last executing test programs: 7.396072213s ago: executing program 0 (id=1026): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18) socket$kcm(0x10, 0x2, 0x10) syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x8205, &(0x7f0000000080)={[{@user_xattr}]}, 0x81, 0x633, &(0x7f0000000600)="$eJzs3c9rHNcdAPDvzGplyVYruxRTm5YKerChWD9cU7c92b7UB0MN9aGUHiwsyRVe2cKSoXYNlqGHBhIIIdcQfMk/kHswueYWAkluOQecEBxySII3zOyMvKx25bWs3ZW9nw/s6s2bmX3vu6O3897Mzk4AQ2sqe0ojjkTE5SRismneRDRmThXLPf7m7pXskUS9/vevk0iKvHL5J8XfA9lTEjEWER+fi/hFZWu5a7fvXJuv1RvuRcysr6zOrN2+c2J5Zf7q4tXF63Mn/3Tq9Oyf507N7UqcZVznL/zt12/8799/XPqkdiKJM3Gp+t+F1jh2y1RMxZMixOb8kYg4nSXavC8vmzKEZMD1YGcqxf9jNSIOx2RUYt/mvMlYfn2glQN6ql6JqANDKtls/9XBVgTos7IfUI7tezEO3ssenW0MgLbGP9I4NhJj+dho/+MkHyeVsvHuwV0oPyvjx7tH38ke0eE4xMgulNPJxv2I+FW7+JO8bgfzozhZ/GmkTetl6dmIGC3ei3SH5U+1TPf7/+954m/eDlm8Z4q/Wf65HZY/6PgBGE4PzxY78o1s6un+L+sZlv2faOn/JMW5odZ9104Mev/Xuf9X7u/H8mPkaUs/LHsPLrZ/yWprxhevnX+rU/nN/b/skZVf9gX74dH9iKMt8f8/78wlm9s/adP/zRa53GUZf/30q/Od5g06/vqDiGNtxz9Pz2hlqZn1ldUyr+X85MzScm1xtvHctowPPvrXe53KH3T82faPDvFvt/2zvNUuy3j/4oOVTvMmnhl/+uVocilPjRY5/5lfX785FzGaXCgWaco/ubli24+ncpnyNbL4j/+uffvfJv58Q290Gf/qP649bqS2niXtevtv+VTJPal3WYdOsvgXdrj93+yyjO/+ees3LVnjZWK7+Me3vlTS7XsOAAAAAAAAwyjNz8Em6fRmOk2npxvX8P4y9qe1G2vrv1+6cev6QsTx/PuQ1bQ80z3ZmE6y6bni+7Dl9MmW6T9ExKGIeLsynk9PX7lRWxh08AAAAAAAAAAAAAAAAAAAALBHHCiu/y/vU/1tpXH9f1fWD/e4dkDP9fIGc8Depv3D8Mrbfxd3cN3Xh7oA/WX/D8NL+4fhpf3D8NL+YXg12n8XBwCBV479Pwwv7R+Gl/YPAAAAAK+kQ799+HkSERt/Gc8fmdFiXnWgNQN6rbmNj3W1xlTP6gL0V6WvqwF7yeapf9/+haHT1Rj/++LHAXtfHWAAknaZeeegvn3jf9h2TQAAAAAAAAAAAACgB44dcf0/DKs0Pnyexev1+r3eVQboqxe4kN9vAMBLzk//w/AyxgeedRV/x98GdP0/AAAAAAAAAAAAAPTNRP5I0uniFqATkabT0xE/i4iDUU2WlmuLsxHx84j4rFLdl03PDbrSAAAAAAAAAAAAAAAAAAAA8IpZu33n2nyttnizOfHDlpweJ8q7i3WzcIc6v0iivAtqP0PuNhFJ/wsdj4i9EHtvEiNNOUnERrbl90TFbq7FnqhGmldjgB9KAAAAAAAAAAAAAAAAAAAwpJquPW7v6Lt9rhEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA9N/T+//vPJE843UGHSMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8HL6KQAA//9SFzeV") r1 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0) 6.432365536s ago: executing program 0 (id=1031): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x0, 0xc}, {0xffff, 0xffff}, {0xd, 0xa}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44004}, 0x4000) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, 0x0) write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001000000000000000000000000000088000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d"], 0xfdef) 6.043307511s ago: executing program 0 (id=1034): syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00') bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r0, 0x8982, &(0x7f0000002800)={0x1, 'vlan0\x00'}) r1 = socket$inet6(0xa, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='kmem_cache_free\x00'}, 0x18) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f00000000c0)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20) setsockopt$inet6_int(r1, 0x29, 0x1000000000021, 0x0, 0x0) socket$inet6(0xa, 0x2, 0x3a) unshare(0x6020480) r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r2, 0xc004743e, &(0x7f00000000c0)) ioctl$PPPIOCSFLAGS1(r2, 0x40047459, 0x0) bind$unix(0xffffffffffffffff, 0x0, 0x0) ppoll(&(0x7f00000006c0)=[{0xffffffffffffffff, 0x98}], 0x1, &(0x7f0000000700)={0x77359400}, &(0x7f0000000780)={[0x1]}, 0x8) 5.988185222s ago: executing program 4 (id=1035): r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000500)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {0x0, 0xfff2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x402], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}]}}]}, 0xa4}}, 0x10) 5.474386538s ago: executing program 4 (id=1039): r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)=@newlink={0x4c, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x50483}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6, 0xf, 0x2}, @IFLA_IPTUN_LINK={0x8, 0x1, r2}, @IFLA_IPTUN_ENCAP_SPORT={0x6, 0x11, 0x4e22}]}}}]}, 0x4c}}, 0x0) sendmmsg$inet(r0, &(0x7f00000017c0), 0x0, 0x0) 5.305003411s ago: executing program 4 (id=1041): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) socket$pppl2tp(0x18, 0x1, 0x1) r0 = syz_io_uring_setup(0x10d, &(0x7f0000000200)={0x0, 0x9e74, 0x0, 0x4}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0) recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000180)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r5, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd_index=0x7fffffd, 0x2, 0x0, 0x0, 0x0, 0x1}) io_uring_enter(r0, 0x3f70, 0x0, 0x0, 0x0, 0x0) 5.253896611s ago: executing program 1 (id=1042): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18) socket$kcm(0x10, 0x2, 0x10) syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x8205, &(0x7f0000000080)={[{@user_xattr}]}, 0x81, 0x633, &(0x7f0000000600)="$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") r1 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0) 5.019195204s ago: executing program 1 (id=1045): bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='\t'], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0x7f, 0x0, 0x0, 0xb9ff}) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0xff2e) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)) r1 = syz_open_pts(r0, 0x101000) r2 = dup3(r1, r0, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x17) 4.879195696s ago: executing program 0 (id=1046): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x0, 0xc}, {0xffff, 0xffff}, {0xd, 0xa}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44004}, 0x4000) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, 0x0) write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000086dd0500560008005400000060ec970001983a00fc000018c6ba35000000000000000700ff020000000000000000000000000001000000000000000000000000000088000000000000000000860090780000000000000000000000000000ee3f000000002b036f8c006e75021d"], 0xfdef) 4.878793076s ago: executing program 1 (id=1047): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) write$binfmt_misc(r0, 0x0, 0x0) ioctl$TIOCSSOFTCAR(r0, 0x541a, &(0x7f0000000000)=0x81d) 4.805665927s ago: executing program 1 (id=1049): r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) r1 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r0}, 0x8) r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r3 = bpf$ITER_CREATE(0xb, 0x0, 0x0) close(r3) bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r2, 0x8, 0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000005c0)={r1, r0, 0x4, r2}, 0x10) 4.639465479s ago: executing program 0 (id=1050): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) socket$netlink(0x10, 0x3, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local}) writev(r0, 0x0, 0x0) 4.638591959s ago: executing program 1 (id=1051): r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)=@newlink={0x4c, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x50483}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6, 0xf, 0x2}, @IFLA_IPTUN_LINK={0x8, 0x1, r2}, @IFLA_IPTUN_ENCAP_SPORT={0x6, 0x11, 0x4e22}]}}}]}, 0x4c}}, 0x0) sendmmsg$inet(r0, &(0x7f00000017c0), 0x0, 0x0) 4.034743907s ago: executing program 4 (id=1052): r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000500)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {0x0, 0xfff2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x402], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x4000000}]}]}]}}]}, 0xa4}}, 0x10) 3.976033588s ago: executing program 3 (id=1053): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = fsopen(&(0x7f0000000140)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x34f}, 0x0, &(0x7f0000000080)) sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4, 0x700000000000000}, 0x80c0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000140)="2e00000011008188040f80ec59acbc0413a1810031000000000f000000028002002d1f00"/46, 0x2e}], 0x1}, 0x0) 3.84752645s ago: executing program 1 (id=1054): r0 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d) ioctl$AUTOFS_IOC_FAIL(r0, 0x4c80, 0xffffffffffffffb6) unshare(0x40000000) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) capset(&(0x7f0000000300)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb}) syz_open_dev$tty1(0xc, 0x4, 0x1) 3.83702924s ago: executing program 3 (id=1055): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008bd6000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000016"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x14, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000006c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000400)='io_uring_create\x00', r1}, 0x18) syz_io_uring_setup(0x1113, &(0x7f0000000280)={0x0, 0xb44a, 0x0, 0x0, 0x21e}, &(0x7f0000000000), &(0x7f0000000040)) 3.82032013s ago: executing program 4 (id=1056): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan0\x00') bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r1, 0x8982, &(0x7f0000002800)={0x1, 'vlan0\x00'}) r2 = socket$inet6(0xa, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='kmem_cache_free\x00'}, 0x18) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r2, 0x29, 0x20, &(0x7f00000000c0)={@mcast1, 0x800, 0x0, 0x103, 0x1}, 0x20) setsockopt$inet6_int(r2, 0x29, 0x1000000000021, 0x0, 0x0) socket$inet6(0xa, 0x2, 0x3a) unshare(0x6020480) r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000240), 0xc0802, 0x0) ioctl$PPPIOCNEWUNIT(r3, 0xc004743e, &(0x7f00000000c0)) ioctl$PPPIOCSFLAGS1(r3, 0x40047459, 0x0) bind$unix(0xffffffffffffffff, 0x0, 0x0) ppoll(&(0x7f00000006c0)=[{r0, 0x4040}], 0x1, &(0x7f0000000700)={0x77359400}, &(0x7f0000000780)={[0x1]}, 0x8) 3.563784053s ago: executing program 3 (id=1057): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) socket$kcm(0x10, 0x2, 0x10) syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x8205, &(0x7f0000000080)={[{@user_xattr}]}, 0x81, 0x633, &(0x7f0000000600)="$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") r1 = fspick(0xffffffffffffff9c, 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r1, 0x7, 0x0, 0x0, 0x0) 3.330895316s ago: executing program 2 (id=1058): bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB='\t'], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x41, 0x0) ioctl$TCSETAF(r0, 0x5408, &(0x7f00000000c0)={0x7f, 0x0, 0x0, 0xb9ff}) write$binfmt_aout(r0, &(0x7f0000000180)=ANY=[], 0xff2e) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)) r1 = syz_open_pts(r0, 0x101000) r2 = dup3(r1, r0, 0x0) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x17) 3.148085429s ago: executing program 3 (id=1059): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000012c0)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4739}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@norecovery}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x107242, 0x99) r1 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x147) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x101142, 0x94) pwrite64(r2, &(0x7f0000000140), 0x0, 0xfecc) fallocate(r2, 0x1, 0x10000, 0x80000007f) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000240)={0x3920e, r0, 0x4, 0x0, 0x0, 0x3}) 3.10164703s ago: executing program 2 (id=1060): r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) write$binfmt_misc(r0, &(0x7f0000000240), 0xfffffecc) ioctl$TIOCSSOFTCAR(r0, 0x541a, 0x0) 2.641466265s ago: executing program 3 (id=1061): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=@newqdisc={0x38, 0x24, 0xf0b, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x0, 0xc}, {0xffff, 0xffff}, {0xd, 0xa}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44004}, 0x4000) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r1 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, 0x0, 0xfdef) 2.125604222s ago: executing program 2 (id=1062): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) socket$pppl2tp(0x18, 0x1, 0x1) r0 = syz_io_uring_setup(0x10d, &(0x7f0000000200)={0x0, 0x9e74, 0x0, 0x4}, &(0x7f0000000340)=0x0, &(0x7f0000000280)=0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0) recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x0) r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r5, &(0x7f0000000180)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9, 0x12, r5, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd_index=0x7fffffd, 0x2, 0x0, 0x0, 0x0, 0x1}) io_uring_enter(r0, 0x3f70, 0x0, 0x0, 0x0, 0x0) 1.193222264s ago: executing program 2 (id=1063): r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) r1 = bpf$ITER_CREATE(0xb, &(0x7f00000004c0)={r0}, 0x8) r2 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r3 = bpf$ITER_CREATE(0xb, &(0x7f0000000180)={r1}, 0x8) close(r3) bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0) bpf$BPF_LINK_UPDATE(0x1d, &(0x7f00000005c0)={r1, r0, 0x4, r2}, 0x10) 1.060084676s ago: executing program 2 (id=1064): r0 = socket$inet6(0xa, 0x2, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$SMC_PNETID_GET(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(r1, &(0x7f0000000180)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14) sendmsg$nl_route(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000440)=@newlink={0x4c, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x50483}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_ENCAP_TYPE={0x6, 0xf, 0x2}, @IFLA_IPTUN_LINK={0x8, 0x1, r2}, @IFLA_IPTUN_ENCAP_SPORT={0x6, 0x11, 0x4e22}]}}}]}, 0x4c}}, 0x0) sendmmsg$inet(r0, &(0x7f00000017c0), 0x0, 0x0) 105.083029ms ago: executing program 0 (id=1065): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) gettid() timer_create(0x0, 0x0, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) splice(r1, 0x0, r0, 0x0, 0x1, 0x0) fcntl$setpipe(r0, 0x408, 0x7) 89.841309ms ago: executing program 2 (id=1066): r0 = socket(0x11, 0x800000003, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000500)={'team0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000280)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {0x0, 0xfff2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x8, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x402], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_GATE_MASK={0x8, 0x3, 0x26f}]}]}]}}]}, 0xa4}}, 0x10) 63.486809ms ago: executing program 4 (id=1067): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = fsopen(&(0x7f0000000140)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x34f}, 0x0, &(0x7f0000000080)) sendmsg$IEEE802154_LLSEC_ADD_DEV(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x4, 0x700000000000000}, 0x80c0) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000140)="2e00000011008188040f80ec59acbc0413a1810031000000000f000000028002002d1f00"/46, 0x2e}], 0x1}, 0x0) 0s ago: executing program 3 (id=1068): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) chdir(0x0) syz_usb_connect(0x0, 0x24, 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="6d706fe33d64656661756c743a2c00245a5367edffec85c4de0f0b51f6a77294c6a0ab8aec28bdfbaf3e2c57413127f6f5e2991af5b615f9e924774fcb88e2e05fc7eab3db10bcd89e6e510f4776b305a14438bca0098537c374eb25f2fe8f1c5f3435e06413cdc97436857bb5421a1e30e1a037f19bdc6b6a602a933f029281d5ddbba244b32772364d6bc8bd3168defee82f1fdc87db130f79b7efb8fabfcf98ef2546cf3ed7c628bc11ee9ec1d32e5eda9967da73a8d316e0f9"]) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r2, 0x40a85323, &(0x7f00000006c0)={{0x6, 0xd}, 'port0\x00', 0x47, 0x131452, 0x107, 0x8, 0x0, 0x650, 0x9, 0x0, 0x4, 0x3}) sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8) ioperm(0x5, 0xfffc, 0x7) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) poll(&(0x7f0000b2c000)=[{r4, 0x300}], 0x2c, 0xffffffffffbffff8) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}}, 0x0) socket(0x10, 0x3, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001d00070f000000000000000007000000", @ANYRES32, @ANYBLOB="40005200060010"], 0x24}, 0x1, 0x0, 0x0, 0x4004810}, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$sock_FIOGETOWN(r6, 0x8903, &(0x7f00000000c0)=0x0) syz_open_procfs(r7, &(0x7f0000000380)='net/psched\x00') r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="340000001000030400000000fedbdf", @ANYRES32=r1, @ANYBLOB="0008200007500500140012800b0001006272696439cc0f012884a4590573be8b8f6765000004000280"], 0x34}, 0x1, 0x0, 0x0, 0x900}, 0x0) kernel console output (not intermixed with test programs): [ 92.815874][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 92.840300][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 92.867868][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 92.887572][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 92.902286][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 92.933956][ T4266] device veth0_macvtap entered promiscuous mode [ 92.963715][ T4252] device veth0_macvtap entered promiscuous mode [ 92.981237][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 92.999101][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 93.019526][ T4266] device veth1_macvtap entered promiscuous mode [ 93.052266][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 93.083467][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 93.115470][ T4252] device veth1_macvtap entered promiscuous mode [ 93.183970][ T4266] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.205924][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 93.222959][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 93.244257][ T4252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 93.266131][ T4252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.281856][ T4252] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 93.296128][ T4266] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.318375][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 93.329291][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 93.339656][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 93.349077][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 93.359853][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 93.370148][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 93.380393][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 93.392990][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 93.405665][ T4257] device veth0_vlan entered promiscuous mode [ 93.421548][ T4266] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.431596][ T4266] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.441291][ T4266] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.451192][ T4266] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.466517][ T4252] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 93.480632][ T4252] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 93.496158][ T4252] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 93.509684][ T4257] device veth1_vlan entered promiscuous mode [ 93.517927][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 93.526259][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 93.534349][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 93.544333][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 93.556316][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 93.592038][ T4261] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 93.603148][ T4252] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.612740][ T4252] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.623305][ T4252] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.633183][ T4252] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 93.699064][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 93.713495][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 93.731274][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 93.791629][ T4306] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 93.803152][ T4306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 93.861824][ T4257] device veth0_macvtap entered promiscuous mode [ 93.902425][ T4262] device veth0_vlan entered promiscuous mode [ 93.917075][ T4257] device veth1_macvtap entered promiscuous mode [ 93.927873][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 93.940894][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 93.954854][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 93.964808][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 93.978350][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 93.990121][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 94.003775][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 94.014173][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 94.047759][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.061188][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.070767][ T4262] device veth1_vlan entered promiscuous mode [ 94.073658][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.095814][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 94.104640][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.114606][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.131966][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.144803][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.155681][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.170297][ T4257] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.216100][ T2903] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 94.228280][ T2903] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 94.238447][ T2903] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 94.252652][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.265747][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.276466][ T4257] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.288248][ T4257] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.301396][ T4257] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 94.316263][ T4261] device veth0_vlan entered promiscuous mode [ 94.341927][ T4257] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.351831][ T4257] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.361434][ T4257] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.371184][ T4257] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 94.381834][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 94.394956][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 94.404830][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 94.413859][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 94.423566][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 94.433207][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 94.443215][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 94.452609][ T48] Bluetooth: hci0: command 0x0419 tx timeout [ 94.463175][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 94.474635][ T2903] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.475554][ T4262] device veth0_macvtap entered promiscuous mode [ 94.496007][ T2903] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.510934][ T4261] device veth1_vlan entered promiscuous mode [ 94.521862][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 94.532587][ T4254] Bluetooth: hci1: command 0x0419 tx timeout [ 94.532628][ T4254] Bluetooth: hci3: command 0x0419 tx timeout [ 94.541244][ T4254] Bluetooth: hci2: command 0x0419 tx timeout [ 94.558318][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 94.569179][ T4262] device veth1_macvtap entered promiscuous mode [ 94.583361][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 94.594283][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 94.603299][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 94.613156][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 94.616971][ T48] Bluetooth: hci4: command 0x0419 tx timeout [ 94.624757][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 94.713707][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.731552][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.743798][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.759696][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.772297][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 94.788183][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.802184][ T4262] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 94.833944][ T4261] device veth0_macvtap entered promiscuous mode [ 94.867313][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 94.888233][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 94.902128][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 94.915035][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 94.961750][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 95.011696][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 95.053272][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.093067][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 95.126840][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.156725][ T4262] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 95.176945][ T4262] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.198584][ T4262] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 95.209309][ T4261] device veth1_macvtap entered promiscuous mode [ 95.239927][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 95.269232][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 95.281080][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 95.292493][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 95.340329][ T4262] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.358000][ T4262] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.370980][ T4262] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.382330][ T4262] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 95.440571][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 95.452209][ T4261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 95.465544][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 95.476427][ T4261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.499226][ T4261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 95.511730][ T4261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.523887][ T4261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 95.536262][ T4261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.569080][ T4261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 95.616208][ T4261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.629122][ T4261] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 95.659079][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 95.678119][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 95.705144][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 95.807989][ T4261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 95.836714][ T4261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.849565][ T4261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 95.865012][ T4261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.884654][ T4261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 95.921691][ T4261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.940899][ T4261] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 95.960021][ T4261] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 95.974571][ T4261] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 96.020174][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 96.050050][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 96.075084][ T4261] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.095209][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.106441][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.119866][ T4261] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.135780][ T4261] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.151136][ T4261] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 96.180711][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 96.324591][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.355714][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.427053][ T2903] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 96.488611][ T2903] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.518572][ T2903] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.538013][ T41] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.557774][ T41] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.564764][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 96.595252][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 96.610068][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 96.611981][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 96.641469][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 97.014965][ T4364] loop2: detected capacity change from 0 to 512 [ 97.066479][ T4365] loop4: detected capacity change from 0 to 512 [ 97.078657][ T4364] EXT4-fs: Ignoring removed oldalloc option [ 97.130695][ T4365] ======================================================= [ 97.130695][ T4365] WARNING: The mand mount option has been deprecated and [ 97.130695][ T4365] and is ignored by this kernel. Remove the mand [ 97.130695][ T4365] option from the mount to silence this warning. [ 97.130695][ T4365] ======================================================= [ 97.270296][ T4364] EXT4-fs error (device loop2): ext4_xattr_inode_iget:400: comm syz.2.3: Parent and EA inode have the same ino 15 [ 97.313797][ T4365] EXT4-fs (loop4): orphan cleanup on readonly fs [ 97.389424][ T4364] EXT4-fs (loop2): Remounting filesystem read-only [ 97.401886][ T4364] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2818: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 97.452148][ T4365] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.5: bg 0: block 248: padding at end of block bitmap is not set [ 97.481307][ T4364] EXT4-fs error (device loop2): ext4_xattr_inode_iget:400: comm syz.2.3: Parent and EA inode have the same ino 15 [ 97.521188][ T4365] Quota error (device loop4): write_blk: dquota write failed [ 97.542299][ T4365] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 97.557058][ T4364] EXT4-fs (loop2): Remounting filesystem read-only [ 97.566525][ T4364] EXT4-fs (loop2): 1 orphan inode deleted [ 97.579705][ T4364] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 97.590119][ T4365] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.5: Failed to acquire dquot type 1 [ 97.669975][ T4365] EXT4-fs (loop4): 1 truncate cleaned up [ 97.708021][ T4365] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 97.785077][ T4378] loop1: detected capacity change from 0 to 764 [ 97.901526][ T4380] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15'. [ 97.931080][ T4336] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4 [ 97.950114][ T4336] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2 [ 97.961842][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 97.997827][ T4336] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4 [ 98.079462][ T4336] hid-generic 0000:3000000:0000.0001: hidraw0: HID v0.00 Device [sy] on syz0 [ 98.250272][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 98.454606][ T4390] netlink: 16 bytes leftover after parsing attributes in process `syz.3.19'. [ 98.530984][ T4382] fido_id[4382]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 98.628017][ T4396] loop9: detected capacity change from 0 to 7 [ 98.670792][ T4396] Dev loop9: unable to read RDB block 7 [ 98.682815][ T4396] loop9: unable to read partition table [ 98.691037][ T4396] loop9: partition table beyond EOD, truncated [ 98.706914][ T4396] loop_reread_partitions: partition scan of loop9 (被ڬdƤݡ [ 98.706914][ T4396] U) failed (rc=-5) [ 98.979040][ T4402] process 'syz.2.23' launched '/dev/fd/3' with NULL argv: empty string added [ 100.265240][ T4416] loop0: detected capacity change from 0 to 128 [ 100.351601][ T4416] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 100.394652][ T4416] ext4 filesystem being mounted at /9/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 100.421914][ T4420] loop2: detected capacity change from 0 to 512 [ 100.461685][ T4420] EXT4-fs (loop2): orphan cleanup on readonly fs [ 100.508927][ T27] audit: type=1800 audit(1748384170.741:2): pid=4416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.28" name="mnt" dev="loop0" ino=12 res=0 errno=0 [ 100.518082][ T4420] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.29: bg 0: block 248: padding at end of block bitmap is not set [ 100.670292][ T4420] Quota error (device loop2): write_blk: dquota write failed [ 100.743576][ T4420] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 100.804414][ T4420] EXT4-fs error (device loop2): ext4_acquire_dquot:6802: comm syz.2.29: Failed to acquire dquot type 1 [ 100.855294][ T4420] EXT4-fs (loop2): 1 truncate cleaned up [ 100.894702][ T4420] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 100.932131][ T4423] EXT4-fs (loop0): re-mounted. Quota mode: none. [ 101.036401][ T4303] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4 [ 101.046141][ T4303] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2 [ 101.063364][ T4303] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4 [ 101.092552][ T4303] hid-generic 0000:3000000:0000.0002: hidraw0: HID v0.00 Device [sy] on syz0 [ 101.224750][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 101.327739][ T4425] fido_id[4425]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 101.360287][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 103.853502][ T4464] xt_hashlimit: max too large, truncated to 1048576 [ 104.492508][ T4483] netlink: 'syz.4.50': attribute type 4 has an invalid length. [ 104.921227][ T4493] loop3: detected capacity change from 0 to 512 [ 105.028926][ T4493] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 105.088309][ T4493] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 105.377003][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 105.513886][ T4509] sch_fq: defrate 4294967295 ignored. [ 106.103183][ T4528] loop1: detected capacity change from 0 to 512 [ 106.195909][ T4528] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 106.269415][ T4528] ext4 filesystem being mounted at /9/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 106.294581][ T4336] Process accounting resumed [ 106.513699][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 106.678540][ T4537] netlink: 4 bytes leftover after parsing attributes in process `syz.4.73'. [ 106.919328][ T4543] loop1: detected capacity change from 0 to 512 [ 106.968676][ T4543] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 107.075989][ T4545] loop0: detected capacity change from 0 to 512 [ 107.100720][ T4545] ext4: Unknown parameter 'subj_type' [ 107.130772][ T4543] EXT4-fs (loop1): 1 orphan inode deleted [ 107.142261][ T4543] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 107.163625][ T4543] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 107.175455][ T41] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 107.208368][ T41] EXT4-fs error (device loop1): ext4_release_dquot:6838: comm kworker/u4:2: Failed to release dquot type 1 [ 107.259394][ T4537] device hsr_slave_1 left promiscuous mode [ 107.362447][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 109.002791][ T4575] netlink: 52 bytes leftover after parsing attributes in process `syz.1.86'. [ 109.056046][ T4576] Zero length message leads to an empty skb [ 109.168658][ T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!! [ 109.197422][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 109.207176][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 109.216666][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 109.226011][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 109.235719][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 109.245961][ T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!! [ 109.270557][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 109.374606][ T4580] ax25_connect(): syz.0.83 uses autobind, please contact jreuter@yaina.de [ 109.466908][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 109.476802][ T0] NOHZ tick-stop error: local softirq work is pending, handler #302!!! [ 110.007531][ T4591] unsupported nla_type 52263 [ 110.121842][ T4591] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 110.330362][ T4591] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 110.657065][ T22] Process accounting resumed [ 110.752858][ T4612] netlink: 60 bytes leftover after parsing attributes in process `syz.3.99'. [ 110.990215][ T4615] ax25_connect(): syz.4.100 uses autobind, please contact jreuter@yaina.de [ 111.245158][ T4620] mmap: syz.2.103 (4620) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 112.923985][ T4645] capability: warning: `syz.4.107' uses deprecated v2 capabilities in a way that may be insecure [ 113.325990][ T4296] Process accounting resumed [ 113.362330][ T4655] netlink: 'syz.1.116': attribute type 10 has an invalid length. [ 113.502734][ T4660] ax25_connect(): syz.4.117 uses autobind, please contact jreuter@yaina.de [ 113.564404][ T4655] 8021q: adding VLAN 0 to HW filter on device team0 [ 113.876105][ T4655] bond0: (slave team0): Enslaving as an active interface with an up link [ 114.471993][ T4675] loop2: detected capacity change from 0 to 512 [ 114.614411][ T4675] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 114.614544][ T4675] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 114.630898][ T4675] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 114.631047][ T4675] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 114.631068][ T4675] EXT4-fs error (device loop2): ext4_acquire_dquot:6802: comm syz.2.123: Failed to acquire dquot type 0 [ 114.696027][ T4684] netlink: 12 bytes leftover after parsing attributes in process `syz.3.126'. [ 114.696157][ T4684] netlink: 28 bytes leftover after parsing attributes in process `syz.3.126'. [ 114.696177][ T4684] netlink: 12 bytes leftover after parsing attributes in process `syz.3.126'. [ 114.698450][ T4684] netlink: 28 bytes leftover after parsing attributes in process `syz.3.126'. [ 114.698481][ T4684] netlink: 'syz.3.126': attribute type 6 has an invalid length. [ 114.771970][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 116.154479][ T4702] loop2: detected capacity change from 0 to 2048 [ 116.163033][ T4702] EXT4-fs: Ignoring removed i_version option [ 116.260906][ T4702] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 116.297050][ T4702] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 116.576035][ T4704] ax25_connect(): syz.4.133 uses autobind, please contact jreuter@yaina.de [ 116.663515][ T27] audit: type=1326 audit(1748384186.891:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4710 comm="syz.1.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 116.929173][ T27] audit: type=1326 audit(1748384186.941:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4710 comm="syz.1.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 117.080268][ T27] audit: type=1326 audit(1748384186.951:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4710 comm="syz.1.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 117.103797][ T27] audit: type=1326 audit(1748384186.971:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4710 comm="syz.1.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 117.126400][ T27] audit: type=1326 audit(1748384186.971:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4710 comm="syz.1.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1e21790887 code=0x7ffc0000 [ 117.148952][ T27] audit: type=1326 audit(1748384186.991:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4710 comm="syz.1.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f1e217907fc code=0x7ffc0000 [ 117.172072][ T27] audit: type=1326 audit(1748384187.001:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4710 comm="syz.1.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1e21790734 code=0x7ffc0000 [ 117.194945][ T27] audit: type=1326 audit(1748384187.011:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4710 comm="syz.1.135" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1e21790734 code=0x7ffc0000 [ 117.283531][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 117.455870][ T4718] loop3: detected capacity change from 0 to 512 [ 117.556964][ T4718] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2195: inode #15: comm syz.3.138: corrupted in-inode xattr [ 117.695164][ T4718] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.138: couldn't read orphan inode 15 (err -117) [ 117.746394][ T4718] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 117.805245][ T4718] EXT4-fs error (device loop3): ext4_search_dir:1549: inode #2: block 13: comm syz.3.138: bad entry in directory: rec_len % 4 != 0 - offset=76, inode=4294967056, rec_len=127, size=1024 fake=0 [ 117.920165][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 118.085825][ T4740] loop4: detected capacity change from 0 to 1024 [ 118.155730][ T4740] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 118.189319][ T4740] EXT4-fs (loop4): unmounting filesystem. [ 118.861735][ T4760] ax25_connect(): syz.1.152 uses autobind, please contact jreuter@yaina.de [ 118.960863][ T4764] syz.2.155[4764] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 118.961503][ T4764] syz.2.155[4764] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 119.782914][ T4773] netlink: 44 bytes leftover after parsing attributes in process `syz.4.158'. [ 120.079574][ T4779] netlink: 8 bytes leftover after parsing attributes in process `syz.2.159'. [ 120.158499][ T4779] device ipvlan0 entered promiscuous mode [ 120.172148][ T4779] device ipvlan0 left promiscuous mode [ 120.718749][ T4798] loop1: detected capacity change from 0 to 512 [ 120.763847][ T4798] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 120.797831][ T4798] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 120.818942][ T4798] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 120.839228][ T4798] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 120.863462][ T4798] System zones: 0-2, 18-18, 34-34 [ 120.896478][ T4798] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 121.007130][ T4798] EXT4-fs (loop1): 1 truncate cleaned up [ 121.012851][ T4798] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 121.102525][ T27] kauditd_printk_skb: 2 callbacks suppressed [ 121.102540][ T27] audit: type=1800 audit(1748384191.331:13): pid=4798 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.165" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 121.262621][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 121.718372][ T4812] ax25_connect(): syz.1.168 uses autobind, please contact jreuter@yaina.de [ 121.755186][ T4811] netlink: 4 bytes leftover after parsing attributes in process `syz.2.169'. [ 121.930912][ T4811] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 122.112851][ T4811] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 122.310753][ T4811] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 122.440952][ T4811] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 122.709250][ T4813] netlink: 4 bytes leftover after parsing attributes in process `syz.2.169'. [ 123.026809][ T4813] device hsr_slave_1 left promiscuous mode [ 123.525331][ T4832] loop1: detected capacity change from 0 to 2048 [ 123.626863][ T4832] loop1: p1 < > p3 [ 123.635774][ T4832] loop1: p3 size 134217728 extends beyond EOD, truncated [ 123.932286][ T4835] Process accounting resumed [ 124.095671][ T4253] udevd[4253]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 124.530909][ T27] audit: type=1326 audit(1748384194.761:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4859 comm="syz.1.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 124.584893][ T27] audit: type=1326 audit(1748384194.761:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4859 comm="syz.1.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 124.618502][ T27] audit: type=1326 audit(1748384194.761:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4859 comm="syz.1.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 124.682459][ T27] audit: type=1326 audit(1748384194.761:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4859 comm="syz.1.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 124.723642][ T27] audit: type=1326 audit(1748384194.761:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4859 comm="syz.1.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 124.756009][ T27] audit: type=1326 audit(1748384194.761:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4859 comm="syz.1.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 124.804530][ T27] audit: type=1326 audit(1748384194.761:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4859 comm="syz.1.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 124.843331][ T27] audit: type=1326 audit(1748384194.791:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4859 comm="syz.1.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 124.917752][ T27] audit: type=1326 audit(1748384194.801:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4859 comm="syz.1.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 125.215470][ T4877] Process accounting resumed [ 125.583332][ T4893] tmpfs: Unknown parameter 'noswap' [ 126.110674][ T4890] device hsr0 entered promiscuous mode [ 126.285355][ T4890] device macsec1 entered promiscuous mode [ 126.310771][ T4890] device hsr0 left promiscuous mode [ 126.733741][ T27] kauditd_printk_skb: 1 callbacks suppressed [ 126.733757][ T27] audit: type=1326 audit(1748384196.961:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4902 comm="syz.3.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 126.811120][ T27] audit: type=1326 audit(1748384196.961:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4902 comm="syz.3.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 126.887718][ T27] audit: type=1326 audit(1748384196.961:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4902 comm="syz.3.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 126.976703][ T27] audit: type=1326 audit(1748384196.961:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4902 comm="syz.3.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 127.024217][ T27] audit: type=1326 audit(1748384196.961:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4902 comm="syz.3.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 127.049294][ T4913] Process accounting resumed [ 127.090437][ T27] audit: type=1326 audit(1748384196.961:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4902 comm="syz.3.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 127.195013][ T27] audit: type=1326 audit(1748384196.961:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4902 comm="syz.3.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 127.280792][ T27] audit: type=1326 audit(1748384196.961:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4902 comm="syz.3.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 127.341899][ T27] audit: type=1326 audit(1748384196.961:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4902 comm="syz.3.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 127.399241][ T27] audit: type=1326 audit(1748384196.961:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4902 comm="syz.3.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 127.573848][ T4924] loop3: detected capacity change from 0 to 256 [ 127.820449][ T4927] loop2: detected capacity change from 0 to 1024 [ 128.090341][ T4927] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 128.333054][ T4927] syz.2.213 (4927) used greatest stack depth: 19712 bytes left [ 128.407540][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 129.376435][ T4944] syz.4.218 uses obsolete (PF_INET,SOCK_PACKET) [ 130.125715][ T4968] loop1: detected capacity change from 0 to 764 [ 130.148624][ T4966] netlink: 'syz.4.226': attribute type 11 has an invalid length. [ 130.169738][ T4966] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.226'. [ 130.202408][ T4253] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 131.590580][ T4990] netlink: 'syz.3.235': attribute type 10 has an invalid length. [ 131.691532][ T4993] loop2: detected capacity change from 0 to 512 [ 131.711731][ T4990] 8021q: adding VLAN 0 to HW filter on device team0 [ 131.766490][ T4990] bond0: (slave team0): Enslaving as an active interface with an up link [ 131.780097][ T4993] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 131.829676][ T4993] ext4 filesystem being mounted at /46/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 131.973675][ T27] kauditd_printk_skb: 14 callbacks suppressed [ 131.973692][ T27] audit: type=1800 audit(1748384202.201:48): pid=4993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.236" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 132.063273][ T27] audit: type=1800 audit(1748384202.231:49): pid=4993 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.236" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 132.253706][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 132.425543][ T5007] loop4: detected capacity change from 0 to 764 [ 132.929970][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.938490][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.063335][ T5020] capability: warning: `syz.2.246' uses 32-bit capabilities (legacy support in use) [ 133.454418][ T5020] netlink: 12 bytes leftover after parsing attributes in process `syz.2.246'. [ 133.555709][ T5020] tipc: Started in network mode [ 133.622019][ T5020] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 133.632409][ T5020] tipc: Enabling of bearer rejected, failed to enable media [ 134.040883][ T5035] device hsr0 entered promiscuous mode [ 134.046585][ T5035] device macsec1 entered promiscuous mode [ 134.103398][ T5035] device hsr0 left promiscuous mode [ 134.553395][ T5044] loop1: detected capacity change from 0 to 512 [ 134.621044][ T5044] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 134.649310][ T5044] ext4 filesystem being mounted at /58/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 134.971692][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 135.096974][ T5053] loop2: detected capacity change from 0 to 764 [ 135.138294][ T5055] device gtp0 entered promiscuous mode [ 135.145945][ T4253] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 136.516398][ T5078] loop1: detected capacity change from 0 to 1024 [ 136.532923][ T5078] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 136.585193][ T5078] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 136.596197][ T5080] loop3: detected capacity change from 0 to 1024 [ 136.604173][ T5078] EXT4-fs (loop1): orphan cleanup on readonly fs [ 136.613089][ T5078] EXT4-fs error (device loop1): ext4_read_inode_bitmap:168: comm syz.1.267: Inode bitmap for bg 0 marked uninitialized [ 136.723205][ T5080] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 136.777385][ T5078] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 136.903773][ T5078] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 137.062612][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 137.109609][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 137.279172][ T5095] ax25_connect(): syz.2.274 uses autobind, please contact jreuter@yaina.de [ 138.022808][ T5108] netlink: 4 bytes leftover after parsing attributes in process `syz.1.277'. [ 138.064796][ T5108] bridge0: port 2(bridge_slave_1) entered disabled state [ 138.075296][ T5108] bridge0: port 1(bridge_slave_0) entered disabled state [ 138.993666][ T5113] loop3: detected capacity change from 0 to 164 [ 139.147175][ T5113] syz.3.279: attempt to access beyond end of device [ 139.147175][ T5113] loop3: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 139.203986][ T5113] syz.3.279: attempt to access beyond end of device [ 139.203986][ T5113] loop3: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 139.719452][ T5125] netlink: 4 bytes leftover after parsing attributes in process `syz.2.282'. [ 140.516039][ T4914] Set syz1 is full, maxelem 65536 reached [ 140.800314][ T5135] Driver unsupported XDP return value 0 on prog (id 89) dev N/A, expect packet loss! [ 142.092463][ T5152] netlink: 'syz.4.293': attribute type 10 has an invalid length. [ 142.137638][ T5152] netlink: 2 bytes leftover after parsing attributes in process `syz.4.293'. [ 142.187776][ T5152] device team0 entered promiscuous mode [ 142.216049][ T5152] device team_slave_0 entered promiscuous mode [ 142.233263][ T5152] device team_slave_1 entered promiscuous mode [ 142.246956][ T5152] bridge0: port 3(team0) entered blocking state [ 142.263770][ T5152] bridge0: port 3(team0) entered disabled state [ 142.293385][ T5152] bridge0: port 3(team0) entered blocking state [ 142.300988][ T5152] bridge0: port 3(team0) entered forwarding state [ 142.398495][ T5157] loop3: detected capacity change from 0 to 512 [ 142.638565][ T5172] loop0: detected capacity change from 0 to 512 [ 142.646251][ T5157] Quota error (device loop3): v2_read_file_info: Free block number 1 out of range (1, 6). [ 142.698511][ T5157] EXT4-fs warning (device loop3): ext4_enable_quotas:7054: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 142.734995][ T5172] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 142.762002][ T5157] EXT4-fs (loop3): mount failed [ 142.799410][ T5172] ext4 filesystem being mounted at /52/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 142.832500][ T27] audit: type=1800 audit(1748384213.261:50): pid=5172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.300" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 142.873160][ T27] audit: type=1800 audit(1748384213.302:51): pid=5172 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.300" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 142.926956][ T5181] loop4: detected capacity change from 0 to 512 [ 143.000028][ T5181] EXT4-fs (loop4): too many log groups per flexible block group [ 143.008307][ T5181] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 143.020323][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 143.021825][ T5181] EXT4-fs (loop4): mount failed [ 144.583364][ T4296] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 144.731595][ T4296] usb 5-1: device descriptor read/64, error -71 [ 145.016732][ T4296] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 145.538322][ T4296] usb 5-1: device descriptor read/64, error -71 [ 145.686279][ T4296] usb usb5-port1: attempt power cycle [ 145.876636][ T5229] 9pnet_fd: Insufficient options for proto=fd [ 145.940013][ T5229] netlink: 8 bytes leftover after parsing attributes in process `syz.1.322'. [ 146.119356][ T4296] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 146.160548][ T5239] loop0: detected capacity change from 0 to 512 [ 146.162472][ T4296] usb 5-1: device descriptor read/8, error -71 [ 146.228904][ T5239] EXT4-fs (loop0): too many log groups per flexible block group [ 146.257141][ T5239] EXT4-fs (loop0): failed to initialize mballoc (-12) [ 146.267114][ T5239] EXT4-fs (loop0): mount failed [ 146.464122][ T4296] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 146.535239][ T4296] usb 5-1: device descriptor read/8, error -71 [ 146.722054][ T4296] usb usb5-port1: unable to enumerate USB device [ 147.799376][ T5258] syz.3.332 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 147.905511][ T5264] netlink: 'syz.2.333': attribute type 4 has an invalid length. [ 148.104370][ T27] audit: type=1326 audit(1748384218.615:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5260 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 148.254154][ T27] audit: type=1326 audit(1748384218.615:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5260 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 148.336312][ T27] audit: type=1326 audit(1748384218.615:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5260 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 148.429817][ T27] audit: type=1326 audit(1748384218.615:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5260 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 148.482000][ T5280] loop4: detected capacity change from 0 to 512 [ 148.511012][ T27] audit: type=1326 audit(1748384218.615:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5260 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 148.600536][ T5280] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 148.621657][ T27] audit: type=1326 audit(1748384218.646:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5260 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 148.656955][ T5280] ext4 filesystem being mounted at /syzcgroup/cpu/syz4/cgroup.procs supports timestamps until 2038-01-19 (0x7fffffff) [ 148.714731][ T5280] EXT4-fs (loop4): unmounting filesystem. [ 148.740774][ T27] audit: type=1326 audit(1748384218.646:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5260 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 148.860005][ T27] audit: type=1326 audit(1748384218.808:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5260 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 149.004479][ T27] audit: type=1326 audit(1748384218.808:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5260 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 149.139712][ T27] audit: type=1326 audit(1748384218.808:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5260 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 150.593294][ T5300] loop4: detected capacity change from 0 to 8192 [ 151.311710][ T5324] netlink: 'syz.0.353': attribute type 21 has an invalid length. [ 152.173398][ T5333] netlink: 4 bytes leftover after parsing attributes in process `syz.1.356'. [ 152.646966][ T5350] loop4: detected capacity change from 0 to 764 [ 153.179400][ T5363] loop1: detected capacity change from 0 to 512 [ 153.230098][ T5363] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 153.261237][ T5363] ext4 filesystem being mounted at /syzcgroup/cpu/syz1/cgroup.procs supports timestamps until 2038-01-19 (0x7fffffff) [ 153.298568][ T5363] EXT4-fs (loop1): unmounting filesystem. [ 153.652447][ T27] kauditd_printk_skb: 17 callbacks suppressed [ 153.652463][ T27] audit: type=1326 audit(1748384224.228:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 153.680639][ T5381] netlink: 4 bytes leftover after parsing attributes in process `syz.0.375'. [ 153.698573][ T5381] device hsr_slave_0 left promiscuous mode [ 153.716904][ T5381] device hsr_slave_1 left promiscuous mode [ 153.739133][ T27] audit: type=1326 audit(1748384224.278:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 153.841929][ T27] audit: type=1326 audit(1748384224.278:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 153.908656][ T5386] loop1: detected capacity change from 0 to 512 [ 153.917125][ T27] audit: type=1326 audit(1748384224.278:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 153.992963][ T5386] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 154.054944][ T5388] loop3: detected capacity change from 0 to 764 [ 154.061560][ T5386] ext4 filesystem being mounted at /80/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 154.097924][ T4374] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 154.156964][ T27] audit: type=1326 audit(1748384224.278:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 154.275078][ T27] audit: type=1326 audit(1748384224.278:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 154.323588][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 154.407980][ T27] audit: type=1326 audit(1748384224.278:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 154.476758][ T27] audit: type=1326 audit(1748384224.278:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 154.618981][ T27] audit: type=1326 audit(1748384224.278:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 154.734009][ T27] audit: type=1326 audit(1748384224.278:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5378 comm="syz.3.374" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 155.116399][ T5423] loop4: detected capacity change from 0 to 512 [ 155.180484][ T5423] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 155.191262][ T5423] ext4 filesystem being mounted at /82/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 155.284971][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 157.645428][ T5444] netlink: 14 bytes leftover after parsing attributes in process `syz.4.399'. [ 157.675553][ T5444] device hsr_slave_0 left promiscuous mode [ 157.956842][ T5449] device syzkaller0 entered promiscuous mode [ 158.026536][ T5460] netlink: 2028 bytes leftover after parsing attributes in process `syz.1.404'. [ 158.087489][ T5460] netlink: 12 bytes leftover after parsing attributes in process `syz.1.404'. [ 160.479261][ T5474] netlink: 4 bytes leftover after parsing attributes in process `syz.0.413'. [ 160.489101][ T5474] device bridge_slave_1 left promiscuous mode [ 160.495673][ T5474] bridge0: port 2(bridge_slave_1) entered disabled state [ 160.505927][ T5474] device bridge_slave_0 left promiscuous mode [ 160.514769][ T5474] bridge0: port 1(bridge_slave_0) entered disabled state [ 160.955588][ T5495] netlink: 8 bytes leftover after parsing attributes in process `syz.2.422'. [ 160.991966][ T5495] netlink: 8 bytes leftover after parsing attributes in process `syz.2.422'. [ 161.264227][ T5513] netlink: 340 bytes leftover after parsing attributes in process `syz.3.428'. [ 161.319928][ T5513] netlink: 48 bytes leftover after parsing attributes in process `syz.3.428'. [ 161.341683][ T5515] loop3: detected capacity change from 0 to 512 [ 161.463547][ T5515] EXT4-fs (loop3): 1 orphan inode deleted [ 161.482289][ T4581] __quota_error: 5 callbacks suppressed [ 161.482308][ T4581] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 161.494828][ T5515] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 161.539238][ T5515] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 161.570129][ T4581] EXT4-fs error (device loop3): ext4_release_dquot:6838: comm kworker/u4:9: Failed to release dquot type 1 [ 161.739169][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 161.833920][ T5532] loop4: detected capacity change from 0 to 512 [ 161.882437][ T5532] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 161.898927][ T5532] ext4 filesystem being mounted at /95/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 161.915770][ T27] audit: type=1800 audit(1748384232.548:94): pid=5532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.436" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 162.104296][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 163.639545][ T5572] block device autoloading is deprecated and will be removed. [ 164.522567][ T5598] loop3: detected capacity change from 0 to 1024 [ 164.629798][ T5598] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 164.778423][ T5610] netlink: 'syz.0.463': attribute type 4 has an invalid length. [ 164.780887][ T5611] sctp: [Deprecated]: syz.4.462 (pid 5611) Use of int in maxseg socket option. [ 164.780887][ T5611] Use struct sctp_assoc_value instead [ 164.867348][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 165.068214][ T5616] loop3: detected capacity change from 0 to 512 [ 165.087272][ T5616] EXT4-fs: Ignoring removed mblk_io_submit option [ 165.130222][ T5616] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 165.168300][ T5616] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 165.178036][ T5616] EXT4-fs (loop3): orphan cleanup on readonly fs [ 165.208258][ T5616] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:477: comm syz.3.464: Invalid block bitmap block 0 in block_group 0 [ 165.242188][ T5616] EXT4-fs (loop3): Remounting filesystem read-only [ 165.254965][ T5616] Quota error (device loop3): write_blk: dquota write failed [ 165.263597][ T5616] Quota error (device loop3): write_blk: dquota write failed [ 165.272218][ T5616] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 165.283291][ T5616] EXT4-fs error (device loop3): ext4_acquire_dquot:6802: comm syz.3.464: Failed to acquire dquot type 1 [ 165.312087][ T5616] EXT4-fs (loop3): Remounting filesystem read-only [ 165.329554][ T5616] Quota error (device loop3): write_blk: dquota write failed [ 165.346503][ T5616] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 165.363969][ T5616] EXT4-fs error (device loop3): ext4_acquire_dquot:6802: comm syz.3.464: Failed to acquire dquot type 1 [ 165.398922][ T5616] EXT4-fs (loop3): Remounting filesystem read-only [ 165.423621][ T5616] Quota error (device loop3): write_blk: dquota write failed [ 165.451735][ T5616] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 165.467674][ T5616] EXT4-fs error (device loop3): ext4_acquire_dquot:6802: comm syz.3.464: Failed to acquire dquot type 1 [ 165.510651][ T5616] EXT4-fs (loop3): Remounting filesystem read-only [ 165.526136][ T5616] EXT4-fs (loop3): 1 orphan inode deleted [ 165.546708][ T5616] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 165.694739][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 166.725974][ T5504] Set syz1 is full, maxelem 65536 reached [ 167.174547][ T5685] netlink: 12 bytes leftover after parsing attributes in process `syz.4.493'. [ 167.215973][ T5685] netlink: 20 bytes leftover after parsing attributes in process `syz.4.493'. [ 167.250377][ T5685] netlink: 20 bytes leftover after parsing attributes in process `syz.4.493'. [ 167.455665][ T5695] loop0: detected capacity change from 0 to 1024 [ 167.534150][ T5695] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 167.745495][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 168.800980][ T5717] loop2: detected capacity change from 0 to 2048 [ 168.874720][ T5717] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 168.963937][ T5727] loop1: detected capacity change from 0 to 1024 [ 168.983044][ T5727] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 169.017329][ T5717] EXT4-fs: Ignoring removed orlov option [ 169.024541][ T5727] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 169.036752][ T5717] EXT4-fs (loop2): can't enable nombcache during remount [ 169.047142][ T5727] EXT4-fs (loop1): orphan cleanup on readonly fs [ 169.062293][ T5727] EXT4-fs error (device loop1): ext4_read_inode_bitmap:168: comm syz.1.509: Inode bitmap for bg 0 marked uninitialized [ 169.090494][ T5727] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 169.119538][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 169.125624][ T5727] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 169.223481][ T5738] netlink: 'syz.0.512': attribute type 4 has an invalid length. [ 169.232697][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 169.237130][ T5738] netlink: 17 bytes leftover after parsing attributes in process `syz.0.512'. [ 169.303943][ T5738] device wireguard0 entered promiscuous mode [ 169.371890][ T5743] loop1: detected capacity change from 0 to 1024 [ 169.427183][ T5743] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 169.526380][ T5752] netlink: 28 bytes leftover after parsing attributes in process `syz.2.518'. [ 169.567284][ T5752] netem: change failed [ 169.586312][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 169.830644][ T5764] netlink: 'syz.4.523': attribute type 1 has an invalid length. [ 169.955041][ T5766] loop1: detected capacity change from 0 to 1024 [ 169.955764][ T5768] 8021q: adding VLAN 0 to HW filter on device bond1 [ 169.982332][ T5766] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 170.015312][ T5766] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 170.047376][ T5776] netlink: 8 bytes leftover after parsing attributes in process `syz.4.523'. [ 170.066901][ T5766] EXT4-fs (loop1): orphan cleanup on readonly fs [ 170.083614][ T5766] EXT4-fs error (device loop1): ext4_read_inode_bitmap:168: comm syz.1.524: Inode bitmap for bg 0 marked uninitialized [ 170.114480][ T5766] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 170.128887][ T5776] device veth3 entered promiscuous mode [ 170.132272][ T5766] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 170.143911][ T5779] netlink: 14 bytes leftover after parsing attributes in process `syz.2.526'. [ 170.158830][ T5779] device hsr_slave_0 left promiscuous mode [ 170.222993][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 170.318526][ T5784] tipc: Started in network mode [ 170.324655][ T5784] tipc: Node identity 4, cluster identity 4711 [ 170.342482][ T5784] tipc: Node number set to 4 [ 170.382501][ T5786] loop1: detected capacity change from 0 to 1024 [ 170.449513][ T5786] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 170.630874][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 170.788249][ T5803] syz.1.536[5803] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 170.788357][ T5803] syz.1.536[5803] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 171.106828][ T5811] loop0: detected capacity change from 0 to 128 [ 171.415352][ T5817] smc: net device bond0 applied user defined pnetid SYZ2 [ 171.444749][ T5817] smc: net device bond0 erased user defined pnetid SYZ2 [ 171.513719][ T5820] netlink: 8 bytes leftover after parsing attributes in process `syz.3.540'. [ 171.765185][ T5820] 8021q: adding VLAN 0 to HW filter on device bond1 [ 172.426411][ T5835] loop3: detected capacity change from 0 to 1024 [ 172.513905][ T5835] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 172.630263][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 173.889866][ T5867] loop4: detected capacity change from 0 to 512 [ 173.960080][ T5867] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 173.978952][ T5867] ext4 filesystem being mounted at /116/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 174.040942][ T27] audit: type=1800 audit(1748384244.723:95): pid=5867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.559" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 174.083487][ T27] audit: type=1800 audit(1748384244.733:96): pid=5867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.559" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 174.128947][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 174.145301][ T5874] loop0: detected capacity change from 0 to 512 [ 174.154724][ T5874] EXT4-fs: Ignoring removed nobh option [ 174.188344][ T5874] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 174.298576][ T5881] loop4: detected capacity change from 0 to 1024 [ 174.340670][ T5881] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 174.499775][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 174.681067][ T5889] loop2: detected capacity change from 0 to 512 [ 174.714653][ T5889] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 174.749668][ T5889] EXT4-fs (loop2): 1 truncate cleaned up [ 174.777224][ T27] audit: type=1800 audit(1748384245.455:97): pid=5874 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.556" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 174.779370][ T5889] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 174.931473][ T5892] loop4: detected capacity change from 0 to 128 [ 174.989340][ T5892] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 175.049748][ T5892] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 175.072681][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 175.094097][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 175.536353][ T5909] loop1: detected capacity change from 0 to 2048 [ 175.550231][ T5909] EXT4-fs: Ignoring removed i_version option [ 175.597076][ T5909] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 175.615041][ T5909] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 175.678402][ T5909] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.572: bg 0: block 345: padding at end of block bitmap is not set [ 175.703712][ T5909] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 16 with error 117 [ 175.717312][ T5909] EXT4-fs (loop1): This should not happen!! Data will be lost [ 175.717312][ T5909] [ 175.788068][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 175.925012][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 176.047313][ T27] audit: type=1326 audit(1748384246.728:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5914 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 176.073271][ T5916] loop4: detected capacity change from 0 to 1024 [ 176.094031][ T5917] loop1: detected capacity change from 0 to 256 [ 176.098917][ T27] audit: type=1326 audit(1748384246.728:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5914 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 176.150465][ T27] audit: type=1326 audit(1748384246.758:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5914 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 176.208784][ T5916] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 176.222481][ T27] audit: type=1326 audit(1748384246.758:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5914 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 176.294429][ T27] audit: type=1326 audit(1748384246.758:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5914 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 176.378052][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 176.386985][ T27] audit: type=1326 audit(1748384246.758:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5914 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 176.463495][ T27] audit: type=1326 audit(1748384246.758:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5914 comm="syz.1.575" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 176.542618][ T5930] netdevsim netdevsim4: Direct firmware load for ./file0 failed with error -2 [ 176.568719][ T5930] netdevsim netdevsim4: Falling back to sysfs fallback for: ./file0 [ 176.700440][ T5935] ax25_connect(): syz.1.581 uses autobind, please contact jreuter@yaina.de [ 177.739113][ T5950] loop0: detected capacity change from 0 to 512 [ 177.755054][ T5950] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 177.788411][ T5950] EXT4-fs (loop0): 1 truncate cleaned up [ 177.825264][ T5950] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 177.845915][ T5954] loop3: detected capacity change from 0 to 1024 [ 177.846354][ T5957] loop1: detected capacity change from 0 to 2048 [ 177.880904][ T5957] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 177.912211][ T5954] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 177.938521][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 178.010450][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 178.706836][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 178.846862][ T5990] loop0: detected capacity change from 0 to 1024 [ 178.996907][ T5990] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 179.214326][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 179.460400][ T6016] netlink: 16 bytes leftover after parsing attributes in process `syz.2.616'. [ 179.853381][ T6030] netlink: 8 bytes leftover after parsing attributes in process `syz.0.617'. [ 180.111842][ T6030] 8021q: adding VLAN 0 to HW filter on device bond1 [ 180.752746][ T6033] syz.2.620[6033] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 180.752855][ T6033] syz.2.620[6033] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 180.931577][ T6041] loop4: detected capacity change from 0 to 1024 [ 181.017082][ T6041] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 181.073540][ T6050] loop0: detected capacity change from 0 to 512 [ 181.121959][ T6050] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 181.130163][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 181.152995][ T6050] ext4 filesystem being mounted at /120/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 181.177466][ T27] kauditd_printk_skb: 37 callbacks suppressed [ 181.177482][ T27] audit: type=1800 audit(1748384251.868:142): pid=6050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.627" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 181.281848][ T6061] loop1: detected capacity change from 0 to 256 [ 181.289885][ T27] audit: type=1800 audit(1748384251.908:143): pid=6050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.627" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 181.289929][ T6061] FAT-fs (loop1): bogus number of FAT sectors [ 181.313219][ T6061] FAT-fs (loop1): Can't find a valid FAT filesystem [ 181.334698][ T6059] loop2: detected capacity change from 0 to 1024 [ 181.352111][ T6059] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 181.374876][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 181.418323][ T6059] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 181.425109][ T6066] netlink: 14 bytes leftover after parsing attributes in process `syz.3.633'. [ 181.463016][ T6059] EXT4-fs (loop2): orphan cleanup on readonly fs [ 181.502657][ T6059] EXT4-fs error (device loop2): ext4_read_inode_bitmap:168: comm syz.2.630: Inode bitmap for bg 0 marked uninitialized [ 181.528974][ T6059] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 181.570958][ T6059] EXT4-fs (loop2): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 181.636311][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 181.851399][ T6066] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 181.897112][ T6066] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 181.978910][ T6066] bond0 (unregistering): (slave team0): Releasing backup interface [ 182.006443][ T6066] bond0 (unregistering): Released all slaves [ 183.034214][ T6091] loop1: detected capacity change from 0 to 512 [ 183.113197][ T6091] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 183.130612][ T6091] ext4 filesystem being mounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 183.164767][ T6099] loop3: detected capacity change from 0 to 512 [ 183.181324][ T6097] loop4: detected capacity change from 0 to 1024 [ 183.191048][ T27] audit: type=1800 audit(1748384253.891:144): pid=6091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.645" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 183.212767][ T6099] EXT4-fs: Ignoring removed orlov option [ 183.220688][ T27] audit: type=1800 audit(1748384253.891:145): pid=6091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.645" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 183.249274][ T6102] loop0: detected capacity change from 0 to 128 [ 183.271264][ T6097] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 183.278539][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 183.281025][ T6099] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 183.320247][ T6102] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 183.343896][ T6099] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.646: bg 0: block 248: padding at end of block bitmap is not set [ 183.378493][ T6102] ext4 filesystem being mounted at /124/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 183.380267][ T6099] Quota error (device loop3): write_blk: dquota write failed [ 183.393664][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 183.398209][ T6099] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 183.441629][ T6099] EXT4-fs error (device loop3): ext4_acquire_dquot:6802: comm syz.3.646: Failed to acquire dquot type 1 [ 183.470818][ T6099] EXT4-fs (loop3): 1 truncate cleaned up [ 183.495385][ T6099] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 183.515376][ T6099] ext4 filesystem being mounted at /127/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 183.635452][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 183.843237][ T6119] loop3: detected capacity change from 0 to 512 [ 183.884403][ T6119] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 183.906396][ T6119] EXT4-fs (loop3): invalid journal inode [ 183.931257][ T6119] EXT4-fs (loop3): can't get journal size [ 184.002687][ T6126] netlink: 32 bytes leftover after parsing attributes in process `syz.2.656'. [ 184.049422][ T6119] EXT4-fs (loop3): 1 truncate cleaned up [ 184.075415][ T6119] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 184.253667][ T6136] netlink: 8 bytes leftover after parsing attributes in process `syz.2.658'. [ 184.287385][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 184.371797][ T6138] loop0: detected capacity change from 0 to 1024 [ 184.397054][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 184.409029][ T6140] loop1: detected capacity change from 0 to 512 [ 184.440411][ T6138] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 184.472395][ T6140] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 184.532899][ T6140] ext4 filesystem being mounted at /121/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 184.569472][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 184.619641][ T27] audit: type=1800 audit(1748384255.322:146): pid=6140 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.660" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 184.669338][ T27] audit: type=1800 audit(1748384255.322:147): pid=6140 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.660" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 184.756281][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 184.849643][ T6159] loop4: detected capacity change from 0 to 1024 [ 184.867319][ T6159] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 184.888457][ T6159] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 184.907501][ T6159] EXT4-fs (loop4): orphan cleanup on readonly fs [ 184.940587][ T6159] EXT4-fs error (device loop4): ext4_read_inode_bitmap:168: comm syz.4.668: Inode bitmap for bg 0 marked uninitialized [ 184.952036][ T6167] loop3: detected capacity change from 0 to 128 [ 184.995417][ T6167] ext4 filesystem being mounted at /132/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 185.080286][ T6159] EXT4-fs (loop4): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 185.349090][ T6173] loop1: detected capacity change from 0 to 128 [ 185.447882][ T6173] ext4 filesystem being mounted at /123/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 186.039463][ T6185] loop1: detected capacity change from 0 to 1024 [ 186.056490][ T6185] EXT4-fs: Ignoring removed nomblk_io_submit option [ 186.068624][ T6187] loop4: detected capacity change from 0 to 512 [ 186.071429][ T6191] loop3: detected capacity change from 0 to 1024 [ 186.079353][ T6187] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 186.129534][ T6191] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 186.151689][ T6187] EXT4-fs (loop4): 1 truncate cleaned up [ 186.164143][ T27] audit: type=1800 audit(1748384256.864:148): pid=6191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.677" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 186.174620][ T6191] EXT4-fs error (device loop3): ext4_map_blocks:745: inode #15: block 1: comm syz.3.677: lblock 1 mapped to illegal pblock 1 (length 15) [ 186.230713][ T6198] loop2: detected capacity change from 0 to 512 [ 186.244584][ T6191] EXT4-fs (loop3): Remounting filesystem read-only [ 186.268615][ T6191] EXT4-fs error (device loop3): ext4_ext_remove_space:2929: inode #15: comm syz.3.677: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 186.291419][ T6191] EXT4-fs (loop3): Remounting filesystem read-only [ 186.308941][ T6198] ext4 filesystem being mounted at /149/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 186.340081][ T27] audit: type=1800 audit(1748384257.035:149): pid=6198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.678" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 186.378987][ T27] audit: type=1800 audit(1748384257.075:150): pid=6198 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.678" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 186.792779][ T6221] loop4: detected capacity change from 0 to 256 [ 187.192553][ T27] audit: type=1326 audit(1748384257.885:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6219 comm="syz.4.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efce5b8e969 code=0x7ffc0000 [ 188.012230][ T27] audit: type=1326 audit(1748384257.895:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6219 comm="syz.4.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efce5b8e969 code=0x7ffc0000 [ 188.117406][ T27] audit: type=1326 audit(1748384258.756:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6219 comm="syz.4.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7efce5b8e969 code=0x7ffc0000 [ 188.161523][ T27] audit: type=1326 audit(1748384258.756:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6219 comm="syz.4.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efce5b8e969 code=0x7ffc0000 [ 188.204666][ T27] audit: type=1326 audit(1748384258.756:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6219 comm="syz.4.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efce5b8e969 code=0x7ffc0000 [ 188.356952][ T6247] loop1: detected capacity change from 0 to 512 [ 188.517370][ T6247] ext4 filesystem being mounted at /126/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 188.966084][ T27] audit: type=1800 audit(1748384259.667:156): pid=6247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.694" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 191.482318][ T6244] netlink: 8 bytes leftover after parsing attributes in process `syz.3.693'. [ 191.501576][ T6265] __ib_cache_gid_add: unable to add gid fe80:0000:0000:0000:381b:09ff:fee7:907e error=-28 [ 191.518241][ T6269] netlink: 60 bytes leftover after parsing attributes in process `syz.0.698'. [ 191.772436][ T6277] loop3: detected capacity change from 0 to 1024 [ 191.812741][ T6277] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 191.852824][ T6265] infiniband syz!: set active [ 191.863144][ T6277] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 191.871640][ T6265] infiniband syz!: added team_slave_0 [ 191.897847][ T6277] EXT4-fs (loop3): orphan cleanup on readonly fs [ 191.910349][ T6265] rdma_rxe: unable to create cq [ 191.915938][ T6265] infiniband syz!: Couldn't create ib_mad CQ [ 191.923079][ T6265] infiniband syz!: Couldn't open port 1 [ 191.956685][ T6277] EXT4-fs error (device loop3): ext4_read_inode_bitmap:168: comm syz.3.702: Inode bitmap for bg 0 marked uninitialized [ 191.976330][ T27] audit: type=1326 audit(1748384262.680:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 191.999854][ T6265] RDS/IB: syz!: added [ 192.004631][ T6265] smc: adding ib device syz! with port count 1 [ 192.018896][ T27] audit: type=1326 audit(1748384262.690:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=433 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 192.044781][ T6277] EXT4-fs mount: 16 callbacks suppressed [ 192.044800][ T6277] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 192.045054][ T6265] smc: ib device syz! port 1 has pnetid [ 192.068887][ T6277] EXT4-fs (loop3): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 192.084567][ T27] audit: type=1326 audit(1748384262.690:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 192.163480][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 192.170665][ T27] audit: type=1326 audit(1748384262.790:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6281 comm="syz.2.705" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3fcf38e969 code=0x7ffc0000 [ 192.500974][ T6292] loop3: detected capacity change from 0 to 512 [ 192.701020][ T6292] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 192.730883][ T6292] ext4 filesystem being mounted at /139/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 192.788699][ T27] audit: type=1800 audit(1748384263.500:161): pid=6292 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.709" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 193.890950][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 193.903727][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.164467][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 194.830582][ T6322] loop2: detected capacity change from 0 to 1024 [ 194.871803][ T6322] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 194.930276][ T6305] netlink: 8 bytes leftover after parsing attributes in process `syz.0.712'. [ 194.994190][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 195.121239][ T6333] loop2: detected capacity change from 0 to 128 [ 195.156179][ T6333] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 195.176430][ T6333] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 196.666498][ T6359] loop4: detected capacity change from 0 to 512 [ 196.798039][ T6361] netlink: 24 bytes leftover after parsing attributes in process `syz.3.725'. [ 196.815418][ T6359] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 196.833352][ T6359] ext4 filesystem being mounted at /153/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 196.886820][ T27] audit: type=1800 audit(1748384267.603:162): pid=6359 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.724" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 197.013214][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 197.118009][ T6375] loop1: detected capacity change from 0 to 1024 [ 197.129326][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 197.152309][ T6375] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 197.300032][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 197.338134][ T6382] loop3: detected capacity change from 0 to 512 [ 197.347125][ T27] audit: type=1326 audit(1748384267.953:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.3.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 197.372263][ T27] audit: type=1326 audit(1748384267.953:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.3.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 197.405507][ T27] audit: type=1326 audit(1748384267.953:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.3.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 197.707210][ T27] audit: type=1326 audit(1748384267.963:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.3.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 197.737113][ T27] audit: type=1326 audit(1748384267.963:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.3.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 197.764131][ T27] audit: type=1326 audit(1748384267.963:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.3.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 197.800696][ T27] audit: type=1326 audit(1748384267.963:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.3.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 197.834385][ T27] audit: type=1326 audit(1748384267.963:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6376 comm="syz.3.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f795138e969 code=0x7ffc0000 [ 197.889371][ T6382] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 197.900930][ T6382] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 197.912236][ T6382] EXT4-fs error (device loop3): ext4_acquire_dquot:6802: comm syz.3.730: Failed to acquire dquot type 1 [ 197.929307][ T6382] EXT4-fs (loop3): 1 truncate cleaned up [ 197.936651][ T6382] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 197.947254][ T6382] ext4 filesystem being mounted at /143/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 197.975380][ T6382] EXT4-fs (loop3): unmounting filesystem. [ 198.177368][ T6404] program syz.1.734 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 198.588951][ T6416] loop3: detected capacity change from 0 to 2048 [ 198.697396][ T6416] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 199.117477][ T6439] xt_hashlimit: overflow, try lower: 18446744073709551615/7 [ 199.195812][ T6443] loop1: detected capacity change from 0 to 128 [ 199.241595][ T6443] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 199.258610][ T6443] ext4 filesystem being mounted at /139/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 199.341316][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 199.422705][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 199.569563][ T6456] netlink: 20 bytes leftover after parsing attributes in process `syz.3.756'. [ 200.379511][ T6473] loop2: detected capacity change from 0 to 1024 [ 200.569466][ T6473] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 200.872449][ T6473] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 200.893774][ T6473] EXT4-fs (loop2): orphan cleanup on readonly fs [ 200.901651][ T6473] EXT4-fs error (device loop2): ext4_read_inode_bitmap:168: comm syz.2.766: Inode bitmap for bg 0 marked uninitialized [ 200.922231][ T6473] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 200.948756][ T6473] EXT4-fs (loop2): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 200.996406][ T6485] loop4: detected capacity change from 0 to 1024 [ 201.039790][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 201.047949][ T6485] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 201.076719][ T6485] ext4 filesystem being mounted at /164/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 201.194600][ T6493] xt_nat: multiple ranges no longer supported [ 201.247951][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 201.518075][ T6503] device syzkaller1 entered promiscuous mode [ 201.911241][ T6513] loop3: detected capacity change from 0 to 1024 [ 201.952220][ T6513] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 201.998102][ T6513] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 202.012697][ T6520] netlink: 14 bytes leftover after parsing attributes in process `syz.4.783'. [ 202.015799][ T6513] EXT4-fs (loop3): orphan cleanup on readonly fs [ 203.007321][ T4581] af_packet: tpacket_rcv: packet too big, clamped from 60 to 4294967272. macoff=96 [ 203.050674][ T6513] EXT4-fs error (device loop3): ext4_read_inode_bitmap:168: comm syz.3.781: Inode bitmap for bg 0 marked uninitialized [ 203.074927][ T6528] loop0: detected capacity change from 0 to 1024 [ 203.096830][ T6513] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 203.142937][ T6513] EXT4-fs (loop3): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 203.200681][ T6528] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 203.213705][ T6528] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 203.231291][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 203.242343][ T6535] loop1: detected capacity change from 0 to 256 [ 203.280400][ T6526] device syzkaller0 entered promiscuous mode [ 203.289184][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 206.001644][ T6552] loop2: detected capacity change from 0 to 512 [ 206.008943][ T6552] EXT4-fs: Ignoring removed mblk_io_submit option [ 206.036148][ T6552] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 206.080234][ T6559] netlink: 14 bytes leftover after parsing attributes in process `syz.3.797'. [ 206.082108][ T6552] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.794: iget: bad extended attribute block 1 [ 206.104002][ T6559] device hsr_slave_0 left promiscuous mode [ 206.120930][ T6559] device hsr_slave_1 left promiscuous mode [ 206.143286][ T6552] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.794: couldn't read orphan inode 15 (err -117) [ 206.157166][ T6552] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 206.287980][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 206.407923][ T6566] loop1: detected capacity change from 0 to 1024 [ 206.408462][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.422803][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.431207][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.439453][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.447384][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.455316][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.463356][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.465825][ T6566] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 206.471940][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.494700][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.504079][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.516514][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.525983][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.526884][ T6566] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 206.534144][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.550014][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.554934][ T6566] EXT4-fs (loop1): orphan cleanup on readonly fs [ 206.557800][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.571328][ T6566] EXT4-fs error (device loop1): ext4_read_inode_bitmap:168: comm syz.1.800: Inode bitmap for bg 0 marked uninitialized [ 206.572047][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.593657][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.597897][ T6566] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 206.601665][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.618267][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.626070][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.634055][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.641900][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.645340][ T6566] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 206.649792][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.649820][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.673775][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.682281][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.689764][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.697364][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.705565][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.713411][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.720898][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.728596][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.736305][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.744001][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.751558][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.761251][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.771057][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.778564][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.787165][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.802198][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.809860][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.817810][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.825971][ T26] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0 [ 206.839282][ T26] hid-generic 0000:0000:0000.0003: hidraw0: HID v0.00 Device [syz0] on syz1 [ 206.890378][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 207.624418][ T6598] netlink: 14 bytes leftover after parsing attributes in process `syz.4.812'. [ 208.558792][ T6606] syz.3.814 (6606) used greatest stack depth: 16776 bytes left [ 208.593198][ T6605] loop4: detected capacity change from 0 to 1024 [ 208.634239][ T6605] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 208.730002][ T6605] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 208.767077][ T6605] EXT4-fs (loop4): orphan cleanup on readonly fs [ 208.774575][ T6605] EXT4-fs error (device loop4): ext4_read_inode_bitmap:168: comm syz.4.815: Inode bitmap for bg 0 marked uninitialized [ 208.804217][ T6605] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 208.836832][ T6605] EXT4-fs (loop4): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 208.952299][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 209.579074][ T6621] loop4: detected capacity change from 0 to 8192 [ 209.751276][ T27] kauditd_printk_skb: 36 callbacks suppressed [ 209.751294][ T27] audit: type=1800 audit(1748384280.448:207): pid=6621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.821" name="file1" dev="loop4" ino=1048600 res=0 errno=0 [ 210.147908][ T6634] loop1: detected capacity change from 0 to 1024 [ 210.254539][ T6634] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 210.274116][ T6634] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 210.306428][ T27] audit: type=1800 audit(1748384281.018:208): pid=6634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.825" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 210.354639][ T6641] netlink: 14 bytes leftover after parsing attributes in process `syz.4.826'. [ 210.549251][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 210.645780][ T6649] loop4: detected capacity change from 0 to 128 [ 210.696499][ T6649] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 210.716501][ T6649] ext4 filesystem being mounted at /177/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 211.318381][ T48] Bluetooth: hci1: command 0x0406 tx timeout [ 211.318476][ T48] Bluetooth: hci0: command 0x0406 tx timeout [ 211.318521][ T48] Bluetooth: hci2: command 0x0406 tx timeout [ 211.318554][ T48] Bluetooth: hci3: command 0x0406 tx timeout [ 211.318587][ T48] Bluetooth: hci4: command 0x0406 tx timeout [ 211.687272][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 211.803802][ T6671] loop4: detected capacity change from 0 to 164 [ 211.825337][ T6671] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 211.838207][ T6673] loop0: detected capacity change from 0 to 1024 [ 211.851581][ T6671] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 211.866680][ T6671] rock: directory entry would overflow storage [ 211.875316][ T6671] rock: sig=0x4f50, size=4, remaining=3 [ 211.883374][ T6671] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 211.950725][ T6673] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 211.985860][ T6673] ext4 filesystem being mounted at /155/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 212.056394][ T6680] netlink: 14 bytes leftover after parsing attributes in process `syz.1.843'. [ 212.076016][ T27] audit: type=1800 audit(1748384282.789:209): pid=6673 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.840" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 212.137470][ T6680] device hsr_slave_0 left promiscuous mode [ 212.155808][ T6680] device hsr_slave_1 left promiscuous mode [ 212.165220][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 212.448589][ T6691] netlink: 'syz.0.848': attribute type 4 has an invalid length. [ 212.478790][ T6693] loop3: detected capacity change from 0 to 128 [ 212.563587][ T6693] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 212.590059][ T6693] ext4 filesystem being mounted at /165/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 212.750743][ T6691] loop0: detected capacity change from 0 to 1024 [ 212.783089][ T6706] ax25_connect(): syz.4.852 uses autobind, please contact jreuter@yaina.de [ 212.802010][ T6691] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 212.802044][ T6691] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 212.804801][ T6691] JBD2: no valid journal superblock found [ 213.417107][ T6691] EXT4-fs (loop0): error loading journal [ 213.959225][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 214.203443][ T6724] loop0: detected capacity change from 0 to 1024 [ 214.261889][ T6724] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 214.291059][ T6724] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 214.366589][ T27] audit: type=1800 audit(1748384285.079:210): pid=6724 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.857" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 214.492924][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 214.495695][ T6735] loop3: detected capacity change from 0 to 512 [ 214.510229][ T6735] EXT4-fs: Ignoring removed mblk_io_submit option [ 214.524983][ T6735] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 214.556444][ T6735] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 214.556869][ T6735] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c01c, mo2=0102] [ 214.556951][ T6735] System zones: 0-2, 18-18, 34-34 [ 214.627699][ T6735] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 214.671716][ T6735] EXT4-fs (loop3): 1 truncate cleaned up [ 214.671753][ T6735] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 215.162722][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 215.345604][ T6747] ax25_connect(): syz.0.866 uses autobind, please contact jreuter@yaina.de [ 215.779302][ T6755] loop3: detected capacity change from 0 to 128 [ 215.874819][ T6755] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 215.897329][ T6755] ext4 filesystem being mounted at /169/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 216.589948][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 216.665561][ T6783] netlink: 16 bytes leftover after parsing attributes in process `syz.3.877'. [ 217.130895][ T6796] ax25_connect(): syz.0.882 uses autobind, please contact jreuter@yaina.de [ 218.117286][ T6813] loop1: detected capacity change from 0 to 128 [ 218.171932][ T6813] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 218.191272][ T6813] ext4 filesystem being mounted at /164/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 218.367938][ T6820] loop4: detected capacity change from 0 to 2048 [ 218.434445][ T6820] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 218.587946][ T6826] netlink: 44 bytes leftover after parsing attributes in process `syz.0.891'. [ 218.958477][ T6834] loop2: detected capacity change from 0 to 1024 [ 218.995908][ T6834] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 219.045261][ T6834] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 219.071010][ T6834] EXT4-fs (loop2): orphan cleanup on readonly fs [ 219.099886][ T6834] EXT4-fs error (device loop2): ext4_read_inode_bitmap:168: comm syz.2.894: Inode bitmap for bg 0 marked uninitialized [ 219.188053][ T6834] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 219.254151][ T27] audit: type=1800 audit(1748384289.970:211): pid=6820 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.890" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 219.275626][ T6834] EXT4-fs (loop2): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 219.357418][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 219.402688][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 219.466568][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 219.473554][ T6837] netlink: 14 bytes leftover after parsing attributes in process `syz.1.896'. [ 219.752387][ T6842] ax25_connect(): syz.2.897 uses autobind, please contact jreuter@yaina.de [ 220.825960][ T6866] loop3: detected capacity change from 0 to 128 [ 220.845078][ T6865] loop0: detected capacity change from 0 to 1024 [ 220.865318][ T6865] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 220.897787][ T6865] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 220.915745][ T6866] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 220.932041][ T6865] EXT4-fs (loop0): orphan cleanup on readonly fs [ 220.947326][ T6866] ext4 filesystem being mounted at /173/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 220.963460][ T6865] EXT4-fs error (device loop0): ext4_read_inode_bitmap:168: comm syz.0.908: Inode bitmap for bg 0 marked uninitialized [ 221.004198][ T6865] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 221.028982][ T6874] netlink: 14 bytes leftover after parsing attributes in process `syz.1.911'. [ 221.063395][ T6865] EXT4-fs (loop0): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 221.213120][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 221.658552][ T6888] ax25_connect(): syz.1.914 uses autobind, please contact jreuter@yaina.de [ 222.642701][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 223.290836][ T6908] netlink: 14 bytes leftover after parsing attributes in process `syz.3.923'. [ 223.615614][ T6911] loop3: detected capacity change from 0 to 1024 [ 223.621767][ T6911] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 223.631796][ T6911] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 223.633021][ T6911] EXT4-fs (loop3): orphan cleanup on readonly fs [ 223.633499][ T6911] EXT4-fs error (device loop3): ext4_read_inode_bitmap:168: comm syz.3.924: Inode bitmap for bg 0 marked uninitialized [ 223.633815][ T6911] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 223.642343][ T6911] EXT4-fs (loop3): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 223.899642][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 224.048994][ T6925] ax25_connect(): syz.1.929 uses autobind, please contact jreuter@yaina.de [ 224.546971][ T6929] loop3: detected capacity change from 0 to 128 [ 224.612260][ T6928] loop2: detected capacity change from 0 to 128 [ 224.756711][ T6929] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 224.825136][ T6935] netlink: 14 bytes leftover after parsing attributes in process `syz.4.935'. [ 224.840519][ T6929] ext4 filesystem being mounted at /178/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 224.927166][ T6939] netlink: 'syz.1.934': attribute type 2 has an invalid length. [ 225.095289][ T6943] loop2: detected capacity change from 0 to 512 [ 225.153836][ T6943] Quota error (device loop2): v2_read_file_info: Free block number 1 out of range (1, 6). [ 225.154045][ T6943] EXT4-fs warning (device loop2): ext4_enable_quotas:7054: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 225.155356][ T6943] EXT4-fs (loop2): mount failed [ 225.488547][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 225.654642][ T6956] loop0: detected capacity change from 0 to 1024 [ 225.691224][ T6956] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 225.818878][ T6956] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 225.820348][ T6956] EXT4-fs (loop0): orphan cleanup on readonly fs [ 225.869283][ T6956] EXT4-fs error (device loop0): ext4_read_inode_bitmap:168: comm syz.0.941: Inode bitmap for bg 0 marked uninitialized [ 225.869630][ T6956] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 225.873268][ T6956] EXT4-fs (loop0): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 226.061879][ T6966] ax25_connect(): syz.4.945 uses autobind, please contact jreuter@yaina.de [ 226.659545][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 227.030347][ T6977] netlink: 14 bytes leftover after parsing attributes in process `syz.0.947'. [ 227.409000][ T6989] loop1: detected capacity change from 0 to 128 [ 227.449239][ T6989] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 227.464780][ T6989] ext4 filesystem being mounted at /178/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 227.774546][ T7001] loop4: detected capacity change from 0 to 1024 [ 227.828414][ T7001] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 227.877938][ T7001] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 227.900358][ T7001] EXT4-fs (loop4): orphan cleanup on readonly fs [ 227.926771][ T7001] EXT4-fs error (device loop4): ext4_read_inode_bitmap:168: comm syz.4.958: Inode bitmap for bg 0 marked uninitialized [ 227.977726][ T7001] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 227.999541][ T7001] EXT4-fs (loop4): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 228.069735][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 228.230097][ T27] audit: type=1107 audit(1748384298.951:212): pid=7006 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 228.453215][ T7009] netlink: 14 bytes leftover after parsing attributes in process `syz.4.961'. [ 228.498698][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 228.625147][ T7013] netlink: 8 bytes leftover after parsing attributes in process `syz.0.962'. [ 228.810279][ T27] audit: type=1326 audit(1748384299.531:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 228.818497][ T27] audit: type=1326 audit(1748384299.541:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 228.818686][ T27] audit: type=1326 audit(1748384299.541:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 228.818881][ T27] audit: type=1326 audit(1748384299.541:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 228.819314][ T27] audit: type=1326 audit(1748384299.541:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 228.819520][ T27] audit: type=1326 audit(1748384299.541:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 228.819704][ T27] audit: type=1326 audit(1748384299.541:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 228.820016][ T27] audit: type=1326 audit(1748384299.541:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 228.870851][ T7018] loop1: detected capacity change from 0 to 512 [ 228.898371][ T7018] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 228.898486][ T7018] ext4 filesystem being mounted at /180/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 229.293810][ T7027] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 229.363391][ T7027] loop4: detected capacity change from 0 to 512 [ 229.375629][ T26] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 229.447685][ T7027] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 229.452860][ T7035] loop0: detected capacity change from 0 to 128 [ 229.465307][ T7027] ext4 filesystem being mounted at /207/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 229.550800][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 229.575773][ T26] usb 2-1: Using ep0 maxpacket: 32 [ 229.670117][ T26] usb 2-1: config 252 has an invalid interface number: 91 but max is 0 [ 229.692649][ T7039] loop3: detected capacity change from 0 to 1024 [ 229.703188][ T26] usb 2-1: config 252 has no interface number 0 [ 229.721375][ T26] usb 2-1: config 252 interface 91 altsetting 3 has an invalid endpoint with address 0x80, skipping [ 229.747247][ T26] usb 2-1: config 252 interface 91 altsetting 3 endpoint 0x1 has invalid maxpacket 1024, setting to 64 [ 229.760260][ T7039] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 229.785442][ T26] usb 2-1: config 252 interface 91 altsetting 3 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 229.799389][ T7039] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 229.815395][ T26] usb 2-1: config 252 interface 91 altsetting 3 endpoint 0x9 has an invalid bInterval 60, changing to 9 [ 229.831706][ T7039] EXT4-fs (loop3): orphan cleanup on readonly fs [ 229.855450][ T26] usb 2-1: config 252 interface 91 altsetting 3 has an invalid endpoint with address 0x80, skipping [ 229.861652][ T7039] EXT4-fs error (device loop3): ext4_read_inode_bitmap:168: comm syz.3.971: Inode bitmap for bg 0 marked uninitialized [ 229.867483][ T26] usb 2-1: config 252 interface 91 altsetting 3 has an invalid endpoint with address 0x80, skipping [ 229.905389][ T26] usb 2-1: config 252 interface 91 altsetting 3 has an invalid endpoint with address 0x80, skipping [ 229.907590][ T7045] loop2: detected capacity change from 0 to 128 [ 229.925395][ T26] usb 2-1: config 252 interface 91 altsetting 3 endpoint 0x8 has invalid maxpacket 1080, setting to 64 [ 229.945367][ T26] usb 2-1: config 252 interface 91 altsetting 3 has a duplicate endpoint with address 0x6, skipping [ 229.957460][ T26] usb 2-1: config 252 interface 91 altsetting 3 has a duplicate endpoint with address 0x9, skipping [ 229.969688][ T26] usb 2-1: config 252 interface 91 has no altsetting 0 [ 229.987745][ T7039] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 230.014649][ T26] usb 2-1: New USB device found, idVendor=07ca, idProduct=a309, bcdDevice=7f.92 [ 230.034834][ T26] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 230.044201][ T7039] EXT4-fs (loop3): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 230.059822][ T7045] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 230.065557][ T26] usb 2-1: Product: 雗㩪ᔜ檞ﲪ⓲ॴ뤵뛡ᴷрᓼ迲ᮋ嚒鐳퉨꘬昡貿㮧ミ馏뷀镈ꊳ:窊檏ꍎ寧♎訠༺빓잪ひ⵳귽咃붕땷쭦연落 [ 230.101072][ T26] usb 2-1: Manufacturer: 㰃 [ 230.107469][ T26] usb 2-1: SerialNumber: 堨亳濝ᜰᑼ湭嶵졂⪈ѐ徠Ӯ㪬恑셚ቧ﹡阾謦흝跂ᢤﭿ熴粱唃ꊜ⎍ﶉѳ縏羜냤끤ꓥ䥄挾᷺ਜ瘻骺⫺➍ꑉᅈ㨮嗸ヌ苫䵘뎈寓處䁟롦亏ᚐᇋ䝗ᅦ鿁쐝냔㑪瞇䅤蠫鞣嗝⤢ꏧ綦᪵踺䥹掖㝳ނᒳ锡ꡮ임辺ḏᨍ䅝간诧昙郈 [ 230.143171][ T7045] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 230.325637][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 230.381747][ T7051] netlink: 14 bytes leftover after parsing attributes in process `syz.0.976'. [ 230.566081][ T26] usb 2-1: USB disconnect, device number 2 [ 230.881656][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 230.997564][ T27] kauditd_printk_skb: 31 callbacks suppressed [ 230.997581][ T27] audit: type=1326 audit(1748384301.721:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 231.087270][ T27] audit: type=1326 audit(1748384301.751:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.1.965" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e2178e969 code=0x7ffc0000 [ 231.839654][ T7081] netlink: 20 bytes leftover after parsing attributes in process `syz.0.985'. [ 231.943184][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 232.012225][ T7086] loop1: detected capacity change from 0 to 512 [ 232.077344][ T7086] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 232.101289][ T7086] ext4 filesystem being mounted at /181/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 232.173924][ T27] audit: type=1800 audit(1748384302.891:254): pid=7086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.987" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 232.232115][ T27] audit: type=1800 audit(1748384302.931:255): pid=7086 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.987" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 232.404295][ T7098] loop3: detected capacity change from 0 to 1024 [ 232.426698][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 232.451072][ T7098] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 232.464444][ T7098] ext4 filesystem being mounted at /186/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 232.505279][ T27] audit: type=1800 audit(1748384303.221:256): pid=7098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.990" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 232.592660][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 233.144315][ T7118] loop4: detected capacity change from 0 to 1024 [ 233.186732][ T7118] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 233.247355][ T7118] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 233.269908][ T7118] EXT4-fs (loop4): orphan cleanup on readonly fs [ 233.290196][ T7118] EXT4-fs error (device loop4): ext4_read_inode_bitmap:168: comm syz.4.998: Inode bitmap for bg 0 marked uninitialized [ 233.309247][ T7118] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 233.330912][ T7118] EXT4-fs (loop4): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 233.367856][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 233.881562][ T7136] loop4: detected capacity change from 0 to 512 [ 233.921596][ T7136] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 233.921709][ T7136] ext4 filesystem being mounted at /215/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 233.931689][ T27] audit: type=1800 audit(1748384304.641:257): pid=7136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1004" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 233.975282][ T27] audit: type=1800 audit(1748384304.671:258): pid=7136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1004" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 234.018045][ T7140] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1005'. [ 234.113512][ T4262] EXT4-fs (loop4): unmounting filesystem. [ 234.833640][ T7150] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1006'. [ 235.243688][ T7160] loop1: detected capacity change from 0 to 1024 [ 235.253063][ T7160] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 235.278841][ T7160] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 235.291203][ T7160] EXT4-fs (loop1): orphan cleanup on readonly fs [ 235.303553][ T7160] EXT4-fs error (device loop1): ext4_read_inode_bitmap:168: comm syz.1.1012: Inode bitmap for bg 0 marked uninitialized [ 235.317450][ T7160] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 235.330971][ T7160] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 235.383161][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 235.699570][ T7171] loop2: detected capacity change from 0 to 512 [ 235.772569][ T7171] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 235.792780][ T7171] ext4 filesystem being mounted at /216/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 235.864040][ T27] audit: type=1800 audit(1748384306.581:259): pid=7171 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1017" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 235.895085][ T27] audit: type=1800 audit(1748384306.611:260): pid=7177 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1017" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 235.944876][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 236.053602][ T7181] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1020'. [ 236.385572][ T7195] loop0: detected capacity change from 0 to 1024 [ 236.394170][ T7195] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 236.572796][ T7195] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 236.644861][ T7195] EXT4-fs (loop0): orphan cleanup on readonly fs [ 236.748570][ T7195] EXT4-fs error (device loop0): ext4_read_inode_bitmap:168: comm syz.0.1026: Inode bitmap for bg 0 marked uninitialized [ 236.951230][ T7195] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 236.983858][ T7203] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1027'. [ 237.166113][ T7195] EXT4-fs (loop0): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 237.250354][ T4252] EXT4-fs (loop0): unmounting filesystem. [ 237.343167][ T7208] loop3: detected capacity change from 0 to 512 [ 237.414023][ T7208] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 237.488427][ T7208] ext4 filesystem being mounted at /193/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 237.516483][ T27] audit: type=1800 audit(1748384308.241:261): pid=7208 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1030" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 237.575072][ T27] audit: type=1800 audit(1748384308.241:262): pid=7208 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1030" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 237.613450][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 238.323976][ T7235] netlink: 14 bytes leftover after parsing attributes in process `syz.1.1038'. [ 238.501828][ T7241] loop1: detected capacity change from 0 to 1024 [ 238.516547][ T7241] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 238.543106][ T7241] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 238.557311][ T7241] EXT4-fs (loop1): orphan cleanup on readonly fs [ 238.564454][ T7241] EXT4-fs error (device loop1): ext4_read_inode_bitmap:168: comm syz.1.1042: Inode bitmap for bg 0 marked uninitialized [ 238.582295][ T7241] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 238.605977][ T7241] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 238.663479][ T4257] EXT4-fs (loop1): unmounting filesystem. [ 238.686245][ T7247] loop2: detected capacity change from 0 to 512 [ 238.718202][ T7247] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 238.733865][ T7247] ext4 filesystem being mounted at /222/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 238.770241][ T27] audit: type=1800 audit(1748384309.491:263): pid=7247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1044" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 238.851458][ T27] audit: type=1800 audit(1748384309.491:264): pid=7247 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1044" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 238.890581][ T4261] EXT4-fs (loop2): unmounting filesystem. [ 239.531994][ T7263] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1048'. [ 239.760812][ T7272] netlink: 14 bytes leftover after parsing attributes in process `syz.3.1053'. [ 240.171843][ T7285] loop3: detected capacity change from 0 to 1024 [ 240.194328][ T7285] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 240.238132][ T7285] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 240.264457][ T7285] EXT4-fs (loop3): orphan cleanup on readonly fs [ 240.280856][ T7285] EXT4-fs error (device loop3): ext4_read_inode_bitmap:168: comm syz.3.1057: Inode bitmap for bg 0 marked uninitialized [ 240.314350][ T7285] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 240.498381][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 240.674239][ T7294] loop3: detected capacity change from 0 to 512 [ 240.769441][ T7294] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 240.769547][ T7294] ext4 filesystem being mounted at /200/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 240.873176][ T27] audit: type=1800 audit(1748384311.591:265): pid=7294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1059" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 240.930584][ T27] audit: type=1800 audit(1748384311.641:266): pid=7299 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1059" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 241.043579][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 243.695182][ T7316] ------------[ cut here ]------------ [ 243.701484][ T7316] WARNING: CPU: 1 PID: 7316 at net/sched/sch_taprio.c:1020 taprio_get_start_time+0x139/0x160 [ 243.712774][ T7316] Modules linked in: [ 243.716786][ T7316] CPU: 1 PID: 7316 Comm: syz.2.1066 Not tainted 6.1.140-syzkaller #0 [ 243.725036][ T7316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 243.736168][ T7316] RIP: 0010:taprio_get_start_time+0x139/0x160 [ 243.742578][ T7316] Code: 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 1c 68 86 f9 4c 89 23 31 c0 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 87 f1 34 f9 <0f> 0b b8 f2 ff ff ff eb e7 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c [ 243.762865][ T7316] RSP: 0018:ffffc9000594ed88 EFLAGS: 00010287 [ 243.769119][ T7316] RAX: ffffffff884be589 RBX: ffffc9000594ee98 RCX: 0000000000080000 [ 243.777554][ T7316] RDX: ffffc9000dce9000 RSI: 0000000000001d2d RDI: 0000000000001d2e [ 243.785701][ T7316] RBP: 0000000000000000 R08: dffffc0000000000 R09: fffffbfff211707b [ 243.793816][ T7316] R10: fffffbfff211707b R11: 1ffffffff211707a R12: 184382454817c9dc [ 243.802175][ T7316] R13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000000 [ 243.810779][ T7316] FS: 00007f3fd028d6c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 243.820221][ T7316] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 243.827553][ T7316] CR2: 00007f037a05ef60 CR3: 0000000056f9e000 CR4: 00000000003506e0 [ 243.836605][ T7316] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 243.845084][ T7316] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 243.853628][ T7316] Call Trace: [ 243.857169][ T7316] [ 243.860341][ T7316] taprio_change+0x3daa/0x50f0 [ 243.865517][ T7316] ? taprio_destroy+0x4b0/0x4b0 [ 243.870502][ T7316] ? qdisc_create+0x7cb/0x1090 [ 243.875641][ T7316] ? ____sys_sendmsg+0x59b/0x970 [ 243.880739][ T7316] ? ___sys_sendmsg+0x21c/0x290 [ 243.885847][ T7316] ? __se_sys_sendmsg+0x19e/0x270 [ 243.891899][ T7316] ? do_syscall_64+0x4c/0xa0 [ 243.896684][ T7316] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 243.902818][ T7316] ? qdisc_alloc+0x95/0xa50 [ 243.907726][ T7316] ? fifo_init+0x3ab/0x650 [ 243.912199][ T7316] ? qdisc_peek_head+0x40/0x40 [ 243.917823][ T7316] ? qdisc_alloc+0x77a/0xa50 [ 243.923173][ T7316] ? mutex_is_locked+0xe/0x40 [ 243.929202][ T7316] ? taprio_peek+0x590/0x590 [ 243.934529][ T7316] qdisc_create+0x7cb/0x1090 [ 243.939407][ T7316] ? qdisc_notify+0x370/0x370 [ 243.944246][ T7316] ? lockdep_rtnl_is_held+0x22/0x30 [ 243.949821][ T7316] ? qdisc_lookup+0x366/0x6c0 [ 243.954786][ T7316] tc_modify_qdisc+0xb0f/0x1be0 [ 243.960445][ T7316] ? qdisc_offload_query_caps+0x140/0x140 [ 243.967922][ T7316] ? qdisc_offload_query_caps+0x140/0x140 [ 243.974828][ T7316] ? rtnetlink_rcv_msg+0x1d8/0xed0 [ 243.980719][ T7316] rtnetlink_rcv_msg+0x79b/0xed0 [ 243.986180][ T7316] ? rtnetlink_bind+0x80/0x80 [ 243.991374][ T7316] ? __local_bh_enable_ip+0x12a/0x1b0 [ 243.996998][ T7316] ? lockdep_hardirqs_on+0x94/0x140 [ 244.002273][ T7316] ? __local_bh_enable_ip+0x12a/0x1b0 [ 244.008534][ T7316] ? _local_bh_enable+0xa0/0xa0 [ 244.013631][ T7316] ? __dev_queue_xmit+0x26f/0x3760 [ 244.019299][ T7316] ? __dev_queue_xmit+0x26f/0x3760 [ 244.024478][ T7316] ? __dev_queue_xmit+0x15c9/0x3760 [ 244.029841][ T7316] ? __dev_queue_xmit+0x26f/0x3760 [ 244.035258][ T7316] ? netdev_core_pick_tx+0x340/0x340 [ 244.040623][ T7316] ? ref_tracker_free+0x630/0x7c0 [ 244.045810][ T7316] ? refcount_inc+0x70/0x70 [ 244.050553][ T7316] ? __copy_skb_header+0x417/0x5a0 [ 244.056285][ T7316] ? __skb_clone+0x480/0x790 [ 244.060962][ T7316] netlink_rcv_skb+0x1de/0x420 [ 244.065828][ T7316] ? rtnetlink_bind+0x80/0x80 [ 244.070649][ T7316] ? netlink_ack+0x1100/0x1100 [ 244.075719][ T7316] ? netlink_deliver_tap+0x2e/0x1b0 [ 244.080979][ T7316] netlink_unicast+0x74c/0x8c0 [ 244.086179][ T7316] netlink_sendmsg+0x89e/0xbc0 [ 244.091020][ T7316] ? netlink_getsockopt+0x540/0x540 [ 244.096532][ T7316] ? aa_sock_msg_perm+0x94/0x150 [ 244.101585][ T7316] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 244.107070][ T7316] ? security_socket_sendmsg+0x7c/0xa0 [ 244.112750][ T7316] ? netlink_getsockopt+0x540/0x540 [ 244.118311][ T7316] ____sys_sendmsg+0x59b/0x970 [ 244.123178][ T7316] ? __sys_sendmsg_sock+0x30/0x30 [ 244.128301][ T7316] ? __import_iovec+0x315/0x500 [ 244.133194][ T7316] ? import_iovec+0x6f/0xa0 [ 244.137930][ T7316] ___sys_sendmsg+0x21c/0x290 [ 244.143015][ T7316] ? __sys_sendmsg+0x270/0x270 [ 244.147926][ T7316] ? __fdget+0x17c/0x200 [ 244.152234][ T7316] __se_sys_sendmsg+0x19e/0x270 [ 244.157485][ T7316] ? __se_sys_futex+0x14a/0x440 [ 244.162599][ T7316] ? __x64_sys_sendmsg+0x80/0x80 [ 244.168147][ T7316] ? lockdep_hardirqs_on+0x94/0x140 [ 244.173408][ T7316] do_syscall_64+0x4c/0xa0 [ 244.178122][ T7316] ? clear_bhb_loop+0x60/0xb0 [ 244.182849][ T7316] ? clear_bhb_loop+0x60/0xb0 [ 244.187712][ T7316] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 244.193757][ T7316] RIP: 0033:0x7f3fcf38e969 [ 244.198403][ T7316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.218375][ T7316] RSP: 002b:00007f3fd028d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 244.227151][ T7316] RAX: ffffffffffffffda RBX: 00007f3fcf5b5fa0 RCX: 00007f3fcf38e969 [ 244.235219][ T7316] RDX: 0000000000000010 RSI: 00002000000007c0 RDI: 0000000000000004 [ 244.243670][ T7316] RBP: 00007f3fcf410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 244.251901][ T7316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.260106][ T7316] R13: 0000000000000000 R14: 00007f3fcf5b5fa0 R15: 00007ffc70226398 [ 244.268537][ T7316] [ 244.271876][ T7316] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 244.279811][ T7316] CPU: 1 PID: 7316 Comm: syz.2.1066 Not tainted 6.1.140-syzkaller #0 [ 244.288345][ T7316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 244.298814][ T7316] Call Trace: [ 244.302479][ T7316] [ 244.305627][ T7316] dump_stack_lvl+0x168/0x22e [ 244.310514][ T7316] ? memcpy+0x3c/0x60 [ 244.314806][ T7316] ? show_regs_print_info+0x12/0x12 [ 244.320043][ T7316] ? load_image+0x3b0/0x3b0 [ 244.324761][ T7316] panic+0x2c9/0x710 [ 244.328814][ T7316] ? bpf_jit_dump+0xd0/0xd0 [ 244.333786][ T7316] __warn+0x2f8/0x4f0 [ 244.337798][ T7316] ? taprio_get_start_time+0x139/0x160 [ 244.343304][ T7316] ? taprio_get_start_time+0x139/0x160 [ 244.348782][ T7316] report_bug+0x2ba/0x4f0 [ 244.353399][ T7316] ? taprio_get_start_time+0x139/0x160 [ 244.359082][ T7316] handle_bug+0x3a/0x70 [ 244.363279][ T7316] exc_invalid_op+0x16/0x40 [ 244.367870][ T7316] asm_exc_invalid_op+0x16/0x20 [ 244.372753][ T7316] RIP: 0010:taprio_get_start_time+0x139/0x160 [ 244.379013][ T7316] Code: 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 1c 68 86 f9 4c 89 23 31 c0 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 87 f1 34 f9 <0f> 0b b8 f2 ff ff ff eb e7 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c [ 244.399252][ T7316] RSP: 0018:ffffc9000594ed88 EFLAGS: 00010287 [ 244.405453][ T7316] RAX: ffffffff884be589 RBX: ffffc9000594ee98 RCX: 0000000000080000 [ 244.413530][ T7316] RDX: ffffc9000dce9000 RSI: 0000000000001d2d RDI: 0000000000001d2e [ 244.421522][ T7316] RBP: 0000000000000000 R08: dffffc0000000000 R09: fffffbfff211707b [ 244.429571][ T7316] R10: fffffbfff211707b R11: 1ffffffff211707a R12: 184382454817c9dc [ 244.437995][ T7316] R13: dffffc0000000000 R14: 0000000000000000 R15: 0000000000000000 [ 244.446078][ T7316] ? taprio_get_start_time+0x139/0x160 [ 244.451970][ T7316] ? taprio_get_start_time+0x139/0x160 [ 244.457769][ T7316] taprio_change+0x3daa/0x50f0 [ 244.462753][ T7316] ? taprio_destroy+0x4b0/0x4b0 [ 244.467784][ T7316] ? qdisc_create+0x7cb/0x1090 [ 244.473030][ T7316] ? ____sys_sendmsg+0x59b/0x970 [ 244.478178][ T7316] ? ___sys_sendmsg+0x21c/0x290 [ 244.483323][ T7316] ? __se_sys_sendmsg+0x19e/0x270 [ 244.488668][ T7316] ? do_syscall_64+0x4c/0xa0 [ 244.493958][ T7316] ? entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 244.500569][ T7316] ? qdisc_alloc+0x95/0xa50 [ 244.505490][ T7316] ? fifo_init+0x3ab/0x650 [ 244.510181][ T7316] ? qdisc_peek_head+0x40/0x40 [ 244.515163][ T7316] ? qdisc_alloc+0x77a/0xa50 [ 244.519899][ T7316] ? mutex_is_locked+0xe/0x40 [ 244.524622][ T7316] ? taprio_peek+0x590/0x590 [ 244.529417][ T7316] qdisc_create+0x7cb/0x1090 [ 244.534377][ T7316] ? qdisc_notify+0x370/0x370 [ 244.539680][ T7316] ? lockdep_rtnl_is_held+0x22/0x30 [ 244.545256][ T7316] ? qdisc_lookup+0x366/0x6c0 [ 244.550503][ T7316] tc_modify_qdisc+0xb0f/0x1be0 [ 244.555604][ T7316] ? qdisc_offload_query_caps+0x140/0x140 [ 244.561932][ T7316] ? qdisc_offload_query_caps+0x140/0x140 [ 244.568332][ T7316] ? rtnetlink_rcv_msg+0x1d8/0xed0 [ 244.573736][ T7316] rtnetlink_rcv_msg+0x79b/0xed0 [ 244.579230][ T7316] ? rtnetlink_bind+0x80/0x80 [ 244.584056][ T7316] ? __local_bh_enable_ip+0x12a/0x1b0 [ 244.589495][ T7316] ? lockdep_hardirqs_on+0x94/0x140 [ 244.594846][ T7316] ? __local_bh_enable_ip+0x12a/0x1b0 [ 244.600265][ T7316] ? _local_bh_enable+0xa0/0xa0 [ 244.605378][ T7316] ? __dev_queue_xmit+0x26f/0x3760 [ 244.610632][ T7316] ? __dev_queue_xmit+0x26f/0x3760 [ 244.615870][ T7316] ? __dev_queue_xmit+0x15c9/0x3760 [ 244.621473][ T7316] ? __dev_queue_xmit+0x26f/0x3760 [ 244.626915][ T7316] ? netdev_core_pick_tx+0x340/0x340 [ 244.633479][ T7316] ? ref_tracker_free+0x630/0x7c0 [ 244.639457][ T7316] ? refcount_inc+0x70/0x70 [ 244.644754][ T7316] ? __copy_skb_header+0x417/0x5a0 [ 244.651893][ T7316] ? __skb_clone+0x480/0x790 [ 244.657100][ T7316] netlink_rcv_skb+0x1de/0x420 [ 244.662304][ T7316] ? rtnetlink_bind+0x80/0x80 [ 244.668469][ T7316] ? netlink_ack+0x1100/0x1100 [ 244.673467][ T7316] ? netlink_deliver_tap+0x2e/0x1b0 [ 244.678765][ T7316] netlink_unicast+0x74c/0x8c0 [ 244.683964][ T7316] netlink_sendmsg+0x89e/0xbc0 [ 244.688888][ T7316] ? netlink_getsockopt+0x540/0x540 [ 244.694331][ T7316] ? aa_sock_msg_perm+0x94/0x150 [ 244.699323][ T7316] ? bpf_lsm_socket_sendmsg+0x5/0x10 [ 244.705006][ T7316] ? security_socket_sendmsg+0x7c/0xa0 [ 244.710981][ T7316] ? netlink_getsockopt+0x540/0x540 [ 244.717126][ T7316] ____sys_sendmsg+0x59b/0x970 [ 244.722368][ T7316] ? __sys_sendmsg_sock+0x30/0x30 [ 244.727640][ T7316] ? __import_iovec+0x315/0x500 [ 244.732766][ T7316] ? import_iovec+0x6f/0xa0 [ 244.737426][ T7316] ___sys_sendmsg+0x21c/0x290 [ 244.742356][ T7316] ? __sys_sendmsg+0x270/0x270 [ 244.747494][ T7316] ? __fdget+0x17c/0x200 [ 244.751907][ T7316] __se_sys_sendmsg+0x19e/0x270 [ 244.756805][ T7316] ? __se_sys_futex+0x14a/0x440 [ 244.761786][ T7316] ? __x64_sys_sendmsg+0x80/0x80 [ 244.767359][ T7316] ? lockdep_hardirqs_on+0x94/0x140 [ 244.772706][ T7316] do_syscall_64+0x4c/0xa0 [ 244.777535][ T7316] ? clear_bhb_loop+0x60/0xb0 [ 244.782433][ T7316] ? clear_bhb_loop+0x60/0xb0 [ 244.787259][ T7316] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 244.793484][ T7316] RIP: 0033:0x7f3fcf38e969 [ 244.797956][ T7316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 244.819107][ T7316] RSP: 002b:00007f3fd028d038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 244.827748][ T7316] RAX: ffffffffffffffda RBX: 00007f3fcf5b5fa0 RCX: 00007f3fcf38e969 [ 244.836245][ T7316] RDX: 0000000000000010 RSI: 00002000000007c0 RDI: 0000000000000004 [ 244.844701][ T7316] RBP: 00007f3fcf410ab1 R08: 0000000000000000 R09: 0000000000000000 [ 244.852984][ T7316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 244.861111][ T7316] R13: 0000000000000000 R14: 00007f3fcf5b5fa0 R15: 00007ffc70226398 [ 244.869272][ T7316] [ 244.872773][ T7316] Kernel Offset: disabled [ 244.877392][ T7316] Rebooting in 86400 seconds..