last executing test programs: 2.295004109s ago: executing program 0 (id=1176): r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2f0, 0x0, 0x2b8, 0xb0000010, 0x0, 0x5c8f0200, 0x378, 0x3a8, 0x3a8, 0x378, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0xf0, 0x128, 0x700, {}, [@common=@unspec=@limit={{0x48}, {0x10000000, 0x3}}]}, @common=@inet=@SET3={0x38, 'SET\x00', 0x3, {{0xffffffffffffffff, 0x2, 0x1}, {0xffffffffffffffff, 0x1, 0x2}, {0x1, 0x2, 0x2}, 0x4f6, 0x5}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffe}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x350) 2.241565556s ago: executing program 0 (id=1178): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb7030000080000002d01000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000100)={[{@nodioread_nolock}, {@acl}, {@data_ordered}, {@nouid32}, {@inlinecrypt}, {@acl}, {@usrjquota}]}, 0x0, 0x485, &(0x7f0000000b40)="$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") r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000440)='kmem_cache_free\x00', r1}, 0x18) r2 = syz_open_procfs(0x0, &(0x7f0000000040)='net/dev_snmp6\x00') ioctl$EXT4_IOC_GET_ES_CACHE(r2, 0x4020940d, &(0x7f00000002c0)={0x4}) mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc)=0x2, 0x3, 0x801, 0x0, &(0x7f0000000040), 0xfffffffc) mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) r3 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000340)) ioctl$PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f0000000a40)={0x60, 0x2, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0xfffffffffffffff9, 0x0, 0x0, 0x7fff, 0x24, 0x8, 0x10, 0x3}) get_mempolicy(0x0, 0x0, 0x203, &(0x7f0000394000/0x3000)=nil, 0x3) 2.17028813s ago: executing program 1 (id=1181): bpf$MAP_CREATE(0x0, 0x0, 0x50) syz_read_part_table(0x5d5, &(0x7f0000000600)="$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") 2.103314152s ago: executing program 4 (id=1184): gettid() truncate(0x0, 0x96f) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e78, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x80}}]}, {0x2}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x40000) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000280)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000003c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000c00)=ANY=[]) chdir(&(0x7f0000000300)='./file0\x00') r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800"/16], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r5 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000080)={r4, 0xffffffffffffffff, 0x2d, 0x0, @val=@netfilter={0x2, 0x0, 0x6, 0x1}}, 0x20) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000000c0)={r5, r4, 0x4, r4}, 0x10) write$binfmt_script(r3, &(0x7f0000000640)={'#! ', './file0'}, 0xb) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) sync() bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r7, 0x2000002, 0xe, 0x0, &(0x7f0000000200)="df12c9f7b9a60000000000000000", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 1.681888436s ago: executing program 1 (id=1191): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48284b70043dc6124d877142a48448b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68af2ad0810000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d4023f210fa34b63a715a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900000000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b6c7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48fc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f01000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb796ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab04000000ffe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890decace0200f404e4e1f74b7eed82571be54c72d978cf906df0042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef29cd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9fdc75aaaf0100483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a998de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270bb29b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214d00000000d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ce21d69993e9960ff5f76015e6c354463d7d0917fc80e5009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab4000000000000000028df75cf43f8ecc8d37b126602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df0e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd63bed8d31c31c37a373d4efd89fa516dab183ee65744fb8fc4f9ce2242e0f00000000010000000000000000000057d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fa03b84f63e022fe755f4007a4a899eaf52c4f49198e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c716357d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c24936615ee68538e8fddd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba1c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63c41cbde2ba66ad81168070c8c6e18a6e452a31bde54ad3e16304d06a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c7340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b9e6626f19eecb87e39175e85eff010000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f14eafe4b28ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1bfeef448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1099e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f9491bca7a8c59363799be70018c25ece5ad7307dc7a95c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2cdfb7fea73ca18874664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677ec97c5c568a89d6e36b165c391339878b699644c96bd6ea589765ed2a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae2676384ff799783f55d7e5a1a092a01b965dc99cb7a9d98440c355927629f2bcf9dc2396eb2f5d25829715b24327642ac4741201014a95e0e65e12cdf27e19043e3c5d3e798375cead35b9a93190a52cdecaaccc854a1d41ef365303f0e9b4fc969c9dab6d00000000000000000000008f6555f3b7d5021dfc8eb504f1e4fef716d60f0d50b03fc014fd3dff46f56750f0ba4f1b9f7de5c17e7d1f18522897edab8e9e76b667ec6b01908400f55e16f0cfbf026be5f5acc681053f697d62b3545aec4606e190216c22c1d8807b6c43f0f0a4b53619fe5c9412821c3816194a5e29cf12cc7a197b5bdafb096d2d7f6be483814c92ef29c3a21c169794c7de3b4c706f4de5f4b93c831944c7b66fa49f317aa22dbc211e19f031c4f8bee14ecd5eb061a052044adc4dd1b63a1500a9c0e09dbba23f2726a55975efb4519d864d984dcb3a1dcafa1124a6b004029a706478df3be2438d2e35e6ca674dc190143a0b6f7db3408c0c08011e5d8f54711a0bd410ab53a15b1596cb77d2b58df2d8d8"], &(0x7f0000000100)='GPL\x00'}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r0}, 0x10) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) r1 = epoll_create1(0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000100)={0x20000014}) close_range(r1, r2, 0x0) 1.504605943s ago: executing program 1 (id=1194): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f0, 0x0) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB], 0x0}, 0x94) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000280)={'syz_tun\x00', 0x0}) r3 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000180)={0x1, 0x1ff, 0x0, 0x8009}, 0x10) write(r3, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000020000000200000800040001000000", 0x24) 1.43559805s ago: executing program 2 (id=1196): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket(0x10, 0x803, 0x0) sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000020000001c0012000c000100626f6e64"], 0x3c}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="5c0100001000130780fffffffcdbdf252001000000000000000000000000000020010000000000000000000000000001000000004e210002000000006c000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="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", @ANYRES32=r2], 0x15c}, 0x1, 0x0, 0x0, 0x880}, 0x2000) 1.418774669s ago: executing program 2 (id=1197): r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYBLOB="010326bd7000fbdbdf251c00000018000180140002006c6f"], 0x2c}, 0x1, 0x0, 0x0, 0x80}, 0x40006) 1.304982438s ago: executing program 0 (id=1199): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000002600), 0x400) ioctl$SNDRV_TIMER_IOCTL_TREAD_OLD(r0, 0x40045402, &(0x7f0000002640)) read(r0, &(0x7f0000002fc0)=""/160, 0xa0) 1.304127271s ago: executing program 2 (id=1200): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000ebff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)=ANY=[]) 1.30387431s ago: executing program 3 (id=1201): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r0) ioctl$SIOCSIFHWADDR(r0, 0x8922, &(0x7f00000001c0)={'syzkaller0\x00', @random="2b0100004ec6"}) 1.224195126s ago: executing program 4 (id=1202): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = syz_open_procfs(0x0, 0x0) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0, 0x78}}, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) getsockopt$TIPC_NODE_RECVQ_DEPTH(r3, 0x10f, 0x83, &(0x7f0000000280), &(0x7f0000000300)=0x4) timer_create(0x0, 0x0, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) r5 = syz_open_dev$sndpcmc(0x0, 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r5, 0xc25c4110, &(0x7f0000000380)={0x0, [[0x1, 0x0, 0x9281, 0x0, 0x0, 0x0, 0xfffffffc], [0x3, 0x12000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0x1, 0x1, 0x0, 0x4]], '\x00', [{0x0, 0x677}, {0x0, 0x3ff}, {0x2, 0xe}, {}, {}, {}, {}, {0x1}], '\x00', 0x400}) sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c000}, 0x0) sendmsg$NFQNL_MSG_CONFIG(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c0000000a0301020000000000000b00001008000100010000000000"], 0x1c}}, 0x0) 1.1712306s ago: executing program 2 (id=1203): r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) r2 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', 0x0}) sendmmsg$inet(r2, &(0x7f0000000040)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@ip_pktinfo={{0x18, 0x0, 0x8, {r3, @empty, @loopback}}}], 0x18}}], 0x1, 0x800) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'batadv_slave_0\x00'}) sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, 0x0}, 0x50) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="02000000040000000800000001000000800000000320b312146041b31edec5aae4d320f4e04ce99ab2e6835c9c5e882ed8ce56c7e0a16ab413213777d027c5f9b9dd5ed7f3919fdae85566d3120b127fa1cd769793f37661af4e6074816be3432feba1bb01920f710d6566531da244ba31e467d0abad397e2b38853ec865d6159df359210d", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48) r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x5}, 0x2f) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000000)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r8}, {}, {0x7, 0x0, 0xb, 0x6, 0x0, 0x0, 0x5}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0x6, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xa, 0x9, 0x9}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r7}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r9) sendmsg$TIPC_CMD_ENABLE_BEARER(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) socket(0x10, 0x3, 0x0) close(r11) 1.170599817s ago: executing program 3 (id=1204): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x2, 0x0, 0x7ffc1ffb}]}) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) migrate_pages(0x0, 0xfc, 0x0, &(0x7f0000000240)=0x1) 220.831036ms ago: executing program 1 (id=1205): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000050000000900010073797a300000000064000000030a01030000000000000000050000000900010073797a30000000000900030073797a300000000008000a40000000032800048008000240000000120800014000000000140003006e657464657673696d30000000000000080000000000000014000000110001"], 0xac}, 0x1, 0x0, 0x0, 0x4008805}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="14000000100001f500000000000000000100000a14000000020a49"], 0x3c}}, 0xc050) 220.257136ms ago: executing program 4 (id=1206): openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r1}, 0x18) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20) socket$nl_netfilter(0x10, 0x3, 0xc) socket$nl_netfilter(0x10, 0x3, 0xc) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000001b80)=ANY=[@ANYBLOB="0600000004000000080000000a"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 202.704637ms ago: executing program 0 (id=1207): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, 0x0, 0x4000) sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x0, 0x2}, {}, {0x7, 0x9}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x8100}, @TCA_FLOWER_KEY_VLAN_ETH_TYPE={0x6, 0x19, 0x8100}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x24000850}, 0x20084084) 163.575719ms ago: executing program 3 (id=1208): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)) r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000007f03e3f7000000006ee2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec0012100001400a0c0c00bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af9234751", 0x81}], 0x1}, 0x0) 162.028485ms ago: executing program 2 (id=1209): r0 = socket(0x40000000015, 0x5, 0x0) connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10) setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4) bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57) sendmsg$NL80211_CMD_JOIN_MESH(r0, 0x0, 0x0) 155.891012ms ago: executing program 3 (id=1210): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) close(0xffffffffffffffff) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r3, &(0x7f0000003280)={0x0, 0x0, 0x0}, 0x0) sendmsg$tipc(r3, &(0x7f0000000e40)={0x0, 0x0, 0x0}, 0x0) sendmsg$inet(r3, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0x1}], 0x1}, 0x0) sendmsg$tipc(r3, &(0x7f0000002700)={0x0, 0x0, 0x0}, 0x0) setsockopt$sock_attach_bpf(r2, 0x1, 0x21, &(0x7f00000001c0), 0x4) sendmsg$tipc(r3, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x10) close(r3) recvmsg(r2, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0) 124.496275ms ago: executing program 3 (id=1211): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) syz_emit_ethernet(0x7ee, &(0x7f0000002040)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x27}, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x7b8, 0x2b, 0x0, @private2, @local, {[@hopopts={0x3c, 0xf5, '\x00', [@calipso={0x7, 0x8, {0x1, 0x0, 0x4, 0x6}}, @generic={0x14, 0x79c, "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"}]}], {0x0, 0x0, 0x8}}}}}}, 0x0) sendmsg$IPVS_CMD_DEL_DEST(r0, 0x0, 0x20000000) 124.237844ms ago: executing program 1 (id=1212): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='debugfs\x00', 0x0, 0x0) r0 = inotify_init1(0x0) inotify_add_watch(r0, &(0x7f00000000c0)='./file0\x00', 0x60004ce) r1 = dup(0xffffffffffffffff) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6b}}) 123.385016ms ago: executing program 2 (id=1213): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x10000000013, &(0x7f0000d06000)=0x1, 0x4) setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000000)="8907040400", 0x5) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000740)='bridge0\x00', 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f00000002c0), r1) setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, &(0x7f0000003d40), 0x4) unshare(0x40000000) setsockopt$MRT_ADD_VIF(0xffffffffffffffff, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreq(r3, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8) syz_emit_ethernet(0x3e, &(0x7f00000002c0)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x20, 0xfc, 0x2, 0x0, @rand_addr=0x1c, @multicast1=0xe0000300}, @dest_unreach={0x3, 0x6, 0x0, 0x0, 0xfa, 0x9, {0x5, 0x4, 0x0, 0x1c, 0xfff6, 0x65, 0x5, 0x1, 0x4, 0x3, @private=0xa010102, @local}}}}}}, 0x0) setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, 0x0, 0x0) r4 = socket$igmp(0x2, 0x3, 0x2) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xc, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x73}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) close(0x4) r5 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_VIF(r5, 0x0, 0xca, &(0x7f0000000040)={0x1, 0x1, 0x2, 0x4b, @vifc_lcl_addr=@dev={0xac, 0x14, 0x14, 0x3e}, @broadcast}, 0x10) setsockopt$MRT_ADD_MFC_PROXY(r4, 0x0, 0xd2, &(0x7f00000000c0)={@multicast1=0x1c, @empty=0xe0000300, 0x0, "8a79348df081496d0420922f45a71c1daa8b610468cd140526c41efcd3a4a422", 0x3, 0x1, 0x85}, 0x3c) sendmsg$NLBL_MGMT_C_ADD(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={0x1a4, r2, 0xe701ac47a3d23ecd, 0x70bd2c, 0x25dfdbff, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_DOMAIN={0x17e, 0x1, 'C\xec\xf8\xa0w\x15|\xd8\xbcs\xe1\xb93\x14\xcd\xcb\xb6\xb9\xbb\x84\xe5\xbc\xdb\x7f\x9a\xf2\xea\xcc\x91:v@\xe83-\x1d\xaagQl\x7f\tKt\fc\x1f\x17]\xd5\xd0\xf0\xa8\xeb\xd2g\x92\x04\x02\v\x00\x91d\xe6,\xd3@I\x17\xf3\xbeeI8bz\xdb\xb8s0\xad\xc6\xbf/*\xb6(o\x91t\x12\x93U6\xf4@n\xdc\xdc\x8a7y\x81FY\xbe\xbbc\xd2\xc3\x01\xa5\xe2V\x8c\xb3im~\xd2V\xdaG\xbdbF\xc8n\x86\xac\x9c\xfb\xda\xe2&\"\xb4:\x13\xe9\tc\x85\xb4\xcb\x17\xbfm\x846\xe7\x7fp\x9eCdb\xad;\xa2\xacs\xbf6\xe8\xe3Xg3&\xe2 \xd6\n\x9d=~<\x93/\xaf\x89\x06+\x96]\xb5+\xee\xff8^D*\xdb\xb8\xd8t\x80\xd4\x8fK=40\xe8R\x83p,J\xca\x85\xcb\xfa:\xdb\xda\x05\xed\xc8\xad\xa2\xfc0C\x9e3\x8e*\xae\x91\xa4\xc7)\xc0\x87\x9b\xee~\xdb\xac\x03\x90\xb1\x05\x81\xb1j\xfaO`\xa7\xa0\xeb\x83\x13 \xc8\x98\xdb\v \x95\x8eD\xc3\xc6:\xcc%\x88\xc7\xa5\xe5\xfc\xccl\x96F_\x92\xa2\xc3\xea@\"\xb1\x1b`o~B\xb4W\xd8\v\xabCBL\x81A\x92D\xd5{K\xf0\xd5\x91\n\x94\x9b\xd9\xdb2E\\\xb1\x90\xf1\xfc\xc1}\x96\xf4\xba3g\xc8\xf7j\xbc\xf1\x11\xe3\x05\xean9M\xeb&\xd2\xdf\xbe\xa1\xe8[\x91\xa5\x90uX\xd0IH!\xe3\x8a9k\x94\xc8\xde\xea\xc6^\x96\xceV\xb2\xcba\x8b\xbc\xe9'}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x2}]}, 0x1a4}, 0x1, 0x0, 0x0, 0x2}, 0x4000840) socket$key(0xf, 0x3, 0x2) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000181100"/20, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r6], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r7}, 0x18) syz_clone(0x500, 0x0, 0x0, 0x0, 0x0, 0x0) 79.252957ms ago: executing program 3 (id=1214): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10) ppoll(0x0, 0x0, 0x0, 0x0, 0x0) 78.999748ms ago: executing program 4 (id=1215): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = epoll_create1(0x0) r2 = fcntl$dupfd(r0, 0x0, r1) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000040)={0x20000001}) close(r1) 77.726571ms ago: executing program 4 (id=1216): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) syslog(0x0, 0x0, 0x0) 55.471518ms ago: executing program 4 (id=1217): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f0, 0x0) connect$unix(r1, 0x0, 0x0) sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB], 0x0}, 0x94) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000280)={'syz_tun\x00', 0x0}) r3 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000180)={0x1, 0x1ff, 0x0, 0x8009}, 0x10) write(r3, &(0x7f0000000000)="240000001a005f0214f9f407000904001f00000000020000000200000800040001000000", 0x24) 54.221581ms ago: executing program 0 (id=1218): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, 0x0, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a2a0000000008000440000000000900010073797a30000000000800034000"], 0x64}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[], 0x74}, 0x1, 0x0, 0x0, 0x1}, 0x0) 20.794706ms ago: executing program 1 (id=1219): open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x1a08700, &(0x7f0000000700)={[{@nodioread_nolock}, {@nouid32}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@usrquota}, {@journal_dev={'journal_dev', 0x3d, 0x1}}]}, 0x0, 0x470, &(0x7f0000001040)="$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") 0s ago: executing program 0 (id=1220): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) r2 = socket$igmp(0x2, 0x3, 0x2) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00', 0x0}) sendmmsg$inet(r2, &(0x7f0000000040)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@ip_pktinfo={{0x18, 0x0, 0x8, {r3, @empty, @loopback}}}], 0x18}}], 0x1, 0x800) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'batadv_slave_0\x00'}) sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000000}, 0xc, 0x0}, 0x50) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r4 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x3) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="02000000040000000800000001000000800000000320b312146041b31edec5aae4d320f4e04ce99ab2e6835c9c5e882ed8ce56c7e0a16ab413213777d027c5f9b9dd5ed7f3919fdae85566d3120b127fa1cd769793f37661af4e6074816be3432feba1bb01920f710d6566531da244ba31e467d0abad397e2b38853ec865d6159df359210d", @ANYRES32=0x0, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48) r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000540)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x5}, 0x2f) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000000)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r8}, {}, {0x7, 0x0, 0xb, 0x6, 0x0, 0x0, 0x5}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0x6, 0x9}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xa, 0x9, 0x9}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r7}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r9 = socket$nl_generic(0x10, 0x3, 0x10) r10 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r9) sendmsg$TIPC_CMD_ENABLE_BEARER(r9, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r11 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) socket(0x10, 0x3, 0x0) close(r11) kernel console output (not intermixed with test programs): h0_macvtap: entered promiscuous mode [ 28.365676][ T6542] veth1_macvtap: entered promiscuous mode [ 28.369579][ T6544] veth0_vlan: entered promiscuous mode [ 28.375176][ T208] bridge0: port 2(bridge_slave_1) entered blocking state [ 28.375212][ T208] bridge0: port 2(bridge_slave_1) entered forwarding state [ 28.383149][ T6542] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 28.384877][ T6544] veth1_vlan: entered promiscuous mode [ 28.400039][ T6548] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 28.401795][ T6548] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 28.420103][ T6542] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 28.444604][ T6544] veth0_macvtap: entered promiscuous mode [ 28.446295][ T14] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.449296][ T6544] veth1_macvtap: entered promiscuous mode [ 28.452545][ T14] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.452586][ T14] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.452604][ T14] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.474532][ T6543] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 28.484801][ T6548] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 28.501704][ T6544] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 28.505849][ T6544] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 28.509395][ T6548] veth0_vlan: entered promiscuous mode [ 28.514767][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 28.514794][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 28.518326][ T6547] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 28.524250][ T6548] veth1_vlan: entered promiscuous mode [ 28.528946][ T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.530635][ T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.531048][ T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.531441][ T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.537143][ T6543] veth0_vlan: entered promiscuous mode [ 28.545668][ T6548] veth0_macvtap: entered promiscuous mode [ 28.555682][ T6548] veth1_macvtap: entered promiscuous mode [ 28.558853][ T6543] veth1_vlan: entered promiscuous mode [ 28.582622][ T2217] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 28.582648][ T2217] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 28.595096][ T6548] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 28.613426][ T14] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 28.613461][ T14] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 28.623544][ T6548] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 28.630593][ T6542] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 28.632263][ T6543] veth0_macvtap: entered promiscuous mode [ 28.633200][ T6543] veth1_macvtap: entered promiscuous mode [ 28.636059][ T6543] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 28.640716][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 28.640743][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 28.651738][ T6543] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 28.652873][ T41] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.652916][ T41] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.652936][ T41] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.652953][ T41] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.659205][ T6547] veth0_vlan: entered promiscuous mode [ 28.660756][ T6547] veth1_vlan: entered promiscuous mode [ 28.717810][ T6658] loop1: detected capacity change from 0 to 128 [ 28.754631][ T2217] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.754700][ T2217] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.754737][ T2217] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.754755][ T2217] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 28.772275][ T6547] veth0_macvtap: entered promiscuous mode [ 28.775171][ T6547] veth1_macvtap: entered promiscuous mode [ 28.790892][ T6547] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 28.801576][ T6660] syz.1.2 uses obsolete (PF_INET,SOCK_PACKET) [ 28.805088][ T6547] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 29.042766][ T6663] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2'. [ 29.054378][ T14] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 29.055853][ T14] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 29.055886][ T14] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 29.055902][ T14] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 29.064194][ T14] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 29.064227][ T14] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 29.090817][ T2217] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 29.090849][ T2217] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 29.110977][ T208] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 29.111010][ T208] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 29.119658][ T6658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 29.121433][ T6658] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 29.140676][ T2217] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 29.140703][ T2217] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 29.154744][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 29.154776][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 29.171682][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 29.173140][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 29.224956][ T6668] loop2: detected capacity change from 0 to 512 [ 29.225427][ T6668] EXT4-fs: inline encryption not supported [ 29.232237][ T6559] Bluetooth: hci2: command tx timeout [ 29.232386][ T6555] Bluetooth: hci4: command tx timeout [ 29.232497][ T6559] Bluetooth: hci1: command tx timeout [ 29.232588][ T6549] Bluetooth: hci3: command tx timeout [ 29.232674][ T6668] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 29.232689][ T6668] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 29.245187][ T6668] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2848: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 29.245259][ T6668] EXT4-fs (loop2): 1 truncate cleaned up [ 29.245720][ T6668] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 29.692429][ T6683] bridge0: port 2(bridge_slave_1) entered disabled state [ 29.692734][ T6683] bridge0: port 1(bridge_slave_0) entered disabled state [ 29.739417][ T6678] loop3: detected capacity change from 0 to 512 [ 29.752055][ T6678] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.8: bad orphan inode 11862016 [ 29.757928][ T6678] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 29.761600][ T6678] capability: warning: `syz.3.8' uses deprecated v2 capabilities in a way that may be insecure [ 29.792709][ T6548] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 29.838897][ T6692] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11'. [ 29.913919][ T6683] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 29.917888][ T6683] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 30.067371][ T6543] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 30.117268][ T6699] 9pnet_fd: Insufficient options for proto=fd [ 31.084316][ T42] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 31.084382][ T42] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 31.084414][ T42] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 31.084432][ T42] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 31.149509][ T6711] tipc: Started in network mode [ 31.150537][ T6711] tipc: Node identity 722a8f57824b, cluster identity 4711 [ 31.150820][ T6711] tipc: Enabled bearer , priority 0 [ 31.152835][ T6711] syzkaller0: entered promiscuous mode [ 31.152845][ T6711] syzkaller0: entered allmulticast mode [ 31.174220][ T6715] process '+}[@' launched './file1' with NULL argv: empty string added [ 31.176460][ T31] audit: type=1326 audit(31.140:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6716 comm="syz.3.21" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 31.182491][ T31] audit: type=1326 audit(31.150:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6716 comm="syz.3.21" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 31.185307][ T6711] tipc: Resetting bearer [ 31.186051][ T31] audit: type=1326 audit(31.150:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6716 comm="syz.3.21" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 31.186083][ T31] audit: type=1326 audit(31.150:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6716 comm="syz.3.21" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 31.186100][ T31] audit: type=1326 audit(31.150:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6716 comm="syz.3.21" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 31.186113][ T31] audit: type=1326 audit(31.150:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6716 comm="syz.3.21" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 31.186126][ T31] audit: type=1326 audit(31.150:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6716 comm="syz.3.21" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 31.186137][ T31] audit: type=1326 audit(31.150:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6716 comm="syz.3.21" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 31.186149][ T31] audit: type=1326 audit(31.150:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6716 comm="syz.3.21" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 31.194667][ T31] audit: type=1326 audit(31.160:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=6716 comm="syz.3.21" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 31.240903][ T6724] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 31.241516][ T6724] netlink: 4 bytes leftover after parsing attributes in process `GPL'. [ 31.248947][ T6710] tipc: Resetting bearer [ 31.252710][ T6710] tipc: Disabling bearer [ 31.299458][ T6724] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 31.299516][ T6724] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 31.301938][ T6724] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 31.301950][ T6724] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 31.306878][ T52] Bluetooth: hci3: command tx timeout [ 31.306913][ T52] Bluetooth: hci4: command tx timeout [ 31.306933][ T52] Bluetooth: hci2: command tx timeout [ 31.307052][ T6549] Bluetooth: hci1: command tx timeout [ 31.381021][ T6730] netlink: 'syz.4.24': attribute type 13 has an invalid length. [ 31.410535][ T6730] bridge0: port 2(bridge_slave_1) entered disabled state [ 31.410690][ T6730] bridge0: port 1(bridge_slave_0) entered disabled state [ 31.645254][ T6730] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 31.651045][ T6730] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 32.007479][ T42] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 32.009363][ T42] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 32.011168][ T42] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 32.011199][ T42] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 32.244436][ T6746] ALSA: seq fatal error: cannot create timer (-19) [ 34.107579][ T6549] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 34.107888][ T6549] Bluetooth: hci1: command tx timeout [ 34.107925][ T6549] Bluetooth: hci2: command tx timeout [ 34.107943][ T6549] Bluetooth: hci4: command tx timeout [ 34.107959][ T6549] Bluetooth: hci3: command tx timeout [ 34.119169][ T6765] tipc: Started in network mode [ 34.119200][ T6765] tipc: Node identity 66dad65e9a7, cluster identity 4711 [ 34.119509][ T6765] tipc: Enabled bearer , priority 0 [ 34.119965][ T6765] syzkaller0: entered promiscuous mode [ 34.119982][ T6765] syzkaller0: entered allmulticast mode [ 34.263646][ T6755] tipc: Resetting bearer [ 34.270306][ T6755] tipc: Disabling bearer [ 34.335463][ T6768] Driver unsupported XDP return value 0 on prog (id 1) dev N/A, expect packet loss! [ 34.582501][ T6791] loop0: detected capacity change from 0 to 512 [ 34.615340][ T6791] EXT4-fs (loop0): too many log groups per flexible block group [ 34.615491][ T6791] EXT4-fs (loop0): failed to initialize mballoc (-12) [ 34.615551][ T6791] EXT4-fs (loop0): mount failed [ 34.617721][ T6797] loop3: detected capacity change from 0 to 164 [ 34.635103][ T6797] ISOFS: unable to read i-node block [ 34.635651][ T6797] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 34.951303][ T6825] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 34.953057][ T6825] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 35.479113][ T6846] netlink: 'syz.2.66': attribute type 1 has an invalid length. [ 35.481195][ T6846] netlink: 224 bytes leftover after parsing attributes in process `syz.2.66'. [ 35.527152][ T6847] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 35.620307][ T6853] vhci_hcd: invalid port number 96 [ 35.621537][ T6853] vhci_hcd: default hub control req: 2000 vfffc i0060 l7 [ 35.886273][ T6861] loop4: detected capacity change from 0 to 32768 [ 35.923413][ T6731] loop4: p3 p4 < > [ 35.925672][ T6731] loop4: p3 size 44183552 extends beyond EOD, truncated [ 35.936538][ T6861] loop4: p3 p4 < > [ 35.937089][ T6861] loop4: p3 size 44183552 extends beyond EOD, truncated [ 36.038829][ T6872] tipc: Enabled bearer , priority 0 [ 36.039170][ T6872] syzkaller0: entered promiscuous mode [ 36.039195][ T6872] syzkaller0: entered allmulticast mode [ 36.047477][ T6872] tipc: Resetting bearer [ 36.054031][ T6871] tipc: Resetting bearer [ 36.061751][ T6871] tipc: Disabling bearer [ 36.090963][ T6534] udevd[6534]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 36.092826][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 36.100539][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 36.102410][ T6534] udevd[6534]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 36.217866][ T6549] Bluetooth: hci4: command tx timeout [ 36.218132][ T6549] Bluetooth: hci2: command tx timeout [ 36.218388][ T6549] Bluetooth: hci1: command tx timeout [ 36.221945][ T6559] Bluetooth: hci3: command tx timeout [ 36.736442][ T6579] IPVS: starting estimator thread 0... [ 36.858350][ T6893] IPVS: using max 50 ests per chain, 120000 per kthread [ 37.005467][ T6897] loop1: detected capacity change from 0 to 512 [ 37.017830][ T6897] EXT4-fs error (device loop1): ext4_init_orphan_info:585: comm syz.1.84: inode #0: comm syz.1.84: iget: illegal inode # [ 37.020467][ T6897] EXT4-fs (loop1): get orphan inode failed [ 37.020727][ T6897] EXT4-fs (loop1): mount failed [ 37.117869][ T6905] loop4: detected capacity change from 0 to 2048 [ 37.151710][ T6905] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 37.206376][ T6547] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 37.259222][ T6912] tipc: Started in network mode [ 37.260656][ T6912] tipc: Node identity facb8bac7c36, cluster identity 4711 [ 37.261913][ T6912] tipc: Enabled bearer , priority 0 [ 37.264498][ T6912] syzkaller0: entered promiscuous mode [ 37.265584][ T6912] syzkaller0: entered allmulticast mode [ 37.282171][ T6912] tipc: Resetting bearer [ 37.286534][ T6911] tipc: Resetting bearer [ 37.299651][ T6911] tipc: Disabling bearer [ 37.606329][ T6937] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 37.621173][ T6939] syz.4.99: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0 [ 37.621671][ T6939] CPU: 0 UID: 0 PID: 6939 Comm: syz.4.99 Not tainted syzkaller #0 PREEMPT [ 37.621681][ T6939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 37.621685][ T6939] Call trace: [ 37.621687][ T6939] show_stack+0x2c/0x3c (C) [ 37.621703][ T6939] __dump_stack+0x30/0x40 [ 37.621711][ T6939] dump_stack_lvl+0xd8/0x12c [ 37.621718][ T6939] dump_stack+0x1c/0x28 [ 37.621725][ T6939] warn_alloc+0x1f8/0x30c [ 37.621731][ T6939] __vmalloc_node_range_noprof+0x114/0xf8c [ 37.621740][ T6939] vmalloc_user_noprof+0xf0/0x14c [ 37.621747][ T6939] xskq_create+0xbc/0x168 [ 37.621757][ T6939] xsk_init_queue+0xb0/0x118 [ 37.621765][ T6939] xsk_setsockopt+0x448/0x684 [ 37.621774][ T6939] do_sock_setsockopt+0x1ec/0x328 [ 37.621783][ T6939] __arm64_sys_setsockopt+0x170/0x1e0 [ 37.621790][ T6939] invoke_syscall+0x98/0x254 [ 37.621798][ T6939] el0_svc_common+0x130/0x23c [ 37.621805][ T6939] do_el0_svc+0x48/0x58 [ 37.621812][ T6939] el0_svc+0x5c/0x254 [ 37.621818][ T6939] el0t_64_sync_handler+0x84/0x12c [ 37.621824][ T6939] el0t_64_sync+0x198/0x19c [ 37.621832][ T6939] Mem-Info: [ 37.621837][ T6939] active_anon:25 inactive_anon:16357 isolated_anon:0 [ 37.621837][ T6939] active_file:2300 inactive_file:4478 isolated_file:0 [ 37.621837][ T6939] unevictable:768 dirty:91 writeback:0 [ 37.621837][ T6939] slab_reclaimable:10373 slab_unreclaimable:118547 [ 37.621837][ T6939] mapped:40549 shmem:12413 pagetables:1024 [ 37.621837][ T6939] sec_pagetables:0 bounce:0 [ 37.621837][ T6939] kernel_misc_reclaimable:0 [ 37.621837][ T6939] free:1397761 free_pcp:17350 free_cma:7360 [ 37.621853][ T6939] Node 0 active_anon:100kB inactive_anon:65428kB active_file:9200kB inactive_file:17912kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:162196kB dirty:364kB writeback:0kB shmem:49652kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:9772kB pagetables:4096kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 37.621867][ T6939] Node 0 DMA free:3076864kB boost:0kB min:20868kB low:26084kB high:31300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145728kB managed:3080192kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:29440kB [ 37.621885][ T6939] lowmem_reserve[]: 0 0 3490 3490 3490 [ 37.621902][ T6939] Node 0 Normal free:2514180kB boost:0kB min:24184kB low:30228kB high:36272kB reserved_highatomic:0KB free_highatomic:0KB active_anon:100kB inactive_anon:65428kB active_file:9200kB inactive_file:17912kB unevictable:3072kB writepending:364kB present:5242880kB managed:3574656kB mlocked:0kB bounce:0kB free_pcp:69400kB local_pcp:44640kB free_cma:0kB [ 37.621920][ T6939] lowmem_reserve[]: 0 0 0 0 0 [ 37.621936][ T6939] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 1*256kB (C) 1*512kB (C) 0*1024kB 0*2048kB 751*4096kB (MC) = 3076864kB [ 37.621988][ T6939] Node 0 Normal: 1*4kB (U) 1*8kB (M) 36*16kB (UM) 5*32kB (UE) 1*64kB (E) 2*128kB (ME) 1*256kB (E) 0*512kB 6*1024kB (ME) 0*2048kB 612*4096kB (UM) = 2514220kB [ 37.622052][ T6939] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 37.622057][ T6939] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=32768kB [ 37.622062][ T6939] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 37.622068][ T6939] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=64kB [ 37.622073][ T6939] 19162 total pagecache pages [ 37.622076][ T6939] 0 pages in swap cache [ 37.622079][ T6939] Free swap = 124996kB [ 37.622082][ T6939] Total swap = 124996kB [ 37.622086][ T6939] 2097152 pages RAM [ 37.622089][ T6939] 0 pages HighMem/MovableOnly [ 37.622091][ T6939] 433440 pages reserved [ 37.622094][ T6939] 8192 pages cma reserved [ 37.622098][ T6939] 0 pages hwpoisoned [ 37.687245][ T6944] tipc: Enabled bearer , priority 0 [ 37.687671][ T6944] syzkaller0: entered promiscuous mode [ 37.687681][ T6944] syzkaller0: entered allmulticast mode [ 38.331327][ T6919] tipc: Resetting bearer [ 38.359924][ T6919] tipc: Disabling bearer [ 38.364450][ T6953] netlink: 12 bytes leftover after parsing attributes in process `syz.1.103'. [ 38.370442][ T6951] tipc: Enabled bearer , priority 0 [ 38.372051][ T6951] syzkaller0: entered promiscuous mode [ 38.373457][ T6951] syzkaller0: entered allmulticast mode [ 38.378593][ T6951] tipc: Resetting bearer [ 38.381500][ T6950] tipc: Resetting bearer [ 38.389981][ T6950] tipc: Disabling bearer [ 38.473338][ T6961] loop1: detected capacity change from 0 to 1024 [ 38.475207][ T6961] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 38.475238][ T6961] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 38.475945][ T6961] JBD2: no valid journal superblock found [ 38.475960][ T6961] EXT4-fs (loop1): Could not load journal inode [ 38.574407][ T6965] mmap: syz.2.109 (6965) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 39.226138][ T6979] loop2: detected capacity change from 0 to 512 [ 39.239615][ T6981] loop3: detected capacity change from 0 to 1024 [ 39.250410][ T6981] ======================================================= [ 39.250410][ T6981] WARNING: The mand mount option has been deprecated and [ 39.250410][ T6981] and is ignored by this kernel. Remove the mand [ 39.250410][ T6981] option from the mount to silence this warning. [ 39.250410][ T6981] ======================================================= [ 39.258876][ T6981] EXT4-fs: inline encryption not supported [ 39.260365][ T6979] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.114: couldn't read orphan inode 26 (err -116) [ 39.260929][ T6979] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 39.276432][ T6543] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.285064][ T6981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 39.453131][ T6548] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.489062][ T6996] loop3: detected capacity change from 0 to 1024 [ 39.489443][ T6996] EXT4-fs: Ignoring removed orlov option [ 39.489454][ T6996] EXT4-fs: Ignoring removed nomblk_io_submit option [ 39.504992][ T6996] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.583629][ T6548] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 39.626192][ T7000] tipc: Started in network mode [ 39.626223][ T7000] tipc: Node identity 122537a04b9, cluster identity 4711 [ 39.626287][ T7000] tipc: Enabled bearer , priority 0 [ 39.629314][ T7000] syzkaller0: entered promiscuous mode [ 39.629333][ T7000] syzkaller0: entered allmulticast mode [ 39.650330][ T7000] tipc: Resetting bearer [ 39.671708][ T6999] tipc: Resetting bearer [ 39.683130][ T31] kauditd_printk_skb: 87 callbacks suppressed [ 39.683163][ T31] audit: type=1326 audit(39.650:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7003 comm="syz.1.121" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 39.687529][ T31] audit: type=1326 audit(39.660:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7003 comm="syz.1.121" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 39.691974][ T31] audit: type=1326 audit(39.660:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7003 comm="syz.1.121" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=135 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 39.695468][ T31] audit: type=1326 audit(39.660:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7003 comm="syz.1.121" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 39.695825][ T6999] tipc: Disabling bearer [ 39.700433][ T31] audit: type=1326 audit(39.670:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7003 comm="syz.1.121" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 39.704207][ T31] audit: type=1326 audit(39.670:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7003 comm="syz.1.121" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 39.707685][ T31] audit: type=1326 audit(39.680:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7007 comm="syz.4.123" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 39.711026][ T31] audit: type=1326 audit(39.680:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7007 comm="syz.4.123" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 39.714233][ T31] audit: type=1326 audit(39.680:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7007 comm="syz.4.123" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 39.717739][ T31] audit: type=1326 audit(39.680:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7007 comm="syz.4.123" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 39.759903][ T7008] loop4: detected capacity change from 0 to 1024 [ 39.761846][ T7008] EXT4-fs: Ignoring removed orlov option [ 39.761877][ T7008] EXT4-fs: Ignoring removed nomblk_io_submit option [ 39.782092][ T7008] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 39.915310][ T6547] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.472437][ T7030] loop1: detected capacity change from 0 to 1024 [ 40.473212][ T7030] EXT4-fs: Ignoring removed orlov option [ 40.480415][ T7030] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 40.898748][ T7041] pim6reg1: entered promiscuous mode [ 40.899623][ T7041] pim6reg1: entered allmulticast mode [ 41.272767][ T7056] loop4: detected capacity change from 0 to 512 [ 41.274341][ T7056] msdos: Unknown parameter 'nots' [ 41.320575][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.574461][ T7068] loop2: detected capacity change from 0 to 512 [ 41.581791][ T7068] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 41.596365][ T7068] EXT4-fs (loop2): orphan cleanup on readonly fs [ 41.611301][ T7068] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.141: bg 0: block 248: padding at end of block bitmap is not set [ 41.617992][ T7068] EXT4-fs error (device loop2): ext4_acquire_dquot:6937: comm syz.2.141: Failed to acquire dquot type 1 [ 41.635711][ T7068] EXT4-fs (loop2): 1 truncate cleaned up [ 41.652071][ T7068] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 42.357917][ T6543] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 42.458128][ T7083] dummy0: entered allmulticast mode [ 42.458272][ T7083] dummy0: left allmulticast mode [ 42.473402][ T7086] loop1: detected capacity change from 0 to 128 [ 43.270076][ T7096] loop4: detected capacity change from 0 to 1024 [ 43.314594][ T7096] EXT4-fs: Ignoring removed orlov option [ 43.341265][ T7096] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 43.808522][ T7108] netlink: 104 bytes leftover after parsing attributes in process `syz.0.155'. [ 43.840219][ T7111] loop1: detected capacity change from 0 to 512 [ 43.867731][ T7111] EXT4-fs error (device loop1): ext4_xattr_inode_iget:442: comm syz.1.156: error while reading EA inode 32 err=-116 [ 43.878270][ T7111] EXT4-fs (loop1): Remounting filesystem read-only [ 43.878347][ T7111] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 43.878416][ T7111] EXT4-fs (loop1): 1 orphan inode deleted [ 43.878963][ T7111] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 43.909481][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.970783][ T7118] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 43.973280][ T7118] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 43.980569][ T7118] loop1: detected capacity change from 0 to 512 [ 43.982476][ T7118] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 43.987720][ T7118] EXT4-fs (loop1): orphan cleanup on readonly fs [ 43.988963][ T7118] EXT4-fs error (device loop1): ext4_orphan_get:1392: comm syz.1.159: inode #15: comm syz.1.159: iget: illegal inode # [ 43.991463][ T7118] EXT4-fs (loop1): Remounting filesystem read-only [ 43.993953][ T7118] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 44.321590][ T6547] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.417884][ T7127] netlink: 20 bytes leftover after parsing attributes in process `syz.2.162'. [ 44.427472][ T2292] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 44.576677][ T2292] usb 1-1: Using ep0 maxpacket: 8 [ 44.579200][ T2292] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 44.579688][ T2292] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 44.579702][ T2292] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 44.579711][ T2292] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 44.579729][ T2292] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 44.579737][ T2292] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 44.644175][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.838663][ T7144] loop1: detected capacity change from 0 to 128 [ 44.927649][ T7144] syz.1.168: attempt to access beyond end of device [ 44.927649][ T7144] loop1: rw=2049, sector=145, nr_sectors = 8 limit=128 [ 44.932842][ T7144] syz.1.168: attempt to access beyond end of device [ 44.932842][ T7144] loop1: rw=2049, sector=161, nr_sectors = 8 limit=128 [ 44.936546][ T7144] syz.1.168: attempt to access beyond end of device [ 44.936546][ T7144] loop1: rw=2049, sector=177, nr_sectors = 24 limit=128 [ 44.941939][ T7144] syz.1.168: attempt to access beyond end of device [ 44.941939][ T7144] loop1: rw=2049, sector=209, nr_sectors = 8 limit=128 [ 44.942114][ T7144] syz.1.168: attempt to access beyond end of device [ 44.942114][ T7144] loop1: rw=2049, sector=225, nr_sectors = 8 limit=128 [ 44.947932][ T7144] syz.1.168: attempt to access beyond end of device [ 44.947932][ T7144] loop1: rw=2049, sector=241, nr_sectors = 8 limit=128 [ 44.954082][ T7144] syz.1.168: attempt to access beyond end of device [ 44.954082][ T7144] loop1: rw=2049, sector=257, nr_sectors = 8 limit=128 [ 44.959216][ T7144] syz.1.168: attempt to access beyond end of device [ 44.959216][ T7144] loop1: rw=2049, sector=273, nr_sectors = 8 limit=128 [ 44.959316][ T7144] syz.1.168: attempt to access beyond end of device [ 44.959316][ T7144] loop1: rw=2049, sector=289, nr_sectors = 9 limit=128 [ 44.994779][ T7144] syz.1.168: attempt to access beyond end of device [ 44.994779][ T7144] loop1: rw=2049, sector=305, nr_sectors = 1 limit=128 [ 46.068704][ T7171] netlink: 52 bytes leftover after parsing attributes in process `syz.4.176'. [ 46.164018][ T7173] dummy0: entered allmulticast mode [ 46.170788][ T7172] dummy0: left allmulticast mode [ 46.802089][ T7184] tipc: Enabled bearer , priority 0 [ 46.806335][ T7184] tipc: Resetting bearer [ 46.812814][ T7183] tipc: Disabling bearer [ 46.890302][ T31] kauditd_printk_skb: 92 callbacks suppressed [ 46.892587][ T31] audit: type=1326 audit(46.860:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7186 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 46.892626][ T31] audit: type=1326 audit(46.860:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7186 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 46.892974][ T31] audit: type=1326 audit(46.860:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7186 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 46.893006][ T31] audit: type=1326 audit(46.860:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7186 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 46.900032][ T31] audit: type=1326 audit(46.860:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7186 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 46.900053][ T31] audit: type=1326 audit(46.860:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7186 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 46.900067][ T31] audit: type=1326 audit(46.860:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7186 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 46.900079][ T31] audit: type=1326 audit(46.860:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7186 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 46.900105][ T31] audit: type=1326 audit(46.860:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7186 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 46.900117][ T31] audit: type=1326 audit(46.860:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7186 comm="syz.3.182" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=439 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 46.910219][ T2292] usb 1-1: usb_control_msg returned -71 [ 46.910239][ T2292] usbtmc 1-1:16.0: can't read capabilities [ 46.987471][ T2292] usb 1-1: USB disconnect, device number 2 [ 47.602409][ T7201] lo: entered promiscuous mode [ 47.607477][ T7201] lo: entered allmulticast mode [ 47.609317][ T7201] tunl0: entered promiscuous mode [ 47.618731][ T7201] tunl0: entered allmulticast mode [ 47.619274][ T7201] gre0: entered promiscuous mode [ 47.619292][ T7201] gre0: entered allmulticast mode [ 47.619550][ T7201] gretap0: entered promiscuous mode [ 47.619565][ T7201] gretap0: entered allmulticast mode [ 47.619886][ T7201] erspan0: entered promiscuous mode [ 47.619901][ T7201] erspan0: entered allmulticast mode [ 47.620201][ T7201] ip_vti0: entered promiscuous mode [ 47.620215][ T7201] ip_vti0: entered allmulticast mode [ 47.620420][ T7201] ip6_vti0: entered promiscuous mode [ 47.620434][ T7201] ip6_vti0: entered allmulticast mode [ 47.620657][ T7201] sit0: entered promiscuous mode [ 47.620669][ T7201] sit0: entered allmulticast mode [ 47.620860][ T7201] ip6tnl0: entered promiscuous mode [ 47.620872][ T7201] ip6tnl0: entered allmulticast mode [ 47.621083][ T7201] ip6gre0: entered promiscuous mode [ 47.621094][ T7201] ip6gre0: entered allmulticast mode [ 47.621287][ T7201] syz_tun: entered promiscuous mode [ 47.621297][ T7201] syz_tun: entered allmulticast mode [ 47.621549][ T7201] ip6gretap0: entered promiscuous mode [ 47.621560][ T7201] ip6gretap0: entered allmulticast mode [ 47.621827][ T7201] bridge0: entered promiscuous mode [ 47.621840][ T7201] bridge0: entered allmulticast mode [ 47.622185][ T7201] vcan0: entered promiscuous mode [ 47.622196][ T7201] vcan0: entered allmulticast mode [ 47.622319][ T7201] bond0: entered promiscuous mode [ 47.622330][ T7201] bond_slave_0: entered promiscuous mode [ 47.622395][ T7201] bond_slave_1: entered promiscuous mode [ 47.622441][ T7201] bond0: entered allmulticast mode [ 47.622452][ T7201] bond_slave_0: entered allmulticast mode [ 47.622463][ T7201] bond_slave_1: entered allmulticast mode [ 47.622950][ T7201] team0: entered promiscuous mode [ 47.622961][ T7201] team_slave_0: entered promiscuous mode [ 47.623014][ T7201] team_slave_1: entered promiscuous mode [ 47.623057][ T7201] team0: entered allmulticast mode [ 47.623065][ T7201] team_slave_0: entered allmulticast mode [ 47.623074][ T7201] team_slave_1: entered allmulticast mode [ 47.623476][ T7201] dummy0: entered promiscuous mode [ 47.623487][ T7201] dummy0: entered allmulticast mode [ 47.623678][ T7201] nlmon0: entered promiscuous mode [ 47.623687][ T7201] nlmon0: entered allmulticast mode [ 47.667499][ T7201] caif0: entered promiscuous mode [ 47.668385][ T7201] caif0: entered allmulticast mode [ 47.669263][ T7201] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 47.800437][ T7208] loop4: detected capacity change from 0 to 2048 [ 47.862352][ T7211] loop2: detected capacity change from 0 to 764 [ 47.880411][ T7211] netlink: 20 bytes leftover after parsing attributes in process `syz.2.191'. [ 47.884493][ T7208] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 48.282717][ T7231] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 48.284263][ T7231] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 48.550522][ T7239] netlink: 28 bytes leftover after parsing attributes in process `syz.3.201'. [ 48.767269][ T208] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 48.771644][ T208] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 48.774022][ T208] EXT4-fs (loop4): This should not happen!! Data will be lost [ 48.774022][ T208] [ 48.775939][ T208] EXT4-fs (loop4): Total free blocks count 0 [ 48.777431][ T208] EXT4-fs (loop4): Free/Dirty block details [ 48.778705][ T208] EXT4-fs (loop4): free_blocks=2415919104 [ 48.779890][ T208] EXT4-fs (loop4): dirty_blocks=6464 [ 48.781209][ T208] EXT4-fs (loop4): Block reservation details [ 48.782465][ T208] EXT4-fs (loop4): i_reserved_data_blocks=404 [ 48.801253][ T7245] netlink: 16 bytes leftover after parsing attributes in process `syz.3.203'. [ 48.844847][ T12] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28 [ 48.951360][ T7248] netlink: 52 bytes leftover after parsing attributes in process `syz.3.205'. [ 49.309368][ T7261] af_packet: tpacket_rcv: packet too big, clamped from 66 to 4294967272. macoff=96 [ 49.483139][ T7271] loop3: detected capacity change from 0 to 512 [ 49.494284][ T7273] loop2: detected capacity change from 0 to 128 [ 49.501004][ T7271] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.610954][ T6548] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.823473][ T7302] loop3: detected capacity change from 0 to 128 [ 51.780728][ T7332] loop0: detected capacity change from 0 to 2048 [ 51.791759][ T7330] netlink: 1 bytes leftover after parsing attributes in process `syz.1.235'. [ 51.792214][ T7330] xt_policy: neither incoming nor outgoing policy selected [ 51.801856][ T7332] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 51.805691][ T7334] loop3: detected capacity change from 0 to 764 [ 51.818155][ T7330] netlink: 5452 bytes leftover after parsing attributes in process `syz.1.235'. [ 51.844916][ T7332] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.237: bg 0: block 234: padding at end of block bitmap is not set [ 51.851299][ T7332] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 51.851343][ T7332] EXT4-fs (loop0): This should not happen!! Data will be lost [ 51.851343][ T7332] [ 51.851357][ T7332] EXT4-fs (loop0): Total free blocks count 0 [ 51.851364][ T7332] EXT4-fs (loop0): Free/Dirty block details [ 51.851373][ T7332] EXT4-fs (loop0): free_blocks=0 [ 51.851383][ T7332] EXT4-fs (loop0): dirty_blocks=16 [ 51.851388][ T7332] EXT4-fs (loop0): Block reservation details [ 51.851400][ T7332] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 51.892705][ T6542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.982819][ T7343] loop0: detected capacity change from 0 to 1024 [ 51.985547][ T7343] EXT4-fs: inline encryption not supported [ 52.010760][ T7343] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 52.093831][ T6542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 52.143529][ T31] kauditd_printk_skb: 68 callbacks suppressed [ 52.143566][ T31] audit: type=1326 audit(52.110:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7352 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 52.143591][ T31] audit: type=1326 audit(52.110:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7352 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 52.152211][ T31] audit: type=1326 audit(52.120:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7352 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=240 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 52.152234][ T31] audit: type=1326 audit(52.120:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7352 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 52.152247][ T31] audit: type=1326 audit(52.120:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7352 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 52.231602][ T7360] 9pnet: Could not find request transport: f [ 52.270096][ T7369] netlink: 'syz.3.251': attribute type 12 has an invalid length. [ 52.293767][ T7371] loop3: detected capacity change from 0 to 764 [ 52.380374][ T7379] syzkaller0: entered promiscuous mode [ 52.381547][ T7379] syzkaller0: entered allmulticast mode [ 52.468858][ T7383] tipc: Enabled bearer , priority 0 [ 52.469853][ T7383] syzkaller0: entered promiscuous mode [ 52.469864][ T7383] syzkaller0: entered allmulticast mode [ 52.927918][ T7346] tipc: Resetting bearer [ 52.934051][ T7346] tipc: Disabling bearer [ 52.957108][ T7377] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 53.129359][ T7401] loop2: detected capacity change from 0 to 764 [ 53.155189][ T2217] Bluetooth: hci5: Frame reassembly failed (-84) [ 53.247428][ T7413] netlink: 12 bytes leftover after parsing attributes in process `syz.3.267'. [ 53.313708][ T7421] netlink: 12 bytes leftover after parsing attributes in process `syz.3.271'. [ 53.313737][ T7421] netlink: 12 bytes leftover after parsing attributes in process `syz.3.271'. [ 53.533110][ T7428] loop0: detected capacity change from 0 to 512 [ 53.546028][ T7428] EXT4-fs error (device loop0): ext4_init_orphan_info:585: comm syz.0.273: inode #0: comm syz.0.273: iget: illegal inode # [ 53.551264][ T7428] EXT4-fs (loop0): get orphan inode failed [ 53.551484][ T7428] EXT4-fs (loop0): mount failed [ 53.792651][ T7438] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 54.224579][ T7452] netlink: 4 bytes leftover after parsing attributes in process `syz.2.282'. [ 54.225259][ T7452] netlink: 4 bytes leftover after parsing attributes in process `syz.2.282'. [ 54.234549][ T31] audit: type=1326 audit(54.200:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7453 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 54.238036][ T31] audit: type=1326 audit(54.200:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7453 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 54.238068][ T31] audit: type=1326 audit(54.200:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7453 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 54.238088][ T31] audit: type=1326 audit(54.200:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7453 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 54.238107][ T31] audit: type=1326 audit(54.200:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7453 comm="syz.4.283" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 54.250631][ T7456] loop3: detected capacity change from 0 to 512 [ 54.263472][ T7456] EXT4-fs error (device loop3): ext4_init_orphan_info:585: comm syz.3.284: inode #0: comm syz.3.284: iget: illegal inode # [ 54.265793][ T7456] EXT4-fs (loop3): get orphan inode failed [ 54.268433][ T7456] EXT4-fs (loop3): mount failed [ 54.419459][ T7471] netlink: 52 bytes leftover after parsing attributes in process `syz.4.290'. [ 54.530864][ T7483] loop0: detected capacity change from 0 to 512 [ 54.533478][ T7483] EXT4-fs error (device loop0): ext4_init_orphan_info:585: comm syz.0.297: inode #0: comm syz.0.297: iget: illegal inode # [ 54.533595][ T7483] EXT4-fs (loop0): get orphan inode failed [ 54.533751][ T7483] EXT4-fs (loop0): mount failed [ 55.226815][ T6559] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 55.264701][ T7508] netlink: 52 bytes leftover after parsing attributes in process `syz.2.304'. [ 55.306545][ T7510] loop1: detected capacity change from 0 to 764 [ 55.313178][ T7514] netlink: 5452 bytes leftover after parsing attributes in process `syz.2.307'. [ 55.468990][ T7523] loop1: detected capacity change from 0 to 512 [ 55.521072][ T7523] EXT4-fs error (device loop1): ext4_init_orphan_info:585: comm syz.1.311: inode #0: comm syz.1.311: iget: illegal inode # [ 55.523630][ T7523] EXT4-fs (loop1): get orphan inode failed [ 55.523872][ T7523] EXT4-fs (loop1): mount failed [ 55.607107][ T7532] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 55.700074][ T7542] netlink: 52 bytes leftover after parsing attributes in process `syz.3.317'. [ 55.799044][ T7548] 9pnet_virtio: no channels available for device syz [ 56.006495][ T7546] loop3: detected capacity change from 0 to 764 [ 56.150903][ T7556] netlink: 'syz.4.322': attribute type 6 has an invalid length. [ 56.268026][ T2292] IPVS: starting estimator thread 0... [ 56.356915][ T7562] IPVS: using max 68 ests per chain, 163200 per kthread [ 56.375991][ T7573] netlink: 148 bytes leftover after parsing attributes in process `syz.4.330'. [ 56.414513][ T7577] loop4: detected capacity change from 0 to 764 [ 56.660864][ T7598] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 56.661036][ T7598] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 56.717004][ T7604] syzkaller1: entered promiscuous mode [ 56.717049][ T7604] syzkaller1: entered allmulticast mode [ 56.891124][ T7612] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 56.995134][ T7621] loop2: detected capacity change from 0 to 2048 [ 56.998160][ T7621] EXT4-fs: Ignoring removed bh option [ 57.056419][ T7621] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 57.076165][ T7621] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 57.079607][ T7621] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 12 with max blocks 22 with error 28 [ 57.079641][ T7621] EXT4-fs (loop2): This should not happen!! Data will be lost [ 57.079641][ T7621] [ 57.082103][ T7621] EXT4-fs (loop2): Total free blocks count 0 [ 57.082126][ T7621] EXT4-fs (loop2): Free/Dirty block details [ 57.082138][ T7621] EXT4-fs (loop2): free_blocks=2415919104 [ 57.082148][ T7621] EXT4-fs (loop2): dirty_blocks=48 [ 57.082156][ T7621] EXT4-fs (loop2): Block reservation details [ 57.082162][ T7621] EXT4-fs (loop2): i_reserved_data_blocks=3 [ 57.118313][ T42] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 57.197611][ T31] kauditd_printk_skb: 38 callbacks suppressed [ 57.197646][ T31] audit: type=1326 audit(57.170:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7632 comm="syz.1.355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 57.197667][ T31] audit: type=1326 audit(57.170:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7632 comm="syz.1.355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 57.205901][ T7631] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 57.209382][ T31] audit: type=1326 audit(57.180:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7632 comm="syz.1.355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 57.213047][ T31] audit: type=1326 audit(57.180:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7632 comm="syz.1.355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 57.216519][ T31] audit: type=1326 audit(57.180:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7632 comm="syz.1.355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 57.221944][ T31] audit: type=1326 audit(57.180:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7632 comm="syz.1.355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 57.221977][ T31] audit: type=1326 audit(57.190:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7632 comm="syz.1.355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 57.221996][ T31] audit: type=1326 audit(57.190:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7632 comm="syz.1.355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=221 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 57.222014][ T31] audit: type=1326 audit(57.190:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7632 comm="syz.1.355" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 57.297977][ T7639] batadv_slave_1: entered promiscuous mode [ 57.300469][ T7639] netlink: 4 bytes leftover after parsing attributes in process `syz.2.358'. [ 57.380108][ T7639] batadv_slave_1 (unregistering): left promiscuous mode [ 57.566094][ T7645] 9pnet_virtio: no channels available for device ./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 57.773146][ T7656] tipc: Enabled bearer , priority 0 [ 57.782264][ T7656] tipc: Resetting bearer [ 57.791642][ T7655] tipc: Disabling bearer [ 58.231641][ T7675] loop1: detected capacity change from 0 to 512 [ 58.241396][ T7675] EXT4-fs error (device loop1): ext4_init_orphan_info:585: comm syz.1.372: inode #0: comm syz.1.372: iget: illegal inode # [ 58.243585][ T7675] EXT4-fs (loop1): get orphan inode failed [ 58.243773][ T7675] EXT4-fs (loop1): mount failed [ 58.305531][ T7680] 9pnet_virtio: no channels available for device ./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 58.576471][ T7692] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 58.675135][ T7694] netlink: 4 bytes leftover after parsing attributes in process `syz.2.379'. [ 58.736032][ T7694] netlink: 4 bytes leftover after parsing attributes in process `+}[@'. [ 59.071166][ T7701] lo speed is unknown, defaulting to 1000 [ 59.072847][ T7701] lo speed is unknown, defaulting to 1000 [ 59.075823][ T7701] lo speed is unknown, defaulting to 1000 [ 59.078772][ T7701] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 59.094314][ T7701] lo speed is unknown, defaulting to 1000 [ 59.098361][ T7701] lo speed is unknown, defaulting to 1000 [ 59.100868][ T7701] lo speed is unknown, defaulting to 1000 [ 59.103334][ T7701] lo speed is unknown, defaulting to 1000 [ 59.104679][ T7701] lo speed is unknown, defaulting to 1000 [ 59.636716][ T7709] loop1: detected capacity change from 0 to 1024 [ 59.640225][ T7709] EXT4-fs (loop1): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 59.646534][ T7709] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 2: comm syz.1.385: lblock 2 mapped to illegal pblock 2 (length 1) [ 59.652546][ T7709] Quota error (device loop1): qtree_write_dquot: dquota write failed [ 59.652614][ T7709] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 48: comm syz.1.385: lblock 0 mapped to illegal pblock 48 (length 1) [ 59.659088][ T7709] EXT4-fs error (device loop1): ext4_acquire_dquot:6937: comm syz.1.385: Failed to acquire dquot type 0 [ 59.662361][ T7709] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 59.670662][ T7709] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.385: mark_inode_dirty error [ 59.672941][ T7709] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 59.673017][ T7709] EXT4-fs (loop1): 1 orphan inode deleted [ 59.673483][ T7709] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 59.679261][ T2217] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:8: lblock 1 mapped to illegal pblock 1 (length 1) [ 59.683980][ T2217] EXT4-fs error (device loop1): ext4_release_dquot:6973: comm kworker/u8:8: Failed to release dquot type 0 [ 59.690018][ T7709] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 59.703217][ T7709] EXT4-fs error (device loop1): __ext4_get_inode_loc:4861: comm syz.1.385: Invalid inode table block 1 in block_group 0 [ 59.706279][ T7709] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6334: Corrupt filesystem [ 59.712054][ T7709] EXT4-fs error (device loop1): ext4_quota_off:7221: inode #3: comm syz.1.385: mark_inode_dirty error [ 59.841467][ T6601] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 59.844627][ T6601] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 59.859738][ T7728] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 59.986849][ T7734] tipc: Enabled bearer , priority 0 [ 59.990294][ T7734] tipc: Resetting bearer [ 59.993531][ T7733] tipc: Disabling bearer [ 60.473159][ T7745] netlink: 'syz.4.397': attribute type 5 has an invalid length. [ 60.546978][ T2292] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 60.726638][ T2292] usb 1-1: Using ep0 maxpacket: 8 [ 60.734087][ T2292] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 60.734381][ T2292] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 60.734443][ T2292] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 60.734476][ T2292] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 60.734578][ T2292] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 60.734610][ T2292] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 60.761107][ T7756] 9pnet_virtio: no channels available for device syz [ 61.093661][ T7777] netlink: 4 bytes leftover after parsing attributes in process `syz.1.407'. [ 61.093685][ T7777] netlink: 348 bytes leftover after parsing attributes in process `syz.1.407'. [ 61.093696][ T7777] netlink: 4 bytes leftover after parsing attributes in process `syz.1.407'. [ 61.093703][ T7777] netlink: 348 bytes leftover after parsing attributes in process `syz.1.407'. [ 61.093736][ T7777] netlink: 4 bytes leftover after parsing attributes in process `syz.1.407'. [ 61.143064][ T7779] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.171667][ T7781] Zero length message leads to an empty skb [ 61.186188][ T7779] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.235860][ T7783] $Hÿ: renamed from bond0 (while UP) [ 61.240571][ T7783] $Hÿ: left allmulticast mode [ 61.240596][ T7783] bond_slave_0: left allmulticast mode [ 61.240618][ T7783] bond_slave_1: left allmulticast mode [ 61.288362][ T7779] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.365476][ T7779] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 61.496748][ T2217] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.515135][ T2217] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.515202][ T2217] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.515229][ T2217] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 61.520478][ T7796] loop3: detected capacity change from 0 to 128 [ 61.629499][ T7802] syzkaller0: entered promiscuous mode [ 61.630694][ T7802] syzkaller0: entered allmulticast mode [ 61.851789][ T7810] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 61.958912][ T7812] tipc: Enabled bearer , priority 0 [ 61.962366][ T7812] tipc: Resetting bearer [ 61.965157][ T7811] tipc: Disabling bearer [ 62.174414][ T7819] loop2: detected capacity change from 0 to 128 [ 62.750251][ T7833] infiniband syz!: set active [ 62.751621][ T7833] infiniband syz!: added team_slave_0 [ 62.784320][ T7833] RDS/IB: syz!: added [ 62.787442][ T7833] smc: adding ib device syz! with port count 1 [ 62.789897][ T7833] smc: ib device syz! port 1 has pnetid [ 62.888388][ T9] cfg80211: failed to load regulatory.db [ 62.941470][ T7840] tipc: Enabling of bearer rejected, failed to enable media [ 63.201484][ T2292] usb 1-1: usb_control_msg returned -71 [ 63.201533][ T2292] usbtmc 1-1:16.0: can't read capabilities [ 63.212999][ T2292] usb 1-1: USB disconnect, device number 3 [ 63.829712][ T7874] tipc: Started in network mode [ 63.829856][ T7874] tipc: Node identity d6463bd31875, cluster identity 4711 [ 63.830237][ T7874] tipc: Enabled bearer , priority 0 [ 63.832856][ T7874] syzkaller0: entered promiscuous mode [ 63.832901][ T7874] syzkaller0: entered allmulticast mode [ 64.327990][ T7887] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 64.328166][ T7887] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 64.492308][ T7870] tipc: Resetting bearer [ 64.497027][ T7870] tipc: Disabling bearer [ 64.508302][ T2428] ieee802154 phy1 wpan1: encryption failed: -22 [ 64.606237][ T7898] 9pnet_virtio: no channels available for device syz [ 64.881361][ T7905] netlink: 20 bytes leftover after parsing attributes in process `syz.2.454'. [ 65.272841][ T7911] loop3: detected capacity change from 0 to 4096 [ 65.308662][ T7911] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 65.387175][ T6548] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 65.899445][ T7936] tipc: Enabled bearer , priority 0 [ 65.904254][ T7936] syzkaller0: entered promiscuous mode [ 65.904328][ T7936] syzkaller0: entered allmulticast mode [ 66.324292][ T7942] loop2: detected capacity change from 0 to 764 [ 66.384088][ T7945] loop3: detected capacity change from 0 to 164 [ 66.387684][ T7945] iso9660: Unknown parameter '000000000000000000000030xffffffffffffffff0xffffffffffffffff000000000000000000000030x000000000000000300000000000000000000004' [ 66.405236][ T7947] lo speed is unknown, defaulting to 1000 [ 66.546684][ T6659] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 66.554472][ T7933] tipc: Resetting bearer [ 66.561570][ T7933] tipc: Disabling bearer [ 66.876764][ T6659] usb 1-1: Using ep0 maxpacket: 8 [ 66.878946][ T6659] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 66.878981][ T6659] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 66.878994][ T6659] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 66.879005][ T6659] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 66.879022][ T6659] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 66.879032][ T6659] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 66.924636][ T7963] loop4: detected capacity change from 0 to 512 [ 66.935496][ T7963] EXT4-fs (loop4): orphan cleanup on readonly fs [ 66.941372][ T7963] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.475: bg 0: block 248: padding at end of block bitmap is not set [ 66.942243][ T7963] __quota_error: 8 callbacks suppressed [ 66.942252][ T7963] Quota error (device loop4): write_blk: dquota write failed [ 66.942276][ T7963] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 66.942289][ T7963] EXT4-fs error (device loop4): ext4_acquire_dquot:6937: comm syz.4.475: Failed to acquire dquot type 1 [ 66.953191][ T7963] EXT4-fs (loop4): 1 truncate cleaned up [ 66.960406][ T7963] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 66.980293][ T7963] EXT4-fs error (device loop4): ext4_lookup:1791: inode #2: comm syz.4.475: deleted inode referenced: 12 [ 67.096375][ T6659] usb 1-1: usb_control_msg returned -71 [ 67.105050][ T6659] usbtmc 1-1:16.0: can't read capabilities [ 67.112025][ T6659] usb 1-1: USB disconnect, device number 4 [ 67.473319][ T7976] loop3: detected capacity change from 0 to 764 [ 67.491511][ T7978] loop2: detected capacity change from 0 to 512 [ 67.494307][ T7978] EXT4-fs error (device loop2): ext4_init_orphan_info:585: comm syz.2.481: inode #0: comm syz.2.481: iget: illegal inode # [ 67.497725][ T7978] EXT4-fs (loop2): get orphan inode failed [ 67.497959][ T7978] EXT4-fs (loop2): mount failed [ 67.678099][ T7993] 9pnet_virtio: no channels available for device ./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 68.124698][ T7995] tipc: Enabled bearer , priority 0 [ 68.125301][ T7995] syzkaller0: entered promiscuous mode [ 68.125348][ T7995] syzkaller0: entered allmulticast mode [ 68.323697][ T6547] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 68.422899][ T7986] tipc: Resetting bearer [ 68.433606][ T7986] tipc: Disabling bearer [ 68.454994][ T8003] lo speed is unknown, defaulting to 1000 [ 68.531436][ T8009] loop2: detected capacity change from 0 to 2048 [ 68.728258][ T8009] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 68.798290][ T8031] netlink: 180 bytes leftover after parsing attributes in process `syz.4.499'. [ 68.798441][ T8031] xt_time: unknown flags 0xf4 [ 69.194131][ T6659] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 69.267758][ T8046] loop4: detected capacity change from 0 to 128 [ 69.346650][ T6659] usb 1-1: Using ep0 maxpacket: 8 [ 69.350444][ T6659] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 69.353220][ T6659] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 69.353254][ T6659] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 69.353272][ T6659] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 69.353292][ T6659] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 69.353304][ T6659] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.371773][ T12] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 69.372747][ T12] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 69.372761][ T12] EXT4-fs (loop2): This should not happen!! Data will be lost [ 69.372761][ T12] [ 69.372767][ T12] EXT4-fs (loop2): Total free blocks count 0 [ 69.372772][ T12] EXT4-fs (loop2): Free/Dirty block details [ 69.372778][ T12] EXT4-fs (loop2): free_blocks=2415919104 [ 69.372785][ T12] EXT4-fs (loop2): dirty_blocks=5344 [ 69.372790][ T12] EXT4-fs (loop2): Block reservation details [ 69.372794][ T12] EXT4-fs (loop2): i_reserved_data_blocks=334 [ 69.390081][ T12] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28 [ 69.761552][ T6659] usb 1-1: usb_control_msg returned -71 [ 69.761589][ T6659] usbtmc 1-1:16.0: can't read capabilities [ 69.792164][ T6659] usb 1-1: USB disconnect, device number 5 [ 69.844370][ T8058] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 69.852590][ T8057] loop1: detected capacity change from 0 to 764 [ 69.898994][ T8060] syzkaller0: entered promiscuous mode [ 69.902304][ T8060] syzkaller0: entered allmulticast mode [ 70.264021][ T8062] tipc: Enabled bearer , priority 0 [ 70.265522][ T8063] syzkaller0: entered promiscuous mode [ 70.265539][ T8063] syzkaller0: entered allmulticast mode [ 70.324219][ T31] audit: type=1326 audit(70.290:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8067 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff93b5b3a8 code=0x7ffc0000 [ 70.324339][ T31] audit: type=1326 audit(70.290:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8067 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff93b5b3a8 code=0x7ffc0000 [ 70.325695][ T31] audit: type=1326 audit(70.290:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8067 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff93b5b3a8 code=0x7ffc0000 [ 70.325793][ T31] audit: type=1326 audit(70.290:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8067 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff93b5b3a8 code=0x7ffc0000 [ 70.325936][ T31] audit: type=1326 audit(70.290:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8067 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff93b5b3a8 code=0x7ffc0000 [ 70.326111][ T31] audit: type=1326 audit(70.290:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8067 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff93b5b3a8 code=0x7ffc0000 [ 70.327822][ T31] audit: type=1326 audit(70.290:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8067 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff93b5b3a8 code=0x7ffc0000 [ 70.327898][ T31] audit: type=1326 audit(70.290:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8067 comm="syz.0.512" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff93b5b3a8 code=0x7ffc0000 [ 70.682475][ T8053] tipc: Resetting bearer [ 70.687925][ T8053] tipc: Disabling bearer [ 70.780735][ T8097] loop1: detected capacity change from 0 to 1024 [ 70.781094][ T8097] EXT4-fs: Ignoring removed orlov option [ 70.843788][ T8097] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 71.504764][ T8106] syzkaller0: entered promiscuous mode [ 71.506128][ T8106] syzkaller0: entered allmulticast mode [ 71.639933][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 71.711089][ T8116] netlink: 12 bytes leftover after parsing attributes in process `syz.2.528'. [ 71.712696][ T8116] netlink: 12 bytes leftover after parsing attributes in process `syz.2.528'. [ 72.130375][ T8134] 9pnet_virtio: no channels available for device syz [ 72.527946][ T8132] syzkaller0: entered promiscuous mode [ 72.528011][ T8132] syzkaller0: entered allmulticast mode [ 72.654432][ T8114] lo speed is unknown, defaulting to 1000 [ 73.279559][ T8149] loop4: detected capacity change from 0 to 1024 [ 73.279951][ T8149] EXT4-fs: Ignoring removed orlov option [ 73.292913][ T8149] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.217669][ T8157] syzkaller0: entered promiscuous mode [ 74.217708][ T8157] syzkaller0: entered allmulticast mode [ 74.270994][ T6547] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 74.291689][ T8126] lo speed is unknown, defaulting to 1000 [ 74.625143][ T8163] loop2: detected capacity change from 0 to 1024 [ 74.645127][ T8163] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.666280][ T8163] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 74.670494][ T8163] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 74.672981][ T8163] EXT4-fs (loop2): This should not happen!! Data will be lost [ 74.672981][ T8163] [ 74.675415][ T8163] EXT4-fs (loop2): Total free blocks count 0 [ 74.677678][ T8163] EXT4-fs (loop2): Free/Dirty block details [ 74.678972][ T8163] EXT4-fs (loop2): free_blocks=68451041280 [ 74.680288][ T8163] EXT4-fs (loop2): dirty_blocks=80 [ 74.681459][ T8163] EXT4-fs (loop2): Block reservation details [ 74.682699][ T8163] EXT4-fs (loop2): i_reserved_data_blocks=5 [ 74.700710][ T41] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 64 with error 28 [ 74.728318][ T8172] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 74.748072][ T8176] loop3: detected capacity change from 0 to 2048 [ 74.804596][ T8176] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 74.880375][ T8183] loop1: detected capacity change from 0 to 512 [ 74.884366][ T8183] EXT4-fs: inline encryption not supported [ 74.886694][ T8183] EXT4-fs (loop1): Number of reserved GDT blocks insanely large: 935 [ 74.920136][ T8184] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.545: bg 0: block 345: padding at end of block bitmap is not set [ 74.921189][ T8184] EXT4-fs (loop3): Remounting filesystem read-only [ 74.995558][ T6548] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.879450][ T8203] syzkaller0: entered promiscuous mode [ 75.879483][ T8203] syzkaller0: entered allmulticast mode [ 76.254345][ T8208] lo speed is unknown, defaulting to 1000 [ 76.313533][ T8210] loop3: detected capacity change from 0 to 2048 [ 76.339210][ T8213] batadv_slave_1: entered promiscuous mode [ 76.341878][ T8212] batadv_slave_1: left promiscuous mode [ 76.343575][ T6731] Alternate GPT is invalid, using primary GPT. [ 76.343620][ T6731] loop3: p1 p2 p3 [ 76.343631][ T6731] loop3: partition table partially beyond EOD, truncated [ 76.356010][ T8210] Alternate GPT is invalid, using primary GPT. [ 76.356069][ T8210] loop3: p1 p2 p3 [ 76.356079][ T8210] loop3: partition table partially beyond EOD, truncated [ 76.398397][ T6784] udevd[6784]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 76.403227][ T6534] udevd[6534]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 76.408545][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 76.445174][ T6534] udevd[6534]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 76.450411][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 76.452883][ T6784] udevd[6784]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 76.678025][ T8228] lo speed is unknown, defaulting to 1000 [ 76.717968][ T8232] loop4: detected capacity change from 0 to 1024 [ 76.718352][ T8232] EXT4-fs: Ignoring removed orlov option [ 76.738123][ T8232] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.233969][ T8241] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 77.234216][ T8241] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 77.374262][ T8243] syzkaller0: entered promiscuous mode [ 77.375438][ T8243] syzkaller0: entered allmulticast mode [ 77.500659][ T8249] netlink: 20 bytes leftover after parsing attributes in process `syz.0.569'. [ 77.573260][ T6547] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 77.695763][ T2292] IPVS: starting estimator thread 0... [ 77.762226][ T8273] loop3: detected capacity change from 0 to 128 [ 77.781086][ T8267] IPVS: using max 46 ests per chain, 110400 per kthread [ 77.791517][ T8273] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 77.791690][ T8273] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 77.832300][ T8277] loop1: detected capacity change from 0 to 1024 [ 77.832685][ T8277] EXT4-fs: Ignoring removed orlov option [ 77.849367][ T8277] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 77.940103][ T8280] lo speed is unknown, defaulting to 1000 [ 78.394009][ T8291] lo speed is unknown, defaulting to 1000 [ 78.473718][ T31] kauditd_printk_skb: 6 callbacks suppressed [ 78.473780][ T31] audit: type=1326 audit(78.440:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8297 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 78.473818][ T31] audit: type=1326 audit(78.440:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8297 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 78.482540][ T31] audit: type=1326 audit(78.450:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8297 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 78.490403][ T31] audit: type=1326 audit(78.460:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8297 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 78.497107][ T31] audit: type=1326 audit(78.470:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8297 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 78.500909][ T31] audit: type=1326 audit(78.470:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8297 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 78.511902][ T31] audit: type=1326 audit(78.470:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8297 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 78.511947][ T31] audit: type=1326 audit(78.470:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8297 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 78.511966][ T31] audit: type=1326 audit(78.480:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8297 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=5 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 78.511981][ T31] audit: type=1326 audit(78.480:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8297 comm="syz.3.586" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 78.532931][ T8300] netlink: 24 bytes leftover after parsing attributes in process `syz.2.587'. [ 78.576443][ T8264] syz.0.576 (8264): drop_caches: 2 [ 78.608190][ T8300] netlink: 4 bytes leftover after parsing attributes in process `syz.2.587'. [ 78.657385][ T8306] 9pnet_virtio: no channels available for device ./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 78.746264][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 78.855901][ T8313] lo speed is unknown, defaulting to 1000 [ 78.950675][ T8327] loop3: detected capacity change from 0 to 2048 [ 78.967179][ T8333] loop1: detected capacity change from 0 to 8192 [ 78.974815][ T8327] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 79.060355][ T6731] loop1: p2 p3 p4 [ 79.061461][ T6731] loop1: p2 start 164919041 is beyond EOD, truncated [ 79.061500][ T6731] loop1: p3 size 66846464 extends beyond EOD, truncated [ 79.094462][ T6731] loop1: p4 size 37048832 extends beyond EOD, truncated [ 79.115743][ T8333] loop1: p2 p3 p4 [ 79.116346][ T8333] loop1: p2 start 164919041 is beyond EOD, truncated [ 79.116356][ T8333] loop1: p3 size 66846464 extends beyond EOD, truncated [ 79.120105][ T8333] loop1: p4 size 37048832 extends beyond EOD, truncated [ 79.221890][ T6548] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 79.265337][ T8329] loop2: detected capacity change from 0 to 65536 [ 79.540461][ T8329] XFS (loop2): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 79.583296][ T8329] XFS (loop2): Ending clean mount [ 79.666545][ T6534] udevd[6534]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 79.675698][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 79.719481][ T6534] udevd[6534]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 79.723464][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 79.808836][ T8375] lo speed is unknown, defaulting to 1000 [ 79.837721][ T8378] netlink: 12 bytes leftover after parsing attributes in process `syz.3.613'. [ 79.863962][ T8378] netlink: 12 bytes leftover after parsing attributes in process `syz.3.613'. [ 80.095701][ T8329] syz.2.600 (8329): drop_caches: 2 [ 80.131606][ T6543] XFS (loop2): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 80.255330][ T8403] tipc: Enabled bearer , priority 0 [ 80.269073][ T8403] tipc: Resetting bearer [ 80.384873][ T8402] tipc: Disabling bearer [ 80.481499][ T8415] 9pnet: Could not find request transport: r [ 80.484438][ T8418] loop1: detected capacity change from 0 to 1024 [ 80.484841][ T8418] EXT4-fs: Ignoring removed orlov option [ 80.501731][ T8418] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.512618][ T8426] netlink: 76 bytes leftover after parsing attributes in process `syz.3.630'. [ 80.596291][ T8431] lo speed is unknown, defaulting to 1000 [ 81.057481][ T8452] netlink: 4 bytes leftover after parsing attributes in process `syz.4.635'. [ 81.194077][ T8462] syzkaller0: entered promiscuous mode [ 81.195379][ T8462] syzkaller0: entered allmulticast mode [ 81.330638][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.452740][ T8467] loop4: detected capacity change from 0 to 512 [ 81.479227][ T8467] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.642: bad orphan inode 11862016 [ 81.480164][ T8467] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 81.597058][ T6547] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 81.969379][ T8499] 9pnet_virtio: no channels available for device syz [ 82.267671][ T8502] loop2: detected capacity change from 0 to 65536 [ 82.280714][ T8502] XFS (loop2): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 82.294202][ T8502] XFS (loop2): Ending clean mount [ 82.435475][ T8502] syz.2.653 (8502): drop_caches: 2 [ 82.646200][ T6543] XFS (loop2): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 83.198560][ T8562] loop3: detected capacity change from 0 to 65536 [ 83.215666][ T8562] XFS (loop3): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 83.228769][ T8562] XFS (loop3): Ending clean mount [ 83.248596][ T8562] syz.3.676 (8562): drop_caches: 2 [ 83.375946][ T6548] XFS (loop3): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 83.553499][ T8592] syzkaller0: entered promiscuous mode [ 83.553532][ T8592] syzkaller0: entered allmulticast mode [ 83.675759][ T8607] loop3: detected capacity change from 0 to 512 [ 83.679690][ T8607] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 83.700272][ T8607] EXT4-fs (loop3): 1 truncate cleaned up [ 83.701871][ T8607] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 83.724621][ T6548] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 83.920480][ T8628] netlink: 4 bytes leftover after parsing attributes in process `syz.3.703'. [ 83.922082][ T8628] netlink: 4 bytes leftover after parsing attributes in process `syz.3.703'. [ 84.030826][ T8603] syz.0.690 (8603): drop_caches: 2 [ 84.112378][ T8637] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 84.151029][ T8639] loop3: detected capacity change from 0 to 128 [ 84.214365][ T8642] netlink: 8 bytes leftover after parsing attributes in process `syz.3.706'. [ 84.343152][ T8644] syzkaller0: entered promiscuous mode [ 84.345254][ T8644] syzkaller0: entered allmulticast mode [ 84.638604][ T8654] loop1: detected capacity change from 0 to 4096 [ 84.640758][ T8654] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 84.645654][ T8654] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.732750][ T8660] 9pnet: Could not find request transport: f [ 84.854671][ T8673] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4) [ 84.854695][ T8673] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 84.860832][ T8673] vhci_hcd vhci_hcd.0: Device attached [ 84.974664][ T8674] vhci_hcd: connection closed [ 84.977396][ T2217] vhci_hcd: stop threads [ 84.977633][ T2217] vhci_hcd: release socket [ 84.979890][ T2217] vhci_hcd: disconnect device [ 85.037086][ T6659] vhci_hcd: vhci_device speed not set [ 85.119134][ C1] vcan0: j1939_tp_rxtimer: 0x000000002a497519: rx timeout, send abort [ 85.458885][ T8656] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 85.459520][ T8656] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 85.462568][ T8656] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 85.464241][ T8656] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 85.466003][ T8656] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 85.470731][ T8656] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 85.472935][ T8656] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 85.474120][ T8656] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 85.475985][ T8656] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 85.487086][ T8656] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 85.487130][ T8656] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 85.490214][ T8656] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 85.499222][ T8681] syzkaller0: entered promiscuous mode [ 85.499257][ T8681] syzkaller0: entered allmulticast mode [ 85.521075][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.547735][ T8685] netlink: 5452 bytes leftover after parsing attributes in process `syz.0.723'. [ 85.580958][ T8690] loop1: detected capacity change from 0 to 128 [ 85.619394][ C1] vcan0: j1939_tp_rxtimer: 0x000000001eee759e: rx timeout, send abort [ 85.619851][ C1] vcan0: j1939_tp_rxtimer: 0x000000002a497519: abort rx timeout. Force session deactivation [ 85.642064][ T8696] netlink: 8 bytes leftover after parsing attributes in process `syz.1.724'. [ 85.767859][ T8708] loop4: detected capacity change from 0 to 764 [ 86.015798][ T8702] 9pnet_virtio: no channels available for device syz [ 86.096829][ T8713] netlink: 4 bytes leftover after parsing attributes in process `syz.4.733'. [ 86.098906][ T8713] netlink: 4 bytes leftover after parsing attributes in process `syz.4.733'. [ 86.119453][ C1] vcan0: j1939_tp_rxtimer: 0x000000001eee759e: abort rx timeout. Force session deactivation [ 86.159049][ T8714] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 86.319715][ T31] kauditd_printk_skb: 124 callbacks suppressed [ 86.319749][ T31] audit: type=1326 audit(86.290:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8715 comm="syz.4.734" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 86.324707][ T31] audit: type=1326 audit(86.290:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8715 comm="syz.4.734" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 86.329598][ T31] audit: type=1326 audit(86.300:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8715 comm="syz.4.734" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 86.334018][ T31] audit: type=1326 audit(86.300:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8715 comm="syz.4.734" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=96 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 86.340598][ T31] audit: type=1326 audit(86.310:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8715 comm="syz.4.734" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 86.340633][ T31] audit: type=1326 audit(86.310:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8715 comm="syz.4.734" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 86.340660][ T31] audit: type=1326 audit(86.310:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8715 comm="syz.4.734" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=198 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 86.340677][ T31] audit: type=1326 audit(86.310:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8715 comm="syz.4.734" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 86.340695][ T31] audit: type=1326 audit(86.310:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8715 comm="syz.4.734" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 86.359245][ T31] audit: type=1326 audit(86.330:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8715 comm="syz.4.734" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=200 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 86.580474][ T8725] netlink: 8 bytes leftover after parsing attributes in process `syz.0.737'. [ 86.637591][ T8729] loop2: detected capacity change from 0 to 2048 [ 86.692898][ T8735] loop4: detected capacity change from 0 to 1024 [ 86.693267][ T8735] EXT4-fs: Ignoring removed orlov option [ 86.709058][ T8735] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 86.709773][ T6731] loop2: p1 < > p3 [ 86.710256][ T6731] loop2: p3 size 134217728 extends beyond EOD, truncated [ 86.717489][ T8729] loop2: p1 < > p3 [ 86.726897][ T8729] loop2: p3 size 134217728 extends beyond EOD, truncated [ 86.757038][ T52] Bluetooth: hci1: command 0x0c1a tx timeout [ 86.775376][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 86.779384][ T6534] udevd[6534]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 86.808431][ T6534] udevd[6534]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 86.810361][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 87.467711][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 87.506957][ T6547] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.549461][ T6559] Bluetooth: hci2: command 0x0c1a tx timeout [ 87.549553][ T52] Bluetooth: hci4: command 0x0c1a tx timeout [ 87.986991][ T8774] 9pnet_virtio: no channels available for device syz [ 88.035747][ T8789] loop4: detected capacity change from 0 to 512 [ 88.039383][ T8789] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 88.046350][ T8789] EXT4-fs (loop4): 1 truncate cleaned up [ 88.052034][ T8789] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 88.070905][ T6547] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 88.129878][ T8780] netlink: 444 bytes leftover after parsing attributes in process `syz.0.752'. [ 88.828828][ T52] Bluetooth: hci1: command 0x0c1a tx timeout [ 89.548117][ T52] Bluetooth: hci3: command 0x0c1a tx timeout [ 89.629808][ T52] Bluetooth: hci4: command 0x0c1a tx timeout [ 89.631320][ T52] Bluetooth: hci2: command 0x0c1a tx timeout [ 90.155811][ T8881] syzkaller0: entered promiscuous mode [ 90.157990][ T8881] syzkaller0: entered allmulticast mode [ 90.187608][ T8883] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 91.100277][ T6559] Bluetooth: hci1: command 0x0c1a tx timeout [ 91.449454][ T8913] 9pnet_fd: Insufficient options for proto=fd [ 91.464029][ T8899] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 91.464174][ T8899] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 91.464227][ T8899] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 91.464351][ T8899] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 92.004741][ T8923] syzkaller0: entered promiscuous mode [ 92.004774][ T8923] syzkaller0: entered allmulticast mode [ 92.027834][ T8928] random: crng reseeded on system resumption [ 92.074612][ T8932] netlink: 12 bytes leftover after parsing attributes in process `syz.4.793'. [ 92.124612][ T8932] vlan2: entered allmulticast mode [ 92.124645][ T8932] dummy0: entered allmulticast mode [ 93.031621][ T8962] lo speed is unknown, defaulting to 1000 [ 93.146718][ T52] Bluetooth: hci1: command 0x0c1a tx timeout [ 93.163156][ T8971] syzkaller0: entered promiscuous mode [ 93.164256][ T8971] syzkaller0: entered allmulticast mode [ 93.231357][ T8975] netlink: 8 bytes leftover after parsing attributes in process `syz.3.807'. [ 93.666168][ T6559] Bluetooth: hci2: command 0x0c1a tx timeout [ 93.666262][ T6549] Bluetooth: hci3: command 0x0c1a tx timeout [ 93.746674][ T52] Bluetooth: hci4: command 0x0c1a tx timeout [ 93.930936][ T8991] loop1: detected capacity change from 0 to 2048 [ 94.676471][ T9010] 9pnet_virtio: no channels available for device syz [ 95.018818][ T9021] loop2: detected capacity change from 0 to 512 [ 95.022869][ T9021] EXT4-fs: inline encryption not supported [ 95.033026][ T9021] EXT4-fs (loop2): Number of reserved GDT blocks insanely large: 935 [ 95.296026][ T9024] lo speed is unknown, defaulting to 1000 [ 95.858969][ T9043] 9pnet_virtio: no channels available for device syz [ 95.950227][ T9049] netlink: 64 bytes leftover after parsing attributes in process `syz.4.837'. [ 95.952437][ T9047] netlink: 5336 bytes leftover after parsing attributes in process `syz.0.834'. [ 95.973481][ T31] kauditd_printk_skb: 40 callbacks suppressed [ 95.974563][ T31] audit: type=1326 audit(95.940:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9052 comm="syz.2.838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f75b3a8 code=0x7ffc0000 [ 95.978451][ T31] audit: type=1326 audit(95.950:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9052 comm="syz.2.838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f75b3a8 code=0x7ffc0000 [ 95.982379][ T31] audit: type=1326 audit(95.950:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9052 comm="syz.2.838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9f75b3a8 code=0x7ffc0000 [ 95.985812][ T31] audit: type=1326 audit(95.950:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9052 comm="syz.2.838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f75b3a8 code=0x7ffc0000 [ 95.990427][ T31] audit: type=1326 audit(95.960:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9052 comm="syz.2.838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9f75b3a8 code=0x7ffc0000 [ 95.994375][ T31] audit: type=1326 audit(95.960:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9052 comm="syz.2.838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f75b3a8 code=0x7ffc0000 [ 95.998856][ T31] audit: type=1326 audit(95.970:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9052 comm="syz.2.838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9f75b3a8 code=0x7ffc0000 [ 96.002387][ T31] audit: type=1326 audit(95.970:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9052 comm="syz.2.838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f75b3a8 code=0x7ffc0000 [ 96.005839][ T31] audit: type=1326 audit(95.970:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9052 comm="syz.2.838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9f75b3a8 code=0x7ffc0000 [ 96.020946][ T31] audit: type=1326 audit(95.990:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9052 comm="syz.2.838" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff9f75b3a8 code=0x7ffc0000 [ 96.044523][ T9047] pim6reg1: entered promiscuous mode [ 96.044551][ T9047] pim6reg1: entered allmulticast mode [ 96.049424][ T9047] capability: warning: `syz.0.834' uses 32-bit capabilities (legacy support in use) [ 96.227584][ T9068] 9pnet_virtio: no channels available for device syz [ 96.231410][ T9069] tipc: Enabled bearer , priority 0 [ 96.783842][ T9044] tipc: Disabling bearer [ 96.851904][ T9087] netlink: 12 bytes leftover after parsing attributes in process `syz.0.852'. [ 97.025256][ T9099] loop2: detected capacity change from 0 to 512 [ 97.027446][ T9099] EXT4-fs: inline encryption not supported [ 97.039172][ T9099] EXT4-fs (loop2): Number of reserved GDT blocks insanely large: 935 [ 97.201545][ T9114] netlink: 12 bytes leftover after parsing attributes in process `syz.3.864'. [ 97.219453][ T9119] loop2: detected capacity change from 0 to 128 [ 97.235498][ T9119] netlink: 12 bytes leftover after parsing attributes in process `syz.2.866'. [ 97.315596][ T9134] loop1: detected capacity change from 0 to 1024 [ 97.320851][ T9134] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 97.323129][ T9134] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 97.327122][ T9134] JBD2: no valid journal superblock found [ 97.328087][ T9134] EXT4-fs (loop1): Could not load journal inode [ 97.354120][ T9139] batadv_slave_0: entered allmulticast mode [ 97.354923][ T9139] batadv_slave_0: left allmulticast mode [ 97.624577][ T9178] loop4: detected capacity change from 0 to 256 [ 97.647495][ T9178] syz_tun: entered allmulticast mode [ 97.681316][ T9176] syz_tun: left allmulticast mode [ 97.746043][ T9173] infiniband syz2: set down [ 97.746789][ T9173] infiniband syz2: added bond0 [ 97.766061][ T9173] RDS/IB: syz2: added [ 97.766102][ T9173] smc: adding ib device syz2 with port count 1 [ 97.766358][ T9173] smc: ib device syz2 port 1 has pnetid [ 97.979516][ T9201] lo speed is unknown, defaulting to 1000 [ 98.243305][ T9215] netlink: 4 bytes leftover after parsing attributes in process `syz.3.907'. [ 98.245310][ T9215] netlink: 4 bytes leftover after parsing attributes in process `syz.3.907'. [ 98.302925][ T9219] hub 1-0:1.0: USB hub found [ 98.304140][ T9219] hub 1-0:1.0: 1 port detected [ 98.416248][ T9231] loop3: detected capacity change from 0 to 512 [ 98.421153][ T9231] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 98.431682][ T9231] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 98.431717][ T9231] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002] [ 98.431762][ T9231] System zones: 0-1, 15-15, 18-18, 34-34 [ 98.431873][ T9231] EXT4-fs (loop3): orphan cleanup on readonly fs [ 98.431931][ T9231] EXT4-fs warning (device loop3): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 98.431940][ T9231] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 98.435626][ T9231] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.913: bg 0: block 40: padding at end of block bitmap is not set [ 98.437106][ T9231] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 98.437321][ T9231] EXT4-fs (loop3): 1 truncate cleaned up [ 98.438022][ T9231] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 98.471992][ T9231] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 98.472033][ T9231] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002] [ 98.491691][ T9235] siw: device registration error -23 [ 98.494641][ T6548] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.502198][ T9235] lo speed is unknown, defaulting to 1000 [ 98.617895][ T9242] bridge1: entered promiscuous mode [ 98.621620][ T9247] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 98.897210][ T9266] loop3: detected capacity change from 0 to 8192 [ 99.013152][ T6184] loop3: p3 p4 < > [ 99.013254][ T6184] loop3: p3 start 986112 is beyond EOD, truncated [ 99.154845][ T9279] netlink: 'syz.1.931': attribute type 1 has an invalid length. [ 99.154875][ T9279] netlink: 5452 bytes leftover after parsing attributes in process `syz.1.931'. [ 99.200211][ T6184] loop3: p3 p4 < > [ 99.200301][ T6184] loop3: p3 start 986112 is beyond EOD, truncated [ 99.209173][ T9266] loop3: p3 p4 < > [ 99.209257][ T9266] loop3: p3 start 986112 is beyond EOD, truncated [ 99.252966][ T6184] loop3: p3 p4 < > [ 99.253055][ T6184] loop3: p3 start 986112 is beyond EOD, truncated [ 99.329398][ T9285] loop1: detected capacity change from 0 to 128 [ 99.346473][ T9276] 9pnet_virtio: no channels available for device syz [ 99.355171][ T9285] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 99.365794][ T9285] EXT4-fs warning (device loop1): ext4_dirblock_csum_verify:375: inode #2: comm syz.1.933: No space for directory leaf checksum. Please run e2fsck -D. [ 99.365827][ T9285] EXT4-fs error (device loop1): htree_dirblock_to_tree:1051: inode #2: comm syz.1.933: Directory block failed checksum [ 99.379785][ T6544] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 99.415876][ T9289] loop3: detected capacity change from 0 to 256 [ 99.464327][ T9289] FAT-fs (loop3): Directory bread(block 64) failed [ 99.464372][ T9289] FAT-fs (loop3): Directory bread(block 65) failed [ 99.464402][ T9289] FAT-fs (loop3): Directory bread(block 66) failed [ 99.464415][ T9289] FAT-fs (loop3): Directory bread(block 67) failed [ 99.464438][ T9289] FAT-fs (loop3): Directory bread(block 68) failed [ 99.464449][ T9289] FAT-fs (loop3): Directory bread(block 69) failed [ 99.464471][ T9289] FAT-fs (loop3): Directory bread(block 70) failed [ 99.464481][ T9289] FAT-fs (loop3): Directory bread(block 71) failed [ 99.464501][ T9289] FAT-fs (loop3): Directory bread(block 72) failed [ 99.464510][ T9289] FAT-fs (loop3): Directory bread(block 73) failed [ 99.480335][ T9292] bridge1: entered promiscuous mode [ 99.483409][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 99.506418][ T9289] bio_check_eod: 6390 callbacks suppressed [ 99.511208][ T9289] syz.3.934: attempt to access beyond end of device [ 99.511208][ T9289] loop3: rw=524288, sector=1736, nr_sectors = 32 limit=256 [ 99.511622][ T9289] syz.3.934: attempt to access beyond end of device [ 99.511622][ T9289] loop3: rw=0, sector=1736, nr_sectors = 8 limit=256 [ 99.553924][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 99.581581][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 99.590671][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 99.713502][ T9307] overlayfs: overlapping lowerdir path [ 100.434030][ T9310] loop3: detected capacity change from 0 to 128 [ 101.546506][ T9350] overlayfs: overlapping lowerdir path [ 102.356122][ T9355] netlink: 92 bytes leftover after parsing attributes in process `syz.3.958'. [ 102.644171][ T9379] loop3: detected capacity change from 0 to 1024 [ 102.644542][ T9379] EXT4-fs: Ignoring removed orlov option [ 102.746713][ T9381] lo speed is unknown, defaulting to 1000 [ 102.924852][ T9379] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.933667][ T31] kauditd_printk_skb: 140 callbacks suppressed [ 102.933681][ T31] audit: type=1326 audit(102.900:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9385 comm="syz.1.971" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 102.933712][ T31] audit: type=1326 audit(102.900:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9385 comm="syz.1.971" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 102.933737][ T31] audit: type=1326 audit(102.900:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9385 comm="syz.1.971" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 102.933751][ T31] audit: type=1326 audit(102.900:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9385 comm="syz.1.971" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 102.933764][ T31] audit: type=1326 audit(102.900:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9385 comm="syz.1.971" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 102.936209][ T31] audit: type=1326 audit(102.900:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9385 comm="syz.1.971" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 102.936230][ T31] audit: type=1326 audit(102.900:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9385 comm="syz.1.971" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 102.936245][ T31] audit: type=1326 audit(102.900:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9385 comm="syz.1.971" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 102.936258][ T31] audit: type=1326 audit(102.900:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9385 comm="syz.1.971" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 102.936270][ T31] audit: type=1326 audit(102.900:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9385 comm="syz.1.971" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa495b3a8 code=0x7ffc0000 [ 102.944747][ T9386] batadv_slave_1: entered promiscuous mode [ 102.945302][ T9386] netlink: 4 bytes leftover after parsing attributes in process `syz.1.971'. [ 102.945398][ T9386] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 102.956909][ T9386] batadv_slave_1 (unregistering): left promiscuous mode [ 102.956962][ T9386] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 103.644789][ T9399] overlayfs: overlapping lowerdir path [ 104.306326][ T6548] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 104.763406][ T9407] --map-set only usable from mangle table [ 104.962960][ T9422] netlink: 92 bytes leftover after parsing attributes in process `syz.3.982'. [ 105.105738][ T9426] loop1: detected capacity change from 0 to 1024 [ 105.114128][ T9426] EXT4-fs: Ignoring removed orlov option [ 105.129060][ T9436] lo speed is unknown, defaulting to 1000 [ 105.379040][ T9439] loop3: detected capacity change from 0 to 764 [ 105.442444][ T9426] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.457933][ T9439] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 105.827457][ T9456] netlink: 24 bytes leftover after parsing attributes in process `syz.4.995'. [ 106.029635][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.108920][ T9465] syzkaller0: entered promiscuous mode [ 106.108980][ T9465] syzkaller0: entered allmulticast mode [ 107.141709][ T9520] loop2: detected capacity change from 0 to 736 [ 107.142236][ T9520] iso9660: Unknown parameter '@' [ 107.230605][ T9523] loop1: detected capacity change from 0 to 512 [ 107.244191][ T9529] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1022'. [ 107.255319][ T9523] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.268173][ T9523] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 107.295788][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.383977][ T9548] x_tables: duplicate underflow at hook 2 [ 107.528194][ T9555] lo speed is unknown, defaulting to 1000 [ 107.551662][ T9557] lo speed is unknown, defaulting to 1000 [ 107.658446][ T9561] loop4: detected capacity change from 0 to 764 [ 107.668272][ T9561] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 108.052637][ T9590] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1037'. [ 108.326882][ T9602] lo speed is unknown, defaulting to 1000 [ 108.912516][ T9611] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1042'. [ 108.968505][ T9622] syzkaller0: entered promiscuous mode [ 108.968535][ T9622] syzkaller0: entered allmulticast mode [ 109.058485][ T9630] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1049'. [ 109.063511][ T9626] lo speed is unknown, defaulting to 1000 [ 109.126148][ T9638] loop4: detected capacity change from 0 to 128 [ 109.136293][ T9636] IPv6: Can't replace route, no match found [ 109.278895][ T9638] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 109.289664][ T9647] loop2: detected capacity change from 0 to 764 [ 109.290189][ T9647] iso9660: Unknown parameter 'dmode00x0000000000000002' [ 109.463365][ T6547] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 109.524155][ T9658] tipc: Enabling of bearer rejected, failed to enable media [ 109.526396][ T9658] syzkaller0: entered promiscuous mode [ 109.526434][ T9658] syzkaller0: entered allmulticast mode [ 109.579714][ T9662] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1063'. [ 109.778711][ T9681] lo speed is unknown, defaulting to 1000 [ 109.795068][ T9679] loop2: detected capacity change from 0 to 4096 [ 109.797711][ T9679] EXT4-fs: Ignoring removed nomblk_io_submit option [ 109.813029][ T9686] loop1: detected capacity change from 0 to 764 [ 109.814521][ T9686] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 109.822150][ T9679] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 109.850653][ T31] kauditd_printk_skb: 169 callbacks suppressed [ 109.850691][ T31] audit: type=1326 audit(109.820:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9691 comm="syz.4.1075" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 109.855170][ T31] audit: type=1326 audit(109.820:867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9691 comm="syz.4.1075" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 109.855234][ T31] audit: type=1326 audit(109.820:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9691 comm="syz.4.1075" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 109.855258][ T31] audit: type=1326 audit(109.820:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9691 comm="syz.4.1075" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 109.855276][ T31] audit: type=1326 audit(109.820:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9691 comm="syz.4.1075" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 109.855293][ T31] audit: type=1326 audit(109.820:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9691 comm="syz.4.1075" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 109.855309][ T31] audit: type=1326 audit(109.820:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9691 comm="syz.4.1075" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 109.855324][ T31] audit: type=1326 audit(109.820:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9691 comm="syz.4.1075" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=73 compat=0 ip=0xffff8315b3a8 code=0x7ffc0000 [ 110.001600][ T9700] tipc: Enabling of bearer rejected, failed to enable media [ 110.003368][ T9700] syzkaller0: entered promiscuous mode [ 110.004636][ T9700] syzkaller0: entered allmulticast mode [ 110.031258][ T6543] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.049940][ T9704] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1078'. [ 110.098980][ T9707] loop3: detected capacity change from 0 to 1024 [ 110.104795][ T9707] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 110.104839][ T9707] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 110.104911][ T9707] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 110.108648][ T9707] EXT4-fs error (device loop3): ext4_get_journal_inode:5800: inode #5: comm syz.3.1082: unexpected bad inode w/o EXT4_IGET_BAD [ 110.108856][ T9707] EXT4-fs (loop3): no journal found [ 110.110242][ T9707] EXT4-fs (loop3): can't get journal size [ 110.113713][ T9707] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 110.142522][ T6548] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.196944][ T9714] syz_tun: entered allmulticast mode [ 110.199729][ T9714] syz_tun: left allmulticast mode [ 110.236286][ T9714] dvmrp1: entered allmulticast mode [ 110.238810][ T9710] lo speed is unknown, defaulting to 1000 [ 110.564076][ T9728] loop1: detected capacity change from 0 to 512 [ 110.745660][ T9728] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 110.769934][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.054579][ T9746] tipc: Enabling of bearer rejected, failed to enable media [ 111.060094][ T9746] syzkaller0: entered promiscuous mode [ 111.061081][ T9746] syzkaller0: entered allmulticast mode [ 111.091556][ T9748] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1095'. [ 111.306647][ T9756] lo speed is unknown, defaulting to 1000 [ 111.485221][ T9755] lo speed is unknown, defaulting to 1000 [ 111.576111][ T9769] loop4: detected capacity change from 0 to 512 [ 111.593839][ T9769] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 112.308563][ T6547] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.310937][ T9792] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1106'. [ 112.446511][ T9795] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1108'. [ 112.463857][ T9784] lo speed is unknown, defaulting to 1000 [ 112.862326][ T9807] tipc: Enabling of bearer rejected, failed to enable media [ 112.862690][ T9807] syzkaller0: entered promiscuous mode [ 112.862718][ T9807] syzkaller0: entered allmulticast mode [ 113.410596][ T9839] lo speed is unknown, defaulting to 1000 [ 113.696781][ T31] audit: type=1326 audit(113.640:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9836 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 113.728592][ T31] audit: type=1326 audit(113.640:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9836 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 113.890978][ T9851] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1127'. [ 113.981907][ T9857] siw: device registration error -23 [ 114.031595][ T9857] lo speed is unknown, defaulting to 1000 [ 114.393163][ T9877] 9pnet_virtio: no channels available for device syz [ 114.488289][ T9886] vhci_hcd: invalid port number 96 [ 114.488320][ T9886] vhci_hcd: default hub control req: 2000 vfffc i0060 l7 [ 114.535538][ T9888] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1142'. [ 115.260819][ T9909] loop1: detected capacity change from 0 to 1024 [ 115.265612][ T9909] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 115.282514][ T9909] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 115.284208][ T9909] EXT4-fs (loop1): orphan cleanup on readonly fs [ 115.285994][ T9909] __quota_error: 15 callbacks suppressed [ 115.293387][ T9909] Quota error (device loop1): v2_read_file_info: Block with free entry 1283 out of range (1, 6). [ 115.295971][ T9909] EXT4-fs warning (device loop1): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 115.300526][ T9909] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 115.302627][ T9909] EXT4-fs error (device loop1): ext4_free_blocks:6696: comm syz.1.1150: Freeing blocks not in datazone - block = 0, count = 4096 [ 115.662707][ T9919] loop4: detected capacity change from 0 to 512 [ 115.664314][ T9919] EXT4-fs: inline encryption not supported [ 115.729284][ T9909] EXT4-fs (loop1): 1 orphan inode deleted [ 115.732141][ T9919] EXT4-fs (loop4): Number of reserved GDT blocks insanely large: 935 [ 115.735614][ T9909] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 115.780682][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.818379][ T9922] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1154'. [ 116.123196][ T9949] tipc: Enabled bearer , priority 0 [ 116.124281][ T9949] syzkaller0: entered promiscuous mode [ 116.124294][ T9949] syzkaller0: entered allmulticast mode [ 116.133366][ T9949] tipc: Resetting bearer [ 116.136103][ T9947] tipc: Resetting bearer [ 116.142578][ T9947] tipc: Disabling bearer [ 116.542067][ T9958] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1167'. [ 116.741385][ T9966] tipc: Enabling of bearer rejected, failed to enable media [ 116.745592][ T9966] syzkaller0: entered promiscuous mode [ 116.755761][ T9966] syzkaller0: entered allmulticast mode [ 117.024426][ T9976] loop2: detected capacity change from 0 to 512 [ 117.026057][ T9976] EXT4-fs: Ignoring removed i_version option [ 117.029357][ T9976] EXT4-fs: Ignoring removed bh option [ 117.076258][ T9976] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 117.156575][ T6543] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.201883][ T9997] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1180'. [ 117.221814][ T9991] loop1: detected capacity change from 0 to 2048 [ 117.231761][ T31] audit: type=1326 audit(117.200:891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9999 comm="syz.3.1185" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 117.232476][ T31] audit: type=1326 audit(117.200:892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9999 comm="syz.3.1185" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 117.232494][ T31] audit: type=1326 audit(117.200:893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9999 comm="syz.3.1185" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=447 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 117.232507][ T31] audit: type=1326 audit(117.200:894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9999 comm="syz.3.1185" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 117.232521][ T31] audit: type=1326 audit(117.200:895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9999 comm="syz.3.1185" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 117.232533][ T31] audit: type=1326 audit(117.200:896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9999 comm="syz.3.1185" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=54 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 117.232545][ T31] audit: type=1326 audit(117.200:897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9999 comm="syz.3.1185" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 117.267404][ T6731] loop1: p3 p4 < > [ 117.267524][ T6731] loop1: p3 start 11362048 is beyond EOD, truncated [ 117.355608][T10014] loop2: detected capacity change from 0 to 512 [ 117.357206][ T9991] loop1: p3 p4 < > [ 117.357330][ T9991] loop1: p3 start 11362048 is beyond EOD, truncated [ 117.618910][T10014] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 117.689546][ T6543] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.693147][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 117.772023][ T6731] udevd[6731]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 117.870191][T10030] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1196'. [ 118.544508][ T31] audit: type=1326 audit(118.510:898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10051 comm="syz.3.1204" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 118.548777][ T31] audit: type=1326 audit(118.520:899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10051 comm="syz.3.1204" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9ff5b3a8 code=0x7ffc0000 [ 118.648086][T10055] tipc: Enabling of bearer rejected, failed to enable media [ 119.233046][T10080] 9pnet_fd: Insufficient options for proto=fd [ 119.242363][T10079] lo speed is unknown, defaulting to 1000 [ 119.290820][T10087] dvmrp1: entered allmulticast mode [ 119.320366][T10089] loop1: detected capacity change from 0 to 512 [ 119.453245][T10089] [ 119.453686][T10089] ====================================================== [ 119.454778][T10089] WARNING: possible circular locking dependency detected [ 119.455827][T10089] syzkaller #0 Not tainted [ 119.456460][T10089] ------------------------------------------------------ [ 119.457490][T10089] syz.1.1219/10089 is trying to acquire lock: [ 119.458519][T10089] ffff0000d78c0b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: ext4_writepages+0x150/0x2a0 [ 119.460105][T10089] [ 119.460105][T10089] but task is already holding lock: [ 119.461159][T10089] ffff0000f5f33a28 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x358/0x6fc [ 119.462593][T10089] [ 119.462593][T10089] which lock already depends on the new lock. [ 119.462593][T10089] [ 119.464102][T10089] [ 119.464102][T10089] the existing dependency chain (in reverse order) is: [ 119.465408][T10089] [ 119.465408][T10089] -> #1 (&ei->xattr_sem){++++}-{4:4}: [ 119.466478][T10089] down_write+0x50/0xc0 [ 119.467197][T10089] ext4_destroy_inline_data+0x30/0x11c [ 119.468098][T10089] ext4_do_writepages+0x3c0/0x39b4 [ 119.468865][T10089] ext4_writepages+0x178/0x2a0 [ 119.469612][T10089] do_writepages+0x270/0x468 [ 119.470430][T10089] file_write_and_wait_range+0x1d0/0x2c4 [ 119.471329][T10089] generic_buffers_fsync_noflush+0x78/0x188 [ 119.472348][T10089] ext4_sync_file+0x2e8/0xb44 [ 119.473072][T10089] vfs_fsync_range+0x160/0x19c [ 119.473843][T10089] ext4_buffered_write_iter+0x458/0x528 [ 119.474820][T10089] ext4_file_write_iter+0x1d8/0x1864 [ 119.475689][T10089] iter_file_splice_write+0x770/0xd7c [ 119.476540][T10089] direct_splice_actor+0xec/0x14c [ 119.477458][T10089] splice_direct_to_actor+0x414/0x994 [ 119.478261][T10089] do_splice_direct+0x130/0x210 [ 119.478988][T10089] do_sendfile+0x3cc/0x658 [ 119.479734][T10089] __arm64_sys_sendfile64+0x1b4/0x274 [ 119.480577][T10089] invoke_syscall+0x98/0x254 [ 119.481386][T10089] el0_svc_common+0x130/0x23c [ 119.482100][T10089] do_el0_svc+0x48/0x58 [ 119.482869][T10089] el0_svc+0x5c/0x254 [ 119.483523][T10089] el0t_64_sync_handler+0x84/0x12c [ 119.484313][T10089] el0t_64_sync+0x198/0x19c [ 119.484979][T10089] [ 119.484979][T10089] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}: [ 119.486183][T10089] __lock_acquire+0x1774/0x30a4 [ 119.487015][T10089] lock_acquire+0x14c/0x2e0 [ 119.487798][T10089] percpu_down_read_internal+0x5c/0x298 [ 119.488724][T10089] ext4_writepages+0x150/0x2a0 [ 119.489527][T10089] do_writepages+0x270/0x468 [ 119.490305][T10089] __writeback_single_inode+0x15c/0x13e8 [ 119.491196][T10089] writeback_single_inode+0x18c/0x54c [ 119.492030][T10089] write_inode_now+0x13c/0x1a4 [ 119.492809][T10089] iput+0x570/0x83c [ 119.493475][T10089] ext4_xattr_block_set+0x13dc/0x24bc [ 119.494408][T10089] ext4_expand_extra_isize_ea+0xeb4/0x182c [ 119.495301][T10089] __ext4_expand_extra_isize+0x2a0/0x37c [ 119.496231][T10089] __ext4_mark_inode_dirty+0x3c0/0x6fc [ 119.497212][T10089] ext4_evict_inode+0x930/0x1084 [ 119.497996][T10089] evict+0x414/0x928 [ 119.498706][T10089] iput+0x6e4/0x83c [ 119.499338][T10089] ext4_process_orphan+0x240/0x2b4 [ 119.500154][T10089] ext4_orphan_cleanup+0x930/0x107c [ 119.500953][T10089] ext4_fill_super+0x4724/0x4ea4 [ 119.501787][T10089] get_tree_bdev_flags+0x360/0x414 [ 119.502636][T10089] get_tree_bdev+0x2c/0x3c [ 119.503325][T10089] ext4_get_tree+0x28/0x38 [ 119.504144][T10089] vfs_get_tree+0x90/0x28c [ 119.504928][T10089] do_new_mount+0x278/0x7f4 [ 119.505606][T10089] path_mount+0x5b4/0xde0 [ 119.506414][T10089] __arm64_sys_mount+0x3e8/0x468 [ 119.507250][T10089] invoke_syscall+0x98/0x254 [ 119.508058][T10089] el0_svc_common+0x130/0x23c [ 119.508886][T10089] do_el0_svc+0x48/0x58 [ 119.509531][T10089] el0_svc+0x5c/0x254 [ 119.510253][T10089] el0t_64_sync_handler+0x84/0x12c [ 119.511121][T10089] el0t_64_sync+0x198/0x19c [ 119.511871][T10089] [ 119.511871][T10089] other info that might help us debug this: [ 119.511871][T10089] [ 119.513405][T10089] Possible unsafe locking scenario: [ 119.513405][T10089] [ 119.514504][T10089] CPU0 CPU1 [ 119.515401][T10089] ---- ---- [ 119.516243][T10089] lock(&ei->xattr_sem); [ 119.516946][T10089] lock(&sbi->s_writepages_rwsem); [ 119.518189][T10089] lock(&ei->xattr_sem); [ 119.519189][T10089] rlock(&sbi->s_writepages_rwsem); [ 119.520071][T10089] [ 119.520071][T10089] *** DEADLOCK *** [ 119.520071][T10089] [ 119.521292][T10089] 3 locks held by syz.1.1219/10089: [ 119.522112][T10089] #0: ffff0000d7a480e0 (&type->s_umount_key#26/1){+.+.}-{4:4}, at: alloc_super+0x1a0/0x80c [ 119.523573][T10089] #1: ffff0000d7a48618 (sb_internal){.+.+}-{0:0}, at: ext4_evict_inode+0x2b0/0x1084 [ 119.525046][T10089] #2: ffff0000f5f33a28 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x358/0x6fc [ 119.526666][T10089] [ 119.526666][T10089] stack backtrace: [ 119.527541][T10089] CPU: 1 UID: 0 PID: 10089 Comm: syz.1.1219 Not tainted syzkaller #0 PREEMPT [ 119.528894][T10089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 119.530313][T10089] Call trace: [ 119.530778][T10089] show_stack+0x2c/0x3c (C) [ 119.531442][T10089] __dump_stack+0x30/0x40 [ 119.532083][T10089] dump_stack_lvl+0xd8/0x12c [ 119.532818][T10089] dump_stack+0x1c/0x28 [ 119.533421][T10089] print_circular_bug+0x324/0x32c [ 119.534206][T10089] check_noncircular+0x154/0x174 [ 119.534905][T10089] __lock_acquire+0x1774/0x30a4 [ 119.535610][T10089] lock_acquire+0x14c/0x2e0 [ 119.536274][T10089] percpu_down_read_internal+0x5c/0x298 [ 119.537178][T10089] ext4_writepages+0x150/0x2a0 [ 119.537897][T10089] do_writepages+0x270/0x468 [ 119.538595][T10089] __writeback_single_inode+0x15c/0x13e8 [ 119.539411][T10089] writeback_single_inode+0x18c/0x54c [ 119.540228][T10089] write_inode_now+0x13c/0x1a4 [ 119.540924][T10089] iput+0x570/0x83c [ 119.541510][T10089] ext4_xattr_block_set+0x13dc/0x24bc [ 119.542303][T10089] ext4_expand_extra_isize_ea+0xeb4/0x182c [ 119.543149][T10089] __ext4_expand_extra_isize+0x2a0/0x37c [ 119.544048][T10089] __ext4_mark_inode_dirty+0x3c0/0x6fc [ 119.544846][T10089] ext4_evict_inode+0x930/0x1084 [ 119.545574][T10089] evict+0x414/0x928 [ 119.546133][T10089] iput+0x6e4/0x83c [ 119.546708][T10089] ext4_process_orphan+0x240/0x2b4 [ 119.547464][T10089] ext4_orphan_cleanup+0x930/0x107c [ 119.548192][T10089] ext4_fill_super+0x4724/0x4ea4 [ 119.548916][T10089] get_tree_bdev_flags+0x360/0x414 [ 119.549614][T10089] get_tree_bdev+0x2c/0x3c [ 119.550259][T10089] ext4_get_tree+0x28/0x38 [ 119.550946][T10089] vfs_get_tree+0x90/0x28c [ 119.551586][T10089] do_new_mount+0x278/0x7f4 [ 119.552238][T10089] path_mount+0x5b4/0xde0 [ 119.552867][T10089] __arm64_sys_mount+0x3e8/0x468 [ 119.553611][T10089] invoke_syscall+0x98/0x254 [ 119.554282][T10089] el0_svc_common+0x130/0x23c [ 119.554966][T10089] do_el0_svc+0x48/0x58 [ 119.555600][T10089] el0_svc+0x5c/0x254 [ 119.556211][T10089] el0t_64_sync_handler+0x84/0x12c [ 119.556960][T10089] el0t_64_sync+0x198/0x19c [ 119.788163][T10099] tipc: Enabling of bearer rejected, failed to enable media [ 119.881329][T10089] ------------[ cut here ]------------ [ 119.881358][T10089] EA inode 11 i_nlink=2 [ 119.882639][T10089] WARNING: CPU: 1 PID: 10089 at fs/ext4/xattr.c:1053 ext4_xattr_inode_update_ref+0x444/0x488 [ 119.884719][T10089] Modules linked in: [ 119.885270][T10089] CPU: 1 UID: 0 PID: 10089 Comm: syz.1.1219 Not tainted syzkaller #0 PREEMPT [ 119.886630][T10089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/30/2025 [ 119.888183][T10089] pstate: 63400005 (nZCv daif +PAN -UAO +TCO +DIT -SSBS BTYPE=--) [ 119.889440][T10089] pc : ext4_xattr_inode_update_ref+0x444/0x488 [ 119.890416][T10089] lr : ext4_xattr_inode_update_ref+0x444/0x488 [ 119.891367][T10089] sp : ffff80009c3e6dc0 [ 119.892011][T10089] x29: ffff80009c3e6e50 x28: 0000000000000000 x27: 1fffe0001ebbf427 [ 119.893241][T10089] x26: dfff800000000000 x25: ffff80009c3e6dc0 x24: ffff70001387cdb8 [ 119.894454][T10089] x23: ffff800092ef2000 x22: ffff0000f5df9f88 x21: 0000000000000002 [ 119.895630][T10089] x20: 0000000000000001 x19: ffff0000f5df9f48 x18: 1fffe00033776488 [ 119.896908][T10089] x17: ffff80008f85e000 x16: ffff80008b065bd0 x15: 0000000000000001 [ 119.898134][T10089] x14: 1fffe0001b07e5c8 x13: 0000000000000000 x12: 0000000000000000 [ 119.899320][T10089] x11: 0000000000080000 x10: 0000000000000003 x9 : 0371e31ed4292600 [ 119.900577][T10089] x8 : 0371e31ed4292600 x7 : 0000000000000000 x6 : ffff800080493890 [ 119.901783][T10089] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff800080485e24 [ 119.903029][T10089] x2 : 0000000000000001 x1 : ffff80008b6b38c0 x0 : 0000000000000001 [ 119.904281][T10089] Call trace: [ 119.904803][T10089] ext4_xattr_inode_update_ref+0x444/0x488 (P) [ 119.905777][T10089] ext4_xattr_set_entry+0x928/0x15c0 [ 119.906583][T10089] ext4_xattr_ibody_set+0x204/0x5fc [ 119.907287][T10089] ext4_expand_extra_isize_ea+0xefc/0x182c [ 119.908140][T10089] __ext4_expand_extra_isize+0x2a0/0x37c [ 119.908961][T10089] __ext4_mark_inode_dirty+0x3c0/0x6fc [ 119.909816][T10089] ext4_evict_inode+0x930/0x1084 [ 119.910712][T10089] evict+0x414/0x928 [ 119.911344][T10089] iput+0x6e4/0x83c [ 119.911903][T10089] ext4_process_orphan+0x240/0x2b4 [ 119.912713][T10089] ext4_orphan_cleanup+0x930/0x107c [ 119.913520][T10089] ext4_fill_super+0x4724/0x4ea4 [ 119.914256][T10089] get_tree_bdev_flags+0x360/0x414 [ 119.915070][T10089] get_tree_bdev+0x2c/0x3c [ 119.915778][T10089] ext4_get_tree+0x28/0x38 [ 119.916471][T10089] vfs_get_tree+0x90/0x28c [ 119.917139][T10089] do_new_mount+0x278/0x7f4 [ 119.917863][T10089] path_mount+0x5b4/0xde0 [ 119.918554][T10089] __arm64_sys_mount+0x3e8/0x468 [ 119.919350][T10089] invoke_syscall+0x98/0x254 [ 119.920112][T10089] el0_svc_common+0x130/0x23c [ 119.920790][T10089] do_el0_svc+0x48/0x58 [ 119.921342][T10089] el0_svc+0x5c/0x254 [ 119.921969][T10089] el0t_64_sync_handler+0x84/0x12c [ 119.922744][T10089] el0t_64_sync+0x198/0x19c [ 119.923428][T10089] irq event stamp: 2625 [ 119.924023][T10089] hardirqs last enabled at (2625): [] _raw_spin_unlock_irqrestore+0x38/0x98 [ 119.925553][T10089] hardirqs last disabled at (2624): [] _raw_spin_lock_irqsave+0x2c/0x7c [ 119.927008][T10089] softirqs last enabled at (1942): [] local_bh_enable+0x10/0x34 [ 119.928534][T10089] softirqs last disabled at (1940): [] local_bh_disable+0x10/0x34 [ 119.929962][T10089] ---[ end trace 0000000000000000 ]--- [ 119.933310][T10089] EXT4-fs (loop1): 1 orphan inode deleted [ 119.934713][T10089] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 119.952157][ T6544] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 125.947885][ T2428] ieee802154 phy1 wpan1: encryption failed: -22