last executing test programs: 1m37.245121615s ago: executing program 3 (id=556): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000003500)=ANY=[@ANYRESDEC=r0, @ANYRES16=r0, @ANYRES16, @ANYRES8, @ANYBLOB="b2508a998848b5b05571dba8dc128f526d2fc8389d4e6cccaf47fe44834685ba3d26f196249a1f6fabb02d446a325831e83d89293aa344f64361d1b0ca5d5443ccbb2b7d714557b141dddcf04532d3b4b0ba1e3439af192303e596c0b559d02bce66d12c388fbda98fdb44c0e05e0cfe15cb01c18447604596b25722e8dbfc7329df1313883bb277da7b93484affeb1128604d98c98b6fb20fcc4a10ef2f114b4eef52b1f7ce9a247cdee866e53c6c384475188cdd0a93b111bd4666558fac53d3746ed4b8caecae8e1421abf1e02ece9e03ba786cf626496ef59be2d140dda1ce", @ANYBLOB, @ANYBLOB="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"], 0x48) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000027b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) setresgid(0x0, 0xee01, 0x0) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8) setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x9}, 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000640)=ANY=[@ANYBLOB="30e01b3981ddca"], 0x1000f) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='kfree\x00'}, 0x18) 1m37.139473043s ago: executing program 3 (id=558): mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x0) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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") 1m36.678930808s ago: executing program 3 (id=567): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='sys_enter\x00', r0, 0x0, 0x2000000000}, 0xf) ioperm(0x1, 0x9, 0xfffffffffffffff8) 1m36.497074771s ago: executing program 3 (id=573): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@noauto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@dioread_lock}, {@norecovery}, {@discard}, {@lazytime}, {@noload}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x553, &(0x7f0000000bc0)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x7a05, 0x1700) syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) write$cgroup_int(r0, &(0x7f0000000200), 0x48400) 1m36.0885236s ago: executing program 3 (id=579): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x6, 0xc, &(0x7f0000000000)=@framed={{}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x54}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 1m34.678234415s ago: executing program 3 (id=589): prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400400000000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r3 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000440)=0xcf7f, 0x4) write$qrtrtun(0xffffffffffffffff, 0x0, 0x0) lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)) r4 = socket$nl_generic(0x10, 0x3, 0x10) bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000000)={0x5, 0x0}, 0x8) bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000080)=r5, 0x4) r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r7, 0x0, 0x5}, 0x18) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f00000005c0)={0x0, @in6={{0xa, 0x4e24, 0x9, @local, 0x7fffffff}}, 0x8001, 0x4, 0x7fffffff, 0x0, 0x2}, &(0x7f0000000200)=0x98) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000800)={r8, @in={{0x2, 0x4e21, @remote}}, [0x2, 0x8, 0x5, 0x1, 0x1000, 0x4, 0x8, 0x3, 0x7, 0x7f, 0x5, 0x2, 0xfffffffffffff9af, 0x9, 0x631]}, &(0x7f0000000240)=0x100) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x0, 0x0) pread64(r9, &(0x7f0000000280)=""/155, 0x9b, 0x8000000) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) 1m33.572433724s ago: executing program 32 (id=589): prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="070000000400400000000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r3 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r3, 0x1, 0x8, &(0x7f0000000440)=0xcf7f, 0x4) write$qrtrtun(0xffffffffffffffff, 0x0, 0x0) lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)) r4 = socket$nl_generic(0x10, 0x3, 0x10) bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000000)={0x5, 0x0}, 0x8) bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000000080)=r5, 0x4) r6 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r4, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r6, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB, @ANYRES32=r2, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x5, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000040)='kmem_cache_free\x00', r7, 0x0, 0x5}, 0x18) getsockopt$inet_sctp_SCTP_GET_PEER_ADDR_INFO(0xffffffffffffffff, 0x84, 0xf, &(0x7f00000005c0)={0x0, @in6={{0xa, 0x4e24, 0x9, @local, 0x7fffffff}}, 0x8001, 0x4, 0x7fffffff, 0x0, 0x2}, &(0x7f0000000200)=0x98) getsockopt$inet_sctp6_SCTP_GET_ASSOC_STATS(0xffffffffffffffff, 0x84, 0x70, &(0x7f0000000800)={r8, @in={{0x2, 0x4e21, @remote}}, [0x2, 0x8, 0x5, 0x1, 0x1000, 0x4, 0x8, 0x3, 0x7, 0x7f, 0x5, 0x2, 0xfffffffffffff9af, 0x9, 0x631]}, &(0x7f0000000240)=0x100) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/slabinfo\x00', 0x0, 0x0) pread64(r9, &(0x7f0000000280)=""/155, 0x9b, 0x8000000) add_key(&(0x7f0000000040)='ceph\x00', 0x0, &(0x7f00000000c0)="010001000000000000001000015b097ead85847817353d2dbad05dd5", 0x1c, 0xfffffffffffffffd) 10.00481108s ago: executing program 1 (id=1207): unshare(0x68040200) 9.146332813s ago: executing program 1 (id=1215): r0 = socket(0x10, 0x803, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0) r3 = socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x8c, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0xb, 0xfff3}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x58, 0x2, [@TCA_MATCHALL_ACT={0x54, 0x2, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x6fe2}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0xb380, 0x4, 0x0, 0xd87, 0x6}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x10}, 0x0) 7.776794603s ago: executing program 4 (id=1222): r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$sock_int(r0, 0x1, 0x26, 0x0, &(0x7f0000000200)) 7.457558386s ago: executing program 4 (id=1225): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) rt_sigpending(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sync() sync() sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4000014, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) 7.416149004s ago: executing program 1 (id=1226): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000400396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x8000000000}, 0x18) socket$rds(0x15, 0x5, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = syz_io_uring_setup(0x24f6, &(0x7f0000000b80)={0x0, 0x0, 0x10100, 0x0, 0x33a}, &(0x7f0000000100), &(0x7f0000000140)) sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r2, &(0x7f0000000180)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0) io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 7.253522527s ago: executing program 2 (id=1227): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e23, 0x0, @loopback, 0x40}, 0x1c) sendto$inet6(r0, &(0x7f00000002c0)="9e", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback, 0xe}, 0x1c) writev(r0, &(0x7f00000006c0)=[{&(0x7f00000005c0)='I', 0x1}], 0x1) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000140)={0x0, 0x1, 0x20}, 0xc) writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000340)=',', 0x34000}], 0x1) 7.136504152s ago: executing program 1 (id=1229): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001cc0)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) socket(0x10, 0x3, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sched_switch\x00', r0}, 0x18) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@orlov}, {@abort}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x10}}]}, 0x64, 0x50a, &(0x7f0000000200)="$eJzs3VFrHFsdAPD/bHZr06Y3ueqDXvB6tZW0aHeTxrbBh1pB9Kmg1vcak00I2WRDdtM2oWiKH0AQUcEnffFF8AMIUvDFRxEK+qyoKKKtPvigncvuTtI03U227TabZn8/mMw5Z2b2f86GmZ0zc5gJYGC9FxHXI+JJmqYXImI0K89lU2y1psZ6jx/dm21MSaTpzX8mkWRl25+VZPPT2WYnI+JrX474ZvJ83NrG5tJMpVJey/Kl+vJqqbaxeXFxeWahvFBemZqavDJ9dfry9ERP2nkmIq598a8/+O7PvnTtV5+586dbfz//rUa1RrLlu9vxgvL7LWw1vdD8LnZvsPaSwY6ifLOFmeF2aww9V3L/NdcJAID2Guf4H4yIT0bEhRiNof1PZwEAAIA3UPr5kfhfEpG2d6JDOQAAAPAGyTXHwCa5YjYWYCRyuWKxNYb3w3EqV6nW6p+er66vzLXGyo5FITe/WClPZGOFx6KQNPKTzfTT/KU9+amIeDsivj863MwXZ6uVuX5f/AAAAIABcXpP//8/o63+PwAAAHDMjPW7AgAAAMBrp/8PAAAAx5/+PwAAABxrX7lxozGl2++/nru9sb5UvX1xrlxbKi6vzxZnq2urxYVqdaH5zL7lgz6vUq2ufjZW1u+W6uVavVTb2Ly1XF1fqd9afOYV2AAAAMAhevvjD/6QRMTW54abU8OJ7jbtcjXgqMrvpJJs3ma3/uNbrflfDqlSwKEY6ncFgL7J97sCQN8U+l0BoO+SA5Z3HLzz22z+id7WBwAA6L3xj3a+/5/bd8ut/RcDR56dGAaX+/8wuJr3/7sdyetkAY6VgjMAGHivfP//QGn6QhUCAAB6bqQ5JblidnlvJHK5YjHiTPO1AIVkfrFSnoiItyLi96OFDzTyk80tkwP7DAAAAAAAAAAAAAAAAAAAAAAAAABAS5omkQIAAADHWkTub8mvW8/yHx89N7L3+sCJ5L+jkb0i9M6Pb/7w7ky9vjbZKP/XTnn9R1n5pX5cwQAAAICB8EIv8N/up2/34wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACglx4/uje7PR1m3H98ISLG2sXPx8nm/GQUIuLUv5PI79ouiYihHsQfbvz5SLv4SaNaOyHbxR/uQfyt+/vGj7HsW2gX/3QP4sMge9A4/lxvt//l4r3mvP3+l494Jv+yOh//Yuf4N9Rh/z/TZYx3Hv6i1DH+/Yh38u2PP9vxkw7xz3YZ/xtf39zstCz9ScR429+f5JlYpfryaqm2sXlxcXlmobxQXpmamrwyfXX68vREaX6xUs7+to3xvY/98sl+7T/VIf7YAe0/12X7///w7qMPtZKFdvHPn20T/zc/zdZ4Pn4u++37VJZuLB/fTm+10ru9+/Pfvbtf++c6tP+g///5Ltt/4avf+XOXqwIAh6C2sbk0U6mU145totFLPwLVkDiCiW/39APTNE0b+9QrfE4SR+FraSb6fWQCAAB67elJf79rAgAAAAAAAAAAAAAAAAAAAIPrMB4ntjfm1k4q6cUjtAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeuL9AAAA//+GAdlV") 7.053569728s ago: executing program 2 (id=1230): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d000000"], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18) r1 = socket$inet6(0xa, 0x3, 0x3c) r2 = socket$kcm(0x2, 0x5, 0x84) setsockopt$sock_attach_bpf(r2, 0x84, 0x25, &(0x7f0000000000), 0x20000010) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r4, &(0x7f0000000240), 0x3af4701e) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28012, r4, 0x0) r5 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYRES64=r4], 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000080)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r6}, 0x10) r7 = socket$netlink(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$TEAM_CMD_OPTIONS_SET(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000c80)=ANY=[@ANYBLOB, @ANYRES16=r8, @ANYBLOB="010028bd7000"], 0xd8}, 0x1, 0x1000000, 0x0, 0x24004000}, 0x24040840) r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff) r10 = gettid() sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r3, &(0x7f0000000280)={&(0x7f0000000100)={0x10, 0x500, 0x0, 0x2000040}, 0xc, &(0x7f0000000240)={&(0x7f0000000800)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010028bd7000ffdbdf2514000000080001000100000008000300", @ANYRES32=0x0, @ANYBLOB="08001c00", @ANYRES32=r10], 0x2c}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000) setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, 0x0, 0x18) 6.903428461s ago: executing program 4 (id=1231): r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SNAPSHOT_AVAIL_SWAP_SIZE(r0, 0x80083313, &(0x7f0000001300)) 6.896904418s ago: executing program 5 (id=1232): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001300)=@mangle={'mangle\x00', 0x10, 0x6, 0x718, 0x328, 0x580, 0x580, 0xd0, 0x328, 0x670, 0x670, 0x670, 0x670, 0x670, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffe}}, {{@uncond, 0x0, 0x230, 0x258, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth1_to_batadv\x00', {0x8, 0x5, 0x3c, 0x97, 0x6, 0x401, 0x4, 0x120e, 0x18, 0x40}, {0x5}}}, @common=@srh={{0x30}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0xfff7, 0x4}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv6=@mcast1}}}, {{@ipv6={@private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'veth1\x00', 'ip6gretap0\x00', {}, {}, 0x0, 0x2}, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x1}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@local, @ipv4=@multicast1}}}, {{@ipv6={@mcast1, @mcast2, [], [], 'wg1\x00', 'vxcan1\x00', {0xff}, {}, 0x2c}, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@local}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x778) 6.734393256s ago: executing program 2 (id=1234): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94) timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, 0x0) syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x0, &(0x7f00000021c0), 0x1, 0x789, &(0x7f0000001240)="$eJzs3M9rG2caAOB3JlacH96VF/awe8kuJJBAiGzHl+RU91J6CQQCvabGHhvjsRUsObXdQJzeCoU0vrSlUNp7j70WQvoH9FYCLfTWQ6G0qXtoe1GRLCuJIylKYkeJ+zww1veNvpn3fWfkzzPgUQB/W/+v/0gihiLiYkQUm+vTiDjYaB2KWN8at3nv2lR9SaJWu/RzUt8sNmvF1r6S5uvRaGwS/4mIO4WI0+88GreyujY/mefZUrM/Ul24MlJZXTsztzA5m81mi2Pj50fPjY+fGx3ftVpPvHH+8K2vX9vY+OaL6s1jA2eSmGjUHc3adi3QA7aOSSEmdqxf3ItgfZT0MGbgOeQBAEB39ev8A81rs0IU40C3qzQXcAAAAPBSqg3WevVHzyMBAACAF0wS/c4AAAAA2Fvb/wew/WzvXj0H28lPr0bEcLv4A41niCMORSEijmwmDz1+kGxtBs9k/UZE3J5o8/nr5Ynm7kbvNw/vzh7Zbbfr889Eu/knbc0/0Wb+Gdj+7oRn1Hn+ux//QIf572KPMb785L+FjvFvVFbePdYuftKKn3SI/2aP8W9uvHer03u1zyJOtv37kzwUq8v3Q4zMzOXtfrVa6d7589TdzvVHHHkkfpI0oibd67/SY/1vb/46v94l/qnj3c//VvzBh7arfybeb+aRRsSt5mu9v7EjxvGFb796NHKyvh1/usPxb3/+X2/V/2mP9X//+eBKj0MBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACgIY2IoUjSUqudpqVSxNGI+HccSfNypXp6pry8OF1/L2I4CunMXJ6NRkRxq5/U+2ON9v3+2R398Yj413eHt4LO5VlpqpxP97t4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAWo5GxFAkaSki0oj4rZimpVK/swIAAAB23XC/EwAAAAD2nPt/AAAA2P+e9v4/2eU8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgH3t4oUL9aW2ee/aVL0/fXV1eb589cx0VpkvLSxPlabKS1dKs+XybJ6VpsoLj9tfGhFj52N5ZaSaVaojldW1ywvl5cXq5bmFydnsclZ4LlUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwpIYaS5KWIiJttNO0VIr4R0QMRyGZmcuz0Yj4Z0TcLRYG6/2xficNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADArqusrs1P5nm29HI3avurnJ4bkUS8AGl0aHzUPCvdxiTrEXn2Q3Nkn1JNm+GfZT9Plvz1xxyWfjf+14e5CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/qusrs1P5nm2VOl3JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPRX+mMSEfXlZPHE0M53Dya/FxuvEfHWx5c+WJmsVpfG6ut/aa2vfthcf/aBDa8/zxoAAABg33vlSQZv36dv38cDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD0qrK6Nj+Z59nSHjbiRr+rBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnsZfAQAA//9bFLc7") r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f00000004c0)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={0x0, r2}, 0x18) futex(0x0, 0x85, 0x0, 0x0, 0x0, 0xc5fffffd) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10) unshare(0x68040200) ftruncate(r0, 0x2007ffc) sendfile(r0, r0, 0x0, 0x800000009) 6.72001773s ago: executing program 5 (id=1235): prctl$PR_SCHED_CORE(0x2a, 0x0, 0x0, 0x0, &(0x7f0000000100)) socket$netlink(0x10, 0x3, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) r0 = socket(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00'}) sendmsg$nl_route_sched(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x80884}, 0x20000000) socket$kcm(0x2, 0x1000000000000002, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r1 = getpid() sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000040), 0xfe, 0x4f2, &(0x7f0000000b00)="$eJzs3d9rHFsdAPDvTHbvbdpcN1d9uF6wLbaSFO0maWwbfKgKok8Ftb7XmGxDyCZbkk3bhKIp/gGCiAq+6JMvgn+AIP0TRCjou6gooq0++FAd2d3ZmKa7+UE3u97s5wMnc8782O85GebsnJlhJ4ChdTEiJiMiy7LsSkSU8vlpnmKnlRrrvXj+eKGRksiyO39LIsnntT/r7Xx6Lt/sTER87csR30xej7uxtb0yX61W1vPyVH01eZll21eXV+eXKkuVtdnZmRtzN+euz033pJ3jEXHri3/6wXd/9qVbv/r0w9/f/cvkt1oNbNnbjl5qNb3Y/F+0FSJi/SSCDUih2cKW6wOuCwAAB2uc7384Ij4REVeiFCPNszkAAADgNMk+NxYvk9b9PwAAAOB0SiNiLJK0nD/vOxZpWi63nuH9aJxNq7WN+qey0u71gvEopveWq5Xp/NmB8SgmjfJM/oxtu3xtX3k2It6NiO+XRpvl8kKtujjQKx8AAAAwPM7tG///s9Qa/wMAAACnzPigKwAAAACcOON/AAAAOP2M/wEAAOBU+8rt242Utd9/vfhga3Ol9uDqYmVjpby6uVBeqK3fLy/VakvN3+xbPezzqrXa/c/E2uajqXploz61sbV9d7W2uVa/u/zKK7ABAACAPnr3wtPfJRGx89nRNCKyZM+yYkQ2snflQv/rB5yc9Dgr//Hk6gH038igKwAMjFN6GF7FQVcAGLjD+oGuD+/8uvd1AQAATsbEx3bv/zdTw1v5smSgNQNOWn7/P3Gsw/Bx/x+Gl/t/MLyKB50BGBTAqZce4VB/8/v/WXasSgEAAD031kxJWs7HAWORpuVyxDvN1wIUk3vL1cp0RHwoIn5bKr7dKM80t0xcHgAAAAAAAAAAAAAAAAAAAAAAAACAI8qyJLIuRnfXAQAAAD7IItI/J/n7vyZKl8f2Xx94K/lXqTmNiIc/vvPDR/P1+vpMY/7fd+fXf5TPv9bvqxcAAABAJ+1xenscDwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC99OL544V26mfcv34hIsY7xS/Emeb0TBQj4uw/kijs2S6JiJEexN95EhHvdYqfNKoV43kt9sdPI2J0wPHP9SA+DLOnjf7n852OvzQuNqedj79Cnt5U9/4v3e3/Rrr0f+90+sD09VnvP/vFVNf4TyLeL3Tuf9rxky7xLx2xjd/4+vZ2t2XZTyMmOn7/JK/EmkoK96c2travLq/OL1WWKmuzszM35m7OXZ+bnrq3XK3kfzvG+N7Hf/mfg9p/tkv88UPaf/mI7f/3s0fPP9LKFvctKsZPsmzyUuf9/16X+O3vvk/mu7tRnmjnd1r5vc7//DfnLxzQ/sUu7T9s/08esf1XvvqdPxxxVQCgDza2tlfmq9XK+vEyScTOG2wuM1yZ0ehj0Pk4aJ32SWwf6vPtPNT/xS44dmZwfRIAAHAy/nfSP+iaAAAAAAAAAAAAAAAAAAAAwPA67GfAogc/J7Y/5s5gmgoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcKD/BgAA//+6ychX") capset(&(0x7f0000000380)={0x20080522}, &(0x7f0000000040)={0x200000, 0x40200003, 0x0, 0x6, 0x7}) openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0) 6.617033442s ago: executing program 1 (id=1236): r0 = socket(0x10, 0x803, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r2 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0) r3 = socket(0x400000000010, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x8c, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0xb, 0xfff3}, {}, {0x7}}, [@filter_kind_options=@f_matchall={{0xd}, {0x58, 0x2, [@TCA_MATCHALL_ACT={0x54, 0x2, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x6fe2}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0xb380, 0x4, 0x0, 0xd87, 0x6}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x10}, 0x0) 6.577312575s ago: executing program 0 (id=1237): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000660000000000"], 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000500)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000180)=r1, 0x4) sendmsg$inet(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x20000000) 6.471092691s ago: executing program 0 (id=1238): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000ae00000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x10122, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f00000018c0)=@raw={'raw\x00', 0x4001, 0x3, 0x268, 0x180, 0xa, 0x148, 0x0, 0x148, 0x220, 0x240, 0x240, 0x220, 0x240, 0x7fffffe, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'ip6gretap0\x00', 'veth1_to_batadv\x00', {}, {}, 0x21}, 0x0, 0xc8, 0x130, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'lo\x00', {0x0, 0x0, 0x1ff, 0x0, 0x0, 0xed, 0x7}}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c8) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) pidfd_send_signal(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r1 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="9feb010818"], 0x0, 0x26, 0x0, 0x2, 0x0, 0x0, @void, @value}, 0x28) ioctl$MON_IOCX_GET(r1, 0x40189206, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000004c0)='kmem_cache_free\x00'}, 0x18) statx(0xffffffffffffffff, 0x0, 0x6000, 0x7ff, 0x0) 5.64921899s ago: executing program 0 (id=1239): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000400396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x8000000000}, 0x18) socket$rds(0x15, 0x5, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = syz_io_uring_setup(0x24f6, &(0x7f0000000b80)={0x0, 0x0, 0x10100, 0x0, 0x33a}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000180)=ANY=[], 0x118) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x8}) io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 5.517379644s ago: executing program 5 (id=1240): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r0, 0x0) io_pgetevents(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xfffffffffffffffd, 0x8}) 5.139700995s ago: executing program 0 (id=1241): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x10) shmget$private(0x0, 0x1000, 0x0, &(0x7f0000003000/0x1000)=nil) 5.131613193s ago: executing program 2 (id=1242): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) rt_sigpending(0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) sync() sync() sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4000014, 0x0, 0x0) sched_setscheduler(0x0, 0x6, 0x0) 5.065236955s ago: executing program 1 (id=1243): r0 = socket$netlink(0x10, 0x3, 0x10) r1 = socket$netlink(0x10, 0x3, 0x10) bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) setsockopt$sock_int(r1, 0x1, 0x8, 0x0, 0x0) r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000021000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18) socketpair$unix(0x1, 0x5, 0x0, 0x0) syz_usb_connect$hid(0x2, 0x36, 0x0, 0x0) 5.064809628s ago: executing program 4 (id=1244): bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10) r0 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f00000001c0)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300", 0x3d}, 0x48, 0xffffffffffffffff) r1 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff) r2 = add_key$fscrypt_v1(&(0x7f0000000400), &(0x7f0000000440)={'fscrypt:', @desc1}, &(0x7f0000000480)={0x0, "6035ae1e0fe721441705322225930e6c1e3e2a51a92fd796bc34d7cf6e0236805b4377f7ab1a9b01c103a4c6a7ef54e6763fd7264c39ea00c508ba6062696138"}, 0x48, 0xfffffffffffffffe) keyctl$KEYCTL_MOVE(0x4, r2, r1, r1, 0x0) keyctl$KEYCTL_MOVE(0x4, r0, r0, 0x0, 0x0) 5.004750225s ago: executing program 5 (id=1245): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001300)=@mangle={'mangle\x00', 0x10, 0x6, 0x718, 0x328, 0x580, 0x580, 0xd0, 0x328, 0x670, 0x670, 0x670, 0x670, 0x670, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0, 0x0, {0x7a00000000000000}}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xfffffffffffffffe}}, {{@uncond, 0x0, 0x230, 0x258, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth1_to_batadv\x00', {0x8, 0x5, 0x3c, 0x97, 0x6, 0x401, 0x4, 0x120e, 0x18, 0x40}, {0x5}}}, @common=@srh={{0x30}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00', 0x3, {0x0, 0xfff7, 0x4}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @ipv6=@mcast1}}}, {{@ipv6={@private0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [], [], 'veth1\x00', 'ip6gretap0\x00', {}, {}, 0x0, 0x2}, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x1}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv4=@local, @ipv4=@multicast1}}}, {{@ipv6={@mcast1, @mcast2, [], [], 'wg1\x00', 'vxcan1\x00', {0xff}, {}, 0x2c}, 0x0, 0xa8, 0xf0}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@mcast2, @ipv6=@local}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x778) 4.849059645s ago: executing program 4 (id=1246): setresgid(0xee01, 0xffffffffffffffff, 0xffffffffffffffff) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) gettid() timer_create(0x0, 0x0, &(0x7f0000bbdffc)=0x0) timer_gettime(r0, &(0x7f0000000340)) syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x10840, &(0x7f00000004c0)=ANY=[@ANYBLOB="696f636861727365743d757466382c73686f72746e616d653d77e14622a86faddb4275672c757466383d302c73686f77657865632c73686f72746e614b976e742c73686f72746e616d653d191beeaa9077696e39352c6e6f6e756d747d54959545c47786695f786c6174653d302c6e66733d7374616c655f72772c6e6f6e756dff0300000000000075"], 0x1, 0x270, &(0x7f00000013c0)="$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") mkdir(&(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) bpf$MAP_CREATE(0x0, 0x0, 0x48) r1 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$KDFONTOP_SET(r1, 0x4b72, &(0x7f0000000080)={0x0, 0x3000040, 0x4008, 0x1b, 0xfe, &(0x7f00000000c0)="387ed7626d850509a2d6c1aa38f15cd00f85c263cb226db671261fff7ce9c555f189afae3530db6dd493f28fd988721b9ae21b3e3b4523ae2594f47d8f62b480c4160b1f90ac9c41fae6ab12ac4c113fef588684ef495689092883b902a41cd75387ef6f7bc7d460d5e665f398ff95596dc94ec97003a3db08e500c2fb07e11aa4031a61c51caf7a65a2b613bda33f3eaeae635d7cd81761e74c38a7695800a15516eb337056e02335f9a7d10aa2eaf7beb7e1f7a1e850ecb3421143c5c4ded0f083a0c524dcf320827266819b6a952db5bc96141b26c54db857edbcbbc81c7af7aadf50bc549974b6401a19cdb130282b955592efa94242065a4c8d695a2cdd9ada350defd58c775b92d348305774d3a256c7520b285d8da0dbf5e20d604413ed2ddf9bcbf881caf811852806175d63892a15234fbcd7a88a2a0aea45d19148f0e7dada7d6d0d77881387fdeaa02863be90b88dfff412bff40c31c6415c54ae3335e54a49d315851feffe30d999c36def4df7df747695ef060000001bbe1b649f42f310859122c0d2c1e558dc6586958a28374f386ecf369274e43003a09b5159ea515eb44521901ef0d00baa91c10a8e44a76aac3468a15bd3d45ad389977467f306f9bcde071b30769795eed2f1580414d168f557cd90040c4bd2a3d6bc509254a12cece59181fcb5bad8c24bd9f8f78d17ab01831325501e80d899e9252f99d3a2666343392fda115048e4f4dd9f45657f8224fc78eb1168fe0527fac33466aadf48f16994d29a47778566e0f3945b2bf36b6eecc7fa18914beb66ac9e519bd3330000000000000009a3237aebbe3bed781e39d5a0fb0cdc60e196f2261305feb596b5b66ab89d2d6333f699b16db68986ab3eee7b199fefb5f79ffb2d1050e46982af1c14a88dd9b647ba812f56a8404755c73e74bb90e64bab9647c70ed5afca1c3d87907d14df8aa9df6f40a80ace2bb8a2aad3b0c66915927db4173181943d88c0c76d5969e2043db5bd77fd60ba0f012139929ccfec965c1f769785a4d23332d71f0875e3146afef5b20cc306d3ecee65944fe9829e0ad0c3f6bb2fdc1bc31152538db50f47dc38ba908a0d808687e478a609fe0daa0000000000000000e7f2e98597e27f3e1dba9c3c16e9fab3bda6ed33cb1c75513e2264b69d4794ded98eff9aa53d22eb77c9d93169c04ab2490bf28106f770e07eb7a9e8fd4e71929f918b98c4cbfcb11a90139264a9ee807c973167f493760278df0cc34be9e8f86f948d9a62e63ad6ca9d174d2465380b1a00ddc42915e4f3a5db640600000095a3d63904c9ecd1c313c08e29b814bd8fed1ab6d2846c73345962895d289ac77152cac2e04c93a5470774975b42091f218dd1e68a15f8226577bf9481ae0555db64a717eb23a811356d00000000ddffffff00"}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000000)=ANY=[@ANYRESDEC=0x0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @void, @value}, 0x94) io_setup(0x8, &(0x7f0000004200)) rt_sigaction(0x19, 0x0, 0x0, 0x8, &(0x7f0000000440)) rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) 4.834887888s ago: executing program 0 (id=1247): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000800)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@empty, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010102}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x68, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}}}}}}, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 4.761868465s ago: executing program 5 (id=1248): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100002023008000000000000000008500"], 0x0, 0x7, 0x0, 0x0, 0x40f00, 0x9, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40000000, @void, @value}, 0x94) socket$packet(0x11, 0xa, 0x300) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000020000000000000000ee0000"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x560b0007, &(0x7f0000000000)="259a53f271a76d2686dd4c6588a8", 0x0, 0xd01, 0x2a0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) 4.54096659s ago: executing program 0 (id=1249): syz_mount_image$ext4(&(0x7f0000000280)='ext2\x00', &(0x7f0000000000)='./file0\x00', 0x200c840, &(0x7f00000002c0)={[{@init_itable}, {@dioread_lock}, {@data_writeback}, {@nodioread_nolock}, {@jqfmt_vfsold}, {@minixdf}, {@lazytime}]}, 0x64, 0x537, &(0x7f0000000540)="$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") bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r3}, 0x10) r4 = socket(0x10, 0x2, 0x0) r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfff, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000340)='ext4_mb_release_inode_pa\x00', r6, 0x0, 0x8003}, 0x18) r7 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$PIO_UNIMAPCLR(r7, 0x4b68, 0x0) sendto$inet6(r4, &(0x7f00000007c0)="7800000018002507b9199b02ffff48000203be04020406050a02040c5c000900580006050a0000000d0085a168d0bf46d32345653600648d27000b000a00070849935ade4a460c89b6ec0cff3959547f509058ad86c902007a00004a32000407160012000a0000000000e000e21800003b6ed538f6523250", 0x78, 0x2251197285d76a80, 0x0, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @numgen={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NG_MODULUS={0x8, 0x2, 0x1, 0x0, 0x9}, @NFTA_NG_DREG={0x8, 0x1, 0x1, 0x0, 0x13}, @NFTA_NG_TYPE={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}}, 0x0) io_pgetevents(0x0, 0xfff, 0x0, 0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140), 0x8}) setxattr$incfs_id(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, 0x0, 0x3) 4.521098836s ago: executing program 5 (id=1250): r0 = socket$inet(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb8af, @void, @value}, 0xa5) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000600)='kfree\x00', r3}, 0x18) sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0xa4, 0x24, 0xf0b, 0x70bd2b, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x5, 0x4, 0x2, 0x0, 0x8, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8, 0x0, 0x0, 0x2]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0x400}]}]}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x7}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x20000040}, 0x0) 4.497377674s ago: executing program 2 (id=1251): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000400396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000100)='kfree\x00', r0, 0x0, 0x8000000000}, 0x18) socket$rds(0x15, 0x5, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) r1 = syz_io_uring_setup(0x24f6, &(0x7f0000000b80)={0x0, 0x0, 0x10100, 0x0, 0x33a}, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='8'], 0x38}}, 0x0) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r4, &(0x7f0000000180)=ANY=[], 0x118) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x8}) io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0) 4.344056844s ago: executing program 2 (id=1252): accept$unix(0xffffffffffffffff, &(0x7f0000000200)=@abs, &(0x7f0000000040)=0x6e) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000440), &(0x7f0000000480)=0xc) pipe2(&(0x7f0000001cc0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) r3 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000000040)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xc) mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000640)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',dfltgid=', @ANYRESHEX=r4, @ANYBLOB="2c84d7f184a1816e097ae85cbeb3bbafc5fd4c6b7172b9fc765ae6dea2629d7f7256a40dbdc57605b7944560d626217a6598c53ab5074c0ff97f6b20b5a4cc47cb9a5fe1d6d757bf64c3254753bf5eb83fae88c62c57be63f0db0aa2915032a216e89ad649ce29000100d41e7a3c2a5e1b7bfb"]) openat$rfkill(0xffffffffffffff9c, &(0x7f00000004c0), 0xe0100, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000500)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x1}}, './mnt\x00'}) syz_socket_connect_nvme_tcp() r5 = socket$inet6(0xa, 0x1, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r5, 0x89f1, &(0x7f00000004c0)={'ip6_vti0\x00', &(0x7f0000000740)={'syztnl1\x00', 0x0, 0x29, 0x0, 0x3, 0x0, 0x4f, @private1={0xfc, 0x1, '\x00', 0x1}, @local, 0x10, 0x7, 0x2, 0x8}}) r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48) r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r7}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r6}, &(0x7f0000000000), &(0x7f0000000040)=r7}, 0x20) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r5, 0x89f2, &(0x7f0000000600)={'syztnl1\x00', 0x0}) openat$dir(0xffffffffffffff9c, &(0x7f0000000540)='./mnt\x00', 0x84b00, 0x14e) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000580), 0x4) r8 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kmem_cache_free\x00'}, 0x18) openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, &(0x7f0000000600), 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0xc) 0s ago: executing program 4 (id=1253): r0 = socket$rds(0x15, 0x5, 0x0) recvmmsg(r0, &(0x7f0000002180)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x2000, 0x0) kernel console output (not intermixed with test programs): , idProduct=7500, bcdDevice=69.ee [ 155.867164][ T5940] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 155.874596][ T6919] block device autoloading is deprecated and will be removed. [ 156.057836][ T5940] usb 5-1: Product: syz [ 156.236375][ T5940] usb 5-1: Manufacturer: syz [ 156.280261][ T44] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 156.303518][ T5940] usb 5-1: SerialNumber: syz [ 156.400787][ T5940] usb 5-1: config 0 descriptor?? [ 156.431515][ T5940] smsc75xx v1.0.0 [ 156.449834][ T5940] smsc75xx 5-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 156.552248][ T5940] smsc75xx 5-1:0.184: probe with driver smsc75xx failed with error -22 [ 156.628621][ T6894] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 156.665634][ T6894] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 156.681158][ T44] usb 2-1: config 0 has no interfaces? [ 156.712536][ T44] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 156.753721][ T6929] binder: 6887:6929 ioctl c0306201 200000000100 returned -11 [ 156.784281][ T6894] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 156.828042][ T44] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 156.863877][ T6894] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 156.866390][ T44] usb 2-1: Product: syz [ 156.892126][ T44] usb 2-1: Manufacturer: syz [ 156.905870][ T44] usb 2-1: SerialNumber: syz [ 156.936695][ T44] usb 2-1: config 0 descriptor?? [ 157.430732][ T6942] loop2: detected capacity change from 0 to 512 [ 157.688320][ T6942] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 157.799233][ T6942] ext4 filesystem being mounted at /68/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.932531][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.519009][ T6961] af_packet: tpacket_rcv: packet too big, clamped from 98 to 4294967286. macoff=82 [ 158.634191][ T10] usb 5-1: USB disconnect, device number 8 [ 158.669589][ T6964] Invalid ELF header magic: != ELF [ 158.917845][ T10] usb 2-1: USB disconnect, device number 6 [ 159.308125][ T6981] netlink: 36 bytes leftover after parsing attributes in process `syz.1.367'. [ 159.377679][ T6984] netem: change failed [ 159.450281][ T6987] loop3: detected capacity change from 0 to 512 [ 159.488884][ T6987] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 159.559443][ T6987] EXT4-fs (loop3): 1 truncate cleaned up [ 159.602462][ T6987] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 159.722145][ T5849] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 160.060721][ T7018] netem: change failed [ 160.545317][ T7031] loop3: detected capacity change from 0 to 512 [ 160.565460][ T7031] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 160.600845][ T7031] EXT4-fs (loop3): 1 truncate cleaned up [ 160.615585][ T7031] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.631105][ T30] audit: type=1326 audit(1748605333.186:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 161.668343][ T30] audit: type=1326 audit(1748605333.186:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 161.725100][ T30] audit: type=1326 audit(1748605333.186:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 161.766421][ T30] audit: type=1326 audit(1748605333.186:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.393" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 161.837089][ T7046] netlink: 16 bytes leftover after parsing attributes in process `syz.0.395'. [ 161.884252][ T5849] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.995753][ T7048] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 162.155771][ T7052] netem: change failed [ 162.176395][ T7054] loop4: detected capacity change from 0 to 2048 [ 162.219093][ T7054] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.254963][ T7054] ext4 filesystem being mounted at /86/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.318885][ T30] audit: type=1800 audit(1748605333.876:367): pid=7054 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.398" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 162.345735][ T7054] futex_wake_op: syz.4.398 tries to shift op by -1; fix this program [ 162.399266][ T7058] loop2: detected capacity change from 0 to 512 [ 162.431800][ T7058] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 162.479310][ T7058] EXT4-fs (loop2): 1 truncate cleaned up [ 162.492681][ T7058] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 162.628817][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.693387][ T7075] loop3: detected capacity change from 0 to 512 [ 163.943833][ T7075] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 164.022399][ T7075] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.406: invalid indirect mapped block 2683928664 (level 1) [ 164.065031][ T30] audit: type=1326 audit(1748605335.616:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 164.101826][ T7090] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 164.102368][ T7075] EXT4-fs (loop3): Remounting filesystem read-only [ 164.137331][ T7075] EXT4-fs (loop3): 1 truncate cleaned up [ 164.139074][ T30] audit: type=1326 audit(1748605335.646:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 164.165642][ T7054] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.398: bg 0: block 345: padding at end of block bitmap is not set [ 164.180694][ T30] audit: type=1326 audit(1748605335.646:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 164.188395][ T7075] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 164.204803][ T30] audit: type=1326 audit(1748605335.656:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 164.371039][ T30] audit: type=1326 audit(1748605335.656:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.0.411" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 164.550540][ T5849] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.785207][ T5834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.977389][ T10] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 165.102428][ T7130] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 165.137042][ T10] usb 2-1: Using ep0 maxpacket: 32 [ 165.145051][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 165.174687][ T7136] loop3: detected capacity change from 0 to 128 [ 165.176677][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 165.201194][ T10] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 165.238158][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 165.252845][ T7136] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 165.254037][ T10] usb 2-1: config 0 descriptor?? [ 165.275851][ T10] hub 2-1:0.0: USB hub found [ 165.322982][ T7136] ext4 filesystem being mounted at /67/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 165.476940][ T7117] netlink: 'syz.1.418': attribute type 11 has an invalid length. [ 165.495499][ T10] hub 2-1:0.0: config failed, can't read hub descriptor (err -22) [ 165.515553][ T5849] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 165.518362][ T7147] loop4: detected capacity change from 0 to 2048 [ 165.537656][ T10] usbhid 2-1:0.0: can't add hid device: -71 [ 165.543737][ T10] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 165.582481][ T7147] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.626961][ T10] usb 2-1: USB disconnect, device number 7 [ 165.662656][ T7147] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 165.757476][ T7147] futex_wake_op: syz.4.431 tries to shift op by -1; fix this program [ 165.772490][ T7156] netlink: 164 bytes leftover after parsing attributes in process `syz.2.436'. [ 165.783351][ T7156] netlink: 164 bytes leftover after parsing attributes in process `syz.2.436'. [ 165.795671][ T7156] netlink: 60 bytes leftover after parsing attributes in process `syz.2.436'. [ 165.917069][ T7161] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 166.053835][ T7166] loop3: detected capacity change from 0 to 512 [ 166.084120][ T7166] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 166.110648][ T7168] Invalid ELF header magic: != ELF [ 166.151502][ T7166] ext4 filesystem being mounted at /70/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 166.285187][ T7178] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 166.285187][ T7178] program syz.2.445 not setting count and/or reply_len properly [ 166.459465][ T5849] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.736523][ T5892] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 166.922110][ T5834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.943065][ T30] kauditd_printk_skb: 15 callbacks suppressed [ 166.943079][ T30] audit: type=1326 audit(1748605338.496:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7188 comm="syz.3.446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe787785927 code=0x7ffc0000 [ 166.996401][ T5892] usb 2-1: Using ep0 maxpacket: 32 [ 167.132516][ T30] audit: type=1326 audit(1748605338.496:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7188 comm="syz.3.446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe78772ab39 code=0x7ffc0000 [ 167.240914][ T30] audit: type=1326 audit(1748605338.496:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7188 comm="syz.3.446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe787785927 code=0x7ffc0000 [ 167.267146][ T7181] binder: 7174:7181 ioctl c0306201 200000000100 returned -11 [ 167.312469][ T7175] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 167.320101][ T30] audit: type=1326 audit(1748605338.496:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7188 comm="syz.3.446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe78772ab39 code=0x7ffc0000 [ 167.359459][ T7175] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 167.380556][ T30] audit: type=1326 audit(1748605338.496:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7188 comm="syz.3.446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe787785927 code=0x7ffc0000 [ 167.443156][ T30] audit: type=1326 audit(1748605338.496:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7188 comm="syz.3.446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe78772ab39 code=0x7ffc0000 [ 167.447512][ T7206] block device autoloading is deprecated and will be removed. [ 167.504590][ T30] audit: type=1326 audit(1748605338.496:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7188 comm="syz.3.446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe787785927 code=0x7ffc0000 [ 167.554750][ T30] audit: type=1326 audit(1748605338.496:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7188 comm="syz.3.446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe78772ab39 code=0x7ffc0000 [ 167.566492][ T7206] syz.4.454: attempt to access beyond end of device [ 167.566492][ T7206] md33: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 167.611204][ T30] audit: type=1326 audit(1748605338.496:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7188 comm="syz.3.446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fe787785927 code=0x7ffc0000 [ 167.773405][ T30] audit: type=1326 audit(1748605338.496:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7188 comm="syz.3.446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fe78772ab39 code=0x7ffc0000 [ 167.973650][ T7212] loop4: detected capacity change from 0 to 128 [ 168.048815][ T7212] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 168.122370][ T7212] ext4 filesystem being mounted at /93/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 168.180456][ T7222] loop2: detected capacity change from 0 to 164 [ 168.410641][ T5892] usb 2-1: device descriptor read/all, error -71 [ 168.469016][ T7228] netlink: 16 bytes leftover after parsing attributes in process `syz.2.463'. [ 168.503079][ T7232] netlink: 268 bytes leftover after parsing attributes in process `syz.3.465'. [ 168.532310][ T7232] unsupported nla_type 65024 [ 168.848967][ T7244] Invalid ELF header magic: != ELF [ 169.235417][ T7256] serio: Serial port ptm0 [ 169.435490][ T7268] loop2: detected capacity change from 0 to 512 [ 169.501971][ T7268] EXT4-fs: Ignoring removed mblk_io_submit option [ 169.527755][ T7268] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 169.560509][ T7274] netlink: 84 bytes leftover after parsing attributes in process `syz.3.485'. [ 169.572654][ T7268] EXT4-fs error (device loop2): ext4_orphan_get:1393: inode #15: comm syz.2.482: iget: bad extended attribute block 1 [ 169.590424][ T7268] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.482: couldn't read orphan inode 15 (err -117) [ 169.606253][ T7268] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 169.716194][ T7268] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters [ 169.979375][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 170.014809][ T5834] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 170.084224][ T7284] loop1: detected capacity change from 0 to 764 [ 170.172132][ T7284] Symlink component flag not implemented [ 170.219894][ T7284] Symlink component flag not implemented (7) [ 170.305703][ T7291] loop3: detected capacity change from 0 to 128 [ 170.378122][ T7291] vfat: Unknown parameter '01777777777777777777777ÿÿÿÿÿÿÿÿ18446744073709551615ÿÿÿÿÿÿÿÿ' [ 170.494887][ T7291] 8021q: VLANs not supported on ipvlan0 [ 170.535392][ T7291] netlink: 'syz.3.492': attribute type 4 has an invalid length. [ 170.775088][ T7304] netlink: 84 bytes leftover after parsing attributes in process `syz.1.497'. [ 171.617390][ T7324] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 171.716996][ T7324] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 171.812505][ T7324] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 171.883939][ T7334] netlink: 84 bytes leftover after parsing attributes in process `syz.0.511'. [ 171.960323][ T7324] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.147297][ T7324] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 172.174369][ T7324] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 172.200165][ T7324] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 172.223156][ T7324] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 173.654602][ T30] kauditd_printk_skb: 116 callbacks suppressed [ 173.654623][ T30] audit: type=1326 audit(1748605345.206:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7358 comm="syz.1.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 173.702609][ T30] audit: type=1326 audit(1748605345.236:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7358 comm="syz.1.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 173.770154][ T30] audit: type=1326 audit(1748605345.236:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7358 comm="syz.1.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 173.795494][ T30] audit: type=1326 audit(1748605345.246:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7358 comm="syz.1.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 173.825547][ T30] audit: type=1326 audit(1748605345.256:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7358 comm="syz.1.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 173.850194][ T30] audit: type=1326 audit(1748605345.256:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7358 comm="syz.1.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 173.890657][ T7365] netlink: 84 bytes leftover after parsing attributes in process `syz.4.524'. [ 173.900243][ T30] audit: type=1326 audit(1748605345.256:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7358 comm="syz.1.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 173.924633][ T30] audit: type=1326 audit(1748605345.256:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7358 comm="syz.1.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 173.947719][ T30] audit: type=1326 audit(1748605345.256:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7358 comm="syz.1.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 173.977276][ T30] audit: type=1326 audit(1748605345.256:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7358 comm="syz.1.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 174.767114][ T7379] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.929092][ T7379] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.088934][ T7379] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.657769][ T7379] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 176.530379][ T7397] loop1: detected capacity change from 0 to 8192 [ 176.777307][ T7379] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.818270][ T7379] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.852036][ T7416] loop3: detected capacity change from 0 to 512 [ 176.900622][ T7379] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.930169][ T7416] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 176.955765][ T7379] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.964464][ T7416] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 176.995888][ T7416] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 177.490293][ T7444] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present! [ 177.636936][ T7450] loop3: detected capacity change from 0 to 512 [ 177.735960][ T7450] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 177.761413][ T7450] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 177.839858][ T7450] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 178.292946][ T7483] loop3: detected capacity change from 0 to 1024 [ 178.364767][ T7485] loop2: detected capacity change from 0 to 2048 [ 178.364766][ T7483] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 178.614074][ T7485] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 178.649106][ T5849] EXT4-fs error (device loop3): ext4_lookup:1787: inode #12: comm syz-executor: iget: bogus i_mode (177755) [ 178.654112][ T7485] ext4 filesystem being mounted at /119/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 179.033360][ T5849] EXT4-fs error (device loop3): ext4_lookup:1787: inode #12: comm syz-executor: iget: bogus i_mode (177755) [ 179.082425][ T7501] loop4: detected capacity change from 0 to 164 [ 179.148093][ T30] kauditd_printk_skb: 78 callbacks suppressed [ 179.148138][ T30] audit: type=1800 audit(1748605350.676:602): pid=7485 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.574" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 179.303172][ T7501] ISOFS: unable to read i-node block [ 179.324696][ T7501] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 179.684448][ T30] audit: type=1326 audit(1748605351.236:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7514 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 179.738103][ T30] audit: type=1326 audit(1748605351.236:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7514 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 179.794855][ T30] audit: type=1326 audit(1748605351.236:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7514 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 179.797470][ T5849] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 179.846965][ T30] audit: type=1326 audit(1748605351.236:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7514 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 179.892897][ T30] audit: type=1326 audit(1748605351.236:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7514 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 179.969117][ T30] audit: type=1326 audit(1748605351.236:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7514 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 180.554289][ T30] audit: type=1326 audit(1748605351.236:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7514 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 180.682163][ T65] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.700332][ T30] audit: type=1326 audit(1748605351.236:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7514 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 180.734410][ T30] audit: type=1326 audit(1748605351.236:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7514 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 180.952606][ T65] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.043791][ T65] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.173301][ T65] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.431497][ T7546] netlink: 8 bytes leftover after parsing attributes in process `syz.1.595'. [ 182.226510][ T7491] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 182.391352][ T65] bridge_slave_1: left allmulticast mode [ 182.423329][ T65] bridge_slave_1: left promiscuous mode [ 182.439788][ T65] bridge0: port 2(bridge_slave_1) entered disabled state [ 182.492966][ T65] bridge_slave_0: left allmulticast mode [ 182.506056][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.510726][ T65] bridge_slave_0: left promiscuous mode [ 182.531379][ T65] bridge0: port 1(bridge_slave_0) entered disabled state [ 182.685823][ T5847] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 182.701057][ T5847] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 182.709743][ T5847] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 182.719351][ T5847] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 182.736007][ T5847] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 182.737631][ T7563] netlink: 12 bytes leftover after parsing attributes in process `syz.2.602'. [ 183.177805][ T65] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 183.188828][ T65] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 183.200696][ T65] bond0 (unregistering): Released all slaves [ 183.215397][ T7560] netlink: 92 bytes leftover after parsing attributes in process `syz.0.601'. [ 183.225753][ T7560] netem: unknown loss type 0 [ 183.231070][ T7560] netem: change failed [ 183.319091][ T7580] netlink: 8 bytes leftover after parsing attributes in process `syz.1.606'. [ 184.681428][ T65] hsr_slave_0: left promiscuous mode [ 184.700998][ T7599] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 184.714601][ T7599] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks [ 184.777133][ T65] hsr_slave_1: left promiscuous mode [ 184.794267][ T65] batman_adv: batadv0: Interface deactivated: dummy0 [ 184.806482][ T65] batman_adv: batadv0: Removing interface: dummy0 [ 184.833179][ T65] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 184.848083][ T5841] Bluetooth: hci4: command tx timeout [ 185.035894][ T65] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 185.069530][ T65] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 185.080018][ T65] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 185.116581][ T65] veth1_macvtap: left promiscuous mode [ 185.126579][ T65] veth0_macvtap: left promiscuous mode [ 185.147048][ T65] veth1_vlan: left promiscuous mode [ 185.153618][ T65] veth0_vlan: left promiscuous mode [ 185.461633][ T7616] xt_connbytes: Forcing CT accounting to be enabled [ 185.468674][ T7616] Cannot find set identified by id 0 to match [ 186.927294][ T5841] Bluetooth: hci4: command tx timeout [ 187.374641][ T65] team0 (unregistering): Port device team_slave_1 removed [ 187.448376][ T65] team0 (unregistering): Port device team_slave_0 removed [ 187.572254][ T30] kauditd_printk_skb: 29 callbacks suppressed [ 187.572274][ T30] audit: type=1326 audit(1748605359.126:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 187.613795][ T30] audit: type=1326 audit(1748605359.126:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 187.636989][ T30] audit: type=1326 audit(1748605359.156:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 187.668504][ T30] audit: type=1326 audit(1748605359.156:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 187.717919][ T30] audit: type=1326 audit(1748605359.156:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 187.771052][ T30] audit: type=1326 audit(1748605359.156:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 187.794071][ T30] audit: type=1326 audit(1748605359.156:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 187.840386][ T30] audit: type=1326 audit(1748605359.156:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 187.864609][ T30] audit: type=1326 audit(1748605359.156:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 187.974257][ T30] audit: type=1326 audit(1748605359.156:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7627 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 188.520121][ T7613] lo speed is unknown, defaulting to 1000 [ 188.526220][ T7613] lo speed is unknown, defaulting to 1000 [ 188.541086][ T7613] lo speed is unknown, defaulting to 1000 [ 188.554084][ T7613] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 188.586976][ T7613] infiniband s…z0: RDMA CMA: cma_listen_on_dev, error -98 [ 188.602370][ T7622] netlink: 92 bytes leftover after parsing attributes in process `syz.4.618'. [ 188.615516][ T7622] netem: unknown loss type 0 [ 188.632181][ T7622] netem: change failed [ 189.018132][ T5841] Bluetooth: hci4: command tx timeout [ 189.481344][ T7613] lo speed is unknown, defaulting to 1000 [ 189.531788][ T7613] lo speed is unknown, defaulting to 1000 [ 189.540121][ T7613] lo speed is unknown, defaulting to 1000 [ 189.548341][ T7613] lo speed is unknown, defaulting to 1000 [ 189.556456][ T7613] lo speed is unknown, defaulting to 1000 [ 189.573654][ T7645] loop2: detected capacity change from 0 to 512 [ 189.649550][ T7562] chnl_net:caif_netlink_parms(): no params data found [ 189.718520][ T7645] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 189.768723][ T7645] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 189.885324][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 189.989287][ T7562] bridge0: port 1(bridge_slave_0) entered blocking state [ 190.004707][ T7562] bridge0: port 1(bridge_slave_0) entered disabled state [ 190.013048][ T7562] bridge_slave_0: entered allmulticast mode [ 190.021331][ T7562] bridge_slave_0: entered promiscuous mode [ 190.031609][ T7562] bridge0: port 2(bridge_slave_1) entered blocking state [ 190.045148][ T7562] bridge0: port 2(bridge_slave_1) entered disabled state [ 190.222438][ T7562] bridge_slave_1: entered allmulticast mode [ 190.242406][ T7562] bridge_slave_1: entered promiscuous mode [ 190.360598][ T7671] netlink: 92 bytes leftover after parsing attributes in process `syz.2.634'. [ 190.386591][ T7671] netem: unknown loss type 0 [ 190.394989][ T7671] netem: change failed [ 190.423293][ T7562] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 190.452949][ T7562] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 191.546346][ T5841] Bluetooth: hci4: command tx timeout [ 191.671641][ T7677] bridge0: port 3(macvlan2) entered blocking state [ 191.684261][ T7677] bridge0: port 3(macvlan2) entered disabled state [ 191.701312][ T7677] macvlan2: entered allmulticast mode [ 191.709248][ T7677] bridge0: entered allmulticast mode [ 191.720085][ T7677] macvlan2: left allmulticast mode [ 191.725859][ T7677] bridge0: left allmulticast mode [ 191.832337][ T7681] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.918564][ T7562] team0: Port device team_slave_0 added [ 191.940956][ T7562] team0: Port device team_slave_1 added [ 191.959130][ T7681] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 192.140759][ T7681] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 192.201010][ T7562] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 192.219359][ T7562] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 192.335441][ T7562] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 192.370228][ T7681] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 192.417999][ T7562] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 192.440574][ T7562] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 192.493824][ T7562] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 192.516049][ T7695] netlink: 12 bytes leftover after parsing attributes in process `syz.1.644'. [ 192.665533][ T7697] xt_CT: You must specify a L4 protocol and not use inversions on it [ 192.694603][ T7681] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 192.797011][ T7699] netlink: 28 bytes leftover after parsing attributes in process `syz.1.646'. [ 192.808973][ T7681] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 192.826024][ T7681] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 192.844150][ T7562] hsr_slave_0: entered promiscuous mode [ 192.878254][ T7562] hsr_slave_1: entered promiscuous mode [ 192.890913][ T7562] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 192.909658][ T7562] Cannot create hsr debugfs directory [ 193.013615][ T7681] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 194.224593][ T7713] loop4: detected capacity change from 0 to 512 [ 194.284805][ T7713] EXT4-fs error (device loop4): ext4_orphan_get:1393: inode #15: comm syz.4.652: casefold flag without casefold feature [ 194.301904][ T7713] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.652: couldn't read orphan inode 15 (err -117) [ 194.330370][ T7713] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.370241][ T7562] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 194.385200][ T7562] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 194.399573][ T7562] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 194.427885][ T7562] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 194.486178][ T7723] netlink: 12 bytes leftover after parsing attributes in process `syz.0.656'. [ 194.532873][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.649860][ T5834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.689535][ T7562] 8021q: adding VLAN 0 to HW filter on device bond0 [ 194.753666][ T7562] 8021q: adding VLAN 0 to HW filter on device team0 [ 194.770661][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 194.777973][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 194.892341][ T65] bridge0: port 2(bridge_slave_1) entered blocking state [ 194.899702][ T65] bridge0: port 2(bridge_slave_1) entered forwarding state [ 194.944743][ T7738] loop4: detected capacity change from 0 to 2048 [ 195.013156][ T7738] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 195.037777][ T7562] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 195.051240][ T7738] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 195.084601][ T30] kauditd_printk_skb: 25 callbacks suppressed [ 195.084621][ T30] audit: type=1800 audit(1748605366.636:676): pid=7738 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.659" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 195.602121][ T7751] lo speed is unknown, defaulting to 1000 [ 196.276071][ T30] audit: type=1326 audit(1748605367.826:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7755 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 196.308079][ T30] audit: type=1326 audit(1748605367.846:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7755 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 196.332638][ T30] audit: type=1326 audit(1748605367.846:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7755 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 196.356523][ T30] audit: type=1326 audit(1748605367.846:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7755 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 196.383072][ T30] audit: type=1326 audit(1748605367.846:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7755 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 196.422538][ T30] audit: type=1326 audit(1748605367.846:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7755 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 196.448024][ T30] audit: type=1326 audit(1748605367.846:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7755 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 196.509653][ T30] audit: type=1326 audit(1748605367.846:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7755 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 196.549393][ T7562] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 196.561490][ T30] audit: type=1326 audit(1748605367.846:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7755 comm="syz.1.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 196.677351][ T7763] netlink: 12 bytes leftover after parsing attributes in process `syz.0.668'. [ 197.859558][ T5834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.201674][ T7562] veth0_vlan: entered promiscuous mode [ 198.259241][ T7562] veth1_vlan: entered promiscuous mode [ 198.493832][ T7562] veth0_macvtap: entered promiscuous mode [ 198.523632][ T7800] loop1: detected capacity change from 0 to 2048 [ 198.541500][ T7562] veth1_macvtap: entered promiscuous mode [ 198.613155][ T7800] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 198.640422][ T7562] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 198.647402][ T7800] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 198.652952][ T7562] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 198.713080][ T7562] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 198.969784][ T7562] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 198.979601][ T7562] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 198.988486][ T7562] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 199.276977][ T7812] lo speed is unknown, defaulting to 1000 [ 199.995401][ T7719] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 200.630992][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.734672][ T7819] loop4: detected capacity change from 0 to 164 [ 200.749708][ T7819] ISOFS: unable to read i-node block [ 200.809191][ T7819] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 200.881366][ T1156] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 200.913900][ T1156] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 201.054670][ T7829] loop4: detected capacity change from 0 to 1024 [ 201.069175][ T7829] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 201.081907][ T7829] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 201.109093][ T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 201.121903][ T7829] JBD2: no valid journal superblock found [ 201.129661][ T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 201.138910][ T7829] EXT4-fs (loop4): Could not load journal inode [ 201.550472][ T7841] loop2: detected capacity change from 0 to 2048 [ 201.623827][ T7841] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 201.636154][ T7841] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 201.651017][ T30] kauditd_printk_skb: 19 callbacks suppressed [ 201.651039][ T30] audit: type=1800 audit(1748605373.206:705): pid=7841 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.696" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 201.652087][ T7841] futex_wake_op: syz.2.696 tries to shift op by -1; fix this program [ 202.419438][ T7852] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 202.434145][ T5940] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 202.644597][ T7841] lo speed is unknown, defaulting to 1000 [ 202.748473][ T7856] hub 4-0:1.0: USB hub found [ 202.754400][ T7856] hub 4-0:1.0: 1 port detected [ 202.894083][ T5940] usb 1-1: config 0 has no interfaces? [ 202.928533][ T5940] usb 1-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 202.992250][ T5940] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 203.030407][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.039742][ T5940] usb 1-1: Product: syz [ 203.043956][ T5940] usb 1-1: Manufacturer: syz [ 203.052576][ T5940] usb 1-1: SerialNumber: syz [ 203.084009][ T5940] usb 1-1: config 0 descriptor?? [ 203.144808][ T7861] loop5: detected capacity change from 0 to 512 [ 203.173615][ T7861] EXT4-fs: Ignoring removed oldalloc option [ 203.267269][ T7867] netlink: 84 bytes leftover after parsing attributes in process `syz.4.704'. [ 203.362154][ T30] audit: type=1326 audit(1748605374.916:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7835 comm="syz.0.694" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x0 [ 203.384550][ C1] vkms_vblank_simulate: vblank timer overrun [ 203.418291][ T7861] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.700: Parent and EA inode have the same ino 15 [ 203.434436][ T7872] loop2: detected capacity change from 0 to 164 [ 203.454852][ T7872] ISOFS: unable to read i-node block [ 203.485670][ T7872] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 203.848444][ T30] audit: type=1326 audit(1748605375.406:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7885 comm="syz.4.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 203.915063][ T30] audit: type=1326 audit(1748605375.406:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7885 comm="syz.4.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 203.950764][ T7861] EXT4-fs error (device loop5): ext4_xattr_inode_iget:433: comm syz.5.700: Parent and EA inode have the same ino 15 [ 203.977969][ T30] audit: type=1326 audit(1748605375.406:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7885 comm="syz.4.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 204.000193][ C1] vkms_vblank_simulate: vblank timer overrun [ 204.032158][ T7861] EXT4-fs (loop5): 1 orphan inode deleted [ 204.055872][ T7861] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 204.070628][ T30] audit: type=1326 audit(1748605375.406:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7885 comm="syz.4.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 204.112820][ T30] audit: type=1326 audit(1748605375.406:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7885 comm="syz.4.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 204.284517][ T30] audit: type=1326 audit(1748605375.406:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7885 comm="syz.4.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 204.391730][ T30] audit: type=1326 audit(1748605375.406:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7885 comm="syz.4.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 204.414320][ C1] vkms_vblank_simulate: vblank timer overrun [ 204.632529][ T7562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.670407][ T30] audit: type=1326 audit(1748605375.406:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7885 comm="syz.4.711" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4d7a38e969 code=0x7ffc0000 [ 204.702578][ T5893] usb 1-1: USB disconnect, device number 4 [ 204.932394][ T7904] loop5: detected capacity change from 0 to 2048 [ 204.974637][ T7904] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 204.998275][ T7904] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 205.017749][ T7913] netlink: 148 bytes leftover after parsing attributes in process `syz.2.723'. [ 205.066581][ T7915] loop1: detected capacity change from 0 to 164 [ 205.109746][ T7915] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 205.140783][ T7915] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 205.209831][ T7915] rock: directory entry would overflow storage [ 205.236503][ T7915] rock: sig=0x4f50, size=4, remaining=3 [ 205.261006][ T7915] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 205.490888][ T7924] lo speed is unknown, defaulting to 1000 [ 206.156776][ T7923] netlink: 4 bytes leftover after parsing attributes in process `syz.0.725'. [ 206.245113][ T7930] netlink: 4 bytes leftover after parsing attributes in process `syz.0.725'. [ 206.290067][ T7562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.366993][ T7935] loop2: detected capacity change from 0 to 164 [ 206.757809][ T7952] xt_hashlimit: size too large, truncated to 1048576 [ 206.790669][ T7953] netlink: 148 bytes leftover after parsing attributes in process `syz.5.737'. [ 206.807389][ T30] kauditd_printk_skb: 5 callbacks suppressed [ 206.807410][ T30] audit: type=1326 audit(1748605378.366:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.2.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31fcd85927 code=0x7ffc0000 [ 206.850119][ T30] audit: type=1326 audit(1748605378.366:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.2.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f31fcd2ab39 code=0x7ffc0000 [ 206.928776][ T30] audit: type=1326 audit(1748605378.366:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.2.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 206.951324][ C1] vkms_vblank_simulate: vblank timer overrun [ 206.999074][ T30] audit: type=1326 audit(1748605378.366:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.2.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31fcd85927 code=0x7ffc0000 [ 207.139675][ T30] audit: type=1326 audit(1748605378.366:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.2.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f31fcd2ab39 code=0x7ffc0000 [ 207.150361][ T7960] loop5: detected capacity change from 0 to 2048 [ 207.234055][ T30] audit: type=1326 audit(1748605378.366:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.2.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31fcd85927 code=0x7ffc0000 [ 207.240274][ T7960] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 207.312858][ T7960] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 207.337807][ T30] audit: type=1326 audit(1748605378.366:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.2.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f31fcd2ab39 code=0x7ffc0000 [ 207.366541][ T30] audit: type=1326 audit(1748605378.366:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.2.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 207.389583][ T30] audit: type=1326 audit(1748605378.366:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.2.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31fcd85927 code=0x7ffc0000 [ 207.641661][ T44] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 207.662149][ T30] audit: type=1326 audit(1748605378.366:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7954 comm="syz.2.738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f31fcd2ab39 code=0x7ffc0000 [ 207.889659][ T7979] lo speed is unknown, defaulting to 1000 [ 208.542302][ T7968] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 208.681016][ T7562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.697296][ T44] usb 3-1: config 0 has no interfaces? [ 208.737270][ T44] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 208.747869][ T44] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 208.755913][ T44] usb 3-1: Product: syz [ 208.763948][ T44] usb 3-1: Manufacturer: syz [ 208.769452][ T44] usb 3-1: SerialNumber: syz [ 208.775943][ T44] usb 3-1: config 0 descriptor?? [ 208.982190][ T7989] loop5: detected capacity change from 0 to 512 [ 208.999936][ T7989] EXT4-fs: Ignoring removed nobh option [ 209.013649][ T7972] netlink: 76 bytes leftover after parsing attributes in process `syz.2.740'. [ 209.023252][ T7972] netlink: 16 bytes leftover after parsing attributes in process `syz.2.740'. [ 209.049694][ T7989] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -13 [ 209.082979][ T7993] netlink: 148 bytes leftover after parsing attributes in process `syz.1.749'. [ 209.093055][ T7989] EXT4-fs error (device loop5): ext4_clear_blocks:876: inode #13: comm syz.5.746: attempt to clear invalid blocks 2 len 1 [ 209.187830][ T7989] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 209.252511][ T7989] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.746: invalid indirect mapped block 1819239214 (level 0) [ 209.319294][ T7989] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #13: comm syz.5.746: invalid indirect mapped block 1819239214 (level 1) [ 209.430087][ T7989] EXT4-fs (loop5): 1 truncate cleaned up [ 209.445356][ T7989] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 209.874331][ T7562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 210.989356][ T5891] usb 3-1: USB disconnect, device number 8 [ 211.337713][ T8059] netlink: 24 bytes leftover after parsing attributes in process `syz.2.780'. [ 211.475342][ T8065] loop5: detected capacity change from 0 to 164 [ 211.505965][ T8065] ISOFS: unable to read i-node block [ 211.511823][ T8065] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 211.741358][ T8079] netlink: 148 bytes leftover after parsing attributes in process `syz.4.790'. [ 211.970518][ T5838] Bluetooth: hci1: command 0x0406 tx timeout [ 211.976340][ T5848] Bluetooth: hci0: command 0x0406 tx timeout [ 211.976756][ T5838] Bluetooth: hci2: command 0x0406 tx timeout [ 211.982578][ T5848] Bluetooth: hci3: command 0x0406 tx timeout [ 212.231089][ T8106] loop2: detected capacity change from 0 to 512 [ 212.255942][ T8106] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 212.295223][ T8106] EXT4-fs (loop2): 1 truncate cleaned up [ 212.329603][ T8106] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 212.405743][ T8112] xt_hashlimit: max too large, truncated to 1048576 [ 212.469914][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 212.996870][ T8137] x_tables: ip_tables: socket match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT [ 213.071885][ T8139] loop1: detected capacity change from 0 to 128 [ 213.445666][ T8139] syz.1.818: attempt to access beyond end of device [ 213.445666][ T8139] loop1: rw=2049, sector=131, nr_sectors = 1 limit=128 [ 213.650696][ T8139] Buffer I/O error on dev loop1, logical block 131, lost async page write [ 213.828271][ T8139] syz.1.818: attempt to access beyond end of device [ 213.828271][ T8139] loop1: rw=2049, sector=132, nr_sectors = 1 limit=128 [ 213.893032][ T8139] Buffer I/O error on dev loop1, logical block 132, lost async page write [ 213.906743][ T8145] loop5: detected capacity change from 0 to 512 [ 213.914743][ T8139] syz.1.818: attempt to access beyond end of device [ 213.914743][ T8139] loop1: rw=2049, sector=133, nr_sectors = 1 limit=128 [ 213.933595][ T8145] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 213.957268][ T8139] Buffer I/O error on dev loop1, logical block 133, lost async page write [ 213.969615][ T8139] syz.1.818: attempt to access beyond end of device [ 213.969615][ T8139] loop1: rw=2049, sector=134, nr_sectors = 1 limit=128 [ 213.985364][ T8139] Buffer I/O error on dev loop1, logical block 134, lost async page write [ 214.003514][ T8139] syz.1.818: attempt to access beyond end of device [ 214.003514][ T8139] loop1: rw=2049, sector=135, nr_sectors = 1 limit=128 [ 214.017488][ T8139] Buffer I/O error on dev loop1, logical block 135, lost async page write [ 214.026176][ T8139] syz.1.818: attempt to access beyond end of device [ 214.026176][ T8139] loop1: rw=2049, sector=136, nr_sectors = 1 limit=128 [ 214.040042][ T8139] Buffer I/O error on dev loop1, logical block 136, lost async page write [ 214.046811][ T8145] EXT4-fs (loop5): 1 truncate cleaned up [ 214.055954][ T8139] syz.1.818: attempt to access beyond end of device [ 214.055954][ T8139] loop1: rw=2049, sector=137, nr_sectors = 64 limit=128 [ 214.072324][ T8139] syz.1.818: attempt to access beyond end of device [ 214.072324][ T8139] loop1: rw=2049, sector=209, nr_sectors = 8 limit=128 [ 214.075657][ T8145] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 214.098768][ T8139] syz.1.818: attempt to access beyond end of device [ 214.098768][ T8139] loop1: rw=2049, sector=225, nr_sectors = 9 limit=128 [ 214.194970][ T7562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 214.270899][ T8157] netlink: 84 bytes leftover after parsing attributes in process `syz.1.824'. [ 214.552969][ T8170] loop2: detected capacity change from 0 to 512 [ 214.573239][ T8170] ext3: Unknown parameter 'context' [ 214.594597][ T5893] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 214.643648][ T8170] loop2: detected capacity change from 0 to 164 [ 214.667840][ T8170] iso9660: Unknown parameter 'äptõäùáeÊøæùŸ?®Ò½‹öÕÏÿòG^~5' [ 214.682490][ T5892] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 214.692624][ T5892] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 214.706049][ T5892] hid-generic 0000:0004:0000.0002: unknown main item tag 0x0 [ 214.720854][ T5892] hid-generic 0000:0004:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz1 [ 214.777216][ T5893] usb 6-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 214.793033][ T5893] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 214.812513][ T5893] usb 6-1: Product: syz [ 214.821492][ T5893] usb 6-1: Manufacturer: syz [ 214.834776][ T5893] usb 6-1: SerialNumber: syz [ 214.861449][ T5893] usb 6-1: config 0 descriptor?? [ 215.156804][ T8185] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 215.914181][ T8185] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.012549][ T30] kauditd_printk_skb: 34 callbacks suppressed [ 216.012570][ T30] audit: type=1326 audit(1748605387.566:764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.2.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 216.068783][ T5893] Process accounting resumed [ 216.080329][ T30] audit: type=1326 audit(1748605387.596:765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.2.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 216.190030][ T8185] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.228797][ T30] audit: type=1326 audit(1748605387.596:766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.2.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 216.255107][ T30] audit: type=1326 audit(1748605387.596:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.2.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 216.281101][ T30] audit: type=1326 audit(1748605387.596:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.2.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 216.307957][ T30] audit: type=1326 audit(1748605387.596:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.2.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 216.337411][ T30] audit: type=1326 audit(1748605387.596:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.2.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 216.377869][ T8185] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 216.399584][ T30] audit: type=1326 audit(1748605387.606:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.2.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 216.425662][ T30] audit: type=1326 audit(1748605387.606:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.2.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 216.466926][ T8202] netlink: 84 bytes leftover after parsing attributes in process `syz.2.838'. [ 216.582191][ T30] audit: type=1326 audit(1748605387.606:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.2.836" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 216.666171][ T8185] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.691632][ T8185] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.715444][ T8185] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 216.773208][ T8185] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 218.225898][ T8225] loop4: detected capacity change from 0 to 1024 [ 218.287705][ T8225] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.365704][ T8162] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 218.478130][ T5892] usb 6-1: USB disconnect, device number 2 [ 218.581470][ T5834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.097191][ T8248] geneve0: entered allmulticast mode [ 219.299631][ T8252] loop2: detected capacity change from 0 to 128 [ 219.331886][ T8252] FAT-fs (loop2): Directory bread(block 162) failed [ 219.358220][ T8252] FAT-fs (loop2): Directory bread(block 163) failed [ 219.388083][ T8252] FAT-fs (loop2): Directory bread(block 164) failed [ 219.394813][ T8252] FAT-fs (loop2): Directory bread(block 165) failed [ 219.448626][ T8252] FAT-fs (loop2): Directory bread(block 166) failed [ 219.650119][ T8252] FAT-fs (loop2): Directory bread(block 167) failed [ 219.823227][ T8252] FAT-fs (loop2): Directory bread(block 168) failed [ 219.953734][ T8252] FAT-fs (loop2): Directory bread(block 169) failed [ 220.133515][ T8252] FAT-fs (loop2): Directory bread(block 162) failed [ 220.158048][ T8252] FAT-fs (loop2): Directory bread(block 163) failed [ 220.189043][ T8252] syz.2.860: attempt to access beyond end of device [ 220.189043][ T8252] loop2: rw=3, sector=226, nr_sectors = 6 limit=128 [ 220.225971][ T8260] netlink: 224 bytes leftover after parsing attributes in process `+}[@'. [ 220.256527][ T8252] syz.2.860: attempt to access beyond end of device [ 220.256527][ T8252] loop2: rw=2051, sector=232, nr_sectors = 2 limit=128 [ 220.269063][ T8260] ksmbd: Unknown IPC event: 3, ignore. [ 220.488182][ T5940] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 220.507713][ T8268] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 220.507713][ T8268] program syz.2.867 not setting count and/or reply_len properly [ 220.662215][ T5940] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 220.695275][ T5940] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 220.712281][ T5940] usb 1-1: Product: syz [ 220.716752][ T5940] usb 1-1: Manufacturer: syz [ 220.723055][ T5940] usb 1-1: SerialNumber: syz [ 220.742358][ T5940] usb 1-1: config 0 descriptor?? [ 220.817897][ T8276] netlink: 84 bytes leftover after parsing attributes in process `syz.5.871'. [ 221.496657][ T8291] loop5: detected capacity change from 0 to 256 [ 222.821983][ T8300] lo speed is unknown, defaulting to 1000 [ 223.778689][ T8280] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 223.792531][ T8309] netlink: 84 bytes leftover after parsing attributes in process `syz.4.882'. [ 223.826469][ T5892] usb 1-1: USB disconnect, device number 5 [ 224.447932][ T8326] netlink: 48 bytes leftover after parsing attributes in process `syz.4.890'. [ 224.458947][ T8327] ieee802154 phy0 wpan0: encryption failed: -22 [ 224.496365][ T8326] netlink: 48 bytes leftover after parsing attributes in process `syz.4.890'. [ 224.519729][ T8326] netlink: 48 bytes leftover after parsing attributes in process `syz.4.890'. [ 224.847215][ T8338] netlink: 84 bytes leftover after parsing attributes in process `syz.4.897'. [ 225.476022][ T8362] hub 8-0:1.0: USB hub found [ 225.482333][ T8362] hub 8-0:1.0: 1 port detected [ 227.544797][ T30] kauditd_printk_skb: 209 callbacks suppressed [ 227.544817][ T30] audit: type=1326 audit(1748605399.096:983): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8374 comm="syz.4.914" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4d7a38e969 code=0x0 [ 228.114016][ T8393] loop5: detected capacity change from 0 to 512 [ 228.177627][ T8393] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 228.187689][ T8393] EXT4-fs (loop5): orphan cleanup on readonly fs [ 228.204116][ T8393] Quota error (device loop5): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 228.215444][ T8393] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 228.233663][ T8393] EXT4-fs (loop5): Cannot turn on quotas: error -117 [ 228.251328][ T8393] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.912: bg 0: block 40: padding at end of block bitmap is not set [ 228.274390][ T8393] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 228.287544][ T8393] EXT4-fs (loop5): 1 truncate cleaned up [ 228.304302][ T8393] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 228.466620][ T8393] EXT4-fs error (device loop5): ext4_lookup:1787: inode #15: comm syz.5.912: iget: bad i_size value: 360287970189639690 [ 228.497438][ T8393] EXT4-fs error (device loop5): ext4_lookup:1787: inode #15: comm syz.5.912: iget: bad i_size value: 360287970189639690 [ 228.556183][ T8390] EXT4-fs error (device loop5): ext4_get_link:106: inode #16: comm syz.5.912: bad symlink. [ 228.612754][ T30] audit: type=1326 audit(1748605400.166:984): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8396 comm="syz.1.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 228.681993][ T30] audit: type=1326 audit(1748605400.166:985): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8396 comm="syz.1.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 228.748326][ T30] audit: type=1326 audit(1748605400.166:986): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8396 comm="syz.1.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 228.844691][ T7562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.854087][ T30] audit: type=1326 audit(1748605400.166:987): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8396 comm="syz.1.919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 229.223017][ T8423] loop4: detected capacity change from 0 to 164 [ 229.235457][ T8423] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 229.285666][ T8423] loop4: detected capacity change from 0 to 512 [ 229.334007][ T8423] EXT4-fs: Ignoring removed oldalloc option [ 229.387247][ T8423] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.932: Parent and EA inode have the same ino 15 [ 229.392916][ T30] audit: type=1326 audit(1748605400.946:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8421 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4806185927 code=0x7ffc0000 [ 229.430682][ T30] audit: type=1326 audit(1748605400.946:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8421 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f480612ab39 code=0x7ffc0000 [ 229.456056][ T30] audit: type=1326 audit(1748605400.946:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8421 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 229.478531][ T30] audit: type=1326 audit(1748605400.946:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8421 comm="syz.1.931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4806185927 code=0x7ffc0000 [ 229.486547][ T8423] EXT4-fs (loop4): Remounting filesystem read-only [ 229.522131][ T8423] EXT4-fs warning (device loop4): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 229.541775][ T8423] EXT4-fs (loop4): 1 orphan inode deleted [ 229.551560][ T8423] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 229.569566][ T8423] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.855674][ T8441] loop2: detected capacity change from 0 to 512 [ 229.886531][ T8441] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 229.922359][ T8443] loop4: detected capacity change from 0 to 512 [ 229.964891][ T8441] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 229.980915][ T8441] ext4 filesystem being mounted at /197/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 230.012835][ T8443] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 230.345671][ T8452] lo speed is unknown, defaulting to 1000 [ 230.937434][ T8443] ext4 filesystem being mounted at /186/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 231.071515][ T8443] EXT4-fs error (device loop4): ext4_readdir:264: inode #2: block 3: comm syz.4.939: path (unknown): bad entry in directory: directory entry overrun - offset=0, inode=2, rec_len=2060, size=2048 fake=1 [ 231.138494][ T8443] EXT4-fs (loop4): Remounting filesystem read-only [ 231.249104][ T8458] loop5: detected capacity change from 0 to 512 [ 231.262349][ T8458] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 231.271782][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.273426][ T8461] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6) [ 231.288036][ T8461] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 231.312999][ T8458] EXT4-fs (loop5): 1 truncate cleaned up [ 231.332329][ T8458] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 231.354450][ T8461] vhci_hcd vhci_hcd.0: Device attached [ 231.365242][ T8466] netlink: 4 bytes leftover after parsing attributes in process `syz.1.943'. [ 231.389343][ T8466] vcan0: entered promiscuous mode [ 231.421167][ T8466] vcan0: entered allmulticast mode [ 231.437900][ T8458] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 231.446711][ T8463] vhci_hcd: connection closed [ 231.455489][ T65] vhci_hcd: stop threads [ 231.459943][ T8458] team0: Device ipvlan2 is already an upper device of the team interface [ 231.462404][ T65] vhci_hcd: release socket [ 231.498664][ T65] vhci_hcd: disconnect device [ 231.521055][ T5834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.629691][ T7562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.660253][ T5940] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 231.838256][ T8479] loop4: detected capacity change from 0 to 128 [ 232.900164][ T8505] loop2: detected capacity change from 0 to 2048 [ 232.935521][ T8505] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 232.961907][ T8506] loop1: detected capacity change from 0 to 512 [ 232.972189][ T8505] ext4 filesystem being mounted at /202/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 232.984020][ T8508] loop5: detected capacity change from 0 to 1024 [ 232.994374][ T8506] EXT4-fs: Ignoring removed orlov option [ 233.002418][ T30] kauditd_printk_skb: 199 callbacks suppressed [ 233.002467][ T30] audit: type=1326 audit(1748605404.556:1191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8511 comm="syz.4.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d7a385927 code=0x7ffc0000 [ 233.034215][ T30] audit: type=1326 audit(1748605404.556:1192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8511 comm="syz.4.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d7a32ab39 code=0x7ffc0000 [ 233.058575][ T30] audit: type=1326 audit(1748605404.556:1193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8511 comm="syz.4.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d7a385927 code=0x7ffc0000 [ 233.081539][ T8506] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 233.081911][ T30] audit: type=1326 audit(1748605404.556:1194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8511 comm="syz.4.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d7a32ab39 code=0x7ffc0000 [ 233.118134][ T30] audit: type=1326 audit(1748605404.556:1195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8511 comm="syz.4.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d7a385927 code=0x7ffc0000 [ 233.141734][ T30] audit: type=1326 audit(1748605404.556:1196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8511 comm="syz.4.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d7a32ab39 code=0x7ffc0000 [ 233.164926][ T30] audit: type=1326 audit(1748605404.556:1197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8511 comm="syz.4.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d7a385927 code=0x7ffc0000 [ 233.178888][ T8515] futex_wake_op: syz.2.959 tries to shift op by -1; fix this program [ 233.187898][ T30] audit: type=1326 audit(1748605404.556:1198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8511 comm="syz.4.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d7a32ab39 code=0x7ffc0000 [ 233.219220][ T30] audit: type=1326 audit(1748605404.556:1199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8511 comm="syz.4.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4d7a385927 code=0x7ffc0000 [ 233.241988][ T30] audit: type=1326 audit(1748605404.556:1200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8511 comm="syz.4.962" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4d7a32ab39 code=0x7ffc0000 [ 233.349198][ T8508] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 233.422063][ T8506] EXT4-fs (loop1): orphan cleanup on readonly fs [ 233.439354][ T8506] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.960: bg 0: block 248: padding at end of block bitmap is not set [ 233.472622][ T8515] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.959: bg 0: block 345: padding at end of block bitmap is not set [ 233.479043][ T8505] lo speed is unknown, defaulting to 1000 [ 233.492176][ T8506] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.960: Failed to acquire dquot type 1 [ 233.509438][ T8506] EXT4-fs (loop1): 1 truncate cleaned up [ 233.551587][ T8506] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 233.594230][ T7562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 233.681951][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.241704][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.517330][ T8548] netlink: 16 bytes leftover after parsing attributes in process `syz.5.976'. [ 234.666140][ T8553] ip6tnl1: entered promiscuous mode [ 234.697249][ T8553] ip6tnl1: entered allmulticast mode [ 234.719492][ T8553] team0: Device ip6tnl1 is of different type [ 234.730145][ T8481] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 235.159402][ T8569] netlink: 72 bytes leftover after parsing attributes in process `syz.5.983'. [ 235.262559][ T8571] loop0: detected capacity change from 0 to 164 [ 235.307390][ T8571] ISOFS: unable to read i-node block [ 235.312809][ T8571] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 235.540997][ T8579] loop2: detected capacity change from 0 to 256 [ 235.560258][ T8579] futex_wake_op: syz.2.987 tries to shift op by -1; fix this program [ 235.610392][ T8580] lo speed is unknown, defaulting to 1000 [ 235.743662][ T8587] loop0: detected capacity change from 0 to 2048 [ 235.817754][ T8587] EXT4-fs (loop0): failed to initialize system zone (-117) [ 235.836589][ T8587] EXT4-fs (loop0): mount failed [ 235.882367][ T8583] lo speed is unknown, defaulting to 1000 [ 235.907527][ T8587] loop0: detected capacity change from 0 to 164 [ 235.947172][ T5894] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 236.051649][ T8598] sd 0:0:1:0: device reset [ 236.141596][ T5894] usb 2-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 236.152117][ T5894] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 236.166323][ T5894] usb 2-1: Product: syz [ 236.172260][ T5894] usb 2-1: Manufacturer: syz [ 236.198652][ T5894] usb 2-1: SerialNumber: syz [ 236.220214][ T5894] usb 2-1: config 0 descriptor?? [ 236.337125][ T8598] loop4: detected capacity change from 0 to 1764 [ 236.366124][ T8598] iso9660: Unknown parameter 'mapacorn' [ 236.390612][ T8601] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 236.459295][ T8598] netlink: 8 bytes leftover after parsing attributes in process `syz.4.994'. [ 238.415814][ T8614] lo speed is unknown, defaulting to 1000 [ 238.541252][ T30] kauditd_printk_skb: 264 callbacks suppressed [ 238.541271][ T30] audit: type=1800 audit(1748605410.096:1463): pid=8598 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.994" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0 [ 238.598012][ T8598] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12 [ 238.666440][ T8598] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12 [ 238.828822][ T8598] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 239.532033][ T8638] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1009'. [ 239.543324][ T8577] syz.2.987: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 239.550318][ T8638] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1009'. [ 239.583992][ T8577] CPU: 0 UID: 0 PID: 8577 Comm: syz.2.987 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) [ 239.584026][ T8577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 239.584039][ T8577] Call Trace: [ 239.584047][ T8577] [ 239.584057][ T8577] dump_stack_lvl+0x189/0x250 [ 239.584089][ T8577] ? __pfx_dump_stack_lvl+0x10/0x10 [ 239.584108][ T8577] ? __pfx__printk+0x10/0x10 [ 239.584133][ T8577] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 239.584158][ T8577] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 239.584184][ T8577] ? cpuset_print_current_mems_allowed+0x2ee/0x360 [ 239.584212][ T8577] warn_alloc+0x214/0x310 [ 239.584247][ T8577] ? __pfx_warn_alloc+0x10/0x10 [ 239.584284][ T8577] ? __get_vm_area_node+0x28f/0x300 [ 239.584309][ T8577] ? hash_netiface_create+0x358/0xfe0 [ 239.584344][ T8577] __vmalloc_node_range_noprof+0x67e/0x12f0 [ 239.584406][ T8577] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 239.584431][ T8577] ? hash_netiface_create+0x358/0xfe0 [ 239.584462][ T8577] ? __get_vm_area_node+0x28f/0x300 [ 239.584486][ T8577] ? hash_netiface_create+0x358/0xfe0 [ 239.584516][ T8577] __vmalloc_node_range_noprof+0x56a/0x12f0 [ 239.584542][ T8577] ? hash_netiface_create+0x358/0xfe0 [ 239.584568][ T8577] ? do_syscall_64+0xfa/0x3b0 [ 239.584603][ T8577] ? __pfx___alloc_frozen_pages_noprof+0x10/0x10 [ 239.584647][ T8577] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 239.584679][ T8577] ? rcu_is_watching+0x15/0xb0 [ 239.584701][ T8577] ? hash_netiface_create+0x358/0xfe0 [ 239.584730][ T8577] ? hash_netiface_create+0x358/0xfe0 [ 239.584756][ T8577] __kvmalloc_node_noprof+0x3b8/0x5f0 [ 239.584782][ T8577] ? hash_netiface_create+0x358/0xfe0 [ 239.584811][ T8577] ? hash_netiface_create+0x2fe/0xfe0 [ 239.584845][ T8577] hash_netiface_create+0x358/0xfe0 [ 239.584894][ T8577] ? __nla_parse+0x40/0x60 [ 239.584924][ T8577] ? __pfx_hash_netiface_create+0x10/0x10 [ 239.584955][ T8577] ip_set_create+0xa97/0x1940 [ 239.584989][ T8577] ? ip_set_create+0x4a2/0x1940 [ 239.585040][ T8577] ? __pfx_ip_set_create+0x10/0x10 [ 239.585112][ T8577] nfnetlink_rcv_msg+0xb4a/0x1130 [ 239.585145][ T8577] ? nfnetlink_rcv_msg+0x20d/0x1130 [ 239.585198][ T8577] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 239.585224][ T8577] ? kasan_save_free_info+0x46/0x50 [ 239.585313][ T8577] netlink_rcv_skb+0x208/0x470 [ 239.585340][ T8577] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 239.585372][ T8577] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 239.585410][ T8577] ? bpf_lsm_capable+0x9/0x20 [ 239.585431][ T8577] ? security_capable+0x7e/0x2e0 [ 239.585462][ T8577] nfnetlink_rcv+0x26a/0x2520 [ 239.585496][ T8577] ? __dev_queue_xmit+0x1cd7/0x3a70 [ 239.585536][ T8577] ? kmem_cache_alloc_noprof+0x1c1/0x3c0 [ 239.585563][ T8577] ? __dev_queue_xmit+0x27e/0x3a70 [ 239.585591][ T8577] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.585624][ T8577] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 239.585653][ T8577] ? __pfx___dev_queue_xmit+0x10/0x10 [ 239.585698][ T8577] ? ref_tracker_free+0x63a/0x7d0 [ 239.585723][ T8577] ? __copy_skb_header+0xa7/0x550 [ 239.585752][ T8577] ? __pfx_ref_tracker_free+0x10/0x10 [ 239.585778][ T8577] ? __skb_clone+0x63/0x7a0 [ 239.585809][ T8577] ? __skb_clone+0x483/0x7a0 [ 239.585844][ T8577] ? skb_clone+0x246/0x3a0 [ 239.585883][ T8577] ? __netlink_deliver_tap+0x807/0x850 [ 239.585906][ T8577] ? netlink_deliver_tap+0x2e/0x1b0 [ 239.585935][ T8577] ? netlink_deliver_tap+0x2e/0x1b0 [ 239.585958][ T8577] ? netlink_deliver_tap+0x2e/0x1b0 [ 239.585989][ T8577] netlink_unicast+0x75b/0x8d0 [ 239.586023][ T8577] netlink_sendmsg+0x805/0xb30 [ 239.586058][ T8577] ? __pfx_netlink_sendmsg+0x10/0x10 [ 239.586087][ T8577] ? aa_sock_msg_perm+0xf1/0x1d0 [ 239.586112][ T8577] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 239.586139][ T8577] ? __pfx_netlink_sendmsg+0x10/0x10 [ 239.586164][ T8577] __sock_sendmsg+0x219/0x270 [ 239.586199][ T8577] ____sys_sendmsg+0x505/0x830 [ 239.586231][ T8577] ? __pfx_____sys_sendmsg+0x10/0x10 [ 239.586266][ T8577] ? import_iovec+0x74/0xa0 [ 239.586291][ T8577] ___sys_sendmsg+0x21f/0x2a0 [ 239.586318][ T8577] ? __pfx____sys_sendmsg+0x10/0x10 [ 239.586384][ T8577] ? __fget_files+0x2a/0x420 [ 239.586408][ T8577] ? __fget_files+0x3a0/0x420 [ 239.586444][ T8577] __x64_sys_sendmsg+0x19b/0x260 [ 239.586469][ T8577] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 239.586506][ T8577] ? rcu_is_watching+0x15/0xb0 [ 239.586531][ T8577] ? do_syscall_64+0xbe/0x3b0 [ 239.586553][ T8577] do_syscall_64+0xfa/0x3b0 [ 239.586569][ T8577] ? lockdep_hardirqs_on+0x9c/0x150 [ 239.586597][ T8577] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.586616][ T8577] ? clear_bhb_loop+0x60/0xb0 [ 239.586642][ T8577] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 239.586660][ T8577] RIP: 0033:0x7f31fcd8e969 [ 239.586679][ T8577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 239.586697][ T8577] RSP: 002b:00007f31fdb92038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 239.586721][ T8577] RAX: ffffffffffffffda RBX: 00007f31fcfb5fa0 RCX: 00007f31fcd8e969 [ 239.586737][ T8577] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000006 [ 239.586751][ T8577] RBP: 00007f31fce10ab1 R08: 0000000000000000 R09: 0000000000000000 [ 239.586763][ T8577] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 239.586775][ T8577] R13: 0000000000000000 R14: 00007f31fcfb5fa0 R15: 00007ffc6b759b58 [ 239.586808][ T8577] [ 240.122188][ T8577] Mem-Info: [ 240.125405][ T8577] active_anon:7423 inactive_anon:0 isolated_anon:0 [ 240.125405][ T8577] active_file:1523 inactive_file:40047 isolated_file:0 [ 240.125405][ T8577] unevictable:768 dirty:176 writeback:0 [ 240.125405][ T8577] slab_reclaimable:10842 slab_unreclaimable:95877 [ 240.125405][ T8577] mapped:34351 shmem:4377 pagetables:1168 [ 240.125405][ T8577] sec_pagetables:0 bounce:0 [ 240.125405][ T8577] kernel_misc_reclaimable:0 [ 240.125405][ T8577] free:1293054 free_pcp:22825 free_cma:0 [ 240.271083][ T8577] Node 0 active_anon:29532kB inactive_anon:0kB active_file:6092kB inactive_file:160000kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:137456kB dirty:748kB writeback:0kB shmem:16024kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10540kB pagetables:4564kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 240.317546][ T8646] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1014'. [ 240.320570][ T8577] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:156kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 240.358491][ T8577] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 240.388864][ T8577] lowmem_reserve[]: 0 2501 2502 2502 2502 [ 240.391906][ T8646] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1014'. [ 240.394905][ T8577] Node 0 DMA32 free:1253108kB boost:0kB min:34264kB low:42828kB high:51392kB reserved_highatomic:0KB free_highatomic:0KB active_anon:29484kB inactive_anon:0kB active_file:6092kB inactive_file:158172kB unevictable:1536kB writepending:748kB present:3129332kB managed:2561044kB mlocked:0kB bounce:0kB free_pcp:72132kB local_pcp:41832kB free_cma:0kB [ 240.437751][ T8577] lowmem_reserve[]: 0 0 1 1 1 [ 240.442559][ T8577] Node 0 Normal free:16kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1828kB unevictable:0kB writepending:0kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 240.472166][ T8577] lowmem_reserve[]: 0 0 0 0 0 [ 240.477019][ T8577] Node 1 Normal free:3903824kB boost:0kB min:55612kB low:69512kB high:83412kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:18776kB local_pcp:11232kB free_cma:0kB [ 240.509703][ T8577] lowmem_reserve[]: 0 0 0 0 0 [ 240.514478][ T8577] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 240.527444][ T8577] Node 0 DMA32: 1*4kB (M) 0*8kB 7*16kB (UME) 22*32kB (ME) 9*64kB (ME) 3*128kB (E) 2*256kB (UM) 1*512kB (U) 3*1024kB (UME) 3*2048kB (UME) 303*4096kB (M) = 1253108kB [ 240.544224][ T8577] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 240.556475][ T8577] Node 1 Normal: 202*4kB (UME) 57*8kB (UE) 44*16kB (UE) 157*32kB (UE) 44*64kB (UME) 6*128kB (UE) 6*256kB (UME) 3*512kB (UM) 3*1024kB (UME) 2*2048kB (UE) 948*4096kB (M) = 3903824kB [ 240.574620][ T8577] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 240.585533][ T8577] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 240.594913][ T8577] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 240.604625][ T8577] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 240.617410][ T8577] 45828 total pagecache pages [ 240.622152][ T8577] 0 pages in swap cache [ 240.626393][ T8577] Free swap = 124996kB [ 240.630600][ T8577] Total swap = 124996kB [ 240.634791][ T8577] 2097051 pages RAM [ 240.638706][ T8577] 0 pages HighMem/MovableOnly [ 240.646395][ T8577] 424684 pages reserved [ 240.650621][ T8577] 0 pages cma reserved [ 240.669539][ T8588] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 240.699438][ T5893] usb 2-1: USB disconnect, device number 10 [ 240.920184][ T8659] program syz.0.1017 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 242.497880][ T8681] loop1: detected capacity change from 0 to 8192 [ 242.560636][ T8688] futex_wake_op: syz.0.1032 tries to shift op by -1; fix this program [ 242.638930][ T8686] loop1: p1 p2 p3 < > p4 < p5 p6 > [ 242.659019][ T8686] loop1: partition table partially beyond EOD, truncated [ 242.679314][ T8686] loop1: p1 start 67108864 is beyond EOD, truncated [ 242.686149][ T8686] loop1: p2 size 61546 extends beyond EOD, truncated [ 242.734296][ T8686] loop1: p3 start 100859904 is beyond EOD, truncated [ 242.776112][ T8686] loop1: p5 start 67108864 is beyond EOD, truncated [ 242.856369][ T8686] loop1: p6 size 61546 extends beyond EOD, truncated [ 243.004892][ T8681] loop1: p1 p2 p3 < > p4 < p5 p6 > [ 243.059665][ T8681] loop1: partition table partially beyond EOD, truncated [ 243.202288][ T8681] loop1: p1 start 67108864 is beyond EOD, truncated [ 243.336446][ T8681] loop1: p2 size 61546 extends beyond EOD, truncated [ 243.593993][ T8681] loop1: p3 start 100859904 is beyond EOD, truncated [ 243.622627][ T8681] loop1: p5 start 67108864 is beyond EOD, truncated [ 243.639856][ T8681] loop1: p6 size 61546 extends beyond EOD, truncated [ 243.905530][ T8697] loop0: detected capacity change from 0 to 2048 [ 243.969248][ T8697] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 243.998218][ T8697] ext4 filesystem being mounted at /244/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 244.057963][ T8697] futex_wake_op: syz.0.1035 tries to shift op by -1; fix this program [ 244.288611][ T30] audit: type=1800 audit(1748605415.606:1464): pid=8697 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1035" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 244.504855][ T8706] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1035: bg 0: block 345: padding at end of block bitmap is not set [ 244.969723][ T8697] lo speed is unknown, defaulting to 1000 [ 244.990297][ T8716] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1040'. [ 245.019577][ T8716] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1040'. [ 245.409770][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 245.525007][ T8730] loop0: detected capacity change from 0 to 164 [ 245.719291][ T8736] xt_hashlimit: max too large, truncated to 1048576 [ 245.807742][ T30] audit: type=1326 audit(1748605417.356:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.2.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 245.880627][ T30] audit: type=1326 audit(1748605417.356:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.2.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 246.051807][ T8745] loop5: detected capacity change from 0 to 128 [ 246.079375][ T8746] sd 0:0:1:0: device reset [ 246.084022][ T30] audit: type=1326 audit(1748605417.356:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8739 comm="syz.2.1050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 246.147426][ T30] audit: type=1326 audit(1748605417.616:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.1053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 246.220486][ T30] audit: type=1326 audit(1748605417.616:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.1053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 246.614256][ T30] audit: type=1326 audit(1748605417.636:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.1053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f31fcd8d2d0 code=0x7ffc0000 [ 246.823575][ T8746] loop2: detected capacity change from 0 to 1764 [ 246.858473][ T8746] iso9660: Unknown parameter 'mapacorn' [ 246.915544][ T30] audit: type=1326 audit(1748605417.636:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.1053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 246.984706][ T8746] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1053'. [ 247.066494][ T30] audit: type=1326 audit(1748605417.636:1472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.1053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 247.136360][ T30] audit: type=1326 audit(1748605417.696:1473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.1053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 247.339695][ T8761] loop1: detected capacity change from 0 to 1024 [ 247.371536][ T8746] syz.2.1053 (8746) used greatest stack depth: 16920 bytes left [ 247.398990][ T8761] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 247.456229][ T8761] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 247.474770][ T8761] EXT4-fs (loop1): orphan cleanup on readonly fs [ 247.568532][ T8761] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 247.603427][ T8761] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 247.694602][ T8761] EXT4-fs error (device loop1): ext4_free_blocks:6587: comm syz.1.1059: Freeing blocks not in datazone - block = 0, count = 4096 [ 247.722363][ T8761] EXT4-fs (loop1): Remounting filesystem read-only [ 247.736560][ T8761] EXT4-fs (loop1): 1 orphan inode deleted [ 247.744656][ T8761] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 247.759773][ T8745] wireguard0: entered promiscuous mode [ 247.766204][ T8745] wireguard0: entered allmulticast mode [ 247.841096][ T8782] loop0: detected capacity change from 0 to 164 [ 247.886805][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 247.918590][ T8782] rock: directory entry would overflow storage [ 247.924831][ T8782] rock: sig=0x66, size=4, remaining=3 [ 248.001857][ T8782] rock: directory entry would overflow storage [ 248.047094][ T8782] rock: sig=0x66, size=4, remaining=3 [ 248.057694][ T8790] 9pnet_fd: Insufficient options for proto=fd [ 248.313274][ T8799] loop0: detected capacity change from 0 to 2048 [ 248.386690][ T8799] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 248.399731][ T8799] ext4 filesystem being mounted at /253/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 248.422391][ T8799] futex_wake_op: syz.0.1075 tries to shift op by -1; fix this program [ 248.668973][ T8810] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 248.727607][ T8799] lo speed is unknown, defaulting to 1000 [ 248.826011][ T8816] lo speed is unknown, defaulting to 1000 [ 249.466928][ T8813] loop5: detected capacity change from 0 to 164 [ 249.511114][ T5832] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 249.532278][ T8813] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 249.591687][ T8813] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 249.633368][ T8813] Symlink component flag not implemented [ 249.639261][ T8813] Symlink component flag not implemented [ 249.645127][ T8813] Symlink component flag not implemented (7) [ 249.651295][ T8813] Symlink component flag not implemented (116) [ 249.892771][ T8831] loop1: detected capacity change from 0 to 2048 [ 250.065589][ T8831] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 250.123294][ T30] kauditd_printk_skb: 61 callbacks suppressed [ 250.123318][ T30] audit: type=1326 audit(1748605421.646:1535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.1.1087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 250.188901][ T30] audit: type=1326 audit(1748605421.646:1536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.1.1087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 250.239312][ T8847] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 250.256966][ T30] audit: type=1326 audit(1748605421.646:1537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.1.1087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 250.279822][ T30] audit: type=1326 audit(1748605421.646:1538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.1.1087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 250.302653][ T30] audit: type=1326 audit(1748605421.646:1539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.1.1087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 250.328624][ T30] audit: type=1326 audit(1748605421.646:1540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.1.1087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 250.351960][ T30] audit: type=1326 audit(1748605421.656:1541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.1.1087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 250.374736][ T30] audit: type=1326 audit(1748605421.656:1542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.1.1087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 250.397471][ T30] audit: type=1326 audit(1748605421.656:1543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.1.1087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f480618e969 code=0x7ffc0000 [ 250.430170][ T30] audit: type=1326 audit(1748605421.656:1544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8828 comm="syz.1.1087" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4806185927 code=0x7ffc0000 [ 250.624973][ T8857] loop4: detected capacity change from 0 to 2048 [ 250.628015][ T8859] netlink: 'syz.5.1094': attribute type 4 has an invalid length. [ 250.671231][ T8857] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 250.723010][ T8859] netlink: 'syz.5.1094': attribute type 4 has an invalid length. [ 250.729409][ T8857] ext4 filesystem being mounted at /218/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 250.750331][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 250.781880][ T8857] futex_wake_op: syz.4.1093 tries to shift op by -1; fix this program [ 251.049284][ T8857] lo speed is unknown, defaulting to 1000 [ 251.097348][ T8868] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1093: bg 0: block 345: padding at end of block bitmap is not set [ 251.320461][ T5834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.409864][ T8878] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 251.801484][ T8895] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1108'. [ 251.807825][ T5940] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 251.810873][ T8893] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 251.864578][ T8895] vlan3: entered allmulticast mode [ 251.887514][ T8895] dummy0: entered allmulticast mode [ 251.969255][ T5940] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 251.983577][ T5940] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 251.999342][ T5940] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 252.009490][ T5940] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 252.033617][ T5940] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 252.051922][ T5940] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 252.076609][ T5940] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 252.086017][ T5940] usb 3-1: Product: syz [ 252.093226][ T5940] usb 3-1: Manufacturer: syz [ 252.111140][ T5940] cdc_wdm 3-1:1.0: skipping garbage [ 252.116624][ T5940] cdc_wdm 3-1:1.0: skipping garbage [ 252.124961][ T5940] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 252.131844][ T5940] cdc_wdm 3-1:1.0: Unknown control protocol [ 253.467902][ T8933] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8) [ 253.474541][ T8933] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 253.520356][ T8933] vhci_hcd vhci_hcd.0: Device attached [ 253.703046][ T5940] vhci_hcd: vhci_device speed not set [ 253.766371][ T5940] usb 41-1: new full-speed USB device number 2 using vhci_hcd [ 253.958134][ T8941] loop5: detected capacity change from 0 to 2048 [ 253.994685][ T8941] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 254.287821][ T8934] vhci_hcd: connection reset by peer [ 254.301881][ T49] vhci_hcd: stop threads [ 254.314938][ T49] vhci_hcd: release socket [ 254.325084][ T8941] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 254.362509][ T49] vhci_hcd: disconnect device [ 254.375107][ T8941] EXT4-fs (loop5): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 17 with error 28 [ 254.389397][ T8941] EXT4-fs (loop5): This should not happen!! Data will be lost [ 254.389397][ T8941] [ 254.401124][ T8941] EXT4-fs (loop5): Total free blocks count 0 [ 254.431513][ T8941] EXT4-fs (loop5): Free/Dirty block details [ 254.439383][ T8941] EXT4-fs (loop5): free_blocks=66060288 [ 254.446532][ T8941] EXT4-fs (loop5): dirty_blocks=32 [ 254.451857][ T8941] EXT4-fs (loop5): Block reservation details [ 254.458217][ T8941] EXT4-fs (loop5): i_reserved_data_blocks=2 [ 254.828524][ T7562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 255.091193][ T5894] usb 3-1: USB disconnect, device number 9 [ 255.514141][ T8965] loop4: detected capacity change from 0 to 1024 [ 255.543709][ T8965] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 255.570437][ T8965] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 255.590057][ T8965] JBD2: no valid journal superblock found [ 255.609759][ T8965] EXT4-fs (loop4): Could not load journal inode [ 255.810305][ T8981] usb usb1: usbfs: process 8981 (syz.2.1142) did not claim interface 0 before use [ 256.039710][ T1305] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.206620][ T9000] loop1: detected capacity change from 0 to 128 [ 256.215288][ T9000] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 256.237130][ T9000] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 257.004509][ T65] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 257.856918][ T5894] usb 6-1: new low-speed USB device number 3 using dummy_hcd [ 258.036406][ T5894] usb 6-1: device descriptor read/64, error -71 [ 258.047431][ T30] kauditd_printk_skb: 133 callbacks suppressed [ 258.047450][ T30] audit: type=1326 audit(1748605429.606:1678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.2.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31fcd85927 code=0x7ffc0000 [ 258.083539][ T30] audit: type=1326 audit(1748605429.636:1679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.2.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f31fcd2ab39 code=0x7ffc0000 [ 258.113017][ T30] audit: type=1326 audit(1748605429.636:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.2.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 258.143705][ T30] audit: type=1326 audit(1748605429.636:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.2.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31fcd85927 code=0x7ffc0000 [ 258.175020][ T30] audit: type=1326 audit(1748605429.636:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.2.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f31fcd2ab39 code=0x7ffc0000 [ 258.230832][ T30] audit: type=1326 audit(1748605429.636:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.2.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 258.256051][ T30] audit: type=1326 audit(1748605429.636:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.2.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31fcd85927 code=0x7ffc0000 [ 258.280174][ T30] audit: type=1326 audit(1748605429.636:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.2.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f31fcd2ab39 code=0x7ffc0000 [ 258.306397][ T5894] usb 6-1: new low-speed USB device number 4 using dummy_hcd [ 258.337880][ T30] audit: type=1326 audit(1748605429.636:1686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.2.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31fcd8e969 code=0x7ffc0000 [ 258.363066][ T30] audit: type=1326 audit(1748605429.636:1687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.2.1161" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f31fcd85927 code=0x7ffc0000 [ 258.636377][ T5894] usb 6-1: device descriptor read/64, error -71 [ 258.812808][ T5894] usb usb6-port1: attempt power cycle [ 259.316459][ T5894] usb 6-1: new low-speed USB device number 5 using dummy_hcd [ 259.357312][ T5894] usb 6-1: device descriptor read/8, error -71 [ 259.516700][ T5940] vhci_hcd: vhci_device speed not set [ 259.766352][ T5894] usb 6-1: new low-speed USB device number 6 using dummy_hcd [ 259.809166][ T5894] usb 6-1: device descriptor read/8, error -71 [ 259.946872][ T5894] usb usb6-port1: unable to enumerate USB device [ 260.319702][ T9088] loop2: detected capacity change from 0 to 2048 [ 260.706461][ T9088] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 260.726553][ T9088] ext4 filesystem being mounted at /231/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 260.855643][ T9105] loop4: detected capacity change from 0 to 512 [ 261.499909][ T9105] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 261.511414][ T9105] EXT4-fs (loop4): orphan cleanup on readonly fs [ 261.518654][ T9105] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 261.538835][ T9105] EXT4-fs (loop4): Cannot turn on quotas: error -117 [ 261.549219][ T9105] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1191: bg 0: block 40: padding at end of block bitmap is not set [ 261.564987][ T9105] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 261.588182][ T9105] EXT4-fs (loop4): 1 truncate cleaned up [ 261.640182][ T9105] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 261.726976][ T5940] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 261.885485][ T9088] lo speed is unknown, defaulting to 1000 [ 261.942740][ T5834] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 262.079928][ T5940] usb 6-1: config 0 has no interfaces? [ 262.103014][ T5940] usb 6-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 262.142217][ T5940] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 262.186297][ T5940] usb 6-1: Product: syz [ 262.214723][ T5940] usb 6-1: Manufacturer: syz [ 262.234458][ T5940] usb 6-1: SerialNumber: syz [ 262.276732][ T9120] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4) [ 262.283301][ T9120] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 262.322802][ T9124] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(7) [ 262.329524][ T9124] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 262.338511][ T5940] usb 6-1: config 0 descriptor?? [ 262.358799][ T9120] vhci_hcd vhci_hcd.0: Device attached [ 262.364553][ T9124] vhci_hcd vhci_hcd.0: Device attached [ 262.374587][ T9100] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set [ 262.483461][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 262.502449][ T9129] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 262.518157][ T9128] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1198'. [ 262.552651][ T9128] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1198'. [ 262.561698][ T5892] vhci_hcd: vhci_device speed not set [ 262.596523][ T9124] vhci_hcd vhci_hcd.0: pdev(0) rhport(4) sockfd(13) [ 262.603207][ T9124] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 262.676352][ T5892] usb 33-1: new full-speed USB device number 2 using vhci_hcd [ 262.738369][ T9124] vhci_hcd vhci_hcd.0: Device attached [ 262.756416][ T9120] vhci_hcd vhci_hcd.0: pdev(0) rhport(3) sockfd(6) [ 262.763005][ T9120] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 262.788764][ T9124] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN [ 262.953110][ T9129] vhci_hcd vhci_hcd.0: pdev(0) rhport(6) sockfd(18) [ 262.959794][ T9129] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 263.001796][ T9120] vhci_hcd vhci_hcd.0: Device attached [ 263.092661][ T9129] vhci_hcd vhci_hcd.0: Device attached [ 263.204449][ T30] kauditd_printk_skb: 105 callbacks suppressed [ 263.204469][ T30] audit: type=1326 audit(1748605434.756:1792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.0.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fe5b1d8d5ca code=0x7ffc0000 [ 263.337638][ T30] audit: type=1326 audit(1748605434.756:1793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.0.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 263.393037][ T9132] vhci_hcd: connection closed [ 263.395264][ T9125] vhci_hcd: connection closed [ 263.395616][ T9121] vhci_hcd: connection reset by peer [ 263.417569][ T65] vhci_hcd: stop threads [ 263.426427][ T9130] vhci_hcd: connection closed [ 263.432908][ T65] vhci_hcd: release socket [ 263.457544][ T65] vhci_hcd: disconnect device [ 263.472029][ T30] audit: type=1326 audit(1748605434.756:1794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.0.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 263.499179][ T65] vhci_hcd: stop threads [ 263.512855][ T65] vhci_hcd: release socket [ 263.525227][ T65] vhci_hcd: disconnect device [ 263.649121][ T30] audit: type=1326 audit(1748605434.876:1795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.0.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 263.672302][ T30] audit: type=1326 audit(1748605434.876:1796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.0.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 263.694918][ T30] audit: type=1326 audit(1748605434.876:1797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.0.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 263.739090][ T9137] vhci_hcd: connection closed [ 263.739275][ T65] vhci_hcd: stop threads [ 263.772142][ T30] audit: type=1326 audit(1748605434.946:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.0.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 264.586541][ T65] vhci_hcd: release socket [ 264.664146][ T30] audit: type=1326 audit(1748605434.946:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.0.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 264.687104][ T30] audit: type=1326 audit(1748605434.946:1800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.0.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 264.696735][ T65] vhci_hcd: disconnect device [ 264.710082][ T30] audit: type=1326 audit(1748605434.946:1801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9118 comm="syz.0.1197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 264.806220][ T65] vhci_hcd: stop threads [ 264.810724][ T65] vhci_hcd: release socket [ 264.847587][ T65] vhci_hcd: disconnect device [ 264.867863][ T65] vhci_hcd: stop threads [ 264.872187][ T65] vhci_hcd: release socket [ 264.903384][ T65] vhci_hcd: disconnect device [ 265.047961][ T9161] lo speed is unknown, defaulting to 1000 [ 265.196165][ T5940] usb 6-1: USB disconnect, device number 7 [ 265.407510][ T9168] netlink: 2108 bytes leftover after parsing attributes in process `syz.4.1210'. [ 265.430045][ T9168] netlink: 1260 bytes leftover after parsing attributes in process `syz.4.1210'. [ 266.697762][ T9188] loop2: detected capacity change from 0 to 512 [ 266.745682][ T9188] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 266.757172][ T9188] EXT4-fs (loop2): orphan cleanup on readonly fs [ 266.772495][ T9188] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 266.790306][ T9188] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 266.802610][ T9188] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1216: bg 0: block 40: padding at end of block bitmap is not set [ 266.817646][ T9188] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 266.828856][ T9188] EXT4-fs (loop2): 1 truncate cleaned up [ 266.837823][ T9188] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 266.873596][ T9184] EXT4-fs error (device loop2): ext4_lookup:1787: inode #15: comm syz.2.1216: iget: bad i_size value: 360287970189639690 [ 267.228725][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 267.255918][ T9203] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1223'. [ 267.630994][ T9217] loop1: detected capacity change from 0 to 512 [ 267.709711][ T9217] EXT4-fs: Ignoring removed orlov option [ 267.739086][ T9217] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 267.799335][ T9217] EXT4-fs (loop1): orphan cleanup on readonly fs [ 267.832502][ T9217] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1229: bg 0: block 248: padding at end of block bitmap is not set [ 267.836433][ T5892] vhci_hcd: vhci_device speed not set [ 267.863335][ T9217] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1229: Failed to acquire dquot type 1 [ 267.908653][ T9217] EXT4-fs (loop1): 1 truncate cleaned up [ 267.948750][ T9217] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 268.069579][ T9234] loop2: detected capacity change from 0 to 2048 [ 268.100672][ T5830] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.248505][ T30] kauditd_printk_skb: 25 callbacks suppressed [ 268.248526][ T30] audit: type=1326 audit(1748605439.806:1824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9239 comm="syz.0.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 268.284605][ T30] audit: type=1326 audit(1748605439.806:1825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9239 comm="syz.0.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 268.294307][ T9234] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 268.307640][ T30] audit: type=1326 audit(1748605439.836:1826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9239 comm="syz.0.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 268.412446][ T9245] loop5: detected capacity change from 0 to 512 [ 268.426718][ T30] audit: type=1326 audit(1748605439.836:1827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9239 comm="syz.0.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 268.450486][ T30] audit: type=1326 audit(1748605439.836:1828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9239 comm="syz.0.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 268.473197][ T30] audit: type=1326 audit(1748605439.836:1829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9239 comm="syz.0.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 268.576350][ T9234] ext4 filesystem being mounted at /240/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 268.732213][ T9245] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 268.742107][ T9245] EXT4-fs (loop5): orphan cleanup on readonly fs [ 268.760853][ T9245] Quota error (device loop5): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 268.772054][ T9245] EXT4-fs warning (device loop5): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 268.805219][ T9245] EXT4-fs (loop5): Cannot turn on quotas: error -117 [ 268.817763][ T9245] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1235: bg 0: block 40: padding at end of block bitmap is not set [ 268.833714][ T9245] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 268.839417][ T30] audit: type=1326 audit(1748605439.836:1830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9239 comm="syz.0.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 268.869202][ T9245] EXT4-fs (loop5): 1 truncate cleaned up [ 268.876988][ T9245] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 268.890636][ T9225] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 268.902658][ T9238] EXT4-fs error (device loop5): ext4_lookup:1787: inode #15: comm syz.5.1235: iget: bad i_size value: 360287970189639690 [ 268.917597][ T30] audit: type=1326 audit(1748605439.836:1831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9239 comm="syz.0.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 268.936587][ T9225] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 268.946286][ T30] audit: type=1326 audit(1748605439.836:1832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9239 comm="syz.0.1238" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe5b1d8e969 code=0x7ffc0000 [ 269.005941][ T9234] futex_wake_op: syz.2.1234 tries to shift op by -1; fix this program [ 269.177705][ T9225] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 269.206516][ T9225] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 269.241633][ T7562] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 269.263202][ T9234] lo speed is unknown, defaulting to 1000 [ 269.348363][ T9225] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 269.354923][ T9225] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 269.375425][ T9225] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 269.384293][ T9225] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 269.396854][ T9256] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1234: bg 0: block 345: padding at end of block bitmap is not set [ 269.417359][ T9225] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 269.423399][ T9225] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 269.476364][ T9225] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 269.579255][ T5837] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 269.912054][ T9274] loop4: detected capacity change from 0 to 256 [ 269.958314][ T9274] vfat: Bad value for 'shortname' [ 269.968051][ T5844] Bluetooth: hci0: command 0x0406 tx timeout [ 270.134515][ T9283] loop0: detected capacity change from 0 to 512 [ 270.153043][ T9283] EXT4-fs: Mount option(s) incompatible with ext2 [ 270.324570][ C1] hrtimer: interrupt took 67322069 ns [ 274.672172][ T5844] Bluetooth: hci2: command 0x0406 tx timeout [ 274.678467][ T5844] Bluetooth: hci4: command 0x0c1a tx timeout [ 274.685612][ T5844] Bluetooth: hci0: command 0x0406 tx timeout [ 274.691815][ T5844] Bluetooth: hci1: command 0x0406 tx timeout [ 274.698049][ T5844] Bluetooth: hci3: command 0x0406 tx timeout [ 379.646198][ C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 379.654401][ C0] rcu: 1-...!: (3 ticks this GP) idle=826c/1/0x4000000000000000 softirq=36211/36211 fqs=0 [ 379.666357][ C0] rcu: (detected by 0, t=10502 jiffies, g=30285, q=425 ncpus=2) [ 379.674135][ C0] Sending NMI from CPU 0 to CPUs 1: [ 379.674170][ C1] NMI backtrace for cpu 1 [ 379.674185][ C1] CPU: 1 UID: 0 PID: 9293 Comm: syz.4.1253 Not tainted 6.15.0-next-20250530-syzkaller #0 PREEMPT(full) [ 379.674204][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 379.674213][ C1] RIP: 0010:preempt_count_add+0x2b/0x1a0 [ 379.674244][ C1] Code: 0f 1e fa 41 57 41 56 53 49 bf 00 00 00 00 00 fc ff df 48 c7 c0 20 23 a8 99 48 c1 e8 03 42 0f b6 04 38 84 c0 0f 85 f1 00 00 00 <83> 3d 5e 4d 17 18 00 75 07 65 8b 05 65 fa 0b 11 65 01 3d 5e fa 0b [ 379.674258][ C1] RSP: 0018:ffffc90000a08be0 EFLAGS: 00000097 [ 379.674274][ C1] RAX: 0000000000000004 RBX: ffffffff99d57e30 RCX: ffffffff99a82303 [ 379.674285][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001 [ 379.674295][ C1] RBP: ffffc90000a08c98 R08: ffffc90000a08cbf R09: 0000000000000000 [ 379.674306][ C1] R10: ffffc90000a08cb0 R11: fffff52000141198 R12: dffffc0000000000 [ 379.674317][ C1] R13: dffffc0000000000 R14: 0000000000000802 R15: dffffc0000000000 [ 379.674328][ C1] FS: 0000000000000000(0000) GS:ffff888125d53000(0000) knlGS:0000000000000000 [ 379.674341][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 379.674352][ C1] CR2: 000000110c263573 CR3: 000000000df38000 CR4: 00000000003526f0 [ 379.674368][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 379.674377][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 379.674388][ C1] Call Trace: [ 379.674397][ C1] [ 379.674405][ C1] _raw_spin_lock_irqsave+0x8c/0xf0 [ 379.674429][ C1] ? __pfx__raw_spin_lock_irqsave+0x10/0x10 [ 379.674461][ C1] debug_object_deactivate+0x9a/0x250 [ 379.674483][ C1] debug_deactivate+0x1d/0x200 [ 379.674500][ C1] __hrtimer_run_queues+0x2b0/0xc60 [ 379.674532][ C1] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 379.674553][ C1] ? read_tsc+0x9/0x20 [ 379.674576][ C1] hrtimer_interrupt+0x45b/0xaa0 [ 379.674612][ C1] __sysvec_apic_timer_interrupt+0x108/0x410 [ 379.674630][ C1] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 379.674651][ C1] [ 379.674656][ C1] [ 379.674663][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 379.674679][ C1] RIP: 0010:its_return_thunk+0x0/0x10 [ 379.674697][ C1] Code: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 e9 8b 84 ca f5 cc [ 379.674710][ C1] RSP: 0018:ffffc9000423f310 EFLAGS: 00000293 [ 379.674722][ C1] RAX: ffffffff822f1d02 RBX: 1ffff1100b4e629b RCX: ffff888069f81e00 [ 379.674733][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000067577 [ 379.674743][ C1] RBP: ffffc9000423f650 R08: ffffea00019d5dc7 R09: 1ffffd400033abb8 [ 379.674754][ C1] R10: dffffc0000000000 R11: fffff9400033abb9 R12: 0000000000067577 [ 379.674765][ C1] R13: 1ffffd400033abbb R14: 0000000000067577 R15: 8000000067577007 [ 379.674781][ C1] ? pfn_valid+0x12/0x490 [ 379.674812][ C1] pfn_valid+0x12/0x490 [ 379.674830][ C1] page_table_check_clear+0x21/0x700 [ 379.674848][ C1] ? vm_normal_page+0xb7/0x230 [ 379.674868][ C1] unmap_page_range+0x3249/0x41c0 [ 379.674911][ C1] ? __pfx_unmap_page_range+0x10/0x10 [ 379.674935][ C1] ? unmap_vmas+0x144/0x580 [ 379.674955][ C1] unmap_vmas+0x399/0x580 [ 379.674978][ C1] ? __pfx_unmap_vmas+0x10/0x10 [ 379.675009][ C1] exit_mmap+0x248/0xb50 [ 379.675026][ C1] ? uprobe_clear_state+0x20f/0x290 [ 379.675049][ C1] ? __pfx_exit_mmap+0x10/0x10 [ 379.675064][ C1] ? __mutex_unlock_slowpath+0x1cd/0x700 [ 379.675093][ C1] ? __pfx_exit_aio+0x10/0x10 [ 379.675114][ C1] ? uprobe_clear_state+0x274/0x290 [ 379.675137][ C1] __mmput+0x118/0x420 [ 379.675162][ C1] exit_mm+0x1da/0x2c0 [ 379.675181][ C1] ? __pfx_exit_mm+0x10/0x10 [ 379.675200][ C1] ? rcu_is_watching+0x15/0xb0 [ 379.675217][ C1] do_exit+0x640/0x22e0 [ 379.675238][ C1] ? do_raw_spin_lock+0x121/0x290 [ 379.675256][ C1] ? __pfx_do_exit+0x10/0x10 [ 379.675282][ C1] do_group_exit+0x21c/0x2d0 [ 379.675300][ C1] ? lockdep_hardirqs_on+0x9c/0x150 [ 379.675322][ C1] get_signal+0x1286/0x1340 [ 379.675354][ C1] arch_do_signal_or_restart+0x9a/0x750 [ 379.675377][ C1] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 379.675403][ C1] ? exit_to_user_mode_loop+0x40/0x110 [ 379.675427][ C1] exit_to_user_mode_loop+0x75/0x110 [ 379.675448][ C1] do_syscall_64+0x2bd/0x3b0 [ 379.675462][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 379.675477][ C1] ? __switch_to_asm+0x39/0x70 [ 379.675492][ C1] ? clear_bhb_loop+0x60/0xb0 [ 379.675509][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 379.675524][ C1] RIP: 0033:0x7f4d7a38e969 [ 379.675537][ C1] Code: Unable to access opcode bytes at 0x7f4d7a38e93f. [ 379.675545][ C1] RSP: 002b:00007f4d7b2700e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 379.675560][ C1] RAX: fffffffffffffe00 RBX: 00007f4d7a5b5fa8 RCX: 00007f4d7a38e969 [ 379.675571][ C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f4d7a5b5fa8 [ 379.675581][ C1] RBP: 00007f4d7a5b5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 379.675591][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4d7a5b5fac [ 379.675601][ C1] R13: 0000000000000000 R14: 00007fffd73edba0 R15: 00007fffd73edc88 [ 379.675620][ C1] [ 379.676165][ C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10501 jiffies! g30285 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 [ 380.207558][ C0] rcu: Possible timer handling issue on cpu=1 timer-softirq=19951 [ 380.215643][ C0] rcu: rcu_preempt kthread starved for 10502 jiffies! g30285 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1 [ 380.227123][ C0] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 380.237114][ C0] rcu: RCU grace-period kthread stack dump: [ 380.243020][ C0] task:rcu_preempt state:I stack:27128 pid:16 tgid:16 ppid:2 task_flags:0x208040 flags:0x00004000 [ 380.256049][ C0] Call Trace: [ 380.259460][ C0] [ 380.262434][ C0] __schedule+0x16f5/0x4d00 [ 380.267087][ C0] ? do_raw_spin_unlock+0x122/0x240 [ 380.272326][ C0] ? schedule+0x165/0x360 [ 380.276722][ C0] ? __lock_acquire+0xab9/0xd20 [ 380.281714][ C0] ? __pfx___schedule+0x10/0x10 [ 380.286731][ C0] ? schedule+0x91/0x360 [ 380.291021][ C0] schedule+0x165/0x360 [ 380.295416][ C0] schedule_timeout+0x12b/0x270 [ 380.300325][ C0] ? __pfx_schedule_timeout+0x10/0x10 [ 380.305754][ C0] ? __pfx_process_timeout+0x10/0x10 [ 380.311373][ C0] ? prepare_to_swait_event+0x341/0x380 [ 380.317156][ C0] rcu_gp_fqs_loop+0x301/0x1540 [ 380.322228][ C0] ? __pfx_rcu_gp_init+0x10/0x10 [ 380.327200][ C0] ? lockdep_hardirqs_on+0x9c/0x150 [ 380.332520][ C0] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 380.338018][ C0] ? _raw_spin_unlock_irq+0x2e/0x50 [ 380.343351][ C0] ? finish_swait+0xcd/0x1f0 [ 380.348064][ C0] rcu_gp_kthread+0x99/0x390 [ 380.352700][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 380.357956][ C0] ? __kthread_parkme+0x7b/0x200 [ 380.363119][ C0] ? __kthread_parkme+0x1a1/0x200 [ 380.368195][ C0] kthread+0x70e/0x8a0 [ 380.372311][ C0] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 380.377633][ C0] ? __pfx_kthread+0x10/0x10 [ 380.382351][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 380.387589][ C0] ? lockdep_hardirqs_on+0x9c/0x150 [ 380.392849][ C0] ? __pfx_kthread+0x10/0x10 [ 380.397504][ C0] ret_from_fork+0x3fc/0x770 [ 380.402137][ C0] ? __pfx_ret_from_fork+0x10/0x10 [ 380.407289][ C0] ? __switch_to_asm+0x39/0x70 [ 380.412083][ C0] ? __switch_to_asm+0x33/0x70 [ 380.416870][ C0] ? __pfx_kthread+0x10/0x10 [ 380.421495][ C0] ret_from_fork_asm+0x1a/0x30 [ 380.426307][ C0]