last executing test programs: 7.897850586s ago: executing program 3 (id=439): r0 = socket$netlink(0x10, 0x3, 0x10) r1 = getpid() r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r3, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r1}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x30) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) 6.354806285s ago: executing program 2 (id=449): syz_clone(0xf8271300, &(0x7f0000000640)="e264983b771e7770dd044abe03cb58ad074ae4b180d467062c8f5612395c326a39631a0f2d927f2f726b578dacd2599c43a8eac394fab4c153e68ae4c5bf25b75bf3b92696ec3447128301ea5f41e24da1642bb46995be8347c8439d279109690fe6e7860d415ecb75ab8ef40ddb99543a7ab21b702d25ffbaa8e982a9c280110963dc60e80d000000000000004d6168f3111f12730fbfef71be1453db586ace663f89ea8cf75b8ad957417567eb149b0895b90e460b18bd68350dfdd5c172cd6770c8ffc9baee5541cbd76bb1a9961d57054bf4b781323ed795fcfbb2936f2f31001f0000", 0xe5, 0x0, &(0x7f00000000c0), &(0x7f0000000100)="4e97d0955441f82d711857e4707c1c3ad399a590e6edc54e73494f3d8da451090000000000000074d5b9b7d98c6ca30000e7d5bee2b2f796be389b2500000000d0b066cbae8f38dbdfaebb9978ec0b8bcc146ce232c06ab23ebda3c0e8c8c2c1e1a645e4488f88e988356306000000db119e7f5d083e532c23a877fa2fb4e67c36e4593ed03bd98d002bc2b63cfd84abe130d914ba82c06ba7eaf9ed72a449b53c892489e99366b091375156108d37c99f256b7a2c895a4a994bd20d09a98cfac287ded79d3af3449d1b") sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008fb0440000000020900020073797a310000000008000a40fffffffc400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d103000014000000110001000000000000000000"], 0xa4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40050) r0 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$NFC_CMD_DEP_LINK_UP(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x26040041}, 0x40) 6.02680899s ago: executing program 4 (id=451): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r0}, 0x18) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xf) ioctl$TCFLSH(r1, 0x400455c8, 0x0) syz_usb_connect(0x2, 0xfffffffffffffe86, 0x0, 0x0) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) 5.841680017s ago: executing program 3 (id=452): r0 = socket$unix(0x1, 0x1, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) 5.764127621s ago: executing program 2 (id=453): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x1, &(0x7f0000000340)=[{0x6, 0x0, 0x0, 0x67b}]}, 0x10) r1 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r1, &(0x7f0000000240)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xf}}, 0x10) sendmmsg$inet(r1, &(0x7f0000001480)=[{{&(0x7f0000000800)={0x2, 0x6e20, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000440)="af4fcbc69fc8236193a5db71d82ff30ad092e969dff4bc0b0fa752cf3ed6e756c7f331f97aed1b89911d0cec7550f213e6a9196fcdcefd4c562141ef3cefe4b0f75f8586d98f8edc0113a54b4d2983bd7ef97f6478d2dd4921d5438d9517c2452ae54dc4d3e07310769420b1565fab3f29d44d7a667689cbbd2a119dba5b9ea31708fbaf5bb1c7d35ebf2c32f2cef0d0d63b45b8441da5d3754ceae1c80779ffae1f6085bdcd9f2554a00a86cd2d03ffba1fbdacd09527f06ab8fac7145c0f6d9cdf7a736ffd50f0a86cfdc1602a5cfdafd18dc54380539784745369c5e0c80047bd4ebe944bf2cdb103866ec73a264c", 0xf0}, {&(0x7f0000000540)="ba1519b7ae0145070a9522721a395841720fd5481bc2cbd8f13aaa9066a24214af82ba1466de0a1b52bceecaaa882b66f916a85af471ca422935c42f77b319e7d595558b74e1b014", 0x48}, {&(0x7f0000000700)="1e9bdb919930b63490b5092febd4ff5a7fdfebce145cf8edd142d88e92908746fe920060d936ca0b89f1a56fa4b26d0657c57a665369d2ce8909af5d00d8d7eb6407c762ebac337367d400cc47fd1d9a15533e4958ec0d45bd6ce376ace04c0b5cb07312b1cae72e32fdcaf7e6aa26737e748d2a83009703ef0a756140a832d841fdec50624cddcbe8a4a7baaf2a2b5a5831156a1ab7b6dfe6ef3c81fd2975cabfd8923d3156e4a3a6c3de6e", 0xac}], 0x3}}, {{0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000a00)="327c9c22be8088c1fa09d0c9daa9f276299cc47854d20d847cc1e9b8a85adbef57e00b13659f96129608de176bd23acac8c26797a5ceb8576985c9fe6f39111975687eb244af68b4f0f8669b9514d8f575738a761b10c84f533b89156601a692f386f42b2b7976d53365cfa0d5e6e6d680362d7f6b2456ff14d80ff2e859964fbeaa5891e41d241cf6ec13391ea73c56644c82d82729600e1857f923aa9bbe0623cdd37b87c8d18dd3c8f5765c33fb008e51e2f36605f59b04a82d955ecd79465a779ec869843f01ecf2faaeed7243", 0xcf}, {&(0x7f0000000900)="3a822d6f0306bc598a25d9f98ce3df61857b8863db2274a7b8cc10389f81f423e16239cb3b05bb224865dadc4b1088ed0ce5c9ede116bbde6ce136dbc720c81f4ddefa4d131949410763c93a8329413526b61ec377c0f28319ae320ead44c2256a14c3c29f6fea826ce6dfcdbde7", 0x6e}, {&(0x7f0000000980)="3c977216b675039a1d3cb992fe27ba25eb95bb5c4801fb54160ea8c5a2dda4a5874012f67276c6bafea3", 0x2a}, {&(0x7f0000000b00)="29f675ffa18cba1f080ba7cd8d254832b44b1ed22625d4802a6f30400852734d069e9048ce651a4d92c0abebcc5bd8923b07f246b696b4951f2e0fdb69b6d1785b29a4ace7d72f095974e3bc9f86e39b061d514f4f9e05729a89f4a7b13b1c254ffbb24eefc41900b92861d05c7e930f965711ef90d2c27936dfbc689520880ec48d3849c6a86e69f19ef7af7f56b1d7ad3a87a250c939c1bf3647bd9daf27ed663594c44cda9f", 0xa7}, {&(0x7f0000000bc0)="299b", 0x2}, {&(0x7f0000000c00)="7b46e46eb2c6ae4d7dd8c492d688b3033c53c84cbe501602594847e03766de6e7b9bb07e843b7f0c1598b481b797bf9f77622efce832da2d9aa2774ea7d10089c47ac3dce46c1e7d5652d1c42ebf011fee3fa11cfa5a4e977234607e62597e80db88350adb9e389f5127e723129fc7f0", 0x70}, {&(0x7f00000010c0)="e3c4a0df7c3e06f46da0791a6be8b68550d4f836190a46f85c40ff", 0x1b}, {&(0x7f0000001100)="06c57e0e567fe507d1a94376dc1049c4ff5055d0265ead626f2915b8a3855c64d1339dbc73a59d1a4ba97cdc00478adbcfa78d976c13e10feccd62807799d4f75b19303818f0e1dad130036704", 0x4d}, {&(0x7f0000001180)="dc9808c01298354232e71553e37a574029902deda746653d69eccca68b16f5826405fdfd488bdc8c1b7bb0160e545586e980669b21cab409d763e96bd01597e39ed844d5222c3877010014f16f065f639e7d12b7507784c737e01a5b93e3d027646e14c6d513f1e8790f598482982051e3c7a2d7317f37c6975a358d68432a602465583abed10e89f54d0eb17106c34201f24acd9e3ea789d394ce02df5daeed4d20587b36b795f242a0", 0xaa}, {&(0x7f0000001540)="699048e3aae3d092567fc0dc050daad1eccac8ce6c08b387d00ea6a70db8bf26bc4cee0165873c40a8c550ee2ffc32a59e", 0x31}], 0xa}}], 0x3, 0x2000c044) sendto$inet(r1, &(0x7f0000000c80)="e8", 0x6200, 0x12000000, 0x0, 0x0) 5.473026283s ago: executing program 3 (id=456): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10) r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r1, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'}) 5.391619341s ago: executing program 2 (id=457): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r1}, 0x10) fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0) 5.123328419s ago: executing program 0 (id=459): r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x20000}}, {{0xa, 0x0, 0x40000, @dev={0xfe, 0x80, '\x00', 0x26}}}}, 0x108) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000020000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x4, 0x7ffc0002}]}) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000280)=0x1) ioctl$TCSETS(0xffffffffffffffff, 0x89f0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x802, 0xd, "5dee0000005940090000000f00"}) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x1e, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffe}, [@ldst={0x1, 0x3, 0x3, 0x2, 0x1, 0x40}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x88) mknodat(0xffffffffffffff9c, &(0x7f0000000200)='./file1/file4/file5\x00', 0x81c0, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000600)='./file1/file4/file5\x00', 0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0) r3 = open(&(0x7f0000000340)='./file0\x00', 0x0, 0xe0) getdents(r3, 0x0, 0x0) 5.052611893s ago: executing program 3 (id=460): syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0x1, 0x21b, &(0x7f0000000300)="$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") bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x18) r0 = msgget$private(0x0, 0x100) msgsnd(r0, &(0x7f0000002900)=ANY=[@ANYBLOB], 0xfd1, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) mremap(&(0x7f00007ff000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000580000/0x4000)=nil) r4 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000200)={@private0, 0x800, 0x0, 0x1, 0x1}, 0x20) connect$inet6(r4, 0x0, 0x0) msgctl$IPC_SET(r0, 0x1, &(0x7f0000002880)={{0x2, 0x0, 0x0, 0x0, 0x0, 0x1a, 0x7}, 0x0, 0x0, 0x1, 0x1414, 0x10001, 0x4e, 0xffffffffffffffca, 0x8, 0x8580, 0x3}) msgsnd(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="0100000000"], 0xcc, 0x0) msgctl$IPC_RMID(r0, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) 4.808689084s ago: executing program 2 (id=461): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000000)={'team0\x00', 0x0}) r2 = syz_genetlink_get_family_id$team(&(0x7f0000000180), 0xffffffffffffffff) sendmsg$TEAM_CMD_PORT_LIST_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x20, r2, 0x1, 0x70bd23, 0x7f, {}, [{{0x8, 0x1, r1}, {0x4}}]}, 0x20}, 0x1, 0x0, 0x0, 0x200460f4}, 0x4000850) 4.019464617s ago: executing program 2 (id=462): r0 = socket$netlink(0x10, 0x3, 0x10) r1 = getpid() r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, r3, 0x1, 0x70bd27, 0x25dfdbfb, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_PID={0x8, 0x8b, r1}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4040010}, 0x30) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r0, 0x1, 0x8, 0x0, 0x0) 3.564676157s ago: executing program 0 (id=464): unshare(0x400) r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0) ppoll(&(0x7f0000000000)=[{r0, 0x2001}], 0x1, &(0x7f0000000040)={0x0, 0x3938700}, 0x0, 0x0) 3.161547172s ago: executing program 1 (id=465): r0 = socket(0x11, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'gre0\x00', 0x0}) bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @remote}, 0x14) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4) sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)=[{0x0, 0xdd12}, {0x0}], 0x2}, 0x0) 2.847188241s ago: executing program 0 (id=466): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r0}, 0x10) socket$unix(0x1, 0x1, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) 2.729560543s ago: executing program 4 (id=467): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014fa0000b7030000000008008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000020000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f00000001c0)={'fscrypt:', @desc1}, &(0x7f0000000080)={0x0, "69dcaf20127e9a854528f45826cb35be51ca73845d177dd8dba7221daeccfda56b75cfe286fdd14cb5b10c5900214fec2236da7d88ea0f0700000000000800", 0x3f}, 0x48, 0xfffffffffffffffe) 2.528021543s ago: executing program 1 (id=468): socket$packet(0x11, 0x2, 0x300) socket$packet(0x11, 0x3, 0x300) syz_emit_ethernet(0x16, &(0x7f0000000080)=ANY=[], 0x0) 1.89116878s ago: executing program 1 (id=469): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) r1 = gettid() ioctl$TIOCMIWAIT(0xffffffffffffffff, 0x545c, 0x200000000000000) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0500000004000000990000000b"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000d80)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kfree\x00', r4, 0x0, 0x9d}, 0x18) socket(0x1, 0x803, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001900)=@newlink={0x58, 0x10, 0x403, 0x300, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0xe, 0xf}}, @IFLA_VLAN_ID={0x6, 0x1, 0xffe}]}}}, @IFLA_LINK={0x8}, @IFLA_MASTER={0x8}]}, 0x58}, 0x1, 0x0, 0x0, 0x1}, 0xc810) timer_settime(r2, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x5, &(0x7f0000000000)=0x7, 0x4) 1.890873875s ago: executing program 3 (id=470): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)) pipe(&(0x7f0000000080)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)) syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee4, 0x2, 0x2, 0xbfdffffc}, 0x0, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)) openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) r0 = syz_open_dev$dri(&(0x7f0000000440), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000040)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000180)={0x1, 0x0, 0x0, &(0x7f0000000180), &(0x7f0000000200), &(0x7f00000001c0)=[0x7fffffff], 0x0, 0x1}) 1.890468643s ago: executing program 4 (id=471): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41100, 0x20, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8003}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x9}, 0x18) r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000000), 0x1) writev(r1, &(0x7f0000000780)=[{&(0x7f0000000040)='\a', 0x1}], 0x1) 1.873414203s ago: executing program 0 (id=472): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, &(0x7f0000000180)) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00'}, 0x18) r1 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={r2, @in={{0x2, 0x2, @empty}}, 0x0, 0x0, 0x5dc, 0x0, 0x32, 0x3}, 0x9c) 1.691200016s ago: executing program 2 (id=473): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r0}, &(0x7f00000004c0), &(0x7f0000001c40)=r1}, 0x20) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r5 = socket(0x10, 0x803, 0x0) r6 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', 0x0}) sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xfff3}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x4, 0x3c}}]}}]}, 0x48}}, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000700)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000740)=@newtfilter={0xa0, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r7, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x74, 0x2, [@TCA_U32_ACT={0x4c, 0x7, [@m_skbedit={0x48, 0x1, 0x0, 0x0, {{0xc}, {0x1c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x6, 0x9, 0x6, 0x1, 0xd6}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}, @TCA_U32_SEL={0x24, 0x5, {0xd, 0x7, 0x1, 0x3d3f, 0x0, 0xfff, 0x3, 0x58f, [{0x0, 0x20008000, 0x4, 0x1}]}}]}}]}, 0xa0}}, 0x24040084) 1.411384929s ago: executing program 0 (id=474): r0 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x20000}}, {{0xa, 0x0, 0x40000, @dev={0xfe, 0x80, '\x00', 0x26}}}}, 0x108) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @loopback}}}, 0x108) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000020000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000280)=0x1) ioctl$TCSETS(r3, 0x89f0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x802, 0xd, "5dee0000005940090000000f00"}) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1000, 0x1) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x1e, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffe}, [@ldst={0x1, 0x3, 0x3, 0x2, 0x1, 0x40}]}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18) mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x88) mknodat(0xffffffffffffff9c, &(0x7f0000000200)='./file1/file4/file5\x00', 0x81c0, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000600)='./file1/file4/file5\x00', 0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0) r4 = open(&(0x7f0000000340)='./file0\x00', 0x0, 0xe0) getdents(r4, 0x0, 0x0) 1.393014632s ago: executing program 1 (id=475): syz_clone(0xf8271300, &(0x7f0000000640)="e264983b771e7770dd044abe03cb58ad074ae4b180d467062c8f5612395c326a39631a0f2d927f2f726b578dacd2599c43a8eac394fab4c153e68ae4c5bf25b75bf3b92696ec3447128301ea5f41e24da1642bb46995be8347c8439d279109690fe6e7860d415ecb75ab8ef40ddb99543a7ab21b702d25ffbaa8e982a9c280110963dc60e80d000000000000004d6168f3111f12730fbfef71be1453db586ace663f89ea8cf75b8ad957417567eb149b0895b90e460b18bd68350dfdd5c172cd6770c8ffc9baee5541cbd76bb1a9961d57054bf4b781323ed795fcfbb2936f2f31001f0000", 0xe5, 0x0, &(0x7f00000000c0), &(0x7f0000000100)="4e97d0955441f82d711857e4707c1c3ad399a590e6edc54e73494f3d8da451090000000000000074d5b9b7d98c6ca30000e7d5bee2b2f796be389b2500000000d0b066cbae8f38dbdfaebb9978ec0b8bcc146ce232c06ab23ebda3c0e8c8c2c1e1a645e4488f88e988356306000000db119e7f5d083e532c23a877fa2fb4e67c36e4593ed03bd98d002bc2b63cfd84abe130d914ba82c06ba7eaf9ed72a449b53c892489e99366b091375156108d37c99f256b7a2c895a4a994bd20d09a98cfac287ded79d3af3449d1b") r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r0) sendmsg$NFC_CMD_DEP_LINK_UP(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x26040041}, 0x40) 1.386415339s ago: executing program 4 (id=476): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f000000850000002300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000d00)='kfree\x00', r0}, 0x18) kcmp$KCMP_EPOLL_TFD(0x0, 0x0, 0x7, 0xffffffffffffffff, 0x0) socket$inet_mptcp(0x2, 0x1, 0x106) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = socket$tipc(0x1e, 0x5, 0x0) bind$tipc(r1, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x4, 0x3, 0x3}, 0x10) sendmsg$tipc(r1, &(0x7f0000000400)={&(0x7f00000008c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2400c09d}, 0x20) 1.297409324s ago: executing program 3 (id=477): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r0}, 0x18) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000080)=0xf) ioctl$TCFLSH(r1, 0x400455c8, 0x0) syz_usb_connect(0x2, 0xfffffffffffffe86, 0x0, 0x0) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) 787.676523ms ago: executing program 1 (id=478): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r1}, 0x38) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2, 0x0, 0x2}, 0x18) sendmsg$inet6(r0, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="b005000000000000290000003600000000b2"], 0x5b0}, 0x20008001) sendmsg$inet6(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000600)="e5f1fddfe175759743a2d6055bef6ad67f4806ff6ac3a93555c1b5b84294df29b09e92680ca8bd3dc842c31477", 0x2d}], 0x1}, 0x20000044) 713.879161ms ago: executing program 4 (id=479): socket$packet(0x11, 0x2, 0x300) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000040)=0x8000) syz_emit_ethernet(0x16, &(0x7f0000000080)=ANY=[], 0x0) 380.228908ms ago: executing program 4 (id=480): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000000)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet(r2, &(0x7f0000000040)={&(0x7f0000000000)={0x2, 0x4e20, @broadcast}, 0x10, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000007000000890704e000006a001c000000000000000000000008"], 0x38}, 0x4044080) syz_io_uring_setup(0x5c6, 0x0, 0x0, 0x0) 225.444535ms ago: executing program 1 (id=481): r0 = socket$inet_tcp(0x2, 0x1, 0x0) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000fdffffff0000000000000000850000002c00000095"], &(0x7f0000000040)='GPL\x00', 0x5}, 0x94) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', 0x0}) setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(0xffffffffffffffff, 0x84, 0x13, &(0x7f0000000240)=0x3, 0x4) bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r2}, 0x10) syz_emit_ethernet(0xfdef, &(0x7f0000000240)=ANY=[], 0x0) 0s ago: executing program 0 (id=482): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r0}, 0x10) socket$unix(0x1, 0x1, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000740)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mq={0x7}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.134' (ED25519) to the list of known hosts. [ 158.720489][ T5775] cgroup: Unknown subsys name 'net' [ 158.882328][ T5775] cgroup: Unknown subsys name 'cpuset' [ 158.896260][ T5775] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 163.211068][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 163.217837][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 164.332724][ T5775] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 169.350946][ T5090] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 169.394830][ T5802] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 169.404361][ T5802] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 169.412944][ T5802] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 169.424183][ T5802] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 169.433274][ T5804] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 169.442906][ T5804] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 169.454112][ T5804] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 169.462773][ T5804] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 169.480249][ T5804] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 169.489282][ T5804] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 169.493765][ T5807] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 169.498899][ T5804] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 169.508634][ T5812] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 169.517097][ T5804] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 169.520694][ T5812] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 169.528014][ T5804] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 169.538172][ T5812] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 169.548323][ T5804] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 169.550940][ T5812] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 169.558410][ T5804] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 169.572878][ T51] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 169.603607][ T5804] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 169.644266][ T51] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 169.667858][ T51] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 170.694731][ T5794] chnl_net:caif_netlink_parms(): no params data found [ 171.231107][ T5798] chnl_net:caif_netlink_parms(): no params data found [ 171.457316][ T5800] chnl_net:caif_netlink_parms(): no params data found [ 171.512026][ T5808] chnl_net:caif_netlink_parms(): no params data found [ 171.707510][ T51] Bluetooth: hci2: command tx timeout [ 171.713213][ T51] Bluetooth: hci1: command tx timeout [ 171.720146][ T5801] Bluetooth: hci4: command tx timeout [ 171.728396][ T5804] Bluetooth: hci0: command tx timeout [ 171.753690][ T51] Bluetooth: hci3: command tx timeout [ 171.890513][ T5794] bridge0: port 1(bridge_slave_0) entered blocking state [ 171.899766][ T5794] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.907553][ T5794] bridge_slave_0: entered allmulticast mode [ 171.917066][ T5794] bridge_slave_0: entered promiscuous mode [ 171.937120][ T5799] chnl_net:caif_netlink_parms(): no params data found [ 171.977077][ T5794] bridge0: port 2(bridge_slave_1) entered blocking state [ 171.985833][ T5794] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.994037][ T5794] bridge_slave_1: entered allmulticast mode [ 172.003476][ T5794] bridge_slave_1: entered promiscuous mode [ 172.311213][ T5798] bridge0: port 1(bridge_slave_0) entered blocking state [ 172.319140][ T5798] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.330712][ T5798] bridge_slave_0: entered allmulticast mode [ 172.340030][ T5798] bridge_slave_0: entered promiscuous mode [ 172.438839][ T5794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 172.489231][ T5798] bridge0: port 2(bridge_slave_1) entered blocking state [ 172.497084][ T5798] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.505981][ T5798] bridge_slave_1: entered allmulticast mode [ 172.515534][ T5798] bridge_slave_1: entered promiscuous mode [ 172.528868][ T5800] bridge0: port 1(bridge_slave_0) entered blocking state [ 172.536721][ T5800] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.544599][ T5800] bridge_slave_0: entered allmulticast mode [ 172.554081][ T5800] bridge_slave_0: entered promiscuous mode [ 172.576614][ T5794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 172.588517][ T5800] bridge0: port 2(bridge_slave_1) entered blocking state [ 172.596623][ T5800] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.604360][ T5800] bridge_slave_1: entered allmulticast mode [ 172.613401][ T5800] bridge_slave_1: entered promiscuous mode [ 172.800104][ T5808] bridge0: port 1(bridge_slave_0) entered blocking state [ 172.811430][ T5808] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.819481][ T5808] bridge_slave_0: entered allmulticast mode [ 172.830884][ T5808] bridge_slave_0: entered promiscuous mode [ 172.942968][ T5800] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 172.954441][ T5808] bridge0: port 2(bridge_slave_1) entered blocking state [ 172.962189][ T5808] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.970326][ T5808] bridge_slave_1: entered allmulticast mode [ 172.978654][ T5808] bridge_slave_1: entered promiscuous mode [ 172.996257][ T5798] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 173.024981][ T5798] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 173.042038][ T5794] team0: Port device team_slave_0 added [ 173.114680][ T5800] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 173.160590][ T5794] team0: Port device team_slave_1 added [ 173.238180][ T5799] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.246157][ T5799] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.254030][ T5799] bridge_slave_0: entered allmulticast mode [ 173.262131][ T5799] bridge_slave_0: entered promiscuous mode [ 173.342937][ T5808] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 173.418991][ T5799] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.426930][ T5799] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.434868][ T5799] bridge_slave_1: entered allmulticast mode [ 173.444853][ T5799] bridge_slave_1: entered promiscuous mode [ 173.494848][ T5808] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 173.506671][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 173.514456][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 173.541178][ T5794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 173.560227][ T5798] team0: Port device team_slave_0 added [ 173.602517][ T5800] team0: Port device team_slave_0 added [ 173.681650][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 173.688962][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 173.716939][ T5794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 173.735492][ T5798] team0: Port device team_slave_1 added [ 173.754661][ T51] Bluetooth: hci1: command tx timeout [ 173.760179][ T5801] Bluetooth: hci4: command tx timeout [ 173.760624][ T51] Bluetooth: hci0: command tx timeout [ 173.766562][ T5804] Bluetooth: hci2: command tx timeout [ 173.777150][ T5800] team0: Port device team_slave_1 added [ 173.791794][ T5799] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 173.834472][ T51] Bluetooth: hci3: command tx timeout [ 173.858278][ T5808] team0: Port device team_slave_0 added [ 173.932128][ T5799] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 173.955268][ T5808] team0: Port device team_slave_1 added [ 174.189669][ T5798] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 174.198204][ T5798] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 174.225717][ T5798] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 174.239648][ T5800] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 174.248978][ T5800] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 174.275948][ T5800] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 174.322984][ T5808] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 174.331172][ T5808] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 174.358189][ T5808] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 174.381140][ T5794] hsr_slave_0: entered promiscuous mode [ 174.389983][ T5794] hsr_slave_1: entered promiscuous mode [ 174.400912][ T5798] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 174.408167][ T5798] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 174.434794][ T5798] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 174.448334][ T5800] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 174.455779][ T5800] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 174.482743][ T5800] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 174.501599][ T5799] team0: Port device team_slave_0 added [ 174.527757][ T5808] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 174.535075][ T5808] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 174.561561][ T5808] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 174.608111][ T5799] team0: Port device team_slave_1 added [ 174.857043][ T5799] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 174.864507][ T5799] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 174.891387][ T5799] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 174.992244][ T5800] hsr_slave_0: entered promiscuous mode [ 175.001108][ T5800] hsr_slave_1: entered promiscuous mode [ 175.009538][ T5800] debugfs: 'hsr0' already exists in 'hsr' [ 175.015540][ T5800] Cannot create hsr debugfs directory [ 175.023981][ T5799] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 175.031085][ T5799] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 175.057601][ T5799] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 175.129842][ T5798] hsr_slave_0: entered promiscuous mode [ 175.140193][ T5798] hsr_slave_1: entered promiscuous mode [ 175.149025][ T5798] debugfs: 'hsr0' already exists in 'hsr' [ 175.155379][ T5798] Cannot create hsr debugfs directory [ 175.206979][ T5808] hsr_slave_0: entered promiscuous mode [ 175.217260][ T5808] hsr_slave_1: entered promiscuous mode [ 175.225974][ T5808] debugfs: 'hsr0' already exists in 'hsr' [ 175.231964][ T5808] Cannot create hsr debugfs directory [ 175.725682][ T5799] hsr_slave_0: entered promiscuous mode [ 175.735545][ T5799] hsr_slave_1: entered promiscuous mode [ 175.743533][ T5799] debugfs: 'hsr0' already exists in 'hsr' [ 175.749627][ T5799] Cannot create hsr debugfs directory [ 175.834415][ T51] Bluetooth: hci4: command tx timeout [ 175.841376][ T51] Bluetooth: hci0: command tx timeout [ 175.846959][ T5801] Bluetooth: hci2: command tx timeout [ 175.847118][ T5801] Bluetooth: hci1: command tx timeout [ 175.921831][ T5801] Bluetooth: hci3: command tx timeout [ 176.555855][ T5794] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 176.596243][ T5794] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 176.653707][ T5794] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 176.672213][ T5794] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 176.818456][ T5800] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 176.845477][ T5800] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 176.880717][ T5800] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 176.933854][ T5800] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 177.068483][ T5798] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 177.090966][ T5798] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 177.111118][ T5798] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 177.139154][ T5798] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 177.377782][ T5808] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 177.418975][ T5808] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 177.438064][ T5808] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 177.516261][ T5808] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 177.723061][ T5799] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 177.775425][ T5799] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 177.801724][ T5799] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 177.825295][ T5799] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 177.869249][ T5794] 8021q: adding VLAN 0 to HW filter on device bond0 [ 177.939276][ T5801] Bluetooth: hci1: command tx timeout [ 177.945421][ T5797] Bluetooth: hci0: command tx timeout [ 177.949910][ T51] Bluetooth: hci2: command tx timeout [ 177.951006][ T5801] Bluetooth: hci4: command tx timeout [ 177.995524][ T5801] Bluetooth: hci3: command tx timeout [ 178.125727][ T5794] 8021q: adding VLAN 0 to HW filter on device team0 [ 178.187534][ T5800] 8021q: adding VLAN 0 to HW filter on device bond0 [ 178.217849][ T69] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.225371][ T69] bridge0: port 1(bridge_slave_0) entered forwarding state [ 178.265940][ T5798] 8021q: adding VLAN 0 to HW filter on device bond0 [ 178.296632][ T69] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.304093][ T69] bridge0: port 2(bridge_slave_1) entered forwarding state [ 178.374946][ T5798] 8021q: adding VLAN 0 to HW filter on device team0 [ 178.469617][ T69] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.477147][ T69] bridge0: port 1(bridge_slave_0) entered forwarding state [ 178.537106][ T5800] 8021q: adding VLAN 0 to HW filter on device team0 [ 178.592251][ T69] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.599786][ T69] bridge0: port 2(bridge_slave_1) entered forwarding state [ 178.794417][ T69] bridge0: port 1(bridge_slave_0) entered blocking state [ 178.801883][ T69] bridge0: port 1(bridge_slave_0) entered forwarding state [ 178.829801][ T69] bridge0: port 2(bridge_slave_1) entered blocking state [ 178.837360][ T69] bridge0: port 2(bridge_slave_1) entered forwarding state [ 178.936049][ T5808] 8021q: adding VLAN 0 to HW filter on device bond0 [ 178.971156][ T5799] 8021q: adding VLAN 0 to HW filter on device bond0 [ 179.156838][ T5808] 8021q: adding VLAN 0 to HW filter on device team0 [ 179.312698][ T5799] 8021q: adding VLAN 0 to HW filter on device team0 [ 179.416544][ T69] bridge0: port 1(bridge_slave_0) entered blocking state [ 179.424120][ T69] bridge0: port 1(bridge_slave_0) entered forwarding state [ 179.439805][ T69] bridge0: port 2(bridge_slave_1) entered blocking state [ 179.447512][ T69] bridge0: port 2(bridge_slave_1) entered forwarding state [ 179.632940][ T69] bridge0: port 1(bridge_slave_0) entered blocking state [ 179.640535][ T69] bridge0: port 1(bridge_slave_0) entered forwarding state [ 179.655673][ T69] bridge0: port 2(bridge_slave_1) entered blocking state [ 179.663270][ T69] bridge0: port 2(bridge_slave_1) entered forwarding state [ 179.807246][ T5808] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 179.819636][ T5808] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 179.936567][ T5799] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 179.947379][ T5799] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 180.759402][ T5794] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 181.051439][ T5798] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 181.256737][ T5794] veth0_vlan: entered promiscuous mode [ 181.280041][ T5800] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 181.403956][ T5794] veth1_vlan: entered promiscuous mode [ 181.659022][ T5798] veth0_vlan: entered promiscuous mode [ 181.702725][ T5808] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 181.769890][ T5799] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 181.812296][ T5794] veth0_macvtap: entered promiscuous mode [ 181.827829][ T5798] veth1_vlan: entered promiscuous mode [ 181.902605][ T5794] veth1_macvtap: entered promiscuous mode [ 182.084165][ T5798] veth0_macvtap: entered promiscuous mode [ 182.177194][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 182.189298][ T5798] veth1_macvtap: entered promiscuous mode [ 182.285326][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 182.302345][ T5799] veth0_vlan: entered promiscuous mode [ 182.370172][ T5808] veth0_vlan: entered promiscuous mode [ 182.417544][ T3438] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.451492][ T3438] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.472894][ T5798] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 182.514781][ T3438] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.525654][ T5799] veth1_vlan: entered promiscuous mode [ 182.558299][ T5798] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 182.575615][ T14] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.610247][ T5808] veth1_vlan: entered promiscuous mode [ 182.726029][ T14] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.765788][ T3438] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.797692][ T3438] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.826237][ T3438] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.908867][ T5799] veth0_macvtap: entered promiscuous mode [ 182.931676][ T5808] veth0_macvtap: entered promiscuous mode [ 182.967093][ T5799] veth1_macvtap: entered promiscuous mode [ 183.050461][ T5808] veth1_macvtap: entered promiscuous mode [ 183.120002][ T5799] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 183.210110][ T5799] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 183.271007][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 183.307531][ T3519] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.348013][ T3519] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.366739][ T5808] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 183.412832][ T3519] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.435726][ T3519] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.534193][ T4393] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.584459][ T4393] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.677089][ T4393] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.724161][ T4393] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.851362][ T5800] veth0_vlan: entered promiscuous mode [ 183.948143][ T5800] veth1_vlan: entered promiscuous mode [ 184.222492][ T5800] veth0_macvtap: entered promiscuous mode [ 184.280073][ T5800] veth1_macvtap: entered promiscuous mode [ 184.439272][ T5800] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 184.501738][ T5800] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 184.609757][ T4393] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.658457][ T3438] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.712498][ T3438] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.733198][ T3438] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.311763][ T4292] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 188.320111][ T4292] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 188.476990][ T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 188.485189][ T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 188.649081][ T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 188.657370][ T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 188.850177][ T5794] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 188.949663][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 188.960704][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.019009][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.029329][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.112885][ T4393] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.121829][ T4393] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.346003][ T14] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.356157][ T14] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 189.390481][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 189.398731][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 190.313003][ T5988] loop3: detected capacity change from 0 to 1024 [ 190.397822][ T5988] EXT4-fs: Ignoring removed mblk_io_submit option [ 190.824591][ T69] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 190.824684][ T69] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 190.842574][ T5988] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 190.912010][ T3471] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 190.912096][ T3471] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 190.936674][ T5988] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 191.258321][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.647572][ T30] audit: type=1326 audit(1763593113.523:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 191.670174][ T30] audit: type=1326 audit(1763593113.523:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 191.696740][ T30] audit: type=1326 audit(1763593113.523:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 191.720430][ T30] audit: type=1326 audit(1763593113.533:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 191.742739][ T30] audit: type=1326 audit(1763593113.533:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 191.765031][ T30] audit: type=1326 audit(1763593113.553:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 191.787817][ T30] audit: type=1326 audit(1763593113.553:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 191.814299][ T30] audit: type=1326 audit(1763593113.553:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 191.838077][ T30] audit: type=1326 audit(1763593113.553:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 191.860497][ T30] audit: type=1326 audit(1763593113.553:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.7" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 192.179592][ T6010] process 'syz.1.9' launched '/dev/fd/6' with NULL argv: empty string added [ 192.395948][ T6018] loop6: detected capacity change from 0 to 7 [ 192.408324][ T6018] Buffer I/O error on dev loop6, logical block 0, async page read [ 192.418587][ T6018] Buffer I/O error on dev loop6, logical block 0, async page read [ 192.427125][ T6018] Buffer I/O error on dev loop6, logical block 0, async page read [ 192.435464][ T6018] Buffer I/O error on dev loop6, logical block 0, async page read [ 192.443706][ T6018] Buffer I/O error on dev loop6, logical block 0, async page read [ 192.451855][ T6018] Buffer I/O error on dev loop6, logical block 0, async page read [ 192.460408][ T6018] Buffer I/O error on dev loop6, logical block 0, async page read [ 192.468831][ T6018] ldm_validate_partition_table(): Disk read failed. [ 192.475830][ T6018] Buffer I/O error on dev loop6, logical block 0, async page read [ 192.484155][ T6018] Buffer I/O error on dev loop6, logical block 0, async page read [ 192.492220][ T6018] Buffer I/O error on dev loop6, logical block 0, async page read [ 192.500502][ T6018] Dev loop6: unable to read RDB block 0 [ 192.511115][ T6018] loop6: unable to read partition table [ 192.683188][ T6018] loop6: partition table beyond EOD, truncated [ 192.689858][ T6018] loop_reread_partitions: partition scan of loop6 (Sj̖P=ý?}X %`ր5) failed (rc=-5) [ 192.775298][ T6020] netlink: 'syz.0.12': attribute type 1 has an invalid length. [ 193.228437][ T6027] loop4: detected capacity change from 0 to 1024 [ 193.271767][ T6027] EXT4-fs: Ignoring removed orlov option [ 193.352120][ T6027] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 193.549586][ T6034] loop2: detected capacity change from 0 to 512 [ 193.753039][ T6034] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.16: error while reading EA inode 32 err=-116 [ 193.834282][ T6034] EXT4-fs (loop2): Remounting filesystem read-only [ 193.845523][ T6034] EXT4-fs warning (device loop2): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 193.857195][ T6034] EXT4-fs (loop2): 1 orphan inode deleted [ 193.865440][ T6034] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 194.190513][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.458905][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.820804][ T6061] netlink: 4 bytes leftover after parsing attributes in process `syz.0.25'. [ 196.035733][ T6061] team0 (unregistering): Port device team_slave_0 removed [ 196.161476][ T6061] team0 (unregistering): Port device team_slave_1 removed [ 196.824740][ T6073] netdevsim netdevsim2: Direct firmware load for ./file0 failed with error -2 [ 196.838692][ T6073] netdevsim netdevsim2: Falling back to sysfs fallback for: ./file0 [ 199.051141][ T6096] bridge0: port 2(bridge_slave_1) entered disabled state [ 199.060742][ T6096] bridge0: port 1(bridge_slave_0) entered disabled state [ 199.204597][ T6104] loop3: detected capacity change from 0 to 512 [ 199.279836][ T6104] ======================================================= [ 199.279836][ T6104] WARNING: The mand mount option has been deprecated and [ 199.279836][ T6104] and is ignored by this kernel. Remove the mand [ 199.279836][ T6104] option from the mount to silence this warning. [ 199.279836][ T6104] ======================================================= [ 199.314098][ T6096] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 199.341945][ T6096] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 199.697520][ T6104] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 199.713215][ T6104] ext4 filesystem being mounted at /12/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 199.861181][ T6115] xt_hashlimit: max too large, truncated to 1048576 [ 199.971897][ T6104] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.47: corrupted inode contents [ 200.018961][ T6104] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.47: mark_inode_dirty error [ 200.070641][ T6104] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.47: corrupted inode contents [ 200.099327][ T6117] netlink: 12 bytes leftover after parsing attributes in process `syz.2.52'. [ 200.111520][ T6104] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.47: mark_inode_dirty error [ 200.149258][ T4292] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 200.159852][ T30] kauditd_printk_skb: 25 callbacks suppressed [ 200.159919][ T30] audit: type=1804 audit(1763593122.073:37): pid=6104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.47" name="/newroot/12/bus/bus" dev="loop3" ino=18 res=1 errno=0 [ 200.234267][ T69] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 200.255005][ T49] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 200.295534][ T49] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 200.392872][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.832112][ T6128] usb usb1: check_ctrlrecip: process 6128 (syz.0.57) requesting ep 01 but needs 81 [ 200.845960][ T6128] usb usb1: usbfs: process 6128 (syz.0.57) did not claim interface 0 before use [ 201.099514][ T30] audit: type=1326 audit(1763593123.003:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6131 comm="syz.4.58" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f309318f749 code=0x0 [ 201.153776][ T5854] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 201.495018][ T30] audit: type=1326 audit(1763593123.083:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.0.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 201.522336][ T30] audit: type=1326 audit(1763593123.083:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.0.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 201.546195][ T30] audit: type=1326 audit(1763593123.113:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.0.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 201.569539][ T30] audit: type=1326 audit(1763593123.113:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.0.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 201.592449][ T30] audit: type=1326 audit(1763593123.123:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.0.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 201.617013][ T30] audit: type=1326 audit(1763593123.143:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.0.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 201.644016][ T30] audit: type=1326 audit(1763593123.153:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.0.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 201.668218][ T30] audit: type=1326 audit(1763593123.153:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6134 comm="syz.0.60" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 201.766950][ T5854] usb 3-1: device descriptor read/64, error -71 [ 202.013726][ T5854] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 202.218633][ T5854] usb 3-1: device descriptor read/64, error -71 [ 202.353913][ T5854] usb usb3-port1: attempt power cycle [ 202.376662][ T6146] loop3: detected capacity change from 0 to 512 [ 202.519614][ T6146] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.532986][ T6146] ext4 filesystem being mounted at /15/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 202.732031][ T6146] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.64: corrupted inode contents [ 202.733685][ T5854] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 202.795177][ T6146] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.64: mark_inode_dirty error [ 202.819105][ T6146] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.64: corrupted inode contents [ 202.837108][ T5854] usb 3-1: device descriptor read/8, error -71 [ 202.858154][ T6146] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.64: mark_inode_dirty error [ 202.921614][ T6154] loop1: detected capacity change from 0 to 512 [ 202.983566][ T6154] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 203.031570][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.072166][ T6154] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 203.085724][ T6154] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 203.104675][ T5854] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 203.193905][ T5854] usb 3-1: device descriptor read/8, error -71 [ 203.314932][ T5854] usb usb3-port1: unable to enumerate USB device [ 203.519882][ T5799] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 203.663067][ T6166] loop0: detected capacity change from 0 to 512 [ 203.692955][ T5851] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 203.741759][ T6166] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #11: comm syz.0.72: iget: bad extra_isize 90 (inode size 256) [ 203.799000][ T6166] EXT4-fs (loop0): Remounting filesystem read-only [ 203.806612][ T6166] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 203.817557][ T6166] EXT4-fs (loop0): 1 orphan inode deleted [ 203.825648][ T6166] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 203.843800][ T5851] usb 5-1: device descriptor read/64, error -71 [ 204.118005][ T5851] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 204.303758][ T5851] usb 5-1: device descriptor read/64, error -71 [ 204.355257][ T6169] loop3: detected capacity change from 0 to 8192 [ 204.405663][ T5808] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.444827][ T5851] usb usb5-port1: attempt power cycle [ 204.833729][ T5851] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 204.903070][ T5851] usb 5-1: device descriptor read/8, error -71 [ 205.141770][ T6184] netlink: 'syz.1.77': attribute type 10 has an invalid length. [ 205.164469][ T6184] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 205.186496][ T5851] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 205.252447][ T5851] usb 5-1: device descriptor read/8, error -71 [ 205.370001][ T5851] usb usb5-port1: unable to enumerate USB device [ 205.627811][ T6190] loop3: detected capacity change from 0 to 512 [ 205.738692][ T6190] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 205.753861][ T6190] ext4 filesystem being mounted at /18/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 205.963180][ T6190] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.80: corrupted inode contents [ 205.981630][ T6190] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.80: mark_inode_dirty error [ 206.004651][ T6190] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.80: corrupted inode contents [ 206.041273][ T6190] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.80: mark_inode_dirty error [ 206.130006][ T30] kauditd_printk_skb: 29 callbacks suppressed [ 206.130078][ T30] audit: type=1804 audit(1763593128.033:76): pid=6190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.80" name="/newroot/18/bus/bus" dev="loop3" ino=18 res=1 errno=0 [ 206.360706][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.389816][ T30] audit: type=1326 audit(1763593128.293:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.0.84" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 206.480108][ T30] audit: type=1326 audit(1763593128.323:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.0.84" exe="/root/syz-executor" sig=0 arch=c000003e syscall=200 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 206.503770][ T30] audit: type=1326 audit(1763593128.343:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.0.84" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 206.526819][ T30] audit: type=1326 audit(1763593128.343:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6202 comm="syz.0.84" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 206.856368][ T6208] netlink: 12 bytes leftover after parsing attributes in process `syz.0.89'. [ 207.720381][ T6219] loop1: detected capacity change from 0 to 1024 [ 207.778678][ T6219] EXT4-fs: Ignoring removed orlov option [ 207.940047][ T6219] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.233111][ T30] audit: type=1800 audit(1763593130.133:81): pid=6219 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.92" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 208.367367][ T6229] netlink: 19 bytes leftover after parsing attributes in process `syz.0.95'. [ 208.473945][ T6232] loop3: detected capacity change from 0 to 512 [ 208.541398][ T6232] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.555380][ T6232] ext4 filesystem being mounted at /20/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 208.731107][ T6232] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.96: corrupted inode contents [ 208.778919][ T6232] EXT4-fs error (device loop3): ext4_dirty_inode:6517: inode #2: comm syz.3.96: mark_inode_dirty error [ 208.799344][ T6232] EXT4-fs error (device loop3): ext4_do_update_inode:5632: inode #2: comm syz.3.96: corrupted inode contents [ 208.816438][ T6232] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.96: mark_inode_dirty error [ 208.967598][ T6219] +}[@ (6219) used greatest stack depth: 2336 bytes left [ 209.066374][ T5799] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.249522][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.647330][ T6244] bridge0: port 3(gretap0) entered blocking state [ 209.655399][ T6244] bridge0: port 3(gretap0) entered disabled state [ 209.662843][ T6244] gretap0: entered allmulticast mode [ 209.671997][ T6244] gretap0: entered promiscuous mode [ 209.680026][ T6244] bridge0: port 3(gretap0) entered blocking state [ 209.688074][ T6244] bridge0: port 3(gretap0) entered forwarding state [ 210.090234][ T6246] gretap0: left allmulticast mode [ 210.095895][ T6246] gretap0: left promiscuous mode [ 210.101938][ T6246] bridge0: port 3(gretap0) entered disabled state [ 210.253205][ T6242] netlink: '+}[@': attribute type 13 has an invalid length. [ 210.849952][ T6242] bridge0: port 2(bridge_slave_1) entered disabled state [ 210.859361][ T6242] bridge0: port 1(bridge_slave_0) entered disabled state [ 211.162702][ T6242] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 211.170995][ T6271] netlink: 12 bytes leftover after parsing attributes in process `syz.3.106'. [ 211.200438][ T6242] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 211.292892][ T6277] netlink: 4 bytes leftover after parsing attributes in process `syz.3.106'. [ 212.149474][ T4292] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.199182][ T4292] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.224011][ T30] audit: type=1326 audit(1763593134.123:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.0.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 212.234193][ T4292] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.344386][ T4292] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 212.360419][ T30] audit: type=1326 audit(1763593134.163:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.0.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 212.385910][ T30] audit: type=1326 audit(1763593134.193:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.0.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fb56e18f749 code=0x7ffc0000 [ 212.412521][ T30] audit: type=1326 audit(1763593134.193:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.0.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fb56e18f783 code=0x7ffc0000 [ 212.435268][ T30] audit: type=1326 audit(1763593134.233:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.0.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fb56e18e1ff code=0x7ffc0000 [ 212.457586][ T30] audit: type=1326 audit(1763593134.323:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.0.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fb56e18f7d7 code=0x7ffc0000 [ 212.581984][ T6283] loop0: detected capacity change from 0 to 1024 [ 212.597803][ T6283] EXT4-fs: inline encryption not supported [ 212.604710][ T6283] EXT4-fs: Ignoring removed i_version option [ 212.633809][ T30] audit: type=1326 audit(1763593134.453:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.0.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb56e18df90 code=0x7ffc0000 [ 212.656785][ T30] audit: type=1326 audit(1763593134.453:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.0.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb56e18f34b code=0x7ffc0000 [ 212.682062][ T30] audit: type=1326 audit(1763593134.503:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.0.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb56e18e3aa code=0x7ffc0000 [ 212.706425][ T30] audit: type=1326 audit(1763593134.503:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.0.110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb56e18e3aa code=0x7ffc0000 [ 212.765840][ T6283] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 212.942451][ T6292] loop1: detected capacity change from 0 to 512 [ 213.131149][ T6292] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 213.144420][ T6292] ext4 filesystem being mounted at /17/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 213.181642][ T5808] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.331377][ T6292] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #2: comm syz.1.112: corrupted inode contents [ 213.412627][ T6292] EXT4-fs error (device loop1): ext4_dirty_inode:6517: inode #2: comm syz.1.112: mark_inode_dirty error [ 213.476134][ T6292] EXT4-fs error (device loop1): ext4_do_update_inode:5632: inode #2: comm syz.1.112: corrupted inode contents [ 213.534623][ T6292] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #2: comm syz.1.112: mark_inode_dirty error [ 213.714961][ T5851] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 213.860409][ T5799] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.878160][ T5851] usb 4-1: device descriptor read/64, error -71 [ 213.986812][ T6309] program syz.4.120 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 214.154388][ T5851] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 214.317095][ T5851] usb 4-1: device descriptor read/64, error -71 [ 214.439245][ T5851] usb usb4-port1: attempt power cycle [ 214.684764][ T6326] netlink: 20 bytes leftover after parsing attributes in process `syz.0.127'. [ 214.824322][ T5851] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 214.867933][ T5851] usb 4-1: device descriptor read/8, error -71 [ 215.124807][ T5851] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 215.176967][ T5851] usb 4-1: device descriptor read/8, error -71 [ 215.294908][ T5851] usb usb4-port1: unable to enumerate USB device [ 217.517871][ T6370] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 218.048303][ T6377] loop0: detected capacity change from 0 to 1024 [ 218.215118][ T6377] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 218.228165][ T6377] ext4 filesystem being mounted at /34/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 218.349342][ T6377] EXT4-fs error (device loop0): ext4_map_blocks:814: inode #15: comm syz.0.150: lblock 0 mapped to illegal pblock 0 (length 1) [ 218.367968][ T6377] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 218.381789][ T6377] EXT4-fs (loop0): This should not happen!! Data will be lost [ 218.381789][ T6377] [ 218.608637][ T5808] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 218.644151][ T5851] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 218.837020][ T5851] usb 3-1: Using ep0 maxpacket: 16 [ 218.880435][ T5851] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 218.891203][ T5851] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 218.900726][ T5851] usb 3-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00 [ 218.912663][ T5851] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 218.945962][ T5851] usb 3-1: config 0 descriptor?? [ 219.044029][ T6391] netlink: 28 bytes leftover after parsing attributes in process `syz.0.155'. [ 219.448978][ T6396] serio: Serial port ptm0 [ 219.541106][ T6387] random: crng reseeded on system resumption [ 220.685320][ T6420] loop4: detected capacity change from 0 to 1024 [ 220.756620][ T6420] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 220.772000][ T6420] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 221.000306][ T6420] EXT4-fs error (device loop4): ext4_map_blocks:814: inode #15: comm syz.4.165: lblock 0 mapped to illegal pblock 0 (length 1) [ 221.062857][ T6420] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 221.082402][ T6420] EXT4-fs (loop4): This should not happen!! Data will be lost [ 221.082402][ T6420] [ 221.258859][ T5851] usb 3-1: USB disconnect, device number 6 [ 221.411571][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 222.271119][ T30] kauditd_printk_skb: 41 callbacks suppressed [ 222.271191][ T30] audit: type=1326 audit(1763593144.173:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6443 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 222.300207][ T30] audit: type=1326 audit(1763593144.203:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6443 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 222.325144][ T30] audit: type=1326 audit(1763593144.203:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6443 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 222.348891][ T30] audit: type=1326 audit(1763593144.203:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6443 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 222.371666][ T30] audit: type=1326 audit(1763593144.203:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6443 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 222.394261][ T30] audit: type=1326 audit(1763593144.203:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6443 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 222.417270][ T30] audit: type=1326 audit(1763593144.223:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6443 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 222.443573][ T30] audit: type=1326 audit(1763593144.223:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6443 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 222.467052][ T30] audit: type=1326 audit(1763593144.263:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6443 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 222.489903][ T30] audit: type=1326 audit(1763593144.273:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6443 comm="syz.3.175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 222.807524][ T6447] syzkaller0: entered promiscuous mode [ 222.816788][ T6447] syzkaller0: entered allmulticast mode [ 224.663630][ T1294] ieee802154 phy0 wpan0: encryption failed: -22 [ 224.670347][ T1294] ieee802154 phy1 wpan1: encryption failed: -22 [ 224.881609][ T6475] serio: Serial port ptm0 [ 225.068863][ T6480] syzkaller0: entered promiscuous mode [ 225.074861][ T6480] syzkaller0: entered allmulticast mode [ 225.311377][ T6482] usb usb1: check_ctrlrecip: process 6482 (syz.1.191) requesting ep 01 but needs 81 [ 225.321641][ T6482] usb usb1: usbfs: process 6482 (syz.1.191) did not claim interface 0 before use [ 225.686299][ T6486] loop2: detected capacity change from 0 to 1024 [ 225.836380][ T6486] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 225.849565][ T6486] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 226.084314][ T3471] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: comm kworker/u8:10: lblock 0 mapped to illegal pblock 0 (length 1) [ 226.167812][ T3471] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 226.181812][ T3471] EXT4-fs (loop2): This should not happen!! Data will be lost [ 226.181812][ T3471] [ 226.274918][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 226.469107][ T5851] hid-generic 0000:C1161:0000.0001: item fetching failed at offset 0/1 [ 226.516503][ T5851] hid-generic 0000:C1161:0000.0001: probe with driver hid-generic failed with error -22 [ 226.980725][ T6503] netlink: 20 bytes leftover after parsing attributes in process `syz.1.200'. [ 227.171512][ T6510] syzkaller0: entered promiscuous mode [ 227.177530][ T6510] syzkaller0: entered allmulticast mode [ 227.587866][ T6512] loop4: detected capacity change from 0 to 512 [ 227.704154][ T6512] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 227.718445][ T6512] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 227.863850][ T6512] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=200ec018, mo2=0002] [ 227.873001][ T6512] System zones: 1-12 [ 227.932227][ T6512] EXT4-fs (loop4): 1 truncate cleaned up [ 227.943045][ T6512] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 227.992111][ T6520] syz.2.207 uses obsolete (PF_INET,SOCK_PACKET) [ 228.034522][ T6517] serio: Serial port ptm0 [ 228.581527][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.661246][ T6527] loop1: detected capacity change from 0 to 1024 [ 228.745054][ T6527] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 228.760899][ T6527] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 229.206008][ T3471] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: comm kworker/u8:10: lblock 0 mapped to illegal pblock 0 (length 1) [ 229.237596][ T6535] loop3: detected capacity change from 0 to 512 [ 229.243619][ T3471] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117 [ 229.257205][ T3471] EXT4-fs (loop1): This should not happen!! Data will be lost [ 229.257205][ T3471] [ 229.283908][ T6535] EXT4-fs: Ignoring removed i_version option [ 229.331858][ T5799] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 229.521799][ T6535] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=e000c018, mo2=0002] [ 229.563834][ T6535] System zones: 0-2, 18-18, 34-35 [ 229.637361][ T6535] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 229.650650][ T6535] ext4 filesystem being mounted at /43/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 230.274846][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.805652][ T6554] Zero length message leads to an empty skb [ 231.065606][ T5854] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 231.253647][ T5854] usb 2-1: Using ep0 maxpacket: 32 [ 231.292015][ T6558] loop3: detected capacity change from 0 to 512 [ 231.306170][ T5854] usb 2-1: config 0 has an invalid interface number: 215 but max is 0 [ 231.317015][ T5854] usb 2-1: config 0 has no interface number 0 [ 231.350080][ T6558] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 231.394828][ T5854] usb 2-1: New USB device found, idVendor=1608, idProduct=0301, bcdDevice=f1.24 [ 231.404224][ T5854] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 231.412419][ T5854] usb 2-1: Product: syz [ 231.419066][ T5854] usb 2-1: Manufacturer: syz [ 231.424678][ T5854] usb 2-1: SerialNumber: syz [ 231.455786][ T6558] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=200ec018, mo2=0002] [ 231.507208][ T6558] System zones: 1-12 [ 231.576212][ T6558] EXT4-fs (loop3): 1 truncate cleaned up [ 231.584396][ T6558] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 231.591803][ T5854] usb 2-1: config 0 descriptor?? [ 231.648043][ T5854] io_ti 2-1:0.215: required endpoints missing [ 231.842548][ T6549] loop1: detected capacity change from 0 to 512 [ 231.929367][ T6549] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.216: inode has both inline data and extents flags [ 231.986031][ T6549] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.216: couldn't read orphan inode 15 (err -117) [ 232.024774][ T6564] serio: Serial port ptm0 [ 232.059802][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 232.072307][ T6549] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 232.141625][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 232.141694][ T30] audit: type=1326 audit(1763593154.043:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 232.192438][ T5851] usb 2-1: USB disconnect, device number 2 [ 232.267245][ T30] audit: type=1326 audit(1763593154.083:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 232.290701][ T30] audit: type=1326 audit(1763593154.083:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 232.313525][ T30] audit: type=1326 audit(1763593154.083:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 232.338446][ T30] audit: type=1326 audit(1763593154.083:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6546 comm="syz.1.216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 232.663905][ T6571] loop4: detected capacity change from 0 to 512 [ 232.728921][ T6571] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 232.826772][ T6571] EXT4-fs (loop4): 1 truncate cleaned up [ 232.834792][ T6571] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 232.925485][ T5799] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.197485][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.338120][ T6580] loop1: detected capacity change from 0 to 512 [ 233.385549][ T6580] EXT4-fs: Ignoring removed i_version option [ 233.392009][ T6580] EXT4-fs: Ignoring removed bh option [ 233.580999][ T6580] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 233.639163][ T6580] ext4 filesystem being mounted at /36/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 233.715566][ T6589] loop2: detected capacity change from 0 to 512 [ 233.730170][ T6589] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 233.839979][ T6589] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=200ec018, mo2=0002] [ 233.909342][ T6589] System zones: 1-12 [ 233.978143][ T6589] EXT4-fs (loop2): 1 truncate cleaned up [ 233.989273][ T6589] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 234.220491][ T6593] loop4: detected capacity change from 0 to 2048 [ 234.299097][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.311930][ T5799] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.368194][ T6593] Alternate GPT is invalid, using primary GPT. [ 234.375611][ T6593] loop4: p1 p2 p3 [ 234.379567][ T6593] loop4: partition table partially beyond EOD, truncated [ 234.684800][ T30] audit: type=1326 audit(1763593156.573:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 234.712775][ T30] audit: type=1326 audit(1763593156.583:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 234.736116][ T30] audit: type=1326 audit(1763593156.613:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 234.759046][ T30] audit: type=1326 audit(1763593156.613:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 234.784845][ T30] audit: type=1326 audit(1763593156.613:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6602 comm="syz.1.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 234.953452][ T6016] udevd[6016]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory [ 234.981350][ T5970] udevd[5970]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 235.025852][ T6138] udevd[6138]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory [ 235.206935][ T5851] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 235.338949][ T6610] loop4: detected capacity change from 0 to 512 [ 235.407610][ T5851] usb 3-1: Using ep0 maxpacket: 32 [ 235.414101][ T6610] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 235.483913][ T6610] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 235.497213][ T6610] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 235.603985][ T5851] usb 3-1: config 0 has an invalid interface number: 215 but max is 0 [ 235.612476][ T5851] usb 3-1: config 0 has no interface number 0 [ 235.688694][ T5851] usb 3-1: New USB device found, idVendor=1608, idProduct=0301, bcdDevice=f1.24 [ 235.698774][ T5851] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 235.707245][ T5851] usb 3-1: Product: syz [ 235.711582][ T5851] usb 3-1: Manufacturer: syz [ 235.718754][ T5851] usb 3-1: SerialNumber: syz [ 235.746571][ T5851] usb 3-1: config 0 descriptor?? [ 235.769234][ T5851] io_ti 3-1:0.215: required endpoints missing [ 236.058528][ T6601] loop2: detected capacity change from 0 to 512 [ 236.139208][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.170748][ T6601] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.238: inode has both inline data and extents flags [ 236.186586][ T6601] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.238: couldn't read orphan inode 15 (err -117) [ 236.289049][ T6601] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 236.410945][ T5851] usb 3-1: USB disconnect, device number 7 [ 237.227814][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 238.281908][ T6651] loop0: detected capacity change from 0 to 512 [ 239.293785][ T6658] loop0: detected capacity change from 0 to 128 [ 239.328760][ T6658] EXT4-fs: Ignoring removed nobh option [ 239.410813][ T6658] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 239.524710][ T6658] ext4 filesystem being mounted at /51/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 239.552371][ T6658] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:375: inode #2: comm syz.0.262: No space for directory leaf checksum. Please run e2fsck -D. [ 239.568963][ T6658] EXT4-fs error (device loop0): __ext4_find_entry:1626: inode #2: comm syz.0.262: checksumming directory block 0 [ 239.947246][ T5808] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 241.244138][ T6685] usb usb1: check_ctrlrecip: process 6685 (syz.0.268) requesting ep 01 but needs 81 [ 241.257124][ T6685] usb usb1: usbfs: process 6685 (syz.0.268) did not claim interface 0 before use [ 242.715313][ T6709] loop4: detected capacity change from 0 to 512 [ 242.737526][ T6709] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 242.795494][ T6709] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=200ec018, mo2=0002] [ 242.815864][ T6709] System zones: 1-12 [ 242.847418][ T6709] EXT4-fs (loop4): 1 truncate cleaned up [ 242.855638][ T6709] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 243.238664][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.997332][ T6741] netlink: 8 bytes leftover after parsing attributes in process `syz.0.289'. [ 245.591742][ T6744] loop4: detected capacity change from 0 to 512 [ 245.647002][ T6744] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 245.728701][ T6744] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=200ec018, mo2=0002] [ 245.794173][ T6744] System zones: 1-12 [ 245.857328][ T6744] EXT4-fs (loop4): 1 truncate cleaned up [ 245.865319][ T6744] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 246.030093][ T30] kauditd_printk_skb: 10 callbacks suppressed [ 246.030162][ T30] audit: type=1326 audit(1763593167.933:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 246.061848][ T30] audit: type=1326 audit(1763593167.933:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 246.086762][ T30] audit: type=1326 audit(1763593167.933:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 246.109700][ T30] audit: type=1326 audit(1763593167.933:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 246.334172][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 246.384441][ T30] audit: type=1326 audit(1763593168.063:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6753 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 246.702239][ T6766] xt_connbytes: Forcing CT accounting to be enabled [ 246.709903][ T6766] Cannot find set identified by id 0 to match [ 246.823130][ T6770] netlink: 4 bytes leftover after parsing attributes in process `syz.3.300'. [ 247.275953][ T6777] netlink: 8 bytes leftover after parsing attributes in process `syz.2.302'. [ 247.649029][ T6782] loop1: detected capacity change from 0 to 1024 [ 247.705656][ T6782] EXT4-fs: Ignoring removed orlov option [ 247.745175][ T6782] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 247.848971][ T6782] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 248.059226][ T6789] loop3: detected capacity change from 0 to 512 [ 248.097411][ T30] audit: type=1326 audit(1763593169.993:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="syz.1.305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 248.123060][ T30] audit: type=1326 audit(1763593169.993:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6781 comm="syz.1.305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 248.229557][ T6789] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 248.324107][ T6789] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=200ec018, mo2=0002] [ 248.384561][ T6789] System zones: 1-12 [ 248.447826][ T6789] EXT4-fs (loop3): 1 truncate cleaned up [ 248.455963][ T6789] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 248.496445][ T5799] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.840912][ T6805] xt_connbytes: Forcing CT accounting to be enabled [ 248.848300][ T6805] Cannot find set identified by id 0 to match [ 248.911561][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 249.404407][ T6814] sch_tbf: burst 19360 is lower than device lo mtu (65550) ! [ 250.143631][ T30] audit: type=1326 audit(1763593172.023:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 250.175418][ T30] audit: type=1326 audit(1763593172.023:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 250.199278][ T30] audit: type=1326 audit(1763593172.043:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6822 comm="syz.1.322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 251.049341][ T30] kauditd_printk_skb: 29 callbacks suppressed [ 251.049409][ T30] audit: type=1326 audit(1763593172.953:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 251.081125][ T30] audit: type=1326 audit(1763593172.953:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 251.104479][ T30] audit: type=1326 audit(1763593172.953:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 251.127615][ T30] audit: type=1326 audit(1763593172.953:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 251.158583][ T30] audit: type=1326 audit(1763593172.973:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 251.183471][ T30] audit: type=1326 audit(1763593172.973:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6835 comm="syz.2.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 251.504910][ T30] audit: type=1326 audit(1763593173.403:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6843 comm="syz.3.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 251.528313][ T30] audit: type=1326 audit(1763593173.403:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6843 comm="syz.3.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 251.656048][ T30] audit: type=1326 audit(1763593173.453:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6843 comm="syz.3.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 251.679933][ T30] audit: type=1326 audit(1763593173.463:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6843 comm="syz.3.332" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 252.937809][ T6863] loop2: detected capacity change from 0 to 512 [ 253.155955][ T6863] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 253.169316][ T6863] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 253.203602][ T5854] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 253.393875][ T6863] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.339: bg 0: block 18: invalid block bitmap [ 253.444698][ T5854] usb 2-1: unable to read config index 0 descriptor/start: -61 [ 253.452515][ T5854] usb 2-1: can't read configurations, error -61 [ 253.496288][ T6863] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.339: Failed to acquire dquot type 1 [ 253.633609][ T5854] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 253.729508][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 253.846967][ T5854] usb 2-1: unable to read config index 0 descriptor/start: -61 [ 253.855120][ T5854] usb 2-1: can't read configurations, error -61 [ 253.888954][ T5854] usb usb2-port1: attempt power cycle [ 254.253767][ T5854] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 254.315104][ T5854] usb 2-1: unable to read config index 0 descriptor/start: -61 [ 254.323180][ T5854] usb 2-1: can't read configurations, error -61 [ 254.503760][ T5854] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 254.575362][ T5854] usb 2-1: unable to read config index 0 descriptor/start: -61 [ 254.583821][ T5854] usb 2-1: can't read configurations, error -61 [ 254.629785][ T5854] usb usb2-port1: unable to enumerate USB device [ 255.523050][ T6900] IPv6: NLM_F_CREATE should be specified when creating new route [ 256.309915][ T30] kauditd_printk_skb: 32 callbacks suppressed [ 256.309984][ T30] audit: type=1326 audit(1763593178.213:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 256.340724][ T30] audit: type=1326 audit(1763593178.213:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 256.365133][ T30] audit: type=1326 audit(1763593178.213:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 256.394589][ T30] audit: type=1326 audit(1763593178.213:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 256.420018][ T30] audit: type=1326 audit(1763593178.213:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 256.444371][ T30] audit: type=1326 audit(1763593178.243:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 256.469080][ T30] audit: type=1326 audit(1763593178.263:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 256.493924][ T30] audit: type=1326 audit(1763593178.323:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 256.517460][ T30] audit: type=1326 audit(1763593178.343:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6906 comm="syz.1.353" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e70f8f749 code=0x7ffc0000 [ 257.146033][ T30] audit: type=1326 audit(1763593179.023:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6912 comm="syz.2.356" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f719d38f749 code=0x0 [ 257.851539][ T6928] netlink: 24 bytes leftover after parsing attributes in process `syz.3.362'. [ 257.893797][ T6924] loop1: detected capacity change from 0 to 4096 [ 258.008735][ T6924] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 258.576389][ T6942] syzkaller0: entered promiscuous mode [ 258.582585][ T6942] syzkaller0: entered allmulticast mode [ 258.806672][ T5799] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 259.747675][ T6959] IPVS: set_ctl: invalid protocol: 12 172.20.20.53:20001 [ 260.077782][ T3471] Bluetooth: hci5: Frame reassembly failed (-84) [ 260.277030][ T6972] netlink: 12 bytes leftover after parsing attributes in process `syz.2.378'. [ 261.758518][ T6994] netlink: 8 bytes leftover after parsing attributes in process `syz.1.384'. [ 261.767820][ T6994] openvswitch: netlink: Flow key attr not present in new flow. [ 262.005421][ T6999] loop1: detected capacity change from 0 to 512 [ 262.022763][ T30] kauditd_printk_skb: 28 callbacks suppressed [ 262.022840][ T30] audit: type=1326 audit(1763593183.923:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 262.055606][ T30] audit: type=1326 audit(1763593183.963:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 262.153893][ T51] Bluetooth: hci5: command 0x1003 tx timeout [ 262.188052][ T5801] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 262.284265][ T6999] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 262.298093][ T6999] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 262.326857][ T30] audit: type=1326 audit(1763593184.013:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 262.352613][ T30] audit: type=1326 audit(1763593184.013:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 262.376027][ T30] audit: type=1326 audit(1763593184.013:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 262.399545][ T30] audit: type=1326 audit(1763593184.013:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 262.434299][ T30] audit: type=1326 audit(1763593184.013:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 262.461279][ T30] audit: type=1326 audit(1763593184.023:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 262.484932][ T30] audit: type=1326 audit(1763593184.023:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 262.509524][ T30] audit: type=1326 audit(1763593184.023:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz.3.386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 262.538235][ T6997] loop0: detected capacity change from 0 to 2048 [ 262.664878][ T6016] Alternate GPT is invalid, using primary GPT. [ 262.672065][ T6016] loop0: p1 p2 p3 [ 262.676328][ T6016] loop0: partition table partially beyond EOD, truncated [ 262.779639][ T6997] loop0: unable to read partition table [ 262.794900][ T6997] loop_reread_partitions: partition scan of loop0 () failed (rc=-5) [ 263.012893][ T6016] udevd[6016]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 263.072451][ T5970] udevd[5970]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 263.124338][ T6138] udevd[6138]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 263.367114][ T7015] netlink: 'syz.0.391': attribute type 13 has an invalid length. [ 264.700195][ T6999] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.092534][ T7037] netlink: 76 bytes leftover after parsing attributes in process `syz.0.398'. [ 266.102051][ T7037] netlink: 32 bytes leftover after parsing attributes in process `syz.0.398'. [ 266.564457][ T14] Bluetooth: hci5: Frame reassembly failed (-84) [ 267.708805][ T7050] loop1: detected capacity change from 0 to 256 [ 268.315644][ T7058] loop3: detected capacity change from 0 to 512 [ 268.459188][ T7058] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 268.475890][ T7058] ext4 filesystem being mounted at /77/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 268.633867][ T51] Bluetooth: hci5: command 0x1003 tx timeout [ 268.633903][ T5801] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 268.757317][ T7067] loop0: detected capacity change from 0 to 512 [ 268.776933][ T7067] EXT4-fs: Ignoring removed nomblk_io_submit option [ 268.933164][ T7067] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 268.947462][ T7067] ext4 filesystem being mounted at /90/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 268.987222][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 269.057709][ T7067] __quota_error: 28 callbacks suppressed [ 269.057788][ T7067] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0 [ 269.081878][ T7067] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 269.092313][ T7067] EXT4-fs error (device loop0): ext4_acquire_dquot:6945: comm syz.0.410: Failed to acquire dquot type 1 [ 269.445579][ T5808] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 269.521567][ T30] audit: type=1326 audit(1763593191.423:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 269.568392][ T30] audit: type=1326 audit(1763593191.463:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 269.594162][ T30] audit: type=1326 audit(1763593191.463:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 269.624923][ T30] audit: type=1326 audit(1763593191.523:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 269.769738][ T30] audit: type=1326 audit(1763593191.553:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 269.794951][ T30] audit: type=1326 audit(1763593191.563:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 269.823649][ T30] audit: type=1326 audit(1763593191.563:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 269.851353][ T30] audit: type=1326 audit(1763593191.573:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7075 comm="syz.3.412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f752b98f749 code=0x7ffc0000 [ 271.216942][ T7097] netlink: 666 bytes leftover after parsing attributes in process `syz.4.423'. [ 271.750392][ T12] Bluetooth: hci5: Frame reassembly failed (-84) [ 273.328839][ T7118] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 273.753886][ T51] Bluetooth: hci5: command 0x1003 tx timeout [ 273.753982][ T5801] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 274.048778][ T7128] loop4: detected capacity change from 0 to 512 [ 274.145050][ T7128] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 274.159130][ T7128] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 274.596622][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 274.675252][ T7137] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 274.876736][ T7137] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 274.933045][ T30] kauditd_printk_skb: 32 callbacks suppressed [ 274.933116][ T30] audit: type=1326 audit(1763593196.823:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 274.966526][ T30] audit: type=1326 audit(1763593196.843:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 274.989140][ T30] audit: type=1326 audit(1763593196.843:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 275.012012][ T30] audit: type=1326 audit(1763593196.843:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 275.034930][ T30] audit: type=1326 audit(1763593196.843:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 275.060199][ T30] audit: type=1326 audit(1763593196.843:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 275.083724][ T30] audit: type=1326 audit(1763593196.853:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 275.107911][ T30] audit: type=1326 audit(1763593196.853:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 275.132143][ T30] audit: type=1326 audit(1763593196.913:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 275.158700][ T30] audit: type=1326 audit(1763593196.923:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7143 comm="syz.2.442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f719d38f749 code=0x7ffc0000 [ 275.316103][ T7137] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 275.489959][ T7137] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 275.851909][ T35] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.904016][ T35] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 275.985514][ T7157] netlink: 96 bytes leftover after parsing attributes in process `syz.4.448'. [ 276.023188][ T35] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 276.031847][ T35] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 277.340592][ T7181] pim6reg: entered allmulticast mode [ 277.417331][ T7183] loop3: detected capacity change from 0 to 128 [ 278.474913][ T51] Bluetooth: hci5: command 0x1003 tx timeout [ 278.481656][ T5801] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 278.677194][ T7193] netlink: 24 bytes leftover after parsing attributes in process `syz.1.463'. [ 278.739536][ T7191] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 279.084647][ T7191] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 279.449216][ T7191] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 279.755863][ T7191] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 280.201499][ T49] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 280.244342][ T35] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 280.252893][ T35] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 280.276810][ T35] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 280.995665][ T7220] netlink: 24 bytes leftover after parsing attributes in process `syz.1.475'. [ 281.149087][ T35] Bluetooth: hci5: Frame reassembly failed (-84) [ 282.227565][ T7234] ===================================================== [ 282.236112][ T7234] BUG: KMSAN: uninit-value in bpf_prog_run_generic_xdp+0x1a5a/0x2000 [ 282.246385][ T7234] bpf_prog_run_generic_xdp+0x1a5a/0x2000 [ 282.254486][ T7234] do_xdp_generic+0xd52/0x1690 [ 282.259802][ T7234] tun_get_user+0x45c0/0x6d70 [ 282.265390][ T7234] tun_chr_write_iter+0x3e9/0x5c0 [ 282.271229][ T7234] vfs_write+0xbe2/0x15d0 [ 282.275984][ T7234] __x64_sys_write+0x1fb/0x4d0 [ 282.281015][ T7234] x64_sys_call+0x3014/0x3e30 [ 282.286288][ T7234] do_syscall_64+0xd9/0xfa0 [ 282.291777][ T7234] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.299056][ T7234] [ 282.301730][ T7234] Uninit was stored to memory at: [ 282.307362][ T7234] pskb_expand_head+0x310/0x1610 [ 282.312967][ T7234] do_xdp_generic+0xa79/0x1690 [ 282.319523][ T7234] tun_get_user+0x45c0/0x6d70 [ 282.326508][ T7234] tun_chr_write_iter+0x3e9/0x5c0 [ 282.332508][ T7234] vfs_write+0xbe2/0x15d0 [ 282.337384][ T7234] __x64_sys_write+0x1fb/0x4d0 [ 282.343711][ T7234] x64_sys_call+0x3014/0x3e30 [ 282.349040][ T7234] do_syscall_64+0xd9/0xfa0 [ 282.354342][ T7234] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.360822][ T7234] [ 282.363521][ T7234] Uninit was created at: [ 282.369577][ T7234] __kmalloc_node_track_caller_noprof+0xb4b/0x1ba0 [ 282.377292][ T7234] kmalloc_reserve+0x22f/0x4b0 [ 282.382391][ T7234] __alloc_skb+0x347/0x7d0 [ 282.387177][ T7234] alloc_skb_with_frags+0xc5/0xa60 [ 282.393767][ T7234] sock_alloc_send_pskb+0xacc/0xc60 [ 282.399611][ T7234] tun_get_user+0x1142/0x6d70 [ 282.404997][ T7234] tun_chr_write_iter+0x3e9/0x5c0 [ 282.410487][ T7234] vfs_write+0xbe2/0x15d0 [ 282.415143][ T7234] __x64_sys_write+0x1fb/0x4d0 [ 282.420640][ T7234] x64_sys_call+0x3014/0x3e30 [ 282.425626][ T7234] do_syscall_64+0xd9/0xfa0 [ 282.430401][ T7234] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.437104][ T7234] [ 282.439684][ T7234] CPU: 0 UID: 0 PID: 7234 Comm: syz.1.481 Not tainted syzkaller #0 PREEMPT(none) [ 282.449354][ T7234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 282.461140][ T7234] ===================================================== [ 282.469645][ T7234] Disabling lock debugging due to kernel taint [ 282.476195][ T7234] Kernel panic - not syncing: kmsan.panic set ... [ 282.484564][ T7234] CPU: 0 UID: 0 PID: 7234 Comm: syz.1.481 Tainted: G B syzkaller #0 PREEMPT(none) [ 282.496737][ T7234] Tainted: [B]=BAD_PAGE [ 282.501039][ T7234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 282.513034][ T7234] Call Trace: [ 282.516432][ T7234] [ 282.519525][ T7234] __dump_stack+0x26/0x30 [ 282.524027][ T7234] dump_stack_lvl+0x53/0x270 [ 282.528929][ T7234] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 282.534956][ T7234] dump_stack+0x1e/0x25 [ 282.539353][ T7234] vpanic+0x435/0xd30 [ 282.543687][ T7234] panic+0x15d/0x160 [ 282.548605][ T7234] kmsan_report+0x31c/0x320 [ 282.553833][ T7234] ? __msan_warning+0x1b/0x30 [ 282.558838][ T7234] ? bpf_prog_run_generic_xdp+0x1a5a/0x2000 [ 282.565093][ T7234] ? do_xdp_generic+0xd52/0x1690 [ 282.570217][ T7234] ? tun_get_user+0x45c0/0x6d70 [ 282.575604][ T7234] ? tun_chr_write_iter+0x3e9/0x5c0 [ 282.581949][ T7234] ? vfs_write+0xbe2/0x15d0 [ 282.587704][ T7234] ? __x64_sys_write+0x1fb/0x4d0 [ 282.593041][ T7234] ? x64_sys_call+0x3014/0x3e30 [ 282.599400][ T7234] ? do_syscall_64+0xd9/0xfa0 [ 282.604255][ T7234] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.612139][ T7234] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 282.618550][ T7234] ? ___bpf_prog_run+0xea65/0xeba0 [ 282.624288][ T7234] ? __bpf_prog_run32+0xc2/0xf0 [ 282.630646][ T7234] ? kmsan_get_metadata+0xfb/0x160 [ 282.636725][ T7234] __msan_warning+0x1b/0x30 [ 282.641371][ T7234] bpf_prog_run_generic_xdp+0x1a5a/0x2000 [ 282.648023][ T7234] do_xdp_generic+0xd52/0x1690 [ 282.653538][ T7234] ? tun_get_user+0x40d1/0x6d70 [ 282.658765][ T7234] ? filter_irq_stacks+0x49/0x190 [ 282.664338][ T7234] ? kmsan_get_metadata+0xfb/0x160 [ 282.670210][ T7234] ? tun_get_user+0x453f/0x6d70 [ 282.675558][ T7234] tun_get_user+0x45c0/0x6d70 [ 282.681058][ T7234] ? stack_depot_save_flags+0x35/0x7b0 [ 282.687023][ T7234] ? kmsan_get_metadata+0xfb/0x160 [ 282.692977][ T7234] ? kmsan_get_metadata+0xfb/0x160 [ 282.698936][ T7234] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 282.705597][ T7234] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 282.712549][ T7234] tun_chr_write_iter+0x3e9/0x5c0 [ 282.717845][ T7234] vfs_write+0xbe2/0x15d0 [ 282.722903][ T7234] ? __pfx_tun_chr_write_iter+0x10/0x10 [ 282.729101][ T7234] __x64_sys_write+0x1fb/0x4d0 [ 282.734123][ T7234] x64_sys_call+0x3014/0x3e30 [ 282.739179][ T7234] do_syscall_64+0xd9/0xfa0 [ 282.744815][ T7234] ? irqentry_exit+0x16/0x60 [ 282.750660][ T7234] ? clear_bhb_loop+0x40/0x90 [ 282.755660][ T7234] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 282.762272][ T7234] RIP: 0033:0x7f1e70f8e1ff [ 282.766824][ T7234] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48 [ 282.786972][ T7234] RSP: 002b:00007f1e71ed3000 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 282.796135][ T7234] RAX: ffffffffffffffda RBX: 00007f1e711e5fa0 RCX: 00007f1e70f8e1ff [ 282.804590][ T7234] RDX: 000000000000fdef RSI: 0000200000000240 RDI: 00000000000000c8 [ 282.814402][ T7234] RBP: 00007f1e71013f91 R08: 0000000000000000 R09: 0000000000000000 [ 282.823050][ T7234] R10: 000000000000fdef R11: 0000000000000293 R12: 0000000000000000 [ 282.831488][ T7234] R13: 00007f1e711e6038 R14: 00007f1e711e5fa0 R15: 00007ffec1ee8448 [ 282.840363][ T7234] [ 282.843760][ T7234] Kernel Offset: disabled [ 282.849032][ T7234] Rebooting in 86400 seconds..