last executing test programs: 5.961833704s ago: executing program 3 (id=2640): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0x5, 0x7, 0x8, 0x5, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$inet6_sctp(0xa, 0x801, 0x84) sendto$inet6(r2, &(0x7f0000000000)="aa", 0x1, 0x0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x6}, 0x3}, 0x1c) 5.511328081s ago: executing program 3 (id=2643): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x2d) ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0xffffffffffffffb6) unshare(0x40000000) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0, 0xffffffffffffffff, 0x0, 0x7}, 0x18) bpf$PROG_LOAD(0x5, 0x0, 0x0) r4 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000011300000000000000000000000a20000000000a03000000000000000000070000040900010073797a300000000088000000090a010400000000000000000700000308000a40000000000900020073797a30000000000900010073797a3000000000080005400000000d44001280200001800e000100636f6e6e6c696d69740000000c0002800800014000000008200001800e000100636f6e6e6c696d69740000000c000280080001400000e41f0800034000000120140000001000010000000000000000000084000a"], 0xd0}}, 0x20050800) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f00000004c0)={[{@mblk_io_submit}, {@dioread_nolock}, {@bh}, {@auto_da_alloc_val}, {@nouid32}, {@quota}, {@auto_da_alloc}]}, 0x3, 0x445, &(0x7f0000000800)="$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") bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000001811000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r5 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341) ioctl$USBDEVFS_IOCTL(r5, 0xc0105512, &(0x7f0000000240)=@usbdevfs_connect={0x7}) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r6, &(0x7f0000000040), 0x208e24b) socket$nl_route(0x10, 0x3, 0x0) 3.234998273s ago: executing program 3 (id=2657): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000300)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@quota}, {@stripe={'stripe', 0x3d, 0x2}}, {@jqfmt_vfsold}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x410583, 0x0) 2.748125011s ago: executing program 3 (id=2663): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x18, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000002000000e27f000001"], 0x48) 2.548862653s ago: executing program 3 (id=2668): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0, 0x0, 0x5f}, 0x18) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket(0x400000000010, 0x3, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0x10}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000380)=@newtfilter={0xd0, 0x2c, 0xd27, 0x70bd28, 0x8000, {0x0, 0x0, 0x0, r4, {0xffff, 0x7}, {}, {0xa}}, [@filter_kind_options=@f_cgroup={{0xb}, {0xa0, 0x2, [@TCA_CGROUP_EMATCHES={0x9c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xd8}}, @TCA_EMATCH_TREE_LIST={0x90, 0x2, 0x0, 0x1, [@TCF_EM_META={0x8c, 0x1, 0x0, 0x0, {{0x7, 0x4, 0x9df1}, [@TCA_EM_META_LVALUE={0x13, 0x2, [@TCF_META_TYPE_VAR="bc80ba7d684ada12", @TCF_META_TYPE_VAR="54f88f124fd28e"]}, @TCA_EM_META_LVALUE={0xfffffffffffffdb8, 0x2, [@TCF_META_TYPE_INT, @TCF_META_TYPE_INT, @TCF_META_TYPE_INT, @TCF_META_TYPE_VAR="22feeee3bfb3df", @TCF_META_TYPE_VAR="7bb58aa61be3c4", @TCF_META_TYPE_VAR="080d5b654817cc23", @TCF_META_TYPE_INT=0x8]}, @TCA_EM_META_RVALUE={0xd, 0x3, [@TCF_META_TYPE_VAR="e4a638f340", @TCF_META_TYPE_INT=0x1]}, @TCA_EM_META_LVALUE={0x1b, 0x2, [@TCF_META_TYPE_VAR="7d10f6c6ceb3", @TCF_META_TYPE_VAR="d4ca", @TCF_META_TYPE_INT=0x5, @TCF_META_TYPE_VAR="869101d9972f27", @TCF_META_TYPE_INT=0x7]}, @TCA_EM_META_RVALUE={0x14, 0x3, [@TCF_META_TYPE_INT=0x7, @TCF_META_TYPE_INT=0x3, @TCF_META_TYPE_VAR="3bc3ecda4dc3e6d2"]}]}}]}]}]}}]}, 0xd0}, 0x1, 0x0, 0x0, 0x4044841}, 0x20000000) 2.249115117s ago: executing program 0 (id=2673): syz_mount_image$iso9660(&(0x7f0000000cc0), &(0x7f0000000180)='./file1\x00', 0x1004481, &(0x7f0000000380)=ANY=[], 0x2, 0x81c, &(0x7f0000001540)="$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") bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x141042, 0x0) 2.168883739s ago: executing program 3 (id=2675): socket$nl_xfrm(0x10, 0x3, 0x6) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000400)=@abs, 0x6e) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f00000002c0)=0x4) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000004c0)='rcu_utilization\x00', r2}, 0x18) open(0x0, 0x0, 0x100) sendmsg$rds(0xffffffffffffffff, 0x0, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$wireguard(&(0x7f00000005c0), r3) sendmsg$WG_CMD_SET_DEVICE(r3, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB="ec000000", @ANYRES16=r4, @ANYBLOB="01000000000000000000010000000800050001000000140002007767310000000000000000000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5420800050000000000900008808c00008024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c640009801c000080060001000200"], 0xec}, 0x1, 0x0, 0x0, 0x4084}, 0x20000010) 2.142349579s ago: executing program 1 (id=2676): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x44854}, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000900850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kfree\x00', r2}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="140000001000010000000000000000000220000a3c000000120a09080000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0) 1.930019252s ago: executing program 0 (id=2678): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000a999850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000000), r1) sendmsg$NFC_CMD_DEP_LINK_UP(r1, &(0x7f0000000600)={0x0, 0xffffffffffffff24, &(0x7f00000005c0)={&(0x7f0000000700)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002abd7000fbdbdf250400000005000a0000000000080001"], 0x3c}, 0x1, 0x0, 0x0, 0x26040041}, 0x40) 1.892898113s ago: executing program 1 (id=2679): clock_settime(0x0, &(0x7f0000000240)={0x77359400}) clock_adjtime(0x0, &(0x7f0000000640)={0x7, 0x9, 0x380000, 0x8, 0xfffffffffffffff9, 0xfffffffffffffff7, 0x9, 0x0, 0xae, 0x6, 0x7, 0x4, 0xfffffffffffff04f, 0x7, 0x80000000, 0xfffffffffffffff8, 0xffffffffffffffff, 0x6, 0x0, 0x100, 0x4, 0x2, 0x5, 0x3, 0x8, 0x8}) 1.673480666s ago: executing program 0 (id=2681): r0 = socket$packet(0x11, 0x2, 0x300) mmap(&(0x7f0000ff0000/0x10000)=nil, 0x100ef, 0x7fa962bfffff, 0x13012, r0, 0x0) 1.592757487s ago: executing program 1 (id=2683): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00', r0}, 0x18) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=@newtaction={0x18, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x6a00}, [{0x4}]}, 0x18}}, 0x0) r1 = socket$inet6(0xa, 0x80002, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2a8, 0x0, 0x940c, 0x3002, 0x0, 0x2c0, 0x328, 0x3d8, 0x3d8, 0x328, 0x3d8, 0x3, 0x0, {[{{@uncond, 0x0, 0xa8, 0xf0, 0x4001}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@loopback, 'virt_wifi0\x00'}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x1, 0xbe, {0x565159d7}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x308) 1.442461889s ago: executing program 0 (id=2685): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000001540)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000e12020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000006fd6850000002d000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10) syncfs(0xffffffffffffffff) 1.225454762s ago: executing program 4 (id=2687): socket$key(0xf, 0x3, 0x2) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0x16c, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x4e21, 0x2, 0x2, 0x0, 0x0, 0x3b, 0x0, 0xee00}, {@in6=@private1, 0xfe, 0x32}, @in6=@dev={0xfe, 0x80, '\x00', 0x1b}, {0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x543}, {0x4, 0x7fffffffffffffff}, {}, 0x70bd28, 0x3500, 0xa, 0x4}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "217d66d38547aa140db8a200000000c538c7cb7a"}}, @encap={0x1c, 0x4, {0x2, 0x4e24, 0x4e24, @in6=@dev={0xfe, 0x80, '\x00', 0x2e}}}]}, 0x16c}, 0x1, 0x0, 0x0, 0x880}, 0x0) 1.185424803s ago: executing program 4 (id=2688): r0 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff) r1 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc2}, &(0x7f00000002c0)={0x0, "6035ae1e0fe721441705322225930e6c1e3e2a51a92fd780bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6a7ef54e6763fd7264c39ea00c508ba6062696138", 0x18}, 0x48, 0xfffffffffffffffe) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd120000000000008500000006000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad0093c59d66b5ece9f36c70d0ff5b14104fe62cc60e413905ea23c22624c9f87f9793f50bb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289d01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf2364149215108333719acd97cfa107d40224edc5465a93df8513a32ec450bebc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb076719237c8d0e60b0eea24492a660583eecdbf5bcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe511195418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4929330142ba11de6c5d50b83bae613402216b5054d1e7c13b1355d6f4a8245ffa4997da8c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff8a326eea31ae4e0f7505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000dd11e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15f2a169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffff7f000010000000000000905ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400bee3dfc8fb24f67c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341b74abaa7c95900fca0493cf29b33dcc9ffffffffffffffd39fec2271ff01589646efd1cf870cd7bb232bbdb9dc33cbd7643866fde41f94290c2a5ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595270fb4021428ce970275d13b78100788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f76dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d2e959efc71f665c4d75cf2458e3322c9062ece84c99a061997a20639b41c8c12ee86c50804042b3eac1f879b136345cf67ca3fb5aac518a75f9e7d7101d5e186c489b3a06fb99f0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f4df90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d164118e4cbe02400000000ff0700000000cc9d8046c216c1f895778cb25122a2a998de44aeadea2a40da8daccf080842a4867217373934bbd42dcb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcd62981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99b355b72d538ba495aea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b60000000000001700d6d5210d7560eb92d6a97a27602b81f76386f1535b1fad6ec9a31137abf9a404abde7750898b1bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294059323e7a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd704e4214de5946932d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854356cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505466ac96e0d4b3bc19faa5449209b083dbd334b47f067bbab40743b2a428f1da1fc8df75cf43f8ecc8d3726602111b40e761fd21081920382f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1785eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945e20fa26b8471d42645288d7226bbd9c9e9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba891cea599b079b4b4ba686fcdf240430a537a395dc73bda367bf12cb7d81691a5fe8c47be2f5656a297e9df0e71f96756ea5cce7daac4be290159f6bcd75f0dda9de5532e71ae9e48b0ed1254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b70ebc660309e1e245b0fd78f9743af932cd6db49a47613808bad959719c0000000000378a921c7f7f6933c2e24c7e800003c9e8095e02985f28de0bbc76d58dd92606b1ef6486c85fa3e678f66422436f949e2ab8f162d7e3f855e378f4a1f40b0c6fb2d4b205a800b6968d12418a4d2a0d086d8438d415d713acebc5b014e61a543a5a391f03daca80f08f0e3b1a569e7397f6cafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e112645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd7a4d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f463db88d377442e1349acaf766218b54a9d624778e1c4cba6e6390a9f302c6eb2df7766411bef0ebb5000000000006065d6735eb7a00e127c000000000000000000000000000000a1c3da144589dcaddb71cf9374843e23f992a237a9040747e0434a8a643990b4059a98411ce867d1af7e8ea89f49e6f564d4dce8a7d6939a9214a7f39e83bd247e03a09dba000000000000000000000000aaf033d47249c8444bc13844cbf1be617d82b269e5ea0c0d525603c0ec543ea581f63893ae414a6683e941fdbdff03cfc5f8744583c0aa766a65321f907927a59d75b47f06895e8471ebc2840ce5bd054df223fb09b9c739ad64cfcfd2d498b0f11056f6c40874cb977c99b6bc1a8732198a17e610082b7ce0365f271b11d4b4a3d4c7d0bb273f406ecd4b26c93151c30f5a269991402d109becb1b9bafcb2b47e940000000000e540d8b0db3774effb7469a21f96e2594b2973ebf7a1bd9ace2ed4d6eb1735f85885be5be74dc2ea5d7d499bd28271b98f187f5879b16b409a04d78175cc8d0f707c822805d7011ed4b22419186dd2b22aadf15828db2ca19d79e1bf2f7989237ee5cb2e1eb7b2bfc92d3aa95a26f060935c4fee8b2d7d0bf3c6d82d04329164bd4ee0b8060183f36762b0440d9082d7c8b06e4c2024f77e1018758d28e7ee290f32a48bfc2aa10b3dba9bff00d2410f3477a8e0df689c880dc9a677cfaa16603527c06625a3363744cea5f2d350224cc0fea76c72ca08507235c67346722f20690fde0790f040f5fd3eff75f9b291cc5e9c686ebaadbe756c6fa039ff441e427ed12578d5cb041ebf729cfaa575cc852fbdb54e60435e6d62b9d270433b220ed9ff1ff042b8d3d866231c460765"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x1f) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) keyctl$KEYCTL_MOVE(0x4, r1, r0, r0, 0x0) keyctl$chown(0x4, r1, 0x0, 0x0) 1.133727563s ago: executing program 0 (id=2689): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c) listen(r1, 0x6) syz_emit_ethernet(0x56, &(0x7f0000000340)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x20, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x8, 0x2, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x3f}]}}}}}}}}, 0x0) 1.051482594s ago: executing program 2 (id=2690): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x52, &(0x7f0000000080)={0x0, 0x8b45, 0x4, 0x0, 0x3d8}, &(0x7f0000ff0000), 0x0) mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000) 949.352476ms ago: executing program 1 (id=2691): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000010000000800000008"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000002540)={{r1}, &(0x7f00000024c0), &(0x7f0000002500)}, 0x20) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) listen(r3, 0x100000) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000001800)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd6000000000180400fc020000000000000000000000000000ff020000000000000000000000000001"], 0x0) 948.893596ms ago: executing program 0 (id=2692): r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) ioctl$SG_IO(r0, 0x2285, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) write$sndseq(r1, &(0x7f0000000180)=[{0x0, 0x80, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x8, @time, {}, {}, @quote}], 0x38) write$sndseq(r1, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"448cc880fe353ca0f2c2e953"}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @connect}], 0xc4) write$sndseq(r1, &(0x7f0000000640)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {0x8}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @addr}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control={0x6, 0x7fff, 0x8}}, {0x0, 0x0, 0x0, 0x0, @time={0xffffff81}, {}, {}, @time=@time}], 0xc4) write$sndseq(r1, &(0x7f0000002840)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @addr}], 0x54) write$sndseq(r1, &(0x7f0000000300)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @result={0x0, 0xfffffffd}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {0x2}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @queue}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @queue={0x1, {0xfffffff8, 0x6}}}, {0x80, 0x0, 0x0, 0x0, @time, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time=@time}], 0xc4) write$sndseq(r1, &(0x7f0000000a40)=[{0x0, 0x0, 0x0, 0x0, @time}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @queue}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @queue}], 0x8c) write$sndseq(r0, &(0x7f0000000000)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @addr}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control}], 0x54) write$sndseq(r1, &(0x7f0000000f80)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @queue}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @addr}, {}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @quote}], 0xc4) write$sndseq(r1, &(0x7f00000000c0)=[{0x0, 0x0, 0x0, 0x0, @time, {}, {}, @queue}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time=@time}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @result}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time}], 0x8c) write$sndseq(r1, &(0x7f0000000740)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time=@time}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @queue}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @result}], 0x8c) write$sndseq(r1, &(0x7f0000000b00)=[{}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"b5f8fbe8c20c855083221c33"}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @addr}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @ext={0x0, 0x0}}], 0xa8) write$sndseq(r1, &(0x7f00000004c0)=[{0x81, 0x80, 0x2, 0x4, @time={0x8, 0x5}, {0x3, 0x31}, {0xff, 0x7f}, @queue={0x80, {0x8, 0x4}}}, {0x8, 0x2, 0x8f, 0x6, @time={0x3, 0x1cddab93}, {0x0, 0x6e}, {0xf2, 0x30}, @addr={0x9, 0x1}}, {0x8, 0x7, 0x0, 0xe3, @time={0x200, 0x9}, {0x8}, {0x6, 0x1}, @raw8={"7aa27555b79e43403e7fa600"}}, {0x0, 0x7, 0x3, 0x6, @time={0x0, 0x7}, {0x8, 0xfd}, {0x93, 0x80}, @queue={0x14, {0x10, 0x80}}}, {0x6, 0x8, 0x3, 0x40, @tick=0xf6, {0x2, 0x8}, {0x3}, @ext={0x0, 0x0}}, {0xba, 0x6, 0x54, 0x7, @time={0xe5b, 0x10001}, {0x80, 0x8}, {0x2, 0x7f}, @control={0x5, 0x40, 0x5}}, {0x3, 0xc, 0x4, 0x6, @time={0x6, 0x1}, {0x10, 0x4}, {0x8, 0xa}, @raw8={"80408bcf99ee1216e4e59519"}}, {0xd2, 0x5, 0xd9, 0x0, @time={0x8, 0x4}, {0x54, 0x6}, {0x8, 0x8}, @result={0x5, 0x6}}, {0xcf, 0x1, 0xff, 0x5, @tick=0x9, {0x4, 0xb3}, {0x80, 0xd}, @control={0x66, 0x800, 0x3}}], 0xfc) write$sndseq(r1, &(0x7f0000000800)=[{0x0, 0x0, 0x0, 0x0, @time={0xb, 0x3}, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}, {0x0, 0x0, 0x0, 0x0, @time, {}, {0x0, 0xe7}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @time=@time}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw8={"ce274516c7da5b6da0b16993"}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"b134b141793d8609365bda4d"}}, {}], 0xfc) 923.088466ms ago: executing program 4 (id=2693): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000001000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000000)={[{@noquota}, {@errors_remount}, {@barrier_val={'barrier', 0x3d, 0x9}}, {@nolazytime}]}, 0xfe, 0x275, &(0x7f0000000980)="$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") mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x8000, &(0x7f0000001dc0)={0xf}, 0x20) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000240000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000005c0)='kmem_cache_free\x00', r0, 0x0, 0xffffffffffffffff}, 0x18) uname(&(0x7f0000000300)=""/10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0) open_by_handle_at(r1, &(0x7f0000000240)=@reiserfs_2={0x8, 0x2, {0xb}}, 0x0) 817.987938ms ago: executing program 2 (id=2694): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0xfffffffc, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000080)=0x474c, 0x4) connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e22, @dev={0xac, 0x14, 0x14, 0x33}}, 0x10) sendmmsg(r2, &(0x7f0000007fc0), 0x2d, 0x0) recvmmsg(r2, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0}, 0x2e}], 0x1, 0x45833af92e4b39ff, 0x0) 737.427319ms ago: executing program 1 (id=2695): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0) fcntl$lock(r0, 0x26, &(0x7f0000000000)={0x1}) fcntl$lock(r0, 0x25, &(0x7f00000000c0)={0x2, 0x0, 0xd7, 0x200000002000}) 675.52725ms ago: executing program 4 (id=2697): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0) sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000040)=[{&(0x7f0000000100)='a', 0x1}], 0x1, &(0x7f0000000000)=[@sndrcv={0x30, 0x84, 0x1, {0x0, 0x0, 0xc}}], 0x30}], 0x1, 0x0) 654.33748ms ago: executing program 2 (id=2698): socket$key(0xf, 0x3, 0x2) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0x16c, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x4e21, 0x2, 0x2, 0x0, 0x0, 0x3b, 0x0, 0xee00}, {@in6=@private1, 0xfe, 0x32}, @in6=@dev={0xfe, 0x80, '\x00', 0x1b}, {0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x543}, {0x4, 0x7fffffffffffffff}, {}, 0x70bd28, 0x3500, 0xa, 0x4}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "217d66d38547aa140db8a200000000c538c7cb7a"}}, @encap={0x1c, 0x4, {0x2, 0x4e24, 0x4e24, @in6=@dev={0xfe, 0x80, '\x00', 0x2e}}}]}, 0x16c}, 0x1, 0x0, 0x0, 0x880}, 0x0) 473.362423ms ago: executing program 1 (id=2699): r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x7800, 0x8000, 0x1, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x3, 0x0, 0x0, 0x0, 0x0, @dev, @private=0x10000}}}}) getsockopt$inet_mtu(r0, 0x0, 0xa, 0x0, 0x0) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000000)={'ip_vti0\x00', r1, 0x8000, 0x8, 0x5058, 0x2, {{0x7, 0x4, 0x0, 0x3, 0x1c, 0x65, 0x0, 0x7, 0x2f, 0x0, @empty, @local, {[@ra={0x94, 0x4, 0x1}, @ra={0x94, 0x4}]}}}}}) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f3, &(0x7f0000000940)={'syztnl0\x00', &(0x7f0000000140)={'gre0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0xfffffffffffffdf0, 0x0, 0x0, 0x0, 0x4, 0x0, @local, @broadcast}}}}) r2 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000000)={'vxcan0\x00', 0x0}) bind$can_raw(r2, &(0x7f00000000c0)={0x1d, r3}, 0x10) setsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000001040)={{{@in6=@rand_addr=' \x01\x00', @in=@loopback, 0x4e22, 0x9, 0x4e24, 0x6, 0x2, 0x0, 0x80, 0x0, r3, 0xffffffffffffffff}, {0x800, 0xc4b, 0x4, 0x1, 0x5, 0xfff, 0x5599b6f, 0x400}, {0xa, 0x9, 0x3, 0x400}, 0x5, 0x6e6bb0, 0x1, 0x1, 0x2, 0x3}, {{@in=@empty, 0x4d6, 0x33}, 0x2, @in6=@empty, 0x3506, 0x4, 0x2, 0x7, 0x5, 0x8, 0x2}}, 0xe8) 473.037063ms ago: executing program 4 (id=2700): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0x7, &(0x7f0000000040)=@framed={{0x18, 0x8}, [@func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, @exit], {0x95, 0x0, 0xff85}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) 447.501993ms ago: executing program 2 (id=2701): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000e868495fb58d00b6ad1f50ad32d6ad25dfd73a015e0ca6a0f68a7d007dc6751dfb265a0e3ccae669e173a64bc1cfd514600650a58f145ff1205fc9ddaa275e687d452d64e7cc957d77578f4c25235138d5521f9453559c35da860e8efbc64e57cbb7aee976f2b54421eed73d5661cfeecf9c66c54c3b3ffe1b4ce25d7c983cd44c05bd0a48dfe3e26e7a23129d6606ed28a69989d552af6d9a9df2c3af36e0360070011bbecc2f4a3799af2551ce935b0f327cb3f011a7d06602e2fd5234712596b696418f163d1a1a83109753f54b21cd027edd68149ee99eebc6f7d6dd4aed4af7588c8e1b44ccb19e810879b81a7000000e7ffffff00000000d7900a820b63278f4e9a217b98ef7042ad2a928903000000cbe43a1ed25268816b00000000000009d27d753a30a147b24a48435bd8a568669596e9e0867958e1dd7a0defb6670c06054002238260000000000040587c1ed797aa21a38e1e389f640a0b8b0000000000a835ad0f61ba739cd0c31b05c00fba8a4aee676d7caa2e53b91a68ff2e60da7b01a2e5785a238afa4aba70c08b0d71b6f72d6a8d87fb08533d97ad96d3943c4cc8306dac433a5cdf78b04963d679d5a5d07e618a1ef9057fec00f9e93021f5a8d30e716de8cde9c6000000000c3b64d10f0939b42b33ab2a8717096c58bb3bb1d457d8bb96870f5a7e2ba31fd69bb80235d957eaa9a40b764e5381ffa604aaafb76a980e72b408f686b185736693089213b4e140f8f38e5589663115093889deb646122a5dc5a9e5ba4d37749a36b880110e2bf524b79bc91105f1d3f7d0de694a9417d68694f17ba5e27ea1cec518b93fadcfe0de010ae9be3273ff73c34b5695080a35bfa5c69e3b533e1b939c81b3beda037b7191cb0000000000000000000010e5d683b8938db5c305cf7e6e62a6890ba9e1f4ee64f8202b59de5036569febfaa95f4633db108b2f786333ec7bacc927f4a1785165b5d2444b4c022bb5cff472e6a0c8ee9d6d8df83b704669147b732ac508c9b9f0ca0a1ce45319d43d4643eb285835daf2065b57bebd61ad6671296c27253a5f9688d57c91ccd40ffe2dbc5dd1613a2e6f5b363cc8d205ce6ef3c3c6ded7dd3dfdb39008d8997213f68cdc971c1d6fdacb7729a5560880a77525e9cfb94ef1735dfe74e6b948697f7e3580436b532a82e315d56b17a5dba98436cc24babaae409f0aab0b40af116001bc85492455956e853ead08b5793d4ecf72378a3dfd9cc837b1c66212d9a2be8fd6341c2f837c7fe09924a51ec42912856cce3d3b2d092c80813aad03e1e63a655f4138730f302df339f30a4fbd453c9a0fba381d071ad7cb80a52bec572e29b0b9b55c235806b97e166609f8083ce776075c"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x416d, 0x0) 281.214926ms ago: executing program 4 (id=2702): r0 = socket$nl_route(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00'}, 0x10) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000001c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x10000}, 0x18) sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'veth0_macvtap\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x200, {0x0, 0x0, 0x0, r3, {0xfff2}, {}, {0x9}}}, 0x24}}, 0x0) 177.341177ms ago: executing program 2 (id=2703): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f0000002380)='net/ip_mr_cache\x00') pread64(r1, 0x0, 0x0, 0xadc) 0s ago: executing program 2 (id=2704): sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=ANY=[@ANYBLOB="0500000001ea2f3352c9a24cfb", @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64], 0x20000600}}, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c020000190001000100000000000000fc0200000000000000000000000000000000000000000000000000000000000000000003000000000a0000005e000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000800000000000000000000000000000300000000000000000000000000000000000000000000000300000000000000070000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000084010500ac1414bb000000000000000000000000000000006c00000000000000e0000001000000000000000000000000000000000000ff00000000000000000001000000ac141419000000000000000000000000000000003200000000000000fe8000000000000000000000000000bb023500000000000000000000000000000000000000000000000000000000000000000001000000003c00000002000000ac1414bb0000000000000000000000000000000001030000000000000000000000000000ff020000000000000000000000000001000004d33c00000002000000ffffffff0000000000000000000000000000000000000000000000000300"/391], 0x23c}}, 0x0) kernel console output (not intermixed with test programs): 04" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 249.746154][ T26] kauditd_printk_skb: 1 callbacks suppressed [ 249.747732][ T26] audit: type=1326 audit(1750415064.219:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7763 comm="syz.2.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 249.945851][ T26] audit: type=1326 audit(1750415064.219:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7763 comm="syz.2.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 249.968305][ T26] audit: type=1326 audit(1750415064.319:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7763 comm="syz.2.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 249.990718][ T26] audit: type=1326 audit(1750415064.319:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7763 comm="syz.2.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 250.158182][ T26] audit: type=1326 audit(1750415064.319:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7763 comm="syz.2.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 250.321784][ T26] audit: type=1326 audit(1750415064.419:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7763 comm="syz.2.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 250.371847][ T26] audit: type=1326 audit(1750415064.419:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7763 comm="syz.2.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 250.438976][ T7783] device batadv_slave_0 entered promiscuous mode [ 250.445031][ T26] audit: type=1326 audit(1750415064.419:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7763 comm="syz.2.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 250.480399][ T7783] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1220'. [ 250.537385][ T7783] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 250.550203][ T26] audit: type=1326 audit(1750415064.419:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7763 comm="syz.2.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 250.650344][ T26] audit: type=1326 audit(1750415064.419:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7763 comm="syz.2.1214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 250.742598][ T7791] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1224'. [ 250.851773][ T7783] device batadv_slave_0 left promiscuous mode [ 250.921123][ T7783] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 251.417026][ T7808] serio: Serial port ptm0 [ 252.376450][ T7820] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1234'. [ 255.562879][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.569317][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.634172][ T7884] syz.1.1257[7884] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 255.634275][ T7884] syz.1.1257[7884] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 256.542987][ T7886] device bond0 entered promiscuous mode [ 256.596183][ T7893] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1260'. [ 256.620322][ T7886] device bond_slave_0 entered promiscuous mode [ 256.637495][ T7886] device bond_slave_1 entered promiscuous mode [ 256.669485][ T7886] device dummy0 entered promiscuous mode [ 257.872434][ T26] kauditd_printk_skb: 115 callbacks suppressed [ 257.872454][ T26] audit: type=1326 audit(1750415072.389:1116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7899 comm="syz.0.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 258.220652][ T26] audit: type=1326 audit(1750415072.389:1117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7899 comm="syz.0.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 258.404417][ T26] audit: type=1326 audit(1750415072.489:1118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7899 comm="syz.0.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 258.451048][ T26] audit: type=1326 audit(1750415072.489:1119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7899 comm="syz.0.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 258.524683][ T26] audit: type=1326 audit(1750415072.489:1120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7899 comm="syz.0.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 258.587071][ T26] audit: type=1326 audit(1750415072.579:1121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7899 comm="syz.0.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 258.653498][ T26] audit: type=1326 audit(1750415072.579:1122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7899 comm="syz.0.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 258.721280][ T26] audit: type=1326 audit(1750415072.579:1123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7899 comm="syz.0.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 258.896359][ T26] audit: type=1326 audit(1750415072.589:1124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7899 comm="syz.0.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 259.108578][ T7925] serio: Serial port ptm0 [ 259.901283][ T26] audit: type=1326 audit(1750415072.589:1125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7899 comm="syz.0.1263" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 260.141357][ T7935] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1275'. [ 260.574633][ T7942] xt_hashlimit: size too large, truncated to 1048576 [ 260.843394][ T7952] syz.2.1282[7952] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 260.843503][ T7952] syz.2.1282[7952] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 261.649565][ T7957] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1283'. [ 262.740606][ T7966] loop2: detected capacity change from 0 to 2048 [ 262.759844][ T7966] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 262.776466][ T7966] EXT4-fs (loop2): shut down requested (0) [ 263.033566][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 263.437519][ T7971] lo speed is unknown, defaulting to 1000 [ 263.458537][ T7971] lo speed is unknown, defaulting to 1000 [ 263.483116][ T7977] loop1: detected capacity change from 0 to 2048 [ 263.516485][ T7971] lo speed is unknown, defaulting to 1000 [ 263.562012][ T7971] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 263.631624][ T7971] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 263.730161][ T7971] lo speed is unknown, defaulting to 1000 [ 263.770719][ T7971] lo speed is unknown, defaulting to 1000 [ 263.800470][ T7971] lo speed is unknown, defaulting to 1000 [ 263.828543][ T7971] lo speed is unknown, defaulting to 1000 [ 263.846712][ T7971] lo speed is unknown, defaulting to 1000 [ 263.882155][ T7971] lo speed is unknown, defaulting to 1000 [ 263.892222][ T7971] lo speed is unknown, defaulting to 1000 [ 264.371064][ T26] kauditd_printk_skb: 66 callbacks suppressed [ 264.371079][ T26] audit: type=1326 audit(2000000000.920:1192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7995 comm="syz.3.1297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 264.478102][ T26] audit: type=1326 audit(2000000000.960:1193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7995 comm="syz.3.1297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 264.574584][ T26] audit: type=1326 audit(2000000000.960:1194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7995 comm="syz.3.1297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 264.651264][ T26] audit: type=1326 audit(2000000000.960:1195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7995 comm="syz.3.1297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 264.731265][ T26] audit: type=1326 audit(2000000000.970:1196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7995 comm="syz.3.1297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 264.816463][ T26] audit: type=1326 audit(2000000000.970:1197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7995 comm="syz.3.1297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 264.921426][ T26] audit: type=1326 audit(2000000000.970:1198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7995 comm="syz.3.1297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 264.979848][ T26] audit: type=1326 audit(2000000000.970:1199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7995 comm="syz.3.1297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 265.063696][ T26] audit: type=1326 audit(2000000000.970:1200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7995 comm="syz.3.1297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 265.152685][ T26] audit: type=1326 audit(2000000000.970:1201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7995 comm="syz.3.1297" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 265.419934][ T8024] loop3: detected capacity change from 0 to 512 [ 265.559469][ T8024] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 265.621473][ T8024] ext4 filesystem being mounted at /273/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 265.699619][ T8024] EXT4-fs (loop3): re-mounted. Quota mode: writeback. [ 265.740519][ T8030] loop2: detected capacity change from 0 to 512 [ 265.842862][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 265.844046][ T8030] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 265.921666][ T8030] ext4 filesystem being mounted at /247/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 266.341900][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 266.345146][ T8044] loop4: detected capacity change from 0 to 1024 [ 266.515883][ T8044] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 266.595140][ T8049] loop3: detected capacity change from 0 to 1764 [ 266.624924][ T8044] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 267.012323][ T8067] netlink: '+}[@': attribute type 21 has an invalid length. [ 267.036979][ T8067] netlink: 100 bytes leftover after parsing attributes in process `+}[@'. [ 267.288848][ T8079] loop1: detected capacity change from 0 to 512 [ 267.350144][ T8079] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 267.365855][ T8079] ext4 filesystem being mounted at /66/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 267.436805][ T8085] loop2: detected capacity change from 0 to 1024 [ 267.467651][ T8085] EXT4-fs: Ignoring removed nomblk_io_submit option [ 267.491122][ T8079] EXT4-fs error (device loop1): ext4_do_update_inode:5253: inode #2: comm syz.1.1328: corrupted inode contents [ 267.516762][ T8079] EXT4-fs error (device loop1): ext4_dirty_inode:6118: inode #2: comm syz.1.1328: mark_inode_dirty error [ 267.540841][ T8079] EXT4-fs error (device loop1): ext4_do_update_inode:5253: inode #2: comm syz.1.1328: corrupted inode contents [ 267.566452][ T8079] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz.1.1328: mark_inode_dirty error [ 267.570263][ T4263] EXT4-fs (loop4): unmounting filesystem. [ 267.593197][ T8085] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 267.738261][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 268.193405][ T6858] EXT4-fs (loop1): unmounting filesystem. [ 268.214707][ T8103] loop2: detected capacity change from 0 to 764 [ 268.734053][ T8120] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 269.932460][ T8139] lo speed is unknown, defaulting to 1000 [ 270.039350][ T26] kauditd_printk_skb: 119 callbacks suppressed [ 270.040846][ T26] audit: type=1326 audit(2000000006.380:1321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.3.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 270.414419][ T26] audit: type=1326 audit(2000000006.380:1322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.3.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 270.528398][ T26] audit: type=1326 audit(2000000006.480:1323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.3.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 270.566799][ T8147] loop2: detected capacity change from 0 to 1024 [ 270.573614][ T8148] netlink: 1068 bytes leftover after parsing attributes in process `syz.4.1353'. [ 270.584682][ T8147] EXT4-fs: Ignoring removed nobh option [ 270.591051][ T8147] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 270.663040][ T26] audit: type=1326 audit(2000000006.480:1324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.3.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 270.696748][ T26] audit: type=1326 audit(2000000006.480:1325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.3.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 270.702578][ T8147] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 270.727100][ T26] audit: type=1326 audit(2000000006.580:1326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.3.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 270.751757][ T8151] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1355'. [ 270.752751][ T26] audit: type=1326 audit(2000000006.580:1327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.3.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 270.784714][ T26] audit: type=1326 audit(2000000006.580:1328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.3.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 270.825908][ T26] audit: type=1326 audit(2000000006.580:1329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.3.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 270.939182][ T26] audit: type=1326 audit(2000000006.580:1330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.3.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 270.982314][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 271.749917][ T8190] loop1: detected capacity change from 0 to 128 [ 272.543630][ T8209] loop2: detected capacity change from 0 to 128 [ 272.554162][ T8207] loop1: detected capacity change from 0 to 512 [ 272.574265][ T8207] EXT4-fs: Ignoring removed nomblk_io_submit option [ 272.585902][ T8209] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 272.615620][ T8207] EXT4-fs: Ignoring removed nomblk_io_submit option [ 272.625544][ T8209] ext4 filesystem being mounted at /267/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 272.723440][ T8207] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 272.751561][ T8207] ext4 filesystem being mounted at /74/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 272.898223][ T6858] EXT4-fs (loop1): unmounting filesystem. [ 274.090318][ T8244] loop4: detected capacity change from 0 to 2048 [ 274.142219][ T8247] netlink: 'syz.0.1389': attribute type 4 has an invalid length. [ 274.162570][ T8244] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 274.209030][ T8244] ext4 filesystem being mounted at /269/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 274.218343][ T8247] netlink: 'syz.0.1389': attribute type 4 has an invalid length. [ 274.316852][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 274.458129][ T8243] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1386'. [ 275.548719][ T8252] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1388: bg 0: block 345: padding at end of block bitmap is not set [ 275.686059][ T8252] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 276.162836][ T26] kauditd_printk_skb: 47 callbacks suppressed [ 276.162852][ T26] audit: type=1326 audit(2000000012.720:1378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8301 comm="syz.0.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 276.215287][ T26] audit: type=1326 audit(2000000012.750:1379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8301 comm="syz.0.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 276.282325][ T26] audit: type=1326 audit(2000000012.750:1380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8301 comm="syz.0.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 276.391930][ T26] audit: type=1326 audit(2000000012.750:1381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8301 comm="syz.0.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 276.450922][ T26] audit: type=1326 audit(2000000012.750:1382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8301 comm="syz.0.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 276.524860][ T26] audit: type=1326 audit(2000000012.750:1383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8301 comm="syz.0.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 276.562038][ T8300] loop1: detected capacity change from 0 to 8192 [ 276.603162][ T26] audit: type=1326 audit(2000000012.750:1384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8301 comm="syz.0.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 276.617503][ T8300] loop1: p1 p3 p4 [ 276.640287][ T8300] loop1: p1 size 8390912 extends beyond EOD, truncated [ 276.824790][ T26] audit: type=1326 audit(2000000012.750:1385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8301 comm="syz.0.1407" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 277.052287][ T8300] loop1: p3 size 589824 extends beyond EOD, truncated [ 278.165087][ T8330] loop2: detected capacity change from 0 to 128 [ 278.202807][ T26] audit: type=1800 audit(2000000014.760:1386): pid=8330 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1420" name="file2" dev="loop2" ino=1048599 res=0 errno=0 [ 278.206117][ T8330] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 278.259306][ T8330] FAT-fs (loop2): Filesystem has been set read-only [ 278.276976][ T8330] syz.2.1420: attempt to access beyond end of device [ 278.276976][ T8330] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 278.299308][ T8330] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 278.307603][ T8330] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 278.354418][ T8330] syz.2.1420: attempt to access beyond end of device [ 278.354418][ T8330] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 278.391363][ T8330] syz.2.1420: attempt to access beyond end of device [ 278.391363][ T8330] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 278.441374][ T8330] syz.2.1420: attempt to access beyond end of device [ 278.441374][ T8330] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 278.488773][ T8337] loop1: detected capacity change from 0 to 128 [ 278.497904][ T8337] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 278.514618][ T8337] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 278.533467][ T8332] syz.2.1420: attempt to access beyond end of device [ 278.533467][ T8332] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 278.560701][ T8337] 9pnet_fd: Insufficient options for proto=fd [ 278.573247][ T8330] syz.2.1420: attempt to access beyond end of device [ 278.573247][ T8330] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 278.592785][ T8330] syz.2.1420: attempt to access beyond end of device [ 278.592785][ T8330] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 278.637590][ T8332] syz.2.1420: attempt to access beyond end of device [ 278.637590][ T8332] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 278.676343][ T8330] syz.2.1420: attempt to access beyond end of device [ 278.676343][ T8330] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 278.708405][ T26] audit: type=1326 audit(2000000015.260:1387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8343 comm="syz.0.1425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 278.716174][ T8332] syz.2.1420: attempt to access beyond end of device [ 278.716174][ T8332] loop2: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 279.018014][ T8350] syz.1.1428[8350] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 279.018157][ T8350] syz.1.1428[8350] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 279.496495][ T4263] EXT4-fs (loop4): unmounting filesystem. [ 279.756495][ T8368] loop1: detected capacity change from 0 to 1024 [ 279.772154][ T8368] EXT4-fs: Ignoring removed orlov option [ 279.815151][ T8368] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 279.964360][ T8380] loop3: detected capacity change from 0 to 1024 [ 280.011319][ T8380] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 280.140825][ T8392] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1446'. [ 280.204956][ T8395] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1444'. [ 280.240549][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 280.819722][ T8416] netlink: 'syz.0.1457': attribute type 9 has an invalid length. [ 280.843405][ T8416] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1457'. [ 280.870317][ T8414] loop2: detected capacity change from 0 to 8192 [ 281.267695][ T6858] EXT4-fs (loop1): unmounting filesystem. [ 281.422412][ T8423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1455'. [ 281.450869][ T8423] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 281.478767][ T8423] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 281.807168][ T8445] netlink: 'syz.0.1469': attribute type 3 has an invalid length. [ 281.850256][ T8445] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1469'. [ 281.994975][ T4337] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 282.011940][ T4337] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 282.017734][ T26] kauditd_printk_skb: 24 callbacks suppressed [ 282.017752][ T26] audit: type=1326 audit(2000000018.570:1412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8455 comm="syz.0.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 282.021050][ T8454] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22 [ 282.035336][ T26] audit: type=1326 audit(2000000018.580:1413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8455 comm="syz.0.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 282.053506][ T4337] hid-generic 0003:0004:0000.0002: unknown main item tag 0x0 [ 282.068662][ T8457] xt_hashlimit: max too large, truncated to 1048576 [ 282.085103][ T8454] netdevsim netdevsim4: Direct firmware load for . failed with error -22 [ 282.105940][ T4337] hid-generic 0003:0004:0000.0002: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 282.115341][ T26] audit: type=1326 audit(2000000018.590:1414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8455 comm="syz.0.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 282.120905][ T8454] netdevsim netdevsim4: Falling back to sysfs fallback for: . [ 282.169920][ T26] audit: type=1326 audit(2000000018.590:1415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8455 comm="syz.0.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 282.232022][ T26] audit: type=1326 audit(2000000018.590:1416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8455 comm="syz.0.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 282.267527][ T26] audit: type=1326 audit(2000000018.590:1417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8455 comm="syz.0.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 282.296516][ T26] audit: type=1326 audit(2000000018.610:1418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8455 comm="syz.0.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 282.326274][ T26] audit: type=1326 audit(2000000018.610:1419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8455 comm="syz.0.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 282.375312][ T26] audit: type=1326 audit(2000000018.610:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8455 comm="syz.0.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 282.402730][ T8466] loop3: detected capacity change from 0 to 164 [ 282.419217][ T8469] hub 6-0:1.0: USB hub found [ 282.419345][ T8466] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 282.440398][ T8469] hub 6-0:1.0: 1 port detected [ 282.452516][ T26] audit: type=1326 audit(2000000018.610:1421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8455 comm="syz.0.1475" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 283.041776][ T8493] loop3: detected capacity change from 0 to 1024 [ 283.048998][ T8493] EXT4-fs: Ignoring removed orlov option [ 283.103656][ T8493] EXT4-fs: Ignoring removed nomblk_io_submit option [ 283.233220][ T8493] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 283.335607][ T8510] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1492'. [ 283.382844][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 284.834311][ T8533] lo speed is unknown, defaulting to 1000 [ 285.091012][ T8533] mmap: syz.1.1497 (8533) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 286.535516][ T8565] device wg2 entered promiscuous mode [ 286.553914][ T8567] loop4: detected capacity change from 0 to 128 [ 286.607856][ T8567] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 286.662689][ T8567] FAT-fs (loop4): Filesystem has been set read-only [ 286.669374][ T8567] bio_check_eod: 2489 callbacks suppressed [ 286.669390][ T8567] syz.4.1515: attempt to access beyond end of device [ 286.669390][ T8567] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 286.731074][ T8567] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 286.766984][ T8567] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 286.810652][ T8567] syz.4.1515: attempt to access beyond end of device [ 286.810652][ T8567] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 287.028103][ T26] kauditd_printk_skb: 94 callbacks suppressed [ 287.028120][ T26] audit: type=1326 audit(2000000023.390:1516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8575 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 287.052393][ T8578] lo speed is unknown, defaulting to 1000 [ 287.070065][ T8570] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 287.329181][ T8582] infiniband syz1: set active [ 287.334123][ T8582] infiniband syz1: added veth0_to_team [ 287.412200][ T8583] serio: Serial port ptm0 [ 288.027909][ T8582] RDS/IB: syz1: added [ 288.032171][ T8582] smc: adding ib device syz1 with port count 1 [ 288.038386][ T8582] smc: ib device syz1 port 1 has pnetid [ 288.097553][ T8570] syz.4.1515: attempt to access beyond end of device [ 288.097553][ T8570] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 288.155068][ T26] audit: type=1326 audit(2000000023.390:1517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8575 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 288.186185][ T8570] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 288.192809][ T26] audit: type=1326 audit(2000000023.390:1518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8575 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 288.231334][ T26] audit: type=1326 audit(2000000023.570:1519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8575 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 288.237429][ T8570] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 288.301305][ T26] audit: type=1326 audit(2000000023.570:1520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8575 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 288.361249][ T26] audit: type=1326 audit(2000000023.580:1521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8575 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 288.411373][ T26] audit: type=1326 audit(2000000023.580:1522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8575 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 288.483589][ T26] audit: type=1326 audit(2000000023.580:1523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8575 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 288.525695][ T26] audit: type=1326 audit(2000000023.580:1524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8575 comm="syz.0.1519" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 288.551942][ T8596] Cannot find add_set index 3 as target [ 288.814652][ T8598] loop4: detected capacity change from 0 to 1024 [ 289.188687][ T26] audit: type=1326 audit(2000000024.670:1525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8580 comm="syz.3.1520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 289.743662][ T8603] lo speed is unknown, defaulting to 1000 [ 290.034059][ T8605] loop1: detected capacity change from 0 to 512 [ 290.042156][ T8605] EXT4-fs: Ignoring removed mblk_io_submit option [ 290.048697][ T8605] EXT4-fs: Ignoring removed bh option [ 290.111390][ T8605] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 290.122924][ T8605] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 290.308997][ T8605] EXT4-fs (loop1): 1 truncate cleaned up [ 290.314897][ T8605] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 290.480426][ T8598] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 290.564381][ T8598] ext4 filesystem being mounted at /286/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 290.830111][ T6858] EXT4-fs (loop1): unmounting filesystem. [ 290.904155][ T8620] device wg2 entered promiscuous mode [ 290.945004][ T4263] EXT4-fs (loop4): unmounting filesystem. [ 293.729507][ T26] kauditd_printk_skb: 77 callbacks suppressed [ 293.729523][ T26] audit: type=1326 audit(2000000030.280:1603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 293.784800][ T26] audit: type=1326 audit(2000000030.320:1604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 293.901300][ T26] audit: type=1326 audit(2000000030.320:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8647 comm="syz.0.1542" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 293.994702][ T8654] loop2: detected capacity change from 0 to 1024 [ 294.032462][ T8654] EXT4-fs: Invalid commit interval 67108867, must be smaller than 21474836 [ 294.064816][ T8652] serio: Serial port ptm0 [ 294.523961][ T8654] netlink: 'syz.2.1545': attribute type 21 has an invalid length. [ 294.549679][ T8654] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1545'. [ 294.710192][ T8664] loop3: detected capacity change from 0 to 1024 [ 294.773398][ T8664] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 294.837682][ T8664] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 295.180603][ T8669] loop2: detected capacity change from 0 to 8192 [ 297.777876][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 297.835161][ T26] audit: type=1326 audit(2000000034.310:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8666 comm="syz.2.1549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 297.870457][ T26] audit: type=1326 audit(2000000034.310:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8666 comm="syz.2.1549" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 298.088995][ T8700] loop3: detected capacity change from 0 to 128 [ 298.431490][ T8714] device wg2 entered promiscuous mode [ 298.850387][ T8721] serio: Serial port ptm0 [ 299.355183][ T26] audit: type=1326 audit(2000000035.910:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 299.373309][ T8732] ALSA: seq fatal error: cannot create timer (-22) [ 299.405644][ T8732] loop1: detected capacity change from 0 to 512 [ 299.417679][ T8732] EXT4-fs: Ignoring removed mblk_io_submit option [ 299.424587][ T8732] ext4: Unknown parameter 'seclabel' [ 299.430848][ T26] audit: type=1326 audit(2000000035.910:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 299.465897][ T8734] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 299.476190][ T26] audit: type=1326 audit(2000000035.910:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 299.536483][ T26] audit: type=1326 audit(2000000035.910:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 299.578717][ T8734] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 299.605040][ T26] audit: type=1326 audit(2000000035.910:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 299.646407][ T26] audit: type=1326 audit(2000000035.920:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 299.701917][ T8734] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 299.717661][ T26] audit: type=1326 audit(2000000035.920:1614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 299.770540][ T26] audit: type=1326 audit(2000000035.920:1615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 299.826984][ T26] audit: type=1326 audit(2000000035.920:1616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 299.858100][ T8734] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 299.894150][ T8743] loop3: detected capacity change from 0 to 128 [ 299.902608][ T26] audit: type=1326 audit(2000000035.920:1617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8731 comm="syz.1.1571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 300.009186][ T8734] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.037816][ T8734] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.105776][ T8734] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.135131][ T8734] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 300.137314][ T11] kworker/u4:1: attempt to access beyond end of device [ 300.137314][ T11] loop3: rw=1, sector=145, nr_sectors = 896 limit=128 [ 300.174454][ T8753] x_tables: ip6_tables: mh match: only valid for protocol 135 [ 300.406614][ T8759] device wg2 left promiscuous mode [ 300.748036][ T8776] loop4: detected capacity change from 0 to 128 [ 300.853319][ T8776] syz.4.1587: attempt to access beyond end of device [ 300.853319][ T8776] loop4: rw=2049, sector=145, nr_sectors = 520 limit=128 [ 301.255899][ T8798] tipc: Enabling of bearer rejected, failed to enable media [ 301.269043][ T8783] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 301.277834][ T8783] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 301.285076][ T8783] Bluetooth: hci0: Suspend notifier action (1) failed: -4 [ 301.293129][ T8783] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 301.299253][ T8783] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 301.305559][ T8783] Bluetooth: hci1: Suspend notifier action (1) failed: -4 [ 301.312976][ T8783] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 301.320375][ T8783] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 301.326682][ T8783] Bluetooth: hci3: Suspend notifier action (1) failed: -4 [ 301.343821][ T8783] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 301.350160][ T8783] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 301.358884][ T8783] Bluetooth: hci4: Suspend notifier action (1) failed: -4 [ 301.377164][ T8783] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 301.384718][ T8783] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 301.393614][ T8783] Bluetooth: hci2: Suspend notifier action (1) failed: -4 [ 301.723174][ T8814] random: crng reseeded on system resumption [ 301.783764][ T8809] serio: Serial port ptm0 [ 302.474977][ T8825] device wg2 left promiscuous mode [ 302.696890][ T8830] tipc: Started in network mode [ 302.731365][ T8830] tipc: Node identity 7f000001, cluster identity 4711 [ 302.778637][ T8830] tipc: Enabled bearer , priority 10 [ 303.299129][ T8853] loop3: detected capacity change from 0 to 512 [ 303.311430][ T4258] Bluetooth: hci1: command 0x0c1a tx timeout [ 303.317899][ T4258] Bluetooth: hci0: command 0x0c1a tx timeout [ 303.338924][ T8853] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 303.358386][ T8853] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c0a8, mo2=0002] [ 303.379418][ T8853] System zones: 1-12 [ 303.383490][ T4255] Bluetooth: hci2: command 0x0c1a tx timeout [ 303.383629][ T4255] Bluetooth: hci4: command 0x0c1a tx timeout [ 303.383704][ T4255] Bluetooth: hci3: command 0x0c1a tx timeout [ 303.432722][ T8853] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #11: comm syz.3.1613: missing EA_INODE flag [ 303.503346][ T8853] EXT4-fs (loop3): Remounting filesystem read-only [ 303.530550][ T8853] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.1613: error while reading EA inode 11 err=-117 [ 303.571651][ T8853] EXT4-fs (loop3): Remounting filesystem read-only [ 303.578375][ T8853] EXT4-fs (loop3): 1 orphan inode deleted [ 303.604353][ T8853] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 303.639973][ T8853] EXT4-fs (loop3): unmounting filesystem. [ 303.676265][ T8866] device wg2 entered promiscuous mode [ 303.773576][ T4296] tipc: Node number set to 2130706433 [ 303.821649][ T8870] loop1: detected capacity change from 0 to 256 [ 305.040275][ T8920] loop2: detected capacity change from 0 to 512 [ 305.081818][ T8920] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 305.151384][ T8920] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 305.193133][ T8920] ext4 filesystem being mounted at /317/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 305.297602][ T8920] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #15: comm syz.2.1641: corrupted xattr block 19 [ 305.309051][ T8934] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #15: comm syz.2.1641: corrupted xattr block 19 [ 305.442869][ T4255] Bluetooth: hci0: command 0x0406 tx timeout [ 305.449905][ T48] Bluetooth: hci1: command 0x0406 tx timeout [ 305.461458][ T4258] Bluetooth: hci4: command 0x0406 tx timeout [ 305.467524][ T4258] Bluetooth: hci2: command 0x0406 tx timeout [ 305.519446][ T48] Bluetooth: hci3: command 0x0406 tx timeout [ 305.703784][ T26] kauditd_printk_skb: 114 callbacks suppressed [ 305.703800][ T26] audit: type=1326 audit(2000000042.260:1732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 305.778496][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 305.822738][ T26] audit: type=1326 audit(2000000042.290:1733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 305.890267][ T26] audit: type=1326 audit(2000000042.300:1734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 305.971304][ T26] audit: type=1326 audit(2000000042.300:1735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 305.995436][ T8950] loop2: detected capacity change from 0 to 1024 [ 306.024750][ T26] audit: type=1326 audit(2000000042.300:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 306.048188][ T26] audit: type=1326 audit(2000000042.300:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 306.110080][ T26] audit: type=1326 audit(2000000042.300:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 306.147546][ T26] audit: type=1326 audit(2000000042.300:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 306.166452][ T8950] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 306.170655][ T26] audit: type=1326 audit(2000000042.300:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=224 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 306.207734][ T26] audit: type=1326 audit(2000000042.300:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8938 comm="syz.3.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 306.286766][ T8958] syz.3.1652[8958] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 306.286870][ T8958] syz.3.1652[8958] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 306.308414][ T8960] siw: device registration error -23 [ 306.896616][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 307.200194][ T8970] loop4: detected capacity change from 0 to 512 [ 307.333166][ T8970] EXT4-fs (loop4): 1 orphan inode deleted [ 307.338985][ T8970] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 307.353622][ T4988] EXT4-fs error (device loop4): ext4_release_dquot:6850: comm kworker/u4:10: Failed to release dquot type 1 [ 307.372308][ T8970] ext4 filesystem being mounted at /302/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 307.548735][ T4263] EXT4-fs (loop4): unmounting filesystem. [ 308.462255][ T9018] serio: Serial port ptm0 [ 308.794819][ T9022] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1672'. [ 309.330182][ T9038] loop4: detected capacity change from 0 to 512 [ 309.409520][ T9038] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 309.441498][ T9038] ext4 filesystem being mounted at /308/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 309.555774][ T9050] EXT4-fs (loop4): re-mounted. Quota mode: writeback. [ 309.589578][ T9036] device syzkaller1 entered promiscuous mode [ 309.634462][ T9038] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #2: block 18: comm syz.4.1679: lblock 23 mapped to illegal pblock 18 (length 1) [ 309.698747][ T9038] EXT4-fs (loop4): unmounting filesystem. [ 309.873045][ T9054] 9pnet: Could not find request transport: f [ 310.008692][ T9066] device wg2 entered promiscuous mode [ 310.086999][ T9064] device wg2 left promiscuous mode [ 310.707688][ T9079] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 310.952940][ T9079] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.101907][ T9079] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.270805][ T9079] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 311.482564][ T9079] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 311.531097][ T9079] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 311.607013][ T9079] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 311.628793][ T9107] device wg2 left promiscuous mode [ 312.208553][ T9079] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 312.222386][ T9111] device wg2 entered promiscuous mode [ 312.236178][ T9114] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1702'. [ 312.670514][ T9128] serio: Serial port ptm0 [ 313.348383][ T26] kauditd_printk_skb: 19 callbacks suppressed [ 313.348398][ T26] audit: type=1326 audit(2000000049.900:1760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9149 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 313.387449][ T26] audit: type=1326 audit(2000000049.940:1761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9149 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 313.446544][ T26] audit: type=1326 audit(2000000049.940:1762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9149 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 313.502486][ T26] audit: type=1326 audit(2000000049.940:1763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9149 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 313.558894][ T26] audit: type=1326 audit(2000000049.940:1764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9149 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 313.597792][ T26] audit: type=1326 audit(2000000049.940:1765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9149 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 313.678297][ T26] audit: type=1326 audit(2000000049.940:1766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9149 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 313.726181][ T26] audit: type=1326 audit(2000000049.940:1767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9149 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 313.788330][ T26] audit: type=1326 audit(2000000049.940:1768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9149 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 313.850654][ T26] audit: type=1326 audit(2000000049.940:1769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9149 comm="syz.2.1716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 314.131396][ T9173] bond0: (slave dummy0): Releasing backup interface [ 314.151947][ T9173] device dummy0 left promiscuous mode [ 314.189553][ T9173] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 314.214045][ T9173] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 314.225561][ T9173] device bridge_slave_0 left promiscuous mode [ 314.232303][ T9173] bridge0: port 1(bridge_slave_0) entered disabled state [ 314.247090][ T9173] device bridge_slave_1 left promiscuous mode [ 314.254819][ T9173] bridge0: port 2(bridge_slave_1) entered disabled state [ 314.266240][ T9173] infiniband syz2: set active [ 314.273387][ T9173] bond0: (slave bond_slave_0): Releasing backup interface [ 314.282778][ T9173] device bond_slave_0 left promiscuous mode [ 314.312998][ T9173] bond0: (slave bond_slave_1): Releasing backup interface [ 314.389642][ T9173] device bond_slave_1 left promiscuous mode [ 314.479523][ T9180] serio: Serial port ptm0 [ 314.500943][ T9173] team0: Port device team_slave_0 removed [ 314.538964][ T9173] team0: Port device team_slave_1 removed [ 314.646046][ T9173] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 314.654912][ T9173] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 314.673567][ T9173] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 314.684005][ T9173] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 314.713400][ T4497] infiniband syz2: set down [ 315.099748][ T9201] loop3: detected capacity change from 0 to 1024 [ 315.167556][ T9201] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 315.195821][ T9202] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1733'. [ 315.323941][ T9213] rdma_rxe: rxe_register_device failed with error -23 [ 315.395598][ T9201] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3841: comm syz.3.1735: Allocating blocks 497-513 which overlap fs metadata [ 315.401669][ T9213] rdma_rxe: failed to add team_slave_0 [ 315.585198][ T9221] device wg2 entered promiscuous mode [ 315.647445][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 316.984316][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.064222][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.253028][ T9256] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1752'. [ 317.712649][ T9273] xt_TPROXY: Can be used only with -p tcp or -p udp [ 318.445676][ T26] kauditd_printk_skb: 64 callbacks suppressed [ 318.445693][ T26] audit: type=1326 audit(2000000055.000:1834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 318.475766][ T26] audit: type=1326 audit(2000000055.030:1835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 318.504537][ T26] audit: type=1326 audit(2000000055.030:1836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 318.531050][ T26] audit: type=1326 audit(2000000055.030:1837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9301 comm="syz.1.1774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 319.105297][ T9319] lo speed is unknown, defaulting to 1000 [ 319.117857][ T9326] device wg2 entered promiscuous mode [ 320.076548][ T9339] loop3: detected capacity change from 0 to 2048 [ 320.278160][ T9339] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 320.762818][ T9348] loop2: detected capacity change from 0 to 8192 [ 320.949376][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 321.403464][ T9365] serio: Serial port ptm0 [ 321.600620][ T9372] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1795'. [ 322.064293][ T9381] siw: device registration error -23 [ 323.941969][ T9408] lo speed is unknown, defaulting to 1000 [ 324.339588][ T26] audit: type=1326 audit(2000000060.410:1838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.2.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 324.620905][ T26] audit: type=1326 audit(2000000060.410:1839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.2.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 324.679909][ T26] audit: type=1326 audit(2000000060.510:1840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.2.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 325.047178][ T26] audit: type=1326 audit(2000000060.510:1841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.2.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 325.144257][ T26] audit: type=1326 audit(2000000060.510:1842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.2.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 325.200592][ T26] audit: type=1326 audit(2000000060.610:1843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.2.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 325.253744][ T26] audit: type=1326 audit(2000000060.610:1844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.2.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 325.349951][ T26] audit: type=1326 audit(2000000060.610:1845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.2.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 325.466847][ T26] audit: type=1326 audit(2000000060.710:1846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.2.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 325.605874][ T26] audit: type=1326 audit(2000000060.710:1847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9405 comm="syz.2.1809" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 325.660907][ T9422] netlink: 'syz.3.1812': attribute type 10 has an invalid length. [ 325.697956][ T9422] team0: Port device dummy0 added [ 325.722243][ T9423] netlink: 'syz.3.1812': attribute type 10 has an invalid length. [ 325.809001][ T9423] team0: Port device dummy0 removed [ 325.827392][ T9423] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 325.950655][ T9323] Set syz1 is full, maxelem 65536 reached [ 326.428942][ T9436] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1814'. [ 327.157459][ T9447] loop2: detected capacity change from 0 to 1024 [ 327.211667][ T9447] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 327.421463][ T9452] loop3: detected capacity change from 0 to 764 [ 327.454323][ T9452] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 327.500069][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 327.912088][ T9464] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 328.427676][ T9476] usb usb7: usbfs: process 9476 (syz.2.1831) did not claim interface 0 before use [ 328.862847][ T9482] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1834'. [ 329.024804][ T9488] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 20000 - 0 [ 329.071341][ T9488] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 20000 - 0 [ 329.079849][ T9488] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 20000 - 0 [ 329.089193][ T9488] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 20000 - 0 [ 329.117260][ T9488] bond1: (slave geneve2): Enslaving as an active interface with an up link [ 329.296022][ T9468] lo speed is unknown, defaulting to 1000 [ 330.588464][ T26] kauditd_printk_skb: 16 callbacks suppressed [ 330.588479][ T26] audit: type=1326 audit(2000000067.140:1864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.1.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 330.652727][ T26] audit: type=1326 audit(2000000067.180:1865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.1.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 330.714534][ T26] audit: type=1326 audit(2000000067.180:1866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.1.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 330.747181][ T26] audit: type=1326 audit(2000000067.180:1867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.1.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2e9f38d290 code=0x7ffc0000 [ 330.790469][ T26] audit: type=1326 audit(2000000067.180:1868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.1.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 330.861041][ T26] audit: type=1326 audit(2000000067.180:1869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.1.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 330.918926][ T26] audit: type=1326 audit(2000000067.180:1870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.1.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 330.965009][ T26] audit: type=1326 audit(2000000067.180:1871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.1.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 331.033316][ T26] audit: type=1326 audit(2000000067.180:1872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.1.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 331.089870][ T9530] loop3: detected capacity change from 0 to 1024 [ 331.099499][ T26] audit: type=1326 audit(2000000067.180:1873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9509 comm="syz.1.1844" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 331.167038][ T9530] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 331.232737][ T9497] lo speed is unknown, defaulting to 1000 [ 331.732772][ T9514] lo speed is unknown, defaulting to 1000 [ 331.831986][ T9508] lo speed is unknown, defaulting to 1000 [ 331.948393][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 331.991831][ T9506] lo speed is unknown, defaulting to 1000 [ 332.324201][ T9546] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1854'. [ 332.488338][ T9550] netlink: 'syz.2.1857': attribute type 21 has an invalid length. [ 332.505759][ T9550] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1857'. [ 332.536038][ T9550] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1857'. [ 333.541681][ T9594] netlink: 148 bytes leftover after parsing attributes in process `syz.0.1873'. [ 333.814190][ T9601] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1874'. [ 333.980994][ T9565] lo speed is unknown, defaulting to 1000 [ 334.125844][ T9612] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1881'. [ 334.185594][ T9616] syz.2.1884[9616] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 334.185699][ T9616] syz.2.1884[9616] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 334.231033][ T9616] nfs4: Bad value for 'source' [ 334.424210][ T9612] device hsr_slave_1 left promiscuous mode [ 334.620160][ T9627] loop3: detected capacity change from 0 to 512 [ 334.685135][ T9627] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 334.730057][ T9627] ext4 filesystem being mounted at /384/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 335.017763][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 335.034557][ T9638] loop2: detected capacity change from 0 to 512 [ 335.059785][ T9638] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 335.131258][ T9638] EXT4-fs (loop2): 1 truncate cleaned up [ 335.141281][ T9638] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 335.252183][ T9638] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2768: inode #15: comm syz.2.1893: corrupted xattr block 33 [ 335.309740][ T9638] EXT4-fs (loop2): Remounting filesystem read-only [ 335.333106][ T9638] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2934: inode #15: comm syz.2.1893: corrupted xattr block 33 [ 335.379917][ T9638] EXT4-fs (loop2): Remounting filesystem read-only [ 335.388873][ T9654] netlink: 'syz.1.1900': attribute type 21 has an invalid length. [ 335.396300][ T9638] EXT4-fs warning (device loop2): ext4_evict_inode:299: xattr delete (err -117) [ 335.417421][ T9654] netlink: 128 bytes leftover after parsing attributes in process `syz.1.1900'. [ 335.417999][ T9647] 9pnet: Could not find request transport: f [ 335.440293][ T9654] netlink: 'syz.1.1900': attribute type 4 has an invalid length. [ 335.478829][ T9654] netlink: 'syz.1.1900': attribute type 3 has an invalid length. [ 335.514448][ T9654] netlink: 3 bytes leftover after parsing attributes in process `syz.1.1900'. [ 335.579765][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 335.785449][ T9667] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1907'. [ 336.037678][ T26] kauditd_printk_skb: 31 callbacks suppressed [ 336.037693][ T26] audit: type=1326 audit(2000000072.590:1905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9675 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 336.091364][ T26] audit: type=1326 audit(2000000072.630:1906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9675 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 336.134795][ T26] audit: type=1326 audit(2000000072.630:1907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9675 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 336.212451][ T9684] syz.3.1915[9684] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 336.212565][ T9684] syz.3.1915[9684] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 336.239682][ T26] audit: type=1326 audit(2000000072.630:1908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9675 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 336.319723][ T26] audit: type=1326 audit(2000000072.630:1909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9675 comm="syz.0.1912" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 336.530081][ T9695] loop3: detected capacity change from 0 to 764 [ 336.536776][ T9694] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1920'. [ 336.559082][ T9695] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 336.640458][ T26] audit: type=1326 audit(2000000073.190:1910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9698 comm="syz.4.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 336.711500][ T26] audit: type=1326 audit(2000000073.190:1911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9698 comm="syz.4.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 336.781434][ T26] audit: type=1326 audit(2000000073.240:1912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9698 comm="syz.4.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=259 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 336.846341][ T26] audit: type=1326 audit(2000000073.240:1913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9698 comm="syz.4.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 336.847256][ T9706] Cannot find add_set index 3 as target [ 336.917519][ T26] audit: type=1326 audit(2000000073.240:1914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9698 comm="syz.4.1922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 337.090061][ T9715] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1929'. [ 338.889299][ T9754] lo speed is unknown, defaulting to 1000 [ 339.647486][ T9756] lo speed is unknown, defaulting to 1000 [ 341.996306][ T9788] loop2: detected capacity change from 0 to 128 [ 342.095693][ T9788] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 342.134938][ T9788] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 342.267218][ T26] kauditd_printk_skb: 279 callbacks suppressed [ 342.267236][ T26] audit: type=1804 audit(2000000078.820:2194): pid=9788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1956" name="/newroot/381/file0/bus" dev="loop2" ino=1048623 res=1 errno=0 [ 342.821776][ T9800] lo speed is unknown, defaulting to 1000 [ 343.534651][ T9802] lo speed is unknown, defaulting to 1000 [ 344.205274][ T32] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 344.459999][ T9817] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1964'. [ 344.540079][ T9819] netlink: 'syz.4.1968': attribute type 10 has an invalid length. [ 344.795005][ T9819] device bridge0 entered promiscuous mode [ 344.909139][ T9819] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 344.926521][ T9823] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1968'. [ 345.750822][ T9823] bond0: (slave bridge0): Releasing backup interface [ 345.790590][ T9823] device bridge0 left promiscuous mode [ 347.727101][ T9899] loop3: detected capacity change from 0 to 764 [ 347.754648][ T9899] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 348.284849][ T9919] loop3: detected capacity change from 0 to 512 [ 348.308964][ T9919] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 348.330262][ T9919] EXT4-fs (loop3): 1 truncate cleaned up [ 348.336999][ T9919] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 348.412364][ T9929] EXT4-fs error (device loop3): mb_free_blocks:1815: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 348.493168][ T9929] EXT4-fs (loop3): Remounting filesystem read-only [ 348.654467][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 348.920574][ T26] audit: type=1326 audit(2000000085.470:2195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9942 comm="syz.3.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 348.997916][ T26] audit: type=1326 audit(2000000085.470:2196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9942 comm="syz.3.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 349.044552][ T9939] loop2: detected capacity change from 0 to 164 [ 349.063002][ T26] audit: type=1326 audit(2000000085.470:2197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9942 comm="syz.3.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 349.087195][ T9939] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet. [ 349.147885][ T26] audit: type=1326 audit(2000000085.470:2198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9942 comm="syz.3.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 349.221251][ T26] audit: type=1326 audit(2000000085.470:2199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9942 comm="syz.3.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 349.254979][ T9952] loop3: detected capacity change from 0 to 164 [ 349.275438][ T26] audit: type=1326 audit(2000000085.470:2200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9942 comm="syz.3.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 349.299095][ T26] audit: type=1326 audit(2000000085.470:2201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9942 comm="syz.3.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 349.388627][ T26] audit: type=1326 audit(2000000085.470:2202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9942 comm="syz.3.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 349.421610][ T26] audit: type=1326 audit(2000000085.470:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9942 comm="syz.3.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 349.449453][ T26] audit: type=1326 audit(2000000085.670:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9942 comm="syz.3.2017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 349.963477][ T9968] netlink: 'syz.0.2028': attribute type 7 has an invalid length. [ 349.983543][ T9968] netlink: 'syz.0.2028': attribute type 8 has an invalid length. [ 351.016603][ T9986] loop2: detected capacity change from 0 to 164 [ 351.055242][ T9986] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet. [ 351.200319][ T9992] netlink: 52 bytes leftover after parsing attributes in process `syz.3.2037'. [ 351.366686][ T9997] loop2: detected capacity change from 0 to 512 [ 351.409679][ T9997] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 351.474142][ T9997] EXT4-fs (loop2): 1 truncate cleaned up [ 351.479863][ T9997] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 351.839162][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 352.615982][T10023] loop3: detected capacity change from 0 to 1024 [ 352.655195][T10023] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31 [ 352.821852][ C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 354.966129][T10104] loop3: detected capacity change from 0 to 1024 [ 355.062470][T10104] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 355.219768][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 357.166667][T10120] loop2: detected capacity change from 0 to 512 [ 357.248159][T10120] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2080: bg 0: block 248: padding at end of block bitmap is not set [ 357.277469][T10120] __quota_error: 45 callbacks suppressed [ 357.277489][T10120] Quota error (device loop2): write_blk: dquota write failed [ 357.344718][T10120] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 357.381909][T10120] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.2080: Failed to acquire dquot type 1 [ 357.428784][T10120] EXT4-fs (loop2): 1 truncate cleaned up [ 357.441381][T10120] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 357.474567][T10120] ext4 filesystem being mounted at /402/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 357.577200][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 357.624693][T10138] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2086'. [ 357.651439][T10140] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2088'. [ 357.713904][T10142] syz.2.2087[10142] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 357.714006][T10142] syz.2.2087[10142] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 358.192166][ T26] audit: type=1326 audit(2000000094.750:2250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.1.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 358.230869][ T26] audit: type=1326 audit(2000000094.780:2251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.1.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 358.231550][T10148] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2091'. [ 358.254114][ T26] audit: type=1326 audit(2000000094.780:2252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.1.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 358.326188][ T26] audit: type=1326 audit(2000000094.780:2253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.1.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 358.397451][ T26] audit: type=1326 audit(2000000094.790:2254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.1.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 358.447890][T10155] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2093'. [ 358.457035][ T26] audit: type=1326 audit(2000000094.820:2255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.1.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 358.528476][ T26] audit: type=1326 audit(2000000094.820:2256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.1.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 358.571238][ T26] audit: type=1326 audit(2000000094.820:2257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10149 comm="syz.1.2092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 358.814903][T10167] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2099'. [ 359.084945][T10177] device batadv_slave_0 entered promiscuous mode [ 360.206922][T10182] netlink: 'syz.1.2106': attribute type 1 has an invalid length. [ 360.220009][T10178] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2103'. [ 360.239557][T10182] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2106'. [ 360.379456][T10189] netlink: 56 bytes leftover after parsing attributes in process `syz.1.2109'. [ 360.390090][T10189] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2109'. [ 360.475372][T10193] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2111'. [ 361.042444][T10224] loop2: detected capacity change from 0 to 1024 [ 361.107685][T10224] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 361.237926][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 361.928749][T10266] netdevsim netdevsim1: loading /lib/firmware/. failed with error -22 [ 361.964754][T10266] netdevsim netdevsim1: Direct firmware load for . failed with error -22 [ 362.005365][T10266] netdevsim netdevsim1: Falling back to sysfs fallback for: . [ 362.396685][T10290] loop2: detected capacity change from 0 to 764 [ 362.415406][T10290] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 362.423789][T10292] loop3: detected capacity change from 0 to 1024 [ 362.468721][T10292] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 362.529168][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 362.606322][T10298] loop2: detected capacity change from 0 to 512 [ 362.614857][T10298] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 362.630060][T10298] EXT4-fs (loop2): 1 truncate cleaned up [ 362.636121][T10298] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 362.669220][T10298] EXT4-fs error (device loop2): mb_free_blocks:1815: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 362.696597][T10298] EXT4-fs (loop2): Remounting filesystem read-only [ 362.738096][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 362.859999][ T26] kauditd_printk_skb: 38 callbacks suppressed [ 362.860016][ T26] audit: type=1326 audit(2000000099.410:2296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.2.2160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 362.929967][ T26] audit: type=1326 audit(2000000099.450:2297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.2.2160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 362.956032][ T26] audit: type=1326 audit(2000000099.450:2298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.2.2160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 363.161465][T10317] loop2: detected capacity change from 0 to 512 [ 363.172444][T10317] EXT4-fs: Ignoring removed nomblk_io_submit option [ 363.185652][T10317] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 363.208582][T10317] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 363.219709][T10317] ext4 filesystem being mounted at /415/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 363.374459][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 363.482834][T10333] __nla_validate_parse: 1 callbacks suppressed [ 363.482852][T10333] netlink: 1 bytes leftover after parsing attributes in process `syz.0.2173'. [ 363.677905][T10345] loop2: detected capacity change from 0 to 512 [ 363.732688][T10345] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 363.779617][T10345] EXT4-fs (loop2): 1 truncate cleaned up [ 363.785615][T10345] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 364.053816][T10358] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2179'. [ 364.643554][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 364.737363][T10362] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2184'. [ 364.804650][ T26] audit: type=1326 audit(2000000101.360:2299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10364 comm="syz.3.2188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 364.866891][ T26] audit: type=1326 audit(2000000101.360:2300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10364 comm="syz.3.2188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 364.916290][ T26] audit: type=1326 audit(2000000101.360:2301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10364 comm="syz.3.2188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 364.995218][ T26] audit: type=1326 audit(2000000101.360:2302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10364 comm="syz.3.2188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 365.089888][T10378] loop3: detected capacity change from 0 to 1024 [ 365.128666][T10378] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 365.214902][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 366.173198][T10413] loop3: detected capacity change from 0 to 1024 [ 366.322399][T10413] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 366.388434][T10424] loop2: detected capacity change from 0 to 1024 [ 366.400968][T10424] EXT4-fs: Ignoring removed oldalloc option [ 366.471260][T10424] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 366.481715][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 366.646358][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 366.693499][T10432] netlink: 'syz.3.2212': attribute type 10 has an invalid length. [ 366.740829][T10432] netlink: 'syz.3.2212': attribute type 19 has an invalid length. [ 366.761652][T10432] netlink: 156 bytes leftover after parsing attributes in process `syz.3.2212'. [ 367.052101][T10449] loop2: detected capacity change from 0 to 1024 [ 367.093462][ T26] audit: type=1326 audit(2000000002.000:2303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10450 comm="syz.1.2223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 367.121632][ T26] audit: type=1326 audit(2000000002.010:2304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10450 comm="syz.1.2223" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 367.163125][T10449] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 367.172594][ T26] audit: type=1326 audit(2000000002.010:2305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10450 comm=04 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 367.359890][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 367.514493][T10470] netlink: 'syz.2.2229': attribute type 13 has an invalid length. [ 367.688717][T10477] loop2: detected capacity change from 0 to 512 [ 367.699562][T10477] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 367.775771][T10477] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 367.791736][T10477] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002] [ 367.801544][T10477] System zones: 0-1, 15-15, 18-18, 34-34 [ 367.808740][T10477] EXT4-fs (loop2): orphan cleanup on readonly fs [ 367.816148][T10477] EXT4-fs warning (device loop2): ext4_enable_quotas:7066: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 367.837727][T10477] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 367.854259][T10477] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2229: bg 0: block 40: padding at end of block bitmap is not set [ 367.868917][ T26] kauditd_printk_skb: 113 callbacks suppressed [ 367.868932][ T26] audit: type=1326 audit(2000000002.760:2418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.2229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa5e99858e7 code=0x7ffc0000 [ 367.909044][ T26] audit: type=1326 audit(2000000002.760:2419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.2229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa5e992ab19 code=0x7ffc0000 [ 367.932286][ T26] audit: type=1326 audit(2000000002.760:2420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.2229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 367.955397][ T26] audit: type=1326 audit(2000000002.760:2421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.2229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa5e99858e7 code=0x7ffc0000 [ 367.965074][T10477] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 367.980620][ T26] audit: type=1326 audit(2000000002.760:2422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.2229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa5e992ab19 code=0x7ffc0000 [ 368.060619][ T26] audit: type=1326 audit(2000000002.760:2423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.2229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 368.078518][T10477] EXT4-fs (loop2): 1 truncate cleaned up [ 368.123097][T10477] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 368.124879][ T26] audit: type=1326 audit(2000000002.780:2424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.2229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa5e99858e7 code=0x7ffc0000 [ 368.179177][T10477] netlink: 256 bytes leftover after parsing attributes in process `syz.2.2229'. [ 368.184712][ T26] audit: type=1326 audit(2000000002.780:2425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.2229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa5e992ab19 code=0x7ffc0000 [ 368.219984][T10477] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 368.241379][ T26] audit: type=1326 audit(2000000002.780:2426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.2229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 368.281286][T10477] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002] [ 368.314847][ T26] audit: type=1326 audit(2000000002.800:2427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10469 comm="syz.2.2229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa5e99858e7 code=0x7ffc0000 [ 368.385454][T10498] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2239'. [ 368.550215][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 368.777828][T10513] loop2: detected capacity change from 0 to 512 [ 368.794743][T10513] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 368.855323][T10513] EXT4-fs (loop2): 1 truncate cleaned up [ 368.870252][T10513] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 368.908629][T10513] EXT4-fs error (device loop2): mb_free_blocks:1815: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 368.956168][T10513] EXT4-fs (loop2): Remounting filesystem read-only [ 369.042316][T10514] 9pnet: Could not find request transport: f [ 369.095610][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 370.013453][T10553] loop2: detected capacity change from 0 to 512 [ 370.031255][T10553] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 370.059089][T10553] EXT4-fs (loop2): 1 truncate cleaned up [ 370.081248][T10553] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 370.096576][T10553] EXT4-fs error (device loop2): mb_free_blocks:1815: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 370.111538][T10553] EXT4-fs (loop2): Remounting filesystem read-only [ 370.168233][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 370.390418][T10569] netlink: 'syz.4.2267': attribute type 10 has an invalid length. [ 370.399364][T10569] netlink: 'syz.4.2267': attribute type 19 has an invalid length. [ 370.425708][T10569] netlink: 156 bytes leftover after parsing attributes in process `syz.4.2267'. [ 370.585997][T10577] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2268'. [ 371.542175][T10591] loop3: detected capacity change from 0 to 512 [ 371.591906][T10591] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 371.636928][T10591] EXT4-fs (loop3): 1 truncate cleaned up [ 371.681146][T10591] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 371.739796][T10591] EXT4-fs error (device loop3): mb_free_blocks:1815: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 371.830169][T10591] EXT4-fs (loop3): Remounting filesystem read-only [ 372.890069][T10605] lo speed is unknown, defaulting to 1000 [ 373.550562][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 374.729064][T10621] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2284'. [ 375.136352][ T26] kauditd_printk_skb: 91 callbacks suppressed [ 375.136379][ T26] audit: type=1326 audit(2000000010.040:2519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.3.2291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 375.218185][ T26] audit: type=1326 audit(2000000010.040:2520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.3.2291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 375.321191][ T26] audit: type=1326 audit(2000000010.070:2521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.3.2291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 375.376736][ T26] audit: type=1326 audit(2000000010.070:2522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.3.2291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 375.438447][ T26] audit: type=1326 audit(2000000010.070:2523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.3.2291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 375.500562][ T26] audit: type=1326 audit(2000000010.090:2524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.3.2291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 375.534016][ T26] audit: type=1326 audit(2000000010.090:2525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.3.2291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 375.557764][ T26] audit: type=1326 audit(2000000010.090:2526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.3.2291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 375.631346][ T26] audit: type=1326 audit(2000000010.090:2527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.3.2291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 375.714418][ T26] audit: type=1326 audit(2000000010.090:2528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10635 comm="syz.3.2291" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x7ffc0000 [ 375.906642][T10655] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2297'. [ 377.087066][T10675] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2308'. [ 377.111880][T10675] tipc: Invalid UDP bearer configuration [ 377.111930][T10675] tipc: Enabling of bearer rejected, failed to enable media [ 377.302765][T10688] loop9: detected capacity change from 0 to 7 [ 377.324946][T10688] Dev loop9: unable to read RDB block 7 [ 377.336343][T10688] loop9: unable to read partition table [ 377.349424][T10688] loop9: partition table beyond EOD, truncated [ 377.365572][T10688] loop_reread_partitions: partition scan of loop9 (被ڬdƤݡ [ 377.365572][T10688] U) failed (rc=-5) [ 377.517219][T10694] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2314'. [ 378.351872][T10713] netlink: 'syz.2.2323': attribute type 10 has an invalid length. [ 378.359764][T10713] netlink: 'syz.2.2323': attribute type 19 has an invalid length. [ 378.425027][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.432483][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.441318][T10713] netlink: 156 bytes leftover after parsing attributes in process `syz.2.2323'. [ 378.457427][T10717] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2324'. [ 378.475565][T10717] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 378.493035][T10717] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 378.509760][T10721] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2325'. [ 378.561699][T10721] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2325'. [ 378.571387][T10719] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2325'. [ 379.296957][T10732] lo speed is unknown, defaulting to 1000 [ 380.555812][T10744] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2332'. [ 380.579872][ T26] kauditd_printk_skb: 56 callbacks suppressed [ 380.579888][ T26] audit: type=1326 audit(2000000015.480:2585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10745 comm="syz.3.2334" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb57c98e929 code=0x0 [ 380.767948][ T26] audit: type=1326 audit(2000000015.670:2586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.2.2336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 380.835869][ T26] audit: type=1326 audit(2000000015.730:2587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.2.2336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 380.858642][ T26] audit: type=1326 audit(2000000015.740:2588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.2.2336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 380.929382][ T26] audit: type=1326 audit(2000000015.750:2589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.2.2336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 380.954611][ T26] audit: type=1326 audit(2000000015.750:2590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.2.2336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 381.002588][ T26] audit: type=1326 audit(2000000015.760:2591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.2.2336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 381.035119][ T26] audit: type=1326 audit(2000000015.760:2592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.2.2336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 381.058940][ T26] audit: type=1326 audit(2000000015.760:2593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.2.2336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 381.086433][ T26] audit: type=1326 audit(2000000015.790:2594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10754 comm="syz.2.2336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 381.173637][T10766] device bond1 entered promiscuous mode [ 381.179544][T10766] 8021q: adding VLAN 0 to HW filter on device bond1 [ 381.479672][T10766] bond1 (unregistering): Released all slaves [ 381.664160][T10786] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2350'. [ 383.325900][T10834] atomic_op ffff8880268b4198 conn xmit_atomic 0000000000000000 [ 383.478208][T10842] loop2: detected capacity change from 0 to 1024 [ 383.537652][T10842] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 383.584266][T10842] EXT4-fs (loop2): orphan cleanup on readonly fs [ 383.657212][T10842] EXT4-fs error (device loop2): ext4_map_blocks:745: inode #3: block 3: comm syz.2.2373: lblock 3 mapped to illegal pblock 3 (length 1) [ 383.710703][T10842] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.2373: Failed to acquire dquot type 0 [ 383.760401][T10842] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 3: comm syz.2.2373: lblock 3 mapped to illegal pblock 3 (length 1) [ 383.811730][T10842] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.2373: Failed to acquire dquot type 0 [ 383.841769][T10842] EXT4-fs error (device loop2): ext4_free_blocks:6210: comm syz.2.2373: Freeing blocks not in datazone - block = 0, count = 4096 [ 383.876666][T10842] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #3: block 3: comm syz.2.2373: lblock 3 mapped to illegal pblock 3 (length 1) [ 383.914024][T10842] EXT4-fs error (device loop2): ext4_acquire_dquot:6814: comm syz.2.2373: Failed to acquire dquot type 0 [ 383.941379][T10842] EXT4-fs (loop2): 1 orphan inode deleted [ 383.957897][T10842] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 384.042324][T10870] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2387'. [ 384.057347][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 384.180856][T10874] netlink: 'syz.3.2390': attribute type 2 has an invalid length. [ 385.094831][T10907] netlink: 'syz.4.2405': attribute type 10 has an invalid length. [ 385.108729][T10907] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2405'. [ 385.143633][T10907] device dummy0 entered promiscuous mode [ 385.167842][T10907] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 385.714805][T10913] lo speed is unknown, defaulting to 1000 [ 385.725610][ T26] kauditd_printk_skb: 208 callbacks suppressed [ 385.725626][ T26] audit: type=1326 audit(2000000020.630:2798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10919 comm="syz.4.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 385.852558][ T26] audit: type=1326 audit(2000000020.660:2799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10919 comm="syz.4.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 385.975780][ T26] audit: type=1326 audit(2000000020.660:2800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10919 comm="syz.4.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 386.087119][ T26] audit: type=1326 audit(2000000020.670:2801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10919 comm="syz.4.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 386.190737][ T26] audit: type=1326 audit(2000000020.670:2802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10919 comm="syz.4.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 386.213518][ T26] audit: type=1326 audit(2000000020.670:2803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10919 comm="syz.4.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 386.250997][ T26] audit: type=1326 audit(2000000020.670:2804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10919 comm="syz.4.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 386.311721][ T26] audit: type=1326 audit(2000000020.670:2805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10919 comm="syz.4.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 386.358685][ T26] audit: type=1326 audit(2000000020.670:2806): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10919 comm="syz.4.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 386.434676][ T26] audit: type=1326 audit(2000000020.670:2807): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10919 comm="syz.4.2409" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4db158e929 code=0x7ffc0000 [ 386.534859][T10945] netlink: 388 bytes leftover after parsing attributes in process `syz.3.2421'. [ 386.653385][T10956] atomic_op ffff888027fe8998 conn xmit_atomic 0000000000000000 [ 386.766997][T10961] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2424'. [ 386.801316][T10961] device hsr_slave_0 left promiscuous mode [ 386.841821][T10961] device hsr_slave_1 left promiscuous mode [ 387.340699][T10972] lo speed is unknown, defaulting to 1000 [ 387.723396][T10983] netlink: 'syz.2.2431': attribute type 27 has an invalid length. [ 388.065209][T11007] Set syz1 is full, maxelem 65536 reached [ 388.749973][T10983] bridge0: port 2(bridge_slave_1) entered disabled state [ 388.757420][T10983] bridge0: port 1(bridge_slave_0) entered disabled state [ 389.661477][T10983] device wg2 left promiscuous mode [ 390.912880][ T26] kauditd_printk_skb: 59 callbacks suppressed [ 390.912896][ T26] audit: type=1326 audit(2000000025.820:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11071 comm="syz.0.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 390.948919][ T26] audit: type=1326 audit(2000000025.820:2868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11071 comm="syz.0.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 390.972186][ T26] audit: type=1326 audit(2000000025.820:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11071 comm="syz.0.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 390.999572][ T26] audit: type=1326 audit(2000000025.820:2870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11071 comm="syz.0.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 391.023241][T10983] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 391.033039][T10983] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 391.034899][ T26] audit: type=1326 audit(2000000025.820:2871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11071 comm="syz.0.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 391.041767][T10983] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 391.064307][ T26] audit: type=1326 audit(2000000025.850:2872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11071 comm="syz.0.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 391.095630][T10983] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 391.129103][ T26] audit: type=1326 audit(2000000025.850:2873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11071 comm="syz.0.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 391.153122][ T26] audit: type=1326 audit(2000000025.850:2874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11071 comm="syz.0.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 391.175924][ T26] audit: type=1326 audit(2000000025.850:2875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11071 comm="syz.0.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 391.198434][ T26] audit: type=1326 audit(2000000025.850:2876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11071 comm="syz.0.2446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 391.290972][T10983] netdevsim netdevsim2 eth0: unset [1, 1] type 2 family 0 port 20000 - 0 [ 391.299620][T10983] netdevsim netdevsim2 eth1: unset [1, 1] type 2 family 0 port 20000 - 0 [ 391.308339][T10983] netdevsim netdevsim2 eth2: unset [1, 1] type 2 family 0 port 20000 - 0 [ 391.316810][T10983] netdevsim netdevsim2 eth3: unset [1, 1] type 2 family 0 port 20000 - 0 [ 391.539431][T11073] lo speed is unknown, defaulting to 1000 [ 391.926707][T11088] rdma_op ffff8880779ab9f0 conn xmit_rdma 0000000000000000 [ 392.186909][T11005] lo speed is unknown, defaulting to 1000 [ 392.514853][T11085] lo speed is unknown, defaulting to 1000 [ 392.878642][T11091] lo speed is unknown, defaulting to 1000 [ 393.345348][T11113] lo speed is unknown, defaulting to 1000 [ 394.015777][T11133] loop3: detected capacity change from 0 to 256 [ 394.067652][T11133] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 196) [ 394.087457][T11133] FAT-fs (loop3): Filesystem has been set read-only [ 394.198984][ T4251] FAT-fs (loop3): error, fat_free: invalid cluster chain (i_pos 196) [ 394.352437][T11148] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2477'. [ 394.386534][T11150] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2478'. [ 395.105114][T11180] netlink: 92 bytes leftover after parsing attributes in process `syz.3.2490'. [ 395.510475][T11174] lo speed is unknown, defaulting to 1000 [ 396.971985][ T26] kauditd_printk_skb: 330 callbacks suppressed [ 396.972001][ T26] audit: type=1326 audit(2000000031.870:3207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 397.225575][ T26] audit: type=1326 audit(2000000031.870:3208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 397.248333][ T26] audit: type=1326 audit(2000000031.870:3209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 397.271026][ T26] audit: type=1326 audit(2000000031.870:3210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 397.274064][T11225] lo speed is unknown, defaulting to 1000 [ 397.313397][ T26] audit: type=1326 audit(2000000031.870:3211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 397.361622][ T26] audit: type=1326 audit(2000000031.870:3212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 397.402028][ T26] audit: type=1326 audit(2000000031.870:3213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 397.503191][ T26] audit: type=1326 audit(2000000031.870:3214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 397.690885][T11239] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2514'. [ 397.702053][ T26] audit: type=1326 audit(2000000031.870:3215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 397.751393][ T26] audit: type=1326 audit(2000000031.870:3216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11215 comm="syz.2.2505" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa5e998e929 code=0x7ffc0000 [ 398.294970][T11262] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog [ 398.451394][T11268] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING [ 399.022200][T11276] lo speed is unknown, defaulting to 1000 [ 399.169007][T11278] rdma_op ffff8880791fd9f0 conn xmit_rdma 0000000000000000 [ 400.326671][T11275] lo speed is unknown, defaulting to 1000 [ 400.536772][T11309] loop2: detected capacity change from 0 to 1024 [ 400.592222][T11309] EXT4-fs: Invalid commit interval 67108869, must be smaller than 21474836 [ 400.705682][T11304] lo speed is unknown, defaulting to 1000 [ 401.356064][T11323] program syz.2.2543 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 401.699727][T11332] IPVS: Error connecting to the multicast addr [ 402.665727][ T26] kauditd_printk_skb: 28 callbacks suppressed [ 402.665744][ T26] audit: type=1107 audit(2000000037.570:3245): pid=11355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 402.775277][T11360] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2560'. [ 402.976925][T11370] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2565'. [ 403.081724][T11372] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2565'. [ 403.099675][T11374] loop3: detected capacity change from 0 to 128 [ 403.145173][ T26] audit: type=1800 audit(2000000038.050:3246): pid=11374 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2566" name="file1" dev="loop3" ino=1048625 res=0 errno=0 [ 403.357073][T11385] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.2569'. [ 403.391440][T11381] netlink: 16402 bytes leftover after parsing attributes in process `syz.2.2569'. [ 403.473116][T11387] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2572'. [ 403.840430][T11401] device syzkaller0 entered promiscuous mode [ 403.968356][T11413] loop2: detected capacity change from 0 to 128 [ 405.978659][T11413] netlink: 'syz.2.2582': attribute type 39 has an invalid length. [ 406.022637][T11421] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2586'. [ 406.180460][ T26] audit: type=1326 audit(2000000041.080:3247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11428 comm="syz.0.2589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 406.197751][T11432] loop3: detected capacity change from 0 to 512 [ 406.214119][ T26] audit: type=1326 audit(2000000041.090:3248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11428 comm="syz.0.2589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 406.242276][T11432] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.2591: invalid indirect mapped block 256 (level 2) [ 406.264450][T11432] EXT4-fs (loop3): 2 truncates cleaned up [ 406.275954][T11432] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 406.302085][ T26] audit: type=1326 audit(2000000041.090:3249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11428 comm="syz.0.2589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 406.325395][ T26] audit: type=1326 audit(2000000041.090:3250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11428 comm="syz.0.2589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 406.348842][ T26] audit: type=1326 audit(2000000041.090:3251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11428 comm="syz.0.2589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 406.371609][ T26] audit: type=1326 audit(2000000041.090:3252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11428 comm="syz.0.2589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 406.395608][ T26] audit: type=1326 audit(2000000041.090:3253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11428 comm="syz.0.2589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 406.431598][ T26] audit: type=1326 audit(2000000041.090:3254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11428 comm="syz.0.2589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 406.633148][T11448] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2596'. [ 406.787030][T11451] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0 [ 407.066060][T11455] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2598'. [ 407.125897][T11432] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.2591: bg 0: block 5: invalid block bitmap [ 407.263404][T11432] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 407.358057][T11432] EXT4-fs (loop3): This should not happen!! Data will be lost [ 407.358057][T11432] [ 407.444801][T11432] EXT4-fs (loop3): Total free blocks count 0 [ 407.512030][T11432] EXT4-fs (loop3): Free/Dirty block details [ 407.579520][T11432] EXT4-fs (loop3): free_blocks=0 [ 407.637122][T11432] EXT4-fs (loop3): dirty_blocks=4716 [ 407.687440][T11432] EXT4-fs (loop3): Block reservation details [ 407.724379][T11432] EXT4-fs (loop3): i_reserved_data_blocks=4716 [ 407.835762][T11038] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 2048 with error 28 [ 408.132150][ T26] kauditd_printk_skb: 9 callbacks suppressed [ 408.132164][ T26] audit: type=1326 audit(2000000043.030:3264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11473 comm="syz.0.2607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 408.249486][ T26] audit: type=1326 audit(2000000043.030:3265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11473 comm="syz.0.2607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 408.296378][T11474] lo speed is unknown, defaulting to 1000 [ 408.363582][ T26] audit: type=1326 audit(2000000043.030:3266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11473 comm="syz.0.2607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 408.433762][ T26] audit: type=1326 audit(2000000043.030:3267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11473 comm="syz.0.2607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 408.586789][ T26] audit: type=1326 audit(2000000043.030:3268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11473 comm="syz.0.2607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 408.609352][ T26] audit: type=1326 audit(2000000043.030:3269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11473 comm="syz.0.2607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 408.674966][ T26] audit: type=1326 audit(2000000043.030:3270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11473 comm="syz.0.2607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 408.752655][ T26] audit: type=1326 audit(2000000043.030:3271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11473 comm="syz.0.2607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 408.775596][ T26] audit: type=1326 audit(2000000043.030:3272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11473 comm="syz.0.2607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 408.798764][ T26] audit: type=1326 audit(2000000043.030:3273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11473 comm="syz.0.2607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab2a38e929 code=0x7ffc0000 [ 409.426117][T11493] loop2: detected capacity change from 0 to 512 [ 409.608376][T11496] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2614'. [ 409.746341][T11504] 9pnet_fd: Insufficient options for proto=fd [ 410.009888][T11518] loop3: detected capacity change from 0 to 128 [ 410.093917][T11518] netlink: 'syz.3.2625': attribute type 39 has an invalid length. [ 410.471243][T11525] lo speed is unknown, defaulting to 1000 [ 410.747299][T11543] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2633'. [ 411.008914][T11546] loop2: detected capacity change from 0 to 8192 [ 411.162403][T11556] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2639'. [ 412.525750][T11579] lo speed is unknown, defaulting to 1000 [ 412.783543][T11581] loop3: detected capacity change from 0 to 512 [ 412.791376][T11581] EXT4-fs: Ignoring removed mblk_io_submit option [ 412.797897][T11581] EXT4-fs: Ignoring removed bh option [ 412.863898][T11581] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 412.875817][T11581] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 413.330556][ T26] kauditd_printk_skb: 76 callbacks suppressed [ 413.330572][ T26] audit: type=1326 audit(2000000048.230:3350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.1.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 413.403657][T11581] EXT4-fs (loop3): 1 truncate cleaned up [ 413.409414][T11581] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 413.429467][ T26] audit: type=1326 audit(2000000048.270:3351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.1.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 413.457626][ T26] audit: type=1326 audit(2000000048.270:3352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11583 comm="syz.1.2650" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 413.847767][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 414.036026][T11609] loop3: detected capacity change from 0 to 512 [ 414.062533][T11609] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 414.113889][T11609] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 414.131415][T11609] ext4 filesystem being mounted at /523/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 414.166563][T11615] netlink: 108 bytes leftover after parsing attributes in process `syz.0.2661'. [ 414.227437][T11611] loop2: detected capacity change from 0 to 2048 [ 414.297944][T11611] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 414.299322][ T4251] EXT4-fs (loop3): unmounting filesystem. [ 414.457608][ T4267] EXT4-fs (loop2): unmounting filesystem. [ 414.644239][ T26] audit: type=1326 audit(2000000049.550:3353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.1.2669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 414.690434][T11633] netlink: 108 bytes leftover after parsing attributes in process `syz.3.2668'. [ 414.696859][ T26] audit: type=1326 audit(2000000049.550:3354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.1.2669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 414.747427][ T26] audit: type=1326 audit(2000000049.550:3355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.1.2669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 414.799643][ T26] audit: type=1326 audit(2000000049.550:3356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.1.2669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 414.872977][ T26] audit: type=1326 audit(2000000049.550:3357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.1.2669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 414.924300][ T26] audit: type=1326 audit(2000000049.550:3358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.1.2669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 414.961488][ T26] audit: type=1326 audit(2000000049.550:3359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11631 comm="syz.1.2669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e9f38e929 code=0x7ffc0000 [ 415.007815][T11650] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2676'. [ 415.051965][T11650] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2676'. [ 415.103760][T11654] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2675'. [ 416.938749][T11707] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2702'. [ 417.061133][ C1] ------------[ cut here ]------------ [ 417.067283][ C1] refcount_t: addition on 0; use-after-free. [ 417.073899][ C1] WARNING: CPU: 1 PID: 4267 at lib/refcount.c:25 refcount_warn_saturate+0xff/0x1a0 [ 417.083305][ C1] Modules linked in: [ 417.087264][ C1] CPU: 1 PID: 4267 Comm: syz-executor Not tainted 6.1.141-syzkaller #0 [ 417.095589][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 417.105741][ C1] RIP: 0010:refcount_warn_saturate+0xff/0x1a0 [ 417.111908][ C1] Code: 09 01 48 c7 c7 a0 d2 be 8a e8 ad 30 45 fd 0f 0b eb e0 e8 f4 1d 79 fd c6 05 fa 72 e2 09 01 48 c7 c7 e0 d1 be 8a e8 91 30 45 fd <0f> 0b eb c4 e8 d8 1d 79 fd c6 05 df 72 e2 09 01 48 c7 c7 40 d2 be [ 417.131637][ C1] RSP: 0018:ffffc900001e0828 EFLAGS: 00010246 [ 417.137754][ C1] RAX: 6a8129efcef36800 RBX: 0000000000000002 RCX: ffff888025065940 [ 417.145835][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002 [ 417.153898][ C1] RBP: ffffc900001e0990 R08: dffffc0000000000 R09: fffff5200003c095 [ 417.161961][ C1] R10: fffff5200003c095 R11: 1ffff9200003c094 R12: ffff88801e340000 [ 417.169971][ C1] R13: dffffc0000000000 R14: 0000000000000002 R15: ffff88807800f848 [ 417.178029][ C1] FS: 0000555582b42500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 417.187036][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 417.193674][ C1] CR2: 00007fa5ea6e56c0 CR3: 000000005b2c1000 CR4: 00000000003506e0 [ 417.201729][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 417.209761][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 417.217834][ C1] Call Trace: [ 417.221188][ C1] [ 417.224071][ C1] tipc_crypto_xmit+0x17a9/0x2300 [ 417.229173][ C1] ? tipc_crypto_do_cmd+0xde0/0xde0 [ 417.234493][ C1] tipc_bearer_xmit_skb+0x242/0x3f0 [ 417.239739][ C1] ? tipc_bearer_xmit_skb+0xa6/0x3f0 [ 417.245103][ C1] ? tipc_bearer_min_mtu+0x1c0/0x1c0 [ 417.245937][ T48] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 417.250520][ C1] tipc_disc_timeout+0x568/0x6b0 [ 417.250597][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 417.250639][ C1] call_timer_fn+0x1a0/0x670 [ 417.250662][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 417.250685][ C1] ? call_timer_fn+0xc1/0x670 [ 417.250704][ C1] ? __run_timers+0x7c0/0x7c0 [ 417.250735][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 417.250766][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 417.250787][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 417.250814][ C1] __run_timers+0x525/0x7c0 [ 417.250848][ C1] ? detach_timer+0x350/0x350 [ 417.250877][ C1] ? lock_chain_count+0x20/0x20 [ 417.250913][ C1] run_timer_softirq+0x63/0xf0 [ 417.250947][ C1] handle_softirqs+0x2a1/0x920 [ 417.250987][ C1] ? __irq_exit_rcu+0x12f/0x220 [ 417.251064][ C1] ? do_softirq+0x200/0x200 [ 417.251103][ C1] ? irqtime_account_irq+0xb2/0x1b0 [ 417.251140][ C1] __irq_exit_rcu+0x12f/0x220 [ 417.275718][ T48] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 417.278458][ C1] ? irq_exit_rcu+0x20/0x20 [ 417.278512][ C1] irq_exit_rcu+0x5/0x20 [ 417.286679][ T48] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 417.287903][ C1] sysvec_apic_timer_interrupt+0xa0/0xc0 [ 417.287947][ C1] [ 417.297242][ T48] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 417.298381][ C1] [ 417.298394][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 417.298420][ C1] RIP: 0010:__sanitizer_cov_trace_const_cmp8+0x32/0x80 [ 417.298445][ C1] Code: e4 94 81 7e 65 8b 15 e5 94 81 7e 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 57 83 b9 1c 16 00 00 00 74 4e 8b 91 f8 15 00 00 <83> fa 03 75 43 48 8b 91 00 16 00 00 44 8b 89 fc 15 00 00 49 c1 e1 [ 417.298461][ C1] RSP: 0018:ffffc90003ce7558 EFLAGS: 00000246 [ 417.298485][ C1] RAX: ffffffff81be401a RBX: 0000000000000000 RCX: ffff888025065940 [ 417.298503][ C1] RDX: 0000000000000000 RSI: 0000000000000028 RDI: 0000000000000020 [ 417.298519][ C1] RBP: ffffc90003ce7850 R08: dffffc0000000000 R09: fffff940002e9e99 [ 417.306477][ T48] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 417.308431][ C1] R10: fffff940002e9e99 R11: 1ffffd40002e9e98 R12: 1ffffd40002e9e99 [ 417.308454][ C1] R13: ffffea000174f4c0 R14: 0000000000000028 R15: ffffea000174f4c0 [ 417.308480][ C1] ? copy_page_range+0x16fa/0x39e0 [ 417.308516][ C1] copy_page_range+0x16fa/0x39e0 [ 417.313870][ T48] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 417.318144][ C1] ? pfn_valid+0x450/0x450 [ 417.496084][ C1] ? preempt_count_add+0x8d/0x190 [ 417.501210][ C1] ? preempt_count_add+0x8d/0x190 [ 417.506375][ C1] ? up_write+0x1bb/0x420 [ 417.510834][ C1] ? vma_interval_tree_insert_after+0x245/0x2a0 [ 417.517156][ C1] copy_mm+0xde1/0x15c0 [ 417.521407][ C1] ? copy_signal+0x680/0x680 [ 417.526056][ C1] ? lockdep_init_map_type+0x9d/0x880 [ 417.531537][ C1] ? __init_rwsem+0x11e/0x160 [ 417.536270][ C1] ? copy_signal+0x556/0x680 [ 417.540901][ C1] copy_process+0x1953/0x4020 [ 417.545677][ C1] ? copy_process+0x91f/0x4020 [ 417.550502][ C1] ? do_raw_spin_unlock+0x11d/0x230 [ 417.555811][ C1] ? idle_dummy+0x10/0x10 [ 417.560199][ C1] ? do_wp_page+0x807/0x1680 [ 417.564892][ C1] kernel_clone+0x225/0x8b0 [ 417.569437][ C1] ? handle_mm_fault+0x1367/0x3e70 [ 417.574635][ C1] ? create_io_thread+0x120/0x120 [ 417.579717][ C1] ? do_user_addr_fault+0x77d/0xb10 [ 417.584998][ C1] __x64_sys_clone+0x17c/0x1d0 [ 417.589822][ C1] ? __ia32_sys_vfork+0x100/0x100 [ 417.594950][ C1] ? lock_chain_count+0x20/0x20 [ 417.599880][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 417.605187][ C1] do_syscall_64+0x4c/0xa0 [ 417.609649][ C1] ? clear_bhb_loop+0x60/0xb0 [ 417.614402][ C1] ? clear_bhb_loop+0x60/0xb0 [ 417.619123][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 417.625106][ C1] RIP: 0033:0x7fa5e9985193 [ 417.629573][ C1] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00 [ 417.649274][ C1] RSP: 002b:00007ffd10414188 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 417.657787][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa5e9985193 [ 417.665828][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 417.673876][ C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001 [ 417.681923][ C1] R10: 0000555582b427d0 R11: 0000000000000246 R12: 0000000000000000 [ 417.689935][ C1] R13: 00000000000927c0 R14: 0000000000065c96 R15: 00007ffd10414320 [ 417.698015][ C1] [ 417.701119][ C1] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 417.708419][ C1] CPU: 1 PID: 4267 Comm: syz-executor Not tainted 6.1.141-syzkaller #0 [ 417.716659][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 417.726731][ C1] Call Trace: [ 417.730026][ C1] [ 417.732878][ C1] dump_stack_lvl+0x168/0x22e [ 417.737570][ C1] ? memcpy+0x3c/0x60 [ 417.741580][ C1] ? show_regs_print_info+0x12/0x12 [ 417.746784][ C1] ? load_image+0x3b0/0x3b0 [ 417.751301][ C1] panic+0x2c9/0x710 [ 417.755204][ C1] ? bpf_jit_dump+0xd0/0xd0 [ 417.759736][ C1] __warn+0x2f8/0x4f0 [ 417.763745][ C1] ? refcount_warn_saturate+0xff/0x1a0 [ 417.769234][ C1] ? refcount_warn_saturate+0xff/0x1a0 [ 417.774698][ C1] report_bug+0x2ba/0x4f0 [ 417.779036][ C1] ? refcount_warn_saturate+0xff/0x1a0 [ 417.784502][ C1] handle_bug+0x3a/0x70 [ 417.788668][ C1] exc_invalid_op+0x16/0x40 [ 417.793176][ C1] asm_exc_invalid_op+0x16/0x20 [ 417.798025][ C1] RIP: 0010:refcount_warn_saturate+0xff/0x1a0 [ 417.804095][ C1] Code: 09 01 48 c7 c7 a0 d2 be 8a e8 ad 30 45 fd 0f 0b eb e0 e8 f4 1d 79 fd c6 05 fa 72 e2 09 01 48 c7 c7 e0 d1 be 8a e8 91 30 45 fd <0f> 0b eb c4 e8 d8 1d 79 fd c6 05 df 72 e2 09 01 48 c7 c7 40 d2 be [ 417.823712][ C1] RSP: 0018:ffffc900001e0828 EFLAGS: 00010246 [ 417.829793][ C1] RAX: 6a8129efcef36800 RBX: 0000000000000002 RCX: ffff888025065940 [ 417.837767][ C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000002 [ 417.845745][ C1] RBP: ffffc900001e0990 R08: dffffc0000000000 R09: fffff5200003c095 [ 417.853720][ C1] R10: fffff5200003c095 R11: 1ffff9200003c094 R12: ffff88801e340000 [ 417.861704][ C1] R13: dffffc0000000000 R14: 0000000000000002 R15: ffff88807800f848 [ 417.869696][ C1] ? refcount_warn_saturate+0xff/0x1a0 [ 417.875169][ C1] tipc_crypto_xmit+0x17a9/0x2300 [ 417.880225][ C1] ? tipc_crypto_do_cmd+0xde0/0xde0 [ 417.885443][ C1] tipc_bearer_xmit_skb+0x242/0x3f0 [ 417.890666][ C1] ? tipc_bearer_xmit_skb+0xa6/0x3f0 [ 417.895963][ C1] ? tipc_bearer_min_mtu+0x1c0/0x1c0 [ 417.901268][ C1] tipc_disc_timeout+0x568/0x6b0 [ 417.906236][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 417.911455][ C1] call_timer_fn+0x1a0/0x670 [ 417.916053][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 417.921260][ C1] ? call_timer_fn+0xc1/0x670 [ 417.925968][ C1] ? __run_timers+0x7c0/0x7c0 [ 417.930664][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 417.935880][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 417.941092][ C1] ? tipc_disc_init_msg+0x570/0x570 [ 417.946316][ C1] __run_timers+0x525/0x7c0 [ 417.950844][ C1] ? detach_timer+0x350/0x350 [ 417.955541][ C1] ? lock_chain_count+0x20/0x20 [ 417.960434][ C1] run_timer_softirq+0x63/0xf0 [ 417.965218][ C1] handle_softirqs+0x2a1/0x920 [ 417.970005][ C1] ? __irq_exit_rcu+0x12f/0x220 [ 417.974877][ C1] ? do_softirq+0x200/0x200 [ 417.979405][ C1] ? irqtime_account_irq+0xb2/0x1b0 [ 417.984621][ C1] __irq_exit_rcu+0x12f/0x220 [ 417.989319][ C1] ? irq_exit_rcu+0x20/0x20 [ 417.993865][ C1] irq_exit_rcu+0x5/0x20 [ 417.998148][ C1] sysvec_apic_timer_interrupt+0xa0/0xc0 [ 418.003822][ C1] [ 418.006765][ C1] [ 418.009706][ C1] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 418.015703][ C1] RIP: 0010:__sanitizer_cov_trace_const_cmp8+0x32/0x80 [ 418.022574][ C1] Code: e4 94 81 7e 65 8b 15 e5 94 81 7e 81 e2 00 01 ff 00 74 11 81 fa 00 01 00 00 75 57 83 b9 1c 16 00 00 00 74 4e 8b 91 f8 15 00 00 <83> fa 03 75 43 48 8b 91 00 16 00 00 44 8b 89 fc 15 00 00 49 c1 e1 [ 418.042199][ C1] RSP: 0018:ffffc90003ce7558 EFLAGS: 00000246 [ 418.048305][ C1] RAX: ffffffff81be401a RBX: 0000000000000000 RCX: ffff888025065940 [ 418.056306][ C1] RDX: 0000000000000000 RSI: 0000000000000028 RDI: 0000000000000020 [ 418.064307][ C1] RBP: ffffc90003ce7850 R08: dffffc0000000000 R09: fffff940002e9e99 [ 418.072296][ C1] R10: fffff940002e9e99 R11: 1ffffd40002e9e98 R12: 1ffffd40002e9e99 [ 418.080298][ C1] R13: ffffea000174f4c0 R14: 0000000000000028 R15: ffffea000174f4c0 [ 418.088331][ C1] ? copy_page_range+0x16fa/0x39e0 [ 418.093494][ C1] copy_page_range+0x16fa/0x39e0 [ 418.098501][ C1] ? pfn_valid+0x450/0x450 [ 418.102958][ C1] ? preempt_count_add+0x8d/0x190 [ 418.108001][ C1] ? preempt_count_add+0x8d/0x190 [ 418.113036][ C1] ? up_write+0x1bb/0x420 [ 418.117378][ C1] ? vma_interval_tree_insert_after+0x245/0x2a0 [ 418.123645][ C1] copy_mm+0xde1/0x15c0 [ 418.127825][ C1] ? copy_signal+0x680/0x680 [ 418.132422][ C1] ? lockdep_init_map_type+0x9d/0x880 [ 418.137817][ C1] ? __init_rwsem+0x11e/0x160 [ 418.142501][ C1] ? copy_signal+0x556/0x680 [ 418.147098][ C1] copy_process+0x1953/0x4020 [ 418.151791][ C1] ? copy_process+0x91f/0x4020 [ 418.156563][ C1] ? do_raw_spin_unlock+0x11d/0x230 [ 418.161786][ C1] ? idle_dummy+0x10/0x10 [ 418.166129][ C1] ? do_wp_page+0x807/0x1680 [ 418.170733][ C1] kernel_clone+0x225/0x8b0 [ 418.175243][ C1] ? handle_mm_fault+0x1367/0x3e70 [ 418.180371][ C1] ? create_io_thread+0x120/0x120 [ 418.185413][ C1] ? do_user_addr_fault+0x77d/0xb10 [ 418.190622][ C1] __x64_sys_clone+0x17c/0x1d0 [ 418.195397][ C1] ? __ia32_sys_vfork+0x100/0x100 [ 418.200434][ C1] ? lock_chain_count+0x20/0x20 [ 418.205298][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 418.210504][ C1] do_syscall_64+0x4c/0xa0 [ 418.214934][ C1] ? clear_bhb_loop+0x60/0xb0 [ 418.219617][ C1] ? clear_bhb_loop+0x60/0xb0 [ 418.224302][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 418.230209][ C1] RIP: 0033:0x7fa5e9985193 [ 418.234627][ C1] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00 [ 418.254239][ C1] RSP: 002b:00007ffd10414188 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 418.262659][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa5e9985193 [ 418.270633][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011 [ 418.278607][ C1] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001 [ 418.286583][ C1] R10: 0000555582b427d0 R11: 0000000000000246 R12: 0000000000000000 [ 418.294566][ C1] R13: 00000000000927c0 R14: 0000000000065c96 R15: 00007ffd10414320 [ 418.302564][ C1] [ 418.305931][ C1] Kernel Offset: disabled [ 418.310342][ C1] Rebooting in 86400 seconds..