last executing test programs: 4.087264734s ago: executing program 0 (id=452): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xe, 0xb}, {0x0, 0x1}, {0x0, 0xa}}}, 0x24}}, 0x800) 2.506733553s ago: executing program 0 (id=459): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0xff, 0x0, 0x7ffc0002}]}) bpf$PROG_LOAD(0x5, 0x0, 0x0) shmdt(0x0) 2.406979073s ago: executing program 3 (id=461): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000200)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000007c0)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) r2 = socket(0x2a, 0x2, 0x0) sendmsg$TIPC_NL_LINK_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x20040845}, 0x0) getsockname$packet(r2, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000540)=@newtfilter={0x3c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0xfffa}, {}, {0x1c, 0xfff9}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_FLAGS={0x8, 0x16, 0x12}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20000004}, 0x2400c801) r4 = socket$netlink(0x10, 0x3, 0x0) sendmmsg(r4, &(0x7f00000002c0), 0x40000000000009f, 0x0) 2.206401972s ago: executing program 0 (id=462): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000a66751ccbe612788c940cce03d85ba6cadd690b18287474a42f2f31d7ddaa77e56b7377231af3f04b9523301f9eb0f8e48702baeba28ab6c97d820e6a6de52d698d95cf16ddb03aee27f65e76696c7fa"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) socket$netlink(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b000000000000"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r1, @ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10) unshare(0x20060400) syz_clone(0x26801000, 0x0, 0x0, 0x0, 0x0, 0x0) r3 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r3, 0x6, 0x0, 0x0, 0x0) r4 = fsmount(r3, 0x0, 0x2) r5 = openat$cgroup_subtree(r4, &(0x7f0000000100), 0x2, 0x0) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x589b}, 0x50) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r6}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r7}, 0x10) write$cgroup_subtree(r5, &(0x7f0000000300)=ANY=[@ANYBLOB='-cpu'], 0x5) write$cgroup_subtree(r5, &(0x7f00000001c0)={[{0x2b, 'cpu'}]}, 0x5) socket$rds(0x15, 0x5, 0x0) r8 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000340)={'syz_tun\x00', 0x0}) sendmsg$nl_route_sched(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@getchain={0x24, 0x11, 0x1, 0x2003ffc, 0x40, {0x0, 0x0, 0x0, r9, {0x0, 0xf}, {0x1}, {0x1}}}, 0x24}}, 0x0) r10 = getpid() r11 = syz_pidfd_open(r10, 0x0) setns(r11, 0x24020000) syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0) r12 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r12, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060101000000000000000000000080050005000a000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) mkdirat(0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x2) 2.080967064s ago: executing program 2 (id=463): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00"/13], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000ddff00850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffbf, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10) pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) 2.080524974s ago: executing program 3 (id=464): openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0, 0xffffffffffffffff}, &(0x7f0000000300), &(0x7f00000002c0)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x18, 0xd, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70) 1.892767461s ago: executing program 3 (id=466): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000800030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xc4}, 0x890) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={{0x14}, [@NFT_MSG_DELCHAIN={0x20, 0x5, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x48}, 0x1, 0x0, 0x0, 0x8001}, 0x0) 1.727880507s ago: executing program 2 (id=467): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000010000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x18) rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffff9]}, 0x0, 0x8) r2 = gettid() tkill(r2, 0x7) 1.571175732s ago: executing program 2 (id=470): socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r1, &(0x7f0000003280)={0x0, 0x0, 0x0}, 0x0) sendmsg$inet(r1, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000f40)=[{&(0x7f00000042c0)="86", 0x1}], 0x1}, 0x0) sendmsg$tipc(r1, &(0x7f0000002700)={0x0, 0x0, 0x0}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000"], 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) recvmsg(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x0) 1.500570769s ago: executing program 3 (id=471): r0 = socket(0x11, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'gre0\x00', 0x0}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0}, 0x18) bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @remote}, 0x14) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000300)=0xe9, 0x4) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0900000003000000e27f000001"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r4}, 0x10) sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000280)=ANY=[@ANYBLOB="3f0114"], 0xdd12}], 0x1}, 0x20040051) 1.425113696s ago: executing program 0 (id=472): r0 = socket$key(0xf, 0x3, 0x2) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x1f) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000580)=ANY=[@ANYBLOB="02030003130000002cbd7040fcdbdf2503000900800000001cdc0dca1d9f68846960e56de42944af05000600000000000a004e2300000095ff010000000000000000000000000001010000800000000002000100000000000000070c0000008005000500000000000a004e23000000fffe800000000000000000000000000096ff010000000000000200130002"], 0x98}, 0x1, 0x7}, 0x0) 1.382070949s ago: executing program 1 (id=473): bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x18, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000002000000000000000018090000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x23, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffa}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000002080)={&(0x7f0000000300)='kfree\x00', r0}, 0x10) r1 = socket(0x2, 0x80805, 0x0) sendmmsg$inet(r1, &(0x7f0000000880)=[{{&(0x7f0000000080)={0x2, 0x0, @rand_addr=0xac1414bb}, 0x3804, &(0x7f0000000100)=[{&(0x7f00000000c0)='Q', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x69, &(0x7f0000000400)=[{&(0x7f0000000240)="b9", 0x26892}], 0xbb}}], 0x2, 0x0) 1.316762616s ago: executing program 2 (id=474): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000008600850000001b000000b70000000000000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000800030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0xc4}, 0x890) socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[@ANYBLOB="14000000100001e456b8aa00000000000000000a3c000000120a09000000000000000000020000000900020073797a310000000008000440080000000900010073797a300000000008000340000000011400000011"], 0x64}}, 0x4004000) 1.316247066s ago: executing program 3 (id=475): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, 0x0, 0x0) connect$pppoe(r0, &(0x7f0000000080)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x50}, 'ip_vti0\x00'}}, 0x1e) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) recvmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000004140)=[{&(0x7f0000000240)=""/212, 0xd4}], 0x1}, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000001c0)=ANY=[@ANYBLOB="4c030000160001000000000000000000fc010000000000000000000000000000fe88000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="ac141400000000000000000000000000000000006c000000ac14140000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000025bd7000000000000000000000000000000000000300000006"], 0x34c}}, 0x0) 1.190176168s ago: executing program 1 (id=476): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x700) ptrace(0x10, r2) ptrace$getregset(0x4205, r2, 0x200, 0x0) capset(0x0, 0x0) 1.156836091s ago: executing program 0 (id=477): r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8f70000000000ff000044850000000e000000650000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) syz_usb_connect$uac1(0x4, 0x71, &(0x7f0000000040)=ANY=[], 0x0) close_range(r0, 0xffffffffffffffff, 0x200000000000000) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x1, 0x0, 0x7ffc0005}]}) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_UNIMAP(r2, 0x4b66, &(0x7f0000000000)={0xfffffc64, 0x0}) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYRES8=0x0, @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10) ioprio_set$uid(0x3, 0x0, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x10, &(0x7f0000000400)=ANY=[@ANYRES64=r3, @ANYRESDEC=r4, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10) r6 = socket(0x1e, 0x5, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) mq_open(0x0, 0x40, 0x9, 0x0) setsockopt$packet_tx_ring(r6, 0x10f, 0x87, 0x0, 0x0) r8 = socket(0x1e, 0x805, 0x0) setsockopt$packet_tx_ring(r8, 0x10f, 0x87, &(0x7f00000000c0)=@req3={0x80000000, 0x0, 0x2}, 0x1c) socket$inet(0x2, 0x4000000000000001, 0x0) sendto$inet(r8, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) 1.049966741s ago: executing program 2 (id=478): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x200000a, 0x13, r1, 0x0) r2 = gettid() process_vm_writev(r2, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0x7ffff000}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) 1.023164464s ago: executing program 3 (id=479): r0 = socket$inet6(0xa, 0x80002, 0x0) unshare(0x6c000200) r1 = msgget$private(0x0, 0x0) msgsnd(r1, &(0x7f0000000480)=ANY=[@ANYRESDEC], 0x2000, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4) r2 = socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000880)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000002000000000086dd214af9fdcbfd0000010000000300000000010006000000000000000b00feffffff00000000000009020000000000", @ANYRES16=r1, @ANYRES64=r2, @ANYRES32=r0], 0x0, 0x7a, 0x0, 0x20001}, 0x28) sendmsg$nl_route_sched(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000980)=@gettfilter={0x6c, 0x2e, 0x1, 0x70bd2c, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x6, 0xd}, {0xc}, {0xc, 0xa}}, [{0x8, 0xb, 0x7f}, {0x8, 0xb, 0x9}, {0x8, 0xb, 0xbfbc}, {0x8, 0xb, 0x240}, {0x8, 0xb, 0x6ba5}, {0x8}, {0x8, 0xb, 0xac03}, {0x8, 0xb, 0x6}, {0x8, 0xb, 0x3}]}, 0x6c}}, 0x4) r3 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r3, 0x107, 0x8, &(0x7f0000000000)=0x23a, 0x4) r4 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ipvs(&(0x7f0000000500), r4) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') r5 = syz_io_uring_setup(0x5c6, &(0x7f0000000140)={0x0, 0x1001, 0x0, 0x4}, &(0x7f00000001c0)=0x0, &(0x7f0000000580)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) syz_io_uring_submit(r6, r7, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1}) io_uring_enter(r5, 0x6e2, 0x3900, 0x1, 0x0, 0xe00) 871.494328ms ago: executing program 1 (id=480): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x6}, 0x18) r1 = fsopen(&(0x7f0000000100)='ramfs\x00', 0x1) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) r2 = fsmount(r1, 0x0, 0x20) symlinkat(&(0x7f0000000000)='.\x00', r2, &(0x7f0000000140)='./file0\x00') openat(r2, &(0x7f00000000c0)='./file0\x00', 0x515a02, 0x52abe154ad664f26) 576.841466ms ago: executing program 1 (id=481): socket$tipc(0x1e, 0x2, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000280)='ns\x00') readlinkat(r0, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000002780)=""/4112, 0x1010) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x50) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c2000001a21428c6c08586dd61bcc1"], 0x0) 421.426801ms ago: executing program 1 (id=482): socket$nl_generic(0x10, 0x3, 0x10) socketpair$unix(0x1, 0x3, 0x0, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0) add_key$user(0x0, 0x0, &(0x7f0000000340)="eee8d8791d702dd9d30672e3cb2d1630e7c2937d377dd0b4083f41f08494cdb4ac47ca08a341b98de19d1c8bf89a2e7a0abb5a5af41f3322ba019a1af1cef76739ec6ea379e6c43795c997f7f001341531", 0x51, 0x0) r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f00000000c0)={0x84, @dev={0xac, 0x14, 0x14, 0x1a}, 0x15, 0x3, 'wlc\x00', 0x1, 0x0, 0x4}, 0x2c) r1 = socket$kcm(0xa, 0x2, 0x0) setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'wrr\x00', 0x23, 0x81, 0x5}, {@dev={0xac, 0x14, 0x14, 0x3c}, 0x4e23, 0x10000, 0x1cb, 0x12d61, 0x12d58}}, 0x44) sendmsg$sock(r1, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0) 388.571103ms ago: executing program 0 (id=483): bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480), 0x4) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) readv(r0, &(0x7f0000000000)=[{&(0x7f0000000580)=""/244, 0xf4}], 0x1) timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={&(0x7f00000002c0)="c688f20b14f769be84d7c302f6b3d5bb91ae901bbb03ae1edf9d162fe0cc3d380a54cbdfa191ec1fbdba406c78cc1f042dfab4becb35a536ead5ae17bed0ef58f0fc3b08eaacddc5e6f6395f7a76f68868d32548d455d37a63fcd3e72388fc980ac6d17b8544454c445c7ad2b7427bfb76", 0x0}}, &(0x7f0000000280)) r1 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) syz_emit_ethernet(0x56, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaa00000001000008004d1e00bb1a6fb0441c0fc10a01010100000005ac14d4e23e91431cf661080000000002004e224e22", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="50c2000290781e83"], 0x0) fcntl$setsig(r1, 0xa, 0x13) fcntl$setlease(r1, 0x400, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000180)={{}, {0x0, 0x1c9c380}}, 0x0) truncate(&(0x7f0000000040)='./file0\x00', 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@getqdisc={0x24, 0x26, 0x1, 0x70bd2a, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {}, {0xfff1, 0xb}, {0xa, 0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000) setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00'}, 0x10) 220.73601ms ago: executing program 2 (id=484): unshare(0x28000600) r0 = socket$kcm(0x2d, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, &(0x7f0000000100)={r0}) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(r1, 0x11d, 0xf, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x1a08700, &(0x7f0000000700)={[{@nodioread_nolock}, {@nouid32}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@usrquota}, {@journal_dev={'journal_dev', 0x3d, 0x1}}]}, 0x0, 0x470, &(0x7f0000001040)="$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") syz_open_dev$vcsn(&(0x7f0000000080), 0xb, 0x200280) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, 0x0, &(0x7f0000000240)) setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xf, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe}, 0x94) r2 = openat$misdntimer(0xffffffffffffff9c, 0x0, 0x101201, 0x0) ioctl$IMADDTIMER(r2, 0x80044940, 0x0) ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000080)=0x14) close(r2) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_REM(0xffffffffffffffff, 0x84, 0x65, &(0x7f0000000000)=[@in6={0xa, 0x4e21, 0xfa9, @private1, 0x9}], 0x1c) socket$inet6_sctp(0xa, 0x1, 0x84) 0s ago: executing program 1 (id=485): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'vlan0\x00', &(0x7f0000000000)=@ethtool_sset_info={0x37, 0x3, 0xbd, [0x7, 0x5]}}) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.192' (ED25519) to the list of known hosts. [ 80.450559][ T5777] cgroup: Unknown subsys name 'net' [ 80.587881][ T5777] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 82.271764][ T5777] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 84.132694][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 84.142674][ T51] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 84.150834][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 84.159674][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 84.167150][ T51] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 84.189072][ T5800] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 84.205175][ T5801] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 84.208589][ T51] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 84.213755][ T5800] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 84.229243][ T5801] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 84.236399][ T5800] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 84.237287][ T5804] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 84.246014][ T5800] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 84.251671][ T5804] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 84.258638][ T5800] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 84.265137][ T5804] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 84.272392][ T5801] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 84.280055][ T5800] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 84.287947][ T5801] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 84.296140][ T5800] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 84.307281][ T5800] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 84.314820][ T5801] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 84.336358][ T5800] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 84.344287][ T5800] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 84.850550][ T5787] chnl_net:caif_netlink_parms(): no params data found [ 84.925028][ T5788] chnl_net:caif_netlink_parms(): no params data found [ 84.995329][ T5791] chnl_net:caif_netlink_parms(): no params data found [ 85.071589][ T5789] chnl_net:caif_netlink_parms(): no params data found [ 85.121628][ T5787] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.129140][ T5787] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.136560][ T5787] bridge_slave_0: entered allmulticast mode [ 85.144465][ T5787] bridge_slave_0: entered promiscuous mode [ 85.158199][ T5787] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.165504][ T5787] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.172771][ T5787] bridge_slave_1: entered allmulticast mode [ 85.180305][ T5787] bridge_slave_1: entered promiscuous mode [ 85.208473][ T5788] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.215651][ T5788] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.222967][ T5788] bridge_slave_0: entered allmulticast mode [ 85.231114][ T5788] bridge_slave_0: entered promiscuous mode [ 85.246914][ T5788] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.254221][ T5788] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.261913][ T5788] bridge_slave_1: entered allmulticast mode [ 85.269336][ T5788] bridge_slave_1: entered promiscuous mode [ 85.340227][ T5787] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.389595][ T5787] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.414173][ T5791] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.421509][ T5791] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.430178][ T5791] bridge_slave_0: entered allmulticast mode [ 85.437317][ T5791] bridge_slave_0: entered promiscuous mode [ 85.447568][ T5788] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.512082][ T5791] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.519729][ T5791] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.526945][ T5791] bridge_slave_1: entered allmulticast mode [ 85.534673][ T5791] bridge_slave_1: entered promiscuous mode [ 85.543649][ T5788] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.579502][ T5787] team0: Port device team_slave_0 added [ 85.613707][ T5789] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.621232][ T5789] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.629022][ T5789] bridge_slave_0: entered allmulticast mode [ 85.636007][ T5789] bridge_slave_0: entered promiscuous mode [ 85.644444][ T5789] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.651926][ T5789] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.659683][ T5789] bridge_slave_1: entered allmulticast mode [ 85.667005][ T5789] bridge_slave_1: entered promiscuous mode [ 85.675540][ T5787] team0: Port device team_slave_1 added [ 85.711884][ T5788] team0: Port device team_slave_0 added [ 85.723405][ T5791] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.759521][ T5788] team0: Port device team_slave_1 added [ 85.766440][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.774060][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.800592][ T5787] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 85.816497][ T5791] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.859980][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 85.866993][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 85.893205][ T5787] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 85.920267][ T5789] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.932818][ T5789] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.989376][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 85.996397][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.023695][ T5788] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.036902][ T5788] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.044427][ T5788] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.072171][ T5788] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.089109][ T5791] team0: Port device team_slave_0 added [ 86.114643][ T5789] team0: Port device team_slave_0 added [ 86.136809][ T5791] team0: Port device team_slave_1 added [ 86.161407][ T5789] team0: Port device team_slave_1 added [ 86.220126][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.227134][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.253426][ T5789] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.276979][ T5787] hsr_slave_0: entered promiscuous mode [ 86.286091][ T5787] hsr_slave_1: entered promiscuous mode [ 86.306221][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.313598][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.339886][ T5791] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.352066][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.359447][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.385483][ T5789] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.397011][ T5800] Bluetooth: hci3: command tx timeout [ 86.397030][ T5795] Bluetooth: hci2: command tx timeout [ 86.403339][ T5104] Bluetooth: hci0: command tx timeout [ 86.408598][ T5795] Bluetooth: hci1: command tx timeout [ 86.439606][ T5791] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.446617][ T5791] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.473020][ T5791] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.511043][ T5788] hsr_slave_0: entered promiscuous mode [ 86.517660][ T5788] hsr_slave_1: entered promiscuous mode [ 86.524625][ T5788] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 86.533572][ T5788] Cannot create hsr debugfs directory [ 86.642222][ T5791] hsr_slave_0: entered promiscuous mode [ 86.655247][ T5791] hsr_slave_1: entered promiscuous mode [ 86.662097][ T5791] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 86.670806][ T5791] Cannot create hsr debugfs directory [ 86.688628][ T5789] hsr_slave_0: entered promiscuous mode [ 86.695227][ T5789] hsr_slave_1: entered promiscuous mode [ 86.701753][ T5789] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 86.709553][ T5789] Cannot create hsr debugfs directory [ 87.185435][ T5787] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 87.224828][ T5787] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 87.236558][ T5787] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 87.270851][ T5787] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 87.330826][ T5791] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 87.342126][ T5791] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 87.367384][ T5791] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 87.384179][ T5791] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 87.531589][ T5788] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 87.553861][ T5788] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 87.589564][ T5788] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 87.605175][ T5788] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 87.709793][ T5789] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 87.724458][ T5789] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 87.770810][ T5789] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 87.790197][ T5787] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.799659][ T5789] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 87.864754][ T5791] 8021q: adding VLAN 0 to HW filter on device bond0 [ 87.902485][ T5787] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.928755][ T5791] 8021q: adding VLAN 0 to HW filter on device team0 [ 87.948006][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.955447][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.965987][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 87.973223][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 87.999874][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.007133][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.018730][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.025988][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.136082][ T5788] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.250202][ T5788] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.261881][ T5789] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.294409][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.301681][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.324042][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.331362][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.414804][ T5789] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.443670][ T2115] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.450914][ T2115] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.473614][ T5795] Bluetooth: hci1: command tx timeout [ 88.480896][ T5801] Bluetooth: hci0: command tx timeout [ 88.480922][ T5104] Bluetooth: hci3: command tx timeout [ 88.486350][ T5801] Bluetooth: hci2: command tx timeout [ 88.532114][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.539363][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.668172][ T5791] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.692073][ T5787] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 88.744774][ T5789] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 88.861922][ T5791] veth0_vlan: entered promiscuous mode [ 88.927319][ T5787] veth0_vlan: entered promiscuous mode [ 88.959631][ T5791] veth1_vlan: entered promiscuous mode [ 89.014368][ T5787] veth1_vlan: entered promiscuous mode [ 89.112076][ T5788] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.126957][ T5791] veth0_macvtap: entered promiscuous mode [ 89.154785][ T5791] veth1_macvtap: entered promiscuous mode [ 89.183977][ T5787] veth0_macvtap: entered promiscuous mode [ 89.195143][ T5787] veth1_macvtap: entered promiscuous mode [ 89.216997][ T5789] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.263310][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.277206][ T5791] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.311458][ T5791] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.324646][ T5791] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.333649][ T5791] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.343514][ T5791] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.363014][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 89.374116][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.387231][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.419160][ T5787] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 89.433935][ T5787] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.446413][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.456860][ T5788] veth0_vlan: entered promiscuous mode [ 89.483950][ T5787] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.493296][ T5787] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.502369][ T5787] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.511400][ T5787] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.542492][ T5788] veth1_vlan: entered promiscuous mode [ 89.573768][ T5789] veth0_vlan: entered promiscuous mode [ 89.663196][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.670509][ T5789] veth1_vlan: entered promiscuous mode [ 89.683146][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.735385][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.748749][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.753331][ T5788] veth0_macvtap: entered promiscuous mode [ 89.780871][ T5788] veth1_macvtap: entered promiscuous mode [ 89.842889][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.851412][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.877507][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 89.888557][ T1076] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.896430][ T1076] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.896824][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.914933][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 89.925507][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.937139][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.945630][ T5789] veth0_macvtap: entered promiscuous mode [ 89.963174][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 89.974964][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.984956][ T5788] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 89.996114][ T5788] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.009758][ T5788] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.040429][ T5789] veth1_macvtap: entered promiscuous mode [ 90.053751][ T5788] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.074464][ T5788] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.083754][ T5788] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.093023][ T5788] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.155605][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.202696][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.218491][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.260153][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.279599][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.290912][ T28] audit: type=1326 audit(1762881696.255:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5882 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 90.297244][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.327010][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.340689][ T28] audit: type=1326 audit(1762881696.255:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5882 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 90.384654][ T28] audit: type=1326 audit(1762881696.265:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5882 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 90.485709][ T28] audit: type=1326 audit(1762881696.285:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5882 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 90.524740][ T5890] syz.1.5[5890]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 90.536401][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.539397][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.565837][ T5801] Bluetooth: hci2: command tx timeout [ 90.571709][ T5795] Bluetooth: hci1: command tx timeout [ 90.577189][ T5795] Bluetooth: hci3: command tx timeout [ 90.581471][ T5104] Bluetooth: hci0: command tx timeout [ 90.582958][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.598996][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.607487][ T5890] loop1: detected capacity change from 0 to 128 [ 90.609555][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.609571][ T5789] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.609589][ T5789] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.611638][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.620194][ T28] audit: type=1326 audit(1762881696.285:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5882 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 90.627598][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.676271][ T5890] EXT4-fs: Ignoring removed nobh option [ 90.727587][ T28] audit: type=1326 audit(1762881696.285:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5882 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 90.744879][ T5789] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.778791][ T5789] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.801046][ T5789] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.811853][ T5789] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.819826][ T28] audit: type=1326 audit(1762881696.285:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5882 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 90.835346][ T5890] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 90.861054][ T5890] ext4 filesystem being mounted at /1/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 90.909306][ T28] audit: type=1326 audit(1762881696.285:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5882 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 90.933124][ T5890] EXT4-fs error (device loop1): __ext4_remount:6736: comm syz.1.5: Abort forced by user [ 90.937717][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.944123][ T28] audit: type=1326 audit(1762881696.285:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5882 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 90.974102][ T5890] EXT4-fs (loop1): Remounting filesystem read-only [ 90.982029][ T5890] EXT4-fs (loop1): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 90.986345][ T28] audit: type=1326 audit(1762881696.285:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5882 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 90.994698][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.142048][ T5787] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 91.257408][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.297905][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.500383][ T2115] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.534523][ T2115] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.596758][ T5906] ======================================================= [ 91.596758][ T5906] WARNING: The mand mount option has been deprecated and [ 91.596758][ T5906] and is ignored by this kernel. Remove the mand [ 91.596758][ T5906] option from the mount to silence this warning. [ 91.596758][ T5906] ======================================================= [ 91.645857][ T5907] netlink: 100 bytes leftover after parsing attributes in process `syz.0.8'. [ 91.937175][ T5912] loop2: detected capacity change from 0 to 1024 [ 91.952625][ T5912] EXT4-fs: inline encryption not supported [ 91.997176][ T5912] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 92.072322][ T5912] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 92.162002][ T787] cfg80211: failed to load regulatory.db [ 92.324009][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 92.629795][ T5104] Bluetooth: hci3: command tx timeout [ 92.634886][ T5801] Bluetooth: hci0: command tx timeout [ 92.635604][ T5104] Bluetooth: hci1: command tx timeout [ 92.640804][ T5795] Bluetooth: hci2: command tx timeout [ 93.629573][ T5954] netlink: 108 bytes leftover after parsing attributes in process `syz.2.21'. [ 93.666077][ T5955] netlink: 24 bytes leftover after parsing attributes in process `syz.0.22'. [ 94.092162][ T5971] netlink: 8 bytes leftover after parsing attributes in process `syz.0.25'. [ 94.198714][ T5973] netlink: 8 bytes leftover after parsing attributes in process `syz.0.25'. [ 94.811326][ T5990] netlink: 4 bytes leftover after parsing attributes in process `syz.2.30'. [ 95.006986][ T5996] random: crng reseeded on system resumption [ 95.021311][ T5999] Zero length message leads to an empty skb [ 95.095077][ T5990] hsr_slave_1 (unregistering): left promiscuous mode [ 95.155360][ T5999] veth0_to_team: entered promiscuous mode [ 96.402054][ T28] kauditd_printk_skb: 9 callbacks suppressed [ 96.402078][ T28] audit: type=1326 audit(1762881702.255:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6007 comm="syz.1.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 96.538387][ T28] audit: type=1326 audit(1762881702.255:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6007 comm="syz.1.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 96.601781][ T28] audit: type=1326 audit(1762881702.255:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6007 comm="syz.1.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 96.678504][ T28] audit: type=1326 audit(1762881702.255:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6007 comm="syz.1.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 96.773381][ T28] audit: type=1326 audit(1762881702.255:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6007 comm="syz.1.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=75 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 96.828395][ T28] audit: type=1326 audit(1762881702.255:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6007 comm="syz.1.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 96.956501][ T6024] loop1: detected capacity change from 0 to 512 [ 97.047690][ T6024] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 97.086854][ T6020] loop2: detected capacity change from 0 to 8192 [ 97.175814][ T6024] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 97.190597][ T6020] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 97.402663][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 97.472609][ T6034] loop0: detected capacity change from 0 to 1024 [ 97.528056][ T6034] EXT4-fs: Ignoring removed orlov option [ 97.574729][ T6034] EXT4-fs (loop0): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 97.633312][ T6034] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 97.661970][ T6039] loop1: detected capacity change from 0 to 1024 [ 97.770124][ T6039] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 97.845560][ T6039] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 97.872042][ T28] audit: type=1326 audit(1762881703.845:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.49" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 97.956796][ T28] audit: type=1326 audit(1762881703.845:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.49" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 98.044794][ T28] audit: type=1326 audit(1762881703.875:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.49" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 98.104926][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 98.121359][ T28] audit: type=1326 audit(1762881703.875:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6045 comm="syz.2.49" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 98.125025][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.064569][ T6066] loop3: detected capacity change from 0 to 512 [ 99.096156][ T6066] EXT4-fs: Ignoring removed nobh option [ 99.137120][ T6066] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 99.344455][ T6068] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.365985][ T6066] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #3: comm syz.3.57: corrupted inode contents [ 99.410605][ T6066] EXT4-fs (loop3): Remounting filesystem read-only [ 99.436757][ T6066] EXT4-fs (loop3): 1 truncate cleaned up [ 99.455437][ T6066] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.468478][ T6066] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 99.491625][ T6066] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.612601][ T6068] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.755704][ T6068] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.786371][ T6076] tipc: Failed to obtain node identity [ 99.793249][ T6076] tipc: Enabling of bearer rejected, failed to enable media [ 99.949057][ T6068] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.244085][ T6068] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.273852][ T6068] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.303703][ T6068] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.335638][ T6068] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 101.039341][ T6093] netlink: 19 bytes leftover after parsing attributes in process `syz.0.66'. [ 101.187307][ T6095] No such timeout policy "syz1" [ 101.928849][ T967] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 102.126962][ T967] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 102.147922][ T967] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 102.194372][ T967] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 102.216047][ T967] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 102.228360][ T967] usb 2-1: Manufacturer: ⠊ [ 102.356985][ T6111] Driver unsupported XDP return value 0 on prog (id 46) dev N/A, expect packet loss! [ 102.884582][ T6120] IPv4: Oversized IP packet from 127.202.26.0 [ 102.955682][ T967] usb 2-1: 0:2 : does not exist [ 103.082329][ T967] usb 2-1: USB disconnect, device number 2 [ 103.168912][ T5790] udevd[5790]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 103.700444][ T6138] netlink: 8 bytes leftover after parsing attributes in process `syz.1.86'. [ 104.416155][ T6134] loop0: detected capacity change from 0 to 2048 [ 104.504643][ T6134] EXT4-fs (loop0): failed to initialize system zone (-117) [ 104.569230][ T6134] EXT4-fs (loop0): mount failed [ 105.276974][ T28] kauditd_printk_skb: 96 callbacks suppressed [ 105.276991][ T28] audit: type=1326 audit(1762881967.239:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.3.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 105.354591][ T6163] loop1: detected capacity change from 0 to 1024 [ 105.389511][ T28] audit: type=1326 audit(1762881967.279:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.3.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 105.413001][ T6163] EXT4-fs: Ignoring removed orlov option [ 105.459334][ T28] audit: type=1326 audit(1762881967.279:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.3.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 105.481886][ T6163] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 105.522498][ T28] audit: type=1326 audit(1762881967.279:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.3.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 105.578472][ T28] audit: type=1326 audit(1762881967.279:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6161 comm="syz.3.94" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 105.649839][ T6163] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.672312][ T6173] loop0: detected capacity change from 0 to 1024 [ 105.764065][ T6173] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 105.893898][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 105.910424][ T28] audit: type=1800 audit(1762881967.869:130): pid=6173 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.98" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 105.993119][ T6177] loop3: detected capacity change from 0 to 1024 [ 106.034617][ T6177] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 106.267509][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.423085][ T6173] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4031: comm syz.0.98: Allocating blocks 497-513 which overlap fs metadata [ 106.490660][ T28] audit: type=1326 audit(1762881968.449:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6183 comm="syz.1.102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 106.513557][ T6172] EXT4-fs (loop0): pa ffff888077924d98: logic 32, phys. 161, len 22 [ 106.522100][ T6172] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 1 [ 106.563545][ T28] audit: type=1326 audit(1762881968.449:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6183 comm="syz.1.102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 106.609388][ T28] audit: type=1326 audit(1762881968.509:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6183 comm="syz.1.102" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 106.675443][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.141903][ T6195] loop3: detected capacity change from 0 to 1024 [ 107.170209][ T6195] EXT4-fs: Ignoring removed orlov option [ 107.255546][ T6195] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.279212][ T6200] netlink: 60 bytes leftover after parsing attributes in process `syz.1.109'. [ 107.335268][ T6200] IPVS: Unknown mcast interface: [ 107.422009][ T28] audit: type=1800 audit(1762881969.379:134): pid=6195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.107" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 107.625105][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.660362][ T6202] loop0: detected capacity change from 0 to 1024 [ 107.667825][ T6202] EXT4-fs: Ignoring removed orlov option [ 107.711058][ T6202] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 107.933808][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.498460][ T6226] netlink: 4 bytes leftover after parsing attributes in process `syz.0.116'. [ 109.477794][ T6248] loop2: detected capacity change from 0 to 128 [ 111.037675][ T28] kauditd_printk_skb: 15 callbacks suppressed [ 111.037691][ T28] audit: type=1326 audit(1762881972.999:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.1.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 111.100723][ T6262] hub 9-0:1.0: USB hub found [ 111.103729][ T28] audit: type=1326 audit(1762881972.999:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.1.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 111.115996][ T6264] IPv6: NLM_F_CREATE should be specified when creating new route [ 111.144024][ T6262] hub 9-0:1.0: 1 port detected [ 111.155837][ T28] audit: type=1326 audit(1762881972.999:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.1.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 111.228056][ T28] audit: type=1326 audit(1762881972.999:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.1.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 111.303934][ T6269] loop3: detected capacity change from 0 to 128 [ 111.328435][ T28] audit: type=1326 audit(1762881972.999:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.1.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc79f78df10 code=0x7ffc0000 [ 111.442561][ T28] audit: type=1326 audit(1762881973.039:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.1.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 111.545602][ T28] audit: type=1326 audit(1762881973.039:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.1.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 111.596616][ T28] audit: type=1326 audit(1762881973.059:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.1.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 111.648446][ T28] audit: type=1326 audit(1762881973.059:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.1.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 111.718365][ T28] audit: type=1326 audit(1762881973.059:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.1.134" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 112.095716][ T6286] loop1: detected capacity change from 0 to 1024 [ 112.103818][ T6286] EXT4-fs: Ignoring removed bh option [ 112.109793][ T6286] EXT4-fs: inline encryption not supported [ 112.130298][ T6286] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 112.195679][ T6286] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000] [ 112.247616][ T6288] netlink: 3 bytes leftover after parsing attributes in process `syz.0.146'. [ 112.256945][ T6288] 0X: renamed from caif0 [ 112.290049][ T6288] 0X: entered allmulticast mode [ 112.290068][ T6288] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 112.344764][ T6286] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 2: comm syz.1.145: lblock 2 mapped to illegal pblock 2 (length 1) [ 112.401648][ T6286] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 48: comm syz.1.145: lblock 0 mapped to illegal pblock 48 (length 1) [ 112.449499][ T6286] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.145: Failed to acquire dquot type 0 [ 112.474941][ T6286] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 112.522215][ T6286] EXT4-fs error (device loop1): ext4_evict_inode:252: inode #11: comm syz.1.145: mark_inode_dirty error [ 112.560738][ T6286] EXT4-fs warning (device loop1): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 112.597356][ T6286] EXT4-fs (loop1): 1 orphan inode deleted [ 112.619728][ T6286] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 112.633914][ T2115] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:7: lblock 1 mapped to illegal pblock 1 (length 1) [ 112.686175][ T2115] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u4:7: Failed to release dquot type 0 [ 112.765436][ T6286] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #3: block 48: comm syz.1.145: lblock 0 mapped to illegal pblock 48 (length 1) [ 112.915505][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.739416][ T6319] loop2: detected capacity change from 0 to 512 [ 113.775672][ T6293] netlink: 96 bytes leftover after parsing attributes in process `syz.3.148'. [ 113.785549][ T6319] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.159: Failed to acquire dquot type 1 [ 113.817511][ T6319] EXT4-fs (loop2): 1 truncate cleaned up [ 113.842006][ T6319] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 113.856998][ T6319] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 113.947028][ T6319] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.977149][ T6328] mmap: syz.0.158 (6328) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 114.096838][ T6328] netlink: 24 bytes leftover after parsing attributes in process `syz.0.158'. [ 114.536831][ T6340] loop2: detected capacity change from 0 to 512 [ 114.641117][ T6340] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.162: bg 0: block 248: padding at end of block bitmap is not set [ 114.734578][ T6340] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.162: Failed to acquire dquot type 1 [ 114.806865][ T6340] EXT4-fs (loop2): 1 truncate cleaned up [ 114.844162][ T6340] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.873265][ T6340] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 115.013403][ T6340] syz.2.162 (6340) used greatest stack depth: 20872 bytes left [ 115.041096][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.163998][ T6358] loop2: detected capacity change from 0 to 512 [ 115.172972][ T6358] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 115.312604][ T6358] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF [ 115.450302][ T6360] random: crng reseeded on system resumption [ 115.578119][ T6363] netlink: 12 bytes leftover after parsing attributes in process `syz.1.171'. [ 116.131650][ T28] kauditd_printk_skb: 62 callbacks suppressed [ 116.131666][ T28] audit: type=1326 audit(1762881978.099:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.2.176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 116.242816][ T28] audit: type=1326 audit(1762881978.099:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.2.176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 116.285112][ T28] audit: type=1326 audit(1762881978.099:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.2.176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 116.296912][ T6383] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 116.313711][ T28] audit: type=1326 audit(1762881978.099:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.2.176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 116.389514][ T28] audit: type=1326 audit(1762881978.099:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.2.176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 116.458524][ T28] audit: type=1326 audit(1762881978.099:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.2.176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 116.519367][ T28] audit: type=1326 audit(1762881978.099:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.2.176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 116.542159][ T28] audit: type=1326 audit(1762881978.099:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.2.176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 116.638413][ T28] audit: type=1326 audit(1762881978.099:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.2.176" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 117.296471][ T28] audit: type=1326 audit(1762881979.259:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6412 comm="syz.0.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 117.349953][ T6413] futex_wake_op: syz.0.188 tries to shift op by -1; fix this program [ 118.705846][ T6442] capability: warning: `syz.0.198' uses 32-bit capabilities (legacy support in use) [ 119.441606][ T6469] loop2: detected capacity change from 0 to 128 [ 119.904119][ T6479] loop1: detected capacity change from 0 to 128 [ 119.946841][ T6479] syz.1.212: attempt to access beyond end of device [ 119.946841][ T6479] loop1: rw=2049, sector=145, nr_sectors = 89 limit=128 [ 120.034517][ T6481] syz.1.213[6481] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 120.034685][ T6481] syz.1.213[6481] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 120.132264][ T6483] loop1: detected capacity change from 0 to 1024 [ 120.182728][ T6483] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 120.436613][ T6491] loop3: detected capacity change from 0 to 1024 [ 120.457744][ T6491] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 120.490509][ T6491] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.216: lblock 2 mapped to illegal pblock 2 (length 1) [ 120.561764][ T6491] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.216: lblock 0 mapped to illegal pblock 48 (length 1) [ 120.604331][ T6483] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4031: comm syz.1.214: Allocating blocks 497-513 which overlap fs metadata [ 120.624645][ T6491] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.216: Failed to acquire dquot type 0 [ 120.641167][ T6491] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 120.641404][ T6491] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.216: mark_inode_dirty error [ 120.641550][ T6491] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 120.641630][ T6491] EXT4-fs (loop3): 1 orphan inode deleted [ 120.643128][ T6491] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 120.644021][ T6482] EXT4-fs (loop1): pa ffff888077924e80: logic 32, phys. 161, len 22 [ 120.644112][ T6482] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 1 [ 120.668711][ T59] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:4: lblock 1 mapped to illegal pblock 1 (length 1) [ 120.670114][ T59] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u4:4: Failed to release dquot type 0 [ 120.802146][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.824729][ T5789] EXT4-fs error (device loop3): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 120.848148][ T5789] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 120.871962][ T5789] EXT4-fs error (device loop3): ext4_quota_off:7217: inode #3: comm syz-executor: mark_inode_dirty error [ 120.921800][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.107975][ T6502] loop2: detected capacity change from 0 to 512 [ 121.186048][ T6502] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 121.235804][ T6502] ext4 filesystem being mounted at /48/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 121.434892][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 121.444816][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 121.623090][ T28] kauditd_printk_skb: 99 callbacks suppressed [ 121.623107][ T28] audit: type=1326 audit(1762881983.589:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6511 comm="syz.2.224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 121.666170][ T28] audit: type=1326 audit(1762881983.589:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6511 comm="syz.2.224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 121.689651][ T28] audit: type=1326 audit(1762881983.589:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6511 comm="syz.2.224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 121.716239][ T28] audit: type=1326 audit(1762881983.589:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6511 comm="syz.2.224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 121.716301][ T28] audit: type=1326 audit(1762881983.589:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6511 comm="syz.2.224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 121.716355][ T28] audit: type=1326 audit(1762881983.589:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6511 comm="syz.2.224" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 122.648978][ T6529] netlink: 12 bytes leftover after parsing attributes in process `syz.3.231'. [ 122.709381][ T6535] netlink: 12 bytes leftover after parsing attributes in process `syz.3.231'. [ 122.798850][ T6529] netlink: 12 bytes leftover after parsing attributes in process `syz.3.231'. [ 122.905605][ T6535] netlink: 12 bytes leftover after parsing attributes in process `syz.3.231'. [ 122.975865][ T6542] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 123.103841][ T6529] netlink: 12 bytes leftover after parsing attributes in process `syz.3.231'. [ 123.137183][ T6535] netlink: 12 bytes leftover after parsing attributes in process `syz.3.231'. [ 123.317163][ T28] audit: type=1326 audit(1762881985.279:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6548 comm="syz.3.236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 123.408613][ T28] audit: type=1326 audit(1762881985.279:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6548 comm="syz.3.236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 123.445815][ T28] audit: type=1326 audit(1762881985.279:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6548 comm="syz.3.236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 123.504016][ T28] audit: type=1326 audit(1762881985.279:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6548 comm="syz.3.236" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 123.710897][ T6558] loop2: detected capacity change from 0 to 1024 [ 123.799734][ T6558] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 123.896151][ T6569] loop0: detected capacity change from 0 to 2048 [ 123.900369][ T6558] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2872: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 124.032167][ T6569] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 124.062941][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.065077][ T6569] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 124.112688][ T6569] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.245: bg 0: block 345: padding at end of block bitmap is not set [ 124.134567][ T6569] EXT4-fs (loop0): Remounting filesystem read-only [ 124.177276][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.344251][ T6578] loop2: detected capacity change from 0 to 764 [ 124.433344][ T6578] Symlink component flag not implemented [ 124.460610][ T6578] Symlink component flag not implemented [ 124.466727][ T6578] Symlink component flag not implemented (128) [ 124.490866][ T6578] Symlink component flag not implemented (122) [ 124.555635][ T6582] loop0: detected capacity change from 0 to 1024 [ 124.595214][ T6582] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 124.627716][ T6582] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 124.637328][ T6582] EXT4-fs (loop0): orphan cleanup on readonly fs [ 124.645963][ T6582] EXT4-fs error (device loop0): ext4_free_blocks:6676: comm syz.0.249: Freeing blocks not in datazone - block = 0, count = 4096 [ 124.663660][ T6582] EXT4-fs (loop0): 1 orphan inode deleted [ 124.671472][ T6582] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 124.696625][ T6582] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.249: bg 0: block 10: padding at end of block bitmap is not set [ 124.773874][ T5791] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 125.045087][ T6591] netlink: 36 bytes leftover after parsing attributes in process `syz.2.254'. [ 125.321084][ T6605] netlink: 12 bytes leftover after parsing attributes in process `syz.3.259'. [ 125.767243][ T6621] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 125.774347][ T6621] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 125.799303][ T6617] netlink: 20 bytes leftover after parsing attributes in process `syz.0.266'. [ 125.811513][ T6621] vhci_hcd vhci_hcd.0: Device attached [ 125.902834][ T6626] netlink: 4 bytes leftover after parsing attributes in process `syz.2.269'. [ 125.924309][ T6621] loop3: detected capacity change from 0 to 2048 [ 125.931533][ T6626] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 125.948422][ T6626] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 125.974186][ T6626] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 126.008809][ T6626] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 126.018490][ T5891] vhci_hcd: vhci_device speed not set [ 126.025911][ T6621] Alternate GPT is invalid, using primary GPT. [ 126.037724][ T6621] loop3: p2 p3 p7 [ 126.104307][ T5891] usb 39-1: new full-speed USB device number 2 using vhci_hcd [ 126.199929][ T6622] vhci_hcd: connection reset by peer [ 126.221988][ T2961] vhci_hcd: stop threads [ 126.227585][ T6633] netlink: 'syz.1.272': attribute type 16 has an invalid length. [ 126.241440][ T2961] vhci_hcd: release socket [ 126.288597][ T2961] vhci_hcd: disconnect device [ 126.748585][ T5841] usb 1-1: new low-speed USB device number 2 using dummy_hcd [ 126.928394][ T5841] usb 1-1: device descriptor read/64, error -71 [ 127.055961][ T6658] loop3: detected capacity change from 0 to 512 [ 127.067892][ T6658] EXT4-fs (loop3): Invalid log cluster size: 63 [ 127.174195][ T28] kauditd_printk_skb: 24 callbacks suppressed [ 127.174212][ T28] audit: type=1326 audit(1762881989.139:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6661 comm="syz.2.286" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x0 [ 127.210306][ T5841] usb 1-1: new low-speed USB device number 3 using dummy_hcd [ 127.359895][ T967] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 127.378466][ T5841] usb 1-1: device descriptor read/64, error -71 [ 127.498701][ T5841] usb usb1-port1: attempt power cycle [ 127.563346][ T967] usb 4-1: config 1 interface 0 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 127.576920][ T967] usb 4-1: config 1 interface 0 has no altsetting 0 [ 127.588404][ T967] usb 4-1: New USB device found, idVendor=056a, idProduct=4004, bcdDevice= 0.40 [ 127.597568][ T967] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 127.606023][ T967] usb 4-1: Product: syz [ 127.610574][ T967] usb 4-1: Manufacturer: 喒듙ヤ靺啂檴鳝왿渔内㰢ៗ⭤ൽ▎搿遡ト咆ꉗ砑⾑酝㣷忽벀葖ᦲỲ첫뻖௤疳쯥戀⁙ɴ쉃났䪆䁜꩷㉵珪ﵖ嘑㊘煮惣 [ 127.630211][ T967] usb 4-1: SerialNumber: syz [ 127.731970][ T6671] loop1: detected capacity change from 0 to 512 [ 127.747193][ T6671] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 127.771645][ T6671] EXT4-fs (loop1): 1 truncate cleaned up [ 127.781248][ T6671] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 127.820053][ T6671] __nla_validate_parse: 4 callbacks suppressed [ 127.820070][ T6671] netlink: 108 bytes leftover after parsing attributes in process `syz.1.290'. [ 127.907204][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 127.923134][ T6658] netlink: 'syz.3.284': attribute type 83 has an invalid length. [ 127.934485][ T5841] usb 1-1: new low-speed USB device number 4 using dummy_hcd [ 127.975293][ T5841] usb 1-1: device descriptor read/8, error -71 [ 127.997030][ T967] usbhid 4-1:1.0: can't add hid device: -71 [ 128.018527][ T967] usbhid: probe of 4-1:1.0 failed with error -71 [ 128.039977][ T967] usb 4-1: USB disconnect, device number 2 [ 128.258840][ T5841] usb 1-1: new low-speed USB device number 5 using dummy_hcd [ 128.290999][ T5841] usb 1-1: device descriptor read/8, error -71 [ 128.418660][ T5841] usb usb1-port1: unable to enumerate USB device [ 128.472425][ T6687] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 128.688357][ T28] audit: type=1326 audit(1762881990.649:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.1.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 128.748468][ T28] audit: type=1326 audit(1762881990.649:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.1.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 128.832345][ T28] audit: type=1326 audit(1762881990.649:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.1.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 128.860357][ T28] audit: type=1326 audit(1762881990.649:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.1.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 128.899491][ T28] audit: type=1326 audit(1762881990.649:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.1.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 128.946332][ T6708] netlink: 4 bytes leftover after parsing attributes in process `syz.1.304'. [ 128.948341][ T28] audit: type=1326 audit(1762881990.819:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.2.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 128.975924][ T6708] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 128.982310][ T28] audit: type=1326 audit(1762881990.819:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.2.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 129.104799][ T28] audit: type=1326 audit(1762881990.829:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.2.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 129.157424][ T6715] loop2: detected capacity change from 0 to 1024 [ 129.185268][ T6715] journal_path: Lookup failure for './file1' [ 129.196309][ T28] audit: type=1326 audit(1762881990.829:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6701 comm="syz.2.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff609d8f6c9 code=0x7ffc0000 [ 129.220646][ T6715] EXT4-fs: error: could not find journal device path [ 129.258142][ T6708] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 129.363189][ T6705] netlink: 'syz.1.304': attribute type 6 has an invalid length. [ 130.323304][ T6737] netlink: 24 bytes leftover after parsing attributes in process `syz.1.314'. [ 130.499942][ T6741] netlink: 'syz.3.316': attribute type 1 has an invalid length. [ 131.252737][ T6764] loop3: detected capacity change from 0 to 2048 [ 131.278556][ T5891] vhci_hcd: vhci_device speed not set [ 131.299383][ T6764] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 131.399296][ T6764] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 131.448449][ T6764] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 131.482194][ T6764] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 131.508803][ T6764] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 131.830850][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 131.957694][ T6790] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 132.164649][ T6798] loop2: detected capacity change from 0 to 128 [ 132.304018][ T6798] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 132.331514][ T6798] ext4 filesystem being mounted at /85/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 133.120939][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.163631][ T28] kauditd_printk_skb: 169 callbacks suppressed [ 133.163649][ T28] audit: type=1804 audit(1762881995.129:533): pid=6798 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.341" name="/newroot/85/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/cgroup.controllers" dev="loop2" ino=13 res=1 errno=0 [ 133.399818][ T5788] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 134.004921][ T6837] netlink: 8 bytes leftover after parsing attributes in process `syz.2.355'. [ 134.024349][ T6837] netlink: 20 bytes leftover after parsing attributes in process `syz.2.355'. [ 134.071991][ T6837] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 134.081440][ T6837] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 134.090302][ T6837] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 134.099223][ T6837] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 134.191936][ T6841] loop3: detected capacity change from 0 to 1024 [ 134.229724][ T6841] ext4: Bad value for 'barrier' [ 134.253326][ T6841] netlink: 8 bytes leftover after parsing attributes in process `syz.3.357'. [ 134.292298][ T6841] netlink: 660 bytes leftover after parsing attributes in process `syz.3.357'. [ 134.342951][ T6841] (null): rxe_set_mtu: Set mtu to 1024 [ 134.556506][ T6848] loop1: detected capacity change from 0 to 8192 [ 134.883781][ T6841] infiniband sy: set active [ 134.897006][ T6841] infiniband sy: added bond_slave_0 [ 134.920094][ T6863] loop1: detected capacity change from 0 to 1024 [ 134.933157][ T6841] sy: rxe_create_cq: returned err = -12 [ 134.943298][ T6863] ext4: Unknown parameter 'uid<00000000000000000000' [ 134.953020][ T6841] infiniband sy: Couldn't create ib_mad CQ [ 134.968123][ T6841] infiniband sy: Couldn't open port 1 [ 135.076333][ T6841] RDS/IB: sy: added [ 135.090558][ T6841] smc: adding ib device sy with port count 1 [ 135.109073][ T6841] smc: ib device sy port 1 has pnetid [ 135.138221][ T6865] netlink: 20 bytes leftover after parsing attributes in process `syz.1.367'. [ 135.158032][ T6865] netlink: 8 bytes leftover after parsing attributes in process `syz.1.367'. [ 135.318602][ T28] audit: type=1326 audit(1762881997.279:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6867 comm="syz.1.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 135.367324][ T28] audit: type=1326 audit(1762881997.279:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6867 comm="syz.1.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 135.392372][ T28] audit: type=1326 audit(1762881997.279:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6867 comm="syz.1.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 135.416273][ T28] audit: type=1326 audit(1762881997.279:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6867 comm="syz.1.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 135.454992][ T28] audit: type=1326 audit(1762881997.309:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6867 comm="syz.1.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 135.489533][ T28] audit: type=1326 audit(1762881997.309:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6867 comm="syz.1.369" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc79f78f6c9 code=0x7ffc0000 [ 135.633348][ T28] audit: type=1326 audit(1762881997.599:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.0.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 135.695054][ T6873] netlink: 72 bytes leftover after parsing attributes in process `syz.0.371'. [ 135.716908][ T28] audit: type=1326 audit(1762881997.599:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.0.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 135.780754][ T28] audit: type=1326 audit(1762881997.639:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6872 comm="syz.0.371" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 136.800649][ T6896] process 'syz.0.381' launched './file0' with NULL argv: empty string added [ 137.405417][ T6925] IPv6: Can't replace route, no match found [ 137.837734][ T6936] loop2: detected capacity change from 0 to 512 [ 137.852988][ T6936] journal_path: Lookup failure for './bus' [ 137.868506][ T6936] EXT4-fs: error: could not find journal device path [ 137.932097][ T6938] tipc: Started in network mode [ 137.937278][ T6938] tipc: Node identity 4, cluster identity 4711 [ 137.949527][ T6938] tipc: Node number set to 4 [ 138.251191][ T6946] loop1: detected capacity change from 0 to 512 [ 138.267277][ T6946] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 138.281854][ T6946] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 138.313997][ T6946] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:478: comm syz.1.403: Invalid block bitmap block 0 in block_group 0 [ 138.358747][ T6946] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 138.379668][ T6946] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #11: comm syz.1.403: attempt to clear invalid blocks 983261 len 1 [ 138.413707][ T6946] EXT4-fs error (device loop1): __ext4_get_inode_loc:4489: comm syz.1.403: Invalid inode table block 0 in block_group 0 [ 138.496207][ T6946] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 138.510677][ T6954] loop2: detected capacity change from 0 to 512 [ 138.521125][ T6946] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem [ 138.535457][ T6946] EXT4-fs error (device loop1): __ext4_get_inode_loc:4489: comm syz.1.403: Invalid inode table block 0 in block_group 0 [ 138.562259][ T6954] __quota_error: 463 callbacks suppressed [ 138.562279][ T6954] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0 [ 138.583059][ T6954] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 138.594101][ T6954] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.406: Failed to acquire dquot type 1 [ 138.610754][ T6946] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5916: Corrupt filesystem [ 138.631666][ T6946] EXT4-fs error (device loop1): ext4_truncate:4294: inode #11: comm syz.1.403: mark_inode_dirty error [ 138.656782][ T6946] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem [ 138.690669][ T6946] EXT4-fs error (device loop1): __ext4_get_inode_loc:4489: comm syz.1.403: Invalid inode table block 0 in block_group 0 [ 138.715094][ T6946] EXT4-fs (loop1): 1 truncate cleaned up [ 138.724115][ T6954] EXT4-fs (loop2): 1 truncate cleaned up [ 138.740269][ T6946] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 138.754339][ T6954] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 138.785532][ T6954] ext4 filesystem being mounted at /93/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 138.829840][ T6954] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 138.933257][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.661594][ T6991] netlink: 24 bytes leftover after parsing attributes in process `syz.2.423'. [ 139.962126][ T28] audit: type=1326 audit(1762882001.929:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 140.022480][ T28] audit: type=1326 audit(1762882001.929:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 140.080881][ T28] audit: type=1326 audit(1762882001.929:1008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 140.153057][ T28] audit: type=1326 audit(1762882001.929:1009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 140.172451][ T7001] batman_adv: batadv0: Adding interface: dummy0 [ 140.184923][ T7001] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 140.210560][ T28] audit: type=1326 audit(1762882001.929:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 140.210613][ T28] audit: type=1326 audit(1762882001.929:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 140.210658][ T28] audit: type=1326 audit(1762882001.929:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 140.210703][ T28] audit: type=1326 audit(1762882001.929:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f205358f6c9 code=0x7ffc0000 [ 140.309701][ T7001] batman_adv: batadv0: Interface activated: dummy0 [ 140.350107][ T7010] batadv0: mtu less than device minimum [ 140.381261][ T7010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 140.394548][ T7010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 140.407039][ T7010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 140.419776][ T7010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 140.432408][ T7010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 140.445034][ T7010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 140.457726][ T7010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 140.470398][ T7010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 140.483037][ T7010] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320) [ 140.674870][ T7016] netlink: 32 bytes leftover after parsing attributes in process `syz.0.434'. [ 140.700541][ T7016] netem: unknown loss type 13 [ 140.706531][ T7018] loop2: detected capacity change from 0 to 1024 [ 140.713638][ T7016] netem: change failed [ 140.734202][ T7018] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=802c018, mo2=0002] [ 140.752380][ T7018] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 140.786546][ T7018] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.435: bg 0: block 88: padding at end of block bitmap is not set [ 140.855593][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.288848][ T7022] futex_wake_op: syz.1.436 tries to shift op by -1; fix this program [ 141.723669][ T7041] loop1: detected capacity change from 0 to 512 [ 141.842475][ T7045] netlink: 16 bytes leftover after parsing attributes in process `syz.0.445'. [ 141.982837][ T7048] IPv6: Can't replace route, no match found [ 142.093463][ T7053] loop1: detected capacity change from 0 to 1024 [ 142.172376][ T7053] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 142.185360][ T7059] netlink: 'syz.2.449': attribute type 13 has an invalid length. [ 142.263462][ T7060] loop3: detected capacity change from 0 to 512 [ 142.352873][ T7060] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 142.407076][ T7060] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 142.442895][ T7065] 9pnet: Unknown protocol version 9 [ 142.470013][ T7060] ext4 filesystem being mounted at /101/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 142.626449][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 142.691139][ T7059] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.700343][ T7059] bridge0: port 1(bridge_slave_0) entered disabled state [ 142.861109][ T7081] syz.1.453[7081] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 142.861367][ T7081] syz.1.453[7081] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 142.908076][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 143.084429][ T7088] loop3: detected capacity change from 0 to 128 [ 143.193794][ T7089] syz.3.454: attempt to access beyond end of device [ 143.193794][ T7089] loop3: rw=2049, sector=145, nr_sectors = 384 limit=128 [ 143.243336][ T7088] syz.3.454: attempt to access beyond end of device [ 143.243336][ T7088] loop3: rw=524288, sector=145, nr_sectors = 384 limit=128 [ 143.848125][ T7059] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.860609][ T7059] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.870106][ T7059] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.879246][ T7059] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.975441][ T7059] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 143.985205][ T7059] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 143.995259][ T7059] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 144.004863][ T7059] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 144.028439][ T7076] netlink: 4 bytes leftover after parsing attributes in process `syz.0.452'. [ 144.049264][ T7093] tipc: Failed to obtain node identity [ 144.065739][ T7093] tipc: Enabling of bearer rejected, failed to enable media [ 144.081157][ T7059] syz.2.449 (7059) used greatest stack depth: 20392 bytes left [ 144.247490][ T7106] loop2: detected capacity change from 0 to 128 [ 144.293132][ T28] kauditd_printk_skb: 26 callbacks suppressed [ 144.293148][ T28] audit: type=1326 audit(1762882006.259:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7107 comm="syz.0.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 144.346628][ T7109] loop1: detected capacity change from 0 to 1024 [ 144.367014][ T28] audit: type=1326 audit(1762882006.259:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7107 comm="syz.0.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 144.393032][ T7109] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (58532!=20869) [ 144.433466][ T28] audit: type=1326 audit(1762882006.289:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7107 comm="syz.0.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 144.483460][ T7109] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a000e11d, mo2=0002] [ 144.494487][ T7109] EXT4-fs (loop1): failed to initialize system zone (-117) [ 144.502499][ T28] audit: type=1326 audit(1762882006.289:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7107 comm="syz.0.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 144.527837][ T7109] EXT4-fs (loop1): mount failed [ 144.583628][ T28] audit: type=1326 audit(1762882006.289:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7107 comm="syz.0.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 144.626874][ T28] audit: type=1326 audit(1762882006.289:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7107 comm="syz.0.459" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 144.852797][ T7115] netlink: 4 bytes leftover after parsing attributes in process `syz.0.462'. [ 144.856214][ T7124] netlink: 4 bytes leftover after parsing attributes in process `syz.3.466'. [ 145.379925][ T7143] netlink: 4 bytes leftover after parsing attributes in process `syz.2.474'. [ 145.390965][ T7144] netlink: 'syz.3.475': attribute type 29 has an invalid length. [ 145.413679][ T7143] netlink: 4 bytes leftover after parsing attributes in process `syz.2.474'. [ 145.428653][ T7144] netlink: 'syz.3.475': attribute type 29 has an invalid length. [ 145.468523][ T7144] netlink: 'syz.3.475': attribute type 29 has an invalid length. [ 145.564956][ T28] audit: type=1326 audit(1762882007.529:1046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7146 comm="syz.0.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 145.632144][ T28] audit: type=1326 audit(1762882007.529:1047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7146 comm="syz.0.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 145.718560][ T28] audit: type=1326 audit(1762882007.529:1048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7146 comm="syz.0.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 145.781338][ T28] audit: type=1326 audit(1762882007.529:1049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7146 comm="syz.0.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5dfbf8f6c9 code=0x7ffc0000 [ 146.342396][ T7085] IPVS: starting estimator thread 0... [ 146.456143][ T7168] net_ratelimit: 10 callbacks suppressed [ 146.456161][ T7168] IPVS: wlc: FWM 3 0x00000003 - no destination available [ 146.546008][ T7174] loop2: detected capacity change from 0 to 512 [ 146.558666][ T7165] IPVS: using max 19 ests per chain, 45600 per kthread [ 146.704051][ T7174] ------------[ cut here ]------------ [ 146.710706][ T7174] EA inode 11 i_nlink=2 [ 146.737495][ T7174] WARNING: CPU: 1 PID: 7174 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550 [ 146.752270][ T7174] Modules linked in: [ 146.756235][ T7174] CPU: 1 PID: 7174 Comm: syz.2.484 Not tainted syzkaller #0 [ 146.763787][ T7174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 146.773992][ T7174] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 146.781165][ T7174] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 c6 3b 9a ff 49 8b 37 48 c7 c7 a0 c3 be 8a 89 da e8 c5 5d 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 6f 1d 2c 08 [ 146.802440][ T7174] RSP: 0018:ffffc9001a2af1c0 EFLAGS: 00010246 [ 146.808967][ T7174] RAX: 57cb2ef3fe8eea00 RBX: 0000000000000002 RCX: 0000000000080000 [ 146.816999][ T7174] RDX: ffffc9000e030000 RSI: 000000000002d9a3 RDI: 000000000002d9a4 [ 146.825333][ T7174] RBP: ffffc9001a2af2b8 R08: ffff8880b8f28c13 R09: 1ffff110171e5182 [ 146.833640][ T7174] R10: dffffc0000000000 R11: ffffed10171e5183 R12: dffffc0000000000 [ 146.841910][ T7174] R13: ffff88805eb536a8 R14: ffff88805eb534b0 R15: ffff88805eb53500 [ 146.850056][ T7174] FS: 00007ff60ac666c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 146.859149][ T7174] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 146.865809][ T7174] CR2: 00007fc7a05156c0 CR3: 0000000053618000 CR4: 00000000003506e0 [ 146.874194][ T7174] Call Trace: [ 146.877538][ T7174] [ 146.880694][ T7174] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 146.886402][ T7174] ? ext4_xattr_inode_iget+0x3df/0x600 [ 146.892107][ T7174] ext4_xattr_set_entry+0xcda/0x1e90 [ 146.897507][ T7174] ext4_xattr_ibody_set+0x254/0x6a0 [ 146.902890][ T7174] ext4_expand_extra_isize_ea+0x113a/0x19e0 [ 146.910162][ T7174] __ext4_expand_extra_isize+0x306/0x400 [ 146.915898][ T7174] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 146.921691][ T7174] ext4_evict_inode+0x7ed/0xea0 [ 146.926625][ T7174] ? _raw_spin_unlock+0x28/0x40 [ 146.931657][ T7174] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 146.937645][ T7174] ? do_raw_spin_unlock+0x121/0x230 [ 146.943070][ T7174] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 146.949152][ T7174] evict+0x486/0x870 [ 146.953117][ T7174] ? __lock_acquire+0x7c80/0x7c80 [ 146.958210][ T7174] ? proc_nr_inodes+0x230/0x230 [ 146.963231][ T7174] ? do_raw_spin_unlock+0x121/0x230 [ 146.968609][ T7174] ? _raw_spin_unlock+0x28/0x40 [ 146.973562][ T7174] ? iput+0x70a/0x920 [ 146.977632][ T7174] ext4_orphan_cleanup+0xbd4/0x1400 [ 146.983031][ T7174] ? ext4_orphan_del+0xba0/0xba0 [ 146.988553][ T7174] ? ext4_register_li_request+0x183/0x940 [ 146.994368][ T7174] ? errseq_check_and_advance+0x66/0x120 [ 147.000181][ T7174] ext4_fill_super+0x5de4/0x66c0 [ 147.005226][ T7174] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 147.012762][ T7174] ? __might_sleep+0xe0/0xe0 [ 147.017437][ T7174] ? read_lock_is_recursive+0x20/0x20 [ 147.023682][ T7174] ? snprintf+0xdb/0x120 [ 147.028432][ T7174] ? vscnprintf+0x80/0x80 [ 147.032881][ T7174] ? down_write+0x162/0x1f0 [ 147.037547][ T7174] ? down_read_killable+0x340/0x340 [ 147.042993][ T7174] ? setup_bdev_super+0x56b/0x660 [ 147.048086][ T7174] get_tree_bdev+0x3e4/0x510 [ 147.052817][ T7174] ? vfs_parse_fs_string+0x160/0x160 [ 147.058288][ T7174] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 147.064595][ T7174] ? setup_bdev_super+0x660/0x660 [ 147.069898][ T7174] ? apparmor_capable+0x137/0x1a0 [ 147.074988][ T7174] ? bpf_lsm_capable+0x9/0x10 [ 147.079937][ T7174] ? security_capable+0x89/0xb0 [ 147.084858][ T7174] vfs_get_tree+0x8c/0x280 [ 147.089406][ T7174] do_new_mount+0x24b/0xa40 [ 147.093990][ T7174] __se_sys_mount+0x2da/0x3c0 [ 147.098919][ T7174] ? __x64_sys_mount+0xc0/0xc0 [ 147.103839][ T7174] ? lockdep_hardirqs_on+0x98/0x150 [ 147.110489][ T7174] ? __x64_sys_mount+0x20/0xc0 [ 147.115328][ T7174] do_syscall_64+0x55/0xb0 [ 147.120122][ T7174] ? clear_bhb_loop+0x40/0x90 [ 147.124879][ T7174] ? clear_bhb_loop+0x40/0x90 [ 147.129771][ T7174] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 147.135733][ T7174] RIP: 0033:0x7ff609d90e6a [ 147.140318][ T7174] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.160278][ T7174] RSP: 002b:00007ff60ac65e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 147.168832][ T7174] RAX: ffffffffffffffda RBX: 00007ff60ac65ef0 RCX: 00007ff609d90e6a [ 147.176952][ T7174] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ff60ac65eb0 [ 147.185098][ T7174] RBP: 0000200000000180 R08: 00007ff60ac65ef0 R09: 0000000001a08700 [ 147.193205][ T7174] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0 [ 147.201403][ T7174] R13: 00007ff60ac65eb0 R14: 0000000000000470 R15: 0000200000000700 [ 147.209679][ T7174] [ 147.213943][ T7174] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 147.221357][ T7174] CPU: 1 PID: 7174 Comm: syz.2.484 Not tainted syzkaller #0 [ 147.228690][ T7174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 147.238865][ T7174] Call Trace: [ 147.242166][ T7174] [ 147.245116][ T7174] dump_stack_lvl+0x16c/0x230 [ 147.249829][ T7174] ? show_regs_print_info+0x20/0x20 [ 147.255053][ T7174] ? load_image+0x3b0/0x3b0 [ 147.259616][ T7174] panic+0x2c0/0x710 [ 147.263541][ T7174] ? bpf_jit_dump+0xd0/0xd0 [ 147.268096][ T7174] __warn+0x2e0/0x470 [ 147.272128][ T7174] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 147.278151][ T7174] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 147.284164][ T7174] report_bug+0x2be/0x4f0 [ 147.288527][ T7174] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 147.294661][ T7174] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 147.300761][ T7174] ? ext4_xattr_inode_update_ref+0x4fd/0x550 [ 147.306770][ T7174] handle_bug+0xcf/0x120 [ 147.311061][ T7174] exc_invalid_op+0x1a/0x50 [ 147.315591][ T7174] asm_exc_invalid_op+0x1a/0x20 [ 147.320464][ T7174] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 147.327088][ T7174] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 c6 3b 9a ff 49 8b 37 48 c7 c7 a0 c3 be 8a 89 da e8 c5 5d 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 6f 1d 2c 08 [ 147.346733][ T7174] RSP: 0018:ffffc9001a2af1c0 EFLAGS: 00010246 [ 147.352833][ T7174] RAX: 57cb2ef3fe8eea00 RBX: 0000000000000002 RCX: 0000000000080000 [ 147.360825][ T7174] RDX: ffffc9000e030000 RSI: 000000000002d9a3 RDI: 000000000002d9a4 [ 147.368842][ T7174] RBP: ffffc9001a2af2b8 R08: ffff8880b8f28c13 R09: 1ffff110171e5182 [ 147.376836][ T7174] R10: dffffc0000000000 R11: ffffed10171e5183 R12: dffffc0000000000 [ 147.384843][ T7174] R13: ffff88805eb536a8 R14: ffff88805eb534b0 R15: ffff88805eb53500 [ 147.392882][ T7174] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 147.398558][ T7174] ? ext4_xattr_inode_iget+0x3df/0x600 [ 147.404061][ T7174] ext4_xattr_set_entry+0xcda/0x1e90 [ 147.409398][ T7174] ext4_xattr_ibody_set+0x254/0x6a0 [ 147.414636][ T7174] ext4_expand_extra_isize_ea+0x113a/0x19e0 [ 147.420681][ T7174] __ext4_expand_extra_isize+0x306/0x400 [ 147.426405][ T7174] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 147.431996][ T7174] ext4_evict_inode+0x7ed/0xea0 [ 147.436880][ T7174] ? _raw_spin_unlock+0x28/0x40 [ 147.441765][ T7174] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 147.447694][ T7174] ? do_raw_spin_unlock+0x121/0x230 [ 147.452926][ T7174] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 147.459030][ T7174] evict+0x486/0x870 [ 147.463049][ T7174] ? __lock_acquire+0x7c80/0x7c80 [ 147.468190][ T7174] ? proc_nr_inodes+0x230/0x230 [ 147.473068][ T7174] ? do_raw_spin_unlock+0x121/0x230 [ 147.478382][ T7174] ? _raw_spin_unlock+0x28/0x40 [ 147.483252][ T7174] ? iput+0x70a/0x920 [ 147.487259][ T7174] ext4_orphan_cleanup+0xbd4/0x1400 [ 147.492689][ T7174] ? ext4_orphan_del+0xba0/0xba0 [ 147.497670][ T7174] ? ext4_register_li_request+0x183/0x940 [ 147.503424][ T7174] ? errseq_check_and_advance+0x66/0x120 [ 147.509092][ T7174] ext4_fill_super+0x5de4/0x66c0 [ 147.514082][ T7174] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 147.520388][ T7174] ? __might_sleep+0xe0/0xe0 [ 147.525062][ T7174] ? read_lock_is_recursive+0x20/0x20 [ 147.530474][ T7174] ? snprintf+0xdb/0x120 [ 147.534763][ T7174] ? vscnprintf+0x80/0x80 [ 147.539127][ T7174] ? down_write+0x162/0x1f0 [ 147.543663][ T7174] ? down_read_killable+0x340/0x340 [ 147.548896][ T7174] ? setup_bdev_super+0x56b/0x660 [ 147.554072][ T7174] get_tree_bdev+0x3e4/0x510 [ 147.558688][ T7174] ? vfs_parse_fs_string+0x160/0x160 [ 147.564016][ T7174] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 147.570296][ T7174] ? setup_bdev_super+0x660/0x660 [ 147.575436][ T7174] ? apparmor_capable+0x137/0x1a0 [ 147.580573][ T7174] ? bpf_lsm_capable+0x9/0x10 [ 147.585285][ T7174] ? security_capable+0x89/0xb0 [ 147.590165][ T7174] vfs_get_tree+0x8c/0x280 [ 147.594604][ T7174] do_new_mount+0x24b/0xa40 [ 147.599156][ T7174] __se_sys_mount+0x2da/0x3c0 [ 147.603900][ T7174] ? __x64_sys_mount+0xc0/0xc0 [ 147.608783][ T7174] ? lockdep_hardirqs_on+0x98/0x150 [ 147.614009][ T7174] ? __x64_sys_mount+0x20/0xc0 [ 147.618795][ T7174] do_syscall_64+0x55/0xb0 [ 147.623265][ T7174] ? clear_bhb_loop+0x40/0x90 [ 147.627974][ T7174] ? clear_bhb_loop+0x40/0x90 [ 147.632674][ T7174] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 147.638678][ T7174] RIP: 0033:0x7ff609d90e6a [ 147.643114][ T7174] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 147.662838][ T7174] RSP: 002b:00007ff60ac65e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 147.671281][ T7174] RAX: ffffffffffffffda RBX: 00007ff60ac65ef0 RCX: 00007ff609d90e6a [ 147.679272][ T7174] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007ff60ac65eb0 [ 147.687271][ T7174] RBP: 0000200000000180 R08: 00007ff60ac65ef0 R09: 0000000001a08700 [ 147.695274][ T7174] R10: 0000000001a08700 R11: 0000000000000246 R12: 00002000000001c0 [ 147.703263][ T7174] R13: 00007ff60ac65eb0 R14: 0000000000000470 R15: 0000200000000700 [ 147.711296][ T7174] [ 147.714461][ T7174] Kernel Offset: disabled [ 147.718956][ T7174] Rebooting in 86400 seconds..