last executing test programs: 2m51.666834804s ago: executing program 0 (id=537): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x18) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000"], 0x3c}}, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000000600)={0x2, 0x0, 0xfffffffe, 0x1, 0xfffffffc}) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x17, &(0x7f0000000300)=0xa, 0x4) syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000004c0)={[{}]}, 0x1, 0x453, &(0x7f0000001040)="$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") bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141b82, 0x83) write$cgroup_int(r5, &(0x7f0000000000)=0x700, 0x12) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r5, 0x84, 0x1, 0x0, 0x0) name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0, 0x200) 2m49.781068219s ago: executing program 0 (id=547): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r3], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r3}, &(0x7f0000000240), &(0x7f00000003c0)=r5}, 0x20) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r4, r1, 0x25, 0x2, @void}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000340)={@random="6ea88d319b8c", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x2, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x43, 0x4e22, 0x8}}}}}, 0x0) 2m47.168584272s ago: executing program 0 (id=554): mkdir(&(0x7f0000000400)='./file0\x00', 0x0) pipe2$9p(0x0, 0x0) dup(0xffffffffffffffff) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) setsockopt$bt_hci_HCI_FILTER(0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) unshare(0x64000600) pipe2(0x0, 0x800) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0) close(0xffffffffffffffff) 2m46.340042269s ago: executing program 0 (id=561): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) fcntl$setlease(r2, 0x400, 0x0) fcntl$setlease(r2, 0x400, 0x2) 2m45.397259656s ago: executing program 0 (id=563): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', 0xffffffffffffffff, 0x0, 0xfffffffffffffffd}, 0x18) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000100001000000f5ffffffffffffff000a14000000060a0000"], 0x3c}}, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000380), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r4, 0xc0145401, &(0x7f0000000600)={0x2, 0x0, 0xfffffffe, 0x1, 0xfffffffc}) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x17, &(0x7f0000000300)=0xa, 0x4) syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000004c0)={[{}]}, 0x1, 0x453, &(0x7f0000001040)="$eJzs3U9sFFUcB/DvbrslAbRg/IP4r4JKEaW2NUESTCTKSS4GE88NLYRYqKE1EUKMJh68eTHx7EG5eeTgyXjAoyZ48aaejJEYIvGk1sx2ly5lt3RD26nu55PM7pud132/mdffzO7ryzRAzxoqHirJ1iTfJxlcWL25wtDC0/VrF47/ee3C8Urm54/9XqnX++PahePNqs2f21I8VJPhalL9oJKH2rQ7e+78mxPT01NnG+sjc6ffGpk9d/7ZU6cnTk6dnDozeuDgC+OjB8bGx1dtX1+9+O6xLa+9dOSjySu/zVz86csi3q2Nba37sVqGMnTzsWzx1Go3VrL7WsqV/hIDoSt9SYruqtXzfzB9Wey8wXzzY6nBAWtqvrCp4+b35oH/sUrKjgAoR/NCX3z/bS7r9dmD8l09vPAFsOj3641lYUt/qo06tSXf71fTUJJDl458USxZo3EYAAAAgF721eEkz7Qb/6vm/pZ6RfmBJDuSPJhkZ1Kf1/NwkkeSPJrkseZ8oi4srb90/KfSaQINq+Lq4eRQY27XzeN/zdG/bOtrrN1VrKRWOXFqeuq5JHcnGU5tU7E+ukwbl7/957tO21rH/4qlaL85FtiI49f+JX+fnpyYm7iTfWbR1feTnf3t+r9yYyZQkYKPJ9nVzRvXFos/79p7slO12/c/a2n+02RP2/xvnHivHKw/LTM/c6R+PhhpnhVu9eHo2Cud2tf/5Sryf/Ny/Z9sq7TO153tvo3LOy692Glb9+f/Hz4rzv8DldfrAQ40Xn1nYm7u7GgyUDl66+tj3cf839b5Q1PzeDSPV9H/w7vbX//vaXm33UmeSPJkY+7ynvq1P9mb5Okk+5aJ5u+XD7zRaZv8L1fR/5Nt8//G1IAl+d994dD2T452an9l+f98/Rd6uPGKz3+3t9IOKjtOAAAAAAAAAFZHtX4PvEp1/41ytbp//8I9/O7N5ur0zOzcvhMzb5+ZXLhX3rbUqs2ZXoMt80FH6+XF9bEl6+NJtif5uO+vxp0HZqYny9556HFbOuR/4Ze+sqMD1pz7tULvWkH+19YjDmD9uf5D75L/0LvkP/Qu+Q+9S/5D75L/0LtWnv8DaxoHsP5c/6En3cl9/TZaoT8bIoy2heb8qZLCaP5L/g1yNDZm4fOvk3Voqy/JRtnlZQplnpUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANo5/AwAA//9EA9s8") bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x141b82, 0x83) write$cgroup_int(r5, &(0x7f0000000000)=0x700, 0x12) getsockopt$inet_sctp6_SCTP_ASSOCINFO(r5, 0x84, 0x1, 0x0, 0x0) name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0, 0x200) 2m44.351689664s ago: executing program 0 (id=567): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000800)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0) 2m28.67589807s ago: executing program 32 (id=567): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x18) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000800)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0) 6.230939497s ago: executing program 1 (id=1014): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS \x00'}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10) syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x20000) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xd, 0x7f}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r5 = socket$pppl2tp(0x18, 0x1, 0x1) r6 = socket$pppl2tp(0x18, 0x1, 0x1) r7 = socket$inet_udp(0x2, 0x2, 0x0) connect$pppl2tp(r6, &(0x7f0000000980)=@pppol2tpin6={0x18, 0x1, {0x0, r7, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32) connect$pppl2tp(r5, &(0x7f0000000980)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}, 0x1, 0x3}}, 0x26) 6.225008097s ago: executing program 5 (id=1015): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a9a4850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xfe, 0x0, 0x7ffc9ffe}]}) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4000000) mq_getsetattr(0xffffffffffffffff, 0x0, 0x0) acct(0x0) 6.102612927s ago: executing program 3 (id=1018): r0 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$netlink(r0, 0x10e, 0x5, 0x0, &(0x7f0000000040)) 5.899139296s ago: executing program 5 (id=1019): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000008c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x9}}, {@mblk_io_submit}]}, 0x3, 0x44a, &(0x7f0000000400)="$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") chown(&(0x7f0000000340)='./file0\x00', 0x0, 0x0) 5.045186374s ago: executing program 1 (id=1021): pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002b40)=ANY=[@ANYBLOB="200000001000010700000000000000000a0000000c0002006e6c3830323131"], 0x20}}, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 4.993815594s ago: executing program 3 (id=1022): socket$packet(0x11, 0xa, 0x300) mkdir(0x0, 0x2) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) dup(r0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000050b6850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRES16, @ANYRES64, @ANYRES16=0x0], 0x1, 0x36e, &(0x7f0000000c00)="$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") syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f00000000c0)) 4.816593803s ago: executing program 4 (id=1024): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x2484, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000001bc19c774f6f3b99a2a63751a9717b8af8ff00000000bfa100000000000007020000f8ffffffb7030000000000000000850000000100000095000000000000b6a001e8cf2bf2cec2092d28d98d78754916aa2392af"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002ac0)={r1, 0x0, 0xee, 0x1000, &(0x7f0000000740)="a21adc41fe4230469252a11c3a775d3178b69a016906c750e3b68991eeddd05228f042ec936ad7d52e2b876093df59d4703e92b1cbaff199b621fd588b8e6c0cf7cf3fc6e7760a467154a26b4cb32bbda09038aeb392d54930b72c0849fd35339041973aae0a16892168e2141fe2b1919f94a92a928c6be0f6c5dc3e8c8ca88b28693231204b8d177b894774aa386fd759244366dedeecca19da420052ea8283cddbe50e25bea901c3a0e9399fdd17d7c03796ae5a30ffdd796b8f56a7e4ab1b7bc04405e856b1851112c28a94a2489a606bbd787f98df7bf6d03a5f9d02760134852023fd862aba5f52af4da19c", &(0x7f0000001a40)=""/4096, 0x80000001, 0x0, 0xdd, 0x0, &(0x7f0000000880)="808c0f263885bd930aaaaa23794a11b96400683e21a6b8bbef4d6af7b86c42475467a9dd73fd5f05a06b01143dd81b8dd0ed95924a4f49d722c35bddc73af70e1102518bab80a13a09945fbd05a781e9806d04450888db08640dbf7aab39c3696f938445d4d55aae69431013d4ce34e40d6fb0f67f27597db0410bac28846c6e0c192bd835d4f4878c479d1d4025853bdaf372ca0631cc648f87211b07ccb1bf44831f439f2ef1c079dc135e3884c1979db2f0cd5524d90c6bb67edaa15e5f876a5996497085e1c014a18a0b26a91aadd5cba38afe4313740be9b247f5", &(0x7f0000002a40), 0x3}, 0x50) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) timer_create(0x0, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r5, &(0x7f0000004740)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x380000}, 0x1c) sendmmsg$inet6(r5, &(0x7f0000004780), 0x0, 0x24050005) 4.716680543s ago: executing program 1 (id=1025): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS \x00'}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10) syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x20000) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xd, 0x7f}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r6 = socket$pppl2tp(0x18, 0x1, 0x1) r7 = socket$pppl2tp(0x18, 0x1, 0x1) r8 = socket$inet_udp(0x2, 0x2, 0x0) connect$pppl2tp(r7, &(0x7f0000000980)=@pppol2tpin6={0x18, 0x1, {0x0, r8, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32) connect$pppl2tp(r6, &(0x7f0000000980)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}, 0x1, 0x3}}, 0x26) getsockopt$bt_BT_SECURITY(r6, 0x111, 0x5, 0x0, 0x20001f00) socket$nl_route(0x10, 0x3, 0x0) bind$bt_l2cap(r2, &(0x7f0000000340)={0x1f, 0x100}, 0xe) setsockopt$bt_BT_DEFER_SETUP(r2, 0x112, 0xf, 0x0, 0x0) 4.715847693s ago: executing program 5 (id=1026): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=@newlink={0x34, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x62335}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x0) 4.670833313s ago: executing program 2 (id=1027): openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0xe, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000000850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{r2}, &(0x7f0000000240), &(0x7f00000003c0)=r4}, 0x20) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r3, r1, 0x25, 0x2, @void}, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000340)={@random="6ea88d319b8c", @dev={'\xaa\xaa\xaa\xaa\xaa', 0x13}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x2, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x43, 0x4e22, 0x8}}}}}, 0x0) 4.524506243s ago: executing program 3 (id=1028): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x2000000000000014, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000740), 0x1, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000000)='kfree\x00', r1}, 0x18) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)={0x30, r2, 0x701, 0x0, 0x0, {{}, {@void, @void, @val={0xc, 0x99, {0x6d, 0x11}}}}, [@NL80211_ATTR_VENDOR_ID={0x8}, @NL80211_ATTR_VENDOR_SUBCMD={0x8}]}, 0x30}}, 0x0) 4.501237412s ago: executing program 2 (id=1029): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000080), &(0x7f0000000340)='%pS \x00'}, 0x20) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x8c, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x8c}}, 0x0) 4.426114302s ago: executing program 2 (id=1030): r0 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r0, &(0x7f0000000980)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}, 0x1, 0x3}}, 0x26) getsockopt$bt_BT_SECURITY(r0, 0x111, 0x5, 0x0, 0x20001f00) 2.970624198s ago: executing program 1 (id=1031): r0 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r0, &(0x7f0000000980)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}, 0x1, 0x3}}, 0x26) getsockopt$bt_BT_SECURITY(r0, 0x111, 0x5, 0x0, 0x20001f00) 2.944524358s ago: executing program 4 (id=1032): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000580)=@framed, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10) open(&(0x7f00000001c0)='./file0\x00', 0x2a4c0, 0x918d8ecf0d5d0600) mount(0x0, &(0x7f0000001fc0)='./file0\x00', &(0x7f0000002000)='devtmpfs\x00', 0x0, &(0x7f0000002040)='dirsync') 2.805857357s ago: executing program 2 (id=1033): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="40000000190001090000000000000000021800000000fd010000000008000100ac141400080005000a0101020c0016800802000000000002"], 0x40}, 0x1, 0x0, 0x0, 0x20000000}, 0x40) 2.805366387s ago: executing program 3 (id=1034): socket(0x10, 0x803, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94) socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_open_procfs(0x0, 0x0) r5 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) fcntl$setlease(r5, 0x400, 0x0) r6 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r6, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e00fb00020013000200000000000000ff0800ed05000600200000000a0006000000000026b900000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r7 = socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10) sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001840)=@newtaction={0xe6c, 0x30, 0x25, 0x0, 0x0, {}, [{0xe58, 0x1, [@m_pedit={0xe54, 0x1, 0x0, 0x0, {{0xa}, {0xe28, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS_EX={0xe20, 0x4, {{{0x0, 0x0, 0xffffffffffffffff}, 0x3}, [{}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xb}, {0x8}, {}, {}, {}, {}, {}, {0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x10000000}, {}, {0x80000}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, {}, {0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x7f}, {}, {}, {0x0, 0x0, 0x78b, 0x200}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffd, 0xfffffffe}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x20}, {0x0, 0x0, 0x10000000}, {0x0, 0x0, 0x10001}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x80000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x5}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {0x2}, {0x1}, {}, {}, {}, {0x1}]}}, @TCA_PEDIT_KEYS_EX={0x4}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0xe6c}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32], 0x40}}, 0x0) 2.805221778s ago: executing program 4 (id=1035): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001340)={0x18, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="180000001800ff0f00000000001b000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000600)='kfree\x00', r0}, 0x18) r1 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000001040)={'sit0\x00', &(0x7f0000001000)={'syztnl2\x00', 0x0, 0x8000, 0xa000, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x64, 0x0, 0x0, 0x4, 0x0, @empty, @rand_addr=0x3}}}}) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r1, 0x89f2, &(0x7f0000000780)={'syztnl2\x00', &(0x7f0000000340)={'syztnl2\x00', r2, 0x7, 0x1, 0x8, 0x6, {{0x5, 0x4, 0x1, 0x3b, 0x14, 0x65, 0x0, 0xea, 0x2f, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x0, 0x0}}}}}) 2.778716077s ago: executing program 5 (id=1036): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="40000000000201040000000000000000020000002400028014000180080001007f00000108000212ac1e00010c000280050001000000000004000380040001"], 0x40}}, 0x0) 2.749981128s ago: executing program 1 (id=1037): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002500)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f00000008c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x5}}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x9}}, {@mblk_io_submit}]}, 0x3, 0x44a, &(0x7f0000000400)="$eJzs281vG0UbAPBn10n6vv1KKOWjpUCgQkR8JE1aoAcuIJA4FIEEh3IMTlpVdRvUBIlWFQ0IlQsSqgRnxBGJv4AbFwSckLjCHVWqoJcWTkG73m1t106b1rFD/ftJm8x4x555PDve2R07gIE1nv1JIrZGxG8RMVrPNhcYr/+7evls9e/LZ6tJrKy89WeSl7ty+Wy1LFo+b0uRmUgj0k+SopJmi6fPHJ+t1eZPFfmppRPvTS2ePvPssROzR+ePzp+cOXjwwP7pF56fea4rcWZxXdn94cKeXa+9c+H16uEL7/70bdbercX+xji6ZTwL/K+VXOu+J7pdWZ9ta0gnQ31sCGtSiYisu4bz8T8albjeeaPx6sd9bRywrrJz06bOu5dXgLtYEv1uAdAf5Yk+u/4ttx5NPTaESy/VL4CyuK8WW33PUKRFmeGW69tuGo+Iw8v/fJVtsU73IQAAGn1W/fJQPNNu/pfG/Q3lthdrKGMRcU9E7IiIeyNiZ0TcF5GXfSAiHlxj/a1LQzfOf9KLtxXYLcrmfy8Wa1vN879y9hdjlSK3LY9/ODlyrDa/r3hPJmJ4U5afXqWO71/59fNO+xrnf9mW1V/OBYt2XBxquUE3N7s0m09Ku+DSRxG7h9rFn1xbCUgiYldE7F7bS28vE8ee+mZPp0I3j38VXVhnWvk64sl6/y9HS/ylZPX1yan/RW1+31R5VNzo51/Ov9mp/juKvwuy/t/cfPy3FhlLGtdrF9dex/nfP+14TXO7x/9I8nbeLyPFYx/MLi2dmo4YSQ7l+abHZ64/t8yX5bP4J/a2H/87iudk9TwUEdlB/HBEPBIRjxZtfywiHo+IvavE/+PLnfdthP6fa/v5d+34b+n/tScqx3/4rlP9t9b/B/LURPFI/vl3E7fawDt57wAAAOC/Is2/A5+kk9fSaTo5Wf8O/87YnNYWFpeePrLw/sm5+nflx2I4Le90jTbcD51OlotXrOdninvF5f79xX3jLyr/z/OT1YXaXJ9jh0G3pcP4z/xR6XfrgHXXbh1tZqQPDQF6rnX8p83Zc2/0sjFAT/m9Ngyum4z/tFftAHrP+R8GV7vxf64lby0A7k7O/zC4jH8YXMY/DC7jHwbSnfyuX2KQE5FuiGZIrFOi359MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3fFvAAAA//+uEO7O") chown(&(0x7f0000000340)='./file0\x00', 0x0, 0x0) 1.666972745s ago: executing program 5 (id=1038): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000850000000800000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='9p_protocol_dump\x00', r0}, 0x18) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r3 = dup(r2) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}}) 1.665937144s ago: executing program 4 (id=1039): sendmsg$nl_route_sched_retired(0xffffffffffffffff, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000008680)=@newchain={0x43c, 0x64, 0x0, 0x70bd29, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x0, 0xffff}, {0x3, 0xe}, {0xe, 0xc}}, [@f_tcindex={{0xc}, {0x40c, 0x2, [@TCA_TCINDEX_POLICE={0x408, 0x6, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0xffffffff, 0x6, 0x0, 0x1, 0xffffffbe, 0x3ff, 0x9, 0x1, 0x1a3, 0xf3, 0x9, 0x4, 0x1, 0x4, 0x1, 0x2, 0xe769, 0x9, 0x6, 0x7, 0x400, 0x8, 0xfffffffe, 0x4, 0xfffffffc, 0x401, 0x4a, 0x10001, 0x29, 0xa, 0x8, 0xcc7, 0x6, 0x1000, 0x9, 0x5, 0xde, 0x0, 0x9, 0xff, 0x7, 0x10001, 0x2, 0x101, 0x1, 0x26b6, 0x1f73, 0x200, 0x9, 0xcf4, 0x0, 0x8, 0x6, 0x3, 0x8, 0x81, 0x6, 0xff, 0x0, 0x101, 0x0, 0xfffffff8, 0x9bb, 0x3, 0x101, 0x0, 0x400000, 0xc6, 0x8000, 0x10, 0x2, 0x1000, 0x349, 0x8, 0xc14, 0x6990615b, 0x10000, 0x10001, 0x4, 0x81, 0xd, 0x2c3, 0x9, 0x5, 0x8000, 0x7fff, 0x0, 0x7, 0x4, 0x6, 0x8, 0xffffffff, 0x8, 0x6, 0xffff0000, 0x7fffffff, 0x100, 0x5, 0x58ad12d1, 0x43, 0xffffffff, 0x7fff, 0x5, 0x8, 0x1a, 0x8, 0x2, 0x5, 0x1, 0x6, 0x3, 0x1000, 0xa4b6, 0x1, 0xfa, 0x7, 0x7, 0x0, 0x3, 0x4, 0x80000000, 0x8000, 0x80000001, 0x100, 0x9, 0xd7, 0xffffffff, 0x80, 0xf, 0x6, 0x67, 0x4, 0xa, 0x9ae, 0x5, 0x6, 0x7fffffff, 0x5, 0x0, 0x2683, 0x400, 0x100, 0x4, 0x3, 0x6, 0x1, 0x0, 0x200, 0x40, 0x8, 0x4, 0x1000, 0x0, 0x8, 0x2, 0x2, 0x401, 0x0, 0x3, 0x0, 0x3, 0x3ff, 0xa98, 0x101, 0x1, 0x7, 0x725, 0x3, 0x0, 0xffffff81, 0x10000, 0x10001, 0x0, 0x6, 0x9, 0x0, 0x418c8401, 0x0, 0x4, 0x5, 0x1, 0x6, 0x71, 0x0, 0x6, 0x10, 0x3, 0xe928, 0x4, 0x1, 0x400, 0x4, 0x3, 0x8, 0x3ff, 0x10000, 0x1, 0x2, 0x4, 0x4, 0x8, 0x6, 0x1ff, 0x3, 0x4, 0xffff, 0x7, 0xcc0, 0x7, 0x77, 0x1, 0x1, 0x5, 0x4, 0x8, 0x12, 0x85c, 0x80000001, 0x5, 0xffffff42, 0x4, 0x7, 0x0, 0xe5dc2a5, 0x9, 0x8, 0x10, 0x200, 0x6, 0x1c3, 0xffffcd3a, 0x99a1, 0xa, 0x5, 0x1, 0x40, 0x1, 0x6, 0x9, 0x0, 0xb, 0x9b, 0x7a, 0x81, 0xa, 0xffffe7ab, 0x9, 0xfffffff6, 0x2cc3, 0x3, 0x7, 0x1, 0x9, 0x80, 0x1, 0xf]}]}]}}]}, 0x43c}, 0x1, 0x0, 0x0, 0x44}, 0x4000) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000004c0)='mm_page_free\x00', r2, 0x0, 0x178}, 0x18) process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) 1.664075514s ago: executing program 2 (id=1040): mkdir(&(0x7f0000000400)='./file0\x00', 0x0) pipe2$9p(0x0, 0x0) dup(0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000004c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) setsockopt$bt_hci_HCI_FILTER(0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) unshare(0x64000600) pipe2(0x0, 0x800) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0) close(0xffffffffffffffff) 1.385455164s ago: executing program 3 (id=1041): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) bind$bt_l2cap(r0, &(0x7f0000000340)={0x1f, 0x100}, 0xe) setsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0xf, 0x0, 0x0) 1.287233653s ago: executing program 1 (id=1042): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x2484, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000006c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000001bc19c774f6f3b99a2a63751a9717b8af8ff00000000bfa100000000000007020000f8ffffffb7030000000000000000850000000100000095000000000000b6a001e8cf2bf2cec2092d28d98d78754916aa2392af"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, @void, @value}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002ac0)={r1, 0x0, 0xee, 0x1000, &(0x7f0000000740)="a21adc41fe4230469252a11c3a775d3178b69a016906c750e3b68991eeddd05228f042ec936ad7d52e2b876093df59d4703e92b1cbaff199b621fd588b8e6c0cf7cf3fc6e7760a467154a26b4cb32bbda09038aeb392d54930b72c0849fd35339041973aae0a16892168e2141fe2b1919f94a92a928c6be0f6c5dc3e8c8ca88b28693231204b8d177b894774aa386fd759244366dedeecca19da420052ea8283cddbe50e25bea901c3a0e9399fdd17d7c03796ae5a30ffdd796b8f56a7e4ab1b7bc04405e856b1851112c28a94a2489a606bbd787f98df7bf6d03a5f9d02760134852023fd862aba5f52af4da19c", &(0x7f0000001a40)=""/4096, 0x80000001, 0x0, 0xdd, 0x0, &(0x7f0000000880)="808c0f263885bd930aaaaa23794a11b96400683e21a6b8bbef4d6af7b86c42475467a9dd73fd5f05a06b01143dd81b8dd0ed95924a4f49d722c35bddc73af70e1102518bab80a13a09945fbd05a781e9806d04450888db08640dbf7aab39c3696f938445d4d55aae69431013d4ce34e40d6fb0f67f27597db0410bac28846c6e0c192bd835d4f4878c479d1d4025853bdaf372ca0631cc648f87211b07ccb1bf44831f439f2ef1c079dc135e3884c1979db2f0cd5524d90c6bb67edaa15e5f876a5996497085e1c014a18a0b26a91aadd5cba38afe4313740be9b247f5", &(0x7f0000002a40), 0x3}, 0x50) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) timer_create(0x0, 0x0, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r5, &(0x7f0000004740)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x380000}, 0x1c) sendmmsg$inet6(r5, &(0x7f0000004780), 0x0, 0x24050005) 1.272734524s ago: executing program 5 (id=1043): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000040), &(0x7f0000000280)='%pS \x00'}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6c, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='kfree\x00', r1}, 0x10) r2 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x20000) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xd, 0x7f}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r4 = getpid() sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) r7 = socket$pppl2tp(0x18, 0x1, 0x1) r8 = socket$pppl2tp(0x18, 0x1, 0x1) r9 = socket$inet_udp(0x2, 0x2, 0x0) connect$pppl2tp(r8, &(0x7f0000000980)=@pppol2tpin6={0x18, 0x1, {0x0, r9, 0x1, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @local}}}, 0x32) connect$pppl2tp(r7, &(0x7f0000000980)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}, 0x1, 0x3}}, 0x26) getsockopt$bt_BT_SECURITY(r7, 0x111, 0x5, 0x0, 0x20001f00) socket$nl_route(0x10, 0x3, 0x0) bind$bt_l2cap(r3, &(0x7f0000000340)={0x1f, 0x100}, 0xe) setsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0xf, 0x0, 0x0) syz_usb_disconnect(r2) 505.763651ms ago: executing program 4 (id=1044): r0 = socket$inet_smc(0x2b, 0x1, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed7f0000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f00000000c0)=@broute={'broute\x00', 0x20, 0x1, 0x220, [0x0, 0x0, 0x0, 0x0, 0x96f0, 0x20000500], 0x7, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="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"/544]}, 0x298) 488.329791ms ago: executing program 2 (id=1045): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000100)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000006a40)={0x3, 0x40, 0xfa00, {{0x6000000, 0x0, 0x0, @private0}, {0xa, 0x0, 0x0, @loopback={0xfec0ffff00000000, 0x8e84fffef67c07}}, r1, 0x529}}, 0x48) 437.945411ms ago: executing program 3 (id=1046): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xa, 0x1, 0x201, 0x8, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000002380)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000480)={{r0}, &(0x7f0000000400), &(0x7f0000000440)=r1}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000002180)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) 0s ago: executing program 4 (id=1047): r0 = socket$pppl2tp(0x18, 0x1, 0x1) connect$pppl2tp(r0, &(0x7f0000000980)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @empty}, 0x1, 0x3}}, 0x26) getsockopt$bt_BT_SECURITY(r0, 0x111, 0x5, 0x0, 0x20001f00) kernel console output (not intermixed with test programs): n fsck. [ 119.741596][ T4914] loop1: detected capacity change from 0 to 128 [ 119.893951][ T4915] syz.1.210: attempt to access beyond end of device [ 119.893951][ T4915] loop1: rw=2049, sector=145, nr_sectors = 152 limit=128 [ 120.000804][ T4914] syz.1.210: attempt to access beyond end of device [ 120.000804][ T4914] loop1: rw=524288, sector=145, nr_sectors = 152 limit=128 [ 120.080387][ T4922] netlink: 28 bytes leftover after parsing attributes in process `syz.0.213'. [ 120.106429][ T4922] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 120.145718][ T4922] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 120.161834][ T4922] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 120.173363][ T4922] device bridge_slave_0 left promiscuous mode [ 120.190871][ T4922] bridge0: port 1(bridge_slave_0) entered disabled state [ 120.253943][ T4922] device bridge_slave_1 left promiscuous mode [ 120.277669][ T4922] bridge0: port 2(bridge_slave_1) entered disabled state [ 120.325880][ T4922] bond0: (slave bond_slave_0): Releasing backup interface [ 120.367622][ T4922] bond0: (slave bond_slave_1): Releasing backup interface [ 120.521687][ T4922] team0: Port device team_slave_0 removed [ 120.584778][ T4922] team0: Port device team_slave_1 removed [ 120.591650][ T4922] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 120.599193][ T4922] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 120.608360][ T4922] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 120.616269][ T4922] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 120.781394][ T4934] loop3: detected capacity change from 0 to 256 [ 123.806665][ T27] kauditd_printk_skb: 49 callbacks suppressed [ 123.806683][ T27] audit: type=1326 audit(1738734449.595:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4974 comm="syz.0.235" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x0 [ 125.503251][ T5005] loop4: detected capacity change from 0 to 512 [ 127.403513][ T5005] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 127.426547][ T5002] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1 [ 127.586262][ T5012] sd 0:0:1:0: device reset [ 127.717113][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 127.840382][ T5020] loop0: detected capacity change from 0 to 512 [ 127.936380][ T5020] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 128.090072][ T5030] loop3: detected capacity change from 0 to 2048 [ 128.108935][ T5020] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 128.479840][ T5030] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 128.614945][ T5030] ext4 filesystem being mounted at /54/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 128.632249][ T5035] device wireguard0 entered promiscuous mode [ 128.958169][ T5020] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #2: comm syz.0.244: corrupted inode contents [ 129.026023][ T5020] EXT4-fs error (device loop0): ext4_dirty_inode:6089: inode #2: comm syz.0.244: mark_inode_dirty error [ 129.048492][ T5020] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #2: comm syz.0.244: corrupted inode contents [ 129.236961][ T4265] EXT4-fs (loop0): unmounting filesystem. [ 129.434363][ T5048] netlink: 16 bytes leftover after parsing attributes in process `syz.1.253'. [ 129.798883][ T5064] sd 0:0:1:0: device reset [ 130.186020][ T5066] device wireguard0 entered promiscuous mode [ 130.659947][ T5029] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 131.555196][ T5085] device wireguard0 entered promiscuous mode [ 132.640328][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.646792][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.684957][ T5090] netlink: 16 bytes leftover after parsing attributes in process `syz.1.268'. [ 133.287341][ T27] audit: type=1326 audit(1738734459.085:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5109 comm="syz.2.276" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 133.513791][ T5116] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 134.238372][ T5121] sd 0:0:1:0: device reset [ 135.174445][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 135.697363][ T5136] device wireguard0 entered promiscuous mode [ 136.073078][ T27] audit: type=1326 audit(1738734461.875:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 136.137699][ T27] audit: type=1326 audit(1738734461.875:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 136.212665][ T27] audit: type=1326 audit(1738734461.895:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 136.305695][ T27] audit: type=1326 audit(1738734461.905:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 136.512764][ T27] audit: type=1326 audit(1738734461.905:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 136.545673][ T27] audit: type=1326 audit(1738734461.905:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 136.596280][ T27] audit: type=1326 audit(1738734461.905:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 138.853020][ T27] audit: type=1326 audit(1738734461.905:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5151 comm="syz.2.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 139.137844][ T27] audit: type=1326 audit(1738734464.925:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5173 comm="syz.0.296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 139.165118][ T27] audit: type=1326 audit(1738734464.925:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5173 comm="syz.0.296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 141.220829][ T27] audit: type=1326 audit(1738734464.925:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5173 comm="syz.0.296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 141.316196][ T27] audit: type=1326 audit(1738734464.925:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5173 comm="syz.0.296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 141.338508][ T27] audit: type=1326 audit(1738734464.925:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5173 comm="syz.0.296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 141.668677][ T5197] netlink: 244 bytes leftover after parsing attributes in process `syz.3.302'. [ 143.716669][ T5214] device syzkaller0 entered promiscuous mode [ 143.986215][ T5232] netlink: 12 bytes leftover after parsing attributes in process `syz.1.316'. [ 144.334330][ T27] audit: type=1326 audit(1738734470.135:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5233 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 144.855669][ T27] audit: type=1326 audit(1738734470.185:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5233 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 144.898033][ T27] audit: type=1326 audit(1738734470.195:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5233 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 145.011572][ T27] audit: type=1326 audit(1738734470.205:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5233 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 145.095111][ T27] audit: type=1326 audit(1738734470.205:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5233 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 145.168617][ T27] audit: type=1326 audit(1738734470.215:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5233 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 145.233355][ T27] audit: type=1326 audit(1738734470.375:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5233 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 145.295021][ T27] audit: type=1326 audit(1738734470.395:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5233 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 145.340247][ T27] audit: type=1326 audit(1738734470.395:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5233 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 145.381410][ T27] audit: type=1326 audit(1738734470.445:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5233 comm="syz.2.315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 146.711872][ T5239] netlink: 20 bytes leftover after parsing attributes in process `syz.2.315'. [ 146.723208][ T5239] netlink: 8 bytes leftover after parsing attributes in process `syz.2.315'. [ 150.571524][ T5291] loop1: detected capacity change from 0 to 256 [ 152.540937][ T5296] loop4: detected capacity change from 0 to 512 [ 152.555062][ T5296] EXT4-fs: Ignoring removed mblk_io_submit option [ 152.711341][ T5296] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.332: inode #1: comm syz.4.332: iget: illegal inode # [ 152.735326][ T5296] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.332: error while reading EA inode 1 err=-117 [ 152.802693][ T5296] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.332: inode #1: comm syz.4.332: iget: illegal inode # [ 152.824124][ T27] kauditd_printk_skb: 8 callbacks suppressed [ 152.824140][ T27] audit: type=1326 audit(1738734478.625:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5299 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 152.827884][ T5296] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.332: error while reading EA inode 1 err=-117 [ 152.852603][ T27] audit: type=1326 audit(1738734478.635:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5299 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 152.855520][ T5296] EXT4-fs (loop4): 1 orphan inode deleted [ 152.883158][ T27] audit: type=1326 audit(1738734478.635:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5299 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 153.005551][ T27] audit: type=1326 audit(1738734478.635:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5299 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 153.071193][ T5296] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 153.081510][ T27] audit: type=1326 audit(1738734478.635:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5299 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 153.103950][ T27] audit: type=1326 audit(1738734478.635:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5299 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 153.126344][ T27] audit: type=1326 audit(1738734478.805:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5299 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 153.144892][ T5302] device syzkaller0 entered promiscuous mode [ 153.167046][ T27] audit: type=1326 audit(1738734478.805:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5299 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 153.472359][ T27] audit: type=1326 audit(1738734478.805:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5299 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 153.497677][ T27] audit: type=1326 audit(1738734478.845:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5299 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 153.523481][ T5311] netlink: 20 bytes leftover after parsing attributes in process `syz.2.333'. [ 153.740582][ T5311] netlink: 8 bytes leftover after parsing attributes in process `syz.2.333'. [ 153.806410][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 154.000870][ T5318] netlink: 56 bytes leftover after parsing attributes in process `syz.1.337'. [ 154.241043][ T4264] Bluetooth: hci5: command 0x1003 tx timeout [ 154.248578][ T4260] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 157.602626][ T5343] netlink: 4 bytes leftover after parsing attributes in process `syz.0.345'. [ 157.982516][ T5347] loop4: detected capacity change from 0 to 256 [ 161.593677][ T5376] loop4: detected capacity change from 0 to 512 [ 161.621663][ T5376] EXT4-fs: Ignoring removed mblk_io_submit option [ 161.739858][ T27] kauditd_printk_skb: 8 callbacks suppressed [ 161.739874][ T27] audit: type=1326 audit(1738734487.545:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.1.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 161.817957][ T27] audit: type=1326 audit(1738734487.575:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.1.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 161.835320][ T5376] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.356: inode #1: comm syz.4.356: iget: illegal inode # [ 161.867666][ T5386] netlink: 20 bytes leftover after parsing attributes in process `syz.1.357'. [ 161.870509][ T27] audit: type=1326 audit(1738734487.575:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.1.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 161.877590][ T5376] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.356: error while reading EA inode 1 err=-117 [ 161.956430][ T5386] netlink: 8 bytes leftover after parsing attributes in process `syz.1.357'. [ 162.032385][ T5387] loop2: detected capacity change from 0 to 256 [ 162.284393][ T27] audit: type=1326 audit(1738734487.575:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.1.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 162.411652][ T5376] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.356: inode #1: comm syz.4.356: iget: illegal inode # [ 162.597092][ T5376] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.356: error while reading EA inode 1 err=-117 [ 162.649009][ T27] audit: type=1326 audit(1738734487.575:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.1.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 162.698119][ T27] audit: type=1326 audit(1738734487.575:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.1.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 162.720683][ T5376] EXT4-fs (loop4): 1 orphan inode deleted [ 162.726526][ T5376] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 162.736065][ T27] audit: type=1326 audit(1738734487.635:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.1.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 162.759236][ T27] audit: type=1326 audit(1738734487.635:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.1.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 162.805241][ T4260] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 162.811819][ T4264] Bluetooth: hci5: command 0x1003 tx timeout [ 162.867396][ T27] audit: type=1326 audit(1738734487.635:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.1.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 162.898960][ T27] audit: type=1326 audit(1738734487.635:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.1.357" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 162.936307][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 164.168187][ T5405] netlink: 4 bytes leftover after parsing attributes in process `syz.2.364'. [ 164.509458][ T5418] capability: warning: `syz.0.370' uses deprecated v2 capabilities in a way that may be insecure [ 164.701607][ T5419] device wireguard0 entered promiscuous mode [ 166.910986][ T5435] loop2: detected capacity change from 0 to 256 [ 168.546716][ T27] kauditd_printk_skb: 8 callbacks suppressed [ 168.546732][ T27] audit: type=1326 audit(1738734494.345:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.1.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 168.654042][ T27] audit: type=1326 audit(1738734494.345:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.1.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 168.683533][ T27] audit: type=1326 audit(1738734494.355:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.1.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 168.887074][ T27] audit: type=1326 audit(1738734494.355:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.1.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 168.910094][ T5453] netlink: 20 bytes leftover after parsing attributes in process `syz.3.379'. [ 168.954435][ T5453] netlink: 8 bytes leftover after parsing attributes in process `syz.3.379'. [ 168.964344][ T4260] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 168.972592][ T27] audit: type=1326 audit(1738734494.355:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.1.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 169.180806][ T27] audit: type=1326 audit(1738734494.355:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.1.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 169.270130][ T5461] netlink: 16 bytes leftover after parsing attributes in process `syz.4.381'. [ 169.283829][ T27] audit: type=1326 audit(1738734494.355:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.1.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 169.324819][ T5462] netlink: 4 bytes leftover after parsing attributes in process `syz.0.382'. [ 169.414879][ T5464] loop1: detected capacity change from 0 to 512 [ 169.427117][ T27] audit: type=1326 audit(1738734494.355:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.1.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 169.449745][ T27] audit: type=1326 audit(1738734494.355:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.1.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 169.472644][ T27] audit: type=1326 audit(1738734494.355:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5445 comm="syz.1.378" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 169.598636][ T5464] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.383: bg 0: block 248: padding at end of block bitmap is not set [ 169.650184][ T5464] EXT4-fs error (device loop1): ext4_acquire_dquot:6795: comm syz.1.383: Failed to acquire dquot type 1 [ 169.715761][ T5464] EXT4-fs (loop1): 1 truncate cleaned up [ 169.736114][ T5464] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 169.745547][ T5464] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 169.950877][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 171.942535][ T5477] loop3: detected capacity change from 0 to 256 [ 173.498897][ T5497] netlink: 8 bytes leftover after parsing attributes in process `syz.4.394'. [ 173.598367][ T5499] netlink: 16 bytes leftover after parsing attributes in process `syz.3.396'. [ 173.738174][ T5503] netlink: 'syz.4.398': attribute type 4 has an invalid length. [ 173.823972][ T5506] netlink: 'syz.4.398': attribute type 4 has an invalid length. [ 174.408918][ T5514] loop1: detected capacity change from 0 to 256 [ 175.527135][ T5517] netlink: 4 bytes leftover after parsing attributes in process `syz.0.401'. [ 175.928726][ T5530] netlink: 8 bytes leftover after parsing attributes in process `syz.0.408'. [ 176.196548][ T27] kauditd_printk_skb: 35 callbacks suppressed [ 176.224400][ T27] audit: type=1326 audit(1738734501.995:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5535 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 176.262633][ T5542] netlink: 20 bytes leftover after parsing attributes in process `syz.0.411'. [ 176.290302][ T5542] netlink: 8 bytes leftover after parsing attributes in process `syz.0.411'. [ 176.294273][ T5543] serio: Serial port ptm2 [ 176.309649][ T27] audit: type=1326 audit(1738734502.005:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5535 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 176.347758][ T27] audit: type=1326 audit(1738734502.005:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5535 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 176.353889][ T5545] sd 0:0:1:0: device reset [ 176.370649][ T27] audit: type=1326 audit(1738734502.005:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5535 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 176.398717][ T27] audit: type=1326 audit(1738734502.005:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5535 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 176.423520][ T27] audit: type=1326 audit(1738734502.005:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5535 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 176.446406][ T27] audit: type=1326 audit(1738734502.005:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5535 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 176.505969][ T27] audit: type=1326 audit(1738734502.065:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5535 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 176.572897][ T27] audit: type=1326 audit(1738734502.065:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5535 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 176.597833][ T27] audit: type=1326 audit(1738734502.065:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5535 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 176.985836][ T5558] loop1: detected capacity change from 0 to 256 [ 177.197859][ T4264] Bluetooth: hci5: command 0x1003 tx timeout [ 177.197908][ T4260] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 177.640116][ T5560] netlink: 4 bytes leftover after parsing attributes in process `syz.4.418'. [ 177.764219][ T5569] netlink: 16 bytes leftover after parsing attributes in process `syz.3.419'. [ 177.832772][ T5571] netlink: 8 bytes leftover after parsing attributes in process `syz.0.421'. [ 178.283692][ T5584] mmap: syz.1.426 (5584) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 178.619871][ T5585] device wireguard0 entered promiscuous mode [ 179.565253][ T5596] device ip6gre1 entered promiscuous mode [ 179.959098][ T5119] Bluetooth: Error in BCSP hdr checksum [ 180.019951][ T5596] loop3: detected capacity change from 0 to 164 [ 180.798967][ T5605] loop2: detected capacity change from 0 to 256 [ 182.567486][ T4260] Bluetooth: hci5: command 0x1003 tx timeout [ 182.573990][ T4264] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 183.216101][ T5615] netlink: 8 bytes leftover after parsing attributes in process `syz.4.434'. [ 183.227030][ T5616] netlink: 4 bytes leftover after parsing attributes in process `syz.3.435'. [ 183.433584][ T5622] netlink: 16 bytes leftover after parsing attributes in process `syz.0.438'. [ 183.933641][ T5636] syz.0.445[5636] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 183.933761][ T5636] syz.0.445[5636] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 187.464819][ T5655] loop3: detected capacity change from 0 to 256 [ 189.830857][ T4264] Bluetooth: hci5: command 0x1003 tx timeout [ 189.843199][ T4260] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 190.257564][ T5664] netlink: 8 bytes leftover after parsing attributes in process `syz.1.452'. [ 190.697958][ T27] kauditd_printk_skb: 11 callbacks suppressed [ 190.697975][ T27] audit: type=1326 audit(1738734516.505:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5677 comm="syz.3.460" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x0 [ 190.765133][ T5684] netlink: 4 bytes leftover after parsing attributes in process `syz.2.459'. [ 190.790236][ T5682] syz.4.461 uses obsolete (PF_INET,SOCK_PACKET) [ 191.115671][ T5688] device wireguard0 entered promiscuous mode [ 191.708701][ T5686] loop3: detected capacity change from 0 to 2048 [ 194.387427][ T5705] loop0: detected capacity change from 0 to 256 [ 194.422674][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.434302][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.739028][ T5686] EXT4-fs: error -4 creating inode table initialization thread [ 194.751800][ T5686] EXT4-fs (loop3): mount failed [ 194.842628][ T5717] netlink: 8 bytes leftover after parsing attributes in process `syz.4.468'. [ 195.198560][ T5731] loop0: detected capacity change from 0 to 1024 [ 195.276293][ T5731] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 195.367681][ T27] audit: type=1326 audit(1738734521.175:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 195.447260][ T5743] netlink: 20 bytes leftover after parsing attributes in process `syz.3.478'. [ 195.487988][ T27] audit: type=1326 audit(1738734521.175:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 195.611593][ T5743] netlink: 8 bytes leftover after parsing attributes in process `syz.3.478'. [ 195.626420][ T5746] loop2: detected capacity change from 0 to 164 [ 195.640178][ T27] audit: type=1326 audit(1738734521.175:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 195.666063][ T27] audit: type=1326 audit(1738734521.195:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 195.910419][ T27] audit: type=1326 audit(1738734521.195:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 196.668777][ T4266] Bluetooth: hci3: command 0x0406 tx timeout [ 196.675858][ T4260] Bluetooth: hci1: command 0x0406 tx timeout [ 196.676442][ T4264] Bluetooth: hci0: command 0x0406 tx timeout [ 196.689441][ T4264] Bluetooth: hci4: command 0x0406 tx timeout [ 196.695885][ T4266] Bluetooth: hci2: command 0x0406 tx timeout [ 196.964555][ T27] audit: type=1326 audit(1738734521.195:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 197.062849][ T27] audit: type=1326 audit(1738734521.245:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 197.161824][ T27] audit: type=1326 audit(1738734521.245:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 197.216639][ T27] audit: type=1326 audit(1738734521.245:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 197.253094][ T27] audit: type=1326 audit(1738734521.245:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 197.281727][ T27] audit: type=1326 audit(1738734521.245:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 197.299613][ T75] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 197.304482][ T27] audit: type=1326 audit(1738734521.245:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 197.351425][ T27] audit: type=1326 audit(1738734521.245:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 197.396136][ T75] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 197.406299][ T27] audit: type=1326 audit(1738734521.245:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5737 comm="syz.3.478" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 197.410266][ T75] EXT4-fs (loop0): This should not happen!! Data will be lost [ 197.410266][ T75] [ 197.441374][ T75] EXT4-fs (loop0): Total free blocks count 0 [ 197.477908][ T75] EXT4-fs (loop0): Free/Dirty block details [ 197.483902][ T75] EXT4-fs (loop0): free_blocks=68451041280 [ 197.550802][ T75] EXT4-fs (loop0): dirty_blocks=2704 [ 197.556147][ T75] EXT4-fs (loop0): Block reservation details [ 197.580499][ T75] EXT4-fs (loop0): i_reserved_data_blocks=169 [ 197.699233][ T75] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 644 with error 28 [ 197.875553][ T5768] loop1: detected capacity change from 0 to 164 [ 197.968762][ T5772] loop4: detected capacity change from 0 to 128 [ 198.021290][ T5772] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 198.051427][ T5772] ext4 filesystem being mounted at /103/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 198.280976][ T5783] sd 0:0:1:0: device reset [ 199.386291][ T5799] netlink: 20 bytes leftover after parsing attributes in process `syz.0.497'. [ 199.406110][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 199.426602][ T5799] netlink: 8 bytes leftover after parsing attributes in process `syz.0.497'. [ 200.070004][ T5822] sd 0:0:1:0: device reset [ 201.280798][ T27] kauditd_printk_skb: 26 callbacks suppressed [ 201.280813][ T27] audit: type=1326 audit(1738734527.065:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5833 comm="syz.1.509" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x0 [ 203.790814][ T27] audit: type=1326 audit(1738734529.595:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5864 comm="syz.0.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 203.875154][ T5873] netlink: 20 bytes leftover after parsing attributes in process `syz.0.520'. [ 203.897426][ T27] audit: type=1326 audit(1738734529.625:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5864 comm="syz.0.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 203.976134][ T5873] netlink: 8 bytes leftover after parsing attributes in process `syz.0.520'. [ 203.996286][ T27] audit: type=1326 audit(1738734529.625:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5864 comm="syz.0.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 204.189242][ T27] audit: type=1326 audit(1738734529.625:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5864 comm="syz.0.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 204.211964][ T27] audit: type=1326 audit(1738734529.625:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5864 comm="syz.0.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 204.289640][ T5881] loop3: detected capacity change from 0 to 512 [ 204.479706][ T27] audit: type=1326 audit(1738734529.625:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5864 comm="syz.0.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 204.967955][ T5881] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 204.981346][ T5881] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 1 [ 204.998677][ T27] audit: type=1326 audit(1738734529.675:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5864 comm="syz.0.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 205.121377][ T27] audit: type=1326 audit(1738734529.675:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5864 comm="syz.0.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 205.144234][ T27] audit: type=1326 audit(1738734529.675:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5864 comm="syz.0.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f10d638cde9 code=0x7ffc0000 [ 205.145573][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 206.805682][ T5911] netlink: 4 bytes leftover after parsing attributes in process `syz.3.533'. [ 207.905965][ T5924] loop0: detected capacity change from 0 to 512 [ 208.091492][ T5924] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 209.300940][ T4265] EXT4-fs (loop0): unmounting filesystem. [ 211.229051][ T5962] netlink: 4 bytes leftover after parsing attributes in process `syz.2.551'. [ 211.301133][ T27] kauditd_printk_skb: 9 callbacks suppressed [ 211.301148][ T27] audit: type=1326 audit(1738734537.105:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5963 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f573a783da7 code=0x7ffc0000 [ 211.357173][ T27] audit: type=1326 audit(1738734537.135:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5963 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f573a728fb9 code=0x7ffc0000 [ 211.596339][ T5976] netlink: 20 bytes leftover after parsing attributes in process `syz.4.557'. [ 211.624982][ T27] audit: type=1326 audit(1738734537.135:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5963 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 211.657378][ T5976] netlink: 8 bytes leftover after parsing attributes in process `syz.4.557'. [ 211.676420][ T27] audit: type=1326 audit(1738734537.135:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5963 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f573a783da7 code=0x7ffc0000 [ 211.723089][ T27] audit: type=1326 audit(1738734537.135:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5963 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f573a728fb9 code=0x7ffc0000 [ 211.784783][ T27] audit: type=1326 audit(1738734537.135:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5963 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 211.997591][ T27] audit: type=1326 audit(1738734537.135:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5963 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f573a783da7 code=0x7ffc0000 [ 212.075134][ T27] audit: type=1326 audit(1738734537.145:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5963 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f573a728fb9 code=0x7ffc0000 [ 212.238499][ T27] audit: type=1326 audit(1738734537.145:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5963 comm="syz.4.553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 212.876620][ T27] audit: type=1326 audit(1738734537.345:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5971 comm="syz.4.557" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 213.145740][ T5998] loop0: detected capacity change from 0 to 512 [ 213.269168][ T5998] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 214.172162][ T6007] netlink: 16 bytes leftover after parsing attributes in process `syz.4.566'. [ 215.561411][ T6026] 9pnet_fd: Insufficient options for proto=fd [ 216.573999][ T6037] loop4: detected capacity change from 0 to 512 [ 216.631925][ T6037] EXT4-fs: Ignoring removed mblk_io_submit option [ 216.715260][ T6037] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.577: inode #1: comm syz.4.577: iget: illegal inode # [ 216.776046][ T6037] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.577: error while reading EA inode 1 err=-117 [ 216.806398][ T6037] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.577: inode #1: comm syz.4.577: iget: illegal inode # [ 216.891028][ T6037] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.577: error while reading EA inode 1 err=-117 [ 216.938279][ T6037] EXT4-fs (loop4): 1 orphan inode deleted [ 216.954331][ T6037] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 217.059746][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 217.075543][ T6047] loop2: detected capacity change from 0 to 512 [ 217.158786][ T6047] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 217.282000][ T6054] netlink: 16 bytes leftover after parsing attributes in process `syz.4.582'. [ 217.636867][ T6062] netlink: 12 bytes leftover after parsing attributes in process `syz.3.585'. [ 218.952633][ T6074] loop3: detected capacity change from 0 to 256 [ 219.018488][ T6074] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 219.333001][ T6081] loop1: detected capacity change from 0 to 512 [ 219.362655][ T6081] EXT4-fs: Ignoring removed mblk_io_submit option [ 219.402115][ T6081] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.593: inode #1: comm syz.1.593: iget: illegal inode # [ 219.417910][ T6081] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.593: error while reading EA inode 1 err=-117 [ 219.477247][ T6081] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.593: inode #1: comm syz.1.593: iget: illegal inode # [ 219.494486][ T4262] EXT4-fs (loop2): unmounting filesystem. [ 219.512610][ T6081] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.593: error while reading EA inode 1 err=-117 [ 219.599185][ T6081] EXT4-fs (loop1): 1 orphan inode deleted [ 219.605016][ T6081] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 219.755951][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 219.888472][ T6095] netlink: 12 bytes leftover after parsing attributes in process `syz.2.600'. [ 219.898121][ T6098] netlink: 16 bytes leftover after parsing attributes in process `syz.1.599'. [ 220.935897][ T6103] loop2: detected capacity change from 0 to 1024 [ 221.021913][ T6103] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 221.247633][ T4262] EXT4-fs (loop2): unmounting filesystem. [ 222.026830][ T4302] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 222.261469][ T4302] usb 5-1: device descriptor read/64, error -71 [ 222.566970][ T4302] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 222.722550][ T6120] loop1: detected capacity change from 0 to 512 [ 222.736997][ T4302] usb 5-1: device descriptor read/64, error -71 [ 222.772497][ T6120] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 222.871449][ T4302] usb usb5-port1: attempt power cycle [ 222.953058][ T6125] loop3: detected capacity change from 0 to 512 [ 222.960668][ T6125] EXT4-fs: Ignoring removed mblk_io_submit option [ 222.985030][ T6125] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.609: inode #1: comm syz.3.609: iget: illegal inode # [ 223.027229][ T6125] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.609: error while reading EA inode 1 err=-117 [ 223.049800][ T6125] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.609: inode #1: comm syz.3.609: iget: illegal inode # [ 223.084612][ T6125] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.609: error while reading EA inode 1 err=-117 [ 223.127507][ T6125] EXT4-fs (loop3): 1 orphan inode deleted [ 223.133312][ T6125] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 223.275039][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 223.326731][ T4302] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 223.365469][ T4302] usb 5-1: device descriptor read/8, error -71 [ 223.470811][ T6134] netlink: 108 bytes leftover after parsing attributes in process `syz.3.612'. [ 223.522651][ T27] kauditd_printk_skb: 19 callbacks suppressed [ 223.522668][ T27] audit: type=1326 audit(1738734549.325:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 223.601982][ T27] audit: type=1326 audit(1738734549.325:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 223.607861][ T6137] netlink: 20 bytes leftover after parsing attributes in process `syz.2.613'. [ 223.636757][ T4302] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 223.687601][ T4302] usb 5-1: device descriptor read/8, error -71 [ 223.716271][ T27] audit: type=1326 audit(1738734549.335:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 223.745717][ T6137] netlink: 8 bytes leftover after parsing attributes in process `syz.2.613'. [ 223.778711][ T27] audit: type=1326 audit(1738734549.335:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 223.806842][ T4302] usb usb5-port1: unable to enumerate USB device [ 223.848880][ T27] audit: type=1326 audit(1738734549.335:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 223.948543][ T27] audit: type=1326 audit(1738734549.335:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 223.971429][ T27] audit: type=1326 audit(1738734549.335:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 223.996502][ T27] audit: type=1326 audit(1738734549.335:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 224.025167][ T27] audit: type=1326 audit(1738734549.335:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 224.685945][ T27] audit: type=1326 audit(1738734549.405:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.2.613" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 225.324439][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 225.734049][ T6166] loop1: detected capacity change from 0 to 512 [ 225.817961][ T6166] EXT4-fs: Ignoring removed mblk_io_submit option [ 225.892634][ T6168] loop2: detected capacity change from 0 to 512 [ 225.908136][ T6166] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.622: inode #1: comm syz.1.622: iget: illegal inode # [ 225.922690][ T6166] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.622: error while reading EA inode 1 err=-117 [ 226.010502][ T6166] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.622: inode #1: comm syz.1.622: iget: illegal inode # [ 226.067931][ T6166] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.622: error while reading EA inode 1 err=-117 [ 226.228346][ T6168] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 226.308112][ T6166] EXT4-fs (loop1): 1 orphan inode deleted [ 226.340982][ T6168] ext4 filesystem being mounted at /120/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 226.424425][ T6166] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 226.790449][ T6171] device wireguard0 entered promiscuous mode [ 226.880552][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 227.832083][ T4262] EXT4-fs (loop2): unmounting filesystem. [ 228.015780][ T6190] loop1: detected capacity change from 0 to 512 [ 228.046018][ T6190] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 228.179972][ T6197] netlink: 20 bytes leftover after parsing attributes in process `syz.2.628'. [ 228.225987][ T6197] netlink: 8 bytes leftover after parsing attributes in process `syz.2.628'. [ 229.509841][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 229.863320][ T6215] loop2: detected capacity change from 0 to 512 [ 230.503434][ T6227] loop1: detected capacity change from 0 to 256 [ 233.744801][ T6215] EXT4-fs: failed to create workqueue [ 233.780810][ T6215] EXT4-fs (loop2): mount failed [ 235.048480][ T6231] device wireguard0 entered promiscuous mode [ 235.677995][ T4266] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 235.693129][ T4260] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 235.702140][ T4266] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 235.716343][ T4260] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 235.742325][ T4260] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3 [ 235.756898][ T4260] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 235.771404][ T27] kauditd_printk_skb: 34 callbacks suppressed [ 235.771416][ T27] audit: type=1326 audit(1738734561.575:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.1.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 235.800576][ T27] audit: type=1326 audit(1738734561.575:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.1.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 235.825452][ T27] audit: type=1326 audit(1738734561.585:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.1.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 235.849377][ T27] audit: type=1326 audit(1738734561.595:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.1.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 235.872112][ T27] audit: type=1326 audit(1738734561.595:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.1.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 235.894961][ T27] audit: type=1326 audit(1738734561.595:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.1.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 235.903413][ T6258] netlink: 20 bytes leftover after parsing attributes in process `syz.1.649'. [ 235.920336][ T6255] loop3: detected capacity change from 0 to 512 [ 235.932602][ T27] audit: type=1326 audit(1738734561.595:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.1.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 235.966634][ T6258] netlink: 8 bytes leftover after parsing attributes in process `syz.1.649'. [ 236.013862][ T27] audit: type=1326 audit(1738734561.595:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.1.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 236.073269][ T6255] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 236.312927][ T27] audit: type=1326 audit(1738734561.595:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.1.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 236.737718][ T27] audit: type=1326 audit(1738734561.655:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6252 comm="syz.1.649" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 237.846760][ T4260] Bluetooth: hci5: command 0x0409 tx timeout [ 238.615746][ T6250] chnl_net:caif_netlink_parms(): no params data found [ 239.209738][ T6250] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.253892][ T6250] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.264349][ T6250] device bridge_slave_0 entered promiscuous mode [ 239.340331][ T6250] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.366271][ T6250] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.425288][ T6250] device bridge_slave_1 entered promiscuous mode [ 240.618606][ T4260] Bluetooth: hci5: command 0x041b tx timeout [ 240.678521][ T6250] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 240.784107][ T6250] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 240.846375][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 241.002460][ T6310] sd 0:0:1:0: device reset [ 241.035254][ T6250] team0: Port device team_slave_0 added [ 241.093946][ T6250] team0: Port device team_slave_1 added [ 241.298156][ T6250] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 241.328422][ T6250] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.355568][ T6319] loop1: detected capacity change from 0 to 512 [ 241.362369][ T6250] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 241.383306][ T27] kauditd_printk_skb: 11 callbacks suppressed [ 241.383323][ T27] audit: type=1326 audit(1738734567.185:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6315 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 241.458406][ T6250] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 241.465561][ T6250] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 241.550939][ T6324] loop4: detected capacity change from 0 to 256 [ 241.742601][ T6319] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 242.057376][ T6319] ext4 filesystem being mounted at /135/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 242.088482][ T27] audit: type=1326 audit(1738734567.185:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6315 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 242.131139][ T6250] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 242.198533][ T27] audit: type=1326 audit(1738734567.185:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6315 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 242.229840][ T6325] netlink: 20 bytes leftover after parsing attributes in process `syz.3.664'. [ 242.256725][ T27] audit: type=1326 audit(1738734567.185:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6315 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 242.272068][ T6325] netlink: 8 bytes leftover after parsing attributes in process `syz.3.664'. [ 242.328623][ T27] audit: type=1326 audit(1738734567.185:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6315 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 242.352649][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 242.382546][ T27] audit: type=1326 audit(1738734567.185:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6315 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 242.425010][ T27] audit: type=1326 audit(1738734567.185:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6315 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 242.448559][ T27] audit: type=1326 audit(1738734567.875:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6315 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 242.471338][ T27] audit: type=1326 audit(1738734567.875:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6315 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 242.493782][ T27] audit: type=1326 audit(1738734567.875:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6315 comm="syz.3.664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 242.642235][ T4256] Bluetooth: hci5: command 0x040f tx timeout [ 243.395049][ T6250] device hsr_slave_0 entered promiscuous mode [ 243.639136][ T6250] device hsr_slave_1 entered promiscuous mode [ 243.674913][ T6250] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 243.959217][ T6250] Cannot create hsr debugfs directory [ 244.576403][ T6344] netlink: 4 bytes leftover after parsing attributes in process `syz.2.671'. [ 244.591178][ T6354] sd 0:0:1:0: device reset [ 244.662299][ T6356] loop3: detected capacity change from 0 to 512 [ 244.704441][ T6352] netlink: 16 bytes leftover after parsing attributes in process `syz.4.672'. [ 244.717244][ T4256] Bluetooth: hci5: command 0x0419 tx timeout [ 244.790749][ T6356] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 245.373552][ T6368] loop2: detected capacity change from 0 to 256 [ 245.967019][ T6250] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 246.038537][ T6250] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 246.123143][ T6250] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 246.147713][ T6370] loop1: detected capacity change from 0 to 512 [ 246.185151][ T6250] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 246.257880][ T6370] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 246.348904][ T6370] ext4 filesystem being mounted at /140/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 246.522651][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 246.535845][ T27] kauditd_printk_skb: 15 callbacks suppressed [ 246.535862][ T27] audit: type=1326 audit(1738734572.335:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.2.680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 246.607818][ T27] audit: type=1326 audit(1738734572.345:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.2.680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 246.645226][ T6250] 8021q: adding VLAN 0 to HW filter on device bond0 [ 246.682841][ T6383] netlink: 20 bytes leftover after parsing attributes in process `syz.2.680'. [ 246.701985][ T27] audit: type=1326 audit(1738734572.375:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.2.680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 246.733621][ T6383] netlink: 8 bytes leftover after parsing attributes in process `syz.2.680'. [ 246.761586][ T27] audit: type=1326 audit(1738734572.375:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.2.680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 246.810257][ T27] audit: type=1326 audit(1738734572.375:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.2.680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 246.859294][ T27] audit: type=1326 audit(1738734572.375:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.2.680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 246.910346][ T27] audit: type=1326 audit(1738734572.435:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.2.680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 246.979467][ T27] audit: type=1326 audit(1738734572.435:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.2.680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 247.023102][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 247.043553][ T27] audit: type=1326 audit(1738734572.435:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.2.680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 247.056957][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 247.095920][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 247.118299][ T6250] 8021q: adding VLAN 0 to HW filter on device team0 [ 247.142929][ T27] audit: type=1326 audit(1738734572.435:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.2.680" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 247.168470][ T6389] sd 0:0:1:0: device reset [ 247.212873][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 247.239654][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 247.260308][ T5184] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.267494][ T5184] bridge0: port 1(bridge_slave_0) entered forwarding state [ 247.285572][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 247.294983][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 247.337260][ T5184] bridge0: port 2(bridge_slave_1) entered blocking state [ 247.344533][ T5184] bridge0: port 2(bridge_slave_1) entered forwarding state [ 248.719553][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 248.738586][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 248.792500][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 248.843111][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 248.902537][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 248.938492][ T5184] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 248.967488][ T6397] netlink: 4 bytes leftover after parsing attributes in process `syz.4.685'. [ 249.118713][ T6410] loop4: detected capacity change from 0 to 512 [ 249.151626][ T6402] netlink: 16 bytes leftover after parsing attributes in process `syz.2.686'. [ 249.241157][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 249.253196][ T6410] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 249.255367][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 249.270161][ T6410] ext4 filesystem being mounted at /149/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 249.400581][ T6415] loop3: detected capacity change from 0 to 256 [ 250.060353][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 250.067267][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 250.098425][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 250.263323][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 250.287431][ T4474] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 250.376017][ T6250] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 250.490181][ T6424] sd 0:0:1:0: device reset [ 250.813753][ T6430] loop2: detected capacity change from 0 to 512 [ 251.538414][ T27] kauditd_printk_skb: 27 callbacks suppressed [ 251.538457][ T27] audit: type=1326 audit(1738734577.335:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6431 comm="syz.3.696" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 251.605713][ T6437] device wireguard0 entered promiscuous mode [ 251.627472][ T6430] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 251.670496][ T6438] netlink: 20 bytes leftover after parsing attributes in process `syz.3.696'. [ 251.686636][ T6438] netlink: 8 bytes leftover after parsing attributes in process `syz.3.696'. [ 251.958771][ T6440] device syzkaller0 entered promiscuous mode [ 252.289927][ T6454] loop4: detected capacity change from 0 to 512 [ 252.385168][ T6454] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 252.436810][ T6454] ext4 filesystem being mounted at /152/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 252.645430][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 252.871258][ T6461] 9pnet_fd: Insufficient options for proto=fd [ 253.199842][ T4262] EXT4-fs (loop2): unmounting filesystem. [ 253.656116][ T6465] loop2: detected capacity change from 0 to 256 [ 255.529163][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.535625][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.383221][ T6456] netlink: 4 bytes leftover after parsing attributes in process `syz.3.701'. [ 256.465565][ T4317] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 256.484615][ T4317] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 256.507250][ T6472] netlink: 16 bytes leftover after parsing attributes in process `syz.2.704'. [ 256.550780][ T6250] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 256.868461][ T6483] sd 0:0:1:0: device reset [ 257.089468][ T27] audit: type=1326 audit(1738734582.895:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6485 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 257.322722][ T27] audit: type=1326 audit(1738734582.895:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6485 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 257.360167][ T6496] netlink: 20 bytes leftover after parsing attributes in process `syz.3.708'. [ 257.408293][ T6496] netlink: 8 bytes leftover after parsing attributes in process `syz.3.708'. [ 257.416639][ T27] audit: type=1326 audit(1738734582.895:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6485 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 258.128993][ T27] audit: type=1326 audit(1738734582.895:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6485 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 258.254186][ T27] audit: type=1326 audit(1738734582.895:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6485 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 258.334489][ T27] audit: type=1326 audit(1738734582.895:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6485 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 258.357226][ T27] audit: type=1326 audit(1738734582.945:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6485 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 258.380079][ T27] audit: type=1326 audit(1738734582.945:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6485 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 258.402408][ T27] audit: type=1326 audit(1738734582.945:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6485 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 258.430816][ T27] audit: type=1326 audit(1738734582.945:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6485 comm="syz.3.708" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 259.311610][ T6508] loop4: detected capacity change from 0 to 512 [ 259.454934][ T6508] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 259.480240][ T6508] ext4 filesystem being mounted at /156/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 259.860370][ T6516] loop2: detected capacity change from 0 to 256 [ 260.568933][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 260.647661][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 260.660445][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 260.925758][ T6524] device syzkaller0 entered promiscuous mode [ 260.935606][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 260.944251][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 260.977497][ T6527] netlink: 16 bytes leftover after parsing attributes in process `syz.2.716'. [ 261.758624][ T6250] device veth0_vlan entered promiscuous mode [ 262.072516][ T6542] sd 0:0:1:0: device reset [ 262.314812][ T6545] 9pnet_fd: Insufficient options for proto=fd [ 264.674893][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 264.691313][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 264.749036][ T6250] device veth1_vlan entered promiscuous mode [ 264.850309][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 264.904442][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 264.933468][ T6250] device veth0_macvtap entered promiscuous mode [ 264.974721][ T6250] device veth1_macvtap entered promiscuous mode [ 265.043709][ T6250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 265.093021][ T6250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.122997][ T6250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 265.156678][ T6250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.176903][ T6250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 265.196558][ T6250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.203442][ T6551] loop3: detected capacity change from 0 to 512 [ 265.217161][ T6250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 265.239115][ T6250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.263269][ T6250] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 265.293267][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 265.304266][ T6551] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 265.322058][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 265.336858][ T6551] ext4 filesystem being mounted at /148/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 265.364806][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 265.396270][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 265.419906][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 265.462801][ T6250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 265.498037][ T6556] netlink: 72 bytes leftover after parsing attributes in process `syz.3.724'. [ 265.506626][ T6250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.526242][ T6250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 265.543796][ T6250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.572953][ T6250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 265.596665][ T6250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.606635][ T6250] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 265.626613][ T6250] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 265.648120][ T6250] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 265.663774][ T6250] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.723971][ T6250] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.746620][ T6250] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.755377][ T6250] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 265.847233][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 265.859554][ T4600] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 265.889383][ T27] kauditd_printk_skb: 8 callbacks suppressed [ 265.889402][ T27] audit: type=1326 audit(1738734591.695:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6559 comm="syz.3.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 265.986863][ T27] audit: type=1326 audit(1738734591.695:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6559 comm="syz.3.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 266.082331][ T27] audit: type=1326 audit(1738734591.725:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6559 comm="syz.3.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 266.181717][ T6562] netlink: 20 bytes leftover after parsing attributes in process `syz.3.725'. [ 266.197461][ T27] audit: type=1326 audit(1738734591.725:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6559 comm="syz.3.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 266.219892][ T6562] netlink: 8 bytes leftover after parsing attributes in process `syz.3.725'. [ 266.280137][ T27] audit: type=1326 audit(1738734591.725:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6559 comm="syz.3.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 266.354314][ T27] audit: type=1326 audit(1738734591.725:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6559 comm="syz.3.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 266.406788][ T27] audit: type=1326 audit(1738734591.725:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6559 comm="syz.3.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 266.453515][ T27] audit: type=1326 audit(1738734591.725:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6559 comm="syz.3.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 266.501332][ T6567] netlink: 4 bytes leftover after parsing attributes in process `syz.1.726'. [ 266.550923][ T27] audit: type=1326 audit(1738734591.725:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6559 comm="syz.3.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 266.696651][ T27] audit: type=1326 audit(1738734591.725:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6559 comm="syz.3.725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 266.772800][ T6517] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 266.807936][ T6517] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 266.869830][ T6517] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 266.909821][ T6517] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 266.951209][ T4935] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 267.040867][ T4935] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 268.019332][ T6575] loop5: detected capacity change from 0 to 512 [ 268.026367][ T6575] EXT4-fs: Ignoring removed mblk_io_submit option [ 268.143682][ T6575] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.637: inode #1: comm syz.5.637: iget: illegal inode # [ 268.183410][ T6577] device syzkaller0 entered promiscuous mode [ 268.228214][ T6585] netlink: 16 bytes leftover after parsing attributes in process `syz.1.729'. [ 268.236568][ T6575] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.637: error while reading EA inode 1 err=-117 [ 268.279387][ T6575] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.637: inode #1: comm syz.5.637: iget: illegal inode # [ 268.339957][ T6575] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.637: error while reading EA inode 1 err=-117 [ 268.407215][ T6575] EXT4-fs (loop5): 1 orphan inode deleted [ 268.413028][ T6575] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 268.629530][ T6250] EXT4-fs (loop5): unmounting filesystem. [ 268.816980][ T6596] loop5: detected capacity change from 0 to 512 [ 268.901418][ T6596] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 268.962354][ T6605] netlink: 72 bytes leftover after parsing attributes in process `syz.1.735'. [ 268.981639][ T6596] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 269.178827][ T6250] EXT4-fs (loop5): unmounting filesystem. [ 272.504628][ T6614] netlink: 20 bytes leftover after parsing attributes in process `syz.5.737'. [ 272.516887][ T6614] netlink: 8 bytes leftover after parsing attributes in process `syz.5.737'. [ 272.800575][ T6624] netlink: 4 bytes leftover after parsing attributes in process `syz.3.739'. [ 273.911742][ T6626] device syzkaller0 entered promiscuous mode [ 273.938398][ T6635] loop3: detected capacity change from 0 to 512 [ 273.996304][ T6635] EXT4-fs: Ignoring removed mblk_io_submit option [ 274.035743][ T6635] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.743: inode #1: comm syz.3.743: iget: illegal inode # [ 274.049871][ T6635] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.743: error while reading EA inode 1 err=-117 [ 274.066881][ T6635] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.743: inode #1: comm syz.3.743: iget: illegal inode # [ 274.175321][ T6635] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.743: error while reading EA inode 1 err=-117 [ 274.233787][ T6635] EXT4-fs (loop3): 1 orphan inode deleted [ 274.250494][ T6635] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 274.392941][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 274.478457][ T6629] loop5: detected capacity change from 0 to 256 [ 274.995013][ T6652] loop5: detected capacity change from 0 to 512 [ 275.092740][ T6652] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 275.113050][ T6652] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 275.226112][ T6250] EXT4-fs (loop5): unmounting filesystem. [ 277.664374][ T6650] netlink: 16 bytes leftover after parsing attributes in process `syz.3.746'. [ 278.043983][ T6661] device syzkaller0 entered promiscuous mode [ 278.229044][ T27] kauditd_printk_skb: 72 callbacks suppressed [ 278.229061][ T27] audit: type=1326 audit(1738734604.035:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 278.356630][ T27] audit: type=1326 audit(1738734604.065:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 278.446675][ T27] audit: type=1326 audit(1738734604.065:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 278.530218][ T27] audit: type=1326 audit(1738734604.065:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 278.651819][ T27] audit: type=1326 audit(1738734604.065:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 278.701134][ T27] audit: type=1326 audit(1738734604.065:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 278.724214][ T27] audit: type=1326 audit(1738734604.065:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 278.755735][ T27] audit: type=1326 audit(1738734604.065:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 278.779257][ T27] audit: type=1326 audit(1738734604.065:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 279.312376][ T27] audit: type=1326 audit(1738734604.065:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6671 comm="syz.4.752" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 279.635576][ T6693] netlink: 64 bytes leftover after parsing attributes in process `syz.1.756'. [ 280.146061][ T6697] loop1: detected capacity change from 0 to 256 [ 280.912904][ T6699] loop1: detected capacity change from 0 to 512 [ 280.982647][ T6699] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 280.994170][ T6699] ext4 filesystem being mounted at /156/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 281.120387][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 283.207928][ T6674] netlink: 20 bytes leftover after parsing attributes in process `syz.4.752'. [ 283.221810][ T6674] netlink: 8 bytes leftover after parsing attributes in process `syz.4.752'. [ 283.358362][ T6687] netlink: 4 bytes leftover after parsing attributes in process `syz.2.755'. [ 283.380643][ T6708] netlink: 16 bytes leftover after parsing attributes in process `syz.1.759'. [ 283.749680][ T6718] loop2: detected capacity change from 0 to 2048 [ 283.891199][ T6718] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 283.915136][ T6728] netlink: 64 bytes leftover after parsing attributes in process `syz.5.767'. [ 283.978494][ T27] kauditd_printk_skb: 26 callbacks suppressed [ 283.978512][ T27] audit: type=1804 audit(1738734609.785:645): pid=6718 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.762" name="/newroot/148/file1/bus" dev="loop2" ino=18 res=1 errno=0 [ 284.097076][ T27] audit: type=1804 audit(1738734609.845:646): pid=6730 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.762" name="/newroot/148/file1/bus" dev="loop2" ino=18 res=1 errno=0 [ 284.152757][ T6730] EXT4-fs (loop2): shut down requested (0) [ 286.515378][ T6738] loop4: detected capacity change from 0 to 256 [ 286.559920][ T4262] EXT4-fs (loop2): unmounting filesystem. [ 286.872306][ T27] audit: type=1326 audit(1738734612.675:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6744 comm="syz.1.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 286.929065][ T6750] netlink: 20 bytes leftover after parsing attributes in process `syz.1.771'. [ 286.944781][ T27] audit: type=1326 audit(1738734612.675:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6744 comm="syz.1.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 286.952854][ T6750] netlink: 8 bytes leftover after parsing attributes in process `syz.1.771'. [ 287.083879][ T27] audit: type=1326 audit(1738734612.675:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6744 comm="syz.1.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 287.131525][ T27] audit: type=1326 audit(1738734612.675:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6744 comm="syz.1.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 287.193264][ T27] audit: type=1326 audit(1738734612.735:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6744 comm="syz.1.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 287.222696][ T27] audit: type=1326 audit(1738734612.735:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6744 comm="syz.1.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 287.273573][ T27] audit: type=1326 audit(1738734612.735:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6744 comm="syz.1.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 287.305319][ T6754] netlink: 4 bytes leftover after parsing attributes in process `syz.4.773'. [ 287.358260][ T4260] Bluetooth: hci6: command 0x1003 tx timeout [ 287.365900][ T4256] Bluetooth: hci6: Opcode 0x1003 failed: -110 [ 287.466492][ T27] audit: type=1326 audit(1738734612.735:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6744 comm="syz.1.771" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 287.510698][ T6765] netlink: 16 bytes leftover after parsing attributes in process `syz.2.774'. [ 287.870085][ T6774] netlink: 64 bytes leftover after parsing attributes in process `syz.5.778'. [ 288.021316][ T6780] device bond1 entered promiscuous mode [ 288.027210][ T6780] 8021q: adding VLAN 0 to HW filter on device bond1 [ 288.535974][ T6789] loop5: detected capacity change from 0 to 256 [ 291.918524][ T6780] bond1 (unregistering): Released all slaves [ 291.963095][ T6804] netlink: 4 bytes leftover after parsing attributes in process `syz.4.788'. [ 292.197647][ T27] kauditd_printk_skb: 10 callbacks suppressed [ 292.197664][ T27] audit: type=1326 audit(1738734618.005:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6807 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 292.280136][ T6817] netlink: 16 bytes leftover after parsing attributes in process `syz.2.791'. [ 292.326736][ T6816] netlink: 20 bytes leftover after parsing attributes in process `syz.1.790'. [ 292.346024][ T6816] netlink: 8 bytes leftover after parsing attributes in process `syz.1.790'. [ 292.354004][ T27] audit: type=1326 audit(1738734618.005:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6807 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 292.475173][ T27] audit: type=1326 audit(1738734618.015:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6807 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 292.560672][ T27] audit: type=1326 audit(1738734618.015:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6807 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 292.620516][ T27] audit: type=1326 audit(1738734618.105:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6807 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 292.693586][ T27] audit: type=1326 audit(1738734618.105:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6807 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 292.753524][ T27] audit: type=1326 audit(1738734618.105:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6807 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 292.793599][ T27] audit: type=1326 audit(1738734618.105:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6807 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 292.842574][ T27] audit: type=1326 audit(1738734618.105:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6807 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 292.865274][ T27] audit: type=1326 audit(1738734618.105:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6807 comm="syz.1.790" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbfde38cde9 code=0x7ffc0000 [ 293.757924][ T4266] Bluetooth: hci6: command 0x1003 tx timeout [ 293.764479][ T4256] Bluetooth: hci6: Opcode 0x1003 failed: -110 [ 295.398324][ T6853] loop1: detected capacity change from 0 to 256 [ 295.581110][ T6863] netlink: 16 bytes leftover after parsing attributes in process `syz.3.804'. [ 296.849126][ T6877] device wireguard0 entered promiscuous mode [ 297.661546][ T4935] Bluetooth: Error in BCSP hdr checksum [ 298.320999][ T6889] netlink: 56 bytes leftover after parsing attributes in process `syz.3.811'. [ 299.356683][ T4260] Bluetooth: hci6: Opcode 0x1003 failed: -110 [ 299.572167][ T6899] device ip6gre1 entered promiscuous mode [ 301.840109][ T6917] netlink: 16 bytes leftover after parsing attributes in process `syz.2.818'. [ 303.359659][ T4266] Bluetooth: hci6: sending frame failed (-49) [ 303.367854][ T4260] Bluetooth: hci6: Opcode 0x1003 failed: -49 [ 303.479363][ T6944] netlink: 56 bytes leftover after parsing attributes in process `syz.2.826'. [ 305.184064][ T6953] device wireguard0 entered promiscuous mode [ 305.607647][ T6961] loop4: detected capacity change from 0 to 256 [ 309.301369][ T6992] netlink: 16 bytes leftover after parsing attributes in process `syz.1.840'. [ 309.574942][ T6987] loop4: detected capacity change from 0 to 512 [ 310.415766][ T6987] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 310.764370][ T7006] loop5: detected capacity change from 0 to 256 [ 313.684358][ T7026] loop2: detected capacity change from 0 to 512 [ 313.708574][ T7026] EXT4-fs: Ignoring removed mblk_io_submit option [ 313.742486][ T7026] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.850: inode #1: comm syz.2.850: iget: illegal inode # [ 313.817423][ T7026] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.850: error while reading EA inode 1 err=-117 [ 313.890761][ T7026] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.850: inode #1: comm syz.2.850: iget: illegal inode # [ 313.959159][ T7026] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.850: error while reading EA inode 1 err=-117 [ 313.972035][ T7026] EXT4-fs (loop2): 1 orphan inode deleted [ 313.980261][ T7026] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 314.050180][ T4262] EXT4-fs (loop2): unmounting filesystem. [ 315.387497][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 315.766026][ T7047] loop1: detected capacity change from 0 to 256 [ 316.374371][ T4260] Bluetooth: hci6: Opcode 0x1003 failed: -110 [ 317.046342][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.053520][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.871700][ T7069] loop3: detected capacity change from 0 to 512 [ 317.941525][ T7069] EXT4-fs: Ignoring removed mblk_io_submit option [ 318.016847][ T27] kauditd_printk_skb: 8 callbacks suppressed [ 318.016884][ T27] audit: type=1326 audit(1738734643.815:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.4.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 318.374437][ T7069] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.864: inode #1: comm syz.3.864: iget: illegal inode # [ 318.803068][ T27] audit: type=1326 audit(1738734643.855:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.4.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 318.811016][ T7070] netlink: 20 bytes leftover after parsing attributes in process `syz.4.863'. [ 318.837924][ T7069] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.864: error while reading EA inode 1 err=-117 [ 318.850429][ T7070] netlink: 8 bytes leftover after parsing attributes in process `syz.4.863'. [ 318.869532][ T27] audit: type=1326 audit(1738734644.005:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.4.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 318.903490][ T7069] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.864: inode #1: comm syz.3.864: iget: illegal inode # [ 318.923348][ T27] audit: type=1326 audit(1738734644.005:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.4.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 318.952399][ T27] audit: type=1326 audit(1738734644.005:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.4.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 318.974820][ T27] audit: type=1326 audit(1738734644.005:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.4.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 319.016887][ T27] audit: type=1326 audit(1738734644.005:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.4.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 319.046258][ T7069] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.864: error while reading EA inode 1 err=-117 [ 319.087075][ T7069] EXT4-fs (loop3): 1 orphan inode deleted [ 319.092870][ T7069] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 319.125315][ T27] audit: type=1326 audit(1738734644.065:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.4.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 319.244236][ T27] audit: type=1326 audit(1738734644.075:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.4.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 319.282765][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 319.395843][ T27] audit: type=1326 audit(1738734644.085:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.4.863" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f573a78cde9 code=0x7ffc0000 [ 320.358235][ T7088] 9pnet_fd: Insufficient options for proto=fd [ 320.928180][ T7097] loop3: detected capacity change from 0 to 512 [ 321.445754][ T7097] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 322.085119][ T7091] device wireguard0 entered promiscuous mode [ 322.116609][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 325.367402][ T7139] netlink: 16 bytes leftover after parsing attributes in process `syz.1.880'. [ 326.798089][ T4266] Bluetooth: hci6: sending frame failed (-49) [ 326.805131][ T4260] Bluetooth: hci6: Opcode 0x1003 failed: -49 [ 327.432566][ T7165] device wireguard0 entered promiscuous mode [ 330.835203][ T27] kauditd_printk_skb: 26 callbacks suppressed [ 330.835219][ T27] audit: type=1326 audit(1738734656.635:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.3.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 330.889297][ T27] audit: type=1326 audit(1738734656.665:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.3.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 330.913608][ T27] audit: type=1326 audit(1738734656.665:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.3.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 330.932036][ T7211] netlink: 20 bytes leftover after parsing attributes in process `syz.3.896'. [ 330.966684][ T7211] netlink: 8 bytes leftover after parsing attributes in process `syz.3.896'. [ 331.013115][ T27] audit: type=1326 audit(1738734656.665:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.3.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 331.717754][ T27] audit: type=1326 audit(1738734656.665:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.3.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 331.740886][ T27] audit: type=1326 audit(1738734656.665:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.3.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 331.796759][ T27] audit: type=1326 audit(1738734656.675:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.3.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 331.863323][ T27] audit: type=1326 audit(1738734656.675:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.3.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 331.952817][ T7218] loop2: detected capacity change from 0 to 512 [ 331.969537][ T27] audit: type=1326 audit(1738734656.675:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.3.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 332.017432][ T7218] EXT4-fs: Ignoring removed mblk_io_submit option [ 332.045702][ T27] audit: type=1326 audit(1738734656.675:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7203 comm="syz.3.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 332.110209][ T7218] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.898: inode #1: comm syz.2.898: iget: illegal inode # [ 332.167243][ T7218] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.898: error while reading EA inode 1 err=-117 [ 332.219551][ T7218] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.898: inode #1: comm syz.2.898: iget: illegal inode # [ 332.245552][ T7218] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.898: error while reading EA inode 1 err=-117 [ 332.258950][ T7218] EXT4-fs (loop2): 1 orphan inode deleted [ 332.264729][ T7218] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 332.333774][ T4262] EXT4-fs (loop2): unmounting filesystem. [ 332.786977][ T7239] loop3: detected capacity change from 0 to 512 [ 333.590339][ T7247] netlink: 16 bytes leftover after parsing attributes in process `syz.1.905'. [ 333.818466][ T7239] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 334.163825][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 337.596460][ T4266] Bluetooth: hci6: command 0x1003 tx timeout [ 337.604525][ T4260] Bluetooth: hci6: Opcode 0x1003 failed: -110 [ 337.703028][ T7259] device syzkaller0 entered promiscuous mode [ 339.180330][ T27] kauditd_printk_skb: 2 callbacks suppressed [ 339.180347][ T27] audit: type=1326 audit(1738734664.985:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7277 comm="syz.5.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 339.267286][ T27] audit: type=1326 audit(1738734665.015:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7277 comm="syz.5.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 339.290713][ T27] audit: type=1326 audit(1738734665.015:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7277 comm="syz.5.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 339.313705][ T27] audit: type=1326 audit(1738734665.015:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7277 comm="syz.5.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=47 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 339.367098][ T7285] loop1: detected capacity change from 0 to 512 [ 339.380968][ T27] audit: type=1326 audit(1738734665.015:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7277 comm="syz.5.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 339.405157][ T7285] EXT4-fs: Ignoring removed mblk_io_submit option [ 339.427674][ T7285] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.914: inode #1: comm syz.1.914: iget: illegal inode # [ 339.439047][ T27] audit: type=1326 audit(1738734665.015:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7277 comm="syz.5.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 339.477131][ T7285] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.914: error while reading EA inode 1 err=-117 [ 339.492229][ T27] audit: type=1326 audit(1738734665.015:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7277 comm="syz.5.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 339.526081][ T7285] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.914: inode #1: comm syz.1.914: iget: illegal inode # [ 339.526918][ T27] audit: type=1326 audit(1738734665.015:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7277 comm="syz.5.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 339.568398][ T27] audit: type=1326 audit(1738734665.025:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7277 comm="syz.5.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 339.570536][ T7285] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.914: error while reading EA inode 1 err=-117 [ 339.613360][ T7285] EXT4-fs (loop1): 1 orphan inode deleted [ 339.619243][ T27] audit: type=1326 audit(1738734665.025:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7277 comm="syz.5.913" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 339.650518][ T7285] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 339.754156][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 340.695308][ T7295] loop4: detected capacity change from 0 to 512 [ 340.821812][ T7295] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 341.424840][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 343.117686][ T7281] netlink: 20 bytes leftover after parsing attributes in process `syz.5.913'. [ 343.133652][ T7281] netlink: 8 bytes leftover after parsing attributes in process `syz.5.913'. [ 343.337416][ T7305] netlink: 16 bytes leftover after parsing attributes in process `syz.3.919'. [ 343.553492][ T7310] netlink: 4 bytes leftover after parsing attributes in process `syz.2.921'. [ 344.793472][ T7327] netlink: 28 bytes leftover after parsing attributes in process `syz.1.924'. [ 345.314930][ T7340] loop2: detected capacity change from 0 to 512 [ 346.090232][ T4260] Bluetooth: hci6: Opcode 0x1003 failed: -110 [ 347.318527][ T7340] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 347.565647][ T7339] device syzkaller0 entered promiscuous mode [ 347.599470][ T4262] EXT4-fs (loop2): unmounting filesystem. [ 348.314093][ T7352] loop4: detected capacity change from 0 to 512 [ 348.334842][ T7352] EXT4-fs: Ignoring removed mblk_io_submit option [ 348.395514][ T7352] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.934: inode #1: comm syz.4.934: iget: illegal inode # [ 348.449755][ T7352] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.934: error while reading EA inode 1 err=-117 [ 348.469044][ T27] kauditd_printk_skb: 2 callbacks suppressed [ 348.469060][ T27] audit: type=1326 audit(1738734674.275:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7354 comm="syz.2.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 348.547200][ T7352] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.934: inode #1: comm syz.4.934: iget: illegal inode # [ 348.591401][ T27] audit: type=1326 audit(1738734674.305:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7354 comm="syz.2.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 348.617029][ T7352] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.934: error while reading EA inode 1 err=-117 [ 348.622704][ T27] audit: type=1326 audit(1738734674.305:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7354 comm="syz.2.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 348.671150][ T7352] EXT4-fs (loop4): 1 orphan inode deleted [ 348.680467][ T7352] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 348.718225][ T27] audit: type=1326 audit(1738734674.305:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7354 comm="syz.2.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 348.794929][ T27] audit: type=1326 audit(1738734674.305:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7354 comm="syz.2.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 348.827111][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 348.853933][ T27] audit: type=1326 audit(1738734674.305:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7354 comm="syz.2.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 348.902546][ T27] audit: type=1326 audit(1738734674.305:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7354 comm="syz.2.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 348.953410][ T27] audit: type=1326 audit(1738734674.305:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7354 comm="syz.2.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 349.017956][ T27] audit: type=1326 audit(1738734674.305:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7354 comm="syz.2.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 349.079718][ T27] audit: type=1326 audit(1738734674.365:752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7354 comm="syz.2.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f40a938cde9 code=0x7ffc0000 [ 351.712413][ T7356] netlink: 20 bytes leftover after parsing attributes in process `syz.2.933'. [ 351.724103][ T7356] netlink: 8 bytes leftover after parsing attributes in process `syz.2.933'. [ 352.009511][ T7361] netlink: 4 bytes leftover after parsing attributes in process `syz.4.936'. [ 352.576879][ T7363] netlink: 16 bytes leftover after parsing attributes in process `syz.5.938'. [ 352.997105][ T7373] netlink: 28 bytes leftover after parsing attributes in process `syz.1.940'. [ 353.508976][ T7386] loop3: detected capacity change from 0 to 512 [ 353.656755][ T7386] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 354.176863][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 354.323495][ T7393] netlink: 28 bytes leftover after parsing attributes in process `syz.4.947'. [ 354.366729][ T7393] netlink: 28 bytes leftover after parsing attributes in process `syz.4.947'. [ 354.422233][ T7397] netlink: 4 bytes leftover after parsing attributes in process `syz.3.948'. [ 354.716891][ T27] kauditd_printk_skb: 15 callbacks suppressed [ 354.716912][ T27] audit: type=1326 audit(1738734680.495:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.3.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 355.655783][ T4260] Bluetooth: hci6: Opcode 0x1003 failed: -110 [ 356.066617][ T7409] netlink: 20 bytes leftover after parsing attributes in process `syz.3.952'. [ 356.116268][ T7409] netlink: 8 bytes leftover after parsing attributes in process `syz.3.952'. [ 356.143724][ T27] audit: type=1326 audit(1738734680.495:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.3.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 356.186681][ T5601] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 356.255410][ T27] audit: type=1326 audit(1738734680.495:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.3.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 356.356691][ T5601] usb 6-1: device descriptor read/64, error -71 [ 356.388852][ T27] audit: type=1326 audit(1738734680.495:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.3.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 356.454979][ T27] audit: type=1326 audit(1738734680.495:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.3.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 356.522464][ T27] audit: type=1326 audit(1738734680.495:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.3.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 356.588487][ T27] audit: type=1326 audit(1738734680.495:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.3.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 356.656724][ T5601] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 356.685866][ T27] audit: type=1326 audit(1738734680.495:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.3.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 356.776146][ T27] audit: type=1326 audit(1738734680.495:776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.3.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 356.820188][ T27] audit: type=1326 audit(1738734681.845:777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7402 comm="syz.3.952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 356.846960][ T5601] usb 6-1: device descriptor read/64, error -71 [ 356.967319][ T5601] usb usb6-port1: attempt power cycle [ 357.207784][ T7440] loop2: detected capacity change from 0 to 512 [ 357.418262][ T7440] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 358.017625][ T5601] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 358.028992][ T4262] EXT4-fs (loop2): unmounting filesystem. [ 358.451460][ T5601] usb 6-1: device not accepting address 4, error -71 [ 358.535199][ T7457] __nla_validate_parse: 2 callbacks suppressed [ 358.535243][ T7457] netlink: 4 bytes leftover after parsing attributes in process `syz.1.968'. [ 360.435169][ T27] kauditd_printk_skb: 17 callbacks suppressed [ 360.435186][ T27] audit: type=1326 audit(1738734686.235:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 360.464594][ T4260] Bluetooth: hci5: command 0x0406 tx timeout [ 360.509388][ T27] audit: type=1326 audit(1738734686.285:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 360.545913][ T7468] netlink: 20 bytes leftover after parsing attributes in process `syz.3.969'. [ 360.696730][ T7468] netlink: 8 bytes leftover after parsing attributes in process `syz.3.969'. [ 360.759232][ T27] audit: type=1326 audit(1738734686.285:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 360.790090][ T27] audit: type=1326 audit(1738734686.285:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 360.827463][ T27] audit: type=1326 audit(1738734686.285:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 360.857313][ T27] audit: type=1326 audit(1738734686.285:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 360.890179][ T7472] netlink: 8 bytes leftover after parsing attributes in process `syz.1.971'. [ 360.895090][ T27] audit: type=1326 audit(1738734686.285:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 360.912979][ T7474] netlink: 296 bytes leftover after parsing attributes in process `syz.4.972'. [ 360.934134][ T27] audit: type=1326 audit(1738734686.285:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 360.965376][ T27] audit: type=1326 audit(1738734686.285:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 361.024352][ T27] audit: type=1326 audit(1738734686.345:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.969" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 361.852772][ T7484] loop1: detected capacity change from 0 to 512 [ 362.986389][ T7484] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 363.113961][ T7489] loop4: detected capacity change from 0 to 256 [ 363.849171][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 364.648830][ T7506] capability: warning: `syz.1.979' uses 32-bit capabilities (legacy support in use) [ 364.728646][ T7508] netlink: 4 bytes leftover after parsing attributes in process `syz.3.981'. [ 364.965317][ T7514] netlink: 8 bytes leftover after parsing attributes in process `syz.1.983'. [ 365.086900][ T7520] netlink: 60 bytes leftover after parsing attributes in process `syz.2.986'. [ 365.166205][ T7524] netlink: 16 bytes leftover after parsing attributes in process `syz.3.984'. [ 365.319627][ T7520] netlink: 60 bytes leftover after parsing attributes in process `syz.2.986'. [ 365.408756][ T7533] loop4: detected capacity change from 0 to 512 [ 365.483028][ T7533] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 365.524093][ T7533] ext4 filesystem being mounted at /219/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 365.816459][ T4249] EXT4-fs (loop4): unmounting filesystem. [ 365.834425][ T7520] netlink: 60 bytes leftover after parsing attributes in process `syz.2.986'. [ 365.881271][ T7540] 9pnet_fd: Insufficient options for proto=fd [ 366.027868][ T7542] loop1: detected capacity change from 0 to 512 [ 366.684574][ T7542] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 366.959635][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 367.391017][ T7553] syz.3.993[7553] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 367.393536][ T7553] syz.3.993[7553] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 367.988600][ T7556] netlink: 40 bytes leftover after parsing attributes in process `syz.1.994'. [ 368.107743][ T27] kauditd_printk_skb: 13 callbacks suppressed [ 368.107760][ T27] audit: type=1326 audit(1738734693.915:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.3.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 368.216571][ T27] audit: type=1326 audit(1738734693.945:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.3.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 368.306533][ T27] audit: type=1326 audit(1738734693.945:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.3.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 368.524872][ T27] audit: type=1326 audit(1738734693.945:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.3.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 368.547748][ T27] audit: type=1326 audit(1738734693.945:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz.3.996" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f36d498cde9 code=0x7ffc0000 [ 368.932550][ T7571] device wireguard0 entered promiscuous mode [ 369.775570][ T7584] loop5: detected capacity change from 0 to 128 [ 369.797892][ T7585] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1000'. [ 369.894270][ T7587] loop4: detected capacity change from 0 to 256 [ 369.935013][ T7588] syz.5.1002: attempt to access beyond end of device [ 369.935013][ T7588] loop5: rw=2049, sector=145, nr_sectors = 328 limit=128 [ 369.958436][ T7587] FAT-fs (loop4): Unrecognized mount option "ÿÿÿÿÿÿÿ" or missing value [ 369.999200][ T7591] loop1: detected capacity change from 0 to 512 [ 370.035294][ T7591] EXT4-fs: Ignoring removed mblk_io_submit option [ 370.082589][ T7584] syz.5.1002: attempt to access beyond end of device [ 370.082589][ T7584] loop5: rw=524288, sector=145, nr_sectors = 328 limit=128 [ 370.129684][ T7591] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.1003: inode #1: comm syz.1.1003: iget: illegal inode # [ 370.247195][ T7591] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1003: error while reading EA inode 1 err=-117 [ 370.312913][ T7591] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.1003: inode #1: comm syz.1.1003: iget: illegal inode # [ 370.337036][ T7591] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1003: error while reading EA inode 1 err=-117 [ 370.370607][ T7591] EXT4-fs (loop1): 1 orphan inode deleted [ 370.376417][ T7591] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 370.510986][ T7597] 9pnet_fd: Insufficient options for proto=fd [ 370.538288][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 370.555804][ T7599] random: crng reseeded on system resumption [ 370.674679][ T7601] loop3: detected capacity change from 0 to 2048 [ 370.758458][ T7601] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 370.794172][ T27] audit: type=1800 audit(1738734696.595:823): pid=7601 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1007" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 371.025204][ T4259] EXT4-fs (loop3): unmounting filesystem. [ 372.184204][ T27] audit: type=1326 audit(1738734697.985:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.5.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 372.281977][ T27] audit: type=1326 audit(1738734697.985:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.5.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 372.433440][ T27] audit: type=1326 audit(1738734697.985:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.5.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 372.508936][ T7632] loop5: detected capacity change from 0 to 512 [ 372.516129][ T7632] EXT4-fs: Ignoring removed mblk_io_submit option [ 372.536798][ T27] audit: type=1326 audit(1738734697.985:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7619 comm="syz.5.1015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7f153fd8cde9 code=0x7ffc0000 [ 372.758625][ T7632] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.1019: inode #1: comm syz.5.1019: iget: illegal inode # [ 372.838254][ T7636] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1016'. [ 373.188619][ T7632] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.1019: error while reading EA inode 1 err=-117 [ 373.336969][ T7639] 9pnet_fd: Insufficient options for proto=fd [ 373.349225][ T7632] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.1019: inode #1: comm syz.5.1019: iget: illegal inode # [ 373.424376][ T7632] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.1019: error while reading EA inode 1 err=-117 [ 373.478679][ T7632] EXT4-fs (loop5): 1 orphan inode deleted [ 373.484479][ T7632] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 373.579607][ T7647] loop3: detected capacity change from 0 to 128 [ 373.665734][ T6250] EXT4-fs (loop5): unmounting filesystem. [ 375.627749][ T7672] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1033'. [ 375.969350][ T7680] loop1: detected capacity change from 0 to 512 [ 376.164378][ T7682] device wireguard0 entered promiscuous mode [ 376.307754][ T7680] EXT4-fs: Ignoring removed mblk_io_submit option [ 376.674439][ T7680] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.1037: inode #1: comm syz.1.1037: iget: illegal inode # [ 376.717434][ T7680] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1037: error while reading EA inode 1 err=-117 [ 376.779617][ T7680] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.1037: inode #1: comm syz.1.1037: iget: illegal inode # [ 376.805268][ T7680] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.1037: error while reading EA inode 1 err=-117 [ 376.825849][ T7680] EXT4-fs (loop1): 1 orphan inode deleted [ 376.831955][ T7680] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 377.072572][ T4250] EXT4-fs (loop1): unmounting filesystem. [ 379.207721][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.214854][ T28] INFO: task syz-executor:4265 blocked for more than 145 seconds. [ 379.222889][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.292824][ T28] Not tainted 6.1.128-syzkaller #0 [ 379.391231][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 379.452905][ T28] task:syz-executor state:D stack:21056 pid:4265 ppid:1 flags:0x00004004 [ 379.514555][ T28] Call Trace: [ 379.538221][ T28] [ 379.558683][ T28] __schedule+0x143f/0x4570 [ 379.591445][ T28] ? release_firmware_map_entry+0x186/0x186 [ 379.623095][ T28] ? print_irqtrace_events+0x210/0x210 [ 379.653814][ T28] ? _raw_spin_lock_irq+0xdb/0x110 [ 379.675163][ T28] ? do_raw_spin_unlock+0x137/0x8a0 [ 379.696149][ T28] schedule+0xbf/0x180 [ 379.721094][ T28] rwsem_down_write_slowpath+0xea1/0x14b0 [ 379.753040][ T28] ? rwsem_down_write_slowpath+0x9e3/0x14b0 [ 379.760522][ T28] ? down_write_killable_nested+0x90/0x90 [ 379.766400][ T28] ? read_lock_is_recursive+0x10/0x10 [ 379.771860][ T28] ? rwsem_write_trylock+0x166/0x210 [ 379.777227][ T28] ? clear_nonspinnable+0x60/0x60 [ 379.782287][ T28] ? do_raw_spin_unlock+0x137/0x8a0 [ 379.787546][ T28] ? task_work_run+0x1fc/0x300 [ 379.792355][ T28] deactivate_super+0xa9/0xe0 [ 379.797119][ T28] cleanup_mnt+0x490/0x520 [ 379.801571][ T28] ? lockdep_hardirqs_on+0x94/0x130 [ 379.806835][ T28] task_work_run+0x246/0x300 [ 379.811481][ T28] ? task_work_cancel+0x2e0/0x2e0 [ 379.816601][ T28] ? exit_to_user_mode_loop+0x39/0x100 [ 379.822101][ T28] exit_to_user_mode_loop+0xde/0x100 [ 379.827461][ T28] exit_to_user_mode_prepare+0xb1/0x140 [ 379.833049][ T28] syscall_exit_to_user_mode+0x60/0x270 [ 379.838810][ T28] do_syscall_64+0x47/0xb0 [ 379.843259][ T28] ? clear_bhb_loop+0x45/0xa0 [ 379.848081][ T28] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 379.854780][ T28] RIP: 0033:0x7f10d638e117 [ 379.859301][ T28] RSP: 002b:00007ffedeb3ed88 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 379.867792][ T28] RAX: 0000000000000000 RBX: 00007f10d640e08c RCX: 00007f10d638e117 [ 379.875809][ T28] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffedeb3ee40 [ 379.883902][ T28] RBP: 00007ffedeb3ee40 R08: 0000000000000000 R09: 0000000000000000 [ 379.891968][ T28] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffedeb3fed0 [ 379.905594][ T28] R13: 00007f10d640e08c R14: 0000000000034108 R15: 00007ffedeb3ff10 [ 379.915152][ T28] [ 379.933807][ T28] [ 379.933807][ T28] Showing all locks held in the system: [ 379.941853][ T28] 1 lock held by rcu_tasks_kthre/12: [ 379.948780][ T28] #0: ffffffff8d32b290 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30 [ 379.960796][ T28] 1 lock held by rcu_tasks_trace/13: [ 379.966117][ T28] #0: ffffffff8d32ba90 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30 [ 379.977268][ T28] 1 lock held by khungtaskd/28: [ 379.982142][ T28] #0: ffffffff8d32b0c0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290 [ 379.992088][ T28] 3 locks held by kworker/u4:2/33: [ 379.997440][ T28] #0: ffff888017c79138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 380.014393][ T28] #1: ffffc90000aa7d20 ((work_completion)(&map->work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 380.032600][ T28] #2: ffffffff8d3306b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x4f0/0x930 [ 380.043754][ T28] 2 locks held by getty/4009: [ 380.056380][ T28] #0: ffff88814d147098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70 [ 380.066334][ T28] #1: ffffc9000325e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a7/0x1db0 [ 380.076715][ T28] 1 lock held by syz-executor/4265: [ 380.081939][ T28] #0: ffff888079abe0e0 (&type->s_umount_key#31){++++}-{3:3}, at: deactivate_super+0xa9/0xe0 [ 380.092314][ T28] 5 locks held by kworker/u4:18/4953: [ 380.097755][ T28] #0: ffff888017e16938 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 380.108146][ T28] #1: ffffc90004527d20 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 380.118219][ T28] #2: ffffffff8e4ffad0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x166/0xd20 [ 380.127874][ T28] #3: ffffffff8e50bfa8 (rtnl_mutex){+.+.}-{3:3}, at: ip6gre_exit_batch_net+0xc0/0x460 [ 380.137707][ T28] #4: ffffffff8d3306b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x360/0x930 [ 380.148687][ T28] 3 locks held by ext4lazyinit/6002: [ 380.153997][ T28] 2 locks held by kworker/0:9/6235: [ 380.161107][ T28] #0: ffff888017c72138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 380.173289][ T28] #1: ffffc90003cc7d20 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 380.184871][ T28] 2 locks held by kworker/u4:21/6441: [ 380.190386][ T28] #0: ffff888017c79138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 380.201724][ T28] #1: ffffc90005547d20 ((work_completion)(&map->work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 380.213142][ T28] [ 380.215572][ T28] ============================================= [ 380.215572][ T28] [ 380.231640][ T28] NMI backtrace for cpu 0 [ 380.236004][ T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.1.128-syzkaller #0 [ 380.243917][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 380.253992][ T28] Call Trace: [ 380.257291][ T28] [ 380.260244][ T28] dump_stack_lvl+0x1e3/0x2cb [ 380.264950][ T28] ? preempt_schedule_thunk+0x16/0x18 [ 380.270359][ T28] ? nf_tcp_handle_invalid+0x642/0x642 [ 380.275843][ T28] ? panic+0x764/0x764 [ 380.279936][ T28] ? vprintk_emit+0x622/0x740 [ 380.284650][ T28] ? printk_sprint+0x490/0x490 [ 380.289539][ T28] ? nmi_cpu_backtrace+0x252/0x560 [ 380.294683][ T28] nmi_cpu_backtrace+0x4e1/0x560 [ 380.299739][ T28] ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0 [ 380.306008][ T28] ? _printk+0xd1/0x111 [ 380.310186][ T28] ? panic+0x764/0x764 [ 380.314286][ T28] ? __wake_up_klogd+0xcc/0x100 [ 380.319290][ T28] ? panic+0x764/0x764 [ 380.323468][ T28] ? nmi_trigger_cpumask_backtrace+0xe0/0x3f0 [ 380.329656][ T28] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 380.335754][ T28] nmi_trigger_cpumask_backtrace+0x1ae/0x3f0 [ 380.341764][ T28] watchdog+0xf88/0xfd0 [ 380.345952][ T28] ? watchdog+0x1f8/0xfd0 [ 380.350296][ T28] kthread+0x28d/0x320 [ 380.354369][ T28] ? hungtask_pm_notify+0x50/0x50 [ 380.359402][ T28] ? kthread_blkcg+0xd0/0xd0 [ 380.364001][ T28] ret_from_fork+0x1f/0x30 [ 380.368443][ T28] [ 380.372665][ T28] Sending NMI from CPU 0 to CPUs 1: [ 380.378140][ C1] NMI backtrace for cpu 1 [ 380.378160][ C1] CPU: 1 PID: 6002 Comm: ext4lazyinit Not tainted 6.1.128-syzkaller #0 [ 380.378178][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 380.378188][ C1] RIP: 0010:__sanitizer_cov_trace_const_cmp8+0x4/0x80 [ 380.378215][ C1] Code: 89 f8 89 f6 49 ff c2 4c 89 11 48 c7 44 0a 08 05 00 00 00 48 89 44 0a 10 48 89 74 0a 18 4c 89 44 0a 20 c3 0f 1f 00 4c 8b 04 24 <65> 48 8b 0d b4 ce 77 7e 65 8b 05 b5 ce 77 7e 25 00 01 ff 00 74 10 [ 380.378234][ C1] RSP: 0018:ffffc9000d74fa38 EFLAGS: 00000046 [ 380.378249][ C1] RAX: 0000000000000001 RBX: 0000000000000109 RCX: ffff888053cc9dc0 [ 380.378261][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 380.378271][ C1] RBP: ffffc9000d74fb78 R08: ffffffff82015e2a R09: fffff9400039247f [ 380.378284][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: fffffffffffffff6 [ 380.378295][ C1] R13: 0000000000000000 R14: 0000000000000003 R15: 0000000000036948 [ 380.378306][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 380.378320][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 380.378331][ C1] CR2: 00007f573a979178 CR3: 0000000026d02000 CR4: 00000000003506e0 [ 380.378346][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 380.378356][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 380.378366][ C1] Call Trace: [ 380.378372][ C1] [ 380.378378][ C1] ? nmi_cpu_backtrace+0x3de/0x560 [ 380.378395][ C1] ? read_lock_is_recursive+0x10/0x10 [ 380.378423][ C1] ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0 [ 380.378440][ C1] ? nmi_handle+0x25/0x440 [ 380.378474][ C1] ? nmi_cpu_backtrace_handler+0x8/0x10 [ 380.378490][ C1] ? nmi_handle+0x12e/0x440 [ 380.378531][ C1] ? nmi_handle+0x25/0x440 [ 380.378556][ C1] ? __sanitizer_cov_trace_const_cmp8+0x4/0x80 [ 380.378579][ C1] ? default_do_nmi+0x62/0x150 [ 380.378597][ C1] ? exc_nmi+0xa8/0x100 [ 380.378614][ C1] ? end_repeat_nmi+0x16/0x31 [ 380.378634][ C1] ? __find_get_block+0x1ba/0x1120 [ 380.378652][ C1] ? __sanitizer_cov_trace_const_cmp8+0x4/0x80 [ 380.378675][ C1] ? __sanitizer_cov_trace_const_cmp8+0x4/0x80 [ 380.378699][ C1] ? __sanitizer_cov_trace_const_cmp8+0x4/0x80 [ 380.378722][ C1] [ 380.378727][ C1] [ 380.378731][ C1] __find_get_block+0x1ba/0x1120 [ 380.378752][ C1] ? write_boundary_block+0xb0/0xb0 [ 380.378773][ C1] ? PageUptodate+0xd2/0x290 [ 380.378795][ C1] __getblk_gfp+0x146/0xa20 [ 380.378818][ C1] ext4_read_block_bitmap_nowait+0x1ff/0x980 [ 380.378844][ C1] ext4_mb_prefetch+0x46d/0x640 [ 380.378873][ C1] ? mb_set_bits+0x110/0x110 [ 380.378899][ C1] ? rcu_read_lock_bh_held+0x110/0x110 [ 380.378928][ C1] ext4_lazyinit_thread+0x54d/0x1ad0 [ 380.378963][ C1] ? kthread+0x28d/0x320 [ 380.378978][ C1] ? ext4_journalled_writepage_callback+0x200/0x200 [ 380.379007][ C1] ? __kthread_parkme+0x168/0x1c0 [ 380.379035][ C1] kthread+0x28d/0x320 [ 380.379050][ C1] ? ext4_journalled_writepage_callback+0x200/0x200 [ 380.379076][ C1] ? kthread_blkcg+0xd0/0xd0 [ 380.379092][ C1] ret_from_fork+0x1f/0x30 [ 380.379123][ C1] [ 380.381898][ T28] Kernel panic - not syncing: hung_task: blocked tasks [ 380.697409][ T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.1.128-syzkaller #0 [ 380.705328][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 380.715400][ T28] Call Trace: [ 380.718685][ T28] [ 380.721619][ T28] dump_stack_lvl+0x1e3/0x2cb [ 380.726311][ T28] ? nf_tcp_handle_invalid+0x642/0x642 [ 380.731782][ T28] ? panic+0x764/0x764 [ 380.735890][ T28] ? llist_add_batch+0x160/0x1d0 [ 380.740845][ T28] ? vscnprintf+0x59/0x80 [ 380.745203][ T28] panic+0x318/0x764 [ 380.749137][ T28] ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0 [ 380.755321][ T28] ? memcpy_page_flushcache+0xfc/0xfc [ 380.760702][ T28] ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0 [ 380.766859][ T28] ? nmi_trigger_cpumask_backtrace+0x338/0x3f0 [ 380.773035][ T28] ? nmi_trigger_cpumask_backtrace+0x33d/0x3f0 [ 380.779206][ T28] watchdog+0xfc7/0xfd0 [ 380.783412][ T28] ? watchdog+0x1f8/0xfd0 [ 380.787756][ T28] kthread+0x28d/0x320 [ 380.791828][ T28] ? hungtask_pm_notify+0x50/0x50 [ 380.796878][ T28] ? kthread_blkcg+0xd0/0xd0 [ 380.801482][ T28] ret_from_fork+0x1f/0x30 [ 380.805920][ T28] [ 380.809187][ T28] Kernel Offset: disabled [ 380.813521][ T28] Rebooting in 86400 seconds..