last executing test programs: 7.793785978s ago: executing program 3 (id=1064): open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88) r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r1 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000000000)=0x0) timer_settime(r2, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) fcntl$setlease(r0, 0x400, 0x0) creat(&(0x7f00000005c0)='./file0\x00', 0x0) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r3}, 0x10) 6.736831785s ago: executing program 3 (id=1062): r0 = shmget$private(0x0, 0x4000, 0x54001800, &(0x7f0000000000/0x4000)=nil) socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0) r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8) socket(0x0, 0x0, 0x0) shmat(r0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff) mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x3) 6.472546907s ago: executing program 1 (id=1063): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) ioctl$RTC_IRQP_SET(0xffffffffffffffff, 0x4008700c, 0x80000000020725) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, 0x0, 0x4886) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x52e, &(0x7f0000000640)="$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") 5.78878473s ago: executing program 4 (id=1070): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x10, &(0x7f0000000340)={[{@errors_remount}, {@dioread_lock}, {}]}, 0xfe, 0x44f, &(0x7f0000000d80)="$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") r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x1, 0x803, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)=ANY=[@ANYBLOB="48000000100001040000", @ANYRES32=r2, @ANYBLOB="00000000000000002800128009000100766574680000000018000280140001000000", @ANYRES32=r2], 0x48}}, 0x0) 5.740608016s ago: executing program 0 (id=1071): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r2, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r3, &(0x7f0000000240)={0x0, 0xfffffff5, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0xfffffdef}], 0x1}, 0x0) mmap(&(0x7f0000000000/0x2000)=nil, 0x30000, 0x2, 0x11, 0xffffffffffffffff, 0x0) 5.693765768s ago: executing program 3 (id=1072): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r1 = socket(0x400000000010, 0x3, 0x0) r2 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x24, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}}}, 0x24}}, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x10, 0x6}, {}, {0x7, 0x3}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x1, 0x2, 0xc1, 0x3}]}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x10}, 0x0) 5.328612172s ago: executing program 1 (id=1075): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[], 0xe8}}, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r2, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0xb001, 0x4, 0x3e8, 0x0, 0x0, 0x130, 0x300, 0x300, 0x300, 0x7fffffe, 0x0, {[{{@arp={@local, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'pimreg\x00', 'veth0_to_bridge\x00'}, 0xc0, 0x130}, @unspec=@NFLOG={0x70, 'NFLOG\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, "f67b23ffdfa27f907a03732da3acbc6518e62a77ca06f258762e88c0d9f9d2f413b94a105f4bdf01425ce81c5d000000000000000500ffffffff00"}}}, {{@arp={@multicast2, @empty, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'veth0_to_team\x00', 'ip6tnl0\x00'}, 0xc0, 0xe8}, @unspec=@CLASSIFY={0x28}}, {{@uncond, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x438) 4.965173246s ago: executing program 3 (id=1078): r0 = socket$inet6(0xa, 0x806, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c) listen(r0, 0x3) r1 = socket$inet_dccp(0x2, 0x6, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) connect$inet(r1, &(0x7f0000772000)={0x2, 0x4e23}, 0x10) r2 = accept4(r0, 0x0, 0x0, 0x0) syz_genetlink_get_family_id$ipvs(&(0x7f0000000500), r2) r3 = openat$tun(0xffffffffffffff9c, 0x0, 0xa8442, 0x0) ioctl$TUNSETLINK(r3, 0x400454cd, 0xfffe) sendmsg$IPVS_CMD_NEW_DAEMON(r1, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000000}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0xf6c52000) syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r2) syz_genetlink_get_family_id$tipc(&(0x7f0000000040), r2) 4.811289941s ago: executing program 2 (id=1079): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) epoll_create(0x8) 4.810729817s ago: executing program 4 (id=1080): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000d00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x200, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10) ioctl$TUNSETSTEERINGEBPF(r1, 0x800454e0, &(0x7f0000000080)=r0) close(r1) 3.592690351s ago: executing program 1 (id=1081): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) r4 = syz_genetlink_get_family_id$team(&(0x7f00000000c0), 0xffffffffffffffff) prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x5, 0x7, &(0x7f0000000240)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x12, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) getpgrp(0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0) r6 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x126) pwrite64(r6, 0x0, 0x0, 0xfecc) r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) mmap(&(0x7f00009d6000/0x4000)=nil, 0x4000, 0x1000001, 0x10012, r7, 0x1000) fsync(r7) io_uring_register$IORING_REGISTER_FILES_UPDATE2(0xffffffffffffffff, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0}, 0x20) io_uring_enter(0xffffffffffffffff, 0x194, 0x62f9, 0x40, &(0x7f0000000000)={[0x1]}, 0x8) socket$can_j1939(0x1d, 0x2, 0x7) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000001c0)='bcache_alloc\x00', r5, 0x0, 0x10000}, 0x18) r8 = socket$kcm(0x29, 0x2, 0x0) sendmmsg$inet(r8, &(0x7f0000004e80)=[{{0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000440)="e1", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000008c0)="9b", 0x1}], 0x1}}], 0x2, 0x4000005) r9 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x3, &(0x7f0000000580)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfe99, 0x0, &(0x7f00000001c0)='N', 0x0}, 0x48) close(r8) sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=ANY=[@ANYBLOB='`\x00\x00\b', @ANYRES16=r4, @ANYBLOB="010025bd7000000000000100000008000100", @ANYRES32=r3, @ANYBLOB="4400028032000100240001007072696f72697479000000000000000000000000000000000000000000000000050003000e000000080004000100000008000600", @ANYRES32=0x0, @ANYBLOB], 0x60}, 0x1, 0xf000, 0x0, 0x3000000}, 0x10) 3.564655784s ago: executing program 2 (id=1082): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0100000000000000000005000000180001801400020073797a5f74756e000000080000000000"], 0x44}}, 0x0) 3.298962451s ago: executing program 0 (id=1083): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_subtree(r3, &(0x7f0000000200), 0x2, 0x0) r5 = openat$cgroup_int(r2, &(0x7f0000000180)='cpu.weight\x00', 0x2, 0x0) write$cgroup_subtree(r4, &(0x7f0000000500)=ANY=[@ANYBLOB='-cpu'], 0x5) write$cgroup_int(r5, 0x0, 0x0) 3.297877999s ago: executing program 4 (id=1084): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r1}, 0x10) set_mempolicy(0x6, &(0x7f00000003c0)=0x8000000000000001, 0xe0) syz_clone(0x22023500, 0x0, 0x0, 0x0, 0x0, 0x0) 2.99631382s ago: executing program 2 (id=1085): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xe5) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10) bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0}}], 0x90}, 0x0) 2.92600072s ago: executing program 0 (id=1086): socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{0x0}], 0x1}, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0b000000080000000c000000ffbfffff01"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r3}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000d40)={0xffffffffffffffff}) sendmsg$inet(r4, &(0x7f0000000b00)={0x0, 0xf22fff7f, &(0x7f0000000180)=[{&(0x7f0000000080)="31de76fb398bc62d058b8a96924594f5476a0824be53f7a5949f80614c42391e4b80412938c955d34d37eb96ba7849c3eb823bb36724bd6f6d0219cfe5c884afcd2bdea5acf9c877c03dcdbbb3e47417b6707c27d4c5c1db1924071f6b6f23c7d199c799c9b0c41101e625fcdb7bbfd12a3eeeef4540a5698f058aaf6a141e5d333929b92a7f64e925bf0ef424c3ef29fcd5fd4721c547fde6abe4d47048b64511693624b0d786711abe4a66e250fcbfe95ac9037e58f331b26b6ed0d08e5c73ba4c49", 0xc00e}], 0x9, &(0x7f00000001c0)=[@ip_tos_int={{0x7ff4d4260000}}, @ip_ttl={{0x14}}, @ip_ttl={{0x14}}, @ip_tos_u8={{0x11}}, @ip_tos_u8={{0x11, 0x2}}, @ip_retopts={{0x0, 0x0, 0x7, {[@lsrr, @generic={0x0, 0x0, "96"}, @generic={0x0, 0x0, "206a77bdd1a004129054e7704a"}]}}}], 0xf}, 0x0) 2.580966924s ago: executing program 2 (id=1088): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000bc0000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x3}, 0x18) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000f40), r1) sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)={0x34, r2, 0x1, 0x7ffffc, 0x25dfdbff, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_HW_ADDR={0xc, 0x5, {0xaaaaaaaaaaaa0102}}, @IEEE802154_ATTR_DEV_TYPE={0x5, 0x20, 0x1}]}, 0x34}}, 0x0) 2.567247702s ago: executing program 4 (id=1090): memfd_create(0x0, 0x4) r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000780)={r0}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$vfat(&(0x7f0000000580), &(0x7f0000000180)='./file0\x00', 0x1000802, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x1, 0x22a, &(0x7f0000000800)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) 2.164967633s ago: executing program 2 (id=1092): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x18, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fib_table_lookup\x00', r0}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="5500000018007f5f00fe01b2a4a2809302060000fd41fd01020400000a00120002002800000019002d007fffffff0022de1330d54400009b84136ef75afb83de066a5900e1baac968300000000f2ff000001000000", 0x55}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0) 2.095038758s ago: executing program 4 (id=1093): syz_mount_image$ext4(&(0x7f0000000480)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000500)={[{@delalloc}, {@auto_da_alloc}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x1, 0x50c, &(0x7f0000000ac0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='memory.events.local\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000040), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) madvise(&(0x7f0000000000/0x600000)=nil, 0x60005f, 0x3) 2.020971223s ago: executing program 5 (id=1094): syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000001440)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000240)='kmem_cache_free\x00', r0}, 0x10) unshare(0x22000400) 1.800794466s ago: executing program 0 (id=1095): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18) execve(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0) 1.788824529s ago: executing program 2 (id=1096): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x845008, 0x0, 0x2, 0x0, &(0x7f0000000000)) bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48) madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10) socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x20004041) sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000000180), 0x400008a, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x54, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x4}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_HOOK_DEV={0x14, 0x3, 'veth0_to_team\x00'}]}]}, @NFT_MSG_DELCHAIN={0x48, 0x5, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x2000}, [@NFTA_CHAIN_POLICY={0x8}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x20, 0x4, 0x0, 0x1, [@NFTA_HOOK_DEV={0x14, 0x3, 'veth0_to_batadv\x00'}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}]}]}], {0x14}}, 0xe4}}, 0x0) 1.659499014s ago: executing program 3 (id=1097): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8) shmat(0x0, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff) 1.520935618s ago: executing program 5 (id=1098): r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_subtree(r3, &(0x7f0000000200), 0x2, 0x0) r5 = openat$cgroup_int(r2, &(0x7f0000000180)='cpu.weight\x00', 0x2, 0x0) write$cgroup_subtree(r4, &(0x7f0000000500)=ANY=[@ANYBLOB='-cpu'], 0x5) write$cgroup_int(r5, 0x0, 0x0) 1.519275117s ago: executing program 1 (id=1099): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) symlink(&(0x7f0000001780)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00') acct(&(0x7f00000001c0)='./file0\x00') 1.48700886s ago: executing program 0 (id=1100): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000020000000000000000000018110000", @ANYRES32=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000000)='kmem_cache_free\x00', r2, 0x0, 0xffffffffffffffff}, 0x18) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000c00)=ANY=[@ANYBLOB="3c000000100005ff00000000000000000000004a", @ANYRES32=0x0, @ANYBLOB="1100000000000000140012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0) 1.40032889s ago: executing program 5 (id=1101): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xe5) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x10) bind$rds(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(0xffffffffffffffff, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0}}], 0x90}, 0x0) 976.787056ms ago: executing program 5 (id=1102): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x2, '\x00', 0x0, @fallback=0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_MFC(r1, 0x0, 0x5, &(0x7f0000000240)={@local, @multicast2, 0xfffe, "66c5aff8a7eb3af1f6cec2e7420000008c84aea31700", 0x3, 0x0, 0x7e, 0x4f04}, 0x3c) setsockopt$MRT_INIT(r1, 0x0, 0xc8, &(0x7f0000000080)=0x300, 0x4) 976.370401ms ago: executing program 4 (id=1103): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) getpid() mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth1_to_bridge\x00', 0x0}) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=ANY=[@ANYBLOB="440000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800c0001006d616376746170000400028008000500", @ANYRES32=r5], 0x44}}, 0x0) 962.003006ms ago: executing program 1 (id=1104): r0 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382) r1 = memfd_create(0x0, 0x2) pwritev(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)='P', 0x1}], 0x1, 0x800000, 0x0) ioctl$LOOP_CHANGE_FD(r0, 0x4c00, r1) sendfile(r0, r0, 0x0, 0x24002de8) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000001c0)={0x0, {}, 0x0, {}, 0x40000004, 0x12, 0x1, 0x18, "28f5c9ea1f1ae4be4111ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba7663c435aff94793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b59ca8d541", "07b931097804aa15069d42128d7469166f4f1db84836e7004ad14e1df82d00", [0x6, 0x7]}) 682.16117ms ago: executing program 5 (id=1105): memfd_create(0x0, 0x4) r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000780)={r0}, 0x4) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000"], &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) syz_mount_image$vfat(&(0x7f0000000580), &(0x7f0000000180)='./file0\x00', 0x1000802, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x1, 0x22a, &(0x7f0000000800)="$eJzs3TFrU10YB/AnbUr7Fl7SQSiK4BX30FbcU6SCGFCUDDpZbIvS1IKFgg5tnfwS+hV0dBUcxNUvIIJUwaV16iBE6q1JG5LYWpMr5vdb8nDv+d/z3CTkkCEnt08vLc4tryxsb2/GyEhuKF+KUuzkYiwGYjBSGwEA/Et2arXYqqWy7gUA6A3rPwD0n07rf26jfuxa7zsDALrF938A6D83bt66Ml0uz1zfSkYilp6sVlYr6WN6fnoh7kU15mMiCvEtolaX1pcul2cmkl2fxqKytL6XX1+tDB7MT0YhxlrnJ5PUwfxQjO7l34/GfExFIU60zk+1yg9FxLl98xejEO/uxHJUYy52s4382mSSXLxabpp/+Mc4AAAAAAAAAAAAAAAAAAAAAADohmJS13L/nmKx3fk0v39/oP867g/UvL9PPk7ls713AAAAAAAAAAAAAAAAAAAA+FusPHy0OFutzj/oVNx/+/z1r8YcssjtzXvc6xy/+P/sx6ftxzw+yvPzZ4tXZ3o86XBEHDX1ZvPuyfMr4xfajYl813oe+J0X5Ushokv9vPhZlL5m+X5uKgabj4w/K82+XPvw+bDXyfBDCQAAAAAAAAAAAAAAAAAA+lTjR79ZdwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2Wn8/3/Xio2s7xEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAL4HAAD//9lkp1I=") mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0) mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) 451.920628ms ago: executing program 3 (id=1106): r0 = socket$igmp(0x2, 0x3, 0x2) socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001780)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) sendmsg$DCCPDIAG_GETSOCK(0xffffffffffffffff, 0x0, 0x20000100) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000003d80)={0x0, 0x1, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10) close(r0) 428.242956ms ago: executing program 0 (id=1107): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000680)=@base={0xb, 0x7, 0x8, 0x8, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000f0ff00000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000090000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$phonet_pipe(0x23, 0x5, 0x2) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'netdevsim0\x00', 0x0}) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000100)=@framed, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', r3, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1, @void, @value}, 0x94) 270.459743ms ago: executing program 1 (id=1108): socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) recvmsg(r0, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{0x0}], 0x1}, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0b000000080000000c000000ffbfffff01"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000810018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='contention_end\x00', r3}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000d40)={0xffffffffffffffff}) sendmsg$inet(r4, &(0x7f0000000b00)={0x0, 0xf22fff7f, &(0x7f0000000180)=[{&(0x7f0000000080)="31de76fb398bc62d058b8a96924594f5476a0824be53f7a5949f80614c42391e4b80412938c955d34d37eb96ba7849c3eb823bb36724bd6f6d0219cfe5c884afcd2bdea5acf9c877c03dcdbbb3e47417b6707c27d4c5c1db1924071f6b6f23c7d199c799c9b0c41101e625fcdb7bbfd12a3eeeef4540a5698f058aaf6a141e5d333929b92a7f64e925bf0ef424c3ef29fcd5fd4721c547fde6abe4d47048b64511693624b0d786711abe4a66e250fcbfe95ac9037e58f331b26b6ed0d08e5c73ba4c49", 0xc00e}], 0x9, &(0x7f00000001c0)=[@ip_tos_int={{0x7ff4d4260000}}, @ip_ttl={{0x14}}, @ip_ttl={{0x14}}, @ip_tos_u8={{0x11}}, @ip_tos_u8={{0x11, 0x2}}, @ip_retopts={{0x0, 0x0, 0x7, {[@lsrr, @generic={0x0, 0x0, "96"}, @generic={0x0, 0x0, "206a77bdd1a004129054e7704a"}]}}}], 0xf}, 0x0) 0s ago: executing program 5 (id=1109): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file2\x00', 0x2000010, &(0x7f0000000080), 0x81, 0x7a5, &(0x7f0000000f80)="$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") syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00') ppoll(0x0, 0x0, 0x0, 0x0, 0x0) mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x0, &(0x7f0000001dc0)={0x8, 0x70}, 0x20) kernel console output (not intermixed with test programs): t=0 ip=0x7ff10238f087 code=0x7ffc0000 [ 122.678051][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 122.679192][ T30] audit: type=1326 audit(1741982375.479:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6391 comm="syz.0.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7ff10238effc code=0x7ffc0000 [ 122.768322][ T30] audit: type=1326 audit(1741982375.479:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6391 comm="syz.0.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7ff10238ef34 code=0x7ffc0000 [ 122.918241][ T30] audit: type=1326 audit(1741982375.479:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6391 comm="syz.0.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7ff10238ef34 code=0x7ffc0000 [ 123.160819][ T6408] usb usb1: usbfs: process 6408 (syz.2.162) did not claim interface 0 before use [ 125.261318][ T6433] loop5: detected capacity change from 0 to 1024 [ 125.350720][ T6433] EXT4-fs: Ignoring removed bh option [ 125.523449][ T6433] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 125.795908][ T6442] geneve2: entered promiscuous mode [ 125.826409][ T6442] geneve2: entered allmulticast mode [ 125.842497][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.125550][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 126.720490][ T6461] loop4: detected capacity change from 0 to 1024 [ 126.746942][ T6461] EXT4-fs: Ignoring removed nobh option [ 126.778213][ T6461] EXT4-fs: Ignoring removed bh option [ 126.850443][ T6461] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 127.205096][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 127.249383][ T6477] loop2: detected capacity change from 0 to 512 [ 127.345680][ T6477] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 127.440330][ T6477] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 127.559771][ T6488] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 127.620007][ T30] kauditd_printk_skb: 57 callbacks suppressed [ 127.620033][ T30] audit: type=1326 audit(1741982380.969:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6465 comm="syz.1.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 127.748372][ T30] audit: type=1326 audit(1741982381.019:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6465 comm="syz.1.186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 129.369787][ T6503] loop3: detected capacity change from 0 to 2048 [ 129.448473][ T6503] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 129.699665][ T6515] netlink: 92 bytes leftover after parsing attributes in process `syz.5.203'. [ 129.878614][ T6517] bridge0: port 3(vlan2) entered blocking state [ 129.920144][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 129.938965][ T6517] bridge0: port 3(vlan2) entered disabled state [ 129.960886][ T6517] vlan2: entered allmulticast mode [ 129.994824][ T6517] bridge0: entered allmulticast mode [ 130.023536][ T6517] vlan2: left allmulticast mode [ 130.050010][ T6517] bridge0: left allmulticast mode [ 130.834139][ T30] audit: type=1326 audit(1741982384.169:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 130.979839][ T30] audit: type=1326 audit(1741982384.169:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 131.089143][ T30] audit: type=1326 audit(1741982384.169:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 131.198469][ T30] audit: type=1326 audit(1741982384.169:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 131.302686][ T30] audit: type=1326 audit(1741982384.179:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 131.494416][ T30] audit: type=1326 audit(1741982384.179:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 131.602489][ T30] audit: type=1326 audit(1741982384.179:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 131.659102][ T30] audit: type=1326 audit(1741982384.179:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6534 comm="syz.1.210" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 131.827599][ T6556] loop3: detected capacity change from 0 to 1024 [ 131.913633][ T6556] EXT4-fs: Ignoring removed nobh option [ 131.962530][ T6556] EXT4-fs: Ignoring removed bh option [ 132.093977][ T6556] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 132.541830][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 132.935356][ T6578] serio: Serial port ptm0 [ 133.094558][ T6585] loop3: detected capacity change from 0 to 512 [ 133.124751][ T6585] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 134.044480][ T6585] EXT4-fs (loop3): orphan cleanup on readonly fs [ 134.070968][ T6585] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm syz.3.221: bg 0: block 248: padding at end of block bitmap is not set [ 134.098836][ T6585] __quota_error: 18 callbacks suppressed [ 134.098898][ T6585] Quota error (device loop3): write_blk: dquota write failed [ 134.113096][ T6585] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 134.123499][ T6585] EXT4-fs error (device loop3): ext4_acquire_dquot:6925: comm syz.3.221: Failed to acquire dquot type 1 [ 134.196827][ T6585] EXT4-fs (loop3): 1 truncate cleaned up [ 134.309001][ T6585] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 135.890544][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.603426][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.868020][ T30] audit: type=1326 audit(1741982391.219:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 137.978234][ T30] audit: type=1326 audit(1741982391.219:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 138.152709][ T30] audit: type=1326 audit(1741982391.219:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 138.209414][ T30] audit: type=1326 audit(1741982391.219:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 138.287891][ T30] audit: type=1326 audit(1741982391.219:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 138.370249][ T30] audit: type=1326 audit(1741982391.219:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 138.428934][ T6628] loop2: detected capacity change from 0 to 2048 [ 138.428927][ T30] audit: type=1326 audit(1741982391.249:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 138.428994][ T30] audit: type=1326 audit(1741982391.249:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6615 comm="syz.3.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 138.726830][ T6628] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 139.145115][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.381662][ T6643] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.236'. [ 139.433338][ T6641] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.236'. [ 139.854616][ T6649] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 140.339832][ T6659] loop3: detected capacity change from 0 to 512 [ 140.439410][ T6659] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm syz.3.243: bg 0: block 35: padding at end of block bitmap is not set [ 140.540434][ T6659] EXT4-fs (loop3): Remounting filesystem read-only [ 140.589684][ T6659] EXT4-fs (loop3): 1 truncate cleaned up [ 140.710432][ T6666] netlink: 8 bytes leftover after parsing attributes in process `syz.4.241'. [ 141.344253][ T6659] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 141.680037][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 141.848060][ T6673] netlink: 60 bytes leftover after parsing attributes in process `syz.4.247'. [ 141.857753][ T6671] loop1: detected capacity change from 0 to 1024 [ 141.899925][ T6671] EXT4-fs: Ignoring removed bh option [ 141.933477][ T6671] EXT4-fs: Ignoring removed nobh option [ 141.949779][ T6673] netlink: 60 bytes leftover after parsing attributes in process `syz.4.247'. [ 141.968494][ T6671] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 142.035549][ T6671] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4114: comm syz.1.246: Allocating blocks 481-513 which overlap fs metadata [ 142.051368][ T6677] netlink: 48 bytes leftover after parsing attributes in process `syz.3.248'. [ 142.241166][ T6673] netlink: 60 bytes leftover after parsing attributes in process `syz.4.247'. [ 142.250670][ T6673] netlink: 60 bytes leftover after parsing attributes in process `syz.4.247'. [ 142.329074][ T6671] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4114: comm syz.1.246: Allocating blocks 497-513 which overlap fs metadata [ 142.414063][ T6671] EXT4-fs (loop1): pa ffff8880583ca1d0: logic 352, phys. 465, len 3 [ 142.422691][ T6671] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5365: group 0, free 0, pa_free 1 [ 142.929274][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 143.368923][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 143.397738][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 143.846812][ T6712] loop1: detected capacity change from 0 to 512 [ 143.864844][ T6690] bridge0: port 2(bridge_slave_1) entered disabled state [ 143.872579][ T6690] bridge0: port 1(bridge_slave_0) entered disabled state [ 143.937425][ T6712] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.260: bg 0: block 35: padding at end of block bitmap is not set [ 144.073048][ T6712] EXT4-fs (loop1): Remounting filesystem read-only [ 144.095837][ T6712] EXT4-fs (loop1): 1 truncate cleaned up [ 144.119367][ T6712] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 144.191758][ T6717] loop5: detected capacity change from 0 to 512 [ 144.264436][ T6717] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 144.313251][ T6690] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 144.330854][ T6717] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 144.424127][ T6690] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 144.463939][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 144.699489][ T6690] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.713959][ T6690] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.734633][ T6690] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.743953][ T6690] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 145.108952][ T6725] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 145.256326][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 145.946886][ T6752] netlink: 4 bytes leftover after parsing attributes in process `syz.0.273'. [ 146.006782][ T6752] erspan0: entered promiscuous mode [ 146.051957][ T6752] macvtap1: entered promiscuous mode [ 146.083298][ T6752] macvtap1: entered allmulticast mode [ 146.109667][ T6752] erspan0: entered allmulticast mode [ 146.185359][ T6755] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 146.196455][ T6762] loop3: detected capacity change from 0 to 512 [ 146.243544][ T6762] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm syz.3.276: bg 0: block 35: padding at end of block bitmap is not set [ 146.261062][ T6762] EXT4-fs (loop3): Remounting filesystem read-only [ 146.268513][ T6762] EXT4-fs (loop3): 1 truncate cleaned up [ 146.280174][ T6762] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 146.330792][ T6765] netlink: 12 bytes leftover after parsing attributes in process `syz.1.277'. [ 146.374540][ T6755] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 146.486785][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.514956][ T6755] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 146.558206][ T6765] loop1: detected capacity change from 0 to 512 [ 146.570045][ T6765] journal_path: Non-blockdev passed as './bus' [ 146.615120][ T6765] EXT4-fs: error: could not find journal device path [ 146.725698][ T6755] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.037255][ T6778] loop1: detected capacity change from 0 to 1024 [ 147.066928][ T6778] EXT4-fs: Ignoring removed nobh option [ 147.096489][ T6778] EXT4-fs: inline encryption not supported [ 147.112768][ T6778] EXT4-fs: Ignoring removed bh option [ 147.180181][ T6755] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 147.269081][ T6778] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 147.305536][ T6755] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 147.337542][ T6755] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 147.339927][ T6790] serio: Serial port ptm0 [ 147.383446][ T6755] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 147.505865][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 147.850443][ T6802] netlink: 4 bytes leftover after parsing attributes in process `syz.3.292'. [ 148.584894][ T6820] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 149.441057][ T6848] netlink: 4 bytes leftover after parsing attributes in process `syz.1.310'. [ 149.803058][ T6857] loop5: detected capacity change from 0 to 512 [ 149.848781][ T6857] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 149.927775][ T6857] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 149.981351][ T6857] ext4 filesystem being mounted at /53/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 150.180332][ T30] kauditd_printk_skb: 22 callbacks suppressed [ 150.180357][ T30] audit: type=1800 audit(1741982403.529:267): pid=6870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.315" name="file2" dev="loop5" ino=16 res=0 errno=0 [ 150.261819][ T30] audit: type=1800 audit(1741982403.529:268): pid=6857 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.315" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 150.445869][ T6876] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 150.470268][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.498882][ T6873] loop2: detected capacity change from 0 to 2048 [ 150.578823][ T6873] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 150.601680][ T6877] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 150.744790][ T30] audit: type=1800 audit(1741982404.099:269): pid=6873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.320" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 150.913698][ T6881] tipc: Enabling of bearer rejected, failed to enable media [ 151.100630][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 151.495554][ T6892] loop4: detected capacity change from 0 to 1024 [ 151.575821][ T6892] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 152.003787][ T6905] netlink: 8 bytes leftover after parsing attributes in process `syz.5.334'. [ 152.080874][ T6909] loop2: detected capacity change from 0 to 512 [ 152.152461][ T6909] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 152.279985][ T30] audit: type=1326 audit(1741982405.619:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6912 comm="syz.5.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 152.302919][ T6909] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2862: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 152.364074][ T30] audit: type=1326 audit(1741982405.619:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6912 comm="syz.5.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 152.409707][ T6909] EXT4-fs (loop2): 1 truncate cleaned up [ 152.429001][ T6909] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.443857][ T30] audit: type=1326 audit(1741982405.619:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6912 comm="syz.5.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 152.531904][ T30] audit: type=1326 audit(1741982405.619:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6912 comm="syz.5.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 152.555648][ T6919] tipc: Started in network mode [ 152.577849][ T6919] tipc: Node identity 4, cluster identity 4711 [ 152.608600][ T6919] tipc: Node number set to 4 [ 152.655959][ T30] audit: type=1326 audit(1741982405.629:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6912 comm="syz.5.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 152.717613][ T30] audit: type=1326 audit(1741982405.629:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6912 comm="syz.5.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 152.743306][ T30] audit: type=1326 audit(1741982406.009:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6918 comm="syz.1.337" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x0 [ 152.993248][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.614167][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.685634][ T6937] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 154.745794][ T6939] loop5: detected capacity change from 0 to 512 [ 154.880330][ T6939] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 154.921796][ T6939] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 156.154842][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.312780][ T30] audit: type=1326 audit(1741982409.659:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6959 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 156.435133][ T6958] loop2: detected capacity change from 0 to 1024 [ 156.441681][ T30] audit: type=1326 audit(1741982409.659:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6959 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 156.524338][ T6958] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 156.567365][ T30] audit: type=1326 audit(1741982409.699:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6959 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=130 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 156.609045][ T6958] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 156.622512][ T6964] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4) [ 156.629609][ T6964] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 156.685391][ T6958] JBD2: no valid journal superblock found [ 156.691281][ T6958] EXT4-fs (loop2): Could not load journal inode [ 156.695586][ T30] audit: type=1326 audit(1741982409.699:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6959 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 156.758941][ T6964] vhci_hcd vhci_hcd.0: Device attached [ 156.849003][ T30] audit: type=1326 audit(1741982409.699:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6959 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 156.874096][ T6972] serio: Serial port ptm0 [ 156.949448][ T30] audit: type=1326 audit(1741982409.699:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6959 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=439 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 156.989292][ T6975] tipc: Started in network mode [ 157.013138][ T972] vhci_hcd: vhci_device speed not set [ 157.023118][ T6975] tipc: Node identity 4, cluster identity 4711 [ 157.071400][ T6975] tipc: Node number set to 4 [ 157.101448][ T30] audit: type=1326 audit(1741982409.699:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6959 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 157.114645][ T6966] vhci_hcd: connection closed [ 157.141444][ T972] usb 41-1: new full-speed USB device number 2 using vhci_hcd [ 157.148032][ T1157] vhci_hcd: stop threads [ 157.211145][ T1157] vhci_hcd: release socket [ 157.242305][ T30] audit: type=1326 audit(1741982409.699:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6959 comm="syz.3.352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 157.283400][ T1157] vhci_hcd: disconnect device [ 157.364882][ T30] audit: type=1326 audit(1741982409.919:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.4.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 157.462378][ T30] audit: type=1326 audit(1741982409.919:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6962 comm="syz.4.354" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 157.599230][ T6986] loop1: detected capacity change from 0 to 1024 [ 157.628682][ T6987] netlink: 12 bytes leftover after parsing attributes in process `syz.5.359'. [ 157.644184][ T6986] EXT4-fs: Ignoring removed bh option [ 157.734226][ T6987] netlink: 8 bytes leftover after parsing attributes in process `syz.5.359'. [ 157.765685][ T6986] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 158.029594][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 158.636543][ T7010] loop1: detected capacity change from 0 to 1024 [ 158.702277][ T7010] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c02c, mo2=0003] [ 158.753643][ T7010] System zones: 0-1, 3-36 [ 158.773799][ T7013] loop4: detected capacity change from 0 to 128 [ 158.781221][ T7010] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 158.847610][ T7013] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 158.901223][ T7015] serio: Serial port ptm0 [ 158.942399][ T7010] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.368: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 158.963887][ T7013] ext4 filesystem being mounted at /63/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 159.040609][ T7010] EXT4-fs (loop1): Remounting filesystem read-only [ 159.060514][ T7013] netlink: 12 bytes leftover after parsing attributes in process `syz.4.369'. [ 159.265787][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.393425][ T7031] netlink: 4 bytes leftover after parsing attributes in process `syz.3.373'. [ 159.683394][ T5831] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 159.966454][ T7052] loop4: detected capacity change from 0 to 1024 [ 159.988167][ T7052] EXT4-fs: Ignoring removed bh option [ 160.027824][ T7052] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 160.172421][ T7043] netlink: 96 bytes leftover after parsing attributes in process `syz.5.372'. [ 160.216406][ T7043] netlink: 'syz.5.372': attribute type 5 has an invalid length. [ 160.262702][ T7043] netlink: 44 bytes leftover after parsing attributes in process `syz.5.372'. [ 160.411728][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 160.980197][ T5897] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 161.047290][ T7073] loop1: detected capacity change from 0 to 1024 [ 161.120560][ T7073] EXT4-fs: Ignoring removed nomblk_io_submit option [ 161.130041][ T5897] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 161.254394][ T7073] EXT4-fs: Mount option(s) incompatible with ext2 [ 161.514695][ T7084] serio: Serial port ptm0 [ 162.194511][ T7100] loop4: detected capacity change from 0 to 2048 [ 162.252139][ T7100] EXT4-fs: Ignoring removed orlov option [ 162.292656][ T7100] EXT4-fs: Ignoring removed bh option [ 162.298139][ T7100] EXT4-fs: Ignoring removed bh option [ 162.313701][ T972] vhci_hcd: vhci_device speed not set [ 162.564774][ T7100] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0002] [ 162.620261][ T7100] System zones: 0-4 [ 162.774144][ T7100] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 162.793598][ T7105] loop1: detected capacity change from 0 to 1024 [ 162.812571][ T7100] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 162.843726][ T7105] EXT4-fs: Ignoring removed bh option [ 162.939349][ T7105] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 163.409106][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 163.586947][ T7092] mmap: syz.5.387 (7092) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 163.656464][ T1157] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm kworker/u8:6: bg 0: block 345: padding at end of block bitmap is not set [ 163.729237][ T1157] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 340 with error 117 [ 163.758951][ T30] kauditd_printk_skb: 10 callbacks suppressed [ 163.758976][ T30] audit: type=1326 audit(1741982673.106:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.5.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 163.814997][ T1157] EXT4-fs (loop4): This should not happen!! Data will be lost [ 163.814997][ T1157] [ 163.847780][ T7092] loop5: detected capacity change from 0 to 1024 [ 163.871310][ T30] audit: type=1326 audit(1741982673.106:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.5.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 163.927596][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.940630][ T30] audit: type=1326 audit(1741982673.116:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.5.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 164.032024][ T30] audit: type=1326 audit(1741982673.116:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.5.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f143778d1a3 code=0x7ffc0000 [ 164.057272][ T30] audit: type=1326 audit(1741982673.176:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.5.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f143778bc1f code=0x7ffc0000 [ 164.079831][ T30] audit: type=1326 audit(1741982673.196:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.5.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f143778d1f7 code=0x7ffc0000 [ 164.164966][ T7092] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 164.182514][ T7092] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 164.214066][ T30] audit: type=1326 audit(1741982673.196:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.5.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f143778bad0 code=0x7ffc0000 [ 164.375190][ T30] audit: type=1326 audit(1741982673.196:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.5.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f143778cd6b code=0x7ffc0000 [ 164.411383][ T7143] loop1: detected capacity change from 0 to 512 [ 164.450263][ T30] audit: type=1326 audit(1741982673.326:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.5.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f143778bdca code=0x7ffc0000 [ 164.545623][ T7143] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 164.572321][ T30] audit: type=1326 audit(1741982673.326:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7091 comm="syz.5.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f143778bdca code=0x7ffc0000 [ 164.655131][ T7143] EXT4-fs (loop1): orphan cleanup on readonly fs [ 164.717713][ T7143] EXT4-fs warning (device loop1): ext4_enable_quotas:7141: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 164.789166][ T7143] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 164.856320][ T7143] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.398: bg 0: block 40: padding at end of block bitmap is not set [ 164.975336][ T7143] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 165.025756][ T7143] EXT4-fs (loop1): 1 truncate cleaned up [ 165.086028][ T7143] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 165.114267][ T26] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 165.154917][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.207780][ T26] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 165.559156][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 165.642730][ T7168] netlink: 140 bytes leftover after parsing attributes in process `syz.5.404'. [ 171.577609][ T7273] netlink: 4 bytes leftover after parsing attributes in process `syz.1.436'. [ 171.632714][ T7273] netlink: 4 bytes leftover after parsing attributes in process `syz.1.436'. [ 173.196213][ T7298] netlink: 68 bytes leftover after parsing attributes in process `syz.2.441'. [ 173.616878][ T7313] loop2: detected capacity change from 0 to 128 [ 173.646150][ T7311] IPv6: Can't replace route, no match found [ 173.720854][ T7313] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 173.869198][ T7313] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 174.333896][ T5830] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 174.373235][ T7331] netlink: 96 bytes leftover after parsing attributes in process `syz.1.453'. [ 174.543249][ T7333] netlink: 372 bytes leftover after parsing attributes in process `syz.3.454'. [ 174.586636][ T7335] loop5: detected capacity change from 0 to 512 [ 174.659381][ T7335] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 174.685739][ T7337] loop2: detected capacity change from 0 to 512 [ 174.771381][ T7337] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 174.773022][ T7335] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 174.806128][ T7339] netlink: 68 bytes leftover after parsing attributes in process `syz.0.457'. [ 174.819387][ T7337] ext4 filesystem being mounted at /69/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 174.846950][ T7335] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 175.182006][ T30] kauditd_printk_skb: 27 callbacks suppressed [ 175.182033][ T30] audit: type=1800 audit(1741982684.526:333): pid=7335 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.456" name="file2" dev="loop5" ino=16 res=0 errno=0 [ 175.776613][ T7349] loop3: detected capacity change from 0 to 1024 [ 175.853347][ T7349] EXT4-fs: Ignoring removed nomblk_io_submit option [ 175.912392][ T7349] EXT4-fs: Mount option(s) incompatible with ext2 [ 176.269354][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 176.312152][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 176.429759][ T7359] netlink: 8 bytes leftover after parsing attributes in process `syz.1.461'. [ 177.964062][ T30] audit: type=1326 audit(1741982687.316:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7378 comm="syz.1.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 178.075005][ T30] audit: type=1326 audit(1741982687.316:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7378 comm="syz.1.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 178.173575][ T30] audit: type=1326 audit(1741982687.316:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7378 comm="syz.1.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 178.199797][ T7383] loop3: detected capacity change from 0 to 2048 [ 178.220802][ T7383] EXT4-fs: Ignoring removed orlov option [ 178.263572][ T30] audit: type=1326 audit(1741982687.316:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7378 comm="syz.1.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 178.367963][ T7383] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 178.441484][ T30] audit: type=1326 audit(1741982687.406:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7378 comm="syz.1.471" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 178.743270][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 179.110804][ T7405] netlink: 372 bytes leftover after parsing attributes in process `syz.3.480'. [ 179.110810][ T7403] bond_slave_1: entered promiscuous mode [ 179.121595][ T7403] netlink: 4 bytes leftover after parsing attributes in process `syz.2.482'. [ 179.389255][ T7403] bond0: (slave bond_slave_1): Releasing backup interface [ 179.414175][ T7403] bond_slave_1 (unregistering): left promiscuous mode [ 180.301671][ T7430] loop3: detected capacity change from 0 to 2048 [ 180.367792][ T7429] tipc: Started in network mode [ 180.404779][ T7429] tipc: Node identity 4, cluster identity 4711 [ 180.468685][ T7429] tipc: Node number set to 4 [ 180.718910][ T7439] loop1: detected capacity change from 0 to 1024 [ 180.726685][ T7439] EXT4-fs: Ignoring removed i_version option [ 180.762522][ T7439] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 180.775530][ T7430] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 180.843164][ T7439] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 180.874007][ T7439] System zones: 0-1, 3-36 [ 180.890572][ T30] audit: type=1800 audit(1741982690.236:339): pid=7430 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.490" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 180.956319][ T7439] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 181.168750][ T30] audit: type=1800 audit(1741982690.516:340): pid=7439 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.492" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 181.248642][ T7445] loop4: detected capacity change from 0 to 512 [ 181.261562][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.286099][ T7445] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 181.456919][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.535054][ T7445] EXT4-fs (loop4): 1 truncate cleaned up [ 181.541786][ T7445] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 182.114505][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 182.376487][ T30] audit: type=1326 audit(1741982691.726:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 182.512578][ T30] audit: type=1326 audit(1741982691.736:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 182.671664][ T30] audit: type=1326 audit(1741982691.736:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 182.959771][ T7467] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 183.582347][ T30] audit: type=1326 audit(1741982691.736:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 183.626643][ T30] audit: type=1326 audit(1741982691.746:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 183.741688][ T30] audit: type=1326 audit(1741982691.746:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 183.782539][ T30] audit: type=1326 audit(1741982691.746:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 183.963113][ T30] audit: type=1326 audit(1741982691.746:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.4.502" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 185.498717][ T7497] loop1: detected capacity change from 0 to 1024 [ 185.559107][ T7497] EXT4-fs: Ignoring removed nobh option [ 185.608219][ T7497] EXT4-fs: Ignoring removed bh option [ 185.697687][ T7497] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 185.700294][ T7505] loop4: detected capacity change from 0 to 512 [ 185.921455][ T7505] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.520: bg 0: block 35: padding at end of block bitmap is not set [ 186.016346][ T7516] loop5: detected capacity change from 0 to 128 [ 186.024608][ T7516] EXT4-fs (loop5): VFS: Found ext4 filesystem with invalid superblock checksum. Run e2fsck? [ 186.078713][ T7505] EXT4-fs (loop4): Remounting filesystem read-only [ 186.127549][ T7505] EXT4-fs (loop4): 1 truncate cleaned up [ 186.186095][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 186.213047][ T7505] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 186.343197][ T7505] netlink: 40 bytes leftover after parsing attributes in process `syz.4.520'. [ 186.418543][ T7522] geneve0: entered allmulticast mode [ 186.683081][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.843599][ T30] kauditd_printk_skb: 11 callbacks suppressed [ 187.843625][ T30] audit: type=1326 audit(1741982697.196:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7533 comm="syz.3.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 188.823757][ T30] audit: type=1326 audit(1741982697.196:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7533 comm="syz.3.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 188.848815][ T30] audit: type=1326 audit(1741982697.196:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7533 comm="syz.3.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 188.871810][ T30] audit: type=1326 audit(1741982697.196:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7533 comm="syz.3.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 188.993371][ T30] audit: type=1326 audit(1741982697.196:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7533 comm="syz.3.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 189.217500][ T30] audit: type=1326 audit(1741982697.196:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7533 comm="syz.3.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 189.433467][ T30] audit: type=1326 audit(1741982697.196:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7533 comm="syz.3.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 189.493024][ T30] audit: type=1326 audit(1741982697.196:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7533 comm="syz.3.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 189.517900][ T30] audit: type=1326 audit(1741982697.196:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7533 comm="syz.3.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 189.540435][ T30] audit: type=1326 audit(1741982697.196:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7533 comm="syz.3.530" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 190.032456][ T7558] loop1: detected capacity change from 0 to 512 [ 190.064721][ T7558] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 190.208416][ T7558] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 190.703088][ T7558] ext4 filesystem being mounted at /101/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 191.211496][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.474033][ T7580] loop5: detected capacity change from 0 to 2048 [ 191.551871][ T7580] loop5: p1 < > p4 [ 191.677297][ T7580] loop5: p4 size 8388608 extends beyond EOD, truncated [ 192.126526][ T7588] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8) [ 192.133123][ T7588] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 192.141884][ T7588] vhci_hcd vhci_hcd.0: Device attached [ 192.581729][ T7591] vhci_hcd: connection closed [ 192.613785][ T36] vhci_hcd: stop threads [ 192.760463][ T5942] usb 35-1: new high-speed USB device number 2 using vhci_hcd [ 192.872296][ T36] vhci_hcd: release socket [ 192.879980][ T36] vhci_hcd: disconnect device [ 193.550469][ T7607] loop5: detected capacity change from 0 to 128 [ 193.588625][ T7607] EXT4-fs: Ignoring removed nobh option [ 193.644339][ T7607] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 193.663780][ T7609] serio: Serial port ptm0 [ 193.810083][ T7607] ext4 filesystem being mounted at /97/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 193.906823][ T7607] EXT4-fs (loop5): shut down requested (0) [ 194.107461][ T7622] tipc: Started in network mode [ 194.122578][ T7622] tipc: Node identity ac14140f, cluster identity 4711 [ 194.158966][ T7622] tipc: New replicast peer: 255.0.0.255 [ 194.212797][ T7622] tipc: Enabled bearer , priority 10 [ 194.349898][ T7629] loop1: detected capacity change from 0 to 512 [ 194.359547][ T5833] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 194.411667][ T7629] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 194.545853][ T7629] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.559467][ T7639] loop2: detected capacity change from 0 to 512 [ 194.652737][ T7629] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 194.670925][ T7639] EXT4-fs (loop2): failed to initialize system zone (-117) [ 194.682798][ T7639] EXT4-fs (loop2): mount failed [ 194.800818][ T30] kauditd_printk_skb: 43 callbacks suppressed [ 194.800846][ T30] audit: type=1800 audit(1741982704.146:413): pid=7629 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.555" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 194.839152][ T7639] loop2: detected capacity change from 0 to 128 [ 195.027378][ T7648] syz.2.558: attempt to access beyond end of device [ 195.027378][ T7648] loop2: rw=2049, sector=145, nr_sectors = 336 limit=128 [ 195.201211][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.323697][ T5940] tipc: Node number set to 2886997007 [ 195.726949][ T7661] serio: Serial port ptm0 [ 197.638512][ T7700] loop5: detected capacity change from 0 to 1024 [ 197.672119][ T7700] EXT4-fs: Ignoring removed bh option [ 197.698463][ T7700] EXT4-fs: inline encryption not supported [ 197.759319][ T7700] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 197.803163][ T7706] tipc: Started in network mode [ 197.808079][ T7706] tipc: Node identity 4, cluster identity 4711 [ 197.821643][ T7706] tipc: Node number set to 4 [ 197.834422][ T7700] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 197.913400][ T7700] EXT4-fs error (device loop5): ext4_map_blocks:671: inode #3: block 2: comm syz.5.584: lblock 2 mapped to illegal pblock 2 (length 1) [ 197.970262][ T7700] Quota error (device loop5): qtree_write_dquot: dquota write failed [ 197.984899][ T7700] EXT4-fs error (device loop5): ext4_map_blocks:671: inode #3: block 48: comm syz.5.584: lblock 0 mapped to illegal pblock 48 (length 1) [ 198.008982][ T5942] vhci_hcd: vhci_device speed not set [ 198.016335][ T7700] Quota error (device loop5): v2_write_file_info: Can't write info structure [ 198.025868][ T7700] EXT4-fs error (device loop5): ext4_acquire_dquot:6925: comm syz.5.584: Failed to acquire dquot type 0 [ 198.051315][ T7700] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 198.079055][ T7700] EXT4-fs error (device loop5): ext4_evict_inode:256: inode #11: comm syz.5.584: mark_inode_dirty error [ 198.102704][ T7700] EXT4-fs warning (device loop5): ext4_evict_inode:258: couldn't mark inode dirty (err -117) [ 198.146602][ T7700] EXT4-fs (loop5): 1 orphan inode deleted [ 198.167060][ T36] EXT4-fs error (device loop5): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1) [ 198.183067][ T7700] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 198.213568][ T36] Quota error (device loop5): remove_tree: Can't read quota data block 1 [ 198.222079][ T36] EXT4-fs error (device loop5): ext4_release_dquot:6948: comm kworker/u8:2: Failed to release dquot type 0 [ 198.267784][ T7700] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.289110][ T7700] EXT4-fs error (device loop5): __ext4_get_inode_loc:4434: comm syz.5.584: Invalid inode table block 1 in block_group 0 [ 198.332769][ T7700] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 198.343086][ T7700] EXT4-fs error (device loop5): ext4_quota_off:7194: inode #3: comm syz.5.584: mark_inode_dirty error [ 198.748948][ T7720] loop2: detected capacity change from 0 to 256 [ 198.770570][ T7720] FAT-fs (loop2): Directory bread(block 1285) failed [ 198.795983][ T7720] FAT-fs (loop2): Directory bread(block 1285) failed [ 198.813144][ T7720] FAT-fs (loop2): Directory bread(block 1285) failed [ 198.836051][ T7720] FAT-fs (loop2): Directory bread(block 1285) failed [ 198.859657][ T7727] FAT-fs (loop2): Directory bread(block 1285) failed [ 198.869262][ T7726] loop1: detected capacity change from 0 to 256 [ 198.936047][ T7727] FAT-fs (loop2): FAT read failed (blocknr 1281) [ 198.948877][ T30] audit: type=1804 audit(1741982708.296:414): pid=7726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.593" name="/newroot/114/file1/file0" dev="loop1" ino=6 res=1 errno=0 [ 199.022155][ T7729] netlink: 12 bytes leftover after parsing attributes in process `syz.5.594'. [ 199.039443][ T30] audit: type=1326 audit(1741982708.366:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7719 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 199.127134][ T30] audit: type=1326 audit(1741982708.386:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7719 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 199.190291][ T30] audit: type=1326 audit(1741982708.386:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7719 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 199.257276][ T7535] Set syz1 is full, maxelem 65536 reached [ 199.267318][ T30] audit: type=1326 audit(1741982708.386:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7719 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 199.370429][ T30] audit: type=1326 audit(1741982708.426:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7719 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 200.049922][ T7741] loop2: detected capacity change from 0 to 2048 [ 200.100635][ T7741] EXT4-fs: Ignoring removed orlov option [ 201.107558][ T7753] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8) [ 201.114154][ T7753] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 201.122721][ T7753] vhci_hcd vhci_hcd.0: Device attached [ 201.137049][ T7757] vhci_hcd: connection closed [ 201.147070][ T7741] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 201.466717][ T7291] vhci_hcd: stop threads [ 201.558134][ T7291] vhci_hcd: release socket [ 201.622030][ T972] usb 39-1: new high-speed USB device number 2 using vhci_hcd [ 201.706686][ T7291] vhci_hcd: disconnect device [ 201.871192][ T972] usb 39-1: enqueue for inactive port 0 [ 201.939553][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.966785][ T972] vhci_hcd: vhci_device speed not set [ 202.179986][ T7765] loop3: detected capacity change from 0 to 1024 [ 202.247602][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 202.247631][ T30] audit: type=1326 audit(1741982711.576:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 202.304831][ T7765] EXT4-fs: Ignoring removed bh option [ 202.356959][ T30] audit: type=1326 audit(1741982711.576:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 202.362369][ T7765] EXT4-fs: inline encryption not supported [ 202.389987][ T30] audit: type=1326 audit(1741982711.646:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 202.453185][ T7769] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10) [ 202.459869][ T7769] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 202.467787][ T7769] vhci_hcd vhci_hcd.0: Device attached [ 202.470828][ T30] audit: type=1326 audit(1741982711.646:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 202.521813][ T7765] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 202.543948][ T30] audit: type=1326 audit(1741982711.656:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 202.585954][ T7765] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 202.595416][ T30] audit: type=1326 audit(1741982711.666:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 202.630064][ T7765] EXT4-fs error (device loop3): ext4_map_blocks:671: inode #3: block 2: comm syz.3.605: lblock 2 mapped to illegal pblock 2 (length 1) [ 202.645206][ T7765] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 202.655844][ T30] audit: type=1326 audit(1741982711.666:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 202.678788][ T7765] EXT4-fs error (device loop3): ext4_map_blocks:671: inode #3: block 48: comm syz.3.605: lblock 0 mapped to illegal pblock 48 (length 1) [ 202.695379][ T7765] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 202.705113][ T7765] EXT4-fs error (device loop3): ext4_acquire_dquot:6925: comm syz.3.605: Failed to acquire dquot type 0 [ 202.725685][ T7765] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 202.736497][ T7765] EXT4-fs error (device loop3): ext4_evict_inode:256: inode #11: comm syz.3.605: mark_inode_dirty error [ 202.748357][ T30] audit: type=1326 audit(1741982711.666:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7766 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 202.748589][ T7765] EXT4-fs warning (device loop3): ext4_evict_inode:258: couldn't mark inode dirty (err -117) [ 202.771219][ T5901] usb 35-1: new high-speed USB device number 3 using vhci_hcd [ 202.806282][ T7778] netlink: 28 bytes leftover after parsing attributes in process `syz.4.608'. [ 202.819769][ T7765] EXT4-fs (loop3): 1 orphan inode deleted [ 202.832684][ T53] EXT4-fs error (device loop3): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1) [ 202.866000][ T7771] vhci_hcd: connection reset by peer [ 202.884297][ T7765] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.896989][ T3566] vhci_hcd: stop threads [ 202.901344][ T3566] vhci_hcd: release socket [ 202.912452][ T3566] vhci_hcd: disconnect device [ 202.912639][ T53] EXT4-fs error (device loop3): ext4_release_dquot:6948: comm kworker/u8:3: Failed to release dquot type 0 [ 202.939245][ T7779] loop5: detected capacity change from 0 to 512 [ 202.986650][ T7779] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 203.023809][ T7779] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 203.180203][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 203.206438][ T5832] EXT4-fs error (device loop3): __ext4_get_inode_loc:4434: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 203.224344][ T5832] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 203.284357][ T5832] EXT4-fs error (device loop3): ext4_quota_off:7194: inode #3: comm syz-executor: mark_inode_dirty error [ 203.803384][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 204.073111][ T7809] netlink: 12 bytes leftover after parsing attributes in process `syz.1.621'. [ 204.141359][ T7812] netlink: 28 bytes leftover after parsing attributes in process `syz.2.622'. [ 204.717341][ T7821] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(8) [ 204.723931][ T7821] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 204.731898][ T7821] vhci_hcd vhci_hcd.0: Device attached [ 204.812000][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 204.832949][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 205.031776][ T7822] vhci_hcd: connection closed [ 205.033258][ T26] usb 43-1: new high-speed USB device number 2 using vhci_hcd [ 205.055789][ T7291] vhci_hcd: stop threads [ 205.060155][ T7291] vhci_hcd: release socket [ 205.163494][ T7291] vhci_hcd: disconnect device [ 205.287955][ T26] usb 43-1: enqueue for inactive port 0 [ 205.422472][ T26] vhci_hcd: vhci_device speed not set [ 205.906782][ T7839] loop4: detected capacity change from 0 to 512 [ 206.000213][ T7839] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 206.043136][ T7832] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9) [ 206.049726][ T7832] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 206.059101][ T7832] vhci_hcd vhci_hcd.0: Device attached [ 206.088878][ T7839] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 206.165208][ T7847] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 206.261865][ T7854] netlink: 28 bytes leftover after parsing attributes in process `syz.3.637'. [ 206.326060][ T972] usb 37-1: new high-speed USB device number 2 using vhci_hcd [ 206.425989][ T7845] vhci_hcd: connection reset by peer [ 206.453666][ T53] vhci_hcd: stop threads [ 206.458048][ T53] vhci_hcd: release socket [ 206.469556][ T53] vhci_hcd: disconnect device [ 206.742100][ T7866] loop3: detected capacity change from 0 to 512 [ 206.753721][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.912550][ T7866] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 207.007430][ T7866] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 207.265712][ T7882] loop4: detected capacity change from 0 to 512 [ 207.321563][ T7882] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.646: bg 0: block 35: padding at end of block bitmap is not set [ 207.380062][ T7882] EXT4-fs (loop4): Remounting filesystem read-only [ 207.397272][ T7882] EXT4-fs (loop4): 1 truncate cleaned up [ 207.411717][ T7876] netlink: 4 bytes leftover after parsing attributes in process `syz.0.641'. [ 207.416118][ T7882] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 207.683298][ T7775] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 207.911273][ T5901] vhci_hcd: vhci_device speed not set [ 208.411825][ T7887] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8) [ 208.418411][ T7887] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 208.429124][ T7887] vhci_hcd vhci_hcd.0: Device attached [ 208.430248][ T7888] vhci_hcd: connection closed [ 208.473310][ T13] vhci_hcd: stop threads [ 208.505268][ T13] vhci_hcd: release socket [ 208.530379][ T13] vhci_hcd: disconnect device [ 208.587303][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.231557][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.485404][ T30] kauditd_printk_skb: 54 callbacks suppressed [ 209.485431][ T30] audit: type=1326 audit(1741982718.836:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7901 comm="syz.5.654" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x0 [ 209.603443][ T7912] loop2: detected capacity change from 0 to 512 [ 209.660416][ T7908] loop1: detected capacity change from 0 to 2048 [ 209.894092][ T7908] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 209.910804][ T7912] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 209.976703][ T7912] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 210.006883][ T7921] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10) [ 210.013537][ T7921] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 210.021279][ T7921] vhci_hcd vhci_hcd.0: Device attached [ 210.031684][ T30] audit: type=1800 audit(1741982719.376:483): pid=7908 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.655" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 210.262359][ T5848] usb 39-1: new high-speed USB device number 3 using vhci_hcd [ 210.397600][ T7934] loop5: detected capacity change from 0 to 512 [ 210.442564][ T7920] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 210.458621][ T7924] vhci_hcd: connection reset by peer [ 210.486803][ T36] vhci_hcd: stop threads [ 210.491104][ T36] vhci_hcd: release socket [ 210.507906][ T36] vhci_hcd: disconnect device [ 210.641115][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 210.747250][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 210.784934][ T7934] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 210.858704][ T7934] ext4 filesystem being mounted at /117/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 211.314705][ T7947] netlink: 8 bytes leftover after parsing attributes in process `syz.4.664'. [ 211.475918][ T972] vhci_hcd: vhci_device speed not set [ 212.320460][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 212.383289][ T7953] netlink: 28 bytes leftover after parsing attributes in process `syz.3.665'. [ 212.418354][ T7956] loop2: detected capacity change from 0 to 512 [ 212.448417][ T7956] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm syz.2.667: bg 0: block 35: padding at end of block bitmap is not set [ 212.561201][ T7956] EXT4-fs (loop2): Remounting filesystem read-only [ 212.606398][ T7956] EXT4-fs (loop2): 1 truncate cleaned up [ 212.660675][ T7956] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 212.706144][ T7964] tipc: New replicast peer: 255.0.0.255 [ 212.711909][ T7964] tipc: Enabled bearer , priority 10 [ 212.966853][ T7970] loop1: detected capacity change from 0 to 512 [ 213.003758][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.216835][ T7970] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 213.330242][ T7970] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 213.455419][ T7984] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(10) [ 213.462106][ T7984] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 213.469895][ T7984] vhci_hcd vhci_hcd.0: Device attached [ 213.751443][ T7996] loop2: detected capacity change from 0 to 256 [ 213.893579][ T7996] msdos: Bad value for 'gid' [ 213.899729][ T7986] vhci_hcd: connection closed [ 213.922776][ T13] vhci_hcd: stop threads [ 213.942055][ T7996] msdos: Bad value for 'gid' [ 213.971293][ T13] vhci_hcd: release socket [ 213.982823][ T13] vhci_hcd: disconnect device [ 213.995097][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 213.996715][ T7998] netlink: 28 bytes leftover after parsing attributes in process `syz.5.683'. [ 214.645372][ T30] audit: type=1326 audit(1741982723.996:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 214.762000][ T30] audit: type=1326 audit(1741982724.026:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 214.791945][ T30] audit: type=1326 audit(1741982724.026:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 215.194204][ T8008] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8) [ 215.200789][ T8008] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 215.208756][ T8008] vhci_hcd vhci_hcd.0: Device attached [ 215.313368][ T8010] vhci_hcd: connection closed [ 215.320173][ T53] vhci_hcd: stop threads [ 215.422682][ T5848] vhci_hcd: vhci_device speed not set [ 215.439187][ T30] audit: type=1326 audit(1741982724.026:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 215.611889][ T53] vhci_hcd: release socket [ 215.678621][ T30] audit: type=1326 audit(1741982724.026:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 215.701238][ T53] vhci_hcd: disconnect device [ 215.712357][ T30] audit: type=1326 audit(1741982724.036:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 215.798305][ T30] audit: type=1326 audit(1741982724.036:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 215.960008][ T8017] loop2: detected capacity change from 0 to 512 [ 216.085887][ T8017] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 216.099074][ T8017] ext4 filesystem being mounted at /108/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 216.771266][ T30] audit: type=1326 audit(1741982724.036:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 216.796152][ T30] audit: type=1326 audit(1741982724.036:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 216.818589][ T30] audit: type=1326 audit(1741982724.036:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8005 comm="syz.4.685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 217.021405][ T8024] loop1: detected capacity change from 0 to 512 [ 217.119172][ T5142] Bluetooth: hci0: command 0x0406 tx timeout [ 217.125678][ T5852] Bluetooth: hci2: command 0x0406 tx timeout [ 217.131722][ T5852] Bluetooth: hci5: command 0x0406 tx timeout [ 217.138711][ T5854] Bluetooth: hci3: command 0x0406 tx timeout [ 217.147132][ T5844] Bluetooth: hci4: command 0x0406 tx timeout [ 217.154657][ T5852] Bluetooth: hci1: command 0x0406 tx timeout [ 217.247183][ T8024] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.691: bg 0: block 35: padding at end of block bitmap is not set [ 217.361316][ T8024] EXT4-fs (loop1): Remounting filesystem read-only [ 217.416035][ T8024] EXT4-fs (loop1): 1 truncate cleaned up [ 217.493598][ T8024] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 217.559586][ T8022] loop4: detected capacity change from 0 to 8192 [ 218.158813][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.606047][ T8034] loop5: detected capacity change from 0 to 512 [ 218.817802][ T8034] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 218.932843][ T8034] ext4 filesystem being mounted at /123/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 218.952870][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.232587][ T8048] netlink: 20 bytes leftover after parsing attributes in process `syz.1.700'. [ 219.262843][ T8049] netlink: 'syz.3.701': attribute type 27 has an invalid length. [ 219.279296][ T8053] netlink: 8 bytes leftover after parsing attributes in process `syz.2.699'. [ 219.312411][ T8053] netlink: 4 bytes leftover after parsing attributes in process `syz.2.699'. [ 219.661627][ T8062] netlink: 140 bytes leftover after parsing attributes in process `syz.0.703'. [ 219.775346][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.119977][ T8073] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 220.161894][ T8078] loop5: detected capacity change from 0 to 512 [ 220.238176][ T8080] netlink: 4 bytes leftover after parsing attributes in process `syz.2.711'. [ 220.248317][ T8078] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.707: bg 0: block 35: padding at end of block bitmap is not set [ 220.368682][ T8078] EXT4-fs (loop5): Remounting filesystem read-only [ 220.423037][ T8078] EXT4-fs (loop5): 1 truncate cleaned up [ 220.429821][ T8078] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 220.809537][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.871399][ T8091] netlink: 8 bytes leftover after parsing attributes in process `syz.3.717'. [ 220.886388][ T8091] netlink: 4 bytes leftover after parsing attributes in process `syz.3.717'. [ 221.029638][ T8097] netlink: 20 bytes leftover after parsing attributes in process `syz.0.718'. [ 221.312898][ T8104] netlink: 8 bytes leftover after parsing attributes in process `syz.3.721'. [ 221.435246][ T8110] netlink: 140 bytes leftover after parsing attributes in process `syz.1.722'. [ 222.205382][ T8132] loop1: detected capacity change from 0 to 512 [ 222.252508][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 222.252537][ T30] audit: type=1326 audit(1741982731.596:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8128 comm="syz.4.733" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x0 [ 222.346133][ T8132] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 222.376958][ T8132] ext4 filesystem being mounted at /138/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 223.395477][ T30] audit: type=1326 audit(1741982732.746:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8156 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 223.452826][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.462633][ T8158] rdma_rxe: rxe_newlink: failed to add syz_tun [ 223.518401][ T30] audit: type=1326 audit(1741982732.776:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8156 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 223.637123][ T30] audit: type=1326 audit(1741982732.776:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8156 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 223.789152][ T30] audit: type=1326 audit(1741982732.776:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8156 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 223.892506][ T30] audit: type=1326 audit(1741982732.776:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8156 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 223.986123][ T30] audit: type=1326 audit(1741982732.776:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8156 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 224.082314][ T30] audit: type=1326 audit(1741982732.776:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8156 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f473058f087 code=0x7ffc0000 [ 224.206638][ T30] audit: type=1326 audit(1741982732.776:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8156 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f473058effc code=0x7ffc0000 [ 224.309158][ T30] audit: type=1326 audit(1741982732.776:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8156 comm="syz.2.741" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f473058ef34 code=0x7ffc0000 [ 224.393334][ T8189] __nla_validate_parse: 1 callbacks suppressed [ 224.393359][ T8189] netlink: 20 bytes leftover after parsing attributes in process `syz.1.752'. [ 224.704369][ T8197] syz.2.755 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 224.788240][ T8197] netlink: 16 bytes leftover after parsing attributes in process `syz.2.755'. [ 224.867305][ T8197] loop2: detected capacity change from 0 to 512 [ 224.961529][ T8197] EXT4-fs error (device loop2): ext4_quota_enable:7101: comm syz.2.755: inode #33554432: comm syz.2.755: iget: illegal inode # [ 225.018886][ T8197] EXT4-fs error (device loop2): ext4_quota_enable:7103: comm syz.2.755: Bad quota inode: 33554432, type: 2 [ 225.162137][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 225.171067][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 225.176161][ T8197] EXT4-fs warning (device loop2): ext4_enable_quotas:7141: Failed to enable quota tracking (type=2, err=-117, ino=33554432). Please run e2fsck to fix. [ 225.242720][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 225.276656][ T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!! [ 225.286977][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 225.304526][ T8197] EXT4-fs (loop2): mount failed [ 225.757209][ T8224] netlink: 12 bytes leftover after parsing attributes in process `syz.0.762'. [ 225.891358][ T8224] bond1: entered promiscuous mode [ 225.963452][ T8224] 8021q: adding VLAN 0 to HW filter on device bond1 [ 226.318009][ T8256] loop1: detected capacity change from 0 to 512 [ 226.455200][ T8256] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 226.468361][ T8256] ext4 filesystem being mounted at /143/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 227.175813][ T8261] netlink: 20 bytes leftover after parsing attributes in process `syz.5.771'. [ 227.820651][ T8268] netlink: 8 bytes leftover after parsing attributes in process `syz.2.772'. [ 229.554485][ T8271] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 229.690287][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.742504][ T8282] netlink: 'syz.0.775': attribute type 27 has an invalid length. [ 229.877218][ T8287] loop1: detected capacity change from 0 to 512 [ 229.979180][ T8287] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 230.060987][ T8287] ext4 filesystem being mounted at /144/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 230.375516][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 231.262919][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 231.276790][ T30] kauditd_printk_skb: 14 callbacks suppressed [ 231.276813][ T30] audit: type=1800 audit(1741982740.616:522): pid=8314 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.785" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 231.372747][ T8318] netlink: 20 bytes leftover after parsing attributes in process `syz.3.786'. [ 231.792713][ T8330] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 231.907235][ T30] audit: type=1326 audit(1741982741.256:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8333 comm="syz.2.794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 231.975627][ T30] audit: type=1326 audit(1741982741.256:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8333 comm="syz.2.794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 232.035529][ T8334] rdma_rxe: rxe_newlink: failed to add syz_tun [ 232.062870][ T30] audit: type=1326 audit(1741982741.256:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8333 comm="syz.2.794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 232.172973][ T30] audit: type=1326 audit(1741982741.256:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8333 comm="syz.2.794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 232.311262][ T30] audit: type=1326 audit(1741982741.256:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8333 comm="syz.2.794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 232.421291][ T8346] loop3: detected capacity change from 0 to 512 [ 232.435269][ T30] audit: type=1326 audit(1741982741.256:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8333 comm="syz.2.794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 232.470274][ T30] audit: type=1326 audit(1741982741.256:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8333 comm="syz.2.794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 232.504905][ T30] audit: type=1326 audit(1741982741.306:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8333 comm="syz.2.794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f473058f087 code=0x7ffc0000 [ 232.541302][ T30] audit: type=1326 audit(1741982741.306:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8333 comm="syz.2.794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f473058effc code=0x7ffc0000 [ 232.582097][ T8346] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 232.602738][ T8346] ext4 filesystem being mounted at /125/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 236.075620][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 236.103834][ T8392] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 236.936788][ T8410] loop5: detected capacity change from 0 to 512 [ 236.981969][ T8410] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.820: bg 0: block 35: padding at end of block bitmap is not set [ 237.073658][ T8410] EXT4-fs (loop5): Remounting filesystem read-only [ 237.096306][ T8410] EXT4-fs (loop5): 1 truncate cleaned up [ 237.133402][ T8410] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 239.022389][ T8428] netlink: 'syz.2.826': attribute type 11 has an invalid length. [ 239.030197][ T8428] netlink: 36 bytes leftover after parsing attributes in process `syz.2.826'. [ 239.443606][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 239.857562][ T8437] netlink: 372 bytes leftover after parsing attributes in process `syz.0.830'. [ 240.339781][ T30] kauditd_printk_skb: 18 callbacks suppressed [ 240.339809][ T30] audit: type=1326 audit(1741982749.686:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8454 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 240.477099][ T30] audit: type=1326 audit(1741982749.686:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8454 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 240.569635][ T8463] loop5: detected capacity change from 0 to 512 [ 240.597660][ T30] audit: type=1326 audit(1741982749.726:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8454 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 240.676677][ T8463] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.840: bg 0: block 35: padding at end of block bitmap is not set [ 240.691669][ T30] audit: type=1326 audit(1741982749.736:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8454 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 240.724592][ T30] audit: type=1326 audit(1741982749.736:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8454 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 240.748454][ T30] audit: type=1326 audit(1741982749.736:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8454 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 240.771421][ T30] audit: type=1326 audit(1741982749.736:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8454 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 240.794243][ T30] audit: type=1326 audit(1741982749.736:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8454 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 240.816690][ T30] audit: type=1326 audit(1741982749.736:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8454 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 240.841009][ T30] audit: type=1326 audit(1741982749.736:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8454 comm="syz.3.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 240.853790][ T8463] EXT4-fs (loop5): Remounting filesystem read-only [ 240.882504][ T8463] EXT4-fs (loop5): 1 truncate cleaned up [ 240.890111][ T8463] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 241.160824][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.512415][ T8485] bridge0: entered promiscuous mode [ 241.524403][ T8485] bridge0: port 3(macsec1) entered blocking state [ 241.658392][ T8485] bridge0: port 3(macsec1) entered disabled state [ 241.711187][ T8488] netlink: 372 bytes leftover after parsing attributes in process `syz.1.849'. [ 241.836964][ T8485] macsec1: entered allmulticast mode [ 241.976430][ T8485] bridge0: entered allmulticast mode [ 242.393285][ T8485] macsec1: left allmulticast mode [ 242.398392][ T8485] bridge0: left allmulticast mode [ 242.472094][ T8485] bridge0: left promiscuous mode [ 242.520757][ T8493] rdma_rxe: rxe_newlink: failed to add syz_tun [ 243.490968][ T8505] loop4: detected capacity change from 0 to 512 [ 243.629724][ T8509] loop2: detected capacity change from 0 to 512 [ 243.760328][ T8505] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 243.812571][ T8505] ext4 filesystem being mounted at /147/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 244.486490][ T8509] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm syz.2.858: bg 0: block 35: padding at end of block bitmap is not set [ 244.501880][ T8524] netlink: 372 bytes leftover after parsing attributes in process `syz.0.864'. [ 244.537555][ T8509] EXT4-fs (loop2): Remounting filesystem read-only [ 244.558792][ T8509] EXT4-fs (loop2): 1 truncate cleaned up [ 244.599922][ T8509] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 244.775654][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 244.938387][ T8532] loop1: detected capacity change from 0 to 512 [ 244.979169][ T8532] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 245.014618][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 245.038893][ T8532] EXT4-fs (loop1): 1 truncate cleaned up [ 245.048050][ T8532] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 245.253239][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 245.375544][ T8543] EXT4-fs error (device loop1): mb_free_blocks:1945: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt. [ 245.422696][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 245.488454][ T8543] EXT4-fs (loop1): Remounting filesystem read-only [ 245.512880][ T8543] EXT4-fs warning (device loop1): ext4_evict_inode:276: xattr delete (err -5) [ 245.539108][ T8547] loop2: detected capacity change from 0 to 1024 [ 245.578392][ T8547] EXT4-fs: Ignoring removed nomblk_io_submit option [ 245.653925][ T8547] EXT4-fs: Mount option(s) incompatible with ext2 [ 245.825032][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 245.994774][ T30] kauditd_printk_skb: 66 callbacks suppressed [ 245.994800][ T30] audit: type=1326 audit(1741982755.346:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8552 comm="syz.3.875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 246.124232][ T30] audit: type=1326 audit(1741982755.346:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8552 comm="syz.3.875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 246.163928][ T8560] netlink: 372 bytes leftover after parsing attributes in process `syz.0.877'. [ 246.197506][ T30] audit: type=1326 audit(1741982755.386:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8552 comm="syz.3.875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 246.300121][ T8567] loop1: detected capacity change from 0 to 512 [ 247.262058][ T30] audit: type=1326 audit(1741982755.386:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8552 comm="syz.3.875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 248.252553][ T30] audit: type=1326 audit(1741982755.386:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8552 comm="syz.3.875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 248.274990][ T30] audit: type=1326 audit(1741982755.406:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8552 comm="syz.3.875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 249.270834][ T8567] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 249.284871][ T8567] ext4 filesystem being mounted at /165/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 250.135910][ T30] audit: type=1326 audit(1741982755.406:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8552 comm="syz.3.875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 250.166268][ T30] audit: type=1326 audit(1741982755.406:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8552 comm="syz.3.875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 250.191252][ T30] audit: type=1326 audit(1741982755.436:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8552 comm="syz.3.875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 250.284218][ T30] audit: type=1326 audit(1741982755.436:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8552 comm="syz.3.875" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f542478d169 code=0x7ffc0000 [ 250.307928][ T8574] loop5: detected capacity change from 0 to 512 [ 250.315126][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.447185][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 250.455895][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 250.485882][ T8574] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.881: bg 0: block 35: padding at end of block bitmap is not set [ 250.514498][ T8574] EXT4-fs (loop5): Remounting filesystem read-only [ 250.521161][ T8574] EXT4-fs (loop5): 1 truncate cleaned up [ 250.528404][ T8574] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 250.574742][ T8578] netlink: 8 bytes leftover after parsing attributes in process `syz.0.884'. [ 250.642224][ T8574] netlink: 4 bytes leftover after parsing attributes in process `syz.5.881'. [ 250.890335][ T8584] loop3: detected capacity change from 0 to 256 [ 250.916540][ T8578] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 251.117600][ T8584] FAT-fs (loop3): Directory bread(block 1285) failed [ 251.134673][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.157049][ T8584] FAT-fs (loop3): Directory bread(block 1285) failed [ 251.175136][ T8584] FAT-fs (loop3): FAT read failed (blocknr 1281) [ 251.218604][ T8578] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 251.628659][ T8597] loop1: detected capacity change from 0 to 1024 [ 251.636654][ T8597] EXT4-fs: Ignoring removed nomblk_io_submit option [ 251.678912][ T8597] EXT4-fs: Mount option(s) incompatible with ext2 [ 251.715792][ T8578] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 251.756364][ T30] kauditd_printk_skb: 6 callbacks suppressed [ 251.756391][ T30] audit: type=1326 audit(1741982761.096:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 251.761895][ T8599] loop3: detected capacity change from 0 to 512 [ 251.779490][ T30] audit: type=1326 audit(1741982761.096:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 251.836523][ T8601] rdma_rxe: rxe_newlink: failed to add syz_tun [ 251.871635][ T8599] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 251.949000][ T8599] EXT4-fs (loop3): 1 truncate cleaned up [ 251.982361][ T30] audit: type=1326 audit(1741982761.096:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 251.985822][ T8599] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 252.026585][ T30] audit: type=1326 audit(1741982761.096:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 252.087756][ T30] audit: type=1326 audit(1741982761.096:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 252.105345][ T8578] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 252.137542][ T30] audit: type=1326 audit(1741982761.096:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 252.171260][ T30] audit: type=1326 audit(1741982761.106:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 252.207805][ T30] audit: type=1326 audit(1741982761.106:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 252.248855][ T8606] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 252.268375][ T30] audit: type=1326 audit(1741982761.106:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb87e98f087 code=0x7ffc0000 [ 252.330880][ T30] audit: type=1326 audit(1741982761.106:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8600 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7fb87e98effc code=0x7ffc0000 [ 252.399042][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 252.483930][ T8578] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.559749][ T8578] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.678284][ T8578] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.774020][ T8578] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 252.840514][ T8621] loop3: detected capacity change from 0 to 512 [ 253.008310][ T8621] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 253.021597][ T8621] ext4 filesystem being mounted at /143/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 253.900223][ T8634] loop2: detected capacity change from 0 to 256 [ 253.904706][ T8632] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 253.986729][ T8634] FAT-fs (loop2): Directory bread(block 1285) failed [ 254.069899][ T8634] FAT-fs (loop2): Directory bread(block 1285) failed [ 254.117156][ T8634] FAT-fs (loop2): FAT read failed (blocknr 1281) [ 254.152797][ T8632] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.328757][ T8632] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.503101][ T8632] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 254.936424][ T8639] vlan2: entered allmulticast mode [ 254.963498][ T8639] bond0: entered allmulticast mode [ 254.999364][ T8643] loop4: detected capacity change from 0 to 1024 [ 254.999530][ T8639] bond_slave_0: entered allmulticast mode [ 255.013139][ T8643] EXT4-fs: Ignoring removed nomblk_io_submit option [ 255.020808][ T8643] EXT4-fs: Mount option(s) incompatible with ext2 [ 255.047853][ T8639] bond0: left allmulticast mode [ 255.067849][ T8639] bond_slave_0: left allmulticast mode [ 255.472213][ T8619] dccp_close: ABORT with 56 bytes unread [ 255.791312][ T8651] loop5: detected capacity change from 0 to 128 [ 256.041475][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.308656][ T8658] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(8) [ 256.315287][ T8658] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 256.323494][ T8658] vhci_hcd vhci_hcd.0: Device attached [ 256.551182][ T8659] vhci_hcd: connection closed [ 256.575523][ T1157] vhci_hcd: stop threads [ 256.612848][ T972] usb 41-1: new high-speed USB device number 3 using vhci_hcd [ 256.837845][ T1157] vhci_hcd: release socket [ 257.013041][ T1157] vhci_hcd: disconnect device [ 257.157595][ T8632] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 257.258512][ T8664] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 257.418613][ T8632] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 257.458331][ T8676] netlink: 12 bytes leftover after parsing attributes in process `syz.2.912'. [ 257.474343][ T8632] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 257.504407][ T8632] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 257.936302][ T30] kauditd_printk_skb: 11 callbacks suppressed [ 257.936327][ T30] audit: type=1326 audit(1741982767.286:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 258.003801][ T30] audit: type=1326 audit(1741982767.336:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 258.052407][ T30] audit: type=1326 audit(1741982767.336:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 258.109682][ T30] audit: type=1326 audit(1741982767.336:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 258.233813][ T30] audit: type=1326 audit(1741982767.336:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 258.350328][ T30] audit: type=1326 audit(1741982767.336:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 258.417146][ T8703] netlink: 96 bytes leftover after parsing attributes in process `syz.0.920'. [ 258.464536][ T30] audit: type=1326 audit(1741982767.336:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 258.502499][ T8703] netlink: 'syz.0.920': attribute type 5 has an invalid length. [ 258.513643][ T30] audit: type=1326 audit(1741982767.336:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 258.558474][ T8703] netlink: 44 bytes leftover after parsing attributes in process `syz.0.920'. [ 258.575735][ T30] audit: type=1326 audit(1741982767.336:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 258.749452][ T8711] loop4: detected capacity change from 0 to 512 [ 259.612368][ T30] audit: type=1326 audit(1741982767.336:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8688 comm="syz.0.915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff10238d169 code=0x7ffc0000 [ 261.278192][ T8711] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 261.291396][ T8711] ext4 filesystem being mounted at /160/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 262.154223][ T972] vhci_hcd: vhci_device speed not set [ 262.365321][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 262.644077][ T8722] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 262.681318][ T8720] loop1: detected capacity change from 0 to 2048 [ 262.773050][ T8720] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 263.756906][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 263.935450][ T8754] netlink: 40 bytes leftover after parsing attributes in process `syz.5.932'. [ 264.330642][ T8759] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9) [ 264.337245][ T8759] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 264.345303][ T8759] vhci_hcd vhci_hcd.0: Device attached [ 264.603264][ T8760] vhci_hcd: connection closed [ 265.167884][ T1157] vhci_hcd: stop threads [ 265.309938][ T1157] vhci_hcd: release socket [ 265.329730][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 265.329825][ T30] audit: type=1800 audit(1741982774.536:677): pid=8764 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.940" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0 [ 265.392363][ T1157] vhci_hcd: disconnect device [ 265.464422][ T10] vhci_hcd: vhci_device speed not set [ 265.482166][ T30] audit: type=1800 audit(1741982774.826:678): pid=8772 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.942" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0 [ 265.918283][ T30] audit: type=1326 audit(1741982775.266:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 265.979555][ T30] audit: type=1326 audit(1741982775.266:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 266.017299][ T30] audit: type=1326 audit(1741982775.266:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 266.049818][ T30] audit: type=1326 audit(1741982775.266:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 266.116941][ T30] audit: type=1326 audit(1741982775.266:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 266.181502][ T30] audit: type=1326 audit(1741982775.266:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 266.247045][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 266.253696][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 266.262207][ T30] audit: type=1326 audit(1741982775.296:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 266.288526][ T30] audit: type=1326 audit(1741982775.296:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.4.944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb87e98d169 code=0x7ffc0000 [ 266.586287][ T8787] rdma_rxe: rxe_newlink: failed to add syz_tun [ 266.648639][ T8789] netlink: 372 bytes leftover after parsing attributes in process `syz.4.949'. [ 266.853713][ T8793] loop2: detected capacity change from 0 to 512 [ 266.969955][ T8793] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 267.055801][ T8793] ext4 filesystem being mounted at /156/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 267.829143][ T8815] loop1: detected capacity change from 0 to 512 [ 267.864877][ T8815] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 267.874011][ T8817] loop4: detected capacity change from 0 to 512 [ 267.931811][ T8815] EXT4-fs (loop1): 1 truncate cleaned up [ 267.958983][ T8815] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 267.972747][ T8817] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 267.991310][ T8817] ext4 filesystem being mounted at /170/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 268.401313][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.479450][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 268.767937][ T8834] rdma_rxe: rxe_newlink: failed to add syz_tun [ 268.799521][ T8836] netlink: 8 bytes leftover after parsing attributes in process `syz.0.967'. [ 270.262013][ T8856] netlink: 12 bytes leftover after parsing attributes in process `syz.0.976'. [ 270.474176][ T30] kauditd_printk_skb: 311 callbacks suppressed [ 270.474203][ T30] audit: type=1326 audit(1741982779.826:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.1.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 270.512879][ T8863] netlink: 40 bytes leftover after parsing attributes in process `syz.3.973'. [ 270.591205][ T30] audit: type=1326 audit(1741982779.856:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.1.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 270.628480][ T8865] netlink: 4 bytes leftover after parsing attributes in process `syz.0.979'. [ 270.725672][ T30] audit: type=1326 audit(1741982779.856:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.1.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 270.824430][ T30] audit: type=1326 audit(1741982779.856:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.1.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 270.899571][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 270.922343][ T30] audit: type=1326 audit(1741982779.856:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.1.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 271.024943][ T30] audit: type=1326 audit(1741982779.876:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.1.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 271.152462][ T30] audit: type=1326 audit(1741982779.876:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.1.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 271.280131][ T30] audit: type=1326 audit(1741982779.876:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.1.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 271.370824][ T8877] loop5: detected capacity change from 0 to 2048 [ 271.402350][ T30] audit: type=1326 audit(1741982779.876:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.1.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 271.472897][ T8877] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 271.518363][ T30] audit: type=1326 audit(1741982779.876:1007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8861 comm="syz.1.978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65c898d169 code=0x7ffc0000 [ 271.788909][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 272.242860][ T8901] netlink: 4 bytes leftover after parsing attributes in process `syz.0.994'. [ 272.373980][ T8905] loop2: detected capacity change from 0 to 512 [ 272.495007][ T8905] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 272.522503][ T8905] ext4 filesystem being mounted at /159/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 273.045193][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.358750][ T8928] loop2: detected capacity change from 0 to 2048 [ 273.455339][ T8930] block device autoloading is deprecated and will be removed. [ 273.461080][ T8928] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 273.514773][ T8930] syz.5.1006: attempt to access beyond end of device [ 273.514773][ T8930] loop0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 273.815289][ T5830] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.843802][ T8937] tipc: Enabling of bearer rejected, already enabled [ 274.269760][ T8947] loop5: detected capacity change from 0 to 1024 [ 274.345279][ T8950] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1011'. [ 274.393863][ T8947] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 274.426136][ T8947] ext4 filesystem being mounted at /173/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 274.789570][ T8947] __find_get_block_slow() failed. block=288230376151711744, b_blocknr=0, b_state=0x00000019, b_size=1024, device loop5 blocksize: 1024 [ 274.912518][ T8947] grow_buffers: requested out-of-range block 288230376151711744 for device loop5 [ 274.992477][ T8947] EXT4-fs warning (device loop5): ext4_resize_fs:2019: can't read last block, resize aborted [ 275.077208][ T8963] netlink: 'syz.3.1015': attribute type 10 has an invalid length. [ 275.103505][ T8963] netlink: 2 bytes leftover after parsing attributes in process `syz.3.1015'. [ 275.121368][ T8963] team0: entered promiscuous mode [ 275.131464][ T8963] team_slave_0: entered promiscuous mode [ 275.151425][ T8963] team_slave_1: entered promiscuous mode [ 275.185342][ T8963] bridge0: port 3(team0) entered blocking state [ 275.210571][ T8963] bridge0: port 3(team0) entered disabled state [ 275.218234][ T8963] team0: entered allmulticast mode [ 275.231195][ T8963] team_slave_0: entered allmulticast mode [ 275.240173][ T8963] team_slave_1: entered allmulticast mode [ 275.291776][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 275.311736][ T8963] bridge0: port 3(team0) entered blocking state [ 275.318131][ T8963] bridge0: port 3(team0) entered forwarding state [ 275.544492][ T8966] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 275.688140][ T8972] loop1: detected capacity change from 0 to 2048 [ 275.747600][ T8972] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 275.996862][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 276.220356][ T30] kauditd_printk_skb: 98 callbacks suppressed [ 276.220384][ T30] audit: type=1326 audit(1741982785.566:1106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8987 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 276.342845][ T30] audit: type=1326 audit(1741982785.566:1107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8987 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 276.409663][ T30] audit: type=1326 audit(1741982785.566:1108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8987 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 276.492429][ T30] audit: type=1326 audit(1741982785.626:1109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8987 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 276.588033][ T30] audit: type=1326 audit(1741982785.626:1110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8987 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 276.689128][ T8998] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1030'. [ 276.710876][ T30] audit: type=1326 audit(1741982785.656:1111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8987 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 276.783506][ T30] audit: type=1326 audit(1741982785.656:1112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8987 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 276.898447][ T30] audit: type=1326 audit(1741982785.666:1113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8987 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 277.028875][ T30] audit: type=1326 audit(1741982785.666:1114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8987 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 277.140677][ T9006] loop1: detected capacity change from 0 to 512 [ 277.149619][ T30] audit: type=1326 audit(1741982785.666:1115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8987 comm="syz.5.1028" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f143778d169 code=0x7ffc0000 [ 277.280881][ T9006] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 277.303976][ T9008] loop0: detected capacity change from 0 to 512 [ 277.324653][ T9006] ext4 filesystem being mounted at /193/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 277.438163][ T9008] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 277.528947][ T9008] ext4 filesystem being mounted at /150/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 278.071468][ T5847] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 278.249119][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 278.572502][ T9031] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 278.776430][ T9036] ip6tnl1: entered promiscuous mode [ 278.781731][ T9036] ip6tnl1: entered allmulticast mode [ 278.800179][ T9036] team0: Device ip6tnl1 is of different type [ 279.273920][ T9054] netlink: 'syz.5.1052': attribute type 10 has an invalid length. [ 279.292372][ T9054] netlink: 2 bytes leftover after parsing attributes in process `syz.5.1052'. [ 279.312137][ T9054] team0: entered promiscuous mode [ 279.348422][ T9054] team_slave_0: entered promiscuous mode [ 279.369557][ T9054] team_slave_1: entered promiscuous mode [ 279.392206][ T9054] bridge0: port 3(team0) entered blocking state [ 279.408766][ T9054] bridge0: port 3(team0) entered disabled state [ 279.422188][ T9054] team0: entered allmulticast mode [ 279.433616][ T9054] team_slave_0: entered allmulticast mode [ 279.439720][ T9054] team_slave_1: entered allmulticast mode [ 279.458794][ T9054] bridge0: port 3(team0) entered blocking state [ 279.465206][ T9054] bridge0: port 3(team0) entered forwarding state [ 279.510319][ T9064] veth0_to_batadv: entered promiscuous mode [ 279.529950][ T9064] veth0_to_batadv: entered allmulticast mode [ 279.853261][ T9069] loop5: detected capacity change from 0 to 512 [ 279.939680][ T9069] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 280.040224][ T9069] ext4 filesystem being mounted at /183/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 280.681803][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 280.906021][ T9096] loop1: detected capacity change from 0 to 512 [ 280.993715][ T9096] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.1063: bg 0: block 248: padding at end of block bitmap is not set [ 281.023183][ T9096] EXT4-fs error (device loop1): ext4_acquire_dquot:6925: comm syz.1.1063: Failed to acquire dquot type 1 [ 281.095724][ T9096] EXT4-fs (loop1): 1 truncate cleaned up [ 281.163530][ T9096] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 281.245321][ T9096] ext4 filesystem being mounted at /200/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 281.316377][ T9107] loop4: detected capacity change from 0 to 512 [ 281.406291][ T9107] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.1070: bg 0: block 35: padding at end of block bitmap is not set [ 281.527822][ T9107] EXT4-fs (loop4): Remounting filesystem read-only [ 281.535513][ T9107] EXT4-fs (loop4): 1 truncate cleaned up [ 281.544141][ T9107] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 281.578965][ T9107] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1070'. [ 281.610278][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 282.191059][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 282.448745][ T30] kauditd_printk_skb: 13 callbacks suppressed [ 282.448773][ T30] audit: type=1326 audit(1741982791.786:1127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.2.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 283.147641][ T30] audit: type=1326 audit(1741982791.786:1128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.2.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 283.202464][ T30] audit: type=1326 audit(1741982791.786:1129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.2.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 283.375777][ T30] audit: type=1326 audit(1741982791.786:1130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.2.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 283.439605][ T30] audit: type=1326 audit(1741982791.786:1131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.2.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 283.502376][ T30] audit: type=1326 audit(1741982791.786:1132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.2.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 283.559864][ T30] audit: type=1326 audit(1741982791.786:1133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.2.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 283.609971][ T30] audit: type=1326 audit(1741982791.786:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.2.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 283.640360][ T30] audit: type=1326 audit(1741982791.786:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.2.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 283.710685][ T30] audit: type=1326 audit(1741982791.786:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.2.1079" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f473058d169 code=0x7ffc0000 [ 283.786186][ T9143] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1082'. [ 284.580564][ T9161] loop4: detected capacity change from 0 to 256 [ 284.612248][ T9161] FAT-fs (loop4): Directory bread(block 1285) failed [ 284.656551][ T9161] FAT-fs (loop4): Directory bread(block 1285) failed [ 284.695313][ T9161] FAT-fs (loop4): FAT read failed (blocknr 1281) [ 284.822681][ T9129] dccp_close: ABORT with 88 bytes unread [ 285.115112][ T9171] loop4: detected capacity change from 0 to 512 [ 285.201498][ T9171] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 285.266587][ T9171] ext4 filesystem being mounted at /194/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 285.837007][ T9192] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 285.985801][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 286.545704][ T9201] loop5: detected capacity change from 0 to 256 [ 286.560909][ T9201] FAT-fs (loop5): Directory bread(block 1285) failed [ 286.662713][ T9201] FAT-fs (loop5): Directory bread(block 1285) failed [ 286.712956][ T9201] FAT-fs (loop5): FAT read failed (blocknr 1281) [ 286.911910][ T9205] dvmrp0: entered allmulticast mode [ 286.925647][ T9205] dvmrp0: left allmulticast mode [ 287.015012][ T9205] [ 287.017376][ T9205] ============================================ [ 287.023517][ T9205] WARNING: possible recursive locking detected [ 287.029667][ T9205] 6.14.0-rc6-syzkaller-00145-g695caca9345a #0 Not tainted [ 287.036777][ T9205] -------------------------------------------- [ 287.042927][ T9205] syz.3.1106/9205 is trying to acquire lock: [ 287.048907][ T9205] ffff88807b3dca68 (&trie->lock){-.-.}-{2:2}, at: trie_delete_elem+0xb0/0x7e0 [ 287.057828][ T9205] [ 287.057828][ T9205] but task is already holding lock: [ 287.065196][ T9205] ffff88807b3dea68 (&trie->lock){-.-.}-{2:2}, at: trie_delete_elem+0xb0/0x7e0 [ 287.074157][ T9205] [ 287.074157][ T9205] other info that might help us debug this: [ 287.082226][ T9205] Possible unsafe locking scenario: [ 287.082226][ T9205] [ 287.089703][ T9205] CPU0 [ 287.092990][ T9205] ---- [ 287.096267][ T9205] lock(&trie->lock); [ 287.100356][ T9205] lock(&trie->lock); [ 287.104444][ T9205] [ 287.104444][ T9205] *** DEADLOCK *** [ 287.104444][ T9205] [ 287.112579][ T9205] May be due to missing lock nesting notation [ 287.112579][ T9205] [ 287.120886][ T9205] 5 locks held by syz.3.1106/9205: [ 287.125991][ T9205] #0: ffff88805818be08 (&sb->s_type->i_mutex_key#10){+.+.}-{4:4}, at: __sock_release+0x86/0x270 [ 287.136576][ T9205] #1: ffffffff8fef9d68 (rtnl_mutex){+.+.}-{4:4}, at: mrtsock_destruct+0x49/0x290 [ 287.145900][ T9205] #2: ffffffff8e1bd140 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x1c2/0x590 [ 287.155379][ T9205] #3: ffff88807b3dea68 (&trie->lock){-.-.}-{2:2}, at: trie_delete_elem+0xb0/0x7e0 [ 287.164759][ T9205] #4: ffffffff8e1bd140 (rcu_read_lock){....}-{1:3}, at: bpf_trace_run2+0x1c2/0x590 [ 287.174213][ T9205] [ 287.174213][ T9205] stack backtrace: [ 287.180091][ T9205] CPU: 0 UID: 0 PID: 9205 Comm: syz.3.1106 Not tainted 6.14.0-rc6-syzkaller-00145-g695caca9345a #0 [ 287.180127][ T9205] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 287.180146][ T9205] Call Trace: [ 287.180158][ T9205] [ 287.180172][ T9205] dump_stack_lvl+0x116/0x1f0 [ 287.180219][ T9205] print_deadlock_bug+0x2e3/0x410 [ 287.180263][ T9205] __lock_acquire+0x2117/0x3c40 [ 287.180316][ T9205] ? __pfx___lock_acquire+0x10/0x10 [ 287.180360][ T9205] ? __lock_acquire+0xcc5/0x3c40 [ 287.180409][ T9205] lock_acquire.part.0+0x11b/0x380 [ 287.180455][ T9205] ? trie_delete_elem+0xb0/0x7e0 [ 287.180503][ T9205] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 287.180552][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.180608][ T9205] ? rcu_is_watching+0x12/0xc0 [ 287.180640][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.180694][ T9205] ? trace_lock_acquire+0x14e/0x1f0 [ 287.180732][ T9205] ? trie_delete_elem+0xb0/0x7e0 [ 287.180776][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.180827][ T9205] ? lock_acquire+0x2f/0xb0 [ 287.180870][ T9205] ? trie_delete_elem+0xb0/0x7e0 [ 287.180916][ T9205] _raw_spin_lock_irqsave+0x3a/0x60 [ 287.180953][ T9205] ? trie_delete_elem+0xb0/0x7e0 [ 287.180997][ T9205] trie_delete_elem+0xb0/0x7e0 [ 287.181042][ T9205] ? trace_lock_acquire+0x14e/0x1f0 [ 287.181078][ T9205] ? bpf_trace_run2+0x1c2/0x590 [ 287.181125][ T9205] bpf_prog_5186c38a4019a4cb+0x4b/0x53 [ 287.181150][ T9205] bpf_trace_run2+0x234/0x590 [ 287.181194][ T9205] ? __pfx_bpf_trace_run2+0x10/0x10 [ 287.181238][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.181291][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.181345][ T9205] ? hlock_class+0x4e/0x130 [ 287.181375][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.181427][ T9205] ? mark_lock+0xb5/0xc60 [ 287.181470][ T9205] __bpf_trace_contention_end+0xca/0x110 [ 287.181519][ T9205] ? __pfx___bpf_trace_contention_end+0x10/0x10 [ 287.181567][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.181619][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.181676][ T9205] ? __lock_acquire+0x15a9/0x3c40 [ 287.181725][ T9205] trace_contention_end.constprop.0+0xf0/0x170 [ 287.181783][ T9205] __pv_queued_spin_lock_slowpath+0x27e/0xc90 [ 287.181828][ T9205] ? __bfs+0x90/0x670 [ 287.181866][ T9205] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10 [ 287.181912][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.181966][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.182016][ T9205] do_raw_spin_lock+0x210/0x2c0 [ 287.182043][ T9205] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 287.182070][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.182116][ T9205] ? lock_acquire+0x2f/0xb0 [ 287.182154][ T9205] ? trie_delete_elem+0xb0/0x7e0 [ 287.182196][ T9205] _raw_spin_lock_irqsave+0x42/0x60 [ 287.182228][ T9205] ? trie_delete_elem+0xb0/0x7e0 [ 287.182268][ T9205] trie_delete_elem+0xb0/0x7e0 [ 287.182310][ T9205] ? trace_lock_acquire+0x14e/0x1f0 [ 287.182342][ T9205] ? bpf_trace_run2+0x1c2/0x590 [ 287.182384][ T9205] bpf_prog_7bd364ad62337488+0x49/0x51 [ 287.182407][ T9205] bpf_trace_run2+0x234/0x590 [ 287.182445][ T9205] ? __pfx_bpf_trace_run2+0x10/0x10 [ 287.182486][ T9205] ? kobject_uevent_env+0x2e5/0x1870 [ 287.182517][ T9205] ? kobject_uevent_env+0x2e5/0x1870 [ 287.182544][ T9205] __traceiter_kfree+0x30/0x50 [ 287.182580][ T9205] kfree+0x244/0x4d0 [ 287.182619][ T9205] ? kobject_uevent_env+0x2db/0x1870 [ 287.182650][ T9205] ? __pfx_netdev_queue_namespace+0x10/0x10 [ 287.182705][ T9205] kobject_uevent_env+0x2e5/0x1870 [ 287.182735][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.182780][ T9205] ? sysfs_remove_group+0xc6/0x180 [ 287.182823][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.182871][ T9205] __kobject_del+0x168/0x1f0 [ 287.182917][ T9205] kobject_put+0x327/0x5a0 [ 287.182961][ T9205] netdev_queue_update_kobjects+0x432/0x5b0 [ 287.183020][ T9205] netdev_unregister_kobject+0x15d/0x270 [ 287.183067][ T9205] unregister_netdevice_many_notify+0x13aa/0x1f30 [ 287.183103][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.183151][ T9205] ? __pfx_unregister_netdevice_many_notify+0x10/0x10 [ 287.183181][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.183232][ T9205] ? __pfx_vif_delete+0x10/0x10 [ 287.183264][ T9205] ? netlink_broadcast_filtered+0x47a/0xef0 [ 287.183314][ T9205] mroute_clean_tables+0x27a/0xb30 [ 287.183355][ T9205] ? __pfx_mroute_clean_tables+0x10/0x10 [ 287.183390][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.183438][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.183484][ T9205] ? srso_alias_return_thunk+0x5/0xfbef5 [ 287.183532][ T9205] ? nlmsg_notify+0x11e/0x220 [ 287.183576][ T9205] ? inet_netconf_notify_devconf+0xe6/0x1f0 [ 287.183621][ T9205] mrtsock_destruct+0x209/0x290 [ 287.183658][ T9205] ? __pfx_mrtsock_destruct+0x10/0x10 [ 287.183698][ T9205] ip_ra_control+0x43c/0x590 [ 287.183728][ T9205] raw_close+0x19/0x30 [ 287.183754][ T9205] inet_release+0x13f/0x280 [ 287.183800][ T9205] __sock_release+0xb3/0x270 [ 287.183829][ T9205] ? __pfx_sock_close+0x10/0x10 [ 287.183854][ T9205] sock_close+0x1c/0x30 [ 287.183882][ T9205] __fput+0x402/0xb70 [ 287.183917][ T9205] __fput_sync+0xa1/0xc0 [ 287.183949][ T9205] __x64_sys_close+0x86/0x100 [ 287.183985][ T9205] do_syscall_64+0xcd/0x250 [ 287.184030][ T9205] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.184078][ T9205] RIP: 0033:0x7f542478d169 [ 287.184102][ T9205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 287.184133][ T9205] RSP: 002b:00007f5425591038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003 [ 287.184159][ T9205] RAX: ffffffffffffffda RBX: 00007f54249a5fa0 RCX: 00007f542478d169 [ 287.184180][ T9205] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003 [ 287.184199][ T9205] RBP: 00007f542480e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 287.184218][ T9205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 287.184237][ T9205] R13: 0000000000000000 R14: 00007f54249a5fa0 R15: 00007ffd46ffa368 [ 287.184268][ T9205] [ 287.780427][ T9217] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1103'. [ 287.874358][ T9216] loop5: detected capacity change from 0 to 2048 [ 287.906856][ T9216] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 288.242832][ T5833] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.