last executing test programs: 3m37.522195154s ago: executing program 2 (id=537): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x11, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18) r1 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r1, 0x10c000) ioctl$USBDEVFS_SUBMITURB(r1, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x2000000b, 0xe0, &(0x7f0000000240)={0x3, 0x0, 0xfffa, 0x4360}, 0x8, 0x6, 0x7d, 0x0, 0x1, 0x101, 0x0}) ioctl$USBDEVFS_REAPURBNDELAY(r1, 0x4008550d, &(0x7f0000000080)) 3m37.416672855s ago: executing program 2 (id=539): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000013000000850000008600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1d0) r2 = open(&(0x7f0000000480)='./file0\x00', 0x0, 0x718bb647156ec3b7) mknodat$loop(r2, &(0x7f0000001600)='./file1\x00', 0x200, 0x0) linkat(r2, &(0x7f0000000040)='./file1\x00', r2, &(0x7f0000000180)='./bus\x00', 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f00000003c0), 0x1000000, &(0x7f0000000080)=ANY=[]) r3 = socket$nl_route(0x10, 0x3, 0x0) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x8000, &(0x7f0000000740)=ANY=[], 0x1, 0x2a4, &(0x7f0000000480)="$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") r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r4, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18) r6 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x1c5042, 0x12) writev(r7, &(0x7f0000001a40)=[{0x0}, {&(0x7f0000000a40)="2d7c05b661ed61dbb0ff95a0f7db1d70a1e8cbe5d67df0ffe7d7234e5c2579ff67a6588289a685d19db6d2e3b65b96e2bf4119a62a932b6770b873c79f6a9117acd583f0365093cd871d5c369eaff34d0513b222e38fcdce7b1f2b0d86e04b3eaea9966d878e96502cc03f40ae98e68f030c88e146e7747eeba91c67349f0dcbf6fd725760b2ec1a7b4c9fcbcea37f6c34a94105e43dac4871cde933f9fad5c9410ca97fe8726ed54b6ab6d9135623c3665e4cecfbf24d3921df819808ea845530ce7a9ec53ed7c09278de85a2a240fba90e366e860ad2645c317dba94345eb7e24274b21a58b7870ebaab92d8d5f52637b3d8ff40f30ad4a26a7fa562350711e70d011c16e3569b5d732a83cf2753de6f57d1591cd3dbe3b0782d02bf3a510902653e5abf26a08a51cfc9bf1947b68ad772cd56de456fcdfdea6cd15b275ada41ea95e8679d885dca32cc8bbc749a71ea850c2be65a3e0f5cb22ca88a1b0c5a54115a6890e82db80e5299f6e652291787fb8bf2298344219e9d893429707258f679bc60c9fae25cb986e39e47ef9929e177ce63fd520d3b5e72c5f4d00a76477980d9d5a61e03b3a25b255cf8895d6439671676e2463d947d7f8ecc79672bc248a3d81958eeb6620aefc534fb1121d1f72e1fb81d64dc54ccf19808ae2f4135f221ee70c2b66a6935622cc9a2c9f8fdf5fbc44f8bd3423c7a65a65ffaca932bfe3610deb25c07a5a1162f95f559555c6ebabe3f1ad3a937982ac2e8dee2060a6d211c838d823847512b36915c869d0e361588cde4b9c43f9b64b09df82bc044e8e903badb8c34dd344538ab75e37bc68bfc1cec94fde22be64919672e23a2c8eef03b6e194736ef0ef1522483a88bae4320f731e680e7149032a0f61c605290bddf7e1599ae54e2d770803f8fc05332991020e6f3f46153142c4d8209d90745ff656704b390209559baa963a4c4587b5a2ba2bc6473ed7ed3ce68ac3c44c70c0dd0d59d0579966a55bcbf3c645ff62eced1851e01cd6da10b2757f9d408dc17ce69857f6b097e57a16cbc66ac2d9c76df3326d2ae6effdb361e9625c47893390a9e7aadc2faa88da6313fb9b61e8efa894b230cd00095298522af387f79af862ae959837ef1933caf77b0658a1edeaf19a490a28d60e79578cee5cac5bb3d8051abc8a2259c40d2fa46f78973ed51f8f7c0e944ade661d648b3eb9be07df563d38d1832d0ea993f9f11cce98f8101111fbf495741f52ae6683bf4125fd5b18e13817bb757860b39e459f1b93dd2ea29028a365d5a097c51cc4442dc66ea9b941c2ff887847c512c86e1b80af7a34af2ca0b914d5ef29f7c478663337eb11ead8db59432a4912cfcd06dc54ffe655b4f0899c3ff20499a3407def0e9add7b8eca88b314e19e4292628efc59fe96d32be8e9ccc82d17944ddca66618d71227515f6b909ccf1b122a2365c7a8eae21ddcca120155cf3008f250c34fdb821e1e1d69e62647cfb8763a0194a57aa49a04ba6b449a176e75b45602d48805e94cc54d0d107155259f8c91cf8a4978894bdb9337b15fa547568d9bb38a0a6f1530719502f089f9ca0b58b02ed7749e0f536d9631d92cd33067a22316961f9aacb958c6f323b42d7da7a3d7b129ecc5098fce3e8a39b4e60701cc6a69e95f7eae5fe17d213064511ea8fe6b09705efb8c0e2b02791381c8c8566a73875a049e62e9a6b38e20679ab9594e1ad6d99aae7db0a5f61", 0x4d0}, {0x0}], 0x3) sendfile(r7, r6, 0x0, 0x7fffeff9) r8 = creat(&(0x7f0000000300)='./file0\x00', 0x0) mount$nfs(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x10840, &(0x7f0000000180)=ANY=[@ANYRES64=r8]) sendmsg$RDMA_NLDEV_CMD_SYS_GET(r2, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB], 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x50) sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="70000000100003042abd70009da1d2b900000004", @ANYRES32=0x0, @ANYBLOB="0000000000000000500012800b0001006272696467650000400002800800050000000000050029000100000006002700040000000c00220006000000000000000c0021"], 0x70}}, 0x0) 3m36.963894938s ago: executing program 2 (id=545): syz_io_uring_setup(0x56f5, 0x0, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000012c0), 0xffffffffffffffff) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r3, 0x0, 0x7}, 0x18) sendmsg$NL80211_CMD_DEAUTHENTICATE(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x24, r1, 0xfc5, 0x0, 0x0, {{0x11}, {@val={0x8}, @void}}, [@NL80211_ATTR_IE={0x8, 0x2a, [@perr={0x84, 0xffffffffffffff21}]}]}, 0x24}}, 0x0) 3m36.795231958s ago: executing program 2 (id=549): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000080), &(0x7f0000000280)=@udp}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) connect$inet6(0xffffffffffffffff, 0x0, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000280)={@link_local, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010700", 0x18, 0x11, 0x0, @dev={0xfe, 0x80, '\x00', 0x3c}, @mcast2, {[], {0xffff, 0xe22, 0x18, 0x0, @wg=@data={0x4, 0xfffffffe, 0x2}}}}}}}, 0x0) 3m36.58698731s ago: executing program 2 (id=550): setfsgid(0xee01) mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000780)={0x0, 0xffffffffffffffff, 0x0, 0x31, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30) mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0) 3m36.468728291s ago: executing program 2 (id=551): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x101402, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r3 = socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x5, 0x3, 0xc06a2f6, 0x1, 0x7}, 0x6, 0x0, 0xa, 0x4, 0x6, 0x8, 0x18, 0x9, 0x3, 0x4, {0x0, 0x2, 0x9, 0x800, 0x8704, 0x27000000}}}}]}, 0x78}}, 0x0) 3m21.195678196s ago: executing program 32 (id=551): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41100}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x101402, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r3 = socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x5, 0x3, 0xc06a2f6, 0x1, 0x7}, 0x6, 0x0, 0xa, 0x4, 0x6, 0x8, 0x18, 0x9, 0x3, 0x4, {0x0, 0x2, 0x9, 0x800, 0x8704, 0x27000000}}}}]}, 0x78}}, 0x0) 4.76538955s ago: executing program 1 (id=2619): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x38, r1, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x38}}, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r2) r3 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r3, 0x0) r4 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) io_setup(0x5, &(0x7f0000000040)) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x30, 0x0, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18) openat$tun(0xffffffffffffff9c, 0x0, 0x2400, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$unix(0x1, 0x1, 0x0) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}}, 0x800) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) 3.188051549s ago: executing program 1 (id=2636): r0 = socket$kcm(0x10, 0x2, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002b2000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="2e0000001000818807b62aa73f72cc9f0ba1f8483a0000005e1206", 0x1b}], 0x1}, 0x20008800) 3.076682451s ago: executing program 1 (id=2638): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x66be96ba}, 0x18) pipe(0x0) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x14) r1 = memfd_create(&(0x7f0000000180)='\b\x9dF\xd8\b\xb3~u\xa5\"\xdc\xfdq\xf6c\r;\xfcO\x8c=\x81\xb1\xfa\x8b\x8aWpA\xd4\x98\x85K\x89>N\x8ar\x17O\x0fKR\xe2{mn\xcc\xbf2\xc0\xa7\x14\xd0\xd4\xfe/m\xdf\xb6]\xc2\xaa\x86\xec(\xf7\xcd\xa6\xd9n^.\x13*\xd4\xb8\xe8\xc4\xefb\x14Vx\xc6\xfe\x9e\xee\xe7\xd7E\xe9\t\x83\xdeNX\xec\xe66\x1b\x97$\xee\x845n,B\xd5?\xe5E:+Pm\x1d\xb4\xb8\xeb\xe8Op2\x82\xc7\x0e\x97\x03\xef\x1a\xa5\x00.\x89\b!m\f\xd9\x8b$}\x9f\fX\x81\xa8\xf6\x94\xbc\xed\x80|l]\xe9\xca\xd3\xc9\xa3\x9e\x9cJI\xf1\xa2\xa0\xc4:\x00\x00\x00\x00\x00\x00\b\xfey\bJ\x86\x8d\xdf\x16\xbb3\x85\xf5\xe0zYe\xc2\n\x0f\x87\xc4\x8f\x8e\xec\xee\xcd\f\xe9\xc8\xbc\x97,\xb7!\xf2\x93\xd3\t\xd9=\x93\x1d\x945\x97\x1e\x9d\xa6\xe9\xa6\xf9p,\xf7v>\xcd\xd9\xc4\x1b\x9c(\xb8\x90\xdeg\xbf[n\x82\x96\xaev\xd4\xac \x14\xf0\x18@\xc3\xf1\xe2\x14\x1c\x0f\xa4-\xde\xae\xfa;\xaf\xae\x06\x9ag\x02\x98\xd0C2\xe7?\xfb\xb01\x9d\xf8\xd3Q\xb3\xb2\x18V\xe8\x8c\x87\xf4\t\x1c\x85\xa4\xc1\xb1\xf4k!G\xf5\xbb\xbbs&\xeac\xb3\xafW\x846\v\xb3\xca\xeb\xb7\x9e\x9e#]\x10lj\xaf\xaf\xd1\'{\x11\xaa,\x0f\xc5OY\"\x82\x84\xb6:J\x8c\xf37\x1d\xca\xf1\xef\x9f\xcf\a\xcf\xcb', 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x84000) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) write$binfmt_misc(r3, &(0x7f0000000b00), 0x91) splice(r2, 0x0, r1, 0x0, 0xfff, 0x1) 2.863517132s ago: executing program 1 (id=2641): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002a80)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0xfffc}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0xfffd}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0x6, 0x3, '\x00\x00'}, @NFTA_MATCH_REV={0x8}, @NFTA_MATCH_NAME={0xe, 0x1, 'connlabel\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd4}}, 0x0) 2.799303922s ago: executing program 0 (id=2642): r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x84042, 0x1fb) write$P9_RUNLINKAT(r0, &(0x7f0000000000)={0xfffffffffffffecb, 0x4d, 0x1}, 0xffffffd7) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f0000000240)={0x17c04, 0xffffffffffffffff, 0x89dc, 0x100000001, 0xa8, 0x2}) 2.711922373s ago: executing program 1 (id=2644): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x38, r1, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x38}}, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r2) r3 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r3, 0x0) r4 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) io_setup(0x5, &(0x7f0000000040)) r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x30, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18) openat$tun(0xffffffffffffff9c, 0x0, 0x2400, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$unix(0x1, 0x1, 0x0) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}}, 0x800) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) 1.903311338s ago: executing program 0 (id=2649): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0006}]}) r1 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r1, &(0x7f0000000100)={0x1d, r2, 0x3, {0x0, 0x0, 0x2}}, 0x18) r3 = socket$can_j1939(0x1d, 0x2, 0x7) ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r3, &(0x7f0000000100)={0x1d, r4, 0x2003, {0x0, 0xff, 0x2}, 0x2}, 0x18) close_range(r0, 0xffffffffffffffff, 0x0) 1.873134668s ago: executing program 4 (id=2651): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@local, @random='\x00 \x00\x00\x00\b', @void, {@ipv4={0x800, @tcp={{0x7, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x6, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x27}, {[@ssrr={0x89, 0x7, 0xa2, [@broadcast]}]}}, {{0x4e22, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}, 0x0) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0) ioctl$TCSETAF(r2, 0x5408, 0x0) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0) bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x1, 0x2}, 0x28) 1.673273959s ago: executing program 3 (id=2652): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002a80)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0xfffc}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0xfffd}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0x6, 0x3, '\x00\x00'}, @NFTA_MATCH_REV={0x8}, @NFTA_MATCH_NAME={0xe, 0x1, 'connlabel\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd4}}, 0x0) 1.49530761s ago: executing program 0 (id=2653): r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @multicast1}, 0x10) setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f0000000040)=0x2800, 0x4) connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000c80)={'lo\x00'}) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='kmem_cache_free\x00', r2, 0x0, 0x200000000000006}, 0x18) signalfd(r2, &(0x7f0000000280)={[0xffffffff]}, 0x8) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) sendmsg$nl_route_sched(r1, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x20000000) sendmsg$inet(r0, &(0x7f00000015c0)={0x0, 0x14, &(0x7f0000001600)=[{&(0x7f0000000240)=' ', 0xffffff1f}], 0x1}, 0x0) 1.4922413s ago: executing program 3 (id=2654): bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000ae000000b703000007000000850000000e000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x15, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001f40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r0}, 0x10) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r2, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) recvmsg$unix(r1, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdc8}, 0x0) 1.388811951s ago: executing program 3 (id=2655): r0 = socket$kcm(0x10, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002b2000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$kcm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000300)="2e0000001000818807b62aa73f72cc9f0ba1f8483a0000005e1206", 0x1b}], 0x1}, 0x20008800) 1.282374552s ago: executing program 3 (id=2656): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002b2000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x2}, 0x94) 1.181999702s ago: executing program 3 (id=2657): syz_pidfd_open(0x0, 0x0) recvfrom$unix(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000000)=@abs, 0x6e) shutdown(0xffffffffffffffff, 0x2) r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000000380)={0xffffffffffffffff}, 0x106, 0x6}}, 0x20) write$RDMA_USER_CM_CMD_QUERY(r0, &(0x7f0000000400)={0x13, 0x10, 0xfa00, {0x0, r1}}, 0x18) splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x4) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$sock_inet_udp_SIOCINQ(0xffffffffffffffff, 0x541b, 0x0) syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./bus\x00', 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c0048451600000000003c9e44006618c48e2b7b26957ec5f64c0c536a1cbc7c56930db4df3119566921d164724922fb031d13cea7c76240c214", @ANYRES64=0x0, @ANYRESHEX, @ANYRESHEX, @ANYRESDEC], 0x1, 0x2b8, &(0x7f00000028c0)="$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") r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000008500000050000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_enter\x00', r2}, 0x18) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) 771.243905ms ago: executing program 1 (id=2658): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'rose0\x00', 0x112}) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000000)={'vlan0\x00', 0x400}) socket$packet(0x11, 0x3, 0x300) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x0, &(0x7f0000000740)=ANY=[], 0xfd, 0x11f3, &(0x7f0000001b80)="$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") socket$nl_netfilter(0x10, 0x3, 0xc) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0) ftruncate(r1, 0x100c17a) truncate(&(0x7f0000000000)='./file2\x00', 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000"], 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000780)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000380)='kmem_cache_free\x00'}, 0x18) utime(&(0x7f00000000c0)='./file0\x00', 0x0) r3 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x18) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x20, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r4, 0x0, 0x65, 0x0, &(0x7f0000000080)="f6f4e9a10000502468da5eb1c6b2feff8833c0000000000000c548dc7914cb11ad63bf3707164aac031971c4be105eb953f86fbc6b204e076aa7a493e796123bbbd8e3b7e62d8fd097cf21d6d431a069ebc0aefd5fce80cc99fb38c771fa46e2c32a95fe99", 0x0, 0x86, 0x0, 0x19, 0x0, &(0x7f0000000000)="daf9e846ab156efc71b59652333536dbfd26a6d0546366e36e", 0x0}, 0x50) syz_usb_disconnect(r3) syz_usb_connect(0x4, 0x24, &(0x7f0000000400)=ANY=[], 0x0) ioctl$EVIOCRMFF(r3, 0xc0085504, &(0x7f0000000000)=0x10) socket$inet_tcp(0x2, 0x1, 0x0) 703.805065ms ago: executing program 3 (id=2659): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="380000001a00010000000000000000000a000000000000000000000014000500fc020000000000000000000000000000080004"], 0x38}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() r1 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqsrc(r1, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @loopback}, 0xc) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000180)=ANY=[@ANYBLOB="e0000002ac1414aa0100000002"], 0x18) syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x4, 0x2, 0x0, @empty, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x2}}}}}, 0x0) syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x4, 0x2, 0x0, @empty=0xe0, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x10001}}}}}, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = socket(0xa, 0x1, 0x0) setsockopt$inet6_group_source_req(r4, 0x29, 0x2e, &(0x7f00000001c0)={0x3, {{0xa, 0x4e24, 0x9, @mcast1, 0xff7ffffd}}, {{0xa, 0x4e08, 0x1, @local, 0x4f1}}}, 0x108) setsockopt$inet6_MCAST_MSFILTER(r4, 0x29, 0x30, &(0x7f00000005c0)={0x3, {{0xa, 0x4e23, 0xc, @mcast1, 0xfffffff8}}, 0x0, 0x1, [{{0xa, 0x8001, 0x2, @loopback, 0x30000}}]}, 0x110) setsockopt$inet6_group_source_req(r4, 0x29, 0x2b, &(0x7f0000000180)={0x0, {{0xa, 0x4e22, 0x6ef, @mcast1, 0xfffffffd}}, {{0xa, 0x4e24, 0x21, @loopback, 0xfffffe01}}}, 0x108) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10) 590.669926ms ago: executing program 4 (id=2660): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], 0x0}, 0x94) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0) r3 = fsmount(r2, 0x0, 0x20) symlinkat(&(0x7f0000000000)='.\x00', r3, &(0x7f0000000140)='./file0\x00') openat(r3, &(0x7f00000000c0)='./file0\x00', 0x515a02, 0x52abe154ad664f26) 518.661786ms ago: executing program 0 (id=2661): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) r1 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39ddd8) write$binfmt_elf32(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="5402"], 0x69) close(r1) execve(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) 291.139148ms ago: executing program 4 (id=2662): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002a80)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0xfffc}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0xfffd}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x38, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0x7, 0x3, '\x00\x00\x00'}, @NFTA_MATCH_REV={0x8}, @NFTA_MATCH_NAME={0xe, 0x1, 'connlabel\x00'}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd4}}, 0x0) 248.111788ms ago: executing program 4 (id=2663): bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000ae000000b703000007000000850000000e000000850000000800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x15, &(0x7f0000000480)=ANY=[@ANYBLOB="180200000000000000"], 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000001f40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r0}, 0x10) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r2, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0) recvmsg$unix(r1, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffdc8}, 0x0) 226.319378ms ago: executing program 0 (id=2664): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="68000000100001002cbd70002000000000000000", @ANYRES32=0x0, @ANYBLOB="1301975784800000140003006e657464657673696d3000000000000034001680300001802c000c"], 0x68}, 0x1, 0x0, 0x0, 0x20000084}, 0x20000010) 95.809909ms ago: executing program 4 (id=2665): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002b2000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x2}, 0x94) 56.592629ms ago: executing program 0 (id=2666): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x38, r1, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x24, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_PORT={0x6, 0x5, 0x4e23}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x1}]}]}, 0x38}}, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r2) r3 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r3, 0x0) r4 = socket$inet_mptcp(0x2, 0x1, 0x106) connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10) io_setup(0x5, &(0x7f0000000040)) r5 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x30, r5, 0x1, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @multicast1=0xac1414aa}, @MPTCP_PM_ADDR_ATTR_FLAGS={0x8, 0x6, 0x3}]}]}, 0x30}}, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18) openat$tun(0xffffffffffffff9c, 0x0, 0x2400, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket$unix(0x1, 0x1, 0x0) sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, 0x0, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}}, 0x800) bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) 0s ago: executing program 4 (id=2667): setsockopt(0xffffffffffffffff, 0x84, 0x80, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_io_uring_setup(0x211b, &(0x7f00000003c0)={0x0, 0x53e0, 0x2, 0x2000000, 0x2ae}, &(0x7f00000001c0), &(0x7f0000000280)) kernel console output (not intermixed with test programs): ystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 523.055011][T10037] ext4 filesystem being mounted at /343/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 523.086703][ T28] kauditd_printk_skb: 1 callbacks suppressed [ 523.086719][ T28] audit: type=1800 audit(1761780097.022:780): pid=10037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1345" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 523.172380][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 524.008378][ T5107] Bluetooth: hci2: command 0x0406 tx timeout [ 524.088796][ T5107] Bluetooth: hci3: command 0x0406 tx timeout [ 524.095159][ T5107] Bluetooth: hci4: command 0x0c1a tx timeout [ 526.189453][T10054] Bluetooth: hci4: command 0x0c1a tx timeout [ 526.466338][ T28] audit: type=1326 audit(1761780100.402:781): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10101 comm="syz.0.1373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 526.538737][ T28] audit: type=1326 audit(1761780100.402:782): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10101 comm="syz.0.1373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 526.618465][ T28] audit: type=1326 audit(1761780100.402:783): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10101 comm="syz.0.1373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 526.728268][ T28] audit: type=1326 audit(1761780100.402:784): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10101 comm="syz.0.1373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 526.808289][ T28] audit: type=1326 audit(1761780100.402:785): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10101 comm="syz.0.1373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 528.322653][ T28] audit: type=1326 audit(1761780102.252:786): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10126 comm="syz.1.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 528.373270][ T28] audit: type=1326 audit(1761780102.252:787): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10126 comm="syz.1.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 528.415582][ T28] audit: type=1326 audit(1761780102.252:788): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10126 comm="syz.1.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 528.525185][ T28] audit: type=1326 audit(1761780102.252:789): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10126 comm="syz.1.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 528.598172][ T28] audit: type=1326 audit(1761780102.252:790): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10126 comm="syz.1.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4c5238f003 code=0x7ffc0000 [ 528.638097][ T28] audit: type=1326 audit(1761780102.252:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10126 comm="syz.1.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f4c5238da7f code=0x7ffc0000 [ 528.684779][ T28] audit: type=1326 audit(1761780102.292:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10126 comm="syz.1.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f4c5238f057 code=0x7ffc0000 [ 528.736695][ T28] audit: type=1326 audit(1761780102.292:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10126 comm="syz.1.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4c5238d810 code=0x7ffc0000 [ 528.810814][ T28] audit: type=1326 audit(1761780102.292:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10126 comm="syz.1.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4c5238dc2a code=0x7ffc0000 [ 528.866103][ T28] audit: type=1326 audit(1761780102.292:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10126 comm="syz.1.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 530.316125][T10161] loop3: detected capacity change from 0 to 2048 [ 530.396477][T10161] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 530.630210][T10166] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 530.775940][T10161] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 480 with error 28 [ 530.788858][T10161] EXT4-fs (loop3): This should not happen!! Data will be lost [ 530.788858][T10161] [ 530.798832][T10161] EXT4-fs (loop3): Total free blocks count 0 [ 530.804973][T10161] EXT4-fs (loop3): Free/Dirty block details [ 530.811051][T10161] EXT4-fs (loop3): free_blocks=2415919104 [ 530.816881][T10161] EXT4-fs (loop3): dirty_blocks=480 [ 530.822349][T10161] EXT4-fs (loop3): Block reservation details [ 530.848262][T10161] EXT4-fs (loop3): i_reserved_data_blocks=30 [ 531.225908][ T1127] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28 [ 531.277263][T10180] syz.0.1408 uses obsolete (PF_INET,SOCK_PACKET) [ 532.782832][T10061] Set syz1 is full, maxelem 65536 reached [ 534.716598][ T28] kauditd_printk_skb: 27 callbacks suppressed [ 534.716615][ T28] audit: type=1326 audit(1761780108.652:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10201 comm="syz.0.1416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 534.775672][ T28] audit: type=1326 audit(1761780108.652:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10201 comm="syz.0.1416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 534.816835][ T28] audit: type=1326 audit(1761780108.652:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10201 comm="syz.0.1416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fed49b85e67 code=0x7ffc0000 [ 534.877822][ T28] audit: type=1326 audit(1761780108.652:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10201 comm="syz.0.1416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fed49b2b099 code=0x7ffc0000 [ 534.903031][ T28] audit: type=1326 audit(1761780108.652:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10201 comm="syz.0.1416" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 536.521315][T10281] tipc: Enabling of bearer rejected, failed to enable media [ 540.975670][ T28] audit: type=1326 audit(1761780114.912:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 541.021407][ T28] audit: type=1326 audit(1761780114.912:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 541.088351][ T28] audit: type=1326 audit(1761780114.912:830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe164790ee7 code=0x7ffc0000 [ 541.176281][ T28] audit: type=1326 audit(1761780114.912:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fe164790e5c code=0x7ffc0000 [ 541.250570][ T28] audit: type=1326 audit(1761780114.912:832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fe164790d94 code=0x7ffc0000 [ 541.289937][ T28] audit: type=1326 audit(1761780114.912:833): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7fe164790d94 code=0x7ffc0000 [ 541.326843][T10386] netlink: 'syz.4.1497': attribute type 6 has an invalid length. [ 541.334964][ T28] audit: type=1326 audit(1761780114.912:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe16478dc2a code=0x7ffc0000 [ 541.363365][ T28] audit: type=1326 audit(1761780114.912:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 541.446171][ T28] audit: type=1326 audit(1761780114.912:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 541.473870][ T28] audit: type=1326 audit(1761780114.912:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10369 comm="syz.3.1490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 541.537756][T10392] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1501'. [ 543.008255][T10417] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1512'. [ 543.435080][T10434] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1521'. [ 543.473195][T10434] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1521'. [ 544.269689][T10443] netlink: 'syz.1.1522': attribute type 21 has an invalid length. [ 544.278459][T10443] netlink: 'syz.1.1522': attribute type 1 has an invalid length. [ 544.286233][T10443] netlink: 144 bytes leftover after parsing attributes in process `syz.1.1522'. [ 544.410710][T10447] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1524'. [ 544.665554][T10462] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1531'. [ 544.674850][T10462] IPVS: Unknown mcast interface: vet [ 545.907566][T10476] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1537'. [ 546.240931][T10489] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1542'. [ 546.264828][T10489] IPVS: Unknown mcast interface: vet [ 546.359489][T10493] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1544'. [ 546.622865][T10503] __nla_validate_parse: 1 callbacks suppressed [ 546.622884][T10503] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1549'. [ 547.427328][ T28] kauditd_printk_skb: 12 callbacks suppressed [ 547.427346][ T28] audit: type=1326 audit(1761780121.362:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10508 comm="syz.3.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 547.542461][ T28] audit: type=1326 audit(1761780121.392:851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10508 comm="syz.3.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 547.566826][ T28] audit: type=1326 audit(1761780121.402:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10508 comm="syz.3.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 547.610111][ T28] audit: type=1326 audit(1761780121.402:853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10508 comm="syz.3.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 547.659119][ T28] audit: type=1326 audit(1761780121.412:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10508 comm="syz.3.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 547.661962][T10515] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1554'. [ 547.706862][ T28] audit: type=1326 audit(1761780121.412:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10508 comm="syz.3.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 547.724563][T10515] IPVS: Unknown mcast interface: vet [ 547.778062][ T28] audit: type=1326 audit(1761780121.412:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10508 comm="syz.3.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 547.852702][ T28] audit: type=1326 audit(1761780121.432:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10508 comm="syz.3.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 547.886706][ T28] audit: type=1326 audit(1761780121.432:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10508 comm="syz.3.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 547.913848][ T28] audit: type=1326 audit(1761780121.432:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10508 comm="syz.3.1551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 547.954277][T10524] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1558'. [ 548.573434][T10549] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1570'. [ 548.582793][T10549] IPVS: Unknown mcast interface: vetN1_macvtap [ 548.612979][T10551] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1571'. [ 549.042095][T10570] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1580'. [ 549.068117][T10570] IPVS: Unknown mcast interface: vetN1_macvtap [ 549.217874][T10574] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1582'. [ 549.740968][T10595] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1593'. [ 549.830397][T10599] netlink: 52 bytes leftover after parsing attributes in process `syz.4.1594'. [ 549.839876][T10599] IPVS: Unknown mcast interface: vetN1_macvtap [ 550.295652][T10615] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1602'. [ 550.499098][T10624] IPVS: Unknown mcast interface: vetN1_macvtap [ 550.921288][T10633] 8021q: adding VLAN 0 to HW filter on device bond1 [ 551.059368][T10637] 8021q: adding VLAN 0 to HW filter on device bond1 [ 551.066549][T10637] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address [ 551.109174][T10637] bond1: (slave vxcan3): Error -95 calling set_mac_address [ 551.165860][T10642] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 551.719064][T10656] __nla_validate_parse: 3 callbacks suppressed [ 551.719083][T10656] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1619'. [ 551.720729][T10659] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1620'. [ 551.729889][T10656] IPVS: Unknown mcast interface: vetN1_macvtap [ 552.455121][T10670] tipc: New replicast peer: 255.255.255.83 [ 552.464551][T10670] tipc: Enabled bearer , priority 10 [ 552.471136][T10671] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1624'. [ 552.512786][T10671] 8021q: adding VLAN 0 to HW filter on device bond1 [ 552.552335][T10673] 8021q: adding VLAN 0 to HW filter on device bond1 [ 552.555147][T10676] loop3: detected capacity change from 0 to 512 [ 552.566033][T10673] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address [ 552.579758][T10673] bond1: (slave vxcan3): Error -95 calling set_mac_address [ 552.661222][T10676] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.1626: bad orphan inode 15 [ 552.754705][T10676] ext4_test_bit(bit=14, block=5) = 0 [ 552.773370][T10676] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 552.812987][T10676] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.1626: inode has both inline data and extents flags [ 552.836682][T10676] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.1626: inode has both inline data and extents flags [ 552.851430][T10678] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 7987 vs 220 free clusters [ 552.995643][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 553.305885][T10692] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1633'. [ 553.327690][T10692] IPVS: Unknown mcast interface: vetN1_macvtap [ 553.357762][T10694] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 553.424128][T10696] loop4: detected capacity change from 0 to 2048 [ 553.479860][T10696] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 553.625372][T10703] bond0: entered promiscuous mode [ 553.634069][T10703] bond_slave_0: entered promiscuous mode [ 553.640177][T10703] bond_slave_1: entered promiscuous mode [ 553.650912][T10703] dummy0: entered promiscuous mode [ 553.660510][T10703] debugfs: Directory 'hsr1' with parent 'hsr' already present! [ 553.671917][T10703] Cannot create hsr debugfs directory [ 553.678022][T10703] hsr1: entered promiscuous mode [ 553.683544][T10703] hsr1: entered allmulticast mode [ 553.689007][T10703] bond0: entered allmulticast mode [ 553.694503][T10703] bond_slave_0: entered allmulticast mode [ 553.700354][T10703] bond_slave_1: entered allmulticast mode [ 553.706315][T10703] dummy0: entered allmulticast mode [ 553.777103][ T8386] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 553.801315][ T8386] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 553.856370][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 554.042139][ T28] kauditd_printk_skb: 28 callbacks suppressed [ 554.042158][ T28] audit: type=1326 audit(1761780127.972:888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10710 comm="syz.4.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 554.109712][ T28] audit: type=1326 audit(1761780127.982:889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10710 comm="syz.4.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 554.149680][ T1127] Bluetooth: hci1: Frame reassembly failed (-84) [ 554.188328][ T28] audit: type=1326 audit(1761780127.982:890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10710 comm="syz.4.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 554.238089][ T28] audit: type=1326 audit(1761780127.982:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10710 comm="syz.4.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 554.298505][ T28] audit: type=1326 audit(1761780127.982:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10710 comm="syz.4.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 554.382540][ T28] audit: type=1326 audit(1761780128.012:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10710 comm="syz.4.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 554.438182][ T28] audit: type=1326 audit(1761780128.022:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10710 comm="syz.4.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 554.494864][ T28] audit: type=1326 audit(1761780128.022:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10710 comm="syz.4.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 554.533297][ T28] audit: type=1326 audit(1761780128.032:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10710 comm="syz.4.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 554.591415][ T28] audit: type=1326 audit(1761780128.032:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10710 comm="syz.4.1638" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 554.867152][T10723] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1645'. [ 554.877894][T10723] IPVS: Unknown mcast interface: ip [ 555.387081][T10734] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 555.409199][T10735] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1650'. [ 555.456228][T10734] pim6reg: entered allmulticast mode [ 555.465538][T10734] pim6reg: left allmulticast mode [ 556.178480][ T51] Bluetooth: hci1: command 0x1003 tx timeout [ 556.193806][T10054] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 557.625762][T10759] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1658'. [ 557.639182][T10759] IPVS: Unknown mcast interface: ip [ 557.732344][T10764] loop3: detected capacity change from 0 to 2048 [ 557.752279][T10764] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 557.798077][ T5797] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 557.813847][ T5797] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 557.836221][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 559.263320][T10784] loop4: detected capacity change from 0 to 256 [ 559.270959][T10784] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 559.688692][T10793] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1670'. [ 559.697781][T10793] IPVS: Unknown mcast interface: ip [ 560.408578][ T51] Bluetooth: hci1: command 0x1003 tx timeout [ 560.416197][T10054] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 560.426686][ T28] kauditd_printk_skb: 69 callbacks suppressed [ 560.426702][ T28] audit: type=1326 audit(1761780134.372:967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10769 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 560.457775][ T28] audit: type=1326 audit(1761780134.382:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10769 comm="syz.3.1664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 561.185278][T10818] sock: sock_set_timeout: `syz.3.1681' (pid 10818) tries to set negative timeout [ 561.373466][T10820] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1683'. [ 561.387757][T10820] IPVS: Unknown mcast interface: ipvla [ 561.512453][ T28] audit: type=1326 audit(1761780135.452:969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10823 comm="syz.3.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 561.560118][ T28] audit: type=1326 audit(1761780135.452:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10823 comm="syz.3.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 561.584973][ T28] audit: type=1326 audit(1761780135.452:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10823 comm="syz.3.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 561.617607][ T28] audit: type=1326 audit(1761780135.452:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10823 comm="syz.3.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 561.693577][ T28] audit: type=1326 audit(1761780135.462:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10823 comm="syz.3.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 561.745802][ T28] audit: type=1326 audit(1761780135.462:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10823 comm="syz.3.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 561.818591][ T28] audit: type=1326 audit(1761780135.462:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10823 comm="syz.3.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 561.847992][ T28] audit: type=1326 audit(1761780135.462:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10823 comm="syz.3.1685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 562.035609][T10829] loop4: detected capacity change from 0 to 2048 [ 562.077109][T10829] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 562.216383][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 562.254529][ T994] Bluetooth: hci1: Frame reassembly failed (-84) [ 562.327385][T10841] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1693'. [ 562.340450][T10841] IPVS: Unknown mcast interface: ipvla [ 562.585589][T10849] loop4: detected capacity change from 0 to 164 [ 562.603654][T10849] ISOFS: unable to read i-node block [ 562.614208][T10849] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 562.939182][T10859] loop4: detected capacity change from 0 to 2048 [ 562.965074][T10859] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 563.006827][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 563.055617][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 563.063345][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.476005][T10869] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1703'. [ 563.489527][T10869] IPVS: Unknown mcast interface: ipvla [ 563.583842][T10873] macvtap0: refused to change device tx_queue_len [ 564.084792][T10890] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1715'. [ 564.109935][T10890] IPVS: Unknown mcast interface: ipvlan [ 564.248518][ T51] Bluetooth: hci1: command 0x1003 tx timeout [ 564.268194][T10054] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 564.426969][T10895] loop4: detected capacity change from 0 to 512 [ 564.458638][T10895] EXT4-fs (loop4): orphan cleanup on readonly fs [ 564.466146][T10895] EXT4-fs error (device loop4): ext4_orphan_get:1425: comm syz.4.1716: bad orphan inode 13 [ 564.492321][T10895] ext4_test_bit(bit=12, block=18) = 1 [ 564.497806][T10895] is_bad_inode(inode)=0 [ 564.502150][T10895] NEXT_ORPHAN(inode)=2130706432 [ 564.507088][T10895] max_ino=32 [ 564.510779][T10895] i_nlink=1 [ 564.515939][T10895] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 564.567524][T10895] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 564.656646][T10895] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 564.704096][T10905] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.1716: bg 0: block 248: padding at end of block bitmap is not set [ 564.722480][T10905] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1716: Failed to acquire dquot type 1 [ 564.841040][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 564.937024][T10916] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1725'. [ 564.946742][T10916] IPVS: Unknown mcast interface: ipvlan [ 565.735749][ T28] kauditd_printk_skb: 147 callbacks suppressed [ 565.735765][ T28] audit: type=1326 audit(1761780139.672:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.1.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 565.765581][ T28] audit: type=1326 audit(1761780139.672:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.1.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 565.793129][ T28] audit: type=1326 audit(1761780139.672:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.1.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 565.822322][ T28] audit: type=1326 audit(1761780139.672:1125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.1.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 565.860721][ T28] audit: type=1326 audit(1761780139.672:1126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.1.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 565.890422][ T28] audit: type=1326 audit(1761780139.672:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.1.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 565.917579][ T28] audit: type=1326 audit(1761780139.672:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.1.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 565.943409][ T28] audit: type=1326 audit(1761780139.672:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.1.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 565.977623][ T28] audit: type=1326 audit(1761780139.672:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.1.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 566.006960][ T28] audit: type=1326 audit(1761780139.672:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.1.1734" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 566.047064][T10941] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1736'. [ 566.062323][T10941] IPVS: Unknown mcast interface: ipvlan [ 566.624289][T10958] loop4: detected capacity change from 0 to 2048 [ 566.659370][T10958] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 566.714773][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 567.050731][T10054] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 567.780490][ T6100] Bluetooth: hci1: Frame reassembly failed (-84) [ 569.969627][T10054] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 571.227432][T11051] loop3: detected capacity change from 0 to 128 [ 571.255837][T11051] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a80ec018, mo2=0002] [ 571.267313][T11051] System zones: 1-3, 19-19, 35-36 [ 571.277136][T11051] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 571.290663][T11051] ext4 filesystem being mounted at /446/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 571.464309][ T5797] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 571.775572][ T28] kauditd_printk_skb: 24 callbacks suppressed [ 571.775591][ T28] audit: type=1326 audit(1761780145.692:1156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11065 comm="syz.3.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 571.810574][ T28] audit: type=1326 audit(1761780145.692:1157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11065 comm="syz.3.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 571.834761][ T28] audit: type=1326 audit(1761780145.692:1158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11065 comm="syz.3.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 571.858096][ T28] audit: type=1326 audit(1761780145.692:1159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11065 comm="syz.3.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 571.883351][ T28] audit: type=1326 audit(1761780145.692:1160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11065 comm="syz.3.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 571.910405][ T51] Bluetooth: hci1: sending frame failed (-49) [ 571.920756][T10054] Bluetooth: hci1: Opcode 0x1003 failed: -49 [ 571.931650][ T28] audit: type=1326 audit(1761780145.702:1161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11065 comm="syz.3.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 571.955004][ T28] audit: type=1326 audit(1761780145.702:1162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11065 comm="syz.3.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 571.977904][ T28] audit: type=1326 audit(1761780145.702:1163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11065 comm="syz.3.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 572.000678][ T28] audit: type=1326 audit(1761780145.702:1164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11065 comm="syz.3.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 572.024451][ T28] audit: type=1326 audit(1761780145.702:1165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11065 comm="syz.3.1784" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 573.233983][T11077] loop4: detected capacity change from 0 to 2048 [ 573.274355][T11077] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 573.483745][ T8386] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 573.512091][ T8386] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 573.577515][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 574.484709][T11120] loop4: detected capacity change from 0 to 2048 [ 574.591634][T11120] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 574.777423][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 575.306173][T11154] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1820'. [ 575.856510][T11172] sch_tbf: burst 4398 is lower than device lo mtu (65550) ! [ 576.707327][T11192] loop3: detected capacity change from 0 to 128 [ 576.737701][T11194] loop4: detected capacity change from 0 to 512 [ 576.749088][T11194] ext4: Unknown parameter 'seclabel' [ 576.796217][ T28] kauditd_printk_skb: 155 callbacks suppressed [ 576.796235][ T28] audit: type=1326 audit(1761780150.722:1321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11191 comm="syz.3.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 576.841483][ T28] audit: type=1326 audit(1761780150.732:1322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11191 comm="syz.3.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 576.894834][ T28] audit: type=1326 audit(1761780150.732:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11191 comm="syz.3.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 576.940822][ T28] audit: type=1326 audit(1761780150.732:1324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11191 comm="syz.3.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 576.972267][ T28] audit: type=1326 audit(1761780150.732:1325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11191 comm="syz.3.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 576.995395][ T28] audit: type=1326 audit(1761780150.732:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11191 comm="syz.3.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 577.062952][ T28] audit: type=1326 audit(1761780150.732:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11191 comm="syz.3.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 577.142786][ T28] audit: type=1326 audit(1761780150.732:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11191 comm="syz.3.1838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 577.209455][ T28] audit: type=1326 audit(1761780151.142:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11202 comm="syz.3.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 577.268074][ T28] audit: type=1326 audit(1761780151.152:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11202 comm="syz.3.1843" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 577.304378][T11205] loop4: detected capacity change from 0 to 2048 [ 577.333799][T11205] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 577.402560][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 577.631605][T11214] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1845'. [ 578.134292][T11231] loop3: detected capacity change from 0 to 2048 [ 578.158348][T11231] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 578.403425][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 578.655935][T11242] loop3: detected capacity change from 0 to 1024 [ 578.691134][T11242] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 578.762085][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 579.091376][ T1122] Bluetooth: hci1: Frame reassembly failed (-84) [ 579.962892][T11278] loop4: detected capacity change from 0 to 2048 [ 579.990119][T11278] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 580.052411][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 580.248435][T11284] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1875'. [ 581.128554][T10054] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 581.135547][ T51] Bluetooth: hci1: command 0x1003 tx timeout [ 581.455523][T11302] loop3: detected capacity change from 0 to 2048 [ 581.514962][T11302] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 581.713767][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 581.723522][T11314] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1886'. [ 582.495488][ T28] kauditd_printk_skb: 110 callbacks suppressed [ 582.495506][ T28] audit: type=1326 audit(1761780156.432:1441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.1.1894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 582.553087][ T28] audit: type=1326 audit(1761780156.432:1442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.1.1894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 582.624382][ T28] audit: type=1326 audit(1761780156.472:1443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.1.1894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 582.703403][ T28] audit: type=1326 audit(1761780156.472:1444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.1.1894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 582.746844][ T28] audit: type=1326 audit(1761780156.472:1445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.1.1894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 582.774767][ T28] audit: type=1326 audit(1761780156.472:1446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.1.1894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 582.798718][ T28] audit: type=1326 audit(1761780156.472:1447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.1.1894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 582.822586][ T28] audit: type=1326 audit(1761780156.472:1448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.1.1894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 582.861094][ T28] audit: type=1326 audit(1761780156.472:1449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.1.1894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 582.940292][ T28] audit: type=1326 audit(1761780156.472:1450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11331 comm="syz.1.1894" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 583.173834][T11348] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1901'. [ 583.991299][T11369] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1910'. [ 584.408693][T11381] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1914'. [ 585.107557][T11398] loop4: detected capacity change from 0 to 2048 [ 585.144229][T11398] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 585.272125][ T8386] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 585.325144][ T8386] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 585.379415][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 586.791448][T11416] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1925'. [ 586.924419][T11419] loop3: detected capacity change from 0 to 1024 [ 586.949125][T11419] EXT4-fs: Ignoring removed orlov option [ 586.993970][T11419] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 587.018097][T11419] ext4 filesystem being mounted at /476/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 587.128145][T11298] Bluetooth: hci1: command 0x1003 tx timeout [ 587.137193][ T51] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 587.146928][T11428] netlink: 'syz.3.1926': attribute type 10 has an invalid length. [ 587.160622][T11428] macvlan1: entered allmulticast mode [ 587.166189][T11428] veth1_vlan: entered allmulticast mode [ 587.172188][T11428] team0: Device macvlan1 is up. Set it down before adding it as a team port [ 587.213975][T11428] EXT4-fs error (device loop3): ext4_lookup:1858: inode #15: comm syz.3.1926: inode has both inline data and extents flags [ 587.408939][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 588.173215][T11455] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1940'. [ 588.476444][ T28] kauditd_printk_skb: 88 callbacks suppressed [ 588.476462][ T28] audit: type=1326 audit(1761780162.412:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.4.1942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 588.530709][T11463] loop3: detected capacity change from 0 to 2048 [ 588.538666][ T28] audit: type=1326 audit(1761780162.452:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.4.1942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 588.563246][ T28] audit: type=1326 audit(1761780162.452:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.4.1942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 588.587267][ T28] audit: type=1326 audit(1761780162.452:1542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.4.1942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 588.610548][ T28] audit: type=1326 audit(1761780162.452:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.4.1942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 588.635218][ T28] audit: type=1326 audit(1761780162.462:1544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.4.1942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 588.673247][T11463] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 588.703927][ T28] audit: type=1326 audit(1761780162.472:1545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.4.1942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 588.728448][ T28] audit: type=1326 audit(1761780162.472:1546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.4.1942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 588.751440][ T28] audit: type=1326 audit(1761780162.482:1547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.4.1942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 588.774195][ T28] audit: type=1326 audit(1761780162.482:1548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11460 comm="syz.4.1942" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 588.809330][ T5797] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 588.848447][ T5797] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 588.886952][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 589.397183][T11483] loop3: detected capacity change from 0 to 2048 [ 589.419546][T11483] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 589.477261][ T5797] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 589.496992][ T5797] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 589.526396][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 589.645905][T11298] Bluetooth: hci1: sending frame failed (-49) [ 589.657520][ T51] Bluetooth: hci1: Opcode 0x1003 failed: -49 [ 589.947784][T11506] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1960'. [ 590.345339][T11515] loop4: detected capacity change from 0 to 2048 [ 590.389134][T11515] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 590.517413][T11522] loop3: detected capacity change from 0 to 512 [ 590.592215][ T8386] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 590.613801][T11522] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 590.636565][ T8386] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 590.665570][T11522] EXT4-fs (loop3): mount failed [ 590.685552][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 591.333186][T11542] bridge0: port 3(gretap0) entered blocking state [ 591.348508][T11542] bridge0: port 3(gretap0) entered disabled state [ 591.361693][T11542] gretap0: entered allmulticast mode [ 591.384634][T11542] gretap0: entered promiscuous mode [ 591.410596][T11542] bridge0: port 3(gretap0) entered blocking state [ 591.417710][T11542] bridge0: port 3(gretap0) entered forwarding state [ 591.439900][T11543] gretap0: left allmulticast mode [ 591.455012][T11543] gretap0: left promiscuous mode [ 591.466133][T11543] bridge0: port 3(gretap0) entered disabled state [ 591.585726][T11550] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1973'. [ 592.511185][T11588] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1987'. [ 593.465931][T11608] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 593.490640][T11609] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1998'. [ 593.745043][T11608] pim6reg: entered allmulticast mode [ 593.767742][T11620] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2000'. [ 593.816633][T11612] pim6reg: left allmulticast mode [ 593.964978][ T28] kauditd_printk_skb: 209 callbacks suppressed [ 593.964992][ T28] audit: type=1326 audit(1761780167.902:1757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11626 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 594.088305][ T28] audit: type=1326 audit(1761780167.902:1758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11626 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 594.123653][T11633] loop3: detected capacity change from 0 to 512 [ 594.133717][ T28] audit: type=1326 audit(1761780167.952:1759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11626 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 594.165562][T11633] EXT4-fs (loop3): orphan cleanup on readonly fs [ 594.199757][ T28] audit: type=1326 audit(1761780167.952:1760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11626 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 594.205457][T11633] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.2006: bad orphan inode 13 [ 594.222656][ T28] audit: type=1326 audit(1761780167.952:1761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11626 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 594.222712][ T28] audit: type=1326 audit(1761780167.952:1762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11626 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 594.222767][ T28] audit: type=1326 audit(1761780167.952:1763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11626 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 594.222813][ T28] audit: type=1326 audit(1761780167.962:1764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11626 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 594.222859][ T28] audit: type=1326 audit(1761780167.962:1765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11626 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 594.222902][ T28] audit: type=1326 audit(1761780167.962:1766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11626 comm="syz.0.2002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 594.295407][T11633] ext4_test_bit(bit=12, block=18) = 1 [ 594.377562][T11633] is_bad_inode(inode)=0 [ 594.388586][T11633] NEXT_ORPHAN(inode)=2130706432 [ 594.393962][T11633] max_ino=32 [ 594.397317][T11633] i_nlink=1 [ 594.405939][T11633] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 594.462579][T11633] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 594.496237][T11633] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 594.512639][T11633] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.2006: bg 0: block 248: padding at end of block bitmap is not set [ 594.533045][T11633] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.2006: Failed to acquire dquot type 1 [ 594.706203][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 594.980995][T11655] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2012'. [ 595.434557][T11661] loop3: detected capacity change from 0 to 2048 [ 595.499940][T11661] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 595.595410][T11664] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set [ 595.602367][ T5797] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 595.666972][ T5797] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 595.709475][ T5797] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 596.090889][T11298] Bluetooth: hci1: command 0x1003 tx timeout [ 596.098940][ T51] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 596.103462][T11687] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2021'. [ 596.184808][T11689] loop4: detected capacity change from 0 to 2048 [ 596.209209][T11689] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 596.298946][ T8386] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 596.319582][ T8386] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 596.373168][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 597.770945][T11731] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2037'. [ 598.030608][T11738] loop4: detected capacity change from 0 to 512 [ 598.045329][T11738] EXT4-fs (loop4): orphan cleanup on readonly fs [ 598.055210][T11738] EXT4-fs error (device loop4): ext4_orphan_get:1425: comm syz.4.2041: bad orphan inode 13 [ 598.068698][T11738] ext4_test_bit(bit=12, block=18) = 1 [ 598.074328][T11738] is_bad_inode(inode)=0 [ 598.078924][T11738] NEXT_ORPHAN(inode)=2130706432 [ 598.084024][T11738] max_ino=32 [ 598.087332][T11738] i_nlink=1 [ 598.093048][T11738] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 598.145617][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 598.537610][T11761] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2048'. [ 598.850853][T11768] loop4: detected capacity change from 0 to 512 [ 598.870652][T11768] EXT4-fs (loop4): orphan cleanup on readonly fs [ 598.879626][T11768] EXT4-fs error (device loop4): ext4_orphan_get:1425: comm syz.4.2052: bad orphan inode 13 [ 598.894892][T11768] ext4_test_bit(bit=12, block=18) = 1 [ 598.900551][T11768] is_bad_inode(inode)=0 [ 598.904754][T11768] NEXT_ORPHAN(inode)=2130706432 [ 598.909759][T11768] max_ino=32 [ 598.913150][T11768] i_nlink=1 [ 598.919235][T11768] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 599.018581][ T8386] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 599.125494][ T28] kauditd_printk_skb: 102 callbacks suppressed [ 599.125512][ T28] audit: type=1326 audit(1761780173.062:1867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11772 comm="syz.4.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 599.181429][ T28] audit: type=1326 audit(1761780173.062:1868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11772 comm="syz.4.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 599.224520][ T28] audit: type=1326 audit(1761780173.102:1869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11772 comm="syz.4.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 599.286010][ T28] audit: type=1326 audit(1761780173.102:1870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11772 comm="syz.4.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 599.341891][ T28] audit: type=1326 audit(1761780173.102:1871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11772 comm="syz.4.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 599.366620][ T28] audit: type=1326 audit(1761780173.102:1872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11772 comm="syz.4.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 599.381780][ T51] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 599.390236][T11298] Bluetooth: hci1: command 0x1003 tx timeout [ 599.469267][ T28] audit: type=1326 audit(1761780173.112:1873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11772 comm="syz.4.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 599.532866][ T28] audit: type=1326 audit(1761780173.112:1874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11772 comm="syz.4.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 599.626959][ T28] audit: type=1326 audit(1761780173.112:1875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11772 comm="syz.4.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 599.718174][ T28] audit: type=1326 audit(1761780173.112:1876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11772 comm="syz.4.2053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 599.834654][T11792] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2058'. [ 600.579613][T11821] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2071'. [ 600.618704][T11822] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2073'. [ 600.640235][T11822] bridge_slave_1: left allmulticast mode [ 600.646070][T11822] bridge_slave_1: left promiscuous mode [ 600.665052][T11822] bridge0: port 2(bridge_slave_1) entered disabled state [ 600.712487][T11822] bridge_slave_0: left allmulticast mode [ 600.721875][T11822] bridge_slave_0: left promiscuous mode [ 600.729364][T11822] bridge0: port 1(bridge_slave_0) entered disabled state [ 601.186132][T11842] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2081'. [ 601.509099][T11850] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2083'. [ 602.437811][T11875] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2092'. [ 602.509628][T11877] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2094'. [ 603.928131][ T51] Bluetooth: hci1: Opcode 0x1003 failed: -110 [ 603.928170][T11298] Bluetooth: hci1: command 0x1003 tx timeout [ 605.465440][ T28] kauditd_printk_skb: 113 callbacks suppressed [ 605.465459][ T28] audit: type=1326 audit(1761780179.402:1990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.1.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 605.538249][ T28] audit: type=1326 audit(1761780179.402:1991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.1.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 605.574139][ T28] audit: type=1326 audit(1761780179.402:1992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.1.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 605.602425][ T28] audit: type=1326 audit(1761780179.402:1993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11916 comm="syz.1.2111" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 605.692818][T11926] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2112'. [ 607.004721][T11962] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2125'. [ 608.950904][T11985] syzkaller0: entered promiscuous mode [ 608.956709][T11985] syzkaller0: entered allmulticast mode [ 608.990998][ T28] audit: type=1326 audit(1761780182.922:1994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11990 comm="syz.3.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 609.045111][ T28] audit: type=1326 audit(1761780182.922:1995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11990 comm="syz.3.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 609.085816][T11997] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8) [ 609.092866][T11997] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 609.103082][ T28] audit: type=1326 audit(1761780182.922:1996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11990 comm="syz.3.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 609.144492][T11997] vhci_hcd vhci_hcd.0: Device attached [ 609.153372][ T28] audit: type=1326 audit(1761780182.922:1997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11990 comm="syz.3.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 609.191368][ T28] audit: type=1326 audit(1761780182.922:1998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11990 comm="syz.3.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 609.222000][ T28] audit: type=1326 audit(1761780182.922:1999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11990 comm="syz.3.2137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7fe16478efc9 code=0x7ffc0000 [ 609.496936][ T788] usb 40-1: SetAddress Request (2) to port 0 [ 609.527545][ T788] usb 40-1: new SuperSpeed USB device number 2 using vhci_hcd [ 609.789931][T11998] vhci_hcd: connection reset by peer [ 609.810537][ T1127] vhci_hcd: stop threads [ 609.824559][ T1127] vhci_hcd: release socket [ 609.839957][ T1127] vhci_hcd: disconnect device [ 611.736753][T11996] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2136'. [ 611.765969][T12006] 8021q: adding VLAN 0 to HW filter on device macvlan2 [ 612.192817][T12022] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2146'. [ 612.584617][T12032] loop3: detected capacity change from 0 to 128 [ 612.592689][T12032] EXT4-fs: Ignoring removed nobh option [ 612.612275][T12032] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 612.626637][T12032] ext4 filesystem being mounted at /544/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 612.694605][ T5797] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 613.108174][ T28] kauditd_printk_skb: 9 callbacks suppressed [ 613.108191][ T28] audit: type=1326 audit(1761780187.042:2009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.1.2153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 613.197113][ T28] audit: type=1326 audit(1761780187.042:2010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.1.2153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 613.265567][ T28] audit: type=1326 audit(1761780187.042:2011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.1.2153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 613.328080][ T28] audit: type=1326 audit(1761780187.042:2012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.1.2153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 613.352484][ T28] audit: type=1326 audit(1761780187.042:2013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12039 comm="syz.1.2153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 613.489465][T12053] block device autoloading is deprecated and will be removed. [ 613.943081][T12068] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2164'. [ 614.231738][T12073] lo speed is unknown, defaulting to 1000 [ 614.238657][T12073] lo speed is unknown, defaulting to 1000 [ 614.264840][T12073] lo speed is unknown, defaulting to 1000 [ 614.297963][T12073] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 614.340430][T12073] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 614.402160][T12073] lo speed is unknown, defaulting to 1000 [ 614.417731][T12073] lo speed is unknown, defaulting to 1000 [ 614.437706][T12073] lo speed is unknown, defaulting to 1000 [ 614.447448][T12073] lo speed is unknown, defaulting to 1000 [ 614.674345][ T788] usb 40-1: device descriptor read/8, error -110 [ 615.123411][ T788] usb usb40-port1: attempt power cycle [ 615.850019][ T788] usb usb40-port1: unable to enumerate USB device [ 616.411946][ T28] audit: type=1326 audit(1761780190.352:2014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12115 comm="syz.1.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 616.469754][ T28] audit: type=1326 audit(1761780190.382:2015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12115 comm="syz.1.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 616.523554][T12123] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2188'. [ 616.581642][ T28] audit: type=1326 audit(1761780190.382:2016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12115 comm="syz.1.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 616.606737][T12122] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2185'. [ 616.632795][T12122] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 616.651469][T12122] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 616.674766][ T28] audit: type=1326 audit(1761780190.382:2017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12115 comm="syz.1.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 616.699401][T12122] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 616.722047][T12122] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 616.748305][ T28] audit: type=1326 audit(1761780190.382:2018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12115 comm="syz.1.2186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 617.620073][T12160] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2202'. [ 617.874049][T12167] xt_connbytes: Forcing CT accounting to be enabled [ 617.881133][T12167] Cannot find set identified by id 0 to match [ 618.166122][ T28] kauditd_printk_skb: 51 callbacks suppressed [ 618.166140][ T28] audit: type=1326 audit(1761780192.102:2070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12174 comm="syz.0.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 618.248111][ T28] audit: type=1326 audit(1761780192.102:2071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12174 comm="syz.0.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 618.295093][ T28] audit: type=1326 audit(1761780192.142:2072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12174 comm="syz.0.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 618.347976][ T28] audit: type=1326 audit(1761780192.142:2073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12174 comm="syz.0.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 618.382541][ T28] audit: type=1326 audit(1761780192.142:2074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12174 comm="syz.0.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 618.471587][ T28] audit: type=1326 audit(1761780192.142:2075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12174 comm="syz.0.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 618.522617][ T28] audit: type=1326 audit(1761780192.152:2076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12174 comm="syz.0.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 618.591278][ T28] audit: type=1326 audit(1761780192.152:2077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12174 comm="syz.0.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 618.625981][ T28] audit: type=1326 audit(1761780192.152:2078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12174 comm="syz.0.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 618.638785][T12173] lo speed is unknown, defaulting to 1000 [ 618.657026][ T28] audit: type=1326 audit(1761780192.152:2079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12174 comm="syz.0.2209" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed49b8efc9 code=0x7ffc0000 [ 618.764068][T12188] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2213'. [ 619.333820][T12206] sch_tbf: burst 19360 is lower than device lo mtu (65550) ! [ 621.524102][T12283] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2250'. [ 621.546532][T12283] veth1_macvtap: left promiscuous mode [ 623.094208][T12322] siw: device registration error -23 [ 623.269010][T12332] siw: device registration error -23 [ 623.715735][T12350] veth2: entered promiscuous mode [ 623.721055][T12350] veth2: entered allmulticast mode [ 623.883753][T12352] lo speed is unknown, defaulting to 1000 [ 624.106098][T12363] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2285'. [ 624.194568][T12363] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 624.222240][T12363] team0: Device ipvlan2 is already an upper device of the team interface [ 624.497553][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.504070][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.964927][T12368] lo speed is unknown, defaulting to 1000 [ 625.190671][ T28] kauditd_printk_skb: 130 callbacks suppressed [ 625.190687][ T28] audit: type=1326 audit(1761780199.132:2210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12374 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 625.237239][ T28] audit: type=1326 audit(1761780199.172:2211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12374 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 625.260252][ T28] audit: type=1326 audit(1761780199.172:2212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12374 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 625.294608][ T28] audit: type=1326 audit(1761780199.232:2213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12374 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 625.362190][ T28] audit: type=1326 audit(1761780199.232:2214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12374 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 625.453213][ T28] audit: type=1326 audit(1761780199.232:2215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12374 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 625.516727][ T28] audit: type=1326 audit(1761780199.232:2216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12374 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 625.590478][ T28] audit: type=1326 audit(1761780199.232:2217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12374 comm="syz.1.2290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 625.623496][T12387] netlink: 3 bytes leftover after parsing attributes in process `syz.3.2296'. [ 625.645297][T12387] 0ªX¹¦À: renamed from caif0 [ 625.668210][T12387] 0ªX¹¦À: entered allmulticast mode [ 625.686039][T12387] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 625.990536][T12400] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2299'. [ 626.132105][ T28] audit: type=1326 audit(1761780200.072:2218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12402 comm="syz.1.2301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 626.205816][T12404] 9pnet: Could not find request transport: f [ 626.215003][ T28] audit: type=1326 audit(1761780200.072:2219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12402 comm="syz.1.2301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c5238efc9 code=0x7ffc0000 [ 626.281496][T12409] netlink: 14 bytes leftover after parsing attributes in process `syz.4.2302'. [ 626.293744][T12409] hsr_slave_0: left promiscuous mode [ 626.315585][T12409] hsr_slave_1: left promiscuous mode [ 626.407574][T12408] batadv1: entered allmulticast mode [ 626.425233][T12408] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 626.656369][T12424] veth0: mtu less than device minimum [ 627.454225][T12440] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2317'. [ 627.473767][T12440] 0ªX¹¦À: renamed from caif0 [ 627.490669][T12440] 0ªX¹¦À: entered allmulticast mode [ 627.498266][T12440] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 627.713269][T12445] tipc: Bearer : already 2 bearers with priority 10 [ 627.722073][T12445] tipc: Bearer : trying with adjusted priority [ 627.735483][T12445] tipc: Enabled bearer , priority 9 [ 627.771798][T12448] lo speed is unknown, defaulting to 1000 [ 628.313521][T12465] tipc: Enabled bearer , priority 13 [ 628.458746][T12467] netlink: 'syz.4.2327': attribute type 7 has an invalid length. [ 628.470605][T12467] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2327'. [ 628.949909][T12484] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2333'. [ 631.305674][ T28] kauditd_printk_skb: 8 callbacks suppressed [ 631.305688][ T28] audit: type=1326 audit(1761780205.232:2228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12548 comm="syz.4.2357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 631.376812][ T28] audit: type=1326 audit(1761780205.242:2229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12548 comm="syz.4.2357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 631.426852][ T28] audit: type=1326 audit(1761780205.292:2230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12548 comm="syz.4.2357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 631.455770][ T28] audit: type=1326 audit(1761780205.292:2231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12548 comm="syz.4.2357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 631.478497][ T28] audit: type=1326 audit(1761780205.292:2232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12548 comm="syz.4.2357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 631.503327][ T28] audit: type=1326 audit(1761780205.292:2233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12548 comm="syz.4.2357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 631.541009][ T28] audit: type=1326 audit(1761780205.292:2234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12548 comm="syz.4.2357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 631.586868][ T28] audit: type=1326 audit(1761780205.292:2235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12548 comm="syz.4.2357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 631.648918][T11298] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 631.660593][T11298] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 631.674932][ T28] audit: type=1326 audit(1761780205.292:2236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12548 comm="syz.4.2357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 631.698699][T11298] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 631.706932][ T28] audit: type=1326 audit(1761780205.292:2237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12548 comm="syz.4.2357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 631.745218][T11298] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 631.765478][T11298] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 631.774177][T11298] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 631.870942][T12557] lo speed is unknown, defaulting to 1000 [ 631.915629][T12565] syz.3.2363[12565] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 631.915769][T12565] syz.3.2363[12565] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 632.214592][T12557] chnl_net:caif_netlink_parms(): no params data found [ 632.568619][T12557] bridge0: port 1(bridge_slave_0) entered blocking state [ 632.597408][T12557] bridge0: port 1(bridge_slave_0) entered disabled state [ 632.620999][T12557] bridge_slave_0: entered allmulticast mode [ 632.642811][T12557] bridge_slave_0: entered promiscuous mode [ 632.667785][T12557] bridge0: port 2(bridge_slave_1) entered blocking state [ 632.681123][T12557] bridge0: port 2(bridge_slave_1) entered disabled state [ 632.693146][T12557] bridge_slave_1: entered allmulticast mode [ 632.707456][T12557] bridge_slave_1: entered promiscuous mode [ 632.772637][T12557] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 632.792878][T12557] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 632.886813][T12557] team0: Port device team_slave_0 added [ 632.921694][T12557] team0: Port device team_slave_1 added [ 633.055759][T12557] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 633.078313][T12557] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 633.138050][T12557] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 633.160447][T12557] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 633.177940][T12557] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 633.248681][T12557] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 633.375300][T12557] hsr_slave_0: entered promiscuous mode [ 633.429860][T12557] hsr_slave_1: entered promiscuous mode [ 633.476542][T12557] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 633.494796][T12557] Cannot create hsr debugfs directory [ 633.633391][T12613] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2383'. [ 633.848240][T11298] Bluetooth: hci1: command tx timeout [ 633.952327][T12557] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 634.116771][T12557] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 634.189259][T12637] (null): rxe_set_mtu: Set mtu to 1024 [ 634.195974][T12637] rdma_rxe: rxe_newlink: failed to add bond_slave_0 [ 634.238414][T12557] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 634.302465][T12637] can: request_module (can-proto-3) failed. [ 634.372848][T12557] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 634.694235][T12557] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 634.711116][T12557] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 634.727666][T12557] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 634.770739][T12557] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 634.805849][T12661] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2405'. [ 635.070903][T12557] 8021q: adding VLAN 0 to HW filter on device bond0 [ 635.096565][T12557] 8021q: adding VLAN 0 to HW filter on device team0 [ 635.121286][ T7089] bridge0: port 1(bridge_slave_0) entered blocking state [ 635.128589][ T7089] bridge0: port 1(bridge_slave_0) entered forwarding state [ 635.163134][ T7089] bridge0: port 2(bridge_slave_1) entered blocking state [ 635.170511][ T7089] bridge0: port 2(bridge_slave_1) entered forwarding state [ 635.866874][T12557] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 635.929311][T11298] Bluetooth: hci1: command tx timeout [ 635.966528][T12557] veth0_vlan: entered promiscuous mode [ 636.002849][T12557] veth1_vlan: entered promiscuous mode [ 636.091573][T12557] veth0_macvtap: entered promiscuous mode [ 636.128765][T12557] veth1_macvtap: entered promiscuous mode [ 636.181071][T12557] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 636.201521][T12557] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 636.211984][T12557] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 636.222654][T12557] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 636.233502][T12557] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 636.245265][T12557] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 636.261611][T12557] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 636.277359][T12708] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2422'. [ 636.292546][T12557] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 636.307322][T12557] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 636.317501][T12557] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 636.328649][T12557] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 636.338614][T12557] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 636.351131][T12557] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 636.379780][T12557] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 636.411115][T12557] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 636.430507][T12557] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 636.447951][T12557] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 636.456887][T12557] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 636.654042][ T1127] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 636.670578][ T1127] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 636.773636][ T7089] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 636.801168][ T7089] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 637.554872][T12735] lo speed is unknown, defaulting to 1000 [ 638.028075][T11298] Bluetooth: hci1: command tx timeout [ 638.301005][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 638.312883][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 638.333237][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 638.341690][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 638.371502][ T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 638.392834][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 638.536423][T12741] lo speed is unknown, defaulting to 1000 [ 640.091700][T11298] Bluetooth: hci1: command tx timeout [ 640.113214][T12741] chnl_net:caif_netlink_parms(): no params data found [ 640.443432][T12782] loop1: detected capacity change from 0 to 256 [ 640.479917][T12741] bridge0: port 1(bridge_slave_0) entered blocking state [ 640.499040][T11298] Bluetooth: hci0: command tx timeout [ 640.508155][T12741] bridge0: port 1(bridge_slave_0) entered disabled state [ 640.515488][T12741] bridge_slave_0: entered allmulticast mode [ 640.562804][T12741] bridge_slave_0: entered promiscuous mode [ 640.579552][T12741] bridge0: port 2(bridge_slave_1) entered blocking state [ 640.606591][T12741] bridge0: port 2(bridge_slave_1) entered disabled state [ 640.614678][T12741] bridge_slave_1: entered allmulticast mode [ 640.656045][T12741] bridge_slave_1: entered promiscuous mode [ 640.816575][T12741] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 640.870106][T12741] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 641.022615][T12741] team0: Port device team_slave_0 added [ 641.042945][ T28] kauditd_printk_skb: 10 callbacks suppressed [ 641.042962][ T28] audit: type=1326 audit(1761780214.972:2248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 641.062044][T12741] team0: Port device team_slave_1 added [ 641.113404][ T28] audit: type=1326 audit(1761780214.972:2249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 641.174251][ T28] audit: type=1326 audit(1761780214.972:2250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 641.209565][T12741] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 641.231293][T12741] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 641.237989][ T28] audit: type=1326 audit(1761780214.972:2251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12792 comm="syz.4.2454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 641.288833][T12741] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 641.307601][T12741] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 641.316332][T12741] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 641.342941][T12741] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 641.450367][T12741] hsr_slave_0: entered promiscuous mode [ 641.461034][T12741] hsr_slave_1: entered promiscuous mode [ 641.468962][T12741] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 641.477150][T12741] Cannot create hsr debugfs directory [ 641.690449][T12804] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2459'. [ 641.709379][T12804] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2459'. [ 641.847649][T12741] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 641.945905][ T28] audit: type=1326 audit(1761780215.882:2252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12806 comm="syz.4.2460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 641.994373][T12741] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 642.033258][ T28] audit: type=1326 audit(1761780215.882:2253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12806 comm="syz.4.2460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 642.089687][ T28] audit: type=1326 audit(1761780215.892:2254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12806 comm="syz.4.2460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 642.129317][T12741] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 642.141884][ T28] audit: type=1326 audit(1761780215.892:2255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12806 comm="syz.4.2460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 642.183223][ T28] audit: type=1326 audit(1761780215.892:2256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12806 comm="syz.4.2460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2cbfd8efc9 code=0x7ffc0000 [ 642.235735][T12741] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 642.500243][T12741] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 642.521975][T12741] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 642.533856][T12741] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 642.552344][T12741] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 642.568865][T11298] Bluetooth: hci0: command tx timeout [ 642.875942][T12826] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2466'. [ 642.920962][T12826] team1: entered promiscuous mode [ 642.926921][T12826] team1: entered allmulticast mode [ 642.937556][T12826] 8021q: adding VLAN 0 to HW filter on device team1 [ 643.096219][T12741] 8021q: adding VLAN 0 to HW filter on device bond0 [ 643.242449][T12741] 8021q: adding VLAN 0 to HW filter on device team0 [ 643.257418][ T1127] bridge0: port 1(bridge_slave_0) entered blocking state [ 643.264689][ T1127] bridge0: port 1(bridge_slave_0) entered forwarding state [ 643.332083][T12833] rdma_op ffff88802c59f1f0 conn xmit_rdma 0000000000000000 [ 643.980668][T12834] loop1: detected capacity change from 0 to 128 [ 643.987706][ T994] bridge0: port 2(bridge_slave_1) entered blocking state [ 643.994939][ T994] bridge0: port 2(bridge_slave_1) entered forwarding state [ 644.039776][T12834] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a80ec018, mo2=0002] [ 644.073829][T12834] System zones: 1-3, 19-19, 35-36 [ 644.090048][T12834] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 644.137115][T12834] ext4 filesystem being mounted at /12/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 644.312483][T12557] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 644.648299][T11298] Bluetooth: hci0: command tx timeout [ 644.814446][T12741] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 644.985407][T12741] veth0_vlan: entered promiscuous mode [ 645.052196][T12741] veth1_vlan: entered promiscuous mode [ 645.154569][T12741] veth0_macvtap: entered promiscuous mode [ 645.181948][T12741] veth1_macvtap: entered promiscuous mode [ 645.237747][T12741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 645.273908][T12741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 645.293883][T12741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 645.305013][T12741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 645.315326][T12741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 645.326080][T12741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 645.336953][T12741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 645.352568][T12741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 645.369676][T12741] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 645.400327][T12741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 645.434021][T12741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 645.444960][T12741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 645.457182][T12741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 645.467280][T12741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 645.478094][T12741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 645.495928][T12741] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 645.518287][T12741] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 645.543186][T12741] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 645.575266][T12741] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 645.589936][T12741] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 645.615802][T12741] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 645.635991][T12741] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 645.818629][ T6632] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 645.842356][ T6632] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 645.903724][ T1127] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 646.045224][ T1127] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 646.729636][T11298] Bluetooth: hci0: command tx timeout [ 646.924108][T12894] siw: device registration error -23 [ 646.999998][T12894] loop1: detected capacity change from 0 to 512 [ 647.033731][T12894] EXT4-fs warning (device loop1): ext4_xattr_inode_get:563: inode #11: comm syz.1.2493: EA inode hash validation failed [ 647.084601][T12894] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.2493: corrupted inode contents [ 647.128716][ T51] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 647.141406][ T51] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 647.151139][ T51] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 647.165624][ T51] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 647.174911][ T51] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 647.185742][ T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 647.193226][T12894] EXT4-fs error (device loop1): ext4_dirty_inode:6120: inode #15: comm syz.1.2493: mark_inode_dirty error [ 647.208284][T12894] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.2493: corrupted inode contents [ 647.258849][T12894] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3017: inode #15: comm syz.1.2493: mark_inode_dirty error [ 647.277971][T12894] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3020: inode #15: comm syz.1.2493: mark inode dirty (error -117) [ 647.279369][T12896] lo speed is unknown, defaulting to 1000 [ 647.308375][T12894] EXT4-fs warning (device loop1): ext4_evict_inode:272: xattr delete (err -117) [ 647.323993][T12894] EXT4-fs (loop1): 1 orphan inode deleted [ 647.336509][T12894] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 647.478735][T12557] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 648.225833][T12896] chnl_net:caif_netlink_parms(): no params data found [ 648.449838][T12896] bridge0: port 1(bridge_slave_0) entered blocking state [ 648.467518][T12896] bridge0: port 1(bridge_slave_0) entered disabled state [ 648.488551][T12896] bridge_slave_0: entered allmulticast mode [ 648.496118][T12896] bridge_slave_0: entered promiscuous mode [ 648.525520][T12896] bridge0: port 2(bridge_slave_1) entered blocking state [ 648.535213][T12896] bridge0: port 2(bridge_slave_1) entered disabled state [ 648.588217][T12896] bridge_slave_1: entered allmulticast mode [ 648.596110][T12896] bridge_slave_1: entered promiscuous mode [ 648.687143][T12921] syz_tun: entered allmulticast mode [ 648.699946][T12896] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 648.726316][T12896] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 648.845678][T12921] dvmrp1: entered allmulticast mode [ 648.872859][ T28] audit: type=1326 audit(1761780222.812:2257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12923 comm="syz.0.2502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114218efc9 code=0x7ffc0000 [ 648.902819][ T28] audit: type=1326 audit(1761780222.812:2258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12923 comm="syz.0.2502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114218efc9 code=0x7ffc0000 [ 648.938673][ T28] audit: type=1326 audit(1761780222.822:2259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12923 comm="syz.0.2502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f114218efc9 code=0x7ffc0000 [ 648.939520][T12920] syz_tun: left allmulticast mode [ 649.005145][ T28] audit: type=1326 audit(1761780222.822:2260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12923 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114218efc9 code=0x7ffc0000 [ 649.056017][T12896] team0: Port device team_slave_0 added [ 649.085034][T12896] team0: Port device team_slave_1 added [ 649.092953][ T28] audit: type=1326 audit(1761780222.822:2261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12923 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114218efc9 code=0x7ffc0000 [ 649.136609][ T28] audit: type=1326 audit(1761780222.822:2262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12923 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114218efc9 code=0x7ffc0000 [ 649.163288][ T28] audit: type=1326 audit(1761780222.822:2263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12923 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114218efc9 code=0x7ffc0000 [ 649.241630][T12896] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 649.252116][ T28] audit: type=1326 audit(1761780222.822:2264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12923 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114218efc9 code=0x7ffc0000 [ 649.261928][T12896] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 649.301617][ T51] Bluetooth: hci3: command tx timeout [ 649.308034][ T28] audit: type=1326 audit(1761780222.822:2265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12923 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114218efc9 code=0x7ffc0000 [ 649.322642][T12896] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 649.367628][ T28] audit: type=1326 audit(1761780222.822:2266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12923 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114218efc9 code=0x7ffc0000 [ 649.373007][T12896] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 649.399341][T12896] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 649.425760][T12896] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 649.443616][T12932] netlink: 48 bytes leftover after parsing attributes in process `syz.0.2505'. [ 649.494621][T12934] netlink: 'syz.4.2506': attribute type 10 has an invalid length. [ 649.502882][T12932] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2505'. [ 649.533130][T12934] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 649.722853][T12896] hsr_slave_0: entered promiscuous mode [ 649.745591][T12896] hsr_slave_1: entered promiscuous mode [ 649.760703][T12896] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 649.775063][T12896] Cannot create hsr debugfs directory [ 650.112885][T12896] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 650.253756][T12896] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 650.321900][T12950] siw: device registration error -23 [ 650.353587][T12896] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 650.452417][T12896] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 650.486213][T12953] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2514'. [ 650.854044][T12896] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 651.004237][T12963] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 651.055378][T12896] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 651.095194][T12896] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 651.129576][T12896] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 651.231545][T12963] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 651.379113][ T51] Bluetooth: hci3: command tx timeout [ 651.399797][T12963] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 651.591145][T12963] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 651.825660][T12896] 8021q: adding VLAN 0 to HW filter on device bond0 [ 651.882407][T12963] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 651.900698][T12979] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2522'. [ 651.922461][T12979] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2522'. [ 651.949535][T12963] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 652.001115][T12963] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 652.069250][T12963] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 652.085418][T12896] 8021q: adding VLAN 0 to HW filter on device team0 [ 652.121810][T12982] siw: device registration error -23 [ 652.144216][ T6632] bridge0: port 1(bridge_slave_0) entered blocking state [ 652.151494][ T6632] bridge0: port 1(bridge_slave_0) entered forwarding state [ 652.190206][ T6632] bridge0: port 2(bridge_slave_1) entered blocking state [ 652.197415][ T6632] bridge0: port 2(bridge_slave_1) entered forwarding state [ 652.735614][T12896] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 652.810109][T12896] veth0_vlan: entered promiscuous mode [ 652.843909][T12896] veth1_vlan: entered promiscuous mode [ 652.885893][T12896] veth0_macvtap: entered promiscuous mode [ 652.905505][T12896] veth1_macvtap: entered promiscuous mode [ 652.961018][T12896] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 652.988002][T12896] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 653.021357][T12896] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 653.039770][T12896] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 653.052780][T12896] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 653.071048][T12896] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 653.082594][T12896] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 653.116516][T12896] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 653.141542][T12896] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 653.158079][T12896] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 653.170422][T12896] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 653.210967][T12896] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 653.234420][T12896] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 653.254746][T12896] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 653.267593][T12896] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 653.284393][T12896] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 653.301671][T12896] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 653.322467][T12896] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 653.338994][T12896] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 653.349281][T12896] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 653.359999][T12896] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 653.373283][T12896] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 653.391499][T12896] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 653.400578][T12896] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 653.409766][T12896] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 653.442021][T12896] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 653.451327][ T51] Bluetooth: hci3: command tx timeout [ 653.660364][ T7243] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 653.674775][ T7243] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 653.734144][ T1122] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 653.754670][ T1122] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 653.954480][T13023] siw: device registration error -23 [ 654.216021][ T28] kauditd_printk_skb: 593 callbacks suppressed [ 654.216039][ T28] audit: type=1326 audit(1761780228.152:2860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13028 comm="syz.3.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523c58efc9 code=0x7ffc0000 [ 654.316567][ T28] audit: type=1326 audit(1761780228.152:2861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13028 comm="syz.3.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523c58efc9 code=0x7ffc0000 [ 654.363465][ T28] audit: type=1326 audit(1761780228.162:2862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13028 comm="syz.3.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f523c58efc9 code=0x7ffc0000 [ 654.430364][ T28] audit: type=1326 audit(1761780228.162:2863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13028 comm="syz.3.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523c58efc9 code=0x7ffc0000 [ 654.486335][ T28] audit: type=1326 audit(1761780228.162:2864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13028 comm="syz.3.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523c58efc9 code=0x7ffc0000 [ 654.756961][ T28] audit: type=1326 audit(1761780228.162:2865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13028 comm="syz.3.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f523c58efc9 code=0x7ffc0000 [ 654.780488][ T28] audit: type=1326 audit(1761780228.162:2866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13028 comm="syz.3.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523c58efc9 code=0x7ffc0000 [ 654.806201][ T28] audit: type=1326 audit(1761780228.162:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13028 comm="syz.3.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f523c58efc9 code=0x7ffc0000 [ 654.830257][ T28] audit: type=1326 audit(1761780228.172:2868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13028 comm="syz.3.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523c58efc9 code=0x7ffc0000 [ 654.852873][ T28] audit: type=1326 audit(1761780228.172:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13028 comm="syz.3.2539" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f523c58efc9 code=0x7ffc0000 [ 655.089468][T13039] 9pnet_fd: Insufficient options for proto=fd [ 655.529417][T11298] Bluetooth: hci3: command tx timeout [ 656.076587][T13071] siw: device registration error -23 [ 657.050219][ T51] Bluetooth: hci2: Opcode 0x1003 failed: -110 [ 657.207020][T13081] loop1: detected capacity change from 0 to 512 [ 657.248631][T13081] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.2563: inode has both inline data and extents flags [ 657.293139][T13081] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.2563: couldn't read orphan inode 15 (err -117) [ 657.332646][T13081] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 657.410678][T13081] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters [ 657.495647][T12557] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 657.564532][T13100] GUP no longer grows the stack in syz.3.2569 (13100): 200000005000-200000008000 (200000004000) [ 657.588614][T13100] CPU: 1 PID: 13100 Comm: syz.3.2569 Not tainted syzkaller #0 [ 657.596184][T13100] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 657.606389][T13100] Call Trace: [ 657.609714][T13100] [ 657.612865][T13100] dump_stack_lvl+0x16c/0x230 [ 657.617597][T13100] ? show_regs_print_info+0x20/0x20 [ 657.622853][T13100] ? load_image+0x3b0/0x3b0 [ 657.627411][T13100] ? find_vma+0x12e/0x1b0 [ 657.631815][T13100] fixup_user_fault+0x652/0x710 [ 657.636731][T13100] fault_in_user_writeable+0x71/0xe0 [ 657.642088][T13100] futex_lock_pi+0x21b/0x8d0 [ 657.646747][T13100] ? fixup_pi_state_owner+0x5c0/0x5c0 [ 657.652208][T13100] ? userfaultfd_unmap_prep+0x3d0/0x3d0 [ 657.657797][T13100] ? mas_find_setup+0x493/0x590 [ 657.662725][T13100] do_futex+0x23d/0x3e0 [ 657.666940][T13100] ? __ia32_sys_get_robust_list+0x90/0x90 [ 657.672692][T13100] __se_sys_futex+0x36f/0x3f0 [ 657.677396][T13100] ? __x64_sys_futex+0xf0/0xf0 [ 657.682191][T13100] ? __x64_sys_futex+0x21/0xf0 [ 657.687062][T13100] do_syscall_64+0x55/0xb0 [ 657.691500][T13100] ? clear_bhb_loop+0x40/0x90 [ 657.696198][T13100] ? clear_bhb_loop+0x40/0x90 [ 657.700905][T13100] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 657.706819][T13100] RIP: 0033:0x7f523c58efc9 [ 657.711341][T13100] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 657.731062][T13100] RSP: 002b:00007f523d352038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 657.739498][T13100] RAX: ffffffffffffffda RBX: 00007f523c7e6090 RCX: 00007f523c58efc9 [ 657.747575][T13100] RDX: 00000000fffffffd RSI: 000000000000008d RDI: 0000200000004000 [ 657.755660][T13100] RBP: 00007f523c611f91 R08: 0000000000000000 R09: 0000000000000000 [ 657.763646][T13100] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 657.771742][T13100] R13: 00007f523c7e6128 R14: 00007f523c7e6090 R15: 00007ffee6de6ae8 [ 657.779750][T13100] [ 658.122266][T13091] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 658.131956][T13091] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 658.138315][T13091] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 658.152953][T13091] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 658.161667][T13091] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 658.176016][T13091] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 658.192518][T13091] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 658.208173][T13091] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 658.215930][T13091] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 658.235018][T13091] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 658.598600][T13138] netlink: 'syz.3.2589': attribute type 12 has an invalid length. [ 658.726857][T13144] siw: device registration error -23 [ 658.766331][T13144] loop1: detected capacity change from 0 to 512 [ 658.907161][T13144] EXT4-fs warning (device loop1): ext4_xattr_inode_get:563: inode #11: comm syz.1.2592: EA inode hash validation failed [ 658.953888][T13144] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.2592: corrupted inode contents [ 658.993146][T13144] EXT4-fs error (device loop1): ext4_dirty_inode:6120: inode #15: comm syz.1.2592: mark_inode_dirty error [ 659.017205][T13159] 9pnet_fd: p9_fd_create_unix (13159): problem connecting socket: ./file0: -2 [ 659.022662][T13144] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #15: comm syz.1.2592: corrupted inode contents [ 659.046834][T13159] netlink: 'syz.3.2598': attribute type 4 has an invalid length. [ 659.118118][T13144] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3017: inode #15: comm syz.1.2592: mark_inode_dirty error [ 659.165486][T13144] EXT4-fs error (device loop1): ext4_xattr_delete_inode:3020: inode #15: comm syz.1.2592: mark inode dirty (error -117) [ 659.184804][T13167] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2603'. [ 659.202331][T13144] EXT4-fs warning (device loop1): ext4_evict_inode:272: xattr delete (err -117) [ 659.217809][T13144] EXT4-fs (loop1): 1 orphan inode deleted [ 659.225603][T13144] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 659.314244][T12557] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 659.448069][T11298] Bluetooth: hci4: command 0x0c1a tx timeout [ 659.781733][T13187] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2614'. [ 659.810115][ T28] kauditd_printk_skb: 48 callbacks suppressed [ 659.810131][ T28] audit: type=1326 audit(1761780233.752:2918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13191 comm="syz.1.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec0af8efc9 code=0x7ffc0000 [ 659.877999][ T28] audit: type=1326 audit(1761780233.762:2919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13191 comm="syz.1.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec0af8efc9 code=0x7ffc0000 [ 659.975235][ T28] audit: type=1326 audit(1761780233.792:2920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13191 comm="syz.1.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fec0af8efc9 code=0x7ffc0000 [ 659.991985][T13196] loop3: detected capacity change from 0 to 512 [ 660.014763][ T28] audit: type=1326 audit(1761780233.792:2921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13191 comm="syz.1.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec0af8efc9 code=0x7ffc0000 [ 660.066522][ T28] audit: type=1326 audit(1761780233.792:2922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13191 comm="syz.1.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec0af8efc9 code=0x7ffc0000 [ 660.096874][ T28] audit: type=1326 audit(1761780233.802:2923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13191 comm="syz.1.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7fec0af8efc9 code=0x7ffc0000 [ 660.129289][ T28] audit: type=1326 audit(1761780233.802:2924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13191 comm="syz.1.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec0af8efc9 code=0x7ffc0000 [ 660.153011][ T28] audit: type=1326 audit(1761780233.802:2925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13191 comm="syz.1.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec0af8efc9 code=0x7ffc0000 [ 660.177752][T13196] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 660.178726][T11298] Bluetooth: hci0: command 0x0c1a tx timeout [ 660.192298][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 660.229151][T13196] ext4 filesystem being mounted at /15/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 660.251325][ T28] audit: type=1326 audit(1761780233.812:2926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13191 comm="syz.1.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7fec0af8efc9 code=0x7ffc0000 [ 660.274050][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 660.325460][T13196] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.2617: corrupted inode contents [ 660.375558][ T28] audit: type=1326 audit(1761780233.812:2927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13191 comm="syz.1.2615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec0af8efc9 code=0x7ffc0000 [ 660.417317][T13196] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #2: comm syz.3.2617: mark_inode_dirty error [ 660.473487][T13196] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #2: comm syz.3.2617: corrupted inode contents [ 660.630493][T12896] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 660.865563][T13222] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2626'. [ 661.105034][T13228] syzkaller1: entered promiscuous mode [ 661.118256][T13228] syzkaller1: entered allmulticast mode [ 661.580471][T13237] loop3: detected capacity change from 0 to 512 [ 661.607165][T13237] EXT4-fs warning (device loop3): ext4_xattr_inode_get:563: inode #11: comm syz.3.2634: EA inode hash validation failed [ 661.639510][T13237] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #15: comm syz.3.2634: corrupted inode contents [ 661.665648][T13237] EXT4-fs error (device loop3): ext4_dirty_inode:6120: inode #15: comm syz.3.2634: mark_inode_dirty error [ 661.685143][T13237] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #15: comm syz.3.2634: corrupted inode contents [ 661.697895][T13237] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3017: inode #15: comm syz.3.2634: mark_inode_dirty error [ 661.722474][T13237] EXT4-fs error (device loop3): ext4_xattr_delete_inode:3020: inode #15: comm syz.3.2634: mark inode dirty (error -117) [ 661.729497][T13247] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2639'. [ 661.771135][T13237] EXT4-fs warning (device loop3): ext4_evict_inode:272: xattr delete (err -117) [ 661.797609][T13237] EXT4-fs (loop3): 1 orphan inode deleted [ 661.832051][T13237] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 661.925883][T12896] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 662.204342][T13258] loop3: detected capacity change from 0 to 8192 [ 662.250032][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 662.251241][T11298] Bluetooth: hci0: command 0x0c1a tx timeout [ 662.328039][T11298] Bluetooth: hci3: command 0x0c1a tx timeout [ 662.344128][T13267] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2643'. [ 662.409101][ T5837] IPVS: starting estimator thread 0... [ 662.518248][T13270] IPVS: using max 17 ests per chain, 40800 per kthread [ 662.697467][T13274] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2648'. [ 663.798819][T13294] loop3: detected capacity change from 0 to 128 [ 663.808895][T13294] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 663.827427][T13294] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 663.987105][ T6096] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 664.295419][T13296] loop1: detected capacity change from 0 to 8192 [ 664.328480][T11298] Bluetooth: hci0: command 0x0c1a tx timeout [ 664.328852][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 664.335631][T13296] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 664.408109][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 664.452419][T13296] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1052) [ 664.463273][T13296] FAT-fs (loop1): Filesystem has been set read-only [ 664.471924][T13296] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1052) [ 664.480912][T13296] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1052) [ 664.748824][T13296] ------------[ cut here ]------------ [ 664.754405][T13296] WARNING: CPU: 1 PID: 13296 at mm/page_alloc.c:4433 __alloc_pages+0x2de/0x460 [ 664.763532][T13296] Modules linked in: [ 664.767485][T13296] CPU: 1 PID: 13296 Comm: syz.1.2658 Not tainted syzkaller #0 [ 664.775157][T13296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 664.785370][T13296] RIP: 0010:__alloc_pages+0x2de/0x460 [ 664.790890][T13296] Code: 0c 25 28 00 00 00 48 3b 8c 24 a0 00 00 00 0f 85 a0 00 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 c6 05 4c 21 64 0c 01 <0f> 0b eb a5 a9 00 00 08 00 8b 74 24 0c 75 3e 44 89 f1 81 e1 7f ff [ 664.816337][T13296] RSP: 0018:ffffc900041cfa00 EFLAGS: 00010246 [ 664.823622][T13296] RAX: ffffc900041cfa00 RBX: 1ffff92000839f44 RCX: 0000000000000000 [ 664.831875][T13296] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc900041cfa68 [ 664.839940][T13296] RBP: ffffc900041cfb00 R08: ffffc900041cfa67 R09: 0000000000000000 [ 664.848064][T13296] R10: ffffc900041cfa40 R11: fffff52000839f4d R12: 0000000000000014 [ 664.856083][T13296] R13: 0000000000000000 R14: 0000000000040cc0 R15: dffffc0000000000 [ 664.864405][T13296] FS: 00007fec0bedc6c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 664.873505][T13296] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 664.880264][T13296] CR2: 00007fec0bedafe0 CR3: 000000005f798000 CR4: 00000000003506e0 [ 664.888369][T13296] Call Trace: [ 664.891686][T13296] [ 664.894658][T13296] ? zone_statistics+0x170/0x170 [ 664.901431][T13296] ? __might_fault+0xaa/0x120 [ 664.906541][T13296] ? __lock_acquire+0x7c80/0x7c80 [ 664.911939][T13296] __kmalloc_large_node+0x8c/0x1e0 [ 664.917132][T13296] ? raw_ioctl+0x19b0/0x3b70 [ 664.921909][T13296] __kmalloc+0x111/0x240 [ 664.926216][T13296] raw_ioctl+0x19b0/0x3b70 [ 664.930742][T13296] ? tomoyo_path_number_perm+0x477/0x590 [ 664.936441][T13296] ? __kmem_cache_free+0xba/0x1f0 [ 664.941610][T13296] ? tomoyo_path_number_perm+0x4dc/0x590 [ 664.947293][T13296] ? tomoyo_path_number_perm+0x1ba/0x590 [ 664.953113][T13296] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 664.958707][T13296] ? make_qualifier+0x250/0x250 [ 664.963761][T13296] ? __fget_files+0x28/0x4d0 [ 664.968603][T13296] ? bpf_lsm_file_ioctl+0x9/0x10 [ 664.973589][T13296] ? security_file_ioctl+0x80/0xa0 [ 664.978845][T13296] ? make_qualifier+0x250/0x250 [ 664.983747][T13296] __se_sys_ioctl+0xfd/0x170 [ 664.988499][T13296] do_syscall_64+0x55/0xb0 [ 664.992965][T13296] ? clear_bhb_loop+0x40/0x90 [ 664.997769][T13296] ? clear_bhb_loop+0x40/0x90 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 665.004200][T13296] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 665.010584][T13296] RIP: 0033:0x7fec0af8efc9 [ 665.015058][T13296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 665.034852][T13296] RSP: 002b:00007fec0bedc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 665.043404][T13296] RAX: ffffffffffffffda RBX: 00007fec0b1e5fa0 RCX: 00007fec0af8efc9 [ 665.051984][T13296] RDX: 0000200000000000 RSI: 00000000c0085504 RDI: 0000000000000008 [ 665.060115][T13296] RBP: 00007fec0b011f91 R08: 0000000000000000 R09: 0000000000000000 [ 665.068212][T13296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 665.076327][T13296] R13: 00007fec0b1e6038 R14: 00007fec0b1e5fa0 R15: 00007ffeab203da8 [ 665.084536][T13296] [ 665.087602][T13296] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 665.094927][T13296] CPU: 1 PID: 13296 Comm: syz.1.2658 Not tainted syzkaller #0 [ 665.102437][T13296] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 665.112640][T13296] Call Trace: [ 665.115974][T13296] [ 665.118940][T13296] dump_stack_lvl+0x16c/0x230 [ 665.123681][T13296] ? show_regs_print_info+0x20/0x20 [ 665.128925][T13296] ? load_image+0x3b0/0x3b0 [ 665.133493][T13296] panic+0x2c0/0x710 [ 665.137434][T13296] ? bpf_jit_dump+0xd0/0xd0 [ 665.142009][T13296] __warn+0x2e0/0x470 [ 665.146035][T13296] ? __alloc_pages+0x2de/0x460 [ 665.150860][T13296] ? __alloc_pages+0x2de/0x460 [ 665.155674][T13296] report_bug+0x2be/0x4f0 [ 665.160142][T13296] ? __alloc_pages+0x2de/0x460 [ 665.165389][T13296] ? __alloc_pages+0x2de/0x460 [ 665.170329][T13296] ? __alloc_pages+0x2e0/0x460 [ 665.175147][T13296] handle_bug+0xcf/0x120 [ 665.179438][T13296] exc_invalid_op+0x1a/0x50 [ 665.184028][T13296] asm_exc_invalid_op+0x1a/0x20 [ 665.188916][T13296] RIP: 0010:__alloc_pages+0x2de/0x460 [ 665.194348][T13296] Code: 0c 25 28 00 00 00 48 3b 8c 24 a0 00 00 00 0f 85 a0 00 00 00 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 c6 05 4c 21 64 0c 01 <0f> 0b eb a5 a9 00 00 08 00 8b 74 24 0c 75 3e 44 89 f1 81 e1 7f ff [ 665.214099][T13296] RSP: 0018:ffffc900041cfa00 EFLAGS: 00010246 [ 665.220300][T13296] RAX: ffffc900041cfa00 RBX: 1ffff92000839f44 RCX: 0000000000000000 [ 665.228322][T13296] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc900041cfa68 [ 665.236342][T13296] RBP: ffffc900041cfb00 R08: ffffc900041cfa67 R09: 0000000000000000 [ 665.244465][T13296] R10: ffffc900041cfa40 R11: fffff52000839f4d R12: 0000000000000014 [ 665.252483][T13296] R13: 0000000000000000 R14: 0000000000040cc0 R15: dffffc0000000000 [ 665.260525][T13296] ? zone_statistics+0x170/0x170 [ 665.265617][T13296] ? __might_fault+0xaa/0x120 [ 665.270433][T13296] ? __lock_acquire+0x7c80/0x7c80 [ 665.275514][T13296] __kmalloc_large_node+0x8c/0x1e0 [ 665.280698][T13296] ? raw_ioctl+0x19b0/0x3b70 [ 665.285342][T13296] __kmalloc+0x111/0x240 [ 665.289655][T13296] raw_ioctl+0x19b0/0x3b70 [ 665.294146][T13296] ? tomoyo_path_number_perm+0x477/0x590 [ 665.299837][T13296] ? __kmem_cache_free+0xba/0x1f0 [ 665.304915][T13296] ? tomoyo_path_number_perm+0x4dc/0x590 [ 665.310603][T13296] ? tomoyo_path_number_perm+0x1ba/0x590 [ 665.316286][T13296] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 665.321795][T13296] ? make_qualifier+0x250/0x250 [ 665.326730][T13296] ? __fget_files+0x28/0x4d0 [ 665.331374][T13296] ? bpf_lsm_file_ioctl+0x9/0x10 [ 665.336386][T13296] ? security_file_ioctl+0x80/0xa0 [ 665.341586][T13296] ? make_qualifier+0x250/0x250 [ 665.346474][T13296] __se_sys_ioctl+0xfd/0x170 [ 665.351118][T13296] do_syscall_64+0x55/0xb0 [ 665.355582][T13296] ? clear_bhb_loop+0x40/0x90 [ 665.360292][T13296] ? clear_bhb_loop+0x40/0x90 [ 665.365008][T13296] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 665.371020][T13296] RIP: 0033:0x7fec0af8efc9 [ 665.375648][T13296] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 665.395304][T13296] RSP: 002b:00007fec0bedc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 665.403942][T13296] RAX: ffffffffffffffda RBX: 00007fec0b1e5fa0 RCX: 00007fec0af8efc9 [ 665.411960][T13296] RDX: 0000200000000000 RSI: 00000000c0085504 RDI: 0000000000000008 [ 665.419976][T13296] RBP: 00007fec0b011f91 R08: 0000000000000000 R09: 0000000000000000 [ 665.427989][T13296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 665.436000][T13296] R13: 00007fec0b1e6038 R14: 00007fec0b1e5fa0 R15: 00007ffeab203da8 [ 665.444021][T13296] [ 665.447390][T13296] Kernel Offset: disabled [ 665.451743][T13296] Rebooting in 86400 seconds..