last executing test programs: 1m16.052832775s ago: executing program 0 (id=266): r0 = socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x40002) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18) munlock(&(0x7f0000ffb000/0x2000)=nil, 0x2000) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x55f, &(0x7f0000000d00)="$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") mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0) r5 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40000) ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r5]) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000100)={0x28, r6, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x80}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}]}, 0x28}, 0x1, 0x0, 0x0, 0xc00c4}, 0x14) 1m13.678948481s ago: executing program 0 (id=271): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48) bpf$TOKEN_CREATE(0x24, &(0x7f0000000040)={0x0, r0}, 0x8) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r3 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_SET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2000000015140101"], 0x20}}, 0x0) r4 = getpid() sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e) sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0) unshare(0x28020480) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d00000085"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r7 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_UNIMAP(r7, 0x4b67, &(0x7f0000000100)={0x7, &(0x7f00000000c0)=[{0x2800, 0x2}, {0x40, 0x8d8}, {0x4, 0x8}, {0x1250, 0x4}, {0x18, 0x7f}, {0x0, 0x8}, {0x7}]}) 1m11.227206139s ago: executing program 0 (id=279): move_mount(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x30) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'pimreg0\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f00000004c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000440)=@newlink={0x74, 0x10, 0x400, 0x70bd29, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, 0x20280, 0xa0}, [@IFLA_CARRIER={0x5, 0x21, 0x6}, @IFLA_IFALIAS={0x14, 0x14, 'dummy0\x00'}, @IFLA_MAP={0x24, 0xe, {0x2, 0x10, 0x9, 0x8, 0x1, 0x4e}}, @IFLA_IFALIAS={0x14, 0x14, 'hsr0\x00'}]}, 0x74}, 0x1, 0x0, 0x0, 0x8020}, 0x20008011) socket$inet_tcp(0x2, 0x1, 0x0) io_uring_enter(0xffffffffffffffff, 0x44fd, 0x3, 0x1, 0x0, 0x0) r3 = shmget$private(0x0, 0x3000, 0x100, &(0x7f0000ffd000/0x3000)=nil) shmctl$SHM_UNLOCK(r3, 0xc) io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0xf, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)}, 0x20) r4 = gettid() timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc)=0x0) timer_settime(r5, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r6 = mq_open(&(0x7f0000000080)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|', 0x42, 0x0, 0x0) mq_timedreceive(r6, &(0x7f0000004600)=""/102381, 0xfffffceb, 0x0, 0x0) 1m9.558991165s ago: executing program 0 (id=285): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]}) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0) chroot(&(0x7f0000000100)='./file0\x00') mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x3a95004, 0x0) pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00') 1m9.169956201s ago: executing program 0 (id=287): r0 = socket(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000008c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001b00)=@newqdisc={0x78, 0x24, 0xd0f, 0x0, 0x25dfdbff, {0x60, 0x0, 0x0, r2, {0x0, 0xffe0}, {0xffff, 0xffff}, {0x4, 0x1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x18, 0x2, {{0x7fffffff, 0x14, 0xfcc, 0x400, 0x9}, 0x81, 0x0, 0xc8c3, 0x40, 0x4, 0x1c, 0x11, 0x9, 0x8, 0xffffffff, {0xfffffff5, 0x4, 0xad8, 0x7, 0x4, 0x4}}}}]}, 0x78}}, 0x0) 1m7.190013621s ago: executing program 0 (id=291): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r0}, 0x10) r1 = socket(0x10, 0x80003, 0x0) write(r1, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85) close_range(r1, 0xffffffffffffffff, 0x0) 1m6.238190246s ago: executing program 32 (id=291): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100003020702500000000002020207b1af8ff00000000bfa1000000000000070100003affffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='kfree\x00', r0}, 0x10) r1 = socket(0x10, 0x80003, 0x0) write(r1, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85) close_range(r1, 0xffffffffffffffff, 0x0) 16.360609056s ago: executing program 4 (id=550): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000000)=0x8, 0x4) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) listen(r1, 0x0) 12.790068522s ago: executing program 4 (id=558): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r2, &(0x7f0000000100)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="020300020c0000000000000000000000020008"], 0x60}, 0x1, 0x7}, 0x0) 12.509951786s ago: executing program 4 (id=561): syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f00000001c0)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES32, @ANYRES16], 0x1, 0x36e, &(0x7f0000000c00)="$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") ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0185879, &(0x7f0000000080)={@desc={0x4100, 0x0, @desc1}}) 12.145818332s ago: executing program 4 (id=564): r0 = socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x40002) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18) munlock(&(0x7f0000ffb000/0x2000)=nil, 0x2000) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x55f, &(0x7f0000000d00)="$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") mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0) syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40000) r5 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000100)={0x28, r5, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x80}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}]}, 0x28}, 0x1, 0x0, 0x0, 0xc00c4}, 0x14) 7.953094317s ago: executing program 3 (id=585): r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000f80)={0x11, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94) syz_read_part_table(0x60d, &(0x7f0000002200)="$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") creat(&(0x7f0000000200)='./bus\x00', 0x10) r1 = gettid() process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590) r3 = inotify_init() r4 = inotify_add_watch(r3, &(0x7f0000000240)='./file0\x00', 0x8c7) r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5}, 0x4) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r6}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(0xffffffffffffffff, 0xf504, 0x0) write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYRES64=r4], 0x69) close(0xffffffffffffffff) 7.0954523s ago: executing program 2 (id=589): syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94) unshare(0x2040400) poll(&(0x7f0000000000), 0x20000000000000b5, 0x9) 7.05399763s ago: executing program 5 (id=590): bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r0}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x8850) sendmsg$NFT_BATCH(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001fc0)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x0) 6.672792886s ago: executing program 2 (id=591): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000040000009900000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xc, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000300)={[{@grpjquota}, {@abort}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x7fffffff}}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x4f4, &(0x7f0000000740)="$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") 6.612378467s ago: executing program 5 (id=592): bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[], 0x48) bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0) socketpair(0x24, 0x5, 0x6, &(0x7f0000000000)) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0) r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f00000000c0)={0x5, 0x897, 0x200, 0x0, 0xf}) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r4, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r4, 0x3) setsockopt$SO_BINDTODEVICE(r4, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10) syz_emit_ethernet(0x3a, &(0x7f0000000280)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local, {[@timestamp_prespec={0x44, 0x4, 0xb3, 0x3, 0x1}]}}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0x0, 0x0, 0x1}}}}}}, 0x0) syz_emit_ethernet(0x38, &(0x7f0000000580)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2a, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x4}, {"c516"}}}}}}, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0}, {0xf}, {0xe}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x4000c00) 6.033956856s ago: executing program 2 (id=594): epoll_create1(0x0) unshare(0x42000000) syz_usb_disconnect(0xffffffffffffffff) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000001c0)=ANY=[], 0xb8}, 0x1, 0x0, 0x0, 0x20004000}, 0x0) 5.636617542s ago: executing program 3 (id=596): r0 = socket(0x10, 0x3, 0x6) r1 = socket(0x10, 0x3, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000580)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4f}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x90, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}, @TCA_RATE={0x6}]}, 0x90}}, 0x20000000) 4.945972363s ago: executing program 1 (id=598): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) 4.549651849s ago: executing program 1 (id=599): bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_emit_ethernet(0xa2, &(0x7f0000000500)={@local, @random="a15cc14e96b3", @val={@val={0x88a8, 0x5}, {0x8100, 0x3, 0x1}}, {@ipv4={0x800, @icmp={{0x19, 0x4, 0x0, 0x0, 0x8c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, {[@lsrr={0x83, 0x3, 0xed}, @ra={0x94, 0x4}, @cipso={0x86, 0x1c, 0xffffffffffffffff, [{0xd, 0xd, "cd8fddb5b978e64018e44f"}, {0x1, 0x9, "185c29a985044e"}]}, @cipso={0x86, 0x10, 0x1, [{0x7, 0x3, "10"}, {0x0, 0x5, "1035a7"}, {0x2, 0x2}]}, @ra={0x94, 0x4, 0x1}, @generic={0x44, 0xe, "06b10a36455efe777acf04ef"}, @lsrr={0x83, 0x7, 0xab, [@empty]}, @noop]}}, @time_exceeded={0x5, 0x0, 0x0, 0x3, 0x0, 0x0, {0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @rand_addr, {[@timestamp_addr={0x44, 0xc, 0x78, 0x1, 0x0, [{@multicast2, 0x4}]}]}}}}}}}, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r2 = socket(0x1e, 0x5, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0700000004000000000100000100000028000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB="0000f6fa3f0000010000000000"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000040)=@req={0x5f, 0xfffffffc, 0x9, 0x9}, 0x10) listen(r2, 0x0) r3 = socket(0x1e, 0x805, 0x0) sendmsg$tipc(r3, &(0x7f0000000080)={&(0x7f0000000100)=@name, 0x10, 0x0}, 0x0) setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f00000000c0)=@req3={0x80000000, 0x0, 0x2}, 0x1c) sendmsg$tipc(r3, &(0x7f0000000640)={&(0x7f0000000300)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10, 0x0}, 0x101) r4 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f00000001c0)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r4, &(0x7f00000000c0)=ANY=[@ANYBLOB='b\v*:4\twrm'], 0xa) socket$nl_route(0x10, 0x3, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0xc, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='sys_enter\x00', r5}, 0x10) timerfd_gettime(0xffffffffffffffff, 0x0) r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r1) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_LISTALL(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x14, r6, 0xb03, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x20040880) 4.446812021s ago: executing program 1 (id=600): r0 = socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x40002) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18) munlock(&(0x7f0000ffb000/0x2000)=nil, 0x2000) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x55f, &(0x7f0000000d00)="$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") mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0) r5 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40000) ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r5]) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000100)={0x28, r6, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x80}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}]}, 0x28}, 0x1, 0x0, 0x0, 0xc00c4}, 0x14) 4.287639563s ago: executing program 4 (id=601): r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001cc0)={0x64, 0x19, 0x1, 0x0, 0x25dfdbfb, {0x1d, 0xd601, 0x9}, [@nested={0x50, 0x12, 0x0, 0x1, [@nested={0x49, 0xe1, 0x0, 0x1, [@generic="9e1b73d1fa90f57f0c5dfb57d1f2332ea6db698943ebbbe64c0cbb59b43d4d13905a9670479f21c67da9eb32a7ac03bf90d9c3f733a58daf7f832f6db521e0f6ba90beb397"]}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0) 3.459967726s ago: executing program 5 (id=602): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001a00), 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000c40)={0x34, r3, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_DEBUG_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_DEBUG_MSGMASK={0x8, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}}, 0x0) 3.20605177s ago: executing program 3 (id=603): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYRES32=0x0, @ANYBLOB="fff00000000000002c0012800e0001006970366772657461700000001800028014000700200100"], 0x54}}, 0x40000084) 3.016855303s ago: executing program 2 (id=604): r0 = socket$nl_generic(0x10, 0x3, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000f0000000000000c00000018110000", @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10) syz_open_dev$vcsa(&(0x7f0000000040), 0x1, 0x40002) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18) munlock(&(0x7f0000ffb000/0x2000)=nil, 0x2000) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x55f, &(0x7f0000000d00)="$eJzs3c9vHFcdAPDvjH9t0zROoAeogAQoBBRlN960UdVLwwWEqkqIigPikBp7Y5nsZkN2XWoTCfdvAAkkTvAncEDigNQTB24cEELigBDlgFTAAsVIHBbN7Njd2rvNNl7v1t7PR5rMj/dmvu+ts/PevrXnBTC1LkXEdkTMR8RrEbFYHE+KJW52lyzfw50HK7s7D1aS6HRe/WeSp2fHoueczJPFNUsR8fWvRHw7ORy3tbl1Z7ler90v9ivtxr1Ka3Pr6npjea22Vrtbrd5YunHthevPVw+c+Ydzj1vXi41fvPPl9Ze/8etfffLt321/8ftZsc4Wab31GKVu1ef242RmI+Ll4wg2ATPFen7C5eDxpBHxkYj4TP7+X4yZ/H8nAHCadTqL0Vns3R+gNDAFADhh0nwMLEnLEZGmRSeg3B3DezrOpPVmq33ldnPj7mp3rOx8zKW31+u1axcW/vTdPPNcku0v5Wl5er5fPbB/PSIuRMSPFp7I98srzfrqZLo8ADD1nuxt/yPiPwtpWi4PdWqfb/UAgBOjNOkCAABjp/0HgOmj/QeA6TNE+1982b997GUBAMbD538AmD7afwCYPtp/AJgqX3vllWzp7BbPv159fXPjTvP1q6u11p1yY2OlvNK8f6+81myu5c/saTzqevVm897Sc7HxRqVda7Urrc2tW43mxt32rfy53rdqc2OpFQDwfi5cfOuPSURsv/hEvkTPXA7aajjd0hHmAk6WmaOcrIMAJ5rZvmB6DdWE552E3x57WYDJ6Psw71Lfzff6yQcI4veM4EPl8seHH/83xzOcLh9wZP/3xzJJPjARjzf+/9LIywGMn/F/mF6dTnJwzv/5/SQA4FQ6wq/wdX4wqk4IMFGPmsx7JN//AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwClzNiK+E0lazucCT7N/03I54qmIOB9zye31eu1aRJyLixExt5DtL0260ADAEaV/T4r5vy4vPnv2YOp88t+FfB0R3/vpqz9+Y7ndvr+UHf/X/vGFvenDqu+ed4R5BQGA4f11mEx5+10t1j0f5B/uPFjZW46xjIe886X9yUdXdnce5Es3ZTY6nU4nopT3Jc78O4nZ4pxSRDwTETMjiL/9ZkR8rF/9k3xs5Hwx82lv/ChiPzXW+Ol74qd5WnedvXwfHUFZYNq8ld1/bvZ7/6VxKV/3f/+X8jvU0eX3v1LE3r1vtyf+bBFppk/87D1/adgYz/3mq4cOdha7aW9GPDPbL36yHz8ZEP/ZIeP/+ROf+uFLA9I6P4u4HP3j98aqtBv3Kq3NravrjeW12lrtbrV6Y+nGtReuP1+t5GPUlb2R6sP+8eKVc4PKltX/zID4pb71n98/93ND1v/n/3vtW59+d3fhYPwvfLb/z//pvvG7sjbx80PGXz7zy4HTd2fxVwfU/1E//ytDxn/7b1urQ2YFAMagtbl1Z7ler90/0kb2KXQU1zm0kRVxuMx73cXBeYoMN9/vOn+JfGNEL8uAjawzNkzmueN6VY99Y3a/rzjaK38zu+KYq5OOvBZH2ng4rliTuR8B43OoeQQAAAAAAAAAAAAAAD50xvGnS5OuIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKfX/wMAAP//8RXBxA==") mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x0) r5 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x40000) ioctl$SCSI_IOCTL_SEND_COMMAND(r5, 0x1, &(0x7f00000000c0)=ANY=[@ANYRES64=r5]) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r6 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff) sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000100)={0x28, r6, 0x1, 0x0, 0x0, {0x7}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_ID={0x5, 0x2, 0x80}, @MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0xa}]}]}, 0x28}, 0x1, 0x0, 0x0, 0xc00c4}, 0x14) 2.898397315s ago: executing program 3 (id=605): r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendto$inet(r0, 0x0, 0x0, 0xe61e2840a154b0c0, &(0x7f0000000000)={0x2, 0x4e22, @remote}, 0x10) 2.609959019s ago: executing program 3 (id=606): r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000f80)={0x11, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2}, 0x94) syz_read_part_table(0x60d, &(0x7f0000002200)="$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") creat(&(0x7f0000000200)='./bus\x00', 0x10) r1 = gettid() process_vm_writev(r1, &(0x7f0000000000)=[{&(0x7f00008f9f09)=""/247, 0xf7}], 0x1, &(0x7f0000121000)=[{&(0x7f0000217f28)=""/231, 0xffffff4e}], 0x23a, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x348, 0x18c, 0x203, 0x348, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x300, 0x348, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x16}]}}, @common=@hl={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@LED={0x48, 'LED\x00', 0x0, {'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590) r3 = inotify_init() r4 = inotify_add_watch(r3, &(0x7f0000000240)='./file0\x00', 0x8c7) r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5}, 0x4) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r6}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(0xffffffffffffffff, 0xf504, 0x0) write$binfmt_elf32(0xffffffffffffffff, &(0x7f0000000040)=ANY=[@ANYRES64=r4], 0x69) close(0xffffffffffffffff) 2.413230232s ago: executing program 1 (id=607): r0 = syz_io_uring_setup(0x5bf, &(0x7f0000000440)={0x0, 0x7aca, 0x1, 0x1, 0x294}, &(0x7f0000000240)=0x0, &(0x7f0000000040)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4) r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r3}, 0x4) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r4}, 0x10) syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x6, 0x4000, @fd=r0, 0x9002, 0x0, 0x0, 0x4, 0x1, {0x3}}) io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0x0) 2.088557057s ago: executing program 4 (id=608): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000e00000850000001b000000b700000000fa000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000000)='mm_page_free\x00', r1, 0x0, 0x8}, 0x18) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) 1.92602989s ago: executing program 5 (id=609): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0) r2 = getpid() process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0) 960.100125ms ago: executing program 1 (id=610): bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_emit_ethernet(0xa2, &(0x7f0000000500)={@local, @random="a15cc14e96b3", @val={@val={0x88a8, 0x5}, {0x8100, 0x3, 0x1}}, {@ipv4={0x800, @icmp={{0x19, 0x4, 0x0, 0x0, 0x8c, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local, {[@lsrr={0x83, 0x3, 0xed}, @ra={0x94, 0x4}, @cipso={0x86, 0x1c, 0xffffffffffffffff, [{0xd, 0xd, "cd8fddb5b978e64018e44f"}, {0x1, 0x9, "185c29a985044e"}]}, @cipso={0x86, 0x10, 0x1, [{0x7, 0x3, "10"}, {0x0, 0x5, "1035a7"}, {0x2, 0x2}]}, @ra={0x94, 0x4, 0x1}, @generic={0x44, 0xe, "06b10a36455efe777acf04ef"}, @lsrr={0x83, 0x7, 0xab, [@empty]}, @noop]}}, @time_exceeded={0x5, 0x0, 0x0, 0x3, 0x0, 0x0, {0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast2, @rand_addr, {[@timestamp_addr={0x44, 0xc, 0x78, 0x1, 0x0, [{@multicast2, 0x4}]}]}}}}}}}, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r2 = socket(0x1e, 0x5, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0700000004000000000100000100000028000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYBLOB="0000f6fa3f0000010000000000"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) setsockopt$packet_tx_ring(r2, 0x10f, 0x87, &(0x7f0000000040)=@req={0x5f, 0xfffffffc, 0x9, 0x9}, 0x10) listen(r2, 0x0) r3 = socket(0x1e, 0x805, 0x0) sendmsg$tipc(r3, &(0x7f0000000080)={&(0x7f0000000100)=@name, 0x10, 0x0}, 0x0) setsockopt$packet_tx_ring(r3, 0x10f, 0x87, &(0x7f00000000c0)=@req3={0x80000000, 0x0, 0x2}, 0x1c) sendmsg$tipc(r3, &(0x7f0000000640)={&(0x7f0000000300)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10, 0x0}, 0x101) r4 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f00000001c0)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r4, &(0x7f00000000c0)=ANY=[@ANYBLOB='b\v*:4\twrm'], 0xa) socket$nl_route(0x10, 0x3, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0xc, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000005000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000280)='sys_enter\x00', r5}, 0x10) timerfd_gettime(0xffffffffffffffff, 0x0) r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r1) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_LISTALL(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)={0x14, r6, 0xb03, 0x70bd28, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x20040880) 825.909417ms ago: executing program 5 (id=611): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x3, &(0x7f0000000000)={[{@noacl}]}, 0x1, 0x25f, &(0x7f0000000b00)="$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") r0 = socket(0x10, 0x3, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a0000000400"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r1, &(0x7f0000000780), 0x0, 0x4008804) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r2}, 0x10) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000680)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r4}, 0x10) bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000000)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r6, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x0, 0x0, 0x1, 0x9, 0x5}, {0x12, 0x2, 0x0, 0x401, 0x8001, 0x1400}, 0x0, 0x5, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x4c000) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000001c0)=@newqdisc={0x34, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r6, {}, {0xffe0, 0xa}, {0x1, 0x10}}, [@qdisc_kind_options=@q_pfifo_fast={0xf}]}, 0x34}, 0x1, 0x0, 0x0, 0x55}, 0x4000) openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x90) 627.8825ms ago: executing program 2 (id=612): mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x3800480, &(0x7f0000002200), 0x45, 0x786, &(0x7f00000007c0)="$eJzs3d9rW2UfAPDvSX93e9/2hRd0XhUELYyldtZNwYuJFyI4GOi1W0mzMps2o0nHWgpuiOCNoOKFoDe79se889Yft/pfeCEbU7vhxAupnDRZszXpkq1J5vb5wGme5zwnfZ5vnnOe8yTnkATwyJpI/2QiDkTEB0nEWHV9EhEDlVR/xLGt7W5urOfSJYnNzdd/Syrb3NhYz0Xdc1L7qpnHI+L7dyMOZnbWW1pdW5gtFPLL1fxUefHsVGl17dCZxdn5/Hx+6cj0zMzho88dPbJ3sf7x09r+qx++8vRXx/5657HL7/+QxLHYXy2rj2OvTMRE9TUZSF/C27y815X1WLJ7cYM9gAdB2jF9W0d5HIix6KukmhjpZssAgE55OyI2m+lrWgIA/Kslzc//AMBDqfY5wI2N9Vxt6e0nEt117aWIGN6Kv3Z9c6ukv3rNbrhyHXT0RnLblZEkIsb3oP6JiPjsmze/SJfo0HVIgEYuXIyIU+MTO8f/ZMc9C+16poVtJu7IG/+ge75N5z/PN5r/ZW7Nf6LB/GeowbF7L+5+/Geu7EE1TaXzvxfr7m27WRd/1XhfNfefypxvIDl9ppBPx7b/RsRkDAyl+eld6pi8/vf1ZmX187/fP3rr87T+9HF7i8yV/qHbnzM3W569n5jrXbsY8UR/o/iTW/2fNJn/nmixjldfeO/TZmVp/Gm8tWVn/J21eSniqYb9v31HW7Lr/YlTld1hqrZTNPD1z5+MNqu/vv/TJa2/9l6gG9L+H909/vGk/n7NUvt1/Hhp7LtmZXePv/H+P5i8UUkPVtedny2Xl6cjBpPXdq4/vP3cWr62fRr/5JONj//d9v/0PeGpFuPvv/rrl/cef2el8c+11f/tJy7fXOhrVn9r/T9TSU1W17Qy/rXawPt57QAAAAAAAAAAAAAAAAAAAAAAAACgVZmI2B9JJnsrnclks1u/4f3/GM0UiqXywdPFlaW5qPxW9ngMZGpfdTlW932o09Xvw6/lD9+RfzYi/hcRHw+NVPLZXLEw1+vgAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKBqX5Pf/0/9MtTr1gEAHTPc1+sWAADdNtzf6xYAAN023NbWIx1rBwDQPe2d/wGAh4HzPwA8epz/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6LATx4+ny+afG+u5ND93bnVloXju0Fy+tJBdXMllc8Xls9n5YnG+kM/miotN/9GFrYdCsXh2JpZWzk+V86XyVGl17eRicWWpfPLM4ux8/mR+oGuRAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDrSqtrC7OFQn5ZQkKi7URc2DqOHpT27F0iBrdHiZGejU8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD7p/AgAA//+mAybn") creat(&(0x7f0000000100)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r0 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0) preadv2(r0, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x2, 0x0, 0x0, 0x0) 433.066833ms ago: executing program 1 (id=613): mkdir(&(0x7f0000000440)='./file0\x00', 0x0) pipe2$9p(&(0x7f00000000c0), 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0xc, 0x9}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x401}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x54, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) socket$nl_netfilter(0x10, 0x3, 0xc) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x51, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000400)={{}, &(0x7f0000000380), &(0x7f00000003c0)=r2}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00'}, 0x10) write$cgroup_int(r1, &(0x7f0000000000), 0xfffffd26) msgget$private(0x0, 0x790) syz_emit_ethernet(0x3e, &(0x7f00000001c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa3986dd6c370c8900082b010000000000000000000094dfac1e"], 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000dc0)={0x0, 0x0, 0x0}, 0x40000102) bpf$PROG_LOAD(0x5, 0x0, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSSOFTCAR(r3, 0x541a, &(0x7f0000000000)) r4 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00') pread64(r4, &(0x7f0000001240)=""/102400, 0x200000, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc) 24.221999ms ago: executing program 3 (id=614): epoll_create1(0x0) unshare(0x42000000) syz_usb_disconnect(0xffffffffffffffff) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000600)={&(0x7f00000001c0)=ANY=[@ANYBLOB], 0xb8}, 0x1, 0x0, 0x0, 0x20004000}, 0x0) 22.411769ms ago: executing program 5 (id=615): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000380)=ANY=[@ANYRES32=0x0, @ANYBLOB="fff00000000000002c0012800e0001006970366772657461700000001800028014000700200100"], 0x54}}, 0x40000084) 0s ago: executing program 2 (id=616): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, @cgroup_sock_addr=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$packet(0x11, 0x2, 0x300) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000001c0)={'batadv0\x00', 0x0}) sendto$packet(r2, 0x0, 0x0, 0x20008040, &(0x7f0000000040)={0x11, 0x8100, r3, 0x1, 0x6, 0x6, @broadcast}, 0x14) kernel console output (not intermixed with test programs): istering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 112.211335][ T4744] netlink: 'syz.4.116': attribute type 4 has an invalid length. [ 112.339318][ T4746] netlink: 'syz.4.116': attribute type 4 has an invalid length. [ 112.441972][ T4721] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 112.542947][ T26] kauditd_printk_skb: 6 callbacks suppressed [ 112.542963][ T26] audit: type=1326 audit(1753235127.412:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4750 comm="syz.3.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 112.655496][ T26] audit: type=1326 audit(1753235127.442:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4750 comm="syz.3.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 112.682197][ T4721] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.707506][ T26] audit: type=1326 audit(1753235127.482:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4750 comm="syz.3.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 112.753082][ T26] audit: type=1326 audit(1753235127.482:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4750 comm="syz.3.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 112.755101][ T4740] device bond_slave_0 entered promiscuous mode [ 112.781996][ T4740] device bond_slave_1 entered promiscuous mode [ 112.803014][ T26] audit: type=1326 audit(1753235127.482:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4750 comm="syz.3.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 112.828218][ T4740] device bond_slave_0 left promiscuous mode [ 112.834278][ T4740] device bond_slave_1 left promiscuous mode [ 112.861500][ T26] audit: type=1326 audit(1753235127.482:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4750 comm="syz.3.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 112.892181][ T26] audit: type=1326 audit(1753235127.482:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4750 comm="syz.3.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 112.915105][ T26] audit: type=1326 audit(1753235127.482:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4750 comm="syz.3.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 112.941926][ T26] audit: type=1326 audit(1753235127.482:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4750 comm="syz.3.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 112.965002][ T26] audit: type=1326 audit(1753235127.482:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4750 comm="syz.3.120" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 113.022658][ T4721] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 113.082983][ T4721] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 113.159323][ T4721] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 113.166328][ T4765] loop4: detected capacity change from 0 to 2048 [ 113.258915][ T4765] loop4: p1 < > p4 [ 113.316674][ T4765] loop4: p4 size 8388608 extends beyond EOD, truncated [ 113.659882][ T4769] device syzkaller0 entered promiscuous mode [ 113.889850][ T4782] loop3: detected capacity change from 0 to 512 [ 114.201465][ T4782] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 114.211041][ T4782] ext4 filesystem being mounted at /28/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 114.246559][ T4782] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.126: corrupted inode contents [ 114.271451][ T4782] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.126: mark_inode_dirty error [ 114.336850][ T4787] program syz.3.126 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 114.357870][ T4782] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.126: bg 0: block 328: padding at end of block bitmap is not set [ 116.058887][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 117.469251][ T4806] netlink: 'syz.3.132': attribute type 4 has an invalid length. [ 117.496864][ T4807] netlink: 'syz.3.132': attribute type 4 has an invalid length. [ 117.662422][ T26] kauditd_printk_skb: 7 callbacks suppressed [ 117.662437][ T26] audit: type=1326 audit(1753235132.532:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4821 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 117.769362][ T26] audit: type=1326 audit(1753235132.572:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4821 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 117.824875][ T4820] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.875736][ T26] audit: type=1326 audit(1753235132.572:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4821 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 117.931782][ T26] audit: type=1326 audit(1753235132.572:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4821 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 118.006340][ T26] audit: type=1326 audit(1753235132.582:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4821 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 118.069794][ T26] audit: type=1326 audit(1753235132.582:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4821 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 118.094249][ T26] audit: type=1326 audit(1753235132.582:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4821 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 118.124487][ T4820] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.138423][ T26] audit: type=1326 audit(1753235132.582:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4821 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 118.256908][ T26] audit: type=1326 audit(1753235132.582:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4821 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 118.324233][ T26] audit: type=1326 audit(1753235132.582:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4821 comm="syz.4.137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 118.355163][ T4820] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 118.688282][ T4845] loop4: detected capacity change from 0 to 512 [ 118.862253][ T4820] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 119.212182][ T4845] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 119.221786][ T4845] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 119.255524][ T4845] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #2: comm syz.4.142: corrupted inode contents [ 119.271454][ T4845] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #2: comm syz.4.142: mark_inode_dirty error [ 119.290425][ T4845] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.142: bg 0: block 328: padding at end of block bitmap is not set [ 119.352722][ T4849] program syz.4.142 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 120.724495][ T4853] loop2: detected capacity change from 0 to 512 [ 120.889606][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 121.079332][ T4853] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 121.088978][ T4853] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 121.142606][ T4841] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.143: corrupted inode contents [ 121.167394][ T4853] program syz.2.143 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 121.301151][ T4841] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.143: mark_inode_dirty error [ 121.511479][ T4841] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.143: bg 0: block 328: padding at end of block bitmap is not set [ 121.654404][ T4820] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.738957][ T4820] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.824887][ T4820] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 121.908039][ T4820] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 122.229254][ T4870] netlink: 'syz.0.148': attribute type 4 has an invalid length. [ 122.351678][ T4871] netlink: 'syz.0.148': attribute type 4 has an invalid length. [ 122.675202][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 122.782086][ T26] kauditd_printk_skb: 3 callbacks suppressed [ 122.782111][ T26] audit: type=1326 audit(1753235137.652:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4880 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 122.866979][ T26] audit: type=1326 audit(1753235137.652:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4880 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 122.926114][ T26] audit: type=1326 audit(1753235137.652:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4880 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 123.001809][ T26] audit: type=1326 audit(1753235137.652:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4880 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 123.073977][ T26] audit: type=1326 audit(1753235137.662:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4880 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 123.147850][ T4884] device team_slave_0 entered promiscuous mode [ 123.154477][ T4884] device team_slave_1 entered promiscuous mode [ 123.168130][ T26] audit: type=1326 audit(1753235137.662:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4880 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 123.181560][ T4884] device vlan2 entered promiscuous mode [ 123.226272][ T4884] device team0 entered promiscuous mode [ 123.278054][ T26] audit: type=1326 audit(1753235137.662:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4880 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 123.425487][ T4886] loop4: detected capacity change from 0 to 512 [ 123.446226][ T26] audit: type=1326 audit(1753235137.662:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4880 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 123.475562][ T26] audit: type=1326 audit(1753235137.672:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4880 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 123.507703][ T4891] loop0: detected capacity change from 0 to 512 [ 123.534660][ T4886] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 123.543843][ T4886] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 123.559422][ T4886] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #2: comm syz.4.155: corrupted inode contents [ 123.572623][ T4886] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #2: comm syz.4.155: mark_inode_dirty error [ 123.585572][ T4886] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.155: bg 0: block 328: padding at end of block bitmap is not set [ 123.597403][ T4891] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 123.609349][ T4891] ext4 filesystem being mounted at /27/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 123.610670][ T4889] program syz.4.155 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 123.644070][ T4891] EXT4-fs error (device loop0): ext4_do_update_inode:5254: inode #2: comm syz.0.156: corrupted inode contents [ 123.646447][ T26] audit: type=1326 audit(1753235137.672:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4880 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 123.675529][ T4899] program syz.0.156 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 123.683604][ T4891] EXT4-fs error (device loop0): ext4_dirty_inode:6119: inode #2: comm syz.0.156: mark_inode_dirty error [ 123.705754][ T4891] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.156: bg 0: block 328: padding at end of block bitmap is not set [ 123.736771][ T4896] ======================================================= [ 123.736771][ T4896] WARNING: The mand mount option has been deprecated and [ 123.736771][ T4896] and is ignored by this kernel. Remove the mand [ 123.736771][ T4896] option from the mount to silence this warning. [ 123.736771][ T4896] ======================================================= [ 123.915237][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 124.073305][ T4268] EXT4-fs (loop0): unmounting filesystem. [ 124.212817][ T4907] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 124.306386][ T4907] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 124.432725][ T4909] loop3: detected capacity change from 0 to 512 [ 124.463546][ T4907] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 124.489039][ T4909] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 124.498215][ T4909] ext4 filesystem being mounted at /36/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 124.513215][ T4909] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.160: corrupted inode contents [ 124.537944][ T4909] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.160: mark_inode_dirty error [ 124.551153][ T4909] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.160: bg 0: block 328: padding at end of block bitmap is not set [ 124.592427][ T4907] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 124.673096][ T4919] netlink: 'syz.2.162': attribute type 4 has an invalid length. [ 124.734211][ T4919] netlink: 'syz.2.162': attribute type 4 has an invalid length. [ 125.762377][ T4925] loop4: detected capacity change from 0 to 512 [ 126.218736][ T4925] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 126.228299][ T4925] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 126.293736][ T4925] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #2: comm syz.4.164: corrupted inode contents [ 126.355077][ T4930] program syz.4.164 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 126.391379][ T4925] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #2: comm syz.4.164: mark_inode_dirty error [ 126.409082][ T4925] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.164: bg 0: block 328: padding at end of block bitmap is not set [ 126.678356][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 127.674375][ T4941] loop2: detected capacity change from 0 to 512 [ 127.901651][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 128.001534][ T4941] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 128.011139][ T4941] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 128.047236][ T4941] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.169: corrupted inode contents [ 128.061006][ T4941] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.169: mark_inode_dirty error [ 128.078300][ T4941] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.169: bg 0: block 328: padding at end of block bitmap is not set [ 128.141148][ T4945] program syz.2.169 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 128.464651][ T4949] loop3: detected capacity change from 0 to 512 [ 129.013525][ T4954] device team_slave_0 entered promiscuous mode [ 129.019901][ T4954] device team_slave_1 entered promiscuous mode [ 129.062799][ T4954] device vlan2 entered promiscuous mode [ 129.091565][ T4954] device team0 entered promiscuous mode [ 129.334920][ T4956] loop3: detected capacity change from 0 to 512 [ 129.370826][ T4956] EXT4-fs: Ignoring removed orlov option [ 129.400772][ T4956] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 129.457948][ T4956] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 129.502379][ T4956] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2195: inode #15: comm syz.3.172: corrupted in-inode xattr [ 129.533686][ T4956] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.172: couldn't read orphan inode 15 (err -117) [ 129.557704][ T4956] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 129.761524][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 129.835822][ T4907] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 129.859607][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 129.915435][ T4907] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 129.992640][ T4907] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.033047][ T4907] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 130.128884][ T4966] netlink: 'syz.2.176': attribute type 4 has an invalid length. [ 130.255259][ T4968] netlink: 'syz.2.176': attribute type 4 has an invalid length. [ 130.378176][ T4970] loop3: detected capacity change from 0 to 512 [ 130.622584][ T4970] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 130.632378][ T4970] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 130.674665][ T4970] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.175: corrupted inode contents [ 130.688580][ T4970] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.175: mark_inode_dirty error [ 130.703769][ T4970] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.175: bg 0: block 328: padding at end of block bitmap is not set [ 130.765092][ T4973] program syz.3.175 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 131.293269][ T4977] netlink: 16 bytes leftover after parsing attributes in process `syz.4.178'. [ 132.717012][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 133.082773][ T4995] loop0: detected capacity change from 0 to 512 [ 133.137072][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.148400][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.451133][ T4995] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 133.460831][ T4995] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 133.496369][ T4995] EXT4-fs error (device loop0): ext4_do_update_inode:5254: inode #2: comm syz.0.180: corrupted inode contents [ 133.516212][ T4995] EXT4-fs error (device loop0): ext4_dirty_inode:6119: inode #2: comm syz.0.180: mark_inode_dirty error [ 133.533237][ T4995] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.180: bg 0: block 328: padding at end of block bitmap is not set [ 133.593686][ T5000] program syz.0.180 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 133.989159][ T4994] device vlan2 entered promiscuous mode [ 133.996035][ T26] kauditd_printk_skb: 25 callbacks suppressed [ 133.996049][ T26] audit: type=1326 audit(1753235148.802:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4999 comm="syz.3.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 134.040218][ T5002] loop3: detected capacity change from 0 to 128 [ 134.122314][ T5002] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 134.236939][ T26] audit: type=1326 audit(1753235148.802:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4999 comm="syz.3.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 134.274300][ T5004] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 134.297951][ T26] audit: type=1326 audit(1753235148.842:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4999 comm="syz.3.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 134.321001][ T26] audit: type=1326 audit(1753235148.842:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4999 comm="syz.3.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 134.506207][ T5002] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 134.603319][ T26] audit: type=1326 audit(1753235148.842:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4999 comm="syz.3.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 134.782025][ T26] audit: type=1326 audit(1753235148.842:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4999 comm="syz.3.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 135.070268][ T5010] loop2: detected capacity change from 0 to 512 [ 135.135010][ T26] audit: type=1326 audit(1753235148.842:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4999 comm="syz.3.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 135.168356][ T5010] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 135.169314][ T4268] EXT4-fs (loop0): unmounting filesystem. [ 135.177633][ T5010] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 135.198269][ T5010] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.189: corrupted inode contents [ 135.210525][ T26] audit: type=1326 audit(1753235148.842:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4999 comm="syz.3.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 135.232946][ T5010] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.189: mark_inode_dirty error [ 135.250461][ T5014] program syz.2.189 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 135.262304][ T5010] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.189: bg 0: block 328: padding at end of block bitmap is not set [ 135.327779][ T5004] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.345666][ T26] audit: type=1326 audit(1753235148.852:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4999 comm="syz.3.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 135.371681][ T5015] netlink: 'syz.3.190': attribute type 4 has an invalid length. [ 135.423844][ T5004] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.451699][ T26] audit: type=1326 audit(1753235148.852:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4999 comm="syz.3.183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f96b978e9a9 code=0x7ffc0000 [ 135.552131][ T5004] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.705202][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 135.768863][ T5004] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 135.831668][ T5004] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 135.854204][ T5004] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 135.871746][ T5004] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 136.171504][ T5029] loop2: detected capacity change from 0 to 512 [ 137.630554][ T5029] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 137.640204][ T5029] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 137.675727][ T5029] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.194: corrupted inode contents [ 137.690400][ T5029] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.194: mark_inode_dirty error [ 137.705856][ T5029] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.194: bg 0: block 328: padding at end of block bitmap is not set [ 137.769225][ T5036] program syz.2.194 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 138.524593][ T5040] loop3: detected capacity change from 0 to 512 [ 138.590185][ T5040] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 138.599411][ T5040] ext4 filesystem being mounted at /43/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 138.614423][ T5040] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.195: corrupted inode contents [ 138.626861][ T5040] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.195: mark_inode_dirty error [ 138.641709][ T5040] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.195: bg 0: block 328: padding at end of block bitmap is not set [ 138.661414][ T5040] program syz.3.195 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 138.811303][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 138.969674][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 139.023802][ T5051] netlink: 'syz.4.202': attribute type 4 has an invalid length. [ 139.117388][ T26] kauditd_printk_skb: 27 callbacks suppressed [ 139.117403][ T26] audit: type=1326 audit(1753235153.992:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5052 comm="syz.2.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 139.205407][ T5053] loop2: detected capacity change from 0 to 128 [ 139.229331][ T26] audit: type=1326 audit(1753235154.022:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5052 comm="syz.2.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 139.264136][ T5053] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 139.314575][ T5053] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 139.461346][ T26] audit: type=1326 audit(1753235154.022:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5052 comm="syz.2.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 139.483850][ T26] audit: type=1326 audit(1753235154.022:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5052 comm="syz.2.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 139.526019][ T26] audit: type=1326 audit(1753235154.022:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5052 comm="syz.2.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 139.561831][ T5064] loop1: detected capacity change from 0 to 512 [ 139.603895][ T5061] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.715689][ T5064] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 139.725077][ T5064] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 139.747905][ T5064] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #2: comm syz.1.205: corrupted inode contents [ 139.761464][ T5064] EXT4-fs error (device loop1): ext4_dirty_inode:6119: inode #2: comm syz.1.205: mark_inode_dirty error [ 139.777146][ T5064] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.205: bg 0: block 328: padding at end of block bitmap is not set [ 139.801070][ T5070] program syz.1.205 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 139.879436][ T26] audit: type=1326 audit(1753235154.022:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5052 comm="syz.2.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 140.140066][ T26] audit: type=1326 audit(1753235154.022:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5052 comm="syz.2.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 140.210393][ T5061] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.376619][ T26] audit: type=1326 audit(1753235154.022:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5052 comm="syz.2.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 140.533692][ T26] audit: type=1326 audit(1753235154.062:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5052 comm="syz.2.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 140.566050][ T26] audit: type=1326 audit(1753235154.072:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5052 comm="syz.2.201" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 141.129543][ T5080] loop0: detected capacity change from 0 to 512 [ 141.332939][ T5080] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 141.342540][ T5080] ext4 filesystem being mounted at /36/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 141.372812][ T5080] EXT4-fs error (device loop0): ext4_do_update_inode:5254: inode #2: comm syz.0.211: corrupted inode contents [ 141.389361][ T5080] EXT4-fs error (device loop0): ext4_dirty_inode:6119: inode #2: comm syz.0.211: mark_inode_dirty error [ 141.457867][ T5083] program syz.0.211 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 141.479431][ T5080] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.211: bg 0: block 328: padding at end of block bitmap is not set [ 142.323517][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 142.334460][ T5061] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 143.030513][ T5091] loop3: detected capacity change from 0 to 512 [ 143.318282][ T4268] EXT4-fs (loop0): unmounting filesystem. [ 143.327748][ T5091] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 143.338068][ T5091] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 143.405622][ T5091] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.214: corrupted inode contents [ 143.477070][ T5096] program syz.3.214 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 143.621860][ T5091] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.214: mark_inode_dirty error [ 143.644067][ T5091] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.214: bg 0: block 328: padding at end of block bitmap is not set [ 143.907500][ T5061] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.190312][ T5061] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.230404][ T5061] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.281717][ T5061] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.314517][ T5061] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 144.609153][ T5101] netlink: 52 bytes leftover after parsing attributes in process `syz.0.215'. [ 144.688833][ T5104] netlink: 8 bytes leftover after parsing attributes in process `syz.1.212'. [ 144.725598][ T5104] netlink: 4 bytes leftover after parsing attributes in process `syz.1.212'. [ 144.824473][ T5104] device wireguard0 entered promiscuous mode [ 144.964595][ T5110] netlink: 'syz.2.218': attribute type 4 has an invalid length. [ 145.013014][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 145.056019][ T26] kauditd_printk_skb: 25 callbacks suppressed [ 145.056035][ T26] audit: type=1326 audit(1753235159.922:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5111 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 145.197881][ T26] audit: type=1326 audit(1753235159.922:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5111 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 145.355515][ T5118] loop1: detected capacity change from 0 to 512 [ 145.485722][ T5118] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 145.496178][ T5118] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 145.511901][ T5118] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #2: comm syz.1.222: corrupted inode contents [ 145.524354][ T5118] EXT4-fs error (device loop1): ext4_dirty_inode:6119: inode #2: comm syz.1.222: mark_inode_dirty error [ 145.537015][ T5118] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.222: bg 0: block 328: padding at end of block bitmap is not set [ 145.553733][ T5118] program syz.1.222 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 145.584482][ T26] audit: type=1326 audit(1753235159.922:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5111 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 145.733429][ T26] audit: type=1326 audit(1753235159.922:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5111 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 145.763424][ T26] audit: type=1326 audit(1753235159.922:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5111 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 145.801184][ T26] audit: type=1326 audit(1753235159.922:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5111 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 145.824056][ T26] audit: type=1326 audit(1753235159.972:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5111 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 146.917089][ T5132] loop0: detected capacity change from 0 to 512 [ 147.031956][ T26] audit: type=1326 audit(1753235159.972:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5111 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 147.158700][ T5132] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 147.168285][ T5132] ext4 filesystem being mounted at /39/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 147.206952][ T5132] EXT4-fs error (device loop0): ext4_do_update_inode:5254: inode #2: comm syz.0.225: corrupted inode contents [ 147.220693][ T5132] EXT4-fs error (device loop0): ext4_dirty_inode:6119: inode #2: comm syz.0.225: mark_inode_dirty error [ 147.241575][ T5132] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.225: bg 0: block 328: padding at end of block bitmap is not set [ 147.297302][ T5136] program syz.0.225 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 147.303103][ T26] audit: type=1326 audit(1753235159.972:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5111 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 147.328862][ T26] audit: type=1326 audit(1753235159.972:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5111 comm="syz.0.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 147.639029][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 147.768052][ T5141] loop3: detected capacity change from 0 to 512 [ 147.802657][ T5141] EXT4-fs: Ignoring removed orlov option [ 147.831143][ T5141] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 147.972988][ T5141] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 148.024900][ T5141] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2195: inode #15: comm syz.3.228: corrupted in-inode xattr [ 148.096670][ T5141] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.228: couldn't read orphan inode 15 (err -117) [ 148.155515][ T5141] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 148.691095][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 148.878339][ T5154] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 148.900602][ T4268] EXT4-fs (loop0): unmounting filesystem. [ 148.992022][ T5161] netlink: 'syz.2.233': attribute type 4 has an invalid length. [ 149.072347][ T5154] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.187307][ T5154] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 149.624244][ T5177] loop3: detected capacity change from 0 to 512 [ 149.723881][ T5177] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 149.733111][ T5177] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 149.753704][ T5177] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.237: corrupted inode contents [ 149.766433][ T5177] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.237: mark_inode_dirty error [ 149.780780][ T5177] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.237: bg 0: block 328: padding at end of block bitmap is not set [ 149.805516][ T5182] program syz.3.237 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 150.932201][ T5199] loop0: detected capacity change from 0 to 512 [ 150.949918][ T5199] EXT4-fs: Ignoring removed orlov option [ 150.980173][ T5199] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 151.016625][ T5199] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 151.045628][ T5199] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2195: inode #15: comm syz.0.245: corrupted in-inode xattr [ 151.069870][ T5199] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.245: couldn't read orphan inode 15 (err -117) [ 151.088435][ T5199] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 151.177339][ T5154] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 151.187619][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 151.422049][ T4268] EXT4-fs (loop0): unmounting filesystem. [ 151.539234][ T5154] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.583987][ T5154] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.590428][ T5205] loop4: detected capacity change from 0 to 1024 [ 151.624302][ T5205] EXT4-fs: Ignoring removed orlov option [ 151.630995][ T5205] EXT4-fs: Ignoring removed nomblk_io_submit option [ 151.644743][ T5154] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.654979][ T5208] netlink: 'syz.2.249': attribute type 4 has an invalid length. [ 151.679264][ T5154] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 151.690110][ T5205] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 151.951374][ T26] kauditd_printk_skb: 8 callbacks suppressed [ 151.951392][ T26] audit: type=1326 audit(1753235166.822:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5219 comm="syz.2.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 151.987184][ T5221] loop3: detected capacity change from 0 to 512 [ 152.069803][ T5221] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 152.079087][ T5221] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 152.096936][ T5221] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.251: corrupted inode contents [ 152.109395][ T5221] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.251: mark_inode_dirty error [ 152.121921][ T5221] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.251: bg 0: block 328: padding at end of block bitmap is not set [ 152.175108][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 152.194250][ T5220] loop2: detected capacity change from 0 to 1024 [ 152.269377][ T5220] EXT4-fs: Ignoring removed nomblk_io_submit option [ 152.334538][ T26] audit: type=1326 audit(1753235166.832:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5219 comm="syz.2.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 152.399557][ T5220] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 152.520847][ T26] audit: type=1326 audit(1753235166.832:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5219 comm="syz.2.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 152.692051][ T26] audit: type=1326 audit(1753235166.832:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5219 comm="syz.2.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 152.786344][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 152.873520][ T26] audit: type=1326 audit(1753235166.832:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5219 comm="syz.2.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 153.001472][ T26] audit: type=1326 audit(1753235166.832:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5219 comm="syz.2.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 153.124163][ T26] audit: type=1326 audit(1753235166.832:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5219 comm="syz.2.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 153.222546][ T26] audit: type=1326 audit(1753235166.832:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5219 comm="syz.2.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 153.267322][ T5230] bond0: (slave bond_slave_1): Releasing backup interface [ 153.315091][ T26] audit: type=1326 audit(1753235166.912:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5219 comm="syz.2.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 153.485306][ T26] audit: type=1326 audit(1753235166.922:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5219 comm="syz.2.253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 153.748802][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 153.967051][ T5236] loop2: detected capacity change from 0 to 512 [ 154.022504][ T5236] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 154.033042][ T5236] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 154.052301][ T5236] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.256: corrupted inode contents [ 154.065198][ T5236] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.256: mark_inode_dirty error [ 154.078952][ T5236] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.256: bg 0: block 328: padding at end of block bitmap is not set [ 154.096701][ T5237] program syz.2.256 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 154.256529][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 154.444407][ T5249] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.482020][ T5251] netlink: 'syz.0.263': attribute type 4 has an invalid length. [ 154.531715][ T5249] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.637447][ T5249] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.844721][ T5249] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 154.965662][ T5265] loop0: detected capacity change from 0 to 512 [ 155.280603][ T5265] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 155.290253][ T5265] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 155.331749][ T5265] EXT4-fs error (device loop0): ext4_do_update_inode:5254: inode #2: comm syz.0.266: corrupted inode contents [ 155.347057][ T5265] EXT4-fs error (device loop0): ext4_dirty_inode:6119: inode #2: comm syz.0.266: mark_inode_dirty error [ 155.411658][ T5268] program syz.0.266 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 155.440843][ T5265] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.266: bg 0: block 328: padding at end of block bitmap is not set [ 156.976267][ T5278] loop2: detected capacity change from 0 to 512 [ 157.039860][ T5278] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 157.049052][ T5278] ext4 filesystem being mounted at /67/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.064304][ T5278] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.269: corrupted inode contents [ 157.077918][ T5278] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.269: mark_inode_dirty error [ 157.090143][ T5278] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.269: bg 0: block 328: padding at end of block bitmap is not set [ 157.308066][ T4268] EXT4-fs (loop0): unmounting filesystem. [ 157.515063][ T5279] bond0: (slave bond_slave_1): Releasing backup interface [ 158.074340][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 158.083876][ T5289] netlink: 52 bytes leftover after parsing attributes in process `syz.3.274'. [ 158.258812][ T5292] netlink: 16 bytes leftover after parsing attributes in process `syz.0.271'. [ 158.348873][ T5284] loop4: detected capacity change from 0 to 512 [ 158.422463][ T5297] netlink: 'syz.3.276': attribute type 4 has an invalid length. [ 158.481157][ T5284] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 158.490534][ T5284] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 158.907980][ T5284] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #2: comm syz.4.272: corrupted inode contents [ 159.007336][ T5284] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #2: comm syz.4.272: mark_inode_dirty error [ 159.258614][ T26] kauditd_printk_skb: 18 callbacks suppressed [ 159.258631][ T26] audit: type=1326 audit(1753235174.132:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5302 comm="syz.2.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 159.358563][ T26] audit: type=1326 audit(1753235174.172:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5302 comm="syz.2.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 159.381339][ T5284] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.272: bg 0: block 328: padding at end of block bitmap is not set [ 159.395974][ T26] audit: type=1326 audit(1753235174.172:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5302 comm="syz.2.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 159.418270][ T26] audit: type=1326 audit(1753235174.172:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5302 comm="syz.2.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 159.457479][ T5303] device team_slave_0 entered promiscuous mode [ 159.463801][ T5303] device team_slave_1 entered promiscuous mode [ 159.522704][ T26] audit: type=1326 audit(1753235174.172:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5302 comm="syz.2.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 159.550467][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 159.559840][ T5303] device vlan2 entered promiscuous mode [ 159.566046][ T5303] device team0 entered promiscuous mode [ 159.620095][ T26] audit: type=1326 audit(1753235174.172:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5302 comm="syz.2.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 159.644705][ T26] audit: type=1326 audit(1753235174.172:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5302 comm="syz.2.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 159.693554][ T26] audit: type=1326 audit(1753235174.172:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5302 comm="syz.2.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0772b8e9a9 code=0x7ffc0000 [ 160.126098][ T5318] loop2: detected capacity change from 0 to 512 [ 160.458402][ T5318] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 160.468142][ T5318] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 160.503582][ T5318] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.281: corrupted inode contents [ 160.518346][ T5318] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.281: mark_inode_dirty error [ 160.534703][ T5318] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.281: bg 0: block 328: padding at end of block bitmap is not set [ 160.598175][ T5323] program syz.2.281 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 161.316660][ T26] audit: type=1326 audit(1753235176.192:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5327 comm="syz.0.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 161.355816][ T5326] bond0: (slave bond_slave_1): Releasing backup interface [ 162.111499][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 162.155465][ T5331] loop3: detected capacity change from 0 to 512 [ 162.216276][ T26] audit: type=1326 audit(1753235176.192:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5327 comm="syz.0.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f3ac298e9a9 code=0x7ffc0000 [ 162.318652][ T5249] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 162.343665][ T5331] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 162.352856][ T5331] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.373037][ T5331] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.286: corrupted inode contents [ 162.385536][ T5331] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.286: mark_inode_dirty error [ 162.404924][ T5331] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.286: bg 0: block 328: padding at end of block bitmap is not set [ 162.533718][ T5249] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 162.774391][ T5336] netlink: 16 bytes leftover after parsing attributes in process `syz.4.289'. [ 162.993127][ T5249] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.015831][ T5249] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 163.290262][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 163.535574][ T46] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 163.808514][ T5340] netlink: 'syz.2.288': attribute type 4 has an invalid length. [ 163.965522][ T46] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.102436][ T5342] loop3: detected capacity change from 0 to 512 [ 164.160778][ T5342] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 164.170078][ T5342] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 164.184732][ T5342] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.290: corrupted inode contents [ 164.198504][ T5342] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.290: mark_inode_dirty error [ 164.210583][ T5342] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.290: bg 0: block 328: padding at end of block bitmap is not set [ 164.213128][ T46] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.236922][ T5346] program syz.3.290 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 164.457277][ T5351] netlink: 88 bytes leftover after parsing attributes in process `syz.4.297'. [ 164.478208][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 164.486179][ T46] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 164.853363][ T5359] loop2: detected capacity change from 0 to 512 [ 165.004538][ T46] tipc: Left network mode [ 165.034025][ T5359] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 165.043561][ T5359] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 165.081010][ T5359] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.295: corrupted inode contents [ 165.095543][ T5359] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.295: mark_inode_dirty error [ 165.114258][ T5359] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.295: bg 0: block 328: padding at end of block bitmap is not set [ 165.178009][ T5363] program syz.2.295 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 165.840380][ T5368] loop1: detected capacity change from 0 to 512 [ 166.185301][ T5379] loop4: detected capacity change from 0 to 512 [ 166.216304][ T5368] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 166.225374][ T5368] ext4 filesystem being mounted at /41/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 166.242302][ T5368] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #2: comm syz.1.299: corrupted inode contents [ 166.254665][ T5368] EXT4-fs error (device loop1): ext4_dirty_inode:6119: inode #2: comm syz.1.299: mark_inode_dirty error [ 166.267280][ T5368] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.299: bg 0: block 328: padding at end of block bitmap is not set [ 166.285428][ T5368] program syz.1.299 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 166.589211][ T5379] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 166.598453][ T5379] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 166.618184][ T5379] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #2: comm syz.4.298: corrupted inode contents [ 166.630650][ T5379] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #2: comm syz.4.298: mark_inode_dirty error [ 166.643273][ T5379] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.298: bg 0: block 328: padding at end of block bitmap is not set [ 166.662050][ T5379] program syz.4.298 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 166.798296][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 166.913533][ T5385] loop3: detected capacity change from 0 to 512 [ 167.020109][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 167.042137][ T5385] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 167.186306][ T5385] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 167.290701][ T5385] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.300: corrupted inode contents [ 167.484734][ T4278] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 167.494237][ T4278] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 167.503153][ T4278] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 167.520879][ T4278] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 167.529581][ T4278] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 167.537146][ T4278] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 167.591544][ T5385] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.300: mark_inode_dirty error [ 167.716190][ T5385] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.300: bg 0: block 328: padding at end of block bitmap is not set [ 167.866651][ T5405] loop2: detected capacity change from 0 to 1764 [ 167.910032][ T4417] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 168.443452][ T5415] loop4: detected capacity change from 0 to 512 [ 168.595189][ T5415] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 168.604374][ T5415] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 168.624513][ T5415] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #2: comm syz.4.306: corrupted inode contents [ 168.639970][ T5415] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #2: comm syz.4.306: mark_inode_dirty error [ 168.653432][ T5415] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.306: bg 0: block 328: padding at end of block bitmap is not set [ 168.670504][ T5422] program syz.4.306 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 169.489651][ T5398] chnl_net:caif_netlink_parms(): no params data found [ 169.596141][ T4278] Bluetooth: hci1: command 0x0409 tx timeout [ 169.947898][ T5398] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.973452][ T5398] bridge0: port 1(bridge_slave_0) entered disabled state [ 170.012683][ T5398] device bridge_slave_0 entered promiscuous mode [ 170.050777][ T5398] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.090501][ T5398] bridge0: port 2(bridge_slave_1) entered disabled state [ 170.132119][ T5398] device bridge_slave_1 entered promiscuous mode [ 170.195154][ T5432] netlink: 8 bytes leftover after parsing attributes in process `syz.2.308'. [ 170.213738][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 170.344288][ T5398] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 170.410277][ T5398] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 170.749216][ T5398] team0: Port device team_slave_0 added [ 170.784731][ T5398] team0: Port device team_slave_1 added [ 170.836760][ T46] device hsr_slave_0 left promiscuous mode [ 170.856199][ T46] device hsr_slave_1 left promiscuous mode [ 170.894821][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 170.925089][ T46] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 170.936808][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 170.944277][ T46] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 170.986807][ T46] device bridge_slave_1 left promiscuous mode [ 171.056776][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.089241][ T46] device bridge_slave_0 left promiscuous mode [ 171.116130][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.197585][ T46] device veth1_macvtap left promiscuous mode [ 171.216253][ T46] device veth0_macvtap left promiscuous mode [ 171.222438][ T46] device veth1_vlan left promiscuous mode [ 171.256320][ T46] device veth0_vlan left promiscuous mode [ 171.666040][ T4278] Bluetooth: hci1: command 0x041b tx timeout [ 172.146921][ T5466] loop2: detected capacity change from 0 to 512 [ 172.230984][ T5466] EXT4-fs (loop2): too many log groups per flexible block group [ 172.256391][ T5466] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 172.263465][ T5466] EXT4-fs (loop2): mount failed [ 173.002493][ T46] team0 (unregistering): Port device team_slave_1 removed [ 173.079980][ T46] team0 (unregistering): Port device team_slave_0 removed [ 173.173557][ T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 173.381567][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 173.501487][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 173.759503][ T4278] Bluetooth: hci1: command 0x040f tx timeout [ 173.915559][ T46] bond0 (unregistering): Released all slaves [ 174.010038][ T5453] netlink: 52 bytes leftover after parsing attributes in process `syz.4.313'. [ 174.445695][ T5476] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.454021][ T5476] bridge0: port 1(bridge_slave_0) entered disabled state [ 174.525648][ T5476] batman_adv: batadv0: Interface deactivated: dummy0 [ 174.927604][ T5476] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 174.979755][ T5476] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 175.443450][ T5476] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.452603][ T5476] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.466168][ T5476] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.475206][ T5476] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.616720][ T5398] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 175.635991][ T5398] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 175.761356][ T5398] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 175.806830][ T5496] netlink: 8 bytes leftover after parsing attributes in process `syz.3.326'. [ 175.817556][ T5398] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 175.826438][ T4278] Bluetooth: hci1: command 0x0419 tx timeout [ 175.833147][ T5398] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 175.886708][ T5398] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 176.056479][ T5398] device hsr_slave_0 entered promiscuous mode [ 176.084179][ T5398] device hsr_slave_1 entered promiscuous mode [ 176.094545][ T5398] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 176.121543][ T5398] Cannot create hsr debugfs directory [ 176.303675][ T5511] loop1: detected capacity change from 0 to 2048 [ 176.567176][ T5514] loop3: detected capacity change from 0 to 512 [ 176.923647][ T5514] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 176.933743][ T5514] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 176.973151][ T5514] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.328: corrupted inode contents [ 176.987499][ T5514] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.328: mark_inode_dirty error [ 177.002718][ T5514] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.328: bg 0: block 328: padding at end of block bitmap is not set [ 177.066313][ T5518] program syz.3.328 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 177.509705][ T26] kauditd_printk_skb: 14 callbacks suppressed [ 177.509721][ T26] audit: type=1326 audit(1753235192.382:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.1.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 177.827228][ T26] audit: type=1326 audit(1753235192.422:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.1.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 178.001104][ T5526] loop4: detected capacity change from 0 to 128 [ 178.056907][ T26] audit: type=1326 audit(1753235192.422:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.1.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 178.139818][ T5398] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 178.148210][ T5526] FAT-fs (loop4): Directory bread(block 414) failed [ 178.154903][ T5526] FAT-fs (loop4): Directory bread(block 415) failed [ 178.186504][ T26] audit: type=1326 audit(1753235192.422:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.1.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 178.209014][ T26] audit: type=1326 audit(1753235192.422:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.1.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 178.229768][ T5398] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 178.337434][ T5526] FAT-fs (loop4): Directory bread(block 416) failed [ 178.350168][ T5526] FAT-fs (loop4): Directory bread(block 417) failed [ 178.372447][ T26] audit: type=1326 audit(1753235192.422:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.1.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 178.410672][ T5526] FAT-fs (loop4): Directory bread(block 418) failed [ 178.453356][ T5526] FAT-fs (loop4): Directory bread(block 419) failed [ 178.488395][ T5526] FAT-fs (loop4): Directory bread(block 420) failed [ 178.516090][ T26] audit: type=1326 audit(1753235192.422:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.1.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 178.557139][ T5526] FAT-fs (loop4): Directory bread(block 421) failed [ 178.564737][ T26] audit: type=1326 audit(1753235192.422:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.1.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 178.591433][ T26] audit: type=1326 audit(1753235192.422:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.1.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 178.616543][ T26] audit: type=1326 audit(1753235192.422:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.1.331" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 178.704129][ T5533] FAT-fs (loop4): Directory bread(block 414) failed [ 178.726120][ T5533] FAT-fs (loop4): Directory bread(block 415) failed [ 178.822266][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 179.266311][ T5528] bridge0: port 2(bridge_slave_1) entered disabled state [ 179.275556][ T5528] bridge0: port 1(bridge_slave_0) entered disabled state [ 179.589319][ T5554] netlink: 8 bytes leftover after parsing attributes in process `syz.2.338'. [ 180.042308][ T5528] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 180.066790][ T5528] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 180.558123][ T5528] netdevsim netdevsim1 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.566816][ T5528] netdevsim netdevsim1 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.575172][ T5528] netdevsim netdevsim1 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.583689][ T5528] netdevsim netdevsim1 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.656402][ T5398] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 180.795396][ T5398] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 180.933867][ T5573] loop3: detected capacity change from 0 to 2048 [ 181.058611][ T5573] EXT4-fs (loop3): failed to initialize system zone (-117) [ 181.084303][ T5573] EXT4-fs (loop3): mount failed [ 181.316667][ T5398] 8021q: adding VLAN 0 to HW filter on device bond0 [ 181.404726][ T4946] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 181.433670][ T4946] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 181.469234][ T5398] 8021q: adding VLAN 0 to HW filter on device team0 [ 181.520472][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 181.546913][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 181.568486][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 181.575682][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 181.629342][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 181.655022][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 181.694714][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 181.715571][ T41] bridge0: port 2(bridge_slave_1) entered blocking state [ 181.722835][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state [ 181.734396][ T5599] netlink: 8 bytes leftover after parsing attributes in process `syz.2.349'. [ 181.753035][ T5598] netlink: 48 bytes leftover after parsing attributes in process `syz.3.348'. [ 181.781502][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 181.817218][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 181.856459][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 181.995574][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 182.066291][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 182.081773][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 182.101002][ T4356] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 182.202498][ T5607] loop1: detected capacity change from 0 to 512 [ 182.510052][ T5607] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 182.519634][ T5607] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 182.570714][ T5607] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #2: comm syz.1.350: corrupted inode contents [ 182.584955][ T5607] EXT4-fs error (device loop1): ext4_dirty_inode:6119: inode #2: comm syz.1.350: mark_inode_dirty error [ 182.646005][ T5611] program syz.1.350 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 182.679625][ T5607] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.350: bg 0: block 328: padding at end of block bitmap is not set [ 182.936135][ T5604] loop3: detected capacity change from 0 to 512 [ 182.986563][ T5604] EXT4-fs: Ignoring removed orlov option [ 183.052758][ T5604] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 183.150941][ T5604] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 183.209210][ T5604] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2195: inode #15: comm syz.3.351: corrupted in-inode xattr [ 183.290577][ T5604] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.351: couldn't read orphan inode 15 (err -117) [ 183.358435][ T5604] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 183.569387][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 183.833784][ T5398] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 183.929430][ T5398] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 184.093027][ T5629] loop3: detected capacity change from 0 to 128 [ 184.143916][ T5092] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 184.193553][ T5629] FAT-fs (loop3): Directory bread(block 414) failed [ 184.202011][ T5092] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 184.210008][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 184.226455][ T5629] FAT-fs (loop3): Directory bread(block 415) failed [ 184.233147][ T5629] FAT-fs (loop3): Directory bread(block 416) failed [ 184.267332][ T5092] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 184.303337][ T5092] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 184.311550][ T5629] FAT-fs (loop3): Directory bread(block 417) failed [ 184.329176][ T5629] FAT-fs (loop3): Directory bread(block 418) failed [ 184.354316][ T5092] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 184.363222][ T5629] FAT-fs (loop3): Directory bread(block 419) failed [ 184.387597][ T5629] FAT-fs (loop3): Directory bread(block 420) failed [ 184.394285][ T5629] FAT-fs (loop3): Directory bread(block 421) failed [ 184.441823][ T5636] tipc: Started in network mode [ 184.462433][ T5636] tipc: Node identity 4, cluster identity 4711 [ 184.483918][ T5636] tipc: Node number set to 4 [ 184.582869][ T5645] FAT-fs (loop3): Directory bread(block 414) failed [ 184.606205][ T5645] FAT-fs (loop3): Directory bread(block 415) failed [ 184.818189][ T5650] x_tables: ip6_tables: tcpmss match: only valid for protocol 6 [ 184.849118][ T5654] loop4: detected capacity change from 0 to 1024 [ 184.902916][ T5654] EXT4-fs: Ignoring removed nomblk_io_submit option [ 185.052146][ T5659] sch_tbf: burst 0 is lower than device lo mtu (11337746) ! [ 185.076927][ T5654] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 185.180955][ T4931] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 185.197955][ T4931] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 185.273287][ T5398] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 185.287678][ T5666] loop3: detected capacity change from 0 to 512 [ 185.295017][ T5666] EXT4-fs: Ignoring removed orlov option [ 185.398081][ T5666] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 185.435767][ T5666] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 185.493476][ T5666] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2195: inode #15: comm syz.3.363: corrupted in-inode xattr [ 185.584725][ T5666] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.363: couldn't read orphan inode 15 (err -117) [ 185.672381][ T5666] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 185.874775][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 185.904645][ T5684] loop2: detected capacity change from 0 to 512 [ 185.984488][ T5684] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 185.994094][ T5684] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 186.008696][ T5684] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.367: corrupted inode contents [ 186.021151][ T5684] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.367: mark_inode_dirty error [ 186.033365][ T5684] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.367: bg 0: block 328: padding at end of block bitmap is not set [ 186.050767][ T5684] program syz.2.367 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 186.235757][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 187.542420][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 187.578051][ T5709] loop4: detected capacity change from 0 to 128 [ 187.663644][ T5709] FAT-fs (loop4): Directory bread(block 414) failed [ 187.676050][ T5709] FAT-fs (loop4): Directory bread(block 415) failed [ 187.706203][ T5709] FAT-fs (loop4): Directory bread(block 416) failed [ 187.712921][ T5709] FAT-fs (loop4): Directory bread(block 417) failed [ 187.784064][ T5709] FAT-fs (loop4): Directory bread(block 418) failed [ 187.876269][ T5709] FAT-fs (loop4): Directory bread(block 419) failed [ 187.883229][ T5709] FAT-fs (loop4): Directory bread(block 420) failed [ 187.928171][ T5709] FAT-fs (loop4): Directory bread(block 421) failed [ 187.997135][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 188.010705][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 188.085147][ T5723] loop2: detected capacity change from 0 to 512 [ 188.242819][ T5728] FAT-fs (loop4): Directory bread(block 414) failed [ 188.320328][ T5726] netlink: 'syz.1.376': attribute type 4 has an invalid length. [ 188.448654][ T5723] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 188.458267][ T5723] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 188.492105][ T5723] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.374: corrupted inode contents [ 188.508866][ T5723] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.374: mark_inode_dirty error [ 188.524666][ T5723] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.374: bg 0: block 328: padding at end of block bitmap is not set [ 188.587124][ T5731] program syz.2.374 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 188.736323][ T5728] FAT-fs (loop4): Directory bread(block 415) failed [ 188.921668][ T4946] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 188.961312][ T4946] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 189.038203][ T5398] device veth0_vlan entered promiscuous mode [ 189.125552][ T4946] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 189.186928][ T4946] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 189.290455][ T5398] device veth1_vlan entered promiscuous mode [ 189.610659][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 189.636891][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 189.688512][ T5398] device veth0_macvtap entered promiscuous mode [ 189.699979][ T5739] netlink: 8 bytes leftover after parsing attributes in process `syz.4.378'. [ 189.735575][ T5398] device veth1_macvtap entered promiscuous mode [ 189.832735][ T5740] device vlan2 entered promiscuous mode [ 189.985534][ T4931] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 190.017452][ T4931] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 190.064822][ T5398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 190.102672][ T5398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 190.112980][ T5398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 190.123760][ T5398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 190.136039][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 190.143936][ T5398] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 190.167369][ T4931] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 190.199240][ T4931] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 190.226896][ T5398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 190.260852][ T5398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 190.285946][ T5398] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 190.316013][ T5398] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 190.367011][ T5398] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 190.375851][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 190.395848][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 190.421472][ T5398] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.442035][ T5398] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.476096][ T5398] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.505997][ T5398] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 190.771512][ T4946] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 190.790231][ T4946] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 190.820713][ T5761] loop1: detected capacity change from 0 to 512 [ 190.922516][ T4433] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 190.959727][ T5761] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 190.969838][ T5761] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 190.986345][ T5761] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #2: comm syz.1.384: corrupted inode contents [ 190.998857][ T5761] EXT4-fs error (device loop1): ext4_dirty_inode:6119: inode #2: comm syz.1.384: mark_inode_dirty error [ 191.011394][ T5761] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.384: bg 0: block 328: padding at end of block bitmap is not set [ 191.028804][ T5761] program syz.1.384 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 191.114944][ T4433] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 191.166717][ T4433] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 191.275228][ T4946] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 191.424538][ T5770] loop4: detected capacity change from 0 to 128 [ 191.612567][ T5770] FAT-fs (loop4): Directory bread(block 414) failed [ 191.726090][ T5770] FAT-fs (loop4): Directory bread(block 415) failed [ 191.814084][ T5770] FAT-fs (loop4): Directory bread(block 416) failed [ 191.889728][ T5770] FAT-fs (loop4): Directory bread(block 417) failed [ 191.946944][ T5770] FAT-fs (loop4): Directory bread(block 418) failed [ 191.954413][ T5777] netlink: 'syz.3.388': attribute type 4 has an invalid length. [ 192.006111][ T5770] FAT-fs (loop4): Directory bread(block 419) failed [ 192.012803][ T5770] FAT-fs (loop4): Directory bread(block 420) failed [ 192.126236][ T5770] FAT-fs (loop4): Directory bread(block 421) failed [ 192.189326][ T5778] loop5: detected capacity change from 0 to 2048 [ 192.361091][ T5784] FAT-fs (loop4): Directory bread(block 414) failed [ 192.396312][ T5784] FAT-fs (loop4): Directory bread(block 415) failed [ 192.438765][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 192.457850][ T5778] loop5: p1 < > p4 [ 192.481229][ T5778] loop5: p4 size 8388608 extends beyond EOD, truncated [ 192.492666][ T5787] loop3: detected capacity change from 0 to 512 [ 192.501686][ T5787] EXT4-fs: Ignoring removed orlov option [ 192.517454][ T5787] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 192.519394][ T5791] netlink: 8 bytes leftover after parsing attributes in process `syz.2.391'. [ 192.557718][ T5787] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 192.610383][ T5787] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2195: inode #15: comm syz.3.390: corrupted in-inode xattr [ 192.649216][ T5787] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.390: couldn't read orphan inode 15 (err -117) [ 192.768671][ T5787] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 192.993306][ T5803] process '+}[@' launched './file0' with NULL argv: empty string added [ 193.025164][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 193.251075][ T5810] netlink: 8 bytes leftover after parsing attributes in process `syz.1.397'. [ 193.450042][ T5813] loop2: detected capacity change from 0 to 512 [ 193.511664][ T5819] netlink: 'syz.1.400': attribute type 4 has an invalid length. [ 193.525470][ T5813] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 193.543080][ T5813] EXT4-fs (loop2): orphan cleanup on readonly fs [ 193.556710][ T5813] __quota_error: 7 callbacks suppressed [ 193.556728][ T5813] Quota error (device loop2): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 193.606436][ T5813] EXT4-fs warning (device loop2): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 193.631841][ T5813] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 193.691036][ T5813] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.398: bg 0: block 40: padding at end of block bitmap is not set [ 193.798191][ T5813] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 193.843195][ T5813] EXT4-fs (loop2): 1 truncate cleaned up [ 193.866038][ T5813] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 194.055398][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 194.183242][ T5832] loop4: detected capacity change from 0 to 512 [ 194.251099][ T5832] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 194.260321][ T5832] ext4 filesystem being mounted at /79/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 194.275427][ T5832] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #2: comm syz.4.402: corrupted inode contents [ 194.289560][ T5832] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #2: comm syz.4.402: mark_inode_dirty error [ 194.301667][ T5832] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.402: bg 0: block 328: padding at end of block bitmap is not set [ 194.320729][ T5832] program syz.4.402 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 194.470391][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.477482][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.540418][ T5838] loop1: detected capacity change from 0 to 128 [ 194.638852][ T5838] FAT-fs (loop1): Directory bread(block 414) failed [ 194.716310][ T5838] FAT-fs (loop1): Directory bread(block 415) failed [ 194.777020][ T5838] FAT-fs (loop1): Directory bread(block 416) failed [ 194.783707][ T5838] FAT-fs (loop1): Directory bread(block 417) failed [ 194.913819][ T5838] FAT-fs (loop1): Directory bread(block 418) failed [ 195.007967][ T5838] FAT-fs (loop1): Directory bread(block 419) failed [ 195.014672][ T5838] FAT-fs (loop1): Directory bread(block 420) failed [ 195.113010][ T5838] FAT-fs (loop1): Directory bread(block 421) failed [ 195.215274][ T5848] netlink: 8 bytes leftover after parsing attributes in process `syz.5.406'. [ 195.258230][ T5847] loop2: detected capacity change from 0 to 512 [ 195.304133][ T5852] FAT-fs (loop1): Directory bread(block 414) failed [ 195.321379][ T5852] FAT-fs (loop1): Directory bread(block 415) failed [ 195.368558][ T5847] EXT4-fs: Ignoring removed orlov option [ 195.445466][ T5847] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 195.636273][ T5847] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 195.716051][ T5847] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2195: inode #15: comm syz.2.407: corrupted in-inode xattr [ 195.822532][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 195.864860][ T5847] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.407: couldn't read orphan inode 15 (err -117) [ 196.016743][ T5847] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 196.118309][ T5867] netlink: 'syz.4.411': attribute type 4 has an invalid length. [ 196.300621][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 196.709031][ T5883] loop2: detected capacity change from 0 to 2048 [ 196.838935][ T5895] loop4: detected capacity change from 0 to 512 [ 197.067509][ T5883] loop2: p1 < > p4 [ 197.300462][ T5895] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 197.310300][ T5895] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 197.352885][ T5895] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #2: comm syz.4.417: corrupted inode contents [ 197.368427][ T5895] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #2: comm syz.4.417: mark_inode_dirty error [ 197.384506][ T5895] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.417: bg 0: block 328: padding at end of block bitmap is not set [ 197.444247][ T5899] program syz.4.417 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 197.867160][ T5883] loop2: p4 size 8388608 extends beyond EOD, truncated [ 198.551059][ T5909] loop5: detected capacity change from 0 to 512 [ 198.679849][ T5909] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 198.689077][ T5909] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 198.710106][ T5909] EXT4-fs error (device loop5): ext4_do_update_inode:5254: inode #2: comm syz.5.421: corrupted inode contents [ 198.732558][ T5909] EXT4-fs error (device loop5): ext4_dirty_inode:6119: inode #2: comm syz.5.421: mark_inode_dirty error [ 198.746599][ T5909] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.421: bg 0: block 328: padding at end of block bitmap is not set [ 198.763110][ T5913] program syz.5.421 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 198.885207][ T5907] loop3: detected capacity change from 0 to 2048 [ 198.934495][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 198.989899][ T5907] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 199.180744][ T5920] loop1: detected capacity change from 0 to 128 [ 199.202185][ T4269] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 199.243134][ T5398] EXT4-fs (loop5): unmounting filesystem. [ 199.269143][ T4269] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 199.301485][ T5920] FAT-fs (loop1): Directory bread(block 414) failed [ 199.351341][ T5920] FAT-fs (loop1): Directory bread(block 415) failed [ 199.357171][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 199.396370][ T5920] FAT-fs (loop1): Directory bread(block 416) failed [ 199.403053][ T5920] FAT-fs (loop1): Directory bread(block 417) failed [ 199.473686][ T5924] netlink: 'syz.4.428': attribute type 4 has an invalid length. [ 199.486224][ T5920] FAT-fs (loop1): Directory bread(block 418) failed [ 199.506381][ T5926] loop2: detected capacity change from 0 to 512 [ 199.522906][ T5920] FAT-fs (loop1): Directory bread(block 419) failed [ 199.536938][ T5926] EXT4-fs: Ignoring removed orlov option [ 199.546557][ T5920] FAT-fs (loop1): Directory bread(block 420) failed [ 199.561075][ T5926] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 199.592387][ T5920] FAT-fs (loop1): Directory bread(block 421) failed [ 199.622039][ T5926] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 199.714589][ T5926] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2195: inode #15: comm syz.2.427: corrupted in-inode xattr [ 199.758053][ T5938] FAT-fs (loop1): Directory bread(block 414) failed [ 199.803548][ T5938] FAT-fs (loop1): Directory bread(block 415) failed [ 199.813205][ T5926] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.427: couldn't read orphan inode 15 (err -117) [ 199.872698][ T5926] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 200.141809][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 200.359814][ T5951] loop5: detected capacity change from 0 to 1024 [ 200.510258][ T5951] EXT4-fs: Ignoring removed nomblk_io_submit option [ 200.574742][ T5954] loop3: detected capacity change from 0 to 2048 [ 200.606767][ T5951] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 200.612525][ T5961] loop2: detected capacity change from 0 to 512 [ 200.785073][ T5961] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 200.794535][ T5961] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 200.808702][ T5961] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.435: corrupted inode contents [ 200.847950][ T5961] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.435: mark_inode_dirty error [ 200.860505][ T5972] program syz.2.435 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 200.888738][ T5961] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.435: bg 0: block 328: padding at end of block bitmap is not set [ 200.958305][ T5398] EXT4-fs (loop5): unmounting filesystem. [ 200.993843][ T5975] netlink: 'syz.3.440': attribute type 4 has an invalid length. [ 201.230185][ T5981] loop5: detected capacity change from 0 to 512 [ 201.276927][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 201.325130][ T5958] loop4: detected capacity change from 0 to 512 [ 201.375307][ T5958] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 201.384486][ T5958] ext4 filesystem being mounted at /86/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 201.398343][ T5958] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #2: comm syz.4.437: corrupted inode contents [ 201.413333][ T5958] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #2: comm syz.4.437: mark_inode_dirty error [ 201.427313][ T5958] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.437: bg 0: block 328: padding at end of block bitmap is not set [ 201.443809][ T5958] program syz.4.437 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 201.513046][ T5981] EXT4-fs (loop5): 1 orphan inode deleted [ 201.533066][ T4356] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 201.558176][ T5981] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 201.613043][ T4356] EXT4-fs error (device loop5): ext4_release_dquot:6850: comm kworker/u4:6: Failed to release dquot type 1 [ 201.632324][ T5981] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 201.640939][ T5993] loop1: detected capacity change from 0 to 128 [ 201.736627][ T5993] FAT-fs (loop1): Directory bread(block 414) failed [ 201.772541][ T5993] FAT-fs (loop1): Directory bread(block 415) failed [ 201.816111][ T5993] FAT-fs (loop1): Directory bread(block 416) failed [ 201.856006][ T5993] FAT-fs (loop1): Directory bread(block 417) failed [ 201.875489][ T5993] FAT-fs (loop1): Directory bread(block 418) failed [ 201.903440][ T5993] FAT-fs (loop1): Directory bread(block 419) failed [ 201.973446][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 201.997341][ T5993] FAT-fs (loop1): Directory bread(block 420) failed [ 202.020816][ T5398] EXT4-fs (loop5): unmounting filesystem. [ 202.046240][ T5993] FAT-fs (loop1): Directory bread(block 421) failed [ 202.254761][ T6008] loop2: detected capacity change from 0 to 512 [ 202.283631][ T6009] FAT-fs (loop1): Directory bread(block 414) failed [ 202.296635][ T6008] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 202.371592][ T6008] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2818: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 202.390166][ T6008] EXT4-fs (loop2): 1 truncate cleaned up [ 202.396135][ T6008] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 202.599681][ T6009] FAT-fs (loop1): Directory bread(block 415) failed [ 203.998342][ T6033] netlink: 8 bytes leftover after parsing attributes in process `syz.5.453'. [ 204.158860][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 204.169991][ T6035] netlink: 'syz.1.454': attribute type 4 has an invalid length. [ 204.730302][ T6045] loop3: detected capacity change from 0 to 512 [ 204.736097][ T6051] loop5: detected capacity change from 0 to 128 [ 204.787366][ T6051] FAT-fs (loop5): Directory bread(block 414) failed [ 204.794060][ T6051] FAT-fs (loop5): Directory bread(block 415) failed [ 204.804858][ T6045] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 204.814032][ T6045] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 204.830704][ T6045] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.458: corrupted inode contents [ 204.843454][ T6045] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.458: mark_inode_dirty error [ 204.855271][ T6051] FAT-fs (loop5): Directory bread(block 416) failed [ 204.855283][ T6045] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.458: bg 0: block 328: padding at end of block bitmap is not set [ 204.878839][ T6051] FAT-fs (loop5): Directory bread(block 417) failed [ 204.890131][ T6045] program syz.3.458 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 204.946016][ T6051] FAT-fs (loop5): Directory bread(block 418) failed [ 204.980622][ T6051] FAT-fs (loop5): Directory bread(block 419) failed [ 205.010627][ T6061] loop1: detected capacity change from 0 to 512 [ 205.019715][ T6051] FAT-fs (loop5): Directory bread(block 420) failed [ 205.055382][ T6051] FAT-fs (loop5): Directory bread(block 421) failed [ 205.090570][ T6061] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 205.158473][ T6061] EXT4-fs (loop1): orphan cleanup on readonly fs [ 205.200627][ T6061] Quota error (device loop1): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 205.211768][ T6071] FAT-fs (loop5): Directory bread(block 414) failed [ 205.234547][ T6071] FAT-fs (loop5): Directory bread(block 415) failed [ 205.291391][ T6061] EXT4-fs warning (device loop1): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 205.387324][ T6061] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 205.395568][ T6061] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.463: bg 0: block 40: padding at end of block bitmap is not set [ 205.458854][ T6061] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 205.475717][ T6061] EXT4-fs (loop1): 1 truncate cleaned up [ 205.531590][ T6061] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 205.721242][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 205.722607][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 205.985568][ T6083] syz.5.467[6083] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 205.985682][ T6083] syz.5.467[6083] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 206.146443][ T6088] netlink: 8 bytes leftover after parsing attributes in process `syz.2.468'. [ 206.235539][ T6092] netlink: 'syz.1.470': attribute type 4 has an invalid length. [ 206.796360][ T4289] Bluetooth: hci4: command 0x0406 tx timeout [ 206.802451][ T4289] Bluetooth: hci3: command 0x0406 tx timeout [ 206.810453][ T4278] Bluetooth: hci2: command 0x0406 tx timeout [ 206.817412][ T4285] Bluetooth: hci0: command 0x0406 tx timeout [ 206.893730][ T6105] loop5: detected capacity change from 0 to 512 [ 206.922650][ T6110] loop1: detected capacity change from 0 to 2048 [ 206.965325][ T6105] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 206.974515][ T6105] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 206.989004][ T6105] EXT4-fs error (device loop5): ext4_do_update_inode:5254: inode #2: comm syz.5.475: corrupted inode contents [ 207.001196][ T6105] EXT4-fs error (device loop5): ext4_dirty_inode:6119: inode #2: comm syz.5.475: mark_inode_dirty error [ 207.013703][ T6105] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.475: bg 0: block 328: padding at end of block bitmap is not set [ 207.031649][ T6105] program syz.5.475 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 207.040162][ T6115] loop3: detected capacity change from 0 to 2048 [ 207.090923][ T6110] loop1: p1 < > p4 [ 207.114888][ T6110] loop1: p4 size 8388608 extends beyond EOD, truncated [ 207.151816][ T6115] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 207.304969][ T26] audit: type=1804 audit(1753235222.172:403): pid=6112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.476" name="/newroot/107/file0/bus" dev="loop3" ino=18 res=1 errno=0 [ 207.395959][ T26] audit: type=1800 audit(1753235222.202:404): pid=6112 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.476" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 207.472438][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 207.672565][ T6139] netlink: 8 bytes leftover after parsing attributes in process `syz.3.483'. [ 207.930744][ T5398] EXT4-fs (loop5): unmounting filesystem. [ 208.188703][ T6152] netlink: 340 bytes leftover after parsing attributes in process `syz.4.490'. [ 208.216115][ T6152] netlink: 48 bytes leftover after parsing attributes in process `syz.4.490'. [ 208.590597][ T6160] lo speed is unknown, defaulting to 1000 [ 208.619591][ T6163] loop2: detected capacity change from 0 to 2048 [ 208.664613][ T6160] lo speed is unknown, defaulting to 1000 [ 208.727698][ T6160] lo speed is unknown, defaulting to 1000 [ 208.773051][ T6169] hub 9-0:1.0: USB hub found [ 208.831506][ T6160] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 208.873258][ T6172] netlink: 8 bytes leftover after parsing attributes in process `syz.2.497'. [ 208.885133][ T6169] hub 9-0:1.0: 1 port detected [ 208.983742][ T6160] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 209.090207][ T6160] lo speed is unknown, defaulting to 1000 [ 209.107878][ T6160] lo speed is unknown, defaulting to 1000 [ 209.173819][ T6160] lo speed is unknown, defaulting to 1000 [ 209.214387][ T6178] loop2: detected capacity change from 0 to 2048 [ 209.222614][ T6160] lo speed is unknown, defaulting to 1000 [ 209.257358][ T6160] lo speed is unknown, defaulting to 1000 [ 209.334589][ T6178] loop2: p1 < > p4 [ 209.372618][ T6178] loop2: p4 size 8388608 extends beyond EOD, truncated [ 209.443332][ T6184] loop3: detected capacity change from 0 to 512 [ 209.571537][ T6184] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 209.580738][ T6184] ext4 filesystem being mounted at /112/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 209.604010][ T6184] EXT4-fs error (device loop3): ext4_do_update_inode:5254: inode #2: comm syz.3.500: corrupted inode contents [ 209.617519][ T6184] EXT4-fs error (device loop3): ext4_dirty_inode:6119: inode #2: comm syz.3.500: mark_inode_dirty error [ 209.631599][ T6184] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.500: bg 0: block 328: padding at end of block bitmap is not set [ 209.646762][ T6193] program syz.3.500 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 209.705429][ T6190] netlink: 332 bytes leftover after parsing attributes in process `syz.1.504'. [ 209.726161][ T6190] netlink: 'syz.1.504': attribute type 9 has an invalid length. [ 209.764654][ T6190] netlink: 108 bytes leftover after parsing attributes in process `syz.1.504'. [ 209.810875][ T6190] netlink: 32 bytes leftover after parsing attributes in process `syz.1.504'. [ 209.838726][ T6199] loop5: detected capacity change from 0 to 1024 [ 209.933832][ T6199] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 209.946216][ T6199] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 210.037292][ T26] audit: type=1326 audit(1753235224.912:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.5.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 210.096720][ T26] audit: type=1326 audit(1753235224.932:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.5.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 210.127376][ T26] audit: type=1326 audit(1753235224.932:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.5.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 210.170740][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 210.189782][ T26] audit: type=1326 audit(1753235224.932:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.5.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 210.191998][ T6199] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 210.297606][ T6199] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 43 with error 28 [ 210.355196][ T6204] loop1: detected capacity change from 0 to 2048 [ 210.365982][ T26] audit: type=1326 audit(1753235224.932:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.5.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 210.366285][ T6199] EXT4-fs (loop5): This should not happen!! Data will be lost [ 210.366285][ T6199] [ 210.429532][ T6199] EXT4-fs (loop5): Total free blocks count 0 [ 210.435598][ T6199] EXT4-fs (loop5): Free/Dirty block details [ 210.446564][ T26] audit: type=1326 audit(1753235224.932:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.5.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 210.546069][ T26] audit: type=1326 audit(1753235224.932:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.5.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 210.633092][ T6199] EXT4-fs (loop5): free_blocks=4293918720 [ 210.645991][ T26] audit: type=1326 audit(1753235224.942:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6196 comm="syz.5.505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 210.713104][ T6199] EXT4-fs (loop5): dirty_blocks=48 [ 210.736161][ T6199] EXT4-fs (loop5): Block reservation details [ 210.764997][ T6213] netlink: 8 bytes leftover after parsing attributes in process `syz.4.511'. [ 210.777420][ T6199] EXT4-fs (loop5): i_reserved_data_blocks=3 [ 211.043201][ T5398] EXT4-fs (loop5): unmounting filesystem. [ 211.078850][ T6217] loop1: detected capacity change from 0 to 128 [ 211.261007][ T6217] syz.1.513: attempt to access beyond end of device [ 211.261007][ T6217] loop1: rw=2051, sector=128, nr_sectors = 913 limit=128 [ 211.577980][ T6229] loop2: detected capacity change from 0 to 2048 [ 211.614225][ T6232] device macvtap0 entered promiscuous mode [ 211.667460][ T6232] device macvtap0 left promiscuous mode [ 211.919219][ T6240] loop5: detected capacity change from 0 to 1024 [ 211.965040][ T6238] loop1: detected capacity change from 0 to 2048 [ 211.983161][ T6240] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 212.003298][ T6247] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 212.094281][ T6238] loop1: p1 < > p4 [ 212.138053][ T6253] netlink: 'syz.2.528': attribute type 2 has an invalid length. [ 212.158401][ T6238] loop1: p4 size 8388608 extends beyond EOD, truncated [ 212.184167][ T6255] loop3: detected capacity change from 0 to 1024 [ 212.201453][ T6255] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 212.229112][ T5398] EXT4-fs (loop5): unmounting filesystem. [ 212.313549][ T6255] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 212.414499][ T6255] sg_write: data in/out 16514940/1 bytes for SCSI command 0x25-- guessing data in; [ 212.414499][ T6255] program +}[@ not setting count and/or reply_len properly [ 212.714659][ T4269] EXT4-fs (loop3): unmounting filesystem. [ 212.774248][ T6270] loop5: detected capacity change from 0 to 256 [ 212.850369][ T26] kauditd_printk_skb: 35 callbacks suppressed [ 212.850386][ T26] audit: type=1800 audit(1753235227.722:448): pid=6270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.533" name="file0" dev="loop5" ino=1048601 res=0 errno=0 [ 212.970725][ T26] audit: type=1326 audit(1753235227.742:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.4.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 213.047270][ T26] audit: type=1326 audit(1753235227.742:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.4.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 213.161060][ T26] audit: type=1326 audit(1753235227.742:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.4.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 213.231333][ T26] audit: type=1326 audit(1753235227.742:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.4.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 213.391674][ T26] audit: type=1326 audit(1753235227.742:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.4.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 213.417116][ T26] audit: type=1326 audit(1753235227.762:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.4.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 213.490409][ T26] audit: type=1326 audit(1753235227.782:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.4.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 213.529394][ T6289] loop4: detected capacity change from 0 to 512 [ 213.532507][ T6295] loop3: detected capacity change from 0 to 128 [ 213.603541][ T6289] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 213.612663][ T6289] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 213.626326][ T26] audit: type=1326 audit(1753235227.782:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6273 comm="syz.4.536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f579b18e9a9 code=0x7ffc0000 [ 213.634702][ T6289] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #2: comm syz.4.540: corrupted inode contents [ 213.679119][ T6303] program syz.4.540 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 213.686224][ T6301] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 328: padding at end of block bitmap is not set [ 213.692019][ T6289] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #2: comm syz.4.540: mark_inode_dirty error [ 213.717641][ T6289] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.540: bg 0: block 328: padding at end of block bitmap is not set [ 214.152823][ T6312] netlink: 16 bytes leftover after parsing attributes in process `syz.2.549'. [ 215.579237][ T6317] loop1: detected capacity change from 0 to 512 [ 215.738600][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 215.993917][ T6317] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 216.004321][ T6317] ext4 filesystem being mounted at /96/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 216.764902][ T6327] netlink: 12 bytes leftover after parsing attributes in process `syz.5.551'. [ 217.637970][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 217.908457][ T6346] loop1: detected capacity change from 0 to 512 [ 218.003581][ T6346] EXT4-fs (loop1): too many log groups per flexible block group [ 218.039547][ T6346] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 218.078084][ T6346] EXT4-fs (loop1): mount failed [ 218.225556][ T6359] loop4: detected capacity change from 0 to 128 [ 218.555158][ T6363] lo speed is unknown, defaulting to 1000 [ 218.855112][ T6355] loop2: detected capacity change from 0 to 512 [ 218.882852][ T6355] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 218.938337][ T6375] loop3: detected capacity change from 0 to 2048 [ 218.952025][ T6377] loop4: detected capacity change from 0 to 512 [ 218.996572][ T6375] loop3: p1 < > p4 [ 219.016889][ T6375] loop3: p4 size 8388608 extends beyond EOD, truncated [ 219.051171][ T6355] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 219.102730][ T6355] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 219.199115][ T6355] EXT4-fs (loop2): unmounting filesystem. [ 219.234653][ T6382] loop5: detected capacity change from 0 to 2048 [ 219.244059][ T6377] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 219.309053][ T6377] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 219.333561][ T6382] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 219.435822][ T6377] EXT4-fs error (device loop4): ext4_do_update_inode:5254: inode #2: comm syz.4.564: corrupted inode contents [ 219.517104][ T5398] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 219.598997][ T5398] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 219.626758][ T6377] EXT4-fs error (device loop4): ext4_dirty_inode:6119: inode #2: comm syz.4.564: mark_inode_dirty error [ 219.646434][ T6381] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 328: padding at end of block bitmap is not set [ 219.679417][ T5398] EXT4-fs (loop5): unmounting filesystem. [ 220.102945][ T26] audit: type=1326 audit(1753235234.972:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.5.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 220.233676][ T26] audit: type=1326 audit(1753235235.002:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.5.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 220.318905][ T26] audit: type=1326 audit(1753235235.002:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.5.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 220.415313][ T6402] loop5: detected capacity change from 0 to 2048 [ 220.457951][ T26] audit: type=1326 audit(1753235235.002:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.5.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 220.505600][ T26] audit: type=1326 audit(1753235235.002:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.5.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 220.601130][ T26] audit: type=1326 audit(1753235235.002:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.5.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 220.633167][ T6402] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 220.664144][ T26] audit: type=1326 audit(1753235235.002:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.5.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 220.687273][ T26] audit: type=1326 audit(1753235235.002:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.5.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 220.710536][ T26] audit: type=1326 audit(1753235235.002:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.5.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 220.733239][ T26] audit: type=1326 audit(1753235235.002:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6401 comm="syz.5.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f28e298e9a9 code=0x7ffc0000 [ 221.124151][ T5398] EXT4-fs (loop5): unmounting filesystem. [ 221.130462][ T6427] mmap: syz.1.575 (6427) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 221.331604][ T6430] lo speed is unknown, defaulting to 1000 [ 221.964518][ T6444] loop2: detected capacity change from 0 to 512 [ 222.164155][ T6444] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 222.173395][ T6444] ext4 filesystem being mounted at /145/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 222.189179][ T6444] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.581: corrupted inode contents [ 222.202900][ T6444] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.581: mark_inode_dirty error [ 222.216548][ T6444] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.581: bg 0: block 328: padding at end of block bitmap is not set [ 222.233578][ T6444] program syz.2.581 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 223.162758][ T6457] loop3: detected capacity change from 0 to 2048 [ 223.583546][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 223.642239][ T6457] loop3: p1 < > p4 [ 223.713498][ T6457] loop3: p4 size 8388608 extends beyond EOD, truncated [ 223.817112][ T3638] loop3: p1 < > p4 [ 223.831443][ T3638] loop3: p4 size 8388608 extends beyond EOD, truncated [ 224.136700][ T6474] loop2: detected capacity change from 0 to 512 [ 224.198522][ T6474] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 224.274151][ T6474] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.591: invalid indirect mapped block 4294967295 (level 1) [ 224.373278][ T6474] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.591: invalid indirect mapped block 4294967295 (level 1) [ 224.405854][ T6474] EXT4-fs (loop2): 2 truncates cleaned up [ 224.413067][ T6474] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 224.694293][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 224.919986][ T6487] loop1: detected capacity change from 0 to 2048 [ 225.021295][ T6487] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 225.244584][ T4266] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 225.278253][ T4266] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 225.308526][ T6476] bridge0: port 2(bridge_slave_1) entered disabled state [ 225.316293][ T6476] bridge0: port 1(bridge_slave_0) entered disabled state [ 225.342339][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 225.494591][ T26] kauditd_printk_skb: 136 callbacks suppressed [ 225.494608][ T26] audit: type=1326 audit(1753235240.362:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.1.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 225.529521][ T26] audit: type=1326 audit(1753235240.362:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.1.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 225.558638][ T26] audit: type=1326 audit(1753235240.402:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.1.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 225.655276][ T26] audit: type=1326 audit(1753235240.402:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.1.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 225.730291][ T26] audit: type=1326 audit(1753235240.402:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.1.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 225.783253][ T26] audit: type=1326 audit(1753235240.422:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.1.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 225.839297][ T26] audit: type=1326 audit(1753235240.422:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.1.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 225.876852][ T26] audit: type=1326 audit(1753235240.422:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.1.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 225.918295][ T26] audit: type=1326 audit(1753235240.432:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.1.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 225.995589][ T26] audit: type=1326 audit(1753235240.432:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6492 comm="syz.1.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f023138e9a9 code=0x7ffc0000 [ 226.425433][ T4270] EXT4-fs (loop4): unmounting filesystem. [ 226.528386][ T6501] loop1: detected capacity change from 0 to 512 [ 226.570780][ T6476] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 226.586162][ T6501] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 226.595771][ T6501] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 226.613660][ T6501] EXT4-fs error (device loop1): ext4_do_update_inode:5254: inode #2: comm syz.1.600: corrupted inode contents [ 226.626335][ T6501] EXT4-fs error (device loop1): ext4_dirty_inode:6119: inode #2: comm syz.1.600: mark_inode_dirty error [ 226.638300][ T6501] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.600: bg 0: block 328: padding at end of block bitmap is not set [ 226.655766][ T6501] program syz.1.600 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 226.734943][ T6476] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 226.975034][ T6476] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 226.991141][ T6476] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.004346][ T6476] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.021442][ T6476] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 227.203711][ T6484] lo speed is unknown, defaulting to 1000 [ 228.229311][ T6533] loop2: detected capacity change from 0 to 512 [ 228.408582][ T6533] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 228.417662][ T6533] ext4 filesystem being mounted at /149/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 228.431773][ T6533] EXT4-fs error (device loop2): ext4_do_update_inode:5254: inode #2: comm syz.2.604: corrupted inode contents [ 228.444698][ T6533] EXT4-fs error (device loop2): ext4_dirty_inode:6119: inode #2: comm syz.2.604: mark_inode_dirty error [ 228.457697][ T6533] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.604: bg 0: block 328: padding at end of block bitmap is not set [ 228.474272][ T6533] program syz.2.604 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 228.496385][ T4266] EXT4-fs (loop1): unmounting filesystem. [ 228.861352][ T6540] loop3: detected capacity change from 0 to 2048 [ 229.994342][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 230.005839][ T6540] loop3: p1 < > p4 [ 230.030507][ T6558] loop5: detected capacity change from 0 to 128 [ 230.046920][ T6540] loop3: p4 size 8388608 extends beyond EOD, truncated [ 230.061540][ T6558] ext4: Unknown parameter 'noacl' [ 230.323570][ T6558] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 230.420932][ T6562] loop2: detected capacity change from 0 to 2048 [ 230.506118][ T6562] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 230.621177][ T6566] [ 230.623574][ T6566] ====================================================== [ 230.630623][ T6566] WARNING: possible circular locking dependency detected [ 230.637682][ T6566] 6.1.146-syzkaller #0 Not tainted [ 230.642828][ T6566] ------------------------------------------------------ [ 230.649874][ T6566] syz.1.613/6566 is trying to acquire lock: [ 230.655798][ T6566] ffff88801746d3d8 (&mm->mmap_lock){++++}-{3:3}, at: mmap_read_lock_killable+0x1d/0x60 [ 230.665544][ T6566] [ 230.665544][ T6566] but task is already holding lock: [ 230.672943][ T6566] ffff88807b1eaec0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: generic_file_write_iter+0x7f/0x2e0 [ 230.683861][ T6566] [ 230.683861][ T6566] which lock already depends on the new lock. [ 230.683861][ T6566] [ 230.694397][ T6566] [ 230.694397][ T6566] the existing dependency chain (in reverse order) is: [ 230.703423][ T6566] [ 230.703423][ T6566] -> #1 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}: [ 230.712146][ T6566] down_write+0x36/0x60 [ 230.716845][ T6566] process_measurement+0x33c/0x1a10 [ 230.722588][ T6566] ima_file_mmap+0x104/0x150 [ 230.727716][ T6566] __se_sys_remap_file_pages+0x53e/0x770 [ 230.733886][ T6566] do_syscall_64+0x4c/0xa0 [ 230.738919][ T6566] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 230.745354][ T6566] [ 230.745354][ T6566] -> #0 (&mm->mmap_lock){++++}-{3:3}: [ 230.752923][ T6566] __lock_acquire+0x2cf8/0x7c50 [ 230.758311][ T6566] lock_acquire+0x1b4/0x490 [ 230.763350][ T6566] down_read_killable+0x4c/0x340 [ 230.768825][ T6566] mmap_read_lock_killable+0x1d/0x60 [ 230.774650][ T6566] lock_mm_and_find_vma+0x2b1/0x2f0 [ 230.780388][ T6566] do_user_addr_fault+0x2db/0xb10 [ 230.785958][ T6566] exc_page_fault+0x60/0x100 [ 230.791106][ T6566] asm_exc_page_fault+0x22/0x30 [ 230.796510][ T6566] fault_in_readable+0x13e/0x1f0 [ 230.801991][ T6566] fault_in_iov_iter_readable+0xbb/0x2e0 [ 230.808168][ T6566] generic_perform_write+0x1d2/0x560 [ 230.813991][ T6566] __generic_file_write_iter+0x172/0x430 [ 230.820162][ T6566] generic_file_write_iter+0xab/0x2e0 [ 230.826078][ T6566] vfs_write+0x44c/0x960 [ 230.830859][ T6566] ksys_write+0x143/0x240 [ 230.835719][ T6566] do_syscall_64+0x4c/0xa0 [ 230.840666][ T6566] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 230.847102][ T6566] [ 230.847102][ T6566] other info that might help us debug this: [ 230.847102][ T6566] [ 230.857335][ T6566] Possible unsafe locking scenario: [ 230.857335][ T6566] [ 230.864792][ T6566] CPU0 CPU1 [ 230.870167][ T6566] ---- ---- [ 230.875534][ T6566] lock(&sb->s_type->i_mutex_key#12); [ 230.881008][ T6566] lock(&mm->mmap_lock); [ 230.887869][ T6566] lock(&sb->s_type->i_mutex_key#12); [ 230.895863][ T6566] lock(&mm->mmap_lock); [ 230.900208][ T6566] [ 230.900208][ T6566] *** DEADLOCK *** [ 230.900208][ T6566] [ 230.908357][ T6566] 3 locks held by syz.1.613/6566: [ 230.913514][ T6566] #0: ffff8880303b6ae8 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0x2ae/0x360 [ 230.922778][ T6566] #1: ffff8880539d4460 (sb_writers#5){.+.+}-{0:0}, at: vfs_write+0x256/0x960 [ 230.931691][ T6566] #2: ffff88807b1eaec0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: generic_file_write_iter+0x7f/0x2e0 [ 230.943029][ T6566] [ 230.943029][ T6566] stack backtrace: [ 230.948943][ T6566] CPU: 1 PID: 6566 Comm: syz.1.613 Not tainted 6.1.146-syzkaller #0 [ 230.957017][ T6566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 230.967083][ T6566] Call Trace: [ 230.970378][ T6566] [ 230.973321][ T6566] dump_stack_lvl+0x168/0x22e [ 230.978012][ T6566] ? load_image+0x3b0/0x3b0 [ 230.982531][ T6566] ? show_regs_print_info+0x12/0x12 [ 230.987738][ T6566] ? print_circular_bug+0x12b/0x1a0 [ 230.992964][ T6566] check_noncircular+0x274/0x310 [ 230.997923][ T6566] ? add_chain_block+0x940/0x940 [ 231.002880][ T6566] ? lockdep_lock+0xdc/0x1e0 [ 231.007487][ T6566] ? _find_first_zero_bit+0xcf/0x100 [ 231.012798][ T6566] __lock_acquire+0x2cf8/0x7c50 [ 231.017680][ T6566] ? verify_lock_unused+0x140/0x140 [ 231.022903][ T6566] ? verify_lock_unused+0x140/0x140 [ 231.028127][ T6566] ? verify_lock_unused+0x140/0x140 [ 231.033340][ T6566] ? mark_lock+0x94/0x320 [ 231.037690][ T6566] lock_acquire+0x1b4/0x490 [ 231.042209][ T6566] ? mmap_read_lock_killable+0x1d/0x60 [ 231.047694][ T6566] ? read_lock_is_recursive+0x10/0x10 [ 231.053091][ T6566] ? cmp_ex_search+0x1a/0x70 [ 231.057711][ T6566] ? bsearch+0x8a/0xb0 [ 231.061819][ T6566] ? fault_in_readable+0x13e/0x1f0 [ 231.066950][ T6566] ? search_extable+0x8c/0xd0 [ 231.071637][ T6566] ? trim_init_extable+0x3b0/0x3b0 [ 231.076936][ T6566] ? mmap_read_lock_killable+0x1d/0x60 [ 231.082414][ T6566] down_read_killable+0x4c/0x340 [ 231.087460][ T6566] ? mmap_read_lock_killable+0x1d/0x60 [ 231.092964][ T6566] mmap_read_lock_killable+0x1d/0x60 [ 231.098271][ T6566] lock_mm_and_find_vma+0x2b1/0x2f0 [ 231.103491][ T6566] do_user_addr_fault+0x2db/0xb10 [ 231.108529][ T6566] ? _raw_spin_unlock_irq+0x1f/0x40 [ 231.113752][ T6566] exc_page_fault+0x60/0x100 [ 231.118379][ T6566] asm_exc_page_fault+0x22/0x30 [ 231.123252][ T6566] RIP: 0010:fault_in_readable+0x13e/0x1f0 [ 231.128993][ T6566] Code: 38 ec c4 ff 4d 89 f4 49 81 cc ff 0f 00 00 4d 89 f7 49 01 dc 49 81 e4 00 f0 ff ff 4d 39 e6 77 44 e8 17 ec c4 ff 4d 39 e7 74 47 <41> 8a 07 88 44 24 07 49 81 c7 00 10 00 00 4d 39 e7 74 07 e8 fa eb [ 231.148620][ T6566] RSP: 0018:ffffc9001d1e7a90 EFLAGS: 00050287 [ 231.154715][ T6566] RAX: ffffffff81bbdb79 RBX: 0000000000001000 RCX: 0000000000080000 [ 231.162697][ T6566] RDX: ffffc90005459000 RSI: 0000000000043552 RDI: 0000000000043553 [ 231.170681][ T6566] RBP: 0000000000000000 R08: ffff88807bc18000 R09: 0000000000000002 [ 231.178661][ T6566] R10: 0000000000000006 R11: 0000000000000002 R12: 000020000024e000 [ 231.186641][ T6566] R13: dffffc0000000000 R14: 000020000024d000 R15: 000020000024d000 [ 231.194625][ T6566] ? fault_in_readable+0x139/0x1f0 [ 231.199764][ T6566] fault_in_iov_iter_readable+0xbb/0x2e0 [ 231.205412][ T6566] generic_perform_write+0x1d2/0x560 [ 231.210717][ T6566] ? atime_needs_update+0x780/0x780 [ 231.215930][ T6566] ? generic_file_direct_write+0x660/0x660 [ 231.221751][ T6566] ? __file_remove_privs+0x5b0/0x5b0 [ 231.227045][ T6566] ? preempt_count_add+0x8d/0x190 [ 231.232091][ T6566] ? rwsem_write_trylock+0x12f/0x1b0 [ 231.237392][ T6566] ? clear_nonspinnable+0x60/0x60 [ 231.242432][ T6566] ? generic_write_checks_count+0x3d9/0x4c0 [ 231.248361][ T6566] __generic_file_write_iter+0x172/0x430 [ 231.254016][ T6566] generic_file_write_iter+0xab/0x2e0 [ 231.259403][ T6566] vfs_write+0x44c/0x960 [ 231.263663][ T6566] ? file_end_write+0x250/0x250 [ 231.268534][ T6566] ? __fget_files+0x44a/0x4d0 [ 231.273237][ T6566] ? __fdget_pos+0x2ae/0x360 [ 231.277843][ T6566] ? ksys_write+0x71/0x240 [ 231.282280][ T6566] ksys_write+0x143/0x240 [ 231.286631][ T6566] ? __ia32_sys_read+0x80/0x80 [ 231.291411][ T6566] ? lockdep_hardirqs_on+0x94/0x140 [ 231.296624][ T6566] do_syscall_64+0x4c/0xa0 [ 231.301059][ T6566] ? clear_bhb_loop+0x60/0xb0 [ 231.305762][ T6566] ? clear_bhb_loop+0x60/0xb0 [ 231.310450][ T6566] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 231.316376][ T6566] RIP: 0033:0x7f023138e9a9 [ 231.320807][ T6566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 231.340422][ T6566] RSP: 002b:00007f0232202038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 231.348842][ T6566] RAX: ffffffffffffffda RBX: 00007f02315b5fa0 RCX: 00007f023138e9a9 [ 231.356826][ T6566] RDX: 00000000fffffd26 RSI: 0000200000000000 RDI: 0000000000000007 [ 231.364810][ T6566] RBP: 00007f0231410d69 R08: 0000000000000000 R09: 0000000000000000 [ 231.372793][ T6566] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 231.380775][ T6566] R13: 0000000000000000 R14: 00007f02315b5fa0 R15: 00007ffc72640ad8 [ 231.388767][ T6566] [ 231.434049][ T4276] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 231.470185][ T4276] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 231.511687][ T4276] EXT4-fs (loop2): unmounting filesystem. [ 231.520884][ T6577] lo speed is unknown, defaulting to 1000