last executing test programs: 6m12.970172341s ago: executing program 2 (id=290): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(0xffffffffffffffff, 0xc0a85320, &(0x7f00000003c0)={{0x80}, 'port0\x00', 0x511e36599023629, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB='2'], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READ_FIXED) io_uring_enter(0xffffffffffffffff, 0x2d3e, 0x0, 0x0, 0x0, 0x0) wait4(0x0, 0xfffffffffffffffe, 0x8, 0x0) 6m11.931560152s ago: executing program 2 (id=295): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x6, 0x0, 0x8100, 0x0, {0x1, 0x10}, {0xd}, {0xe, 0x10}}, [@TCA_RATE={0x6}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x11, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0xfffffffd, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000808}, 0x0) 6m11.132695248s ago: executing program 2 (id=300): syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_JOIN_MESH(r0, 0x0, 0x80) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) pipe(0x0) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000080050005000200000011000300686173683a69702c706f7274"], 0x4c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="50000000090601020000000000000000020000840900020073797a31000000000500010007000000280007800c00018008000140fffffff70500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x90) sendmsg$IPSET_CMD_LIST(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x2c, 0x7, 0x6, 0x101, 0x0, 0x0, {0x2, 0x0, 0x2}, [@IPSET_ATTR_FLAGS={0x8, 0x6, 0x1, 0x0, 0x91}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_FLAGS={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x800}, 0x2000c094) 6m9.070956503s ago: executing program 2 (id=306): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast}) write$tun(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="080000fa"], 0xdc) 6m8.134432544s ago: executing program 2 (id=311): r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r0, 0x0, 0x0) 6m7.585824259s ago: executing program 2 (id=314): r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xf8}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298) 5m52.330502495s ago: executing program 32 (id=314): r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000300)=@raw={'raw\x00', 0x4001, 0x8000000, 0x238, 0xf8, 0x720d, 0x148, 0xf8, 0x148, 0x1c8, 0x240, 0x240, 0x1c8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@remote, @empty, 0x0, 0x0, 'wlan1\x00', 'ip6erspan0\x00'}, 0x0, 0x70, 0xf8}, @common=@SET={0x60}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @dev}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x298) 6.152675789s ago: executing program 4 (id=1889): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="120000000a00000008000000"], 0x50) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000080)={r0, &(0x7f0000000300), 0x0}, 0x20) 5.952827634s ago: executing program 1 (id=1890): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18) syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='freezer.self_freezing\x00', 0x275a, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x9) fallocate(r2, 0x0, 0x0, 0x10fff9) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0xc, 0xffffffffffffffff, 0x8, 0x0, 0x2}) 5.736023799s ago: executing program 4 (id=1892): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020782500000000002020207b1af8fe00000000bfa100000000000007010000f8ffffffb702000008000000b703000007000000850000001100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x18) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000000)={0x50, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x4}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x50}, 0x1, 0x0, 0x0, 0x4028055}, 0x50) 5.158909367s ago: executing program 4 (id=1896): bpf$ENABLE_STATS(0x20, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfd, 0x11ff, &(0x7f0000002480)="$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") pipe2$9p(&(0x7f0000001900)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffb}, 0x94) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00', r2, 0x0, 0x11}, 0x18) r3 = dup(r1) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000500)='9p_client_req\x00'}, 0x10) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x10, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}}) 4.972658642s ago: executing program 1 (id=1897): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, 0x0, &(0x7f00000002c0)='GPL\x00'}, 0x94) socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_open_dev$tty1(0xc, 0x4, 0x1) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48) socket$nl_generic(0x10, 0x3, 0x10) socket$pppoe(0x18, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_usb_connect(0x0, 0x24, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x4b, 0x41, 0x46, 0x8, 0x1660, 0x932, 0x80ea, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x5, 0x10, 0xf}}]}}]}}, 0x0) socket(0x11, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$igmp(0x2, 0x3, 0x2) socket$inet_tcp(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c000200200000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}, 0x1, 0x0, 0x0, 0x8811}, 0x0) 4.567936763s ago: executing program 0 (id=1898): openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) syz_emit_ethernet(0xfdef, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd6002000800fe2c00fe8000000000"], 0x0) 4.321826502s ago: executing program 5 (id=1900): socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0, 0x0, 0x100}, 0x18) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = dup(r1) setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x4, 0x0, 0x0) 4.122197954s ago: executing program 0 (id=1901): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000008000000060000000010"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x64, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x2}, 0x18) r2 = socket(0x10, 0x3, 0x6) r3 = socket(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r4, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [], 0x0, [0x4, 0x2, 0xfffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000) 3.886857928s ago: executing program 3 (id=1902): r0 = creat(0x0, 0xe5) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94) write$qrtrtun(r0, &(0x7f0000001880)="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", 0x45c) r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000003c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r2, 0x0, 0x0}, 0x10) 3.862071625s ago: executing program 5 (id=1903): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10) r1 = socket(0x10, 0x2, 0x0) sendmsg$SOCK_DESTROY(r1, &(0x7f00000011c0)={0x0, 0x0, 0x0}, 0x0) 3.446810393s ago: executing program 0 (id=1904): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) sendto$inet6(r2, 0x0, 0x0, 0x240540c7, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @loopback}, 0x1c) r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x0, 0x7fff7ffc}]}) close_range(r3, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0) 3.28897621s ago: executing program 5 (id=1905): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = syz_io_uring_setup(0x10d, &(0x7f00000004c0)={0x0, 0x8b7c, 0x800, 0x7, 0x22}, &(0x7f0000000940)=0x0, &(0x7f0000000280)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0}) io_uring_enter(r1, 0x47f9, 0x0, 0x0, 0x0, 0x0) listen(r0, 0x2000fff) accept(r0, 0xfffffffffffffffd, 0x0) 3.28856701s ago: executing program 3 (id=1906): r0 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000300), 0x4) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4) syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), r0) r1 = socket$pppl2tp(0x18, 0x1, 0x1) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10) r3 = socket$inet_udp(0x2, 0x2, 0x0) connect$pppl2tp(r1, &(0x7f0000000240)=@pppol2tpin6={0x18, 0x1, {0x0, r3, 0x2, 0x0, 0x4, 0x0, {0xa, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, 0x32) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_DELETE(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x1c, r5, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}]}, 0x1c}}, 0x40) 3.274936538s ago: executing program 4 (id=1907): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18) syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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") r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='freezer.self_freezing\x00', 0x275a, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x9) fallocate(r2, 0x0, 0x0, 0x10fff9) ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0xc, 0xffffffffffffffff, 0x8, 0x0, 0x2}) 2.830951139s ago: executing program 0 (id=1908): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000080)=@broute={'broute\x00', 0x70, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x200000001300, 0x200000001330], 0x0, 0x0, &(0x7f0000001300)=ANY=[]}, 0x78) 2.541001237s ago: executing program 3 (id=1909): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r0}, 0x18) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000000)=@generic={&(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', r0}, 0x18) 2.424816432s ago: executing program 1 (id=1910): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2) sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0) close(r4) socket$unix(0x1, 0x1, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=@newqdisc={0x80, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x0, 0xb}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x50, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xf, 0x6}, [@TCA_NETEM_DELAY_DIST={0x1d, 0x2, "97c6838bcc63f8acb7e180818e959c09c868cd351d547670da"}, @TCA_NETEM_RATE={0x14, 0x6, {0x2, 0x300, 0x3, 0x9}}]}}}]}, 0x80}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x80000, {0x0, 0x0, 0x0, 0x0, {}, {0xffe6, 0xb}, {0xffe0, 0xc}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000) ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"}) 2.380703028s ago: executing program 0 (id=1911): openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) syz_emit_ethernet(0xfdef, &(0x7f0000000100)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaa0086dd6002000800fe2c00fe8000000000"], 0x0) 1.96318074s ago: executing program 3 (id=1912): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000000e007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000020850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = memfd_secret(0x0) fcntl$setlease(r2, 0x400, 0x0) fsetxattr$security_ima(r2, &(0x7f0000000000), 0x0, 0x0, 0x0) 1.950123215s ago: executing program 4 (id=1913): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x400e, &(0x7f0000000300), 0x1, 0x440, &(0x7f0000000cc0)="$eJzs28tvG8UfAPDv2kn66+uXUJVHH0CgIMoradJSeuACAokDSEhwKMeQpFWo26AmSLSKICBUjqgSJy6IIxJ/ASe4IOCExBXuqFKFcmnhZLT2bmI7thunTlzqz0dad2Z33Jmvd8ee2ckG0LdG05ckYk9E/B4Rw9VsfYHR6j83V5am/15Zmk6iXH7zr6RS7sbK0nReNH/f7jwzEFH4NIlDTepduHT53FSpNHsxy48vnn9vfOHS5Wfnzk+dnT07e2Hy1KkTxyeePzn5XFfiTOO6cfDD+cMHXn376uvTp6++8/O3SR5/QxxdMtru4OPlcper6629NelkoIcNoSPFajeNwUr/H45irJ284Xjlk542DthS5XK5fF/rw8tl4C6WRK9bAPRG/kOfzn/zbZuGHneE6y9WJ0Bp3DezrXpkIApZmcGG+W03jUbE6eV/vkq32Jr7EAAAdb5Pxz/PNBv/FaL2vtD/szWUkYi4JyL2RcTJiNgfEfdGVMreHxEPdFh/4yLJ+vFP4dqmAtugdPz3Qra2VT/+y0d/MVLMcnsr8Q8mZ+ZKs8eyz+RoDO5I8xNt6vjh5d8+b3WsdvyXbmn9+Vgwa8e1gR3175mZWpy6nZhrXf844uBAs/iT1ZWAJCIORMTBTdYx99Q3h1sdu3X8bXRhnan8dcQT1fO/HA3x55L265Pj/4vS7LHx/KpY75dfr7zRqv7bir8L0vO/q+n1vxr/SFK7XrvQyf/+5ZPp65U/Pms5p9ns9T+UvFW374OpxcWLExFDyWvVRtfun2woN7lWPo3/6JHm/X9frH0ShyIivYgfjIiHIuLhrO2PRMSjEXGkzafw00uPvbv5+LdWGv9MR+d/LTEUjXuaJ4rnfvyurtKRTuJPz/+JSupotmcj338baVenVzMAAAD8VxUiYk8khbHVdKEwNlb9G/79satQml9YfPrM/PsXZqrPCIzEYCG/0zVccz90IpvW5/nJhvzx7L7xF8WdlfzY9HxpptfBQ5/b3aL/p/4s9rp1wJbzvBb0L/0f+pf+D/1L/4f+1aT/7+xFO4Dt1+z3/6MetAPYfg3937If9BHzf+hfm+n/vjPg7tC2Lw9tXzuAbbWwM279kLyExLpEFO6IZkhsUaLX30wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADd8W8AAAD//58P56I=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) r1 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100), 0x2, 0x0) write$cgroup_subtree(r1, 0x0, 0x0) cachestat(r0, &(0x7f0000000140)={0x1, 0x7fc001}, &(0x7f0000000100), 0x0) 1.84033945s ago: executing program 0 (id=1914): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f00000700"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r4}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r3}, &(0x7f0000000040), &(0x7f0000000080)=r4}, 0x20) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x4}, 0x6) setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0xa02000000000000, 0x60, 0x0, 0x0) request_key(&(0x7f0000002740)='asymmetric\x00', &(0x7f0000002780)={'syz', 0x3}, &(0x7f00000027c0)=',*[\\/&)\x00', 0xffffffffffffffff) 1.651864667s ago: executing program 5 (id=1915): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10) r1 = socket(0x10, 0x2, 0x0) sendmsg$SOCK_DESTROY(r1, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={0x0}}, 0x0) 1.421521826s ago: executing program 3 (id=1916): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb7020000080000", @ANYRES32=r0, @ANYBLOB="0000000002000000b70500000800000085000000a500"], &(0x7f0000000300)='GPL\x00', 0x5, 0xff6, &(0x7f0000001e00)=""/4086}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) socket$nl_route(0x10, 0x3, 0x0) prctl$PR_SET_SECCOMP(0x16, 0x3, &(0x7f00000002c0)={0x1, &(0x7f0000000340)=[{0x200000000006, 0x40, 0x0, 0x7ffc0002}]}) socket$kcm(0x21, 0x2, 0x2) bpf$ITER_CREATE(0x21, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="180000000000000000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'macvtap0\x00', 0x0}) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20) sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x3e, &(0x7f0000000240)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r3}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0) 1.278433912s ago: executing program 1 (id=1917): r0 = creat(0x0, 0xe5) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, 0x94) write$qrtrtun(r0, &(0x7f0000001880)="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", 0x45c) r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000003c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r2, 0x0, 0x0}, 0x10) 1.051591265s ago: executing program 5 (id=1918): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x12, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10) r2 = socket$inet6(0xa, 0x3, 0xff) setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000000000), 0x4) setsockopt$inet6_int(r2, 0x29, 0x16, &(0x7f0000fcb000)=0xfffffffc, 0x4) 594.590571ms ago: executing program 1 (id=1919): r0 = socket$inet(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000440)=@newqdisc={0x50, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x20, 0x2, [@TCA_TAPRIO_ATTR_SCHED_CYCLE_TIME={0xc, 0x8, 0x7ff}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x80000000}]}]}]}}]}, 0x50}}, 0x0) 359.405156ms ago: executing program 3 (id=1920): r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00') bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) ioctl$PIO_FONT(r0, 0x4b61, &(0x7f0000000340)="f75e1666ec81b14046d1d9ae2a3fb223ae4d9ae71ce0e32ffcbb4a72e68904243339974c79979c7613cbc0e850468481f3310d07b4131aa19bff7f5676d060a18267233a20e3ff0f70777f7555b6019f") r1 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xc, 0x0, &(0x7f00000002c0)) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_FLUSH(r2, &(0x7f0000000800)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc080}, 0xe821651e0a1b45fc) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=ANY=[@ANYRES16], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94) r3 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r4) ioctl$IOCTL_GET_NCIDEV_IDX(r3, 0x0, &(0x7f00000000c0)=0x0) sendmsg$NFC_CMD_DEV_UP(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r5, @ANYBLOB="010026bd70003c0200000200000008000100", @ANYRES32=r6, @ANYBLOB], 0x1c}}, 0x0) write$nci(r3, &(0x7f0000000300)=ANY=[@ANYBLOB="6103060404d4e7dfa84b59"], 0xb) socket$inet6_tcp(0xa, 0x1, 0x0) 219.883504ms ago: executing program 5 (id=1921): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x6, 0x3, &(0x7f0000000680)=ANY=[], 0x0}, 0x94) socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_open_dev$tty1(0xc, 0x4, 0x1) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="61158800000000006113500000000000bfa000000000000007000000ee0016055e0301000000000064050000000000006916300000000000bf07000000000000260507000fff07206706000020000000470600000ee60060bf500000000000002f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05002000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe0185473d51b546cad3f1d5ace0600006e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc0da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e0dee5eb106774a8f3e6916dfec88158f0200000000c8fb730a5c1bf2b2bb71a629361997a75fd552bdc206438b8ef4901fd03c16dfda44e2a2235c8ac86d8a297dff0445a15f21dce431e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076eb685d00c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932fb3bba54b3a6aa57f1ad2e99e0e67ab9ff16d20000009f0f53acbb40b4f8e2738270001562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000000000000000004000bc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc47287cd31cc43010000007b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3c40dfd1970a55c22fe3a5ac000000000000000000000000000000c1eb2d91fb79ea00000000815266b2c9e1bfadc7498e9dda5d000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eba9000000000000003cc3aa39ee4b1386bab561cda886fa642994cacd473b543ccb5f0d7b63924f17c67b13631822a11dc3c693962895496d4f6e9cc54db6c7205a6b26f92121ef53e553acdf42068fff496d2da7d6327f31d7c8cc5d325c5379b0363ce8bd1f61b007e1ff5f1be1969a1ba791ad46d800000000c7f26a0337302f3b41eae59809fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b3042065acaa10856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710eec53f1b11cced7bc3c8da0c44d2fbf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db80300c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d999d788535a4d3114dbc7e2bf2402a75fd7a55733360040855ed5d1c0d634fc5fb38f8709d87b27f8a5d9121fdc058447b728f134f72062fc4b1ca0780b1a7af137ff7b4ff139604faf0453b65586f65c7943d56b52f06c870edf0c5d744b5272b44c23480b2bdbff947c4dfa108cbb88202eeb81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2cc17dc4a29b9cba8ded5de8206c812439ab129ae818837ee1562078fc524b3baf49a0be9bb7d958d5e87c6c09bf71a894bad62934782cc308e936d7637e07c4a2a3bc87b0da20000d9ef418cf19e7a8c4c328be0ce91798adc2dca871073f6bd61940aabc86b94f8cbde4d47060400e722a6a2af483ad0d3415ed0f9db009acaba9eaea93f811d434e00000000000000000000d154672fea96aedf346279ec00000000000000000000d535d41b0067f01e2e54b9154d876020b669640ead4ca44631fadf7c4ac39a1b331dbdcd52b36df021b731ef1f92330d347f88ced5c1aaadbcdd8d2257e3a9a7c7494fadf9be36f7a2334ee6e9446fa1fd486f85d672a77dc5bd21463994d49f12016305a1e394d292b66840fe32b40ad665d241a8b8a32b3100450c32832789aa8a096f41201b585cd76631c88cf958e9e9047f5af1730c5e83db12460a0768fd4b62be6c41eed307048bac8d1f7f164574241e06027654b248dcc38749eee0c1ee7c61b3f6411a559c3d45637b11e440ed5a99109b8e71d28c3d677af5f0499c6d3fc6a129775056958c9df824ebe5fa9fb306b24a8a8334910627d03efe69d4b61c4345f048c5da8aca16cea848fa77d2507c920a6bd654b00e07789382ed902c80deeff2fd5c78f42e4353e5360c3e55962efd1331e6736eaf4ee27736fa54803ee8ec1a15266ffcd8b30368740b584c2559e691e542cab3d49db327db62328f159d1e0900b3e23e84dedcd1377aa15dbeab7db181bd66980c3557c7d9f7377fcb6023accb5c368a121acf70e5f4c3f2a0ea07011c7149ea979cab2ee65cf7ffa29152b7a8fed89575e6e6fd77d4d9463d21775abac886ee6a1f2d7d8523840438a73d6307a87e2f525867fc3af7ab74520a773ae26bae74cdd405a211e8833e1ba523cde51d04a7ca6732"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48) socket$nl_generic(0x10, 0x3, 0x10) socket$pppoe(0x18, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) syz_usb_connect(0x0, 0x24, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x4b, 0x41, 0x46, 0x8, 0x1660, 0x932, 0x80ea, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x5, 0x10, 0xf}}]}}]}}, 0x0) socket(0x11, 0x3, 0x0) socket$nl_generic(0x10, 0x3, 0x10) socket$nl_generic(0x10, 0x3, 0x10) socket$igmp(0x2, 0x3, 0x2) socket$inet_tcp(0x2, 0x1, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000940)={&(0x7f00000013c0)=ANY=[@ANYBLOB="640000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="e5fda988000000002800128009000100766c616e00000000180002800c000200200000001f000000060001000000000008000500", @ANYRES32=r0, @ANYBLOB='\b\x00\n\x00', @ANYRES32, @ANYBLOB="0a000100000070"], 0x64}, 0x1, 0x0, 0x0, 0x8811}, 0x0) 148.938979ms ago: executing program 4 (id=1922): socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff}) recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0xf0588357b60851c) 0s ago: executing program 1 (id=1923): socket$inet_tcp(0x2, 0x1, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$devlink(0x0, r0) sendmsg$DEVLINK_CMD_RATE_NEW(r0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000d00)=@nat={'nat\x00', 0x19, 0x0, 0x90, [0x200000000c40, 0x0, 0x0, 0x200000000c70, 0x200000000ca0], 0x11, 0x0, &(0x7f0000000c40)=ANY=[@ANYBLOB="00000000000000000000000000000000000000000000000000000000000000000000000000000000feffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000001000feffffff00"/126]}, 0xf6) sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000580)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x44801}, 0x0) sendmmsg$inet(0xffffffffffffffff, &(0x7f00000017c0), 0x0, 0x4040880) ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000140)={'wpan3\x00'}) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f0000000200)={'ip6erspan0\x00', &(0x7f00000001c0)=@ethtool_cmd={0x35, 0x9, 0x4, 0x1, 0x4, 0x20, 0x6, 0x9, 0x7f, 0x0, 0x0, 0x4, 0x7, 0x9, 0x2, 0xffffffff, [0xd4b, 0xe5ab]}}) sendmsg$IEEE802154_LIST_IFACE(r1, 0x0, 0x4800) bpf$MAP_CREATE(0x0, &(0x7f0000000080)=ANY=[], 0x50) bpf$PROG_LOAD(0x5, 0x0, 0x0) syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r1) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000780), r5) sendmsg$NLBL_MGMT_C_ADD(r5, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000040)={0x34, r6, 0x1, 0x400000, 0x0, {}, [@NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast2}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @remote}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x0) kernel console output (not intermixed with test programs): ter parsing attributes in process `syz.0.632'. [ 431.260928][ T7721] netlink: 8 bytes leftover after parsing attributes in process `syz.4.631'. [ 431.371539][ T7720] loop1: detected capacity change from 0 to 512 [ 431.543707][ T7720] EXT4-fs (loop1): too many log groups per flexible block group [ 431.552649][ T7720] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 431.568863][ T7720] EXT4-fs (loop1): mount failed [ 431.973678][ T1875] team0 (unregistering): Port device team_slave_1 removed [ 432.050451][ T1875] team0 (unregistering): Port device team_slave_0 removed [ 432.397608][ T7730] netlink: 20 bytes leftover after parsing attributes in process `syz.4.636'. [ 432.942189][ T7737] netlink: 'syz.4.639': attribute type 10 has an invalid length. [ 434.118637][ T7756] netlink: 8 bytes leftover after parsing attributes in process `syz.4.646'. [ 434.743811][ T7760] netlink: 20 bytes leftover after parsing attributes in process `syz.5.647'. [ 434.811730][ T7764] loop1: detected capacity change from 0 to 512 [ 434.913497][ T7764] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 435.070876][ T7764] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 435.084345][ T7764] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 435.219091][ T7772] netlink: 124 bytes leftover after parsing attributes in process `syz.3.651'. [ 435.778362][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 436.086509][ T7783] netlink: 'syz.0.656': attribute type 10 has an invalid length. [ 436.588358][ T7791] netlink: 8 bytes leftover after parsing attributes in process `syz.5.660'. [ 437.318986][ T7804] netlink: 124 bytes leftover after parsing attributes in process `syz.4.663'. [ 437.370540][ T7806] loop5: detected capacity change from 0 to 512 [ 437.415380][ T7806] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 437.483458][ T7808] netlink: 20 bytes leftover after parsing attributes in process `syz.1.665'. [ 437.649132][ T7806] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 437.662543][ T7806] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 438.247946][ T7053] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 439.072902][ T7830] netlink: 'syz.4.671': attribute type 10 has an invalid length. [ 439.354112][ T7836] netlink: 8 bytes leftover after parsing attributes in process `syz.0.674'. [ 439.723901][ T7843] netlink: 124 bytes leftover after parsing attributes in process `syz.1.678'. [ 440.729113][ T7858] netlink: 20 bytes leftover after parsing attributes in process `syz.1.682'. [ 441.412278][ T7871] netlink: 'syz.3.687': attribute type 10 has an invalid length. [ 441.944115][ T7877] netlink: 124 bytes leftover after parsing attributes in process `syz.3.692'. [ 441.960496][ T7879] netlink: 8 bytes leftover after parsing attributes in process `syz.1.690'. [ 442.163869][ T7882] netlink: 4 bytes leftover after parsing attributes in process `syz.4.693'. [ 442.201685][ T7882] hsr_slave_0: left promiscuous mode [ 442.222611][ T7882] hsr_slave_1: left promiscuous mode [ 443.718134][ T7904] netlink: 20 bytes leftover after parsing attributes in process `syz.5.700'. [ 443.973265][ T7910] netlink: 'syz.3.702': attribute type 10 has an invalid length. [ 444.368670][ T7914] netlink: 8 bytes leftover after parsing attributes in process `syz.4.705'. [ 444.383226][ T7916] netlink: 124 bytes leftover after parsing attributes in process `syz.1.706'. [ 445.122806][ T7924] loop1: detected capacity change from 0 to 764 [ 445.352782][ T7929] syzkaller0: entered promiscuous mode [ 445.358873][ T7929] syzkaller0: entered allmulticast mode [ 446.229155][ T7937] netlink: 8 bytes leftover after parsing attributes in process `syz.4.715'. [ 446.446267][ T7942] netlink: 'syz.3.717': attribute type 10 has an invalid length. [ 446.564240][ T7944] netlink: 124 bytes leftover after parsing attributes in process `syz.0.718'. [ 447.056800][ T7951] loop4: detected capacity change from 0 to 512 [ 447.114480][ T7951] EXT4-fs: Ignoring removed i_version option [ 447.157430][ T7951] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 447.274233][ T7951] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 447.448020][ T7951] EXT4-fs (loop4): 1 truncate cleaned up [ 447.456151][ T7951] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 447.509410][ T7955] bridge0: port 2(bridge_slave_1) entered disabled state [ 447.519416][ T7955] bridge0: port 1(bridge_slave_0) entered disabled state [ 447.812408][ T7955] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 447.838031][ T7955] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 448.368108][ T7955] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 448.379673][ T7955] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 448.390482][ T7955] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 448.399903][ T7955] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 448.546744][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 449.065815][ T7977] syzkaller0: entered promiscuous mode [ 449.071993][ T7977] syzkaller0: entered allmulticast mode [ 449.159074][ T7995] loop5: detected capacity change from 0 to 128 [ 449.631601][ T7998] netlink: 12 bytes leftover after parsing attributes in process `syz.0.727'. [ 449.663550][ T7998] vlan2: entered promiscuous mode [ 449.669571][ T7998] syz_tun: entered promiscuous mode [ 450.191487][ T3537] kworker/u8:10: attempt to access beyond end of device [ 450.191487][ T3537] loop5: rw=1, sector=145, nr_sectors = 8 limit=128 [ 450.205687][ T3537] kworker/u8:10: attempt to access beyond end of device [ 450.205687][ T3537] loop5: rw=1, sector=161, nr_sectors = 8 limit=128 [ 450.219841][ T3537] kworker/u8:10: attempt to access beyond end of device [ 450.219841][ T3537] loop5: rw=1, sector=177, nr_sectors = 8 limit=128 [ 450.234197][ T3537] kworker/u8:10: attempt to access beyond end of device [ 450.234197][ T3537] loop5: rw=1, sector=193, nr_sectors = 8 limit=128 [ 450.248352][ T3537] kworker/u8:10: attempt to access beyond end of device [ 450.248352][ T3537] loop5: rw=1, sector=209, nr_sectors = 8 limit=128 [ 450.268306][ T3537] kworker/u8:10: attempt to access beyond end of device [ 450.268306][ T3537] loop5: rw=1, sector=225, nr_sectors = 8 limit=128 [ 450.284328][ T3537] kworker/u8:10: attempt to access beyond end of device [ 450.284328][ T3537] loop5: rw=1, sector=241, nr_sectors = 8 limit=128 [ 450.298610][ T3537] kworker/u8:10: attempt to access beyond end of device [ 450.298610][ T3537] loop5: rw=1, sector=257, nr_sectors = 8 limit=128 [ 450.312863][ T3537] kworker/u8:10: attempt to access beyond end of device [ 450.312863][ T3537] loop5: rw=1, sector=273, nr_sectors = 8 limit=128 [ 450.327005][ T3537] kworker/u8:10: attempt to access beyond end of device [ 450.327005][ T3537] loop5: rw=1, sector=289, nr_sectors = 8 limit=128 [ 450.501174][ T8007] netlink: 8 bytes leftover after parsing attributes in process `syz.4.730'. [ 450.519811][ T8009] netlink: 'syz.0.732': attribute type 10 has an invalid length. [ 451.101641][ T8013] netlink: 16 bytes leftover after parsing attributes in process `syz.0.733'. [ 451.111227][ T8013] netlink: 48 bytes leftover after parsing attributes in process `syz.0.733'. [ 451.933622][ T30] audit: type=1326 audit(1752280186.590:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8024 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 451.956836][ T30] audit: type=1326 audit(1752280186.600:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8024 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 451.979724][ T30] audit: type=1326 audit(1752280186.600:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8024 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 452.006341][ T30] audit: type=1326 audit(1752280186.620:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8024 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=194 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 452.030654][ T30] audit: type=1326 audit(1752280186.650:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8024 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 452.053514][ T30] audit: type=1326 audit(1752280186.650:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8024 comm="syz.3.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 452.724373][ T8035] netlink: 172 bytes leftover after parsing attributes in process `syz.0.742'. [ 452.734107][ T8035] netlink: 64 bytes leftover after parsing attributes in process `syz.0.742'. [ 452.743456][ T8035] netlink: 8 bytes leftover after parsing attributes in process `syz.0.742'. [ 452.877341][ T8037] netlink: 'syz.5.743': attribute type 10 has an invalid length. [ 452.968172][ T8039] netlink: 8 bytes leftover after parsing attributes in process `syz.4.744'. [ 453.382691][ T8046] netlink: 16 bytes leftover after parsing attributes in process `syz.0.747'. [ 453.392454][ T8046] netlink: 48 bytes leftover after parsing attributes in process `syz.0.747'. [ 455.047844][ T5882] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 455.332486][ T5882] usb 6-1: Using ep0 maxpacket: 8 [ 455.924214][ T8067] netlink: 96 bytes leftover after parsing attributes in process `syz.4.755'. [ 456.285331][ T5882] usb 6-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 456.295108][ T5882] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 456.307871][ T5882] usb 6-1: Product: syz [ 456.312423][ T5882] usb 6-1: Manufacturer: syz [ 456.319238][ T5882] usb 6-1: SerialNumber: syz [ 456.329875][ T5882] usb 6-1: config 0 descriptor?? [ 456.689455][ T8069] netlink: 'syz.4.756': attribute type 10 has an invalid length. [ 456.731713][ T8060] bond_slave_0: entered promiscuous mode [ 456.737914][ T8060] bond_slave_1: entered promiscuous mode [ 456.744190][ T8060] vlan2: entered promiscuous mode [ 456.749655][ T8060] bond0: entered promiscuous mode [ 457.296347][ T5882] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 457.304976][ T5882] usb 6-1: setting power ON [ 457.309875][ T5882] dvb-usb: bulk message failed: -22 (2/0) [ 457.323217][ T5882] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 457.348416][ T5882] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 457.357483][ T5882] usb 6-1: media controller created [ 457.688375][ T8073] netlink: 8 bytes leftover after parsing attributes in process `syz.4.758'. [ 458.160035][ T30] audit: type=1326 audit(1752280192.700:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8074 comm="syz.3.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 458.182818][ T30] audit: type=1326 audit(1752280192.710:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8074 comm="syz.3.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 458.205527][ T30] audit: type=1326 audit(1752280192.750:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8074 comm="syz.3.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 458.228430][ T30] audit: type=1326 audit(1752280192.770:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8074 comm="syz.3.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 458.253564][ T30] audit: type=1326 audit(1752280192.770:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8074 comm="syz.3.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 458.276952][ T30] audit: type=1326 audit(1752280192.800:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8074 comm="syz.3.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 458.299662][ T30] audit: type=1326 audit(1752280192.800:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8074 comm="syz.3.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 458.322396][ T30] audit: type=1326 audit(1752280192.800:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8074 comm="syz.3.759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 458.789528][ T8076] netlink: 'syz.3.759': attribute type 49 has an invalid length. [ 458.981088][ T8079] netlink: 16 bytes leftover after parsing attributes in process `syz.5.760'. [ 458.990582][ T8079] netlink: 48 bytes leftover after parsing attributes in process `syz.5.760'. [ 459.331799][ T5882] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 459.508335][ T30] audit: type=1326 audit(1752280194.160:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8085 comm="syz.0.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 459.713222][ T30] audit: type=1326 audit(1752280194.260:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8085 comm="syz.0.762" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 459.941110][ T8082] Can't find ip_set type hash:net,po [ 460.356156][ T5882] usb 6-1: selecting invalid altsetting 6 [ 460.362455][ T5882] usb 6-1: digital interface selection failed (-22) [ 460.369481][ T5882] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 461.330429][ T5882] usb 6-1: setting power OFF [ 461.335337][ T5882] dvb-usb: bulk message failed: -22 (2/0) [ 461.341537][ T5882] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 461.351261][ T5882] (NULL device *): no alternate interface [ 461.692752][ T8099] netlink: 'syz.4.768': attribute type 10 has an invalid length. [ 462.794169][ T8105] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 463.113660][ T8108] netlink: 8 bytes leftover after parsing attributes in process `syz.3.771'. [ 463.401497][ T5882] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 463.621137][ T8105] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 463.740784][ T8110] loop0: detected capacity change from 0 to 512 [ 463.902850][ T8110] EXT4-fs (loop0): too many log groups per flexible block group [ 463.911732][ T8110] EXT4-fs (loop0): failed to initialize mballoc (-12) [ 464.005950][ T8105] bond0: (slave netdevsim1): Releasing backup interface [ 464.018925][ T8110] EXT4-fs (loop0): mount failed [ 464.067011][ T8105] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 464.103038][ T5882] usb 6-1: USB disconnect, device number 2 [ 464.273895][ T8105] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 464.278675][ T8114] netlink: 16 bytes leftover after parsing attributes in process `syz.3.773'. [ 464.298167][ T8114] netlink: 24 bytes leftover after parsing attributes in process `syz.3.773'. [ 464.594906][ T8105] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 464.633774][ T8105] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 464.665832][ T8105] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 464.704648][ T8105] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 464.731888][ T8116] loop1: detected capacity change from 0 to 512 [ 464.835263][ T8116] EXT4-fs (loop1): too many log groups per flexible block group [ 464.849140][ T8116] EXT4-fs (loop1): failed to initialize mballoc (-12) [ 464.974592][ T8116] EXT4-fs (loop1): mount failed [ 465.510175][ T8130] netlink: 'syz.5.780': attribute type 10 has an invalid length. [ 465.633849][ T8133] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 466.106187][ T8141] netlink: 8 bytes leftover after parsing attributes in process `syz.3.783'. [ 466.500981][ T8144] loop4: detected capacity change from 0 to 512 [ 466.595344][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 466.595423][ T30] audit: type=1326 audit(1752280201.260:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8146 comm="syz.1.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 466.624729][ T30] audit: type=1326 audit(1752280201.260:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8146 comm="syz.1.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 466.650649][ T30] audit: type=1326 audit(1752280201.290:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8146 comm="syz.1.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 466.674204][ T30] audit: type=1326 audit(1752280201.300:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8146 comm="syz.1.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 466.696983][ T30] audit: type=1326 audit(1752280201.310:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8146 comm="syz.1.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 466.719849][ T30] audit: type=1326 audit(1752280201.310:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8146 comm="syz.1.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 466.917558][ T8144] EXT4-fs (loop4): too many log groups per flexible block group [ 466.926400][ T8144] EXT4-fs (loop4): failed to initialize mballoc (-12) [ 466.968801][ T8144] EXT4-fs (loop4): mount failed [ 466.978857][ T30] audit: type=1326 audit(1752280201.470:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8146 comm="syz.1.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 467.001961][ T30] audit: type=1326 audit(1752280201.470:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8146 comm="syz.1.787" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 467.456112][ T8163] hsr0: entered promiscuous mode [ 467.497051][ T8163] netlink: 4 bytes leftover after parsing attributes in process `syz.5.793'. [ 467.522833][ T8167] netlink: 'syz.4.794': attribute type 10 has an invalid length. [ 467.556425][ T8163] hsr_slave_0: left promiscuous mode [ 467.574332][ T8163] hsr_slave_1: left promiscuous mode [ 467.607096][ T8168] binfmt_misc: register: failed to install interpreter file ./file2 [ 467.661168][ T8163] hsr0 (unregistering): left promiscuous mode [ 467.754883][ T8169] netlink: 'syz.0.795': attribute type 16 has an invalid length. [ 467.763434][ T8169] netlink: 'syz.0.795': attribute type 17 has an invalid length. [ 467.934099][ T8169] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 468.010567][ T8168] lo speed is unknown, defaulting to 1000 [ 468.278678][ T8174] netlink: 8 bytes leftover after parsing attributes in process `syz.4.798'. [ 468.743371][ T8181] Driver unsupported XDP return value 0 on prog (id 294) dev N/A, expect packet loss! [ 469.872941][ T8197] loop3: detected capacity change from 0 to 512 [ 469.959073][ T8197] EXT4-fs (loop3): too many log groups per flexible block group [ 469.968148][ T8197] EXT4-fs (loop3): failed to initialize mballoc (-12) [ 470.069988][ T8197] EXT4-fs (loop3): mount failed [ 470.496600][ T8211] tipc: Started in network mode [ 470.502115][ T8211] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 470.512244][ T8211] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00aa [ 470.523261][ T8211] tipc: Enabled bearer , priority 10 [ 470.983373][ T8217] binfmt_misc: register: failed to install interpreter file ./file2 [ 471.100313][ T8217] lo speed is unknown, defaulting to 1000 [ 471.205046][ T8220] netlink: 'syz.4.811': attribute type 16 has an invalid length. [ 471.213550][ T8220] netlink: 'syz.4.811': attribute type 17 has an invalid length. [ 471.337737][ T8220] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 471.374084][ T8219] netlink: 8 bytes leftover after parsing attributes in process `syz.1.812'. [ 471.637874][ T41] tipc: Node number set to 1 [ 473.164416][ T8247] loop0: detected capacity change from 0 to 512 [ 473.448803][ T8247] EXT4-fs (loop0): too many log groups per flexible block group [ 473.457991][ T8247] EXT4-fs (loop0): failed to initialize mballoc (-12) [ 473.469365][ T8247] EXT4-fs (loop0): mount failed [ 473.729366][ T8257] binfmt_misc: register: failed to install interpreter file ./file2 [ 473.816505][ T8257] lo speed is unknown, defaulting to 1000 [ 473.913536][ T8259] loop3: detected capacity change from 0 to 1024 [ 473.932325][ T8262] netlink: 'syz.5.824': attribute type 16 has an invalid length. [ 473.941889][ T8262] netlink: 'syz.5.824': attribute type 17 has an invalid length. [ 473.990531][ T8259] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 474.002063][ T8259] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 474.048650][ T8259] JBD2: no valid journal superblock found [ 474.054772][ T8259] EXT4-fs (loop3): Could not load journal inode [ 474.129689][ T8262] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 475.482488][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 476.184933][ T8278] bridge0: port 2(bridge_slave_1) entered disabled state [ 476.195017][ T8278] bridge0: port 1(bridge_slave_0) entered disabled state [ 476.506571][ T8278] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 476.532801][ T8278] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 476.961691][ T8304] netlink: 32 bytes leftover after parsing attributes in process `syz.4.839'. [ 476.971222][ T8304] netlink: 12 bytes leftover after parsing attributes in process `syz.4.839'. [ 477.260676][ T8278] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 477.270179][ T8278] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 477.279625][ T8278] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 477.289093][ T8278] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 477.591638][ T8309] loop3: detected capacity change from 0 to 512 [ 477.694177][ T7985] lo speed is unknown, defaulting to 1000 [ 477.700349][ T7985] syz2: Port: 1 Link DOWN [ 477.783356][ T8309] EXT4-fs warning (device loop3): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 477.816504][ T8309] EXT4-fs (loop3): mount failed [ 478.043561][ T8316] binfmt_misc: register: failed to install interpreter file ./file2 [ 478.189990][ T8316] lo speed is unknown, defaulting to 1000 [ 478.322706][ T8319] netlink: 'syz.4.841': attribute type 16 has an invalid length. [ 478.330996][ T8319] netlink: 'syz.4.841': attribute type 17 has an invalid length. [ 478.490892][ T8319] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 479.733377][ T8344] netlink: 32 bytes leftover after parsing attributes in process `syz.5.851'. [ 479.743817][ T8344] netlink: 12 bytes leftover after parsing attributes in process `syz.5.851'. [ 480.481957][ T8353] program syz.3.856 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 481.249222][ T8349] loop5: detected capacity change from 0 to 8192 [ 481.662483][ T7053] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000e1b1) [ 481.671063][ T7053] FAT-fs (loop5): Filesystem has been set read-only [ 481.988025][ T8364] loop1: detected capacity change from 0 to 128 [ 482.103579][ T30] audit: type=1800 audit(1752280216.770:95): pid=8364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.860" name="file2" dev="loop1" ino=1048621 res=0 errno=0 [ 482.133180][ T8364] bio_check_eod: 38 callbacks suppressed [ 482.133264][ T8364] syz.1.860: attempt to access beyond end of device [ 482.133264][ T8364] loop1: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 482.372522][ T8366] binfmt_misc: register: failed to install interpreter file ./file2 [ 482.525294][ T8366] lo speed is unknown, defaulting to 1000 [ 482.628780][ T8370] netlink: 'syz.5.859': attribute type 16 has an invalid length. [ 482.637037][ T8370] netlink: 'syz.5.859': attribute type 17 has an invalid length. [ 482.728818][ T8370] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 483.608878][ T8381] netlink: 32 bytes leftover after parsing attributes in process `syz.5.865'. [ 483.618291][ T8381] netlink: 12 bytes leftover after parsing attributes in process `syz.5.865'. [ 484.218866][ T30] audit: type=1326 audit(1752280218.880:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8389 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 484.323010][ T30] audit: type=1326 audit(1752280218.920:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8389 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 484.346126][ T30] audit: type=1326 audit(1752280218.920:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8389 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 484.371749][ T30] audit: type=1326 audit(1752280218.920:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8389 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 484.395324][ T30] audit: type=1326 audit(1752280218.960:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8389 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 484.418380][ T30] audit: type=1326 audit(1752280218.990:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8389 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 484.441203][ T30] audit: type=1326 audit(1752280218.990:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8389 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 484.467860][ T30] audit: type=1326 audit(1752280218.990:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8389 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 484.491707][ T30] audit: type=1326 audit(1752280218.990:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8389 comm="syz.1.870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 484.863099][ T8396] loop0: detected capacity change from 0 to 128 [ 485.151569][ T8402] binfmt_misc: register: failed to install interpreter file ./file2 [ 485.241680][ T8402] lo speed is unknown, defaulting to 1000 [ 485.759601][ T8396] syz.0.872: attempt to access beyond end of device [ 485.759601][ T8396] loop0: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 485.810945][ T8408] loop3: detected capacity change from 0 to 512 [ 485.820229][ T8408] EXT4-fs: Ignoring removed mblk_io_submit option [ 485.827093][ T8408] EXT4-fs: Ignoring removed bh option [ 485.888051][ T8408] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 485.997459][ T8408] EXT4-fs (loop3): 1 truncate cleaned up [ 486.009763][ T8408] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 486.331865][ T8402] netlink: 'syz.5.875': attribute type 16 has an invalid length. [ 486.340520][ T8402] netlink: 'syz.5.875': attribute type 17 has an invalid length. [ 486.379319][ T8402] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 488.034201][ T8420] netlink: 32 bytes leftover after parsing attributes in process `syz.5.879'. [ 488.292368][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 488.728436][ T8430] netlink: 40 bytes leftover after parsing attributes in process `syz.0.883'. [ 489.127114][ T8436] futex_wake_op: syz.1.886 tries to shift op by -1; fix this program [ 489.250925][ T8438] loop3: detected capacity change from 0 to 128 [ 489.330456][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 489.330530][ T30] audit: type=1800 audit(1752280224.000:109): pid=8438 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.887" name="file2" dev="loop3" ino=1048623 res=0 errno=0 [ 489.383737][ T8438] syz.3.887: attempt to access beyond end of device [ 489.383737][ T8438] loop3: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 489.968005][ T8456] netlink: 32 bytes leftover after parsing attributes in process `syz.4.894'. [ 490.555424][ T8462] loop1: detected capacity change from 0 to 512 [ 490.564956][ T8462] EXT4-fs: Ignoring removed mblk_io_submit option [ 490.571937][ T8462] EXT4-fs: Ignoring removed bh option [ 491.459883][ T8462] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 491.485427][ T8462] EXT4-fs (loop1): 1 truncate cleaned up [ 491.499656][ T8462] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 492.294720][ T8470] netlink: 8 bytes leftover after parsing attributes in process `syz.0.898'. [ 492.888708][ T5819] Bluetooth: hci5: command 0x0406 tx timeout [ 493.623378][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 493.741494][ T8488] loop3: detected capacity change from 0 to 128 [ 493.892709][ T30] audit: type=1800 audit(1752280228.550:110): pid=8488 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.905" name="file2" dev="loop3" ino=1048624 res=0 errno=0 [ 493.919449][ T8488] syz.3.905: attempt to access beyond end of device [ 493.919449][ T8488] loop3: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 494.199487][ T8492] loop0: detected capacity change from 0 to 2048 [ 494.330811][ T8492] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 494.650488][ T8492] team_slave_0: entered promiscuous mode [ 494.656555][ T8492] team_slave_1: entered promiscuous mode [ 494.662998][ T8492] vlan2: entered promiscuous mode [ 494.668463][ T8492] team0: entered promiscuous mode [ 494.962040][ T8511] netlink: 16 bytes leftover after parsing attributes in process `syz.3.911'. [ 495.429669][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 497.093889][ T8532] loop0: detected capacity change from 0 to 128 [ 497.189099][ T30] audit: type=1800 audit(1752280231.850:111): pid=8532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.921" name="file2" dev="loop0" ino=1048625 res=0 errno=0 [ 497.238223][ T8532] syz.0.921: attempt to access beyond end of device [ 497.238223][ T8532] loop0: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 497.840736][ T8546] netlink: 16 bytes leftover after parsing attributes in process `syz.0.926'. [ 499.130013][ T30] audit: type=1326 audit(1752280233.780:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8560 comm="syz.1.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 499.153067][ T30] audit: type=1326 audit(1752280233.800:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8560 comm="syz.1.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 499.249832][ T30] audit: type=1326 audit(1752280233.860:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8560 comm="syz.1.933" exe="/root/syz-executor" sig=0 arch=c000003e syscall=0 compat=0 ip=0x7f57cd98e929 code=0x7ffc0000 [ 499.322378][ T8569] loop3: detected capacity change from 0 to 128 [ 499.389063][ T30] audit: type=1800 audit(1752280234.060:115): pid=8569 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.936" name="file2" dev="loop3" ino=1048626 res=0 errno=0 [ 499.437840][ T8569] syz.3.936: attempt to access beyond end of device [ 499.437840][ T8569] loop3: rw=0, sector=2072, nr_sectors = 1 limit=128 [ 500.010300][ T8573] netlink: 'syz.0.938': attribute type 10 has an invalid length. [ 500.216562][ T8577] 9pnet_fd: Insufficient options for proto=fd [ 500.506591][ T8579] tipc: Enabled bearer , priority 0 [ 500.532947][ T8579] syzkaller0: entered promiscuous mode [ 500.542923][ T8579] syzkaller0: entered allmulticast mode [ 500.607904][ T8579] tipc: Resetting bearer [ 500.614956][ T8583] netlink: 16 bytes leftover after parsing attributes in process `syz.5.942'. [ 500.680492][ T8578] tipc: Resetting bearer [ 500.723070][ T8578] tipc: Disabling bearer [ 501.674230][ T8603] netlink: 'syz.1.951': attribute type 10 has an invalid length. [ 501.682939][ T8603] netdevsim netdevsim1 netdevsim1: entered promiscuous mode [ 502.181997][ T8615] binfmt_misc: register: failed to install interpreter file ./file2 [ 502.212677][ T8617] netlink: 16 bytes leftover after parsing attributes in process `syz.1.955'. [ 502.236473][ T8619] tipc: Started in network mode [ 502.242044][ T8619] tipc: Node identity 9ed233dc165e, cluster identity 4711 [ 502.250616][ T8619] tipc: Enabled bearer , priority 0 [ 502.309556][ T8614] syzkaller0: entered promiscuous mode [ 502.315491][ T8614] syzkaller0: entered allmulticast mode [ 502.358014][ T8620] netlink: 'syz.5.954': attribute type 16 has an invalid length. [ 502.366048][ T8620] netlink: 'syz.5.954': attribute type 17 has an invalid length. [ 502.371627][ T8614] tipc: Resetting bearer [ 502.425154][ T8615] lo speed is unknown, defaulting to 1000 [ 502.508508][ T8612] tipc: Resetting bearer [ 502.543788][ T8612] tipc: Disabling bearer [ 502.730511][ T8620] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 503.232489][ T8628] netlink: 'syz.3.960': attribute type 3 has an invalid length. [ 503.240687][ T8628] netlink: 8 bytes leftover after parsing attributes in process `syz.3.960'. [ 503.559609][ T8634] loop4: detected capacity change from 0 to 512 [ 503.595567][ T8634] EXT4-fs: Ignoring removed nomblk_io_submit option [ 503.706408][ T8634] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 503.722747][ T8634] ext4 filesystem being mounted at /205/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 503.810198][ T8643] netlink: 'syz.3.965': attribute type 10 has an invalid length. [ 503.877949][ T30] audit: type=1800 audit(1752280238.530:116): pid=8634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.963" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 503.899139][ T30] audit: type=1800 audit(1752280238.550:117): pid=8634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.963" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 503.923511][ T30] audit: type=1800 audit(1752280238.550:118): pid=8634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.963" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 504.185537][ T8646] netlink: 8 bytes leftover after parsing attributes in process `syz.5.968'. [ 504.675280][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 504.744833][ T8655] sd 0:0:1:0: device reset [ 505.113327][ T30] audit: type=1326 audit(1752280239.780:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.5.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 505.247706][ T30] audit: type=1326 audit(1752280239.810:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.5.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 505.273703][ T30] audit: type=1326 audit(1752280239.810:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.5.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 505.298184][ T30] audit: type=1326 audit(1752280239.810:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.5.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 505.322399][ T30] audit: type=1326 audit(1752280239.810:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.5.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 505.345820][ T30] audit: type=1326 audit(1752280239.810:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.5.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 505.371076][ T30] audit: type=1326 audit(1752280239.810:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8663 comm="syz.5.975" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 505.448646][ T8668] binfmt_misc: register: failed to install interpreter file ./file2 [ 505.577047][ T8668] lo speed is unknown, defaulting to 1000 [ 505.593173][ T8670] netlink: 'syz.3.974': attribute type 16 has an invalid length. [ 505.601452][ T8670] netlink: 'syz.3.974': attribute type 17 has an invalid length. [ 505.843581][ T8670] 8021q: adding VLAN 0 to HW filter on device bond0 [ 505.859050][ T8670] 8021q: adding VLAN 0 to HW filter on device team0 [ 505.934288][ T8670] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 506.098549][ T8673] loop0: detected capacity change from 0 to 512 [ 506.487641][ T8673] EXT4-fs (loop0): 1 orphan inode deleted [ 506.495817][ T8673] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 506.519126][ T8673] ext4 filesystem being mounted at /213/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 506.538459][ T7254] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 1 [ 506.634615][ T8686] netlink: 'syz.1.979': attribute type 10 has an invalid length. [ 506.691888][ T8673] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 507.112321][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 507.451409][ T8700] tipc: Enabled bearer , priority 0 [ 507.489476][ T8700] syzkaller0: entered promiscuous mode [ 507.495476][ T8700] syzkaller0: entered allmulticast mode [ 507.636944][ T8700] tipc: Resetting bearer [ 507.735657][ T8696] tipc: Resetting bearer [ 507.839476][ T8696] tipc: Disabling bearer [ 508.183539][ T8702] IPv6: Can't replace route, no match found [ 509.088827][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 509.088909][ T30] audit: type=1326 audit(1752280243.760:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8719 comm="syz.5.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 509.118777][ T30] audit: type=1326 audit(1752280243.770:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8719 comm="syz.5.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 509.144274][ T30] audit: type=1326 audit(1752280243.790:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8719 comm="syz.5.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 509.167876][ T30] audit: type=1326 audit(1752280243.790:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8719 comm="syz.5.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 509.190732][ T30] audit: type=1326 audit(1752280243.790:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8719 comm="syz.5.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 509.214010][ T30] audit: type=1326 audit(1752280243.800:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8719 comm="syz.5.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 509.277351][ T30] audit: type=1326 audit(1752280243.940:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8719 comm="syz.5.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 509.300549][ T30] audit: type=1326 audit(1752280243.940:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8719 comm="syz.5.995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 509.440291][ T8726] netlink: 2 bytes leftover after parsing attributes in process `syz.4.996'. [ 510.042329][ T8732] tipc: Started in network mode [ 510.047854][ T8732] tipc: Node identity 96d8ed26e9bd, cluster identity 4711 [ 510.056108][ T8732] tipc: Enabled bearer , priority 0 [ 510.150807][ T8734] syzkaller0: entered promiscuous mode [ 510.156796][ T8734] syzkaller0: entered allmulticast mode [ 510.211442][ T8732] tipc: Resetting bearer [ 510.286647][ T8731] tipc: Resetting bearer [ 510.365596][ T8731] tipc: Disabling bearer [ 510.384866][ T8736] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1001'. [ 510.632755][ T8740] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 1340 [ 510.654059][ T8741] loop3: detected capacity change from 0 to 128 [ 511.218648][ T8750] loop5: detected capacity change from 0 to 1024 [ 511.271308][ T8750] EXT4-fs: Ignoring removed orlov option [ 511.349200][ T8750] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 511.561120][ T30] audit: type=1800 audit(1752280246.230:134): pid=8750 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1007" name="bus" dev="loop5" ino=18 res=0 errno=0 [ 511.610019][ T8765] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1010'. [ 511.670950][ T30] audit: type=1804 audit(1752280246.280:135): pid=8764 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.1007" name="/newroot/105/bus/bus" dev="loop5" ino=18 res=1 errno=0 [ 511.706957][ T8764] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1007'. [ 512.058086][ T7053] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 512.476940][ T8775] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1016'. [ 512.555496][ T8774] tipc: Started in network mode [ 512.561022][ T8774] tipc: Node identity 3ad06a3408d5, cluster identity 4711 [ 512.569342][ T8774] tipc: Enabled bearer , priority 0 [ 512.636041][ T8774] syzkaller0: entered promiscuous mode [ 512.642166][ T8774] syzkaller0: entered allmulticast mode [ 512.731962][ T8774] tipc: Resetting bearer [ 512.775308][ T8773] tipc: Resetting bearer [ 512.833831][ T8773] tipc: Disabling bearer [ 514.128426][ T8800] loop1: detected capacity change from 0 to 512 [ 514.138107][ T8800] EXT4-fs: Ignoring removed mblk_io_submit option [ 514.144889][ T8800] EXT4-fs: Ignoring removed bh option [ 514.227712][ T8796] loop3: detected capacity change from 0 to 1024 [ 514.376662][ T8796] EXT4-fs: inline encryption not supported [ 514.383708][ T8796] EXT4-fs: Ignoring removed bh option [ 515.010503][ T8800] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 515.054890][ T8800] EXT4-fs (loop1): 1 truncate cleaned up [ 515.063428][ T8800] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 515.272556][ T8796] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 515.384341][ T8803] loop5: detected capacity change from 0 to 512 [ 515.720006][ T8803] EXT4-fs (loop5): 1 orphan inode deleted [ 515.728479][ T8803] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 515.758582][ T3841] __quota_error: 10 callbacks suppressed [ 515.758668][ T3841] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 515.775450][ T3841] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:13: Failed to release dquot type 1 [ 515.876260][ T8803] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 516.124270][ T8814] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1031'. [ 516.481156][ T7053] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 516.676688][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4 [ 516.689915][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2 [ 516.698533][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.706538][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.714672][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.726464][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.735602][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.743796][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.751932][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.760056][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.768156][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.776150][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.784295][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.792642][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.800730][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.808820][ T7992] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x0 [ 516.919355][ T8816] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.1026: Allocating blocks 257-513 which overlap fs metadata [ 516.990684][ T8816] EXT4-fs (loop3): Remounting filesystem read-only [ 517.054157][ T7992] hid-generic 0000:3000000:0000.0001: hidraw0: HID v0.00 Device [sy] on syz0 [ 517.054444][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 517.544926][ T8827] loop1: detected capacity change from 0 to 512 [ 517.552072][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 517.585265][ T8827] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 517.712189][ T8827] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 517.725715][ T8827] ext4 filesystem being mounted at /208/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 518.178179][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 518.381395][ T8831] loop4: detected capacity change from 0 to 8192 [ 518.540430][ T8843] loop3: detected capacity change from 0 to 256 [ 518.624390][ T8846] loop0: detected capacity change from 0 to 512 [ 518.694858][ T8846] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.1043: corrupted in-inode xattr: invalid ea_ino [ 518.721238][ T8846] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.1043: couldn't read orphan inode 15 (err -117) [ 518.745421][ T8846] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 518.873391][ T5814] FAT-fs (loop4): error, invalid access to FAT (entry 0x0000e1b1) [ 518.881885][ T5814] FAT-fs (loop4): Filesystem has been set read-only [ 519.340222][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 519.710228][ T8857] loop5: detected capacity change from 0 to 512 [ 519.719405][ T8857] EXT4-fs: Ignoring removed mblk_io_submit option [ 519.726195][ T8857] EXT4-fs: Ignoring removed bh option [ 519.757806][ T8857] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 519.783087][ T8857] EXT4-fs (loop5): 1 truncate cleaned up [ 519.794985][ T8857] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 522.170456][ T8863] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1045'. [ 522.504883][ T7053] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 524.161549][ T8877] netlink: 'syz.4.1053': attribute type 12 has an invalid length. [ 525.641056][ T8892] lo speed is unknown, defaulting to 1000 [ 525.915198][ T8894] loop1: detected capacity change from 0 to 512 [ 526.161514][ T8894] EXT4-fs error (device loop1): ext4_iget_extra_inode:5035: inode #15: comm syz.1.1058: corrupted in-inode xattr: invalid ea_ino [ 526.207650][ T8894] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.1058: couldn't read orphan inode 15 (err -117) [ 526.268388][ T8894] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 526.681179][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 528.241563][ T8916] loop3: detected capacity change from 0 to 512 [ 528.251262][ T8916] EXT4-fs: Ignoring removed mblk_io_submit option [ 528.258270][ T8916] EXT4-fs: Ignoring removed bh option [ 529.141514][ T8916] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 529.420658][ T8916] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR [ 529.420982][ T8916] EXT4-fs: failed to create workqueue [ 529.436491][ T8916] EXT4-fs (loop3): mount failed [ 531.291217][ T8940] loop5: detected capacity change from 0 to 512 [ 531.377915][ T8940] EXT4-fs error (device loop5): ext4_iget_extra_inode:5035: inode #15: comm syz.5.1071: corrupted in-inode xattr: invalid ea_ino [ 531.471971][ T8940] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.1071: couldn't read orphan inode 15 (err -117) [ 531.523649][ T8940] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 531.925944][ T7053] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 533.574151][ T8972] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1081'. [ 533.966463][ T8978] loop3: detected capacity change from 0 to 512 [ 533.976335][ T8978] EXT4-fs: Ignoring removed mblk_io_submit option [ 533.983285][ T8978] EXT4-fs: Ignoring removed bh option [ 534.168161][ T8978] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 534.225286][ T8978] EXT4-fs (loop3): 1 truncate cleaned up [ 534.236586][ T8978] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 534.988858][ T8985] loop0: detected capacity change from 0 to 512 [ 535.176162][ T8985] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.1086: corrupted in-inode xattr: invalid ea_ino [ 535.239552][ T8985] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.1086: couldn't read orphan inode 15 (err -117) [ 535.339903][ T8985] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 535.985845][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 536.490552][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 536.507794][ T8995] loop4: detected capacity change from 0 to 512 [ 536.693351][ T8995] EXT4-fs error (device loop4): ext4_iget_extra_inode:5035: inode #15: comm syz.4.1088: corrupted in-inode xattr: invalid ea_ino [ 536.732135][ T8995] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.1088: couldn't read orphan inode 15 (err -117) [ 536.841135][ T8995] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 536.970673][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 537.684914][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 537.726198][ T9021] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1097'. [ 539.683371][ T7992] IPVS: starting estimator thread 0... [ 539.788015][ T9051] IPVS: using max 192 ests per chain, 9600 per kthread [ 540.902335][ T9064] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1110'. [ 541.583389][ T9074] loop1: detected capacity change from 0 to 512 [ 541.649959][ T9074] ext4: Unknown parameter 'uid>00000000000000000000' [ 545.529820][ T9113] loop1: detected capacity change from 0 to 2048 [ 545.692606][ T9113] loop1: p1 < > p4 [ 545.898394][ T9113] loop1: p4 size 8388608 extends beyond EOD, truncated [ 546.099629][ T9121] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1128'. [ 550.527420][ T9153] loop5: detected capacity change from 0 to 128 [ 550.684419][ T30] audit: type=1800 audit(1752280285.350:146): pid=9153 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1139" name="file2" dev="loop5" ino=1048640 res=0 errno=0 [ 552.186918][ T9162] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1142'. [ 552.639415][ T9167] loop1: detected capacity change from 0 to 512 [ 552.694055][ T9167] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 552.808110][ T9167] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 552.821433][ T9167] ext4 filesystem being mounted at /233/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 552.856033][ T9169] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 553.339116][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 553.904860][ T9186] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1153'. [ 555.250577][ T9197] loop4: detected capacity change from 0 to 512 [ 555.259662][ T9197] EXT4-fs: Ignoring removed mblk_io_submit option [ 555.266433][ T9197] EXT4-fs: Ignoring removed bh option [ 556.097512][ T9197] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 559.500657][ T9197] EXT4-fs: error -4 creating inode table initialization thread [ 559.509470][ T9197] EXT4-fs (loop4): mount failed [ 559.553028][ T9200] loop0: detected capacity change from 0 to 256 [ 560.839933][ T9206] loop1: detected capacity change from 0 to 512 [ 560.902350][ T9206] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 561.049567][ T9206] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 561.065654][ T9206] ext4 filesystem being mounted at /236/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 561.224399][ T9210] netlink: 'syz.5.1159': attribute type 1 has an invalid length. [ 561.517895][ T9213] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 561.634829][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 561.739845][ T7987] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 561.815123][ T7987] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 563.658869][ T9234] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1170'. [ 564.385689][ T9237] loop0: detected capacity change from 0 to 2048 [ 564.470679][ T9237] EXT4-fs: Ignoring removed bh option [ 564.544109][ T9239] loop1: detected capacity change from 0 to 512 [ 564.554045][ T9239] EXT4-fs: Ignoring removed mblk_io_submit option [ 564.560993][ T9239] EXT4-fs: Ignoring removed bh option [ 564.595694][ T9239] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 564.705513][ T9239] EXT4-fs (loop1): 1 truncate cleaned up [ 564.714074][ T9239] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 565.034798][ T9237] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 565.205766][ T30] audit: type=1800 audit(1752280299.870:147): pid=9237 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1172" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 565.488197][ T9237] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 565.545954][ T9237] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 15 with max blocks 215 with error 28 [ 565.560111][ T9237] EXT4-fs (loop0): This should not happen!! Data will be lost [ 565.560111][ T9237] [ 565.573313][ T9237] EXT4-fs (loop0): Total free blocks count 0 [ 565.580668][ T9237] EXT4-fs (loop0): Free/Dirty block details [ 565.586975][ T9237] EXT4-fs (loop0): free_blocks=2415919104 [ 565.593435][ T9237] EXT4-fs (loop0): dirty_blocks=240 [ 565.599072][ T9237] EXT4-fs (loop0): Block reservation details [ 565.605302][ T9237] EXT4-fs (loop0): i_reserved_data_blocks=15 [ 566.693251][ T3537] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 567.025902][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 568.883292][ T9274] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1184'. [ 569.343521][ T9282] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1185'. [ 569.392246][ T9281] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 570.398488][ T9291] loop4: detected capacity change from 0 to 512 [ 570.407795][ T9291] EXT4-fs: Ignoring removed mblk_io_submit option [ 570.414576][ T9291] EXT4-fs: Ignoring removed bh option [ 570.467718][ T9291] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 570.535309][ T9291] EXT4-fs (loop4): 1 truncate cleaned up [ 570.544052][ T9291] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 571.006893][ T9288] loop1: detected capacity change from 0 to 128 [ 571.242021][ T30] audit: type=1800 audit(1752280305.850:148): pid=9288 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1189" name="bus" dev="loop1" ino=1048641 res=0 errno=0 [ 571.589866][ T9298] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1191'. [ 573.256529][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 573.790716][ T9317] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1199'. [ 574.710247][ T9327] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 575.236335][ T9334] 9pnet_fd: Insufficient options for proto=fd [ 576.219327][ T9349] loop1: detected capacity change from 0 to 512 [ 576.228642][ T9349] EXT4-fs: Ignoring removed mblk_io_submit option [ 576.235538][ T9349] EXT4-fs: Ignoring removed bh option [ 576.243882][ T9349] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 576.283815][ T9349] EXT4-fs (loop1): 1 truncate cleaned up [ 576.296125][ T9349] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 576.454823][ T30] audit: type=1326 audit(1752280311.080:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9353 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 576.482202][ T30] audit: type=1326 audit(1752280311.080:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9353 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 576.938846][ T30] audit: type=1326 audit(1752280311.410:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9353 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 576.961829][ T30] audit: type=1326 audit(1752280311.410:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9353 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 576.992458][ T30] audit: type=1326 audit(1752280311.410:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9353 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 577.015489][ T30] audit: type=1326 audit(1752280311.440:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9353 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 577.041409][ T30] audit: type=1326 audit(1752280311.440:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9353 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 577.065118][ T30] audit: type=1326 audit(1752280311.450:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9353 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 577.088115][ T30] audit: type=1326 audit(1752280311.470:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9353 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 577.117682][ T30] audit: type=1326 audit(1752280311.470:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9353 comm="syz.4.1210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 577.390177][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 578.219939][ T9374] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1213'. [ 578.768599][ T9378] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 578.984464][ T9382] 9pnet_fd: Insufficient options for proto=fd [ 580.884816][ T9412] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 581.076868][ T9416] 9pnet_fd: Insufficient options for proto=fd [ 584.585378][ T9464] loop1: detected capacity change from 0 to 2048 [ 584.771090][ T9464] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 585.905377][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 586.366855][ T9483] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1259'. [ 587.869922][ T9503] netlink: 'syz.0.1266': attribute type 1 has an invalid length. [ 587.983645][ T9503] 8021q: adding VLAN 0 to HW filter on device bond1 [ 588.028685][ T9505] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1268'. [ 588.281267][ T9507] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1266'. [ 588.395801][ T9507] bond1 (unregistering): Released all slaves [ 588.616856][ T9511] loop1: detected capacity change from 0 to 256 [ 588.653281][ T9513] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1271'. [ 588.881201][ T9514] binfmt_misc: register: failed to install interpreter file ./file2 [ 589.064603][ T9514] lo speed is unknown, defaulting to 1000 [ 589.377023][ T9514] netlink: 'syz.4.1269': attribute type 16 has an invalid length. [ 589.385657][ T9514] netlink: 'syz.4.1269': attribute type 17 has an invalid length. [ 589.428408][ T9514] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 591.506351][ T9551] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1282'. [ 591.541416][ T9552] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1281'. [ 591.918925][ T9556] loop4: detected capacity change from 0 to 256 [ 592.293275][ T9565] loop3: detected capacity change from 0 to 256 [ 592.704485][ T9571] binfmt_misc: register: failed to install interpreter file ./file2 [ 592.822753][ T9571] lo speed is unknown, defaulting to 1000 [ 593.112164][ T9571] netlink: 'syz.1.1287': attribute type 16 has an invalid length. [ 593.122513][ T9571] netlink: 'syz.1.1287': attribute type 17 has an invalid length. [ 593.163056][ T9571] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 594.470183][ T9603] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1294'. [ 595.578651][ T7987] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 595.749136][ T9624] binfmt_misc: register: failed to install interpreter file ./file2 [ 595.767861][ T7987] usb 1-1: Using ep0 maxpacket: 8 [ 595.872159][ T9624] lo speed is unknown, defaulting to 1000 [ 596.042962][ T7987] usb 1-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 596.052608][ T7987] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 596.061703][ T7987] usb 1-1: Product: syz [ 596.066143][ T7987] usb 1-1: Manufacturer: syz [ 596.071290][ T7987] usb 1-1: SerialNumber: syz [ 596.084886][ T7987] usb 1-1: config 0 descriptor?? [ 596.127558][ T7987] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 596.135979][ T7987] usb 1-1: setting power ON [ 596.140917][ T7987] dvb-usb: bulk message failed: -22 (2/0) [ 596.151583][ T7987] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 596.168264][ T7987] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 596.177045][ T7987] usb 1-1: media controller created [ 596.179048][ T9624] netlink: 'syz.3.1302': attribute type 16 has an invalid length. [ 596.195940][ T9624] netlink: 'syz.3.1302': attribute type 17 has an invalid length. [ 596.240919][ T9624] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 596.255019][ T7987] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 596.367059][ T9612] vlan2: entered promiscuous mode [ 596.572768][ T7987] usb 1-1: selecting invalid altsetting 6 [ 596.579973][ T7987] usb 1-1: digital interface selection failed (-22) [ 596.586977][ T7987] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 596.826026][ T7987] usb 1-1: setting power OFF [ 596.831307][ T7987] dvb-usb: bulk message failed: -22 (2/0) [ 596.837554][ T7987] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 596.847372][ T7987] (NULL device *): no alternate interface [ 597.335214][ T9643] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1307'. [ 597.441667][ T7987] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 597.559644][ T7987] usb 1-1: USB disconnect, device number 3 [ 598.343080][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 598.481470][ T9655] siw: device registration error -23 [ 598.563765][ T9655] lo speed is unknown, defaulting to 1000 [ 601.109640][ T9677] loop4: detected capacity change from 0 to 512 [ 601.118842][ T9677] EXT4-fs: Ignoring removed mblk_io_submit option [ 601.125621][ T9677] EXT4-fs: Ignoring removed bh option [ 601.197466][ T9677] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 601.271807][ T9677] EXT4-fs (loop4): 1 truncate cleaned up [ 601.280730][ T9677] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 602.978145][ T7987] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 603.187875][ T7987] usb 4-1: Using ep0 maxpacket: 8 [ 603.265205][ T7987] usb 4-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 603.275040][ T7987] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 603.283631][ T7987] usb 4-1: Product: syz [ 603.288567][ T7987] usb 4-1: Manufacturer: syz [ 603.293452][ T7987] usb 4-1: SerialNumber: syz [ 603.361903][ T9694] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1322'. [ 603.464143][ T7987] usb 4-1: config 0 descriptor?? [ 603.549139][ T7987] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 603.561646][ T7987] usb 4-1: setting power ON [ 603.566557][ T7987] dvb-usb: bulk message failed: -22 (2/0) [ 603.737295][ T9690] vlan2: entered promiscuous mode [ 603.742624][ T9690] team0: entered promiscuous mode [ 603.748073][ T9690] team_slave_0: entered promiscuous mode [ 603.755156][ T9690] team_slave_1: entered promiscuous mode [ 603.834143][ T7987] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 603.869219][ T7987] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 603.879750][ T7987] usb 4-1: media controller created [ 603.976946][ T7987] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 604.132579][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 604.276943][ T7987] usb 4-1: selecting invalid altsetting 6 [ 604.293601][ T7987] usb 4-1: digital interface selection failed (-22) [ 604.300650][ T7987] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 604.349302][ T7987] usb 4-1: setting power OFF [ 604.354200][ T7987] dvb-usb: bulk message failed: -22 (2/0) [ 604.360527][ T7987] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 604.372042][ T7987] (NULL device *): no alternate interface [ 604.726762][ T9710] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 604.851439][ T7987] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 604.971662][ T7987] usb 4-1: USB disconnect, device number 2 [ 605.494052][ T9718] siw: device registration error -23 [ 605.576255][ T9718] lo speed is unknown, defaulting to 1000 [ 606.735565][ T9726] loop4: detected capacity change from 0 to 128 [ 606.951456][ T9726] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 606.960109][ T9726] FAT-fs (loop4): Filesystem has been set read-only [ 606.966963][ T9726] syz.4.1333: attempt to access beyond end of device [ 606.966963][ T9726] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 606.981328][ T9726] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 606.989584][ T9726] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 607.012683][ T30] kauditd_printk_skb: 5 callbacks suppressed [ 607.012768][ T30] audit: type=1800 audit(1752280341.600:164): pid=9726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1333" name="file2" dev="loop4" ino=1048643 res=0 errno=0 [ 607.323050][ T9726] syz.4.1333: attempt to access beyond end of device [ 607.323050][ T9726] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 607.337356][ T9726] syz.4.1333: attempt to access beyond end of device [ 607.337356][ T9726] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 607.356184][ T9726] syz.4.1333: attempt to access beyond end of device [ 607.356184][ T9726] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 607.370682][ T9726] syz.4.1333: attempt to access beyond end of device [ 607.370682][ T9726] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 607.385773][ T9726] syz.4.1333: attempt to access beyond end of device [ 607.385773][ T9726] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 607.413817][ T9726] syz.4.1333: attempt to access beyond end of device [ 607.413817][ T9726] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 607.435831][ T9726] syz.4.1333: attempt to access beyond end of device [ 607.435831][ T9726] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 607.559780][ T9726] syz.4.1333: attempt to access beyond end of device [ 607.559780][ T9726] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 607.726811][ T9735] syz.4.1333: attempt to access beyond end of device [ 607.726811][ T9735] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 608.320011][ T9742] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1338'. [ 608.715042][ T9747] loop0: detected capacity change from 0 to 512 [ 608.724739][ T9747] EXT4-fs: Ignoring removed mblk_io_submit option [ 608.731686][ T9747] EXT4-fs: Ignoring removed bh option [ 608.762198][ T9747] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 608.860223][ T9747] EXT4-fs (loop0): 1 truncate cleaned up [ 608.869215][ T9747] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 609.951763][ T9755] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 611.293767][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 611.716737][ T9775] loop4: detected capacity change from 0 to 512 [ 611.751292][ T9782] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1352'. [ 611.841981][ T9775] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 611.924677][ T9775] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 611.940676][ T9775] ext4 filesystem being mounted at /273/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 612.189955][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 612.646099][ T9796] serio: Serial port ptm0 [ 612.659983][ T9797] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 615.223450][ T9829] loop1: detected capacity change from 0 to 512 [ 615.378630][ T9829] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 615.560755][ T9829] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 615.574570][ T9829] ext4 filesystem being mounted at /281/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 616.411098][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 617.410096][ T9856] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1372'. [ 617.689651][ T9859] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 619.269229][ T9880] loop0: detected capacity change from 0 to 512 [ 619.316988][ T9880] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 619.420839][ T9880] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 619.437982][ T9880] ext4 filesystem being mounted at /292/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 619.848340][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 620.009817][ T9901] 9pnet_fd: Insufficient options for proto=fd [ 620.235954][ T9905] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 620.241406][ T9907] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1387'. [ 621.461145][ T30] audit: type=1326 audit(1752280356.110:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 621.596306][ T30] audit: type=1326 audit(1752280356.180:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 621.620146][ T30] audit: type=1326 audit(1752280356.180:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 621.645007][ T30] audit: type=1326 audit(1752280356.190:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 621.668028][ T30] audit: type=1326 audit(1752280356.190:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 621.693238][ T30] audit: type=1326 audit(1752280356.210:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 621.717343][ T30] audit: type=1326 audit(1752280356.210:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 621.740255][ T30] audit: type=1326 audit(1752280356.230:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 621.763193][ T30] audit: type=1326 audit(1752280356.240:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 621.788373][ T30] audit: type=1326 audit(1752280356.240:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9927 comm="syz.0.1396" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 621.922334][ T9935] loop4: detected capacity change from 0 to 512 [ 621.945236][ T9935] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 622.071918][ T9935] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 622.086580][ T9935] ext4 filesystem being mounted at /282/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 622.256537][ T9943] 9pnet_fd: Insufficient options for proto=fd [ 622.539945][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 622.678013][ T9948] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1402'. [ 622.867525][ T9951] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 623.722715][ T9971] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1411'. [ 624.084247][ T9976] 9pnet_fd: Insufficient options for proto=fd [ 625.082528][ T9992] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1417'. [ 625.092809][ T7987] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 625.259303][ T7987] usb 2-1: Using ep0 maxpacket: 8 [ 625.259758][ T9998] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0 [ 625.323851][ T7987] usb 2-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 625.333625][ T7987] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 625.342117][ T7987] usb 2-1: Product: syz [ 625.346560][ T7987] usb 2-1: Manufacturer: syz [ 625.351608][ T7987] usb 2-1: SerialNumber: syz [ 625.443341][ T7987] usb 2-1: config 0 descriptor?? [ 625.490558][ T7987] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 625.500811][ T7987] usb 2-1: setting power ON [ 625.505583][ T7987] dvb-usb: bulk message failed: -22 (2/0) [ 625.588281][ T7987] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 625.630316][ T7987] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 625.639592][ T7987] usb 2-1: media controller created [ 625.685369][ T9986] vlan2: entered promiscuous mode [ 625.690899][ T9986] team0: entered promiscuous mode [ 625.696218][ T9986] team_slave_0: entered promiscuous mode [ 625.703610][ T9986] team_slave_1: entered promiscuous mode [ 625.805677][ T7987] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 626.028652][ T7987] usb 2-1: selecting invalid altsetting 6 [ 626.035038][ T7987] usb 2-1: digital interface selection failed (-22) [ 626.042384][ T7987] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 626.145870][ T7987] usb 2-1: setting power OFF [ 626.150949][ T7987] dvb-usb: bulk message failed: -22 (2/0) [ 626.156936][ T7987] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 626.167087][ T7987] (NULL device *): no alternate interface [ 626.209337][T10013] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1425'. [ 626.790941][ T7987] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 626.889725][ T7987] usb 2-1: USB disconnect, device number 2 [ 628.144011][T10022] loop0: detected capacity change from 0 to 8192 [ 628.905963][T10049] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1438'. [ 628.936272][ T30] audit: type=1326 audit(1752280363.590:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10048 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 629.056548][ T30] audit: type=1326 audit(1752280363.680:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10048 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 629.079782][ T30] audit: type=1326 audit(1752280363.680:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10048 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 629.103251][ T30] audit: type=1326 audit(1752280363.690:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10048 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 629.137969][ T30] audit: type=1326 audit(1752280363.700:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10048 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 629.165700][ T30] audit: type=1326 audit(1752280363.710:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10048 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 629.190032][ T30] audit: type=1326 audit(1752280363.710:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10048 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 629.213384][ T30] audit: type=1326 audit(1752280363.710:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10048 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 629.236207][ T30] audit: type=1326 audit(1752280363.720:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10048 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 629.262387][ T30] audit: type=1326 audit(1752280363.740:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10048 comm="syz.3.1439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdf60b8e929 code=0x7ffc0000 [ 631.955530][T10085] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1453'. [ 633.937586][ T30] kauditd_printk_skb: 271 callbacks suppressed [ 633.937669][ T30] audit: type=1326 audit(1752280368.600:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ff00000 [ 634.101788][ T30] audit: type=1326 audit(1752280368.650:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ff00000 [ 634.124730][ T30] audit: type=1326 audit(1752280368.650:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ff00000 [ 634.149175][ T30] audit: type=1326 audit(1752280368.650:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ff00000 [ 634.176056][ T30] audit: type=1326 audit(1752280368.650:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ff00000 [ 634.199167][ T30] audit: type=1326 audit(1752280368.650:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ff00000 [ 634.225119][ T30] audit: type=1326 audit(1752280368.650:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ff00000 [ 634.250647][ T30] audit: type=1326 audit(1752280368.660:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ff00000 [ 634.272939][ T30] audit: type=1326 audit(1752280368.660:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ff00000 [ 634.298408][ T30] audit: type=1326 audit(1752280368.660:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10096 comm="GPL" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f57cd98e929 code=0x7ff00000 [ 634.672769][T10117] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1465'. [ 635.100967][T10122] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1467'. [ 638.234519][T10158] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1481'. [ 640.145057][T10193] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1497'. [ 642.070183][ T7992] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 642.334041][ T7992] usb 6-1: Using ep0 maxpacket: 8 [ 642.397478][ T7992] usb 6-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 642.407212][ T7992] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 642.415525][ T7992] usb 6-1: Product: syz [ 642.420229][ T7992] usb 6-1: Manufacturer: syz [ 642.425103][ T7992] usb 6-1: SerialNumber: syz [ 642.470598][T10228] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1509'. [ 642.504112][ T7992] usb 6-1: config 0 descriptor?? [ 642.535255][ T7992] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 642.544055][ T7992] usb 6-1: setting power ON [ 642.548907][ T7992] dvb-usb: bulk message failed: -22 (2/0) [ 642.649487][ T7992] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 642.678963][ T7992] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 642.687961][ T7992] usb 6-1: media controller created [ 642.784987][ T7992] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 642.814794][T10221] team_slave_0: entered promiscuous mode [ 642.820985][T10221] team_slave_1: entered promiscuous mode [ 642.827326][T10221] vlan2: entered promiscuous mode [ 642.832612][T10221] team0: entered promiscuous mode [ 643.096275][ T7992] usb 6-1: selecting invalid altsetting 6 [ 643.102542][ T7992] usb 6-1: digital interface selection failed (-22) [ 643.110003][ T7992] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 643.163975][ T7992] usb 6-1: setting power OFF [ 643.169262][ T7992] dvb-usb: bulk message failed: -22 (2/0) [ 643.175384][ T7992] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 643.190098][ T7992] (NULL device *): no alternate interface [ 643.559948][ T7992] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 643.601291][ T7992] usb 6-1: USB disconnect, device number 3 [ 644.811957][ T30] kauditd_printk_skb: 399 callbacks suppressed [ 644.812038][ T30] audit: type=1326 audit(1752280379.480:865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.5.1518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 644.845252][ T30] audit: type=1326 audit(1752280379.480:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10247 comm="syz.5.1518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab7ef8e929 code=0x7ffc0000 [ 644.987329][ C0] hrtimer: interrupt took 317300 ns [ 646.028635][T10265] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1523'. [ 649.306417][T10297] loop0: detected capacity change from 0 to 8192 [ 649.591239][ T5801] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1) [ 649.599785][ T5801] FAT-fs (loop0): Filesystem has been set read-only [ 649.722458][T10305] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1538'. [ 653.987568][T10342] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1551'. [ 654.510853][T10350] netlink: 'syz.3.1555': attribute type 3 has an invalid length. [ 654.519684][T10350] netlink: 'syz.3.1555': attribute type 3 has an invalid length. [ 654.528349][T10350] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1555'. [ 654.696506][T10340] loop5: detected capacity change from 0 to 8192 [ 655.209556][ T7053] FAT-fs (loop5): error, invalid access to FAT (entry 0x0000e1b1) [ 655.218375][ T7053] FAT-fs (loop5): Filesystem has been set read-only [ 656.424474][T10371] bridge0: port 3(batadv1) entered blocking state [ 656.431773][T10371] bridge0: port 3(batadv1) entered disabled state [ 656.439222][T10371] batadv1: entered allmulticast mode [ 656.448234][T10371] batadv1: entered promiscuous mode [ 656.464260][T10374] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1563'. [ 656.473957][T10374] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 656.503483][T10374] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 656.679251][T10374] loop3: detected capacity change from 0 to 512 [ 656.691859][T10374] EXT4-fs: Ignoring removed i_version option [ 656.719770][T10374] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 656.826452][T10374] EXT4-fs (loop3): 1 truncate cleaned up [ 656.835492][T10374] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 656.945552][ T7254] batman_adv: batadv1: No IGMP Querier present - multicast optimizations disabled [ 656.950353][T10384] loop5: detected capacity change from 0 to 128 [ 656.955796][ T7254] batman_adv: batadv1: No MLD Querier present - multicast optimizations disabled [ 657.361545][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 657.627973][T10390] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1569'. [ 657.894267][T10385] loop1: detected capacity change from 0 to 8192 [ 658.349223][ T5807] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000e1b1) [ 658.358875][ T5807] FAT-fs (loop1): Filesystem has been set read-only [ 659.415059][T10418] loop1: detected capacity change from 0 to 128 [ 659.616430][T10421] netlink: 76 bytes leftover after parsing attributes in process `syz.5.1582'. [ 659.787926][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 661.761908][T10451] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1595'. [ 662.129172][T10455] loop1: detected capacity change from 0 to 128 [ 663.781946][T10471] lo speed is unknown, defaulting to 1000 [ 664.322143][T10478] geneve2: entered promiscuous mode [ 664.327816][T10478] geneve2: entered allmulticast mode [ 664.371766][T10479] loop1: detected capacity change from 0 to 1024 [ 664.421386][T10479] EXT4-fs: Ignoring removed bh option [ 664.428181][T10479] EXT4-fs: inline encryption not supported [ 664.449557][T10479] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 664.514832][T10479] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 664.560555][T10479] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 2: comm syz.1.1606: lblock 2 mapped to illegal pblock 2 (length 1) [ 664.643923][T10479] Quota error (device loop1): qtree_write_dquot: dquota write failed [ 664.653104][T10479] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 48: comm syz.1.1606: lblock 0 mapped to illegal pblock 48 (length 1) [ 664.680008][T10479] Quota error (device loop1): v2_write_file_info: Can't write info structure [ 664.694367][T10479] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1606: Failed to acquire dquot type 0 [ 664.719172][T10483] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1607'. [ 664.761384][T10479] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6255: Corrupt filesystem [ 664.792677][T10479] EXT4-fs error (device loop1): ext4_evict_inode:254: inode #11: comm syz.1.1606: mark_inode_dirty error [ 664.834224][T10479] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 664.845040][T10479] EXT4-fs (loop1): 1 orphan inode deleted [ 664.853432][T10479] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 664.914500][ T7254] EXT4-fs error (device loop1): ext4_map_blocks:780: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1) [ 664.984815][ T7254] Quota error (device loop1): remove_tree: Can't read quota data block 1 [ 664.998205][ T7254] EXT4-fs error (device loop1): ext4_release_dquot:6969: comm kworker/u8:2: Failed to release dquot type 0 [ 665.069856][T10479] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 665.136361][T10489] loop3: detected capacity change from 0 to 128 [ 665.237557][ T30] audit: type=1800 audit(1752280399.900:867): pid=10489 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1610" name="bus" dev="loop3" ino=1048681 res=0 errno=0 [ 665.401854][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 667.286824][T10507] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1617'. [ 667.979819][T10511] loop5: detected capacity change from 0 to 2048 [ 668.404430][T10511] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 668.428598][T10518] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1620'. [ 668.769048][ T30] audit: type=1800 audit(1752280403.430:868): pid=10511 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1619" name="bus" dev="loop5" ino=18 res=0 errno=0 [ 669.401561][ T7053] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 669.990405][T10530] loop5: detected capacity change from 0 to 128 [ 670.168041][ T30] audit: type=1800 audit(1752280404.830:869): pid=10530 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1624" name="bus" dev="loop5" ino=1048682 res=0 errno=0 [ 671.709506][T10550] program syz.3.1633 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 671.766270][T10556] loop1: detected capacity change from 0 to 512 [ 671.828055][T10556] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 671.841637][T10556] ext4 filesystem being mounted at /331/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 671.888146][T10553] loop0: detected capacity change from 0 to 2048 [ 672.125367][T10553] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 672.185777][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 672.240226][ T30] audit: type=1800 audit(1752280406.910:870): pid=10553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1634" name="bus" dev="loop0" ino=18 res=0 errno=0 [ 672.542464][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 672.626544][T10574] loop3: detected capacity change from 0 to 128 [ 672.873178][ T30] audit: type=1800 audit(1752280407.540:871): pid=10574 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1641" name="bus" dev="loop3" ino=1048683 res=0 errno=0 [ 673.728092][T10586] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1646'. [ 673.874087][T10591] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1645'. [ 673.979421][T10592] lo speed is unknown, defaulting to 1000 [ 675.160773][T10605] netlink: 60 bytes leftover after parsing attributes in process `syz.3.1653'. [ 675.319665][T10611] program syz.1.1651 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 675.375275][T10613] netlink: 108 bytes leftover after parsing attributes in process `syz.5.1654'. [ 675.385033][T10613] netlink: 108 bytes leftover after parsing attributes in process `syz.5.1654'. [ 675.394589][T10613] netlink: 108 bytes leftover after parsing attributes in process `syz.5.1654'. [ 675.632365][T10613] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1654'. [ 675.642099][T10613] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1654'. [ 675.896917][T10609] loop5: detected capacity change from 0 to 512 [ 676.015100][T10609] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 676.029157][T10609] ext4 filesystem being mounted at /248/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 676.693968][ T7053] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 677.069345][T10630] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1660'. [ 677.126456][T10633] pim6reg: entered allmulticast mode [ 677.133457][ T5862] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 677.307476][ T5862] usb 4-1: Using ep0 maxpacket: 8 [ 677.368716][ T5862] usb 4-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 677.378900][ T5862] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 677.390075][ T5862] usb 4-1: Product: syz [ 677.394523][ T5862] usb 4-1: Manufacturer: syz [ 677.400745][ T5862] usb 4-1: SerialNumber: syz [ 677.476230][ T5862] usb 4-1: config 0 descriptor?? [ 677.539943][ T5862] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 677.548441][ T5862] usb 4-1: setting power ON [ 677.553196][ T5862] dvb-usb: bulk message failed: -22 (2/0) [ 677.671030][ T5862] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 677.721499][ T5862] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 677.730945][ T5862] usb 4-1: media controller created [ 677.765642][T10626] vlan2: entered promiscuous mode [ 677.855808][ T5862] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 678.109167][T10632] pim6reg: left allmulticast mode [ 678.216658][ T5862] usb 4-1: selecting invalid altsetting 6 [ 678.223310][ T5862] usb 4-1: digital interface selection failed (-22) [ 678.230530][ T5862] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 678.250121][ T5862] usb 4-1: setting power OFF [ 678.255114][ T5862] dvb-usb: bulk message failed: -22 (2/0) [ 678.263100][ T5862] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 678.274074][ T5862] (NULL device *): no alternate interface [ 678.509569][ T5862] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 678.581714][ T5862] usb 4-1: USB disconnect, device number 3 [ 678.672638][T10650] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1665'. [ 679.001160][T10654] program syz.0.1666 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 680.208859][T10674] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1673'. [ 680.655182][T10683] loop5: detected capacity change from 0 to 128 [ 680.760311][T10683] EXT4-fs: Ignoring removed nobh option [ 680.836223][T10683] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 680.903630][T10695] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1681'. [ 680.923431][T10683] ext4 filesystem being mounted at /253/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 680.965122][ T30] audit: type=1800 audit(1752280415.630:872): pid=10683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1677" name="file1" dev="loop5" ino=12 res=0 errno=0 [ 680.992024][T10695] loop1: detected capacity change from 0 to 164 [ 681.051647][T10695] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 681.130440][T10695] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 681.171452][T10695] Symlink component flag not implemented [ 681.181087][T10695] Symlink component flag not implemented [ 681.188444][T10695] Symlink component flag not implemented (7) [ 681.194688][T10695] Symlink component flag not implemented (116) [ 681.696975][ T7053] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 682.382505][T10714] program syz.5.1684 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 683.689871][T10730] loop5: detected capacity change from 0 to 1024 [ 683.802349][T10730] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 683.970752][ T7053] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 684.037558][T10736] loop0: detected capacity change from 0 to 4096 [ 684.116437][T10736] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 684.283856][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 684.995255][T10757] program syz.4.1701 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 686.085218][T10775] loop1: detected capacity change from 0 to 2048 [ 686.173018][T10775] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 686.243126][ T30] audit: type=1800 audit(1752280420.890:873): pid=10775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1707" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 686.306801][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 687.245516][ T30] audit: type=1326 audit(1752280421.910:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10801 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 687.269169][ T30] audit: type=1326 audit(1752280421.910:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10801 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 687.383985][ T30] audit: type=1326 audit(1752280421.990:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10801 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 687.408321][ T30] audit: type=1326 audit(1752280421.990:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10801 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 687.433757][ T30] audit: type=1326 audit(1752280421.990:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10801 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 687.457900][ T30] audit: type=1326 audit(1752280422.010:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10801 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 687.480863][ T30] audit: type=1326 audit(1752280422.020:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10801 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 687.504039][ T30] audit: type=1326 audit(1752280422.020:881): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10801 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 687.529859][ T30] audit: type=1326 audit(1752280422.020:882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10801 comm="syz.4.1718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 687.656888][T10805] program syz.3.1719 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 689.900617][T10853] program syz.4.1735 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 690.439432][T10860] loop1: detected capacity change from 0 to 128 [ 690.544643][T10860] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 690.620952][T10860] ext4 filesystem being mounted at /354/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 690.999898][ T5807] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 691.438999][T10877] pimreg: entered allmulticast mode [ 691.497546][T10877] pimreg: left allmulticast mode [ 691.597637][ T30] kauditd_printk_skb: 63 callbacks suppressed [ 691.597720][ T30] audit: type=1326 audit(1752280426.260:946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10879 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 691.629693][ T30] audit: type=1326 audit(1752280426.260:947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10879 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 691.812864][ T30] audit: type=1326 audit(1752280426.330:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10879 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 691.839131][ T30] audit: type=1326 audit(1752280426.340:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10879 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 691.863141][ T30] audit: type=1326 audit(1752280426.340:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10879 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 691.888419][ T30] audit: type=1326 audit(1752280426.350:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10879 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 691.911305][ T30] audit: type=1326 audit(1752280426.350:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10879 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 691.936860][ T30] audit: type=1326 audit(1752280426.350:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10879 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 691.960749][ T30] audit: type=1326 audit(1752280426.360:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10879 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 691.983682][ T30] audit: type=1326 audit(1752280426.360:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10879 comm="syz.0.1748" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f628f18e929 code=0x7ffc0000 [ 692.865572][T10902] program syz.1.1753 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 693.038920][T10901] loop0: detected capacity change from 0 to 2048 [ 693.784561][T10912] lo speed is unknown, defaulting to 1000 [ 693.931194][T10915] netlink: 'syz.0.1760': attribute type 16 has an invalid length. [ 694.256690][T10920] loop5: detected capacity change from 0 to 2048 [ 694.291909][T10920] EXT4-fs: test_dummy_encryption requires encrypt feature [ 694.508286][T10927] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1766'. [ 694.518960][T10927] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1766'. [ 695.850337][T10947] loop1: detected capacity change from 0 to 1024 [ 695.955965][T10947] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 696.113359][T10947] netlink: 'syz.1.1773': attribute type 13 has an invalid length. [ 696.608139][ T30] kauditd_printk_skb: 54 callbacks suppressed [ 696.608220][ T30] audit: type=1326 audit(1752280431.280:1010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10965 comm="syz.4.1782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 696.641034][ T30] audit: type=1326 audit(1752280431.280:1011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10965 comm="syz.4.1782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 696.665031][ T30] audit: type=1326 audit(1752280431.280:1012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10965 comm="syz.4.1782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 696.688050][ T30] audit: type=1326 audit(1752280431.280:1013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10965 comm="syz.4.1782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 696.711329][ T30] audit: type=1326 audit(1752280431.290:1014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10965 comm="syz.4.1782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 696.734272][ T30] audit: type=1326 audit(1752280431.290:1015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10965 comm="syz.4.1782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 696.759740][ T30] audit: type=1326 audit(1752280431.300:1016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10965 comm="syz.4.1782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 696.783683][ T30] audit: type=1326 audit(1752280431.300:1017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10965 comm="syz.4.1782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 696.806757][ T30] audit: type=1326 audit(1752280431.300:1018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10965 comm="syz.4.1782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 696.829898][ T30] audit: type=1326 audit(1752280431.310:1019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10965 comm="syz.4.1782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca4f58e929 code=0x7ffc0000 [ 696.933362][T10947] 8021q: adding VLAN 0 to HW filter on device bond0 [ 696.954210][T10947] 8021q: adding VLAN 0 to HW filter on device team0 [ 697.089056][T10947] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 697.139228][ T5862] lo speed is unknown, defaulting to 1000 [ 697.145265][ T5862] syz2: Port: 1 Link ACTIVE [ 697.582479][ T5807] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 697.688409][ T5862] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 697.880730][ T5862] usb 6-1: Using ep0 maxpacket: 8 [ 697.938223][ T5862] usb 6-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 697.948143][ T5862] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 697.956518][ T5862] usb 6-1: Product: syz [ 697.961201][ T5862] usb 6-1: Manufacturer: syz [ 697.969031][ T5862] usb 6-1: SerialNumber: syz [ 698.090970][ T5862] usb 6-1: config 0 descriptor?? [ 698.121473][ T5862] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 698.130121][ T5862] usb 6-1: setting power ON [ 698.134965][ T5862] dvb-usb: bulk message failed: -22 (2/0) [ 698.186080][ T5862] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 698.266036][ T5862] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 698.281964][ T5862] usb 6-1: media controller created [ 698.327827][T10978] vlan2: entered promiscuous mode [ 698.391558][ T5862] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 698.707055][ T5862] usb 6-1: selecting invalid altsetting 6 [ 698.713490][ T5862] usb 6-1: digital interface selection failed (-22) [ 698.720905][ T5862] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 698.804257][ T5862] usb 6-1: setting power OFF [ 698.810698][ T5862] dvb-usb: bulk message failed: -22 (2/0) [ 698.816781][ T5862] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 698.826685][ T5862] (NULL device *): no alternate interface [ 699.192260][T11002] tipc: Enabled bearer , priority 0 [ 699.251701][T11005] syzkaller0: entered promiscuous mode [ 699.259036][T11005] syzkaller0: entered allmulticast mode [ 699.375499][T11002] tipc: Resetting bearer [ 699.411187][ T5862] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 699.460296][T11001] tipc: Resetting bearer [ 699.475930][ T5862] usb 6-1: USB disconnect, device number 4 [ 699.533676][T11001] tipc: Disabling bearer [ 700.169994][T11020] random: crng reseeded on system resumption [ 700.993402][T11036] program syz.1.1808 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 701.019005][T11036] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 701.122654][T11037] netlink: 25 bytes leftover after parsing attributes in process `syz.4.1807'. [ 701.415266][T11039] loop0: detected capacity change from 0 to 2048 [ 701.469150][T11039] EXT4-fs: test_dummy_encryption requires encrypt feature [ 701.504843][T11042] tipc: Enabled bearer , priority 0 [ 701.556536][T11044] syzkaller0: entered promiscuous mode [ 701.562687][T11044] syzkaller0: entered allmulticast mode [ 701.638381][T11042] tipc: Resetting bearer [ 701.698886][T11041] tipc: Resetting bearer [ 701.723861][T11041] tipc: Disabling bearer [ 702.603648][T11060] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1819'. [ 702.613093][T11060] netlink: 2 bytes leftover after parsing attributes in process `syz.5.1819'. [ 702.639546][T11060] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 702.648889][T11060] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 702.658248][T11060] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 702.667520][T11060] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 702.737571][T11060] netdevsim netdevsim5 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 702.746885][T11060] netdevsim netdevsim5 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 702.756623][T11060] netdevsim netdevsim5 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 702.766070][T11060] netdevsim netdevsim5 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 703.670743][T11079] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1825'. [ 703.731108][T11080] loop0: detected capacity change from 0 to 128 [ 703.797700][T11080] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 703.838251][T11080] ext4 filesystem being mounted at /371/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 704.038748][T11087] loop5: detected capacity change from 0 to 2048 [ 704.087495][T11087] EXT4-fs: test_dummy_encryption requires encrypt feature [ 704.243802][ T5801] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 705.744484][T11116] loop4: detected capacity change from 0 to 128 [ 705.926050][T11116] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 705.940369][T11116] ext4 filesystem being mounted at /369/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 706.399425][ T5814] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 707.385637][T11142] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1854'. [ 707.964341][T11152] loop3: detected capacity change from 0 to 128 [ 708.079493][T11146] loop5: detected capacity change from 0 to 8192 [ 708.114107][T11152] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 708.213678][T11152] ext4 filesystem being mounted at /381/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 708.624889][ T5811] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 710.014730][T11187] loop1: detected capacity change from 0 to 128 [ 710.076464][T11187] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 710.138768][T11187] ext4 filesystem being mounted at /383/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 710.445913][ T5807] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 711.301348][T11198] loop3: detected capacity change from 0 to 8192 [ 712.163812][T11216] netlink: 26 bytes leftover after parsing attributes in process `syz.5.1887'. [ 712.633280][T11222] loop1: detected capacity change from 0 to 128 [ 712.780042][T11222] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 712.876380][T11222] ext4 filesystem being mounted at /388/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 713.054276][T11232] tipc: Enabled bearer , priority 0 [ 713.316949][ T5807] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 713.372629][T11234] tipc: Enabled bearer , priority 0 [ 713.413245][T11234] syzkaller0: entered promiscuous mode [ 713.420991][T11234] syzkaller0: entered allmulticast mode [ 713.495487][T11234] tipc: Resetting bearer [ 713.544458][T11233] tipc: Resetting bearer [ 713.610439][T11233] tipc: Disabling bearer [ 714.057873][ T7992] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 714.178173][ T7967] tipc: Node number set to 2290889692 [ 714.215009][T11240] loop4: detected capacity change from 0 to 8192 [ 714.227446][ T7992] usb 2-1: Using ep0 maxpacket: 8 [ 714.268991][ T7992] usb 2-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 714.278821][ T7992] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 714.287203][ T7992] usb 2-1: Product: syz [ 714.291640][ T7992] usb 2-1: Manufacturer: syz [ 714.296510][ T7992] usb 2-1: SerialNumber: syz [ 714.368327][ T7992] usb 2-1: config 0 descriptor?? [ 714.422775][ T7992] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 714.431338][ T7992] usb 2-1: setting power ON [ 714.436100][ T7992] dvb-usb: bulk message failed: -22 (2/0) [ 714.526136][ T7992] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 714.599814][ T7992] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 714.608988][ T7992] usb 2-1: media controller created [ 714.613694][T11242] vlan0: entered promiscuous mode [ 714.704640][ T7992] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 714.948630][ T7992] usb 2-1: selecting invalid altsetting 6 [ 714.954697][ T7992] usb 2-1: digital interface selection failed (-22) [ 714.967636][ T7992] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 715.028642][ T7992] usb 2-1: setting power OFF [ 715.033679][ T7992] dvb-usb: bulk message failed: -22 (2/0) [ 715.041445][ T7992] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 715.051673][ T7992] (NULL device *): no alternate interface [ 715.604461][ T7992] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 715.669058][ T7992] usb 2-1: USB disconnect, device number 3 [ 715.711530][T11267] loop4: detected capacity change from 0 to 128 [ 715.800755][T11267] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 715.892113][T11267] ext4 filesystem being mounted at /381/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 716.042799][T11261] sctp: failed to load transform for md5: -2 [ 716.325282][ T5814] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 716.351176][T11278] syzkaller0: entered promiscuous mode [ 716.357381][T11278] syzkaller0: entered allmulticast mode [ 716.887985][T11287] loop4: detected capacity change from 0 to 512 [ 716.999335][T11287] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 717.244933][T11287] EXT4-fs (loop4): 1 truncate cleaned up [ 717.254270][T11287] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 717.355515][T11291] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1916'. [ 718.198054][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 718.272311][ T4461] nci: nci_rf_discover_ntf_packet: unsupported rf_tech_and_mode 0xd4 [ 718.281129][ T4461] ===================================================== [ 718.288568][ T4461] BUG: KMSAN: uninit-value in nci_ntf_packet+0x2b0b/0x42b0 [ 718.295997][ T4461] nci_ntf_packet+0x2b0b/0x42b0 [ 718.301251][ T4461] nci_rx_work+0x403/0x750 [ 718.305984][ T4461] process_scheduled_works+0xb91/0x1d80 [ 718.312019][ T4461] worker_thread+0xedf/0x1590 [ 718.316987][ T4461] kthread+0xd59/0xf00 [ 718.321534][ T4461] ret_from_fork+0x1e0/0x310 [ 718.326349][ T4461] ret_from_fork_asm+0x1a/0x30 [ 718.332113][ T4461] [ 718.334581][ T4461] Uninit was created at: [ 718.339246][ T4461] kmem_cache_alloc_node_noprof+0x818/0xf00 [ 718.348153][ T4461] kmalloc_reserve+0x13c/0x4b0 [ 718.354181][ T4461] __alloc_skb+0x347/0x7d0 [ 718.358988][ T4461] virtual_ncidev_write+0x6b/0x430 [ 718.364355][ T4461] vfs_write+0x463/0x1580 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 718.369203][ T4461] __x64_sys_write+0x1fb/0x4d0 [ 718.374246][ T4461] x64_sys_call+0x38c3/0x3db0 [ 718.379476][ T4461] do_syscall_64+0xd9/0x210 [ 718.384257][ T4461] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 718.391542][ T4461] [ 718.394044][ T4461] CPU: 1 UID: 0 PID: 4461 Comm: kworker/u8:15 Not tainted 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(none) [ 718.407311][ T4461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 718.417795][ T4461] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 718.423657][ T4461] ===================================================== [ 718.430934][ T4461] Disabling lock debugging due to kernel taint [ 718.437807][ T4461] Kernel panic - not syncing: kmsan.panic set ... [ 718.444475][ T4461] CPU: 1 UID: 0 PID: 4461 Comm: kworker/u8:15 Tainted: G B 6.16.0-rc5-syzkaller-00193-g40f92e79b0aa #0 PREEMPT(none) [ 718.458573][ T4461] Tainted: [B]=BAD_PAGE [ 718.462879][ T4461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 718.473120][ T4461] Workqueue: nfc2_nci_rx_wq nci_rx_work [ 718.478961][ T4461] Call Trace: [ 718.482382][ T4461] [ 718.485446][ T4461] __dump_stack+0x26/0x30 [ 718.490006][ T4461] dump_stack_lvl+0x53/0x270 [ 718.494820][ T4461] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 718.500884][ T4461] dump_stack+0x1e/0x25 [ 718.505262][ T4461] panic+0x4bd/0xd50 [ 718.509436][ T4461] kmsan_report+0x31c/0x320 [ 718.514178][ T4461] ? __msan_warning+0x1b/0x30 [ 718.519072][ T4461] ? nci_ntf_packet+0x2b0b/0x42b0 [ 718.524303][ T4461] ? nci_rx_work+0x403/0x750 [ 718.529134][ T4461] ? process_scheduled_works+0xb91/0x1d80 [ 718.535110][ T4461] ? worker_thread+0xedf/0x1590 [ 718.540194][ T4461] ? kthread+0xd59/0xf00 [ 718.544645][ T4461] ? ret_from_fork+0x1e0/0x310 [ 718.549611][ T4461] ? ret_from_fork_asm+0x1a/0x30 [ 718.554816][ T4461] ? ret_from_fork_asm+0x1a/0x30 [ 718.560030][ T4461] ? vprintk_emit+0xab3/0xcd0 [ 718.564964][ T4461] ? vprintk_default+0x3f/0x50 [ 718.569940][ T4461] ? vprintk+0x36/0x50 [ 718.574245][ T4461] ? _printk+0x17e/0x1b0 [ 718.578754][ T4461] ? kmsan_get_metadata+0xfb/0x160 [ 718.584131][ T4461] __msan_warning+0x1b/0x30 [ 718.588866][ T4461] nci_ntf_packet+0x2b0b/0x42b0 [ 718.593924][ T4461] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 718.600220][ T4461] ? sk_skb_reason_drop+0x13f/0x440 [ 718.605701][ T4461] nci_rx_work+0x403/0x750 [ 718.610374][ T4461] ? __pfx_nci_rx_work+0x10/0x10 [ 718.615562][ T4461] process_scheduled_works+0xb91/0x1d80 [ 718.621422][ T4461] worker_thread+0xedf/0x1590 [ 718.626383][ T4461] kthread+0xd59/0xf00 [ 718.630644][ T4461] ? __pfx_worker_thread+0x10/0x10 [ 718.636022][ T4461] ? __pfx_kthread+0x10/0x10 [ 718.640813][ T4461] ret_from_fork+0x1e0/0x310 [ 718.645604][ T4461] ? __pfx_kthread+0x10/0x10 [ 718.650394][ T4461] ret_from_fork_asm+0x1a/0x30 [ 718.655434][ T4461] [ 718.658991][ T4461] Kernel Offset: disabled [ 718.663421][ T4461] Rebooting in 86400 seconds..