5830] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 93.929220][ T5830] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 93.966885][ T5830] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 93.985588][ T5822] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.001481][ T5830] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 94.053918][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.061503][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.117718][ T5821] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 94.129134][ T5821] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 94.143866][ T3514] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.151047][ T3514] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.175265][ T5821] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 94.196207][ T5829] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.221205][ T5821] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 94.261362][ T5829] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.284318][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.311885][ T79] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.319073][ T79] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.350866][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.358072][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.416923][ T5832] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.487527][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.495079][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.557123][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.564454][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.623658][ T5830] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.735167][ T5830] 8021q: adding VLAN 0 to HW filter on device team0 [ 94.778145][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 94.785466][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 94.857632][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 94.865004][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 94.879226][ T5822] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.037639][ T5830] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 95.064205][ T5821] 8021q: adding VLAN 0 to HW filter on device bond0 [ 95.090299][ T5829] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.237558][ T5822] veth0_vlan: entered promiscuous mode [ 95.254334][ T5821] 8021q: adding VLAN 0 to HW filter on device team0 [ 95.322876][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.330226][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 95.344383][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.352012][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 95.384286][ T5822] veth1_vlan: entered promiscuous mode [ 95.423835][ T5829] veth0_vlan: entered promiscuous mode [ 95.435307][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.478267][ T5829] veth1_vlan: entered promiscuous mode [ 95.517859][ T5830] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 95.575873][ T5822] veth0_macvtap: entered promiscuous mode [ 95.613844][ T5822] veth1_macvtap: entered promiscuous mode [ 95.664113][ T5832] veth0_vlan: entered promiscuous mode [ 95.688709][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.708712][ T5829] veth0_macvtap: entered promiscuous mode [ 95.747837][ T5822] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.758457][ T5832] veth1_vlan: entered promiscuous mode [ 95.768947][ T5829] veth1_macvtap: entered promiscuous mode [ 95.808414][ T3514] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.836546][ T3514] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.846241][ T3514] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.855545][ T5834] Bluetooth: hci1: command tx timeout [ 95.863412][ T3514] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.906853][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.921002][ T5834] Bluetooth: hci4: command tx timeout [ 95.926544][ T5834] Bluetooth: hci2: command tx timeout [ 95.930084][ T5840] Bluetooth: hci3: command tx timeout [ 95.935980][ T5827] Bluetooth: hci0: command tx timeout [ 95.957291][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.964994][ T5830] veth0_vlan: entered promiscuous mode [ 95.992186][ T5821] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.024809][ T5830] veth1_vlan: entered promiscuous mode [ 96.053811][ T1004] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.073288][ T5832] veth0_macvtap: entered promiscuous mode [ 96.118315][ T1004] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.127814][ T1004] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.161011][ T1004] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.175049][ T5832] veth1_macvtap: entered promiscuous mode [ 96.193697][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.211029][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.315250][ T3514] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.330945][ T3514] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.339135][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.373698][ T5830] veth0_macvtap: entered promiscuous mode [ 96.398358][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.446397][ T3514] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.470998][ T5830] veth1_macvtap: entered promiscuous mode [ 96.479270][ T3514] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.500516][ T13] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.549082][ T13] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.566301][ T5822] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 96.590279][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.598593][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.615026][ T13] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.625191][ T13] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.696869][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 96.725065][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.791543][ T5821] veth0_vlan: entered promiscuous mode [ 96.804903][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.818753][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.869173][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.889159][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.917219][ T5821] veth1_vlan: entered promiscuous mode [ 97.099773][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.107660][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.204456][ T5821] veth0_macvtap: entered promiscuous mode [ 97.228139][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.254649][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.324162][ T79] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.345736][ T79] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.427466][ T5821] veth1_macvtap: entered promiscuous mode [ 97.493673][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.511874][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.575941][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 97.610774][ T5821] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 97.644234][ T79] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.644320][ T79] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.644358][ T79] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.644391][ T79] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 97.838304][ T5951] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3'. [ 97.976124][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 97.976151][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 97.995037][ T5834] Bluetooth: hci1: command tx timeout [ 98.016442][ T5834] Bluetooth: hci2: command tx timeout [ 98.016510][ T5834] Bluetooth: hci0: command tx timeout [ 98.043088][ T5827] Bluetooth: hci3: command tx timeout [ 98.046917][ T5834] Bluetooth: hci4: command tx timeout [ 98.366239][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 98.366268][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 100.312809][ T30] audit: type=1326 audit(1762817313.821:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5968 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 100.496922][ T30] audit: type=1326 audit(1762817313.821:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5968 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 100.714526][ T30] audit: type=1326 audit(1762817313.831:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5968 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 100.795444][ T5977] netlink: 20 bytes leftover after parsing attributes in process `syz.1.12'. [ 100.806887][ T5977] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0 [ 100.869346][ T30] audit: type=1326 audit(1762817313.831:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5968 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 100.949181][ T30] audit: type=1326 audit(1762817313.831:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5968 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 101.064244][ T30] audit: type=1326 audit(1762817313.831:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5968 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 101.094320][ T30] audit: type=1326 audit(1762817313.851:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5968 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 101.140312][ T5983] netlink: 'syz.4.15': attribute type 13 has an invalid length. [ 101.189216][ T30] audit: type=1326 audit(1762817313.851:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5968 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 101.290344][ T30] audit: type=1326 audit(1762817313.851:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5968 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 101.330796][ T5985] loop3: detected capacity change from 0 to 2048 [ 101.335582][ T5989] loop2: detected capacity change from 0 to 164 [ 101.353456][ T5983] gretap0: refused to change device tx_queue_len [ 101.383905][ T5989] Unable to read rock-ridge attributes [ 101.420064][ T5983] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 101.436194][ T30] audit: type=1326 audit(1762817313.831:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5968 comm="syz.4.5" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 101.594873][ T5985] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.649176][ T5985] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 101.878406][ T5994] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.16: bg 0: block 345: padding at end of block bitmap is not set [ 101.934044][ T5994] EXT4-fs (loop3): Remounting filesystem read-only [ 101.964255][ T5997] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 101.993788][ T13] EXT4-fs warning (device loop3): ext4_convert_unwritten_extents:4984: inode #15: block 1: len 15: ext4_ext_map_blocks returned -30 [ 102.047767][ T5997] netlink: 'syz.4.19': attribute type 4 has an invalid length. [ 102.162157][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.593017][ T6008] loop3: detected capacity change from 0 to 512 [ 102.611133][ T6008] ======================================================= [ 102.611133][ T6008] WARNING: The mand mount option has been deprecated and [ 102.611133][ T6008] and is ignored by this kernel. Remove the mand [ 102.611133][ T6008] option from the mount to silence this warning. [ 102.611133][ T6008] ======================================================= [ 102.751172][ T6006] ALSA: seq fatal error: cannot create timer (-19) [ 102.899325][ T6015] netlink: 4 bytes leftover after parsing attributes in process `syz.2.26'. [ 103.396502][ T6010] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 103.405034][ T6010] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 103.607050][ T6010] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 103.617845][ T6010] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 103.685005][ T6030] netlink: 'syz.3.29': attribute type 13 has an invalid length. [ 103.719072][ T6030] netlink: 4 bytes leftover after parsing attributes in process `syz.3.29'. [ 103.814277][ T6010] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 103.863437][ T6010] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 104.011903][ T6010] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 104.017877][ T6010] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 104.154986][ T6010] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 104.171531][ T6010] Bluetooth: hci4: Error when powering off device on rfkill (-4) [ 104.296393][ T6041] loop1: detected capacity change from 0 to 512 [ 104.341122][ T6041] EXT4-fs: Ignoring removed i_version option [ 104.374903][ T6043] netlink: 'syz.2.32': attribute type 9 has an invalid length. [ 104.390038][ T6041] EXT4-fs: Ignoring removed bh option [ 104.502154][ T6041] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 104.570577][ T6041] ext4 filesystem being mounted at /5/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 104.772076][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.254108][ T6067] loop3: detected capacity change from 0 to 164 [ 105.293153][ T6067] Unable to read rock-ridge attributes [ 105.945271][ T6083] netlink: 'syz.1.43': attribute type 13 has an invalid length. [ 105.969485][ T6083] netlink: 4 bytes leftover after parsing attributes in process `syz.1.43'. [ 107.171360][ T5928] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 107.347370][ T5928] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 107.356935][ T5928] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 107.372902][ T5928] usb 5-1: Product: syz [ 107.381592][ T5928] usb 5-1: Manufacturer: syz [ 107.392084][ T5928] usb 5-1: SerialNumber: syz [ 107.480121][ T5928] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 107.634897][ T5928] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 107.928499][ T116] usb 5-1: USB disconnect, device number 2 [ 108.120532][ T6128] loop2: detected capacity change from 0 to 164 [ 108.176127][ T6128] Unable to read rock-ridge attributes [ 108.739267][ T5928] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 108.773005][ T5928] ath9k_htc: Failed to initialize the device [ 108.786174][ T6144] loop1: detected capacity change from 0 to 512 [ 108.800314][ T116] usb 5-1: ath9k_htc: USB layer deinitialized [ 108.946901][ T6144] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2803: inode #11: comm syz.1.56: corrupted xattr block 95: invalid header [ 109.066103][ T6144] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2853: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 109.101887][ T6144] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm syz.1.56: bg 0: block 7: invalid block bitmap [ 109.206383][ T6144] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 109.233410][ T6144] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2967: inode #11: comm syz.1.56: corrupted xattr block 95: invalid header [ 109.266736][ T6144] EXT4-fs warning (device loop1): ext4_evict_inode:273: xattr delete (err -117) [ 109.290209][ T6144] EXT4-fs (loop1): 1 orphan inode deleted [ 109.329304][ T6144] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 109.392688][ T6154] loop3: detected capacity change from 0 to 2048 [ 109.407388][ T6144] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.479211][ T6154] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 109.543742][ T6154] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 109.635435][ T6166] netlink: 16 bytes leftover after parsing attributes in process `syz.4.63'. [ 109.734128][ T6172] loop1: detected capacity change from 0 to 164 [ 109.872698][ T6172] Unable to read rock-ridge attributes [ 109.879610][ T5928] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 110.011694][ T5928] usb 4-1: device descriptor read/64, error -71 [ 110.259563][ T5928] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 110.429827][ T5928] usb 4-1: device descriptor read/64, error -71 [ 110.551322][ T5928] usb usb4-port1: attempt power cycle [ 110.814123][ T30] kauditd_printk_skb: 57 callbacks suppressed [ 110.814143][ T30] audit: type=1326 audit(1762817324.411:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.4.72" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc13a78f6c9 code=0x0 [ 110.939562][ T5928] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 110.984208][ T5928] usb 4-1: device descriptor read/8, error -71 [ 111.269501][ T5928] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 111.300397][ T5928] usb 4-1: device descriptor read/8, error -71 [ 111.405839][ T5941] Set syz1 is full, maxelem 65536 reached [ 111.451317][ T5928] usb usb4-port1: unable to enumerate USB device [ 111.476585][ T6215] loop1: detected capacity change from 0 to 164 [ 111.514188][ T6215] Unable to read rock-ridge attributes [ 111.692923][ T6218] mmap: syz.0.78 (6218) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 111.849233][ T6223] team_slave_0: entered promiscuous mode [ 111.855301][ T6223] team_slave_1: entered promiscuous mode [ 111.892629][ T6223] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 111.949140][ T6223] team0: Device macvtap1 is already an upper device of the team interface [ 112.195635][ T6232] loop1: detected capacity change from 0 to 512 [ 112.269988][ T6223] team_slave_0: left promiscuous mode [ 112.275797][ T6223] team_slave_1: left promiscuous mode [ 112.367432][ T6232] EXT4-fs: Ignoring removed i_version option [ 112.407210][ T6232] EXT4-fs: Ignoring removed bh option [ 112.420232][ T3514] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm kworker/u8:6: bg 0: block 345: padding at end of block bitmap is not set [ 112.446070][ T3514] EXT4-fs (loop3): Remounting filesystem read-only [ 112.474272][ T6232] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 112.498306][ T6232] ext4 filesystem being mounted at /18/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 112.782923][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.988652][ T6260] random: crng reseeded on system resumption [ 113.234471][ T30] audit: type=1326 audit(1762817326.831:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6265 comm="syz.2.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 113.435567][ T30] audit: type=1326 audit(1762817326.831:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6265 comm="syz.2.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 113.485313][ T6272] netlink: 24 bytes leftover after parsing attributes in process `syz.4.96'. [ 113.512246][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.617946][ T30] audit: type=1326 audit(1762817326.851:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6265 comm="syz.2.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 113.677615][ T6274] netlink: 'syz.2.97': attribute type 1 has an invalid length. [ 113.690097][ T30] audit: type=1326 audit(1762817326.851:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6265 comm="syz.2.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 113.846457][ T6278] netlink: 4 bytes leftover after parsing attributes in process `syz.2.97'. [ 113.923931][ T30] audit: type=1326 audit(1762817326.851:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6265 comm="syz.2.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 114.004169][ T30] audit: type=1326 audit(1762817326.861:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6265 comm="syz.2.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 114.215873][ T6283] capability: warning: `syz.0.100' uses deprecated v2 capabilities in a way that may be insecure [ 114.293847][ T6285] loop4: detected capacity change from 0 to 164 [ 114.313011][ T30] audit: type=1326 audit(1762817326.861:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6265 comm="syz.2.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 114.417145][ T30] audit: type=1326 audit(1762817326.871:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6265 comm="syz.2.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 114.587210][ T30] audit: type=1326 audit(1762817326.871:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6265 comm="syz.2.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 114.642415][ T6285] Unable to read rock-ridge attributes [ 115.193137][ T116] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 115.204960][ T116] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 115.245610][ T116] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 115.261812][ T116] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 115.291477][ T6298] loop4: detected capacity change from 0 to 1024 [ 115.301068][ T116] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 115.322697][ T116] hid-generic 0000:0000:0000.0001: unknown main item tag 0x4 [ 115.346171][ T6298] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 115.369620][ T116] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 115.390258][ T116] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 115.429609][ T116] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 115.438487][ T6298] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 115.466219][ T116] hid-generic 0000:0000:0000.0001: unknown main item tag 0x2 [ 115.509718][ T116] hid-generic 0000:0000:0000.0001: hidraw0: HID v8.00 Device [syz0] on syz0 [ 115.710474][ T6298] EXT4-fs error (device loop4): ext4_xattr_inode_iget:441: inode #11: comm syz.4.107: missing EA_INODE flag [ 115.820356][ T30] kauditd_printk_skb: 41 callbacks suppressed [ 115.820376][ T30] audit: type=1326 audit(1762817329.411:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 115.859739][ T6298] EXT4-fs (loop4): Remounting filesystem read-only [ 115.935538][ T6307] fido_id[6307]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 115.961144][ T30] audit: type=1326 audit(1762817329.411:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 116.063343][ T30] audit: type=1326 audit(1762817329.421:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 116.132063][ T30] audit: type=1326 audit(1762817329.461:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 116.212979][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found [ 116.244220][ T30] audit: type=1326 audit(1762817329.461:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 116.266672][ T30] audit: type=1326 audit(1762817329.581:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=427 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 116.289510][ T30] audit: type=1326 audit(1762817329.581:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 116.312152][ T30] audit: type=1326 audit(1762817329.581:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 116.382496][ T30] audit: type=1326 audit(1762817329.631:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 116.520975][ T30] audit: type=1326 audit(1762817329.631:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.4.107" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 116.580428][ T5821] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.717981][ T6322] loop0: detected capacity change from 0 to 164 [ 116.768153][ T6322] Unable to read rock-ridge attributes [ 116.811063][ T6328] team_slave_0: entered promiscuous mode [ 116.816854][ T6328] team_slave_1: entered promiscuous mode [ 116.825575][ T6328] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 116.833376][ T6328] team0: Device macvtap1 is already an upper device of the team interface [ 116.875640][ T6328] team_slave_0: left promiscuous mode [ 116.881479][ T6328] team_slave_1: left promiscuous mode [ 116.969791][ C0] vcan0: j1939_tp_rxtimer: 0xffff888058c01000: rx timeout, send abort [ 117.349944][ T6335] loop3: detected capacity change from 0 to 512 [ 117.442493][ T6335] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 117.455838][ T6335] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 117.478958][ C0] vcan0: j1939_tp_rxtimer: 0xffff888058c01000: abort rx timeout. Force session deactivation [ 117.633610][ T6335] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 119.498432][ T6356] tipc: Started in network mode [ 119.527795][ T6356] tipc: Node identity ac14140f, cluster identity 4711 [ 119.555053][ T6356] tipc: New replicast peer: 255.255.255.255 [ 119.574777][ T6361] loop1: detected capacity change from 0 to 164 [ 119.611180][ T6356] tipc: Enabled bearer , priority 10 [ 119.636092][ T6361] Unable to read rock-ridge attributes [ 119.739766][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.763971][ T6364] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 119.819553][ T6364] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 119.896560][ T6364] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 119.961192][ T6364] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 120.699721][ T43] tipc: Node number set to 2886997007 [ 120.706455][ T6390] loop0: detected capacity change from 0 to 512 [ 120.783669][ T6394] loop4: detected capacity change from 0 to 164 [ 120.828407][ T6394] Unable to read rock-ridge attributes [ 121.170771][ T6402] loop0: detected capacity change from 0 to 512 [ 122.076189][ T6402] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 123.067863][ T6402] EXT4-fs (loop0): orphan cleanup on readonly fs [ 123.093214][ T6402] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.145: bg 0: block 248: padding at end of block bitmap is not set [ 123.114037][ T6402] __quota_error: 59 callbacks suppressed [ 123.114087][ T6402] Quota error (device loop0): write_blk: dquota write failed [ 123.128106][ T6402] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 123.138197][ T6402] EXT4-fs error (device loop0): ext4_acquire_dquot:6946: comm syz.0.145: Failed to acquire dquot type 1 [ 123.157568][ T6402] EXT4-fs (loop0): 1 truncate cleaned up [ 123.389826][ T6408] loop3: detected capacity change from 0 to 1024 [ 124.046256][ T6402] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 124.076753][ T6408] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 124.267709][ T5822] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.324101][ T6408] EXT4-fs error (device loop3): __ext4_new_inode:1073: comm syz.3.148: reserved inode found cleared - inode=2 [ 124.388803][ T6408] EXT4-fs error (device loop3): ext4_read_inline_dir:1476: inode #12: block 7: comm syz.3.148: path /30/file1/file0: bad entry in directory: inode out of bounds - offset=24, inode=150994957, rec_len=16, size=80 fake=0 [ 124.514788][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.541233][ T30] audit: type=1326 audit(1762817338.141:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.0.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c3f38f6c9 code=0x7ffc0000 [ 124.618679][ T30] audit: type=1326 audit(1762817338.161:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.0.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c3f38f6c9 code=0x7ffc0000 [ 124.638887][ T6428] loop4: detected capacity change from 0 to 128 [ 124.651390][ T6428] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 124.697982][ T30] audit: type=1326 audit(1762817338.161:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.0.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c3f38f6c9 code=0x7ffc0000 [ 124.743871][ T30] audit: type=1326 audit(1762817338.161:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.0.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=459 compat=0 ip=0x7f2c3f38f6c9 code=0x7ffc0000 [ 124.767351][ T30] audit: type=1326 audit(1762817338.161:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.0.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c3f38f6c9 code=0x7ffc0000 [ 124.790406][ T30] audit: type=1326 audit(1762817338.161:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.0.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f2c3f38f6c9 code=0x7ffc0000 [ 124.798803][ T6428] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 124.813261][ T30] audit: type=1326 audit(1762817338.161:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6423 comm="syz.0.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f2c3f38f6c9 code=0x7ffc0000 [ 124.916066][ T30] audit: type=1326 audit(1762817338.511:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6426 comm="syz.4.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 125.025558][ T6434] loop3: detected capacity change from 0 to 512 [ 125.062038][ T6434] EXT4-fs: Ignoring removed oldalloc option [ 125.069796][ T6434] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 125.113906][ T6434] EXT4-fs (loop3): too many log groups per flexible block group [ 125.150609][ T6087] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 125.176847][ T6434] EXT4-fs (loop3): failed to initialize mballoc (-12) [ 125.185352][ T6434] EXT4-fs (loop3): mount failed [ 125.289159][ T6442] netlink: 4 bytes leftover after parsing attributes in process `syz.4.161'. [ 125.328450][ T6442] netlink: 12 bytes leftover after parsing attributes in process `syz.4.161'. [ 127.468236][ T6482] loop0: detected capacity change from 0 to 1024 [ 127.625515][ T6482] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 127.928870][ T6482] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.175: Invalid block bitmap block 0 in block_group 0 [ 128.014658][ T6482] EXT4-fs error (device loop0): ext4_acquire_dquot:6946: comm syz.0.175: Failed to acquire dquot type 0 [ 128.325407][ T6495] loop3: detected capacity change from 0 to 128 [ 128.351856][ T6495] FAT-fs (loop3): Directory bread(block 414) failed [ 128.358793][ T6495] FAT-fs (loop3): Directory bread(block 415) failed [ 128.365811][ T6495] FAT-fs (loop3): Directory bread(block 416) failed [ 128.372522][ T6495] FAT-fs (loop3): Directory bread(block 417) failed [ 128.379254][ T6495] FAT-fs (loop3): Directory bread(block 418) failed [ 128.386037][ T6495] FAT-fs (loop3): Directory bread(block 419) failed [ 128.392880][ T6495] FAT-fs (loop3): Directory bread(block 420) failed [ 128.399874][ T6495] FAT-fs (loop3): Directory bread(block 421) failed [ 128.525931][ T6495] FAT-fs (loop3): FAT read failed (blocknr 128) [ 128.657402][ T6482] EXT4-fs error (device loop0): ext4_free_blocks:6706: comm syz.0.175: Freeing blocks not in datazone - block = 0, count = 4096 [ 128.977430][ T6482] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz.0.175: Invalid inode bitmap blk 0 in block_group 0 [ 129.005957][ T3514] __quota_error: 22 callbacks suppressed [ 129.005979][ T3514] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-7 [ 129.023557][ T6482] EXT4-fs error (device loop0) in ext4_free_inode:361: Corrupt filesystem [ 129.075744][ T6482] EXT4-fs (loop0): 1 orphan inode deleted [ 129.111620][ T6482] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 129.149601][ T3514] EXT4-fs error (device loop0): ext4_release_dquot:6982: comm kworker/u8:6: Failed to release dquot type 0 [ 129.287029][ T6498] loop1: detected capacity change from 0 to 128 [ 129.290231][ T5822] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 129.372306][ T30] audit: type=1800 audit(1762817342.971:217): pid=6498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.179" name="bus" dev="loop1" ino=1048608 res=0 errno=0 [ 129.510986][ T6499] syz.1.179: attempt to access beyond end of device [ 129.510986][ T6499] loop1: rw=2049, sector=889, nr_sectors = 152 limit=128 [ 129.653220][ T6501] netlink: 64 bytes leftover after parsing attributes in process `syz.0.180'. [ 129.985827][ T6508] IPv6: Can't replace route, no match found [ 130.189910][ T6513] loop1: detected capacity change from 0 to 2048 [ 130.225082][ T6517] loop0: detected capacity change from 0 to 128 [ 130.332147][ T6513] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 130.552080][ T5830] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 130.592947][ T5830] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6667: Corrupt filesystem [ 130.768289][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 130.831232][ T30] audit: type=1326 audit(1762817344.431:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 130.917687][ T30] audit: type=1326 audit(1762817344.461:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 130.973971][ T30] audit: type=1326 audit(1762817344.461:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 131.033897][ T30] audit: type=1326 audit(1762817344.461:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 131.100186][ T30] audit: type=1326 audit(1762817344.461:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6527 comm="syz.3.191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 131.472761][ T30] audit: type=1326 audit(1762817345.021:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6539 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c3f38f6c9 code=0x7ffc0000 [ 131.522913][ T30] audit: type=1326 audit(1762817345.021:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6539 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c3f38f6c9 code=0x7ffc0000 [ 131.553336][ T30] audit: type=1326 audit(1762817345.021:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6539 comm="syz.0.196" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c3f38f6c9 code=0x7ffc0000 [ 131.622080][ T6544] netlink: 12 bytes leftover after parsing attributes in process `syz.0.196'. [ 131.646937][ T6547] Zero length message leads to an empty skb [ 132.113981][ T6550] loop1: detected capacity change from 0 to 1024 [ 132.130639][ T6550] EXT4-fs: Ignoring removed nomblk_io_submit option [ 132.191297][ T6550] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 132.616393][ T6558] netlink: 'syz.0.201': attribute type 1 has an invalid length. [ 132.810837][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.063167][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.083642][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.460953][ T6578] loop1: detected capacity change from 0 to 1024 [ 133.644625][ T6584] bond2: entered promiscuous mode [ 133.656137][ T5884] IPVS: starting estimator thread 0... [ 133.657018][ T6584] bond2: entered allmulticast mode [ 133.668199][ T6584] 8021q: adding VLAN 0 to HW filter on device bond2 [ 133.677860][ T6580] IPVS: sh: UDP 224.0.0.2:0 - no destination available [ 133.688871][ T6588] loop1: detected capacity change from 0 to 512 [ 133.799741][ T6590] IPVS: using max 22 ests per chain, 52800 per kthread [ 133.803550][ T6371] Set syz1 is full, maxelem 65536 reached [ 133.810163][ T6588] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 133.840235][ T6588] ext4 filesystem being mounted at /46/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 133.883565][ T6588] EXT4-fs error (device loop1): ext4_do_update_inode:5636: inode #2: comm syz.1.211: corrupted inode contents [ 133.898787][ T6588] EXT4-fs error (device loop1): ext4_dirty_inode:6521: inode #2: comm syz.1.211: mark_inode_dirty error [ 133.911521][ T6588] EXT4-fs error (device loop1): ext4_do_update_inode:5636: inode #2: comm syz.1.211: corrupted inode contents [ 133.924199][ T6588] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.211: mark_inode_dirty error [ 134.057573][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.230479][ T6584] bond2 (unregistering): Released all slaves [ 136.147398][ T6609] loop4: detected capacity change from 0 to 1024 [ 136.193813][ T6612] netlink: 4 bytes leftover after parsing attributes in process `syz.2.218'. [ 136.206397][ T6609] EXT4-fs: Ignoring removed orlov option [ 136.265016][ T6609] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 136.350577][ T30] kauditd_printk_skb: 233 callbacks suppressed [ 136.350597][ T30] audit: type=1326 audit(1762817349.951:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 136.537563][ T30] audit: type=1326 audit(1762817350.001:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 136.614177][ T30] audit: type=1326 audit(1762817350.001:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 136.617457][ T6620] loop0: detected capacity change from 0 to 1024 [ 136.709528][ T30] audit: type=1326 audit(1762817350.001:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 136.792039][ T5821] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.828094][ T30] audit: type=1326 audit(1762817350.001:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 136.893184][ T30] audit: type=1326 audit(1762817350.021:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 137.004448][ T30] audit: type=1326 audit(1762817350.021:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 137.096083][ T30] audit: type=1326 audit(1762817350.031:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.220" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 137.182011][ T30] audit: type=1326 audit(1762817350.031:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 137.297334][ T6638] Driver unsupported XDP return value 0 on prog (id 114) dev N/A, expect packet loss! [ 137.308002][ T30] audit: type=1326 audit(1762817350.031:468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 137.800320][ T6646] netlink: 4 bytes leftover after parsing attributes in process `syz.3.231'. [ 138.116955][ T6655] loop4: detected capacity change from 0 to 1024 [ 141.542056][ T6681] netlink: 56 bytes leftover after parsing attributes in process `syz.0.245'. [ 141.812536][ T30] kauditd_printk_skb: 63 callbacks suppressed [ 141.812556][ T30] audit: type=1326 audit(1762817355.411:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6679 comm="syz.0.245" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2c3f38f6c9 code=0x0 [ 142.016703][ T6692] netlink: 4 bytes leftover after parsing attributes in process `syz.0.245'. [ 142.241693][ T30] audit: type=1326 audit(1762817355.831:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 142.367238][ T30] audit: type=1326 audit(1762817355.861:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 142.499331][ T30] audit: type=1326 audit(1762817355.861:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 142.789862][ T30] audit: type=1326 audit(1762817355.861:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 142.814406][ T30] audit: type=1326 audit(1762817355.861:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 143.643886][ T6713] loop2: detected capacity change from 0 to 512 [ 143.777629][ T30] audit: type=1326 audit(1762817355.871:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 143.800270][ T30] audit: type=1326 audit(1762817355.871:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6697 comm="syz.2.250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f31ad58f6c9 code=0x7ffc0000 [ 144.790169][ T6713] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 144.803103][ T6713] ext4 filesystem being mounted at /45/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 144.825974][ T6713] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 145.267224][ T6722] loop3: detected capacity change from 0 to 128 [ 145.328161][ T6722] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 145.366572][ T6722] ext4 filesystem being mounted at /55/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 145.841541][ T6718] loop1: detected capacity change from 0 to 512 [ 145.884348][ T5829] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 145.966782][ T5832] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.015650][ T6718] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.252: bad orphan inode 11862016 [ 146.043591][ T6718] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 146.083336][ T6718] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 146.210146][ T30] audit: type=1800 audit(1762817359.811:540): pid=6707 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.252" name="file1" dev="loop1" ino=18 res=0 errno=0 [ 146.804489][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 146.930497][ T5963] hid_parser_main: 29 callbacks suppressed [ 146.930522][ T5963] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 146.990283][ T5963] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 147.026716][ T5963] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 147.049894][ T5963] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 147.062021][ T6745] loop0: detected capacity change from 0 to 256 [ 147.084203][ T5963] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 147.095980][ T6747] loop1: detected capacity change from 0 to 256 [ 147.129739][ T30] audit: type=1800 audit(1762817360.721:541): pid=6745 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.262" name="file1" dev="loop0" ino=1048609 res=0 errno=0 [ 147.139489][ T5963] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 147.169886][ T6745] FAT-fs (loop0): error, clusters badly computed (0 != 128) [ 147.193125][ T6747] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 147.219565][ T5963] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 147.219786][ T6749] loop4: detected capacity change from 0 to 1024 [ 147.227166][ T5963] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 147.249818][ T6745] FAT-fs (loop0): Filesystem has been set read-only [ 147.256606][ T6745] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 147.273525][ T30] audit: type=1800 audit(1762817360.851:542): pid=6747 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.263" name="file1" dev="loop1" ino=1048610 res=0 errno=0 [ 147.281361][ T6747] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 147.309102][ T5963] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 147.329066][ T5963] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 147.351345][ T6747] FAT-fs (loop1): Filesystem has been set read-only [ 147.368732][ T5963] hid-generic 0003:0004:0000.0002: hidraw0: USB HID v0.04 Device [syz0] on syz1 [ 147.392029][ T6749] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 147.434740][ T6749] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 147.486436][ T6757] syz.3.267 uses obsolete (PF_INET,SOCK_PACKET) [ 147.506990][ T6752] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 147.527696][ T6749] EXT4-fs error (device loop4): ext4_map_blocks:819: inode #15: comm syz.4.265: lblock 0 mapped to illegal pblock 0 (length 6) [ 147.573806][ T6749] EXT4-fs error (device loop4): ext4_map_blocks:819: inode #15: comm syz.4.265: lblock 0 mapped to illegal pblock 0 (length 1) [ 147.670422][ T6749] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 147.709614][ T6749] EXT4-fs (loop4): This should not happen!! Data will be lost [ 147.709614][ T6749] [ 147.726276][ T6760] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #15: comm syz.4.265: lblock 0 mapped to illegal pblock 0 (length 1) [ 147.757419][ T6760] EXT4-fs error (device loop4): ext4_map_blocks:819: inode #15: block 3: comm syz.4.265: lblock 3 mapped to illegal pblock 3 (length 3) [ 147.776525][ T6760] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117 [ 147.802554][ T6760] EXT4-fs (loop4): This should not happen!! Data will be lost [ 147.802554][ T6760] [ 147.885082][ T6088] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:10: bg 0: block 112: padding at end of block bitmap is not set [ 147.901036][ T6088] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117 [ 147.926410][ T6088] EXT4-fs (loop4): This should not happen!! Data will be lost [ 147.926410][ T6088] [ 147.958868][ T5821] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 148.099940][ T6772] netlink: 'syz.1.275': attribute type 1 has an invalid length. [ 148.338449][ T6792] loop4: detected capacity change from 0 to 1024 [ 148.346017][ T6792] EXT4-fs: Ignoring removed orlov option [ 148.363476][ T6792] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 148.446893][ T6795] loop2: detected capacity change from 0 to 512 [ 148.523997][ T6800] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 148.549246][ T6795] EXT4-fs (loop2): orphan cleanup on readonly fs [ 148.568035][ T6795] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.282: error while reading EA inode 32 err=-116 [ 148.749346][ T6795] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 148.788478][ T6795] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.282: error while reading EA inode 32 err=-116 [ 148.882082][ T6795] EXT4-fs (loop2): 1 orphan inode deleted [ 148.928797][ T6795] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 149.163877][ T5832] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.414672][ T5821] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.654710][ T6828] loop0: detected capacity change from 0 to 1024 [ 149.680766][ T6832] ALSA: seq fatal error: cannot create timer (-19) [ 149.703746][ T6826] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 149.778776][ T6828] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 149.833499][ T30] audit: type=1800 audit(1762817363.431:543): pid=6828 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.294" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 149.845512][ T6826] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 149.869687][ T6840] tipc: Started in network mode [ 149.874616][ T6840] tipc: Node identity ac14140f, cluster identity 4711 [ 149.882037][ T6840] tipc: New replicast peer: 255.255.255.32 [ 149.888303][ T6840] tipc: Enabled bearer , priority 10 [ 149.895790][ T6840] netlink: 12 bytes leftover after parsing attributes in process `syz.1.299'. [ 150.075640][ T6828] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4193: comm syz.0.294: Allocating blocks 497-513 which overlap fs metadata [ 150.198312][ T6827] EXT4-fs (loop0): pa ffff88806c6320e8: logic 32, phys. 161, len 22 [ 150.207189][ T6827] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5444: group 0, free 0, pa_free 1 [ 150.366333][ T30] audit: type=1326 audit(1762817363.961:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz.4.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 150.371709][ T30] audit: type=1326 audit(1762817363.971:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz.4.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 150.371814][ T30] audit: type=1326 audit(1762817363.971:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz.4.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 150.372809][ T30] audit: type=1326 audit(1762817363.971:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz.4.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 150.375034][ T30] audit: type=1326 audit(1762817363.971:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz.4.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 150.379938][ T30] audit: type=1326 audit(1762817363.971:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz.4.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 150.380037][ T30] audit: type=1326 audit(1762817363.971:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz.4.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 150.384064][ T5822] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.763042][ T6863] ALSA: seq fatal error: cannot create timer (-19) [ 151.031842][ T6875] loop4: detected capacity change from 0 to 512 [ 151.314598][ T6875] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 151.327715][ T6875] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 151.375079][ T6875] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 151.832397][ T5928] tipc: Node number set to 2886997007 [ 152.796175][ T6881] Set syz1 is full, maxelem 6117 reached [ 153.690570][ T5821] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.888632][ T6914] netlink: 12 bytes leftover after parsing attributes in process `syz.4.323'. [ 154.028402][ T30] kauditd_printk_skb: 8 callbacks suppressed [ 154.028422][ T30] audit: type=1326 audit(1762817367.621:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6917 comm="syz.3.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 154.121304][ T6918] loop0: detected capacity change from 0 to 512 [ 154.129627][ T30] audit: type=1326 audit(1762817367.661:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6917 comm="syz.3.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 154.188785][ T30] audit: type=1326 audit(1762817367.671:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6917 comm="syz.3.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 154.195261][ T6918] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 154.224545][ T30] audit: type=1326 audit(1762817367.671:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6917 comm="syz.3.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 154.249850][ T30] audit: type=1326 audit(1762817367.671:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6917 comm="syz.3.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 154.272860][ T30] audit: type=1326 audit(1762817367.671:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6917 comm="syz.3.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 154.295549][ T30] audit: type=1326 audit(1762817367.671:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6917 comm="syz.3.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 154.318321][ T30] audit: type=1326 audit(1762817367.671:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6917 comm="syz.3.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 154.341498][ T6918] ext4 filesystem being mounted at /61/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 154.352794][ T30] audit: type=1326 audit(1762817367.671:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6917 comm="syz.3.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f5c6038f6c9 code=0x7ffc0000 [ 154.377495][ T6918] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.409576][ T30] audit: type=1326 audit(1762817367.701:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6923 comm="syz.3.326" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f5c603c1f85 code=0x7ffc0000 [ 154.590394][ T6936] netlink: 'syz.3.326': attribute type 6 has an invalid length. [ 154.591929][ T6936] netlink: 'syz.3.326': attribute type 6 has an invalid length. [ 154.840923][ T6949] netlink: 'syz.2.336': attribute type 3 has an invalid length. [ 155.281638][ T6956] ALSA: seq fatal error: cannot create timer (-19) [ 155.321533][ T6962] netlink: 4 bytes leftover after parsing attributes in process `syz.2.341'. [ 155.365873][ T6962] netlink: 4 bytes leftover after parsing attributes in process `syz.2.341'. [ 155.476704][ T6966] netlink: 24 bytes leftover after parsing attributes in process `syz.3.342'. [ 156.954611][ T6973] serio: Serial port ptm0 [ 157.678952][ T7003] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 157.713270][ T7003] netlink: 'syz.4.356': attribute type 10 has an invalid length. [ 157.729012][ T7003] macvlan1: entered allmulticast mode [ 157.739096][ T7003] veth1_vlan: entered allmulticast mode [ 157.751718][ T7003] team0: Device macvlan1 is up. Set it down before adding it as a team port [ 157.769993][ T7000] ALSA: seq fatal error: cannot create timer (-19) [ 157.972007][ T7014] netlink: 4 bytes leftover after parsing attributes in process `syz.1.360'. [ 157.991693][ T7014] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 158.004892][ T7014] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 158.020867][ T7014] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 158.028590][ T7014] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 158.677593][ T7040] loop1: detected capacity change from 0 to 256 [ 158.758632][ T7040] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 159.134495][ T7043] ALSA: seq fatal error: cannot create timer (-19) [ 159.363025][ T7052] loop0: detected capacity change from 0 to 512 [ 159.402321][ T7053] netlink: 'syz.2.372': attribute type 13 has an invalid length. [ 159.475403][ T7052] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.373: bg 0: block 248: padding at end of block bitmap is not set [ 159.507108][ T30] kauditd_printk_skb: 77 callbacks suppressed [ 159.507129][ T30] audit: type=1326 audit(1762817373.101:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.4.375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 159.539592][ T30] audit: type=1326 audit(1762817373.131:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.4.375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=161 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 159.562460][ T7052] Quota error (device loop0): write_blk: dquota write failed [ 159.570251][ T30] audit: type=1326 audit(1762817373.131:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.4.375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 159.592906][ T7052] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 159.618506][ T30] audit: type=1326 audit(1762817373.131:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.4.375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 159.643762][ T7052] EXT4-fs error (device loop0): ext4_acquire_dquot:6946: comm syz.0.373: Failed to acquire dquot type 1 [ 159.693101][ T7052] EXT4-fs (loop0): 1 truncate cleaned up [ 159.702806][ T7052] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 159.734676][ T7052] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 159.761954][ T30] audit: type=1326 audit(1762817373.361:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.4.375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 159.794039][ T30] audit: type=1326 audit(1762817373.361:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7059 comm="syz.4.375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 159.829803][ T7052] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 2 index 2 [ 159.849704][ T7052] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 131074 [ 159.860546][ T7052] EXT4-fs error (device loop0): ext4_acquire_dquot:6946: comm syz.0.373: Failed to acquire dquot type 1 [ 160.253131][ T5822] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 160.513464][ T7066] loop0: detected capacity change from 0 to 2048 [ 160.586319][ T7066] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 160.705702][ T7065] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 160.759663][ T7065] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 20 with error 28 [ 160.775779][ T7065] EXT4-fs (loop0): This should not happen!! Data will be lost [ 160.775779][ T7065] [ 160.804805][ T7065] EXT4-fs (loop0): Total free blocks count 0 [ 160.819535][ T7065] EXT4-fs (loop0): Free/Dirty block details [ 160.839154][ T7065] EXT4-fs (loop0): free_blocks=2415919504 [ 160.860862][ T7065] EXT4-fs (loop0): dirty_blocks=32 [ 160.880668][ T7065] EXT4-fs (loop0): Block reservation details [ 160.904614][ T7065] EXT4-fs (loop0): i_reserved_data_blocks=2 [ 161.548629][ T5822] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.687596][ T7081] netlink: 224 bytes leftover after parsing attributes in process `syz.0.380'. [ 161.698847][ T7081] ksmbd: Unknown IPC event: 3, ignore. [ 161.861547][ T7084] ALSA: seq fatal error: cannot create timer (-19) [ 162.220091][ T7091] x_tables: duplicate underflow at hook 3 [ 162.979917][ T7093] loop3: detected capacity change from 0 to 512 [ 163.040397][ T7093] EXT4-fs (loop3): orphan cleanup on readonly fs [ 163.075661][ T7093] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.385: bad orphan inode 13 [ 163.106715][ T7093] ext4_test_bit(bit=12, block=18) = 1 [ 163.120429][ T7093] is_bad_inode(inode)=0 [ 163.149495][ T7093] NEXT_ORPHAN(inode)=2130706432 [ 163.159686][ T7093] max_ino=32 [ 163.162955][ T7093] i_nlink=1 [ 163.172306][ T7093] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 163.245921][ T7093] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 163.308138][ T7093] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 163.413833][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.250991][ T7121] ALSA: seq fatal error: cannot create timer (-19) [ 164.300616][ T7125] syz_tun: entered allmulticast mode [ 164.321410][ T7124] syz_tun: left allmulticast mode [ 164.517377][ T7129] wg2: entered promiscuous mode [ 164.547520][ T7129] wg2: entered allmulticast mode [ 164.863848][ T7137] loop4: detected capacity change from 0 to 512 [ 164.890762][ T7137] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.402: inode has both inline data and extents flags [ 164.906676][ T7137] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.402: couldn't read orphan inode 15 (err -117) [ 164.921895][ T7137] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.938649][ T30] kauditd_printk_skb: 13 callbacks suppressed [ 164.938669][ T30] audit: type=1326 audit(1762817378.531:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.4.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 165.009811][ T30] audit: type=1326 audit(1762817378.531:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.4.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 165.011823][ T7137] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] SMP KASAN PTI [ 165.033107][ T30] audit: type=1326 audit(1762817378.531:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.4.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 165.044943][ T7137] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007] [ 165.044968][ T7137] CPU: 0 UID: 0 PID: 7137 Comm: syz.4.402 Not tainted syzkaller #0 PREEMPT(full) [ 165.044990][ T7137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 165.045001][ T7137] RIP: 0010:bio_seg_gap+0x1c6/0x7d0 [ 165.045029][ T7137] Code: fd 48 ba 00 00 00 00 00 fc ff df 49 8b 06 48 89 5c 24 20 49 89 de 49 c1 e6 04 48 89 44 24 08 4a 8d 2c 30 48 89 e8 48 c1 e8 03 <80> 3c 10 00 74 12 48 89 ef e8 0c 33 b9 fd 48 ba 00 00 00 00 00 fc [ 165.045053][ T7137] RSP: 0018:ffffc90003c8ed40 EFLAGS: 00010246 [ 165.045073][ T7137] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000080000 [ 165.045086][ T7137] RDX: dffffc0000000000 RSI: 0000000000003c31 RDI: ffff888054c072b0 [ 165.045098][ T7137] RBP: 0000000000000000 R08: ffff88814170a767 R09: 1ffff110282e14ec [ 165.045111][ T7137] R10: dffffc0000000000 R11: ffffed10282e14ed R12: 0000000000000c00 [ 165.045124][ T7137] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888054c07280 [ 165.045137][ T7137] FS: 00007fc13b6556c0(0000) GS:ffff888125ecd000(0000) knlGS:0000000000000000 [ 165.045153][ T7137] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 165.045166][ T7137] CR2: 0000200000002000 CR3: 00000000787da000 CR4: 00000000003526f0 [ 165.045184][ T7137] Call Trace: [ 165.045192][ T7137] [ 165.045204][ T7137] ? blk_add_trace_bio+0x1de/0x2f0 [ 165.045229][ T7137] bio_attempt_back_merge+0x4ba/0x920 [ 165.045251][ T7137] ? blk_attempt_bio_merge+0x273/0x4c0 [ 165.045275][ T7137] blk_attempt_plug_merge+0x145/0x1d0 [ 165.045298][ T7137] blk_mq_submit_bio+0x1abd/0x26d0 [ 165.045320][ T7137] ? blk_mq_submit_bio+0x46a/0x26d0 [ 165.045341][ T7137] ? __pfx_blk_mq_submit_bio+0x10/0x10 [ 165.045359][ T7137] ? blk_mq_submit_bio+0xd6b/0x26d0 [ 165.045382][ T7137] ? __lock_acquire+0xab9/0xd20 [ 165.045409][ T7137] __submit_bio+0x207/0x5a0 [ 165.045430][ T7137] ? __pfx___submit_bio+0x10/0x10 [ 165.045455][ T7137] ? blk_add_trace_bio+0x2e/0x2f0 [ 165.045477][ T7137] submit_bio_noacct_nocheck+0x2fb/0xa50 [ 165.069029][ T30] audit: type=1326 audit(1762817378.541:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.4.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 165.076315][ T7137] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10 [ 165.076349][ T7137] ? blk_add_trace_bio+0x2e/0x2f0 [ 165.076373][ T7137] ? submit_bio_noacct+0xe0c/0x1b80 [ 165.076396][ T7137] submit_bio_wait+0x104/0x200 [ 165.085889][ T30] audit: type=1326 audit(1762817378.541:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.4.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 165.095941][ T7137] ? __pfx_submit_bio_wait+0x10/0x10 [ 165.095987][ T7137] ? blk_alloc_discard_bio+0x243/0x2c0 [ 165.096014][ T7137] blkdev_issue_discard+0x113/0x1b0 [ 165.096037][ T7137] ? __pfx_blkdev_issue_discard+0x10/0x10 [ 165.096062][ T7137] ? rcu_is_watching+0x15/0xb0 [ 165.101506][ T30] audit: type=1326 audit(1762817378.541:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.4.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 165.120890][ T7137] ? ext4_issue_discard+0x2a3/0x530 [ 165.120926][ T7137] ext4_free_blocks+0xce2/0x1bf0 [ 165.120965][ T7137] ? __pfx_ext4_free_blocks+0x10/0x10 [ 165.120993][ T7137] ? ext4_ind_truncate_ensure_credits+0x29a/0x750 [ 165.121018][ T7137] ext4_clear_blocks+0x372/0x3f0 [ 165.121041][ T7137] ext4_ind_truncate+0x701/0xb30 [ 165.121060][ T7137] ? ext4_discard_preallocations+0x5c2/0xec0 [ 165.121088][ T7137] ? __pfx_ext4_ind_truncate+0x10/0x10 [ 165.121106][ T7137] ? ext4_discard_preallocations+0xc8d/0xec0 [ 165.121138][ T7137] ? __pfx_ext4_discard_preallocations+0x10/0x10 [ 165.121168][ T7137] ext4_truncate+0xb24/0x12e0 [ 165.121196][ T7137] ? __pfx_ext4_truncate+0x10/0x10 [ 165.121219][ T7137] ? down_write+0x162/0x1f0 [ 165.121239][ T7137] ? __pfx_down_write+0x10/0x10 [ 165.121260][ T7137] ext4_write_end+0x76e/0x9f0 [ 165.121288][ T7137] generic_perform_write+0x62a/0x900 [ 165.121319][ T7137] ? __pfx_generic_perform_write+0x10/0x10 [ 165.128454][ T30] audit: type=1326 audit(1762817378.541:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.4.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 165.135461][ T7137] ? file_modified_flags+0x4bb/0x560 [ 165.135492][ T7137] ? ext4_write_checks+0x24b/0x2c0 [ 165.135520][ T7137] ext4_buffered_write_iter+0xce/0x3a0 [ 165.143715][ T30] audit: type=1326 audit(1762817378.541:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.4.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 165.151459][ T7137] ext4_file_write_iter+0x292/0x1bc0 [ 165.151501][ T7137] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 165.542965][ T7137] vfs_write+0x5c9/0xb30 [ 165.547225][ T7137] ? __pfx_ext4_file_write_iter+0x10/0x10 [ 165.552975][ T7137] ? __pfx_vfs_write+0x10/0x10 [ 165.557836][ T7137] ? __fget_files+0x2a/0x420 [ 165.562434][ T7137] ksys_write+0x145/0x250 [ 165.566770][ T7137] ? __pfx_ksys_write+0x10/0x10 [ 165.571628][ T7137] ? __secure_computing+0xe2/0x2a0 [ 165.576833][ T7137] do_syscall_64+0xfa/0xfa0 [ 165.582748][ T7137] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.588850][ T7137] ? clear_bhb_loop+0x60/0xb0 [ 165.593537][ T7137] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 165.599440][ T7137] RIP: 0033:0x7fc13a78f6c9 [ 165.603865][ T7137] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 165.623559][ T7137] RSP: 002b:00007fc13b655038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 165.632067][ T7137] RAX: ffffffffffffffda RBX: 00007fc13a9e5fa0 RCX: 00007fc13a78f6c9 [ 165.640129][ T7137] RDX: 000000000208e24b RSI: 0000200000000000 RDI: 0000000000000008 [ 165.648276][ T7137] RBP: 00007fc13a811f91 R08: 0000000000000000 R09: 0000000000000000 [ 165.656329][ T7137] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 165.664413][ T7137] R13: 00007fc13a9e6038 R14: 00007fc13a9e5fa0 R15: 00007ffe6f1f1e68 [ 165.672420][ T7137] [ 165.675443][ T7137] Modules linked in: [ 165.682203][ T30] audit: type=1326 audit(1762817378.541:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.4.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 165.683292][ T7137] ---[ end trace 0000000000000000 ]--- [ 165.725427][ T7137] RIP: 0010:bio_seg_gap+0x1c6/0x7d0 [ 165.732300][ T7137] Code: fd 48 ba 00 00 00 00 00 fc ff df 49 8b 06 48 89 5c 24 20 49 89 de 49 c1 e6 04 48 89 44 24 08 4a 8d 2c 30 48 89 e8 48 c1 e8 03 <80> 3c 10 00 74 12 48 89 ef e8 0c 33 b9 fd 48 ba 00 00 00 00 00 fc [ 165.749560][ T30] audit: type=1326 audit(1762817378.541:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7136 comm="syz.4.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc13a78f6c9 code=0x7ffc0000 [ 165.790339][ T7137] RSP: 0018:ffffc90003c8ed40 EFLAGS: 00010246 [ 165.797290][ T7137] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000080000 [ 165.806063][ T7137] RDX: dffffc0000000000 RSI: 0000000000003c31 RDI: ffff888054c072b0 [ 165.830979][ T7137] RBP: 0000000000000000 R08: ffff88814170a767 R09: 1ffff110282e14ec [ 165.849637][ T7137] R10: dffffc0000000000 R11: ffffed10282e14ed R12: 0000000000000c00 [ 165.872175][ T7137] R13: 0000000000000000 R14: 0000000000000000 R15: ffff888054c07280 [ 165.918258][ T7137] FS: 00007fc13b6556c0(0000) GS:ffff888125ecd000(0000) knlGS:0000000000000000 [ 165.927876][ T7137] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 165.936860][ T7137] CR2: 00007f31ad7b3ad8 CR3: 00000000787da000 CR4: 00000000003526f0 [ 165.945366][ T7137] Kernel panic - not syncing: Fatal exception [ 165.951990][ T7137] Kernel Offset: disabled [ 165.956592][ T7137] Rebooting in 86400 seconds..