last executing test programs: 3.494371731s ago: executing program 2 (id=734): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000040000000c0000000b"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000003000000b70300000000ecff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r1}, 0x18) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001bc0)=ANY=[@ANYBLOB="10000000040000000400000002"], 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{r3}, &(0x7f0000000a00), &(0x7f0000000a40)=r2}, 0x20) 3.330260116s ago: executing program 2 (id=738): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94) r1 = syz_io_uring_setup(0x10d4, &(0x7f0000000000)={0x0, 0x7f36, 0x0, 0x4, 0x34f}, &(0x7f00000000c0)=0x0, &(0x7f0000000080)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000200)=[{0x32, 0x0, 0x0, 0x4}]}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8}) io_uring_enter(r1, 0x47bc, 0x0, 0x0, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x30000000) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r6) 2.362537571s ago: executing program 2 (id=743): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000700000000000000000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x2501, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000e40)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x5c, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000000), 0x4) setsockopt$inet_int(r0, 0x0, 0x5, 0x0, 0x0) socket$kcm(0x10, 0x2, 0x10) 1.894195243s ago: executing program 0 (id=750): bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x6, 0x10, 0x0, 0x57}, 0x48) 1.761702414s ago: executing program 0 (id=752): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x18, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000ac0000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000004000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x62, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10) r2 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCETHTOOL(r2, 0x8946, &(0x7f0000000100)={'bridge_slave_0\x00', &(0x7f0000002fc0)=@ethtool_link_settings={0x1d}}) 1.654161244s ago: executing program 1 (id=753): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/dev_mcast\x00') socketpair$unix(0x1, 0x5, 0x0, 0x0) finit_module(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x8002, &(0x7f0000000040), 0x0, 0x62c, &(0x7f00000000c0)="$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") 1.649221954s ago: executing program 3 (id=754): bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x4}, 0x18) mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0) 1.625990866s ago: executing program 0 (id=755): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000a00)=ANY=[@ANYBLOB="1400000010007c0000000000006000002500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000010900020073797a310000000008000a40fffffffc400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c000180050001"], 0xa4}}, 0x40) 1.490224938s ago: executing program 2 (id=756): r0 = bpf$ITER_CREATE(0xb, 0x0, 0x0) setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x3c, &(0x7f0000000180)=[{0x0, 0x80}, {0x1, 0x1}]}, 0x10) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000100), 0x6) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xf, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000001000000d5000100000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000"], &(0x7f0000000280)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r2}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[], 0x48) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000380)='kfree\x00', 0xffffffffffffffff, 0x0, 0x3}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = socket$packet(0x11, 0x2, 0x300) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f0000000180)=r4, 0x4) r5 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000003c0)='\\', 0x1}], 0x1, 0x0, 0x0, 0x1f000801}, 0x4000040) sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="2800000003060500000000000000000000000000050001"], 0x28}, 0x1, 0x0, 0x0, 0x80}, 0x20000010) socket$nl_route(0x10, 0x3, 0x0) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_inet_SIOCSIFFLAGS(r6, 0x8923, &(0x7f0000000040)={'bond0\x00', 0x1001}) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r7, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000840)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800014000000000400003801400010076657468315f746f5f6272696467650014000100776732000000000000000000000000001400010076657468305f746f5f7465616d00000014000000110001"], 0xa8}}, 0x0) sendmsg$NFT_BATCH(r7, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000740)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a30000000180a3f6d6f578dbe9c8b000002000000040003800900020073797a30000000000900010073797a300000000014000000020a010100000000000000000000000614000000110001"], 0x6c}}, 0x880) capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180)={0x0, 0x0, 0x9, 0xfffffffc, 0xffffffff, 0x6}) r8 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_mreqn(r8, 0x0, 0x4, &(0x7f00000002c0)={@local={0xac, 0x2, 0x44, 0xa}, @private=0x5000000}, 0xc) ioctl$AUTOFS_IOC_PROTOVER(r8, 0x80049363, &(0x7f0000000040)) 1.396507387s ago: executing program 0 (id=757): syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000100)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5e1, &(0x7f0000000bc0)="$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") prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000100)={{r0}, &(0x7f0000000040), &(0x7f0000000080)='%pI4 \x00'}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000019200)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1, 0x0, 0xfffffffffffffffe}, 0x18) lchown(&(0x7f00000006c0)='./file0\x00', 0x0, 0xee01) 1.348692891s ago: executing program 3 (id=758): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x2800050, &(0x7f0000003240)=ANY=[], 0x6, 0x33c, &(0x7f0000000340)="$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") r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r1, 0x80047210, &(0x7f0000000040)) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="38000000200025a727bd7000fddbdf250a0000ccff0000010200010008000600000000001400110062"], 0x38}, 0x1, 0x0, 0x0, 0x40480d0}, 0x40000) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10) name_to_handle_at(0xffffffffffffffff, &(0x7f0000000240)='./bus\x00', 0x0, 0x0, 0x0) r5 = openat$zero(0xffffffffffffff9c, &(0x7f00000001c0), 0x400, 0x0) preadv2(r5, &(0x7f0000000200)=[{0x0}, {&(0x7f0000000000)=""/205, 0xcd}], 0x2, 0x7ffffffe, 0x100, 0xa) bind$unix(r5, &(0x7f0000002200)=@abs={0x1, 0x0, 0x4e23}, 0x6e) symlink(&(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') r6 = socket$nl_rdma(0x10, 0x3, 0x14) r7 = creat(&(0x7f00000002c0)='./file0\x00', 0x0) write$P9_RVERSION(r7, &(0x7f0000000100)=ANY=[@ANYBLOB="1500000065ffff89"], 0x15) write$binfmt_misc(r7, &(0x7f0000000140)="e6a52bad1dd96fb756de0912a1f6268586a479655c4f11fff5bd12c993e6aaa5a8086f456a0de75936364ec24d7da4febb84f5c292b4701bb13eb2d6fc1ba36b346bf96ea9faf84c2d8a2740371f1ed98416e1f52b9f70408a28385a82980a8df414da11da20c59087f169b2cae2957f8c6b0fbc9836b3afd368ffb1fc7b17ebdc2cd5dd7306528217f924c5ad077031dbae293d", 0x94) sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r6, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="340000000f14010028bd7000fbdbdf250c00450072646d615f636d"], 0x34}, 0x1, 0x0, 0x0, 0x44000}, 0x4048084) r8 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01) ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000480)={0x0, 0x0, 0x4, {0x0, 0x1}, {0x36, 0x2}, @cond=[{0x8, 0x4, 0x101, 0xe, 0x2, 0x10}, {0x200, 0x7ff, 0x0, 0xe57, 0x2, 0x8001}]}) write$char_usb(r8, &(0x7f0000000040)="e2", 0x2250) readlink(&(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000001200)=""/4096, 0x1000) 1.297326105s ago: executing program 1 (id=759): write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fedcb7907001175f37538e486dd637f4b22667f2f"], 0xfdef) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x100}, 0x94) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x306, 0xf0ffffffffffff, 0x0, 0x40d5}, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000100001000000000000dfff000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a30000000004000038008000140000000002c0003801400010067656e65766530000000000000000000140001006c6f0000000000000000000000000000080002"], 0xb4}}, 0x0) 1.174407736s ago: executing program 3 (id=760): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000001b80), r0) sendmsg$NLBL_UNLABEL_C_STATICREMOVE(r0, &(0x7f0000001cc0)={0x0, 0x0, &(0x7f0000001c80)={&(0x7f0000001bc0)={0x14, r1, 0x1, 0x70bd2d, 0x25dfdbfe}, 0x14}}, 0x40) 1.173994677s ago: executing program 2 (id=761): syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000300)={[{@grpquota}, {@delalloc}, {@resuid}, {@debug}, {@dioread_nolock}, {}, {@nomblk_io_submit}, {@noauto_da_alloc}, {@dioread_lock}]}, 0x1, 0x5e1, &(0x7f0000000bc0)="$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") r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_queued\x00', 0x275a, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0x8004587d, &(0x7f0000000080)={0x0, r1}) 1.067370506s ago: executing program 3 (id=762): bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x6ed, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x1f, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) r2 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=0x0) timer_settime(r3, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) r4 = semget$private(0x0, 0x7, 0x180) semop(r4, &(0x7f0000000200)=[{0x4, 0xa7dd, 0x3000}], 0x1) 993.946583ms ago: executing program 0 (id=763): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffe}, 0x50) close(r0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00') readv(r2, &(0x7f0000001440)=[{&(0x7f0000000140)=""/101, 0x65}], 0x1) 818.328968ms ago: executing program 3 (id=764): r0 = socket$tipc(0x1e, 0x2, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="160000000000000005000000ff"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000001300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000bc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r2}, 0x9) bpf$ITER_CREATE(0xb, 0x0, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, 0x0) bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10) r3 = socket$tipc(0x1e, 0x2, 0x0) setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10) r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]}) close_range(r4, 0xffffffffffffffff, 0x200000000000000) 774.871082ms ago: executing program 1 (id=765): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='virtio_transport_alloc_pkt\x00', r2}, 0x18) r3 = socket$vsock_stream(0x28, 0x1, 0x0) connect$vsock_stream(r3, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10) 659.944732ms ago: executing program 0 (id=766): prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) io_setup(0x2007, &(0x7f0000000980)=0x0) io_pgetevents(r2, 0x2, 0x2, &(0x7f0000000080)=[{}, {}], 0x0, 0x0) io_destroy(r2) 550.203372ms ago: executing program 2 (id=767): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=ANY=[@ANYBLOB="440000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000008001b000000000004001a80180002"], 0x44}}, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00') getdents64(r2, &(0x7f0000000080)=""/46, 0x2e) getdents(r2, &(0x7f0000000640)=""/223, 0xdf) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1, 0x0, 0x1ffffffffffffffd}, 0x18) remap_file_pages(&(0x7f0000250000/0x4000)=nil, 0x4000, 0x0, 0x1ff, 0x800) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) r3 = socket(0x10, 0x1, 0x4) r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0xa74343b8e1cffccd, 0x0) ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000000)=0x4) read(r4, 0x0, 0xff40) setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0x1002, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xcb3a}, 0x94) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000d40)={0x11, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kmem_cache_free\x00', r5, 0x0, 0xfffffffffffffffc}, 0x18) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r2, 0x84, 0x1d, &(0x7f0000000100)={0x1, [0x0]}, &(0x7f0000000380)=0x8) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000240)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x47f, &(0x7f00000004c0)="$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") 525.406504ms ago: executing program 3 (id=768): prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000240)=0x7) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x7}}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/dev_mcast\x00') socketpair$unix(0x1, 0x5, 0x0, 0x0) finit_module(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x8002, &(0x7f0000000040), 0x0, 0x62c, &(0x7f00000000c0)="$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") 485.694778ms ago: executing program 1 (id=769): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000540)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000280)='kfree\x00', r0}, 0x18) r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x6, 0x3, &(0x7f0000000d80)=ANY=[@ANYBLOB="18000000f2ffffff000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x20000000}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r1, 0x0, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, &(0x7f00000000c0)='\x00', 0x0}, 0x48) 213.826352ms ago: executing program 1 (id=770): memfd_create(&(0x7f0000000000)='\xe1R}\t\x02A\xbb\xcc\x96\x0eo\x1f\xf8@\xcc\xb1Yg\x00\x00\x00\x00\x00\x00', 0x2) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(&(0x7f0000000800), r0) socket$inet_sctp(0x2, 0x5, 0x84) socketpair$unix(0x1, 0x2, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000500)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, 0x0, &(0x7f0000000900)='syzkaller\x00', 0x1009, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0xfc, 0x0, 0x7ffc0002}]}) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000100)='rpcgss_svc_seqno_bad\x00'}, 0x18) shmdt(0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x4000054) sendmsg$IEEE802154_ADD_IFACE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001080)=ANY=[@ANYRESDEC, @ANYRESDEC=0x0, @ANYRES16=0x0], 0x34}, 0x1, 0x0, 0x0, 0x20000010}, 0x48882) 0s ago: executing program 1 (id=771): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r0, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000280)={r1, 0x0, 0x0, 0x4}, 0x1a) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.131' (ED25519) to the list of known hosts. syzkaller login: [ 65.142759][ T5751] cgroup: Unknown subsys name 'net' [ 65.304080][ T5751] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 66.752767][ T5751] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 68.277104][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 68.286441][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 68.294327][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 68.303204][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 68.310962][ T51] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 68.318346][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 68.327979][ T5766] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 68.342229][ T5766] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 68.350057][ T5766] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 68.358582][ T5766] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 68.366816][ T5766] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 68.374603][ T5766] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 68.445737][ T5763] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 68.454396][ T5763] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 68.462775][ T5763] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 68.470988][ T5763] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 68.479314][ T5763] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 68.486962][ T5763] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 68.535773][ T5763] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 68.544700][ T5763] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 68.552635][ T5763] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 68.561865][ T5763] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 68.570107][ T5763] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 68.577646][ T5763] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 68.721795][ T5761] chnl_net:caif_netlink_parms(): no params data found [ 68.893210][ T5761] bridge0: port 1(bridge_slave_0) entered blocking state [ 68.901766][ T5761] bridge0: port 1(bridge_slave_0) entered disabled state [ 68.909858][ T5761] bridge_slave_0: entered allmulticast mode [ 68.918099][ T5761] bridge_slave_0: entered promiscuous mode [ 68.931906][ T5761] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.939546][ T5761] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.946798][ T5761] bridge_slave_1: entered allmulticast mode [ 68.953787][ T5761] bridge_slave_1: entered promiscuous mode [ 69.007189][ T5761] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.017557][ T5764] chnl_net:caif_netlink_parms(): no params data found [ 69.048886][ T5761] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.089539][ T5761] team0: Port device team_slave_0 added [ 69.126888][ T5761] team0: Port device team_slave_1 added [ 69.190988][ T5768] chnl_net:caif_netlink_parms(): no params data found [ 69.213933][ T5761] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 69.221470][ T5761] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.247779][ T5761] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 69.261118][ T5761] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 69.268186][ T5761] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.294303][ T5761] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 69.354537][ T5764] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.362101][ T5764] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.369754][ T5764] bridge_slave_0: entered allmulticast mode [ 69.377052][ T5764] bridge_slave_0: entered promiscuous mode [ 69.406251][ T5764] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.413384][ T5764] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.420749][ T5764] bridge_slave_1: entered allmulticast mode [ 69.427719][ T5764] bridge_slave_1: entered promiscuous mode [ 69.434206][ T5771] chnl_net:caif_netlink_parms(): no params data found [ 69.501033][ T5761] hsr_slave_0: entered promiscuous mode [ 69.508567][ T5761] hsr_slave_1: entered promiscuous mode [ 69.515371][ T5768] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.522814][ T5768] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.530641][ T5768] bridge_slave_0: entered allmulticast mode [ 69.537628][ T5768] bridge_slave_0: entered promiscuous mode [ 69.553145][ T5764] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.565924][ T5764] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.575264][ T5768] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.582485][ T5768] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.589732][ T5768] bridge_slave_1: entered allmulticast mode [ 69.597106][ T5768] bridge_slave_1: entered promiscuous mode [ 69.671964][ T5764] team0: Port device team_slave_0 added [ 69.682033][ T5768] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 69.711964][ T5764] team0: Port device team_slave_1 added [ 69.729998][ T5768] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 69.800677][ T5768] team0: Port device team_slave_0 added [ 69.821650][ T5764] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 69.828977][ T5764] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.855448][ T5764] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 69.871414][ T5764] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 69.878783][ T5764] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 69.909963][ T5764] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 69.934863][ T5768] team0: Port device team_slave_1 added [ 69.941414][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.949095][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state [ 69.956513][ T5771] bridge_slave_0: entered allmulticast mode [ 69.963230][ T5771] bridge_slave_0: entered promiscuous mode [ 69.973106][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.980559][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state [ 69.987832][ T5771] bridge_slave_1: entered allmulticast mode [ 69.994889][ T5771] bridge_slave_1: entered promiscuous mode [ 70.103006][ T5764] hsr_slave_0: entered promiscuous mode [ 70.110462][ T5764] hsr_slave_1: entered promiscuous mode [ 70.116831][ T5764] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 70.124669][ T5764] Cannot create hsr debugfs directory [ 70.131138][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.138140][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.164859][ T5768] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.179620][ T5768] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.186654][ T5768] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.212600][ T5768] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.226499][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 70.238764][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 70.276820][ T5771] team0: Port device team_slave_0 added [ 70.286349][ T5771] team0: Port device team_slave_1 added [ 70.363238][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 70.370580][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.397403][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 70.408967][ T5766] Bluetooth: hci0: command tx timeout [ 70.410793][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 70.415754][ T5766] Bluetooth: hci1: command tx timeout [ 70.422264][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 70.453041][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 70.483132][ T5768] hsr_slave_0: entered promiscuous mode [ 70.489953][ T5768] hsr_slave_1: entered promiscuous mode [ 70.496566][ T5768] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 70.504165][ T5768] Cannot create hsr debugfs directory [ 70.546328][ T5771] hsr_slave_0: entered promiscuous mode [ 70.552787][ T5771] hsr_slave_1: entered promiscuous mode [ 70.560399][ T5771] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 70.566891][ T5766] Bluetooth: hci2: command tx timeout [ 70.568423][ T5771] Cannot create hsr debugfs directory [ 70.645853][ T5766] Bluetooth: hci3: command tx timeout [ 70.740493][ T5761] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 70.770921][ T5761] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 70.808620][ T5761] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 70.820105][ T5761] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 70.930936][ T5764] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 70.949731][ T5764] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 70.959785][ T5764] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 70.972744][ T5764] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 71.033939][ T5771] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 71.044806][ T5771] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 71.064776][ T5771] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 71.075600][ T5771] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 71.152243][ T5768] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 71.164537][ T5768] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 71.193979][ T5768] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 71.203424][ T5768] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 71.288150][ T5761] 8021q: adding VLAN 0 to HW filter on device bond0 [ 71.342345][ T5761] 8021q: adding VLAN 0 to HW filter on device team0 [ 71.364389][ T5764] 8021q: adding VLAN 0 to HW filter on device bond0 [ 71.377152][ T62] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.384495][ T62] bridge0: port 1(bridge_slave_0) entered forwarding state [ 71.414966][ T62] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.422103][ T62] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.472610][ T5764] 8021q: adding VLAN 0 to HW filter on device team0 [ 71.517066][ T5768] 8021q: adding VLAN 0 to HW filter on device bond0 [ 71.544061][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0 [ 71.587140][ T5768] 8021q: adding VLAN 0 to HW filter on device team0 [ 71.601052][ T48] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.608228][ T48] bridge0: port 1(bridge_slave_0) entered forwarding state [ 71.622907][ T48] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.630114][ T48] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.660209][ T48] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.667334][ T48] bridge0: port 1(bridge_slave_0) entered forwarding state [ 71.685121][ T5771] 8021q: adding VLAN 0 to HW filter on device team0 [ 71.713870][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.715251][ T48] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.721162][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.727470][ T48] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.797762][ T2930] bridge0: port 1(bridge_slave_0) entered blocking state [ 71.804906][ T2930] bridge0: port 1(bridge_slave_0) entered forwarding state [ 71.831614][ T2930] bridge0: port 2(bridge_slave_1) entered blocking state [ 71.838768][ T2930] bridge0: port 2(bridge_slave_1) entered forwarding state [ 71.872192][ T5764] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 71.959282][ T5761] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 72.088642][ T5761] veth0_vlan: entered promiscuous mode [ 72.123895][ T5761] veth1_vlan: entered promiscuous mode [ 72.200083][ T5761] veth0_macvtap: entered promiscuous mode [ 72.238602][ T5761] veth1_macvtap: entered promiscuous mode [ 72.318489][ T5761] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.333137][ T5764] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 72.348840][ T5761] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 72.388445][ T5768] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 72.418939][ T5761] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.428180][ T5761] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.439776][ T5761] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.449339][ T5761] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 72.486396][ T5766] Bluetooth: hci1: command tx timeout [ 72.486405][ T5763] Bluetooth: hci0: command tx timeout [ 72.508515][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 72.580710][ T5764] veth0_vlan: entered promiscuous mode [ 72.623533][ T5768] veth0_vlan: entered promiscuous mode [ 72.632680][ T5764] veth1_vlan: entered promiscuous mode [ 72.643258][ T2882] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.652397][ T5763] Bluetooth: hci2: command tx timeout [ 72.660359][ T2882] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.690963][ T5768] veth1_vlan: entered promiscuous mode [ 72.727644][ T5763] Bluetooth: hci3: command tx timeout [ 72.755180][ T5764] veth0_macvtap: entered promiscuous mode [ 72.767485][ T2899] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.782779][ T2899] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.822169][ T5771] veth0_vlan: entered promiscuous mode [ 72.831224][ T5764] veth1_macvtap: entered promiscuous mode [ 72.870104][ T5764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 72.886824][ T5764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 72.904277][ T5764] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 72.932254][ T5771] veth1_vlan: entered promiscuous mode [ 72.945438][ T5768] veth0_macvtap: entered promiscuous mode [ 72.972296][ T5768] veth1_macvtap: entered promiscuous mode [ 72.983243][ T5764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 72.996335][ T5764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.010473][ T5764] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.031092][ T5764] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.040018][ T5764] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.050342][ T5764] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.059569][ T5764] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.103305][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.143086][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.153896][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.164553][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.187763][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.211761][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.228319][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.241307][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.255533][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.272864][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.321067][ T5768] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.332182][ T5768] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.356791][ T5768] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.365541][ T5768] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.382091][ T5771] veth0_macvtap: entered promiscuous mode [ 73.462358][ T5771] veth1_macvtap: entered promiscuous mode [ 73.538412][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.553517][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.582197][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.593685][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.604005][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 73.623106][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.634717][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 73.662673][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.673717][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.687886][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.699227][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.709344][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 73.720502][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 73.734058][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 73.766787][ T2930] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.774655][ T2930] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.790671][ T5771] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.800246][ T5771] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.809811][ T5771] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.818701][ T5771] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 73.844325][ T2930] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.862376][ T2930] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.883482][ T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.892120][ T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 73.971394][ T2930] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 73.979734][ T2930] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.082984][ T2899] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.120148][ T2899] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.161693][ T5858] syz.3.8[5858]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 74.185599][ T5858] loop3: detected capacity change from 0 to 1024 [ 74.204223][ T2930] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.214359][ T5858] EXT4-fs: Ignoring removed nomblk_io_submit option [ 74.233210][ T2930] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 74.266246][ T5858] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 74.391757][ T5858] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 74.433981][ T5858] System zones: 0-1, 3-36 [ 74.526269][ T5858] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.567134][ T5763] Bluetooth: hci0: command tx timeout [ 74.576327][ T5763] Bluetooth: hci1: command tx timeout [ 74.796681][ T5866] loop0: detected capacity change from 0 to 1024 [ 74.817072][ T5763] Bluetooth: hci2: command tx timeout [ 74.824238][ T5763] Bluetooth: hci3: command tx timeout [ 74.897588][ T5866] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 74.920963][ T5866] EXT4-fs error (device loop0): __ext4_iget:5067: inode #17: block 1803188595: comm syz.0.1: invalid block [ 74.937080][ T5866] EXT4-fs (loop0): no journal found [ 75.082866][ T5865] syz.2.9 (5865) used greatest stack depth: 20936 bytes left [ 75.094002][ T5754] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 75.408467][ T5764] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.992086][ T5890] netlink: 4 bytes leftover after parsing attributes in process `syz.1.18'. [ 75.993102][ T5893] loop3: detected capacity change from 0 to 1024 [ 76.060084][ T5895] loop0: detected capacity change from 0 to 256 [ 76.060991][ T5893] ======================================================= [ 76.060991][ T5893] WARNING: The mand mount option has been deprecated and [ 76.060991][ T5893] and is ignored by this kernel. Remove the mand [ 76.060991][ T5893] option from the mount to silence this warning. [ 76.060991][ T5893] ======================================================= [ 76.154221][ T5893] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 76.223462][ T5893] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 76.232733][ T5893] EXT4-fs (loop3): orphan cleanup on readonly fs [ 76.254237][ T5893] Quota error (device loop3): do_check_range: Getting dqdh_entries 512 out of range 0-14 [ 76.271028][ T5893] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 76.282867][ T5893] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.19: Failed to acquire dquot type 0 [ 76.299506][ T5893] Quota error (device loop3): do_check_range: Getting dqdh_entries 512 out of range 0-14 [ 76.310939][ T5893] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 76.321668][ T5893] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.19: Failed to acquire dquot type 0 [ 76.338528][ T5893] EXT4-fs error (device loop3): ext4_free_blocks:6676: comm syz.3.19: Freeing blocks not in datazone - block = 0, count = 4096 [ 76.409458][ T5893] Quota error (device loop3): do_check_range: Getting dqdh_entries 512 out of range 0-14 [ 76.449250][ T5893] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 76.484569][ T5893] EXT4-fs error (device loop3): ext4_acquire_dquot:6933: comm syz.3.19: Failed to acquire dquot type 0 [ 76.503774][ T5893] EXT4-fs (loop3): 1 orphan inode deleted [ 76.521944][ T5893] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 76.628097][ T5893] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 76.645920][ T5766] Bluetooth: hci1: command tx timeout [ 76.647698][ T5763] Bluetooth: hci0: command tx timeout [ 76.829886][ T5911] netlink: 24 bytes leftover after parsing attributes in process `syz.3.25'. [ 76.885915][ T5763] Bluetooth: hci3: command tx timeout [ 76.890855][ T5766] Bluetooth: hci2: command tx timeout [ 77.107998][ T5922] syz.2.30[5922] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 77.108126][ T5922] syz.2.30[5922] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 77.249595][ T5922] loop2: detected capacity change from 0 to 2048 [ 77.257928][ T5926] netlink: 12 bytes leftover after parsing attributes in process `syz.1.32'. [ 77.415592][ T5922] loop2: p2 p3 p7 [ 77.434001][ T5929] syz.0.31[5929] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 77.434152][ T5929] syz.0.31[5929] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 77.471179][ T28] audit: type=1326 audit(1767734304.435:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.0.31" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 77.604924][ T28] audit: type=1326 audit(1767734304.435:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.0.31" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 77.646942][ T5929] netlink: 3 bytes leftover after parsing attributes in process `syz.0.31'. [ 77.688268][ T5929] 0ªX¹¦À: renamed from caif0 [ 77.721882][ T28] audit: type=1326 audit(1767734304.455:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.0.31" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 77.827517][ T28] audit: type=1326 audit(1767734304.455:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.0.31" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 77.881101][ T5929] 0ªX¹¦À: entered allmulticast mode [ 77.893866][ T5929] A link change request failed with some changes committed already. Interface 60ªX¹¦À may have been left with an inconsistent configuration, please check. [ 78.014736][ T5138] udevd[5138]: worker [5872] terminated by signal 33 (Unknown signal 33) [ 78.054564][ T5138] udevd[5138]: worker [5872] failed while handling '/devices/virtual/block/loop2/loop2p3' [ 78.330875][ T5754] udevd[5754]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 78.343986][ T5756] udevd[5756]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 78.396524][ T5957] udevd[5957]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory [ 80.112229][ T5997] loop1: detected capacity change from 0 to 128 [ 80.175477][ T6002] netlink: 'syz.0.50': attribute type 3 has an invalid length. [ 80.240078][ T6000] IPVS: persistence engine module ip_vs_pe_ not found [ 80.505900][ T6019] netlink: 12 bytes leftover after parsing attributes in process `syz.1.56'. [ 80.522912][ T6019] loop1: detected capacity change from 0 to 512 [ 80.608232][ T6019] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 80.651468][ T6019] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 80.762446][ T6019] EXT4-fs (loop1): 1 truncate cleaned up [ 80.817868][ T6019] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 80.842180][ T6025] bridge0: port 3(ipvlan2) entered blocking state [ 80.849057][ T6025] bridge0: port 3(ipvlan2) entered disabled state [ 80.874907][ T6025] ipvlan2: entered allmulticast mode [ 80.888204][ T6025] bridge0: entered allmulticast mode [ 80.906521][ T6025] ipvlan2: left allmulticast mode [ 80.911630][ T6025] bridge0: left allmulticast mode [ 81.533437][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 81.943819][ T787] cfg80211: failed to load regulatory.db [ 82.291639][ T6079] syz.2.80 (6079) used greatest stack depth: 20840 bytes left [ 83.044527][ T28] kauditd_printk_skb: 36 callbacks suppressed [ 83.044540][ T28] audit: type=1326 audit(1767734310.015:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6091 comm="syz.3.84" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 83.110293][ T28] audit: type=1326 audit(1767734310.045:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6091 comm="syz.3.84" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 83.133913][ T28] audit: type=1326 audit(1767734310.055:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6091 comm="syz.3.84" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 83.280230][ T28] audit: type=1326 audit(1767734310.255:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6091 comm="syz.3.84" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 83.344500][ T28] audit: type=1326 audit(1767734310.285:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6091 comm="syz.3.84" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 83.502303][ T6101] netlink: 'syz.3.87': attribute type 10 has an invalid length. [ 83.514717][ T6101] netlink: 40 bytes leftover after parsing attributes in process `syz.3.87'. [ 83.529358][ T28] audit: type=1326 audit(1767734310.505:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.0.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 83.557707][ T6101] batman_adv: batadv0: Adding interface: virt_wifi0 [ 83.564988][ T6101] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.597747][ T28] audit: type=1326 audit(1767734310.505:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.0.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 83.620585][ T6101] batman_adv: batadv0: Interface activated: virt_wifi0 [ 83.628868][ T28] audit: type=1326 audit(1767734310.525:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.0.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 83.681870][ T28] audit: type=1326 audit(1767734310.525:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.0.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 83.713504][ T28] audit: type=1326 audit(1767734310.525:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6103 comm="syz.0.85" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 83.871116][ T6113] netlink: 20 bytes leftover after parsing attributes in process `syz.2.90'. [ 84.166555][ T5766] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 84.173111][ T5763] Bluetooth: hci4: command 0x1003 tx timeout [ 84.228901][ T6122] Zero length message leads to an empty skb [ 84.546121][ T6126] syz.0.96 (6126) used greatest stack depth: 17520 bytes left [ 84.697208][ T6141] netlink: 40 bytes leftover after parsing attributes in process `+}[@'. [ 84.720439][ T6142] loop2: detected capacity change from 0 to 512 [ 84.725427][ T6141] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 84.739533][ T6142] EXT4-fs: Ignoring removed nobh option [ 84.862639][ T6142] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 84.925948][ T6142] ext4 filesystem being mounted at /33/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 85.029949][ T5761] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 85.199784][ T6164] netlink: 12 bytes leftover after parsing attributes in process `syz.0.112'. [ 85.627945][ T6174] Illegal XDP return value 4291358720 on prog (id 88) dev N/A, expect packet loss! [ 85.975586][ T6185] netlink: 'syz.3.120': attribute type 13 has an invalid length. [ 86.046844][ T6185] gretap0: refused to change device tx_queue_len [ 86.072036][ T6185] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 86.092248][ T6187] netlink: 'syz.1.123': attribute type 13 has an invalid length. [ 86.114499][ T6187] gretap0: refused to change device tx_queue_len [ 86.123718][ T6187] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 86.323253][ T6198] syz.0.127 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 86.499142][ T6205] netlink: 12 bytes leftover after parsing attributes in process `syz.2.131'. [ 86.544579][ T6207] ref_ctr_offset mismatch. inode: 0xa4 offset: 0x0 ref_ctr_offset(old): 0x72 ref_ctr_offset(new): 0x0 [ 86.545477][ T6205] loop2: detected capacity change from 0 to 512 [ 86.566815][ T6205] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 86.629767][ T6205] EXT4-fs (loop2): 1 truncate cleaned up [ 86.655805][ T6205] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 87.090898][ T5761] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 87.309852][ T6236] netlink: 4 bytes leftover after parsing attributes in process `syz.0.144'. [ 89.119491][ T6280] netlink: 36 bytes leftover after parsing attributes in process `syz.3.161'. [ 89.191964][ T6282] netlink: 87 bytes leftover after parsing attributes in process `syz.3.163'. [ 89.604246][ T6296] netlink: 'syz.0.168': attribute type 4 has an invalid length. [ 89.643365][ T6296] netlink: 'syz.0.168': attribute type 4 has an invalid length. [ 89.771786][ T28] kauditd_printk_skb: 72 callbacks suppressed [ 89.771800][ T28] audit: type=1326 audit(1767734316.745:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.0.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 89.832595][ T28] audit: type=1326 audit(1767734316.745:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.0.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 89.884871][ T28] audit: type=1326 audit(1767734316.745:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.0.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 89.897466][ T6300] loop2: detected capacity change from 0 to 512 [ 89.925891][ T28] audit: type=1326 audit(1767734316.745:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.0.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 89.932480][ T6300] EXT4-fs: Ignoring removed i_version option [ 89.982443][ T28] audit: type=1326 audit(1767734316.745:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6297 comm="syz.0.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 90.009607][ T6300] EXT4-fs: Ignoring removed bh option [ 90.033813][ T6300] ext4: Unknown parameter 'obj_user' [ 90.154553][ T28] audit: type=1326 audit(1767734317.125:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6301 comm="syz.0.171" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f350278f749 code=0x0 [ 90.297660][ T6310] netlink: 12 bytes leftover after parsing attributes in process `syz.3.172'. [ 90.936022][ T6333] syzkaller0: entered promiscuous mode [ 90.945769][ T6333] syzkaller0: entered allmulticast mode [ 91.053422][ T6337] hub 9-0:1.0: USB hub found [ 91.064105][ T6337] hub 9-0:1.0: 1 port detected [ 91.351381][ T28] audit: type=1326 audit(1767734318.325:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6343 comm="syz.0.189" exe="/root/syz-executor" sig=31 arch=c000003e syscall=39 compat=0 ip=0x7f35027865e7 code=0x0 [ 92.375721][ T6370] loop2: detected capacity change from 0 to 1024 [ 92.509864][ T6370] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 92.529080][ T6370] EXT4-fs error (device loop2): __ext4_iget:5067: inode #17: block 1803188595: comm syz.2.195: invalid block [ 92.544534][ T6370] EXT4-fs (loop2): no journal found [ 92.756757][ T6353] DRBG: could not allocate digest TFM handle: hmac(sha512) [ 93.049061][ T28] audit: type=1326 audit(1767734320.025:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.0.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 93.099744][ T28] audit: type=1326 audit(1767734320.045:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.0.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=86 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 93.155296][ T28] audit: type=1326 audit(1767734320.045:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6379 comm="syz.0.200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 93.283030][ T6390] netlink: 12 bytes leftover after parsing attributes in process `syz.2.203'. [ 93.306152][ T6390] netlink: 12 bytes leftover after parsing attributes in process `syz.2.203'. [ 93.325774][ T6390] netlink: 20 bytes leftover after parsing attributes in process `syz.2.203'. [ 93.589854][ T6402] loop2: detected capacity change from 0 to 1024 [ 93.616915][ T6402] EXT4-fs: Ignoring removed orlov option [ 93.622720][ T6402] EXT4-fs: Ignoring removed orlov option [ 93.695940][ T6402] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 93.786978][ T6402] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 93.890673][ T6402] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2872: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 94.682117][ T5761] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.783664][ T28] kauditd_printk_skb: 126 callbacks suppressed [ 94.783680][ T28] audit: type=1326 audit(1767734321.755:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6414 comm="syz.0.213" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 95.295462][ T6443] loop2: detected capacity change from 0 to 512 [ 95.333958][ T6443] ext4: Unknown parameter 'measure' [ 95.386854][ T28] audit: type=1326 audit(1767734322.365:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 95.432754][ T6441] lo speed is unknown, defaulting to 1000 [ 95.438865][ T28] audit: type=1326 audit(1767734322.365:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 95.438907][ T28] audit: type=1326 audit(1767734322.385:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 95.438941][ T28] audit: type=1326 audit(1767734322.385:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 95.438974][ T28] audit: type=1326 audit(1767734322.385:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 95.439132][ T28] audit: type=1326 audit(1767734322.385:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 95.439169][ T28] audit: type=1326 audit(1767734322.385:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 95.439204][ T28] audit: type=1326 audit(1767734322.385:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 95.439239][ T28] audit: type=1326 audit(1767734322.385:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6442 comm="syz.2.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=80 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 95.457601][ T6441] lo speed is unknown, defaulting to 1000 [ 95.658840][ T6441] lo speed is unknown, defaulting to 1000 [ 95.691978][ T6441] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 95.804306][ T6449] capability: warning: `syz.0.224' uses 32-bit capabilities (legacy support in use) [ 95.827063][ T6441] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 95.939517][ T6449] 9pnet_fd: Insufficient options for proto=fd [ 95.964471][ T6441] lo speed is unknown, defaulting to 1000 [ 95.983502][ T6441] lo speed is unknown, defaulting to 1000 [ 96.208261][ T6454] loop2: detected capacity change from 0 to 1024 [ 96.297431][ T6454] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 96.318718][ T6454] EXT4-fs error (device loop2): __ext4_iget:5067: inode #17: block 1803188595: comm syz.2.223: invalid block [ 96.358629][ T6454] EXT4-fs (loop2): no journal found [ 96.696489][ T6441] lo speed is unknown, defaulting to 1000 [ 96.719042][ T6441] lo speed is unknown, defaulting to 1000 [ 96.757528][ T6441] lo speed is unknown, defaulting to 1000 [ 97.015429][ T6458] loop2: detected capacity change from 0 to 8192 [ 97.244151][ T6451] netlink: 4 bytes leftover after parsing attributes in process `syz.1.225'. [ 97.744603][ T6469] netlink: 'syz.2.231': attribute type 3 has an invalid length. [ 97.752695][ T6469] netlink: 'syz.2.231': attribute type 3 has an invalid length. [ 98.615474][ T6491] tipc: Started in network mode [ 98.624788][ T6491] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711 [ 98.646816][ T6491] tipc: New replicast peer: fc00:0000:0000:0000:0000:0000:0000:0000 [ 98.655547][ T6491] tipc: Enabled bearer , priority 10 [ 99.391729][ T6515] tipc: Enabled bearer , priority 10 [ 99.560910][ T6523] syz.1.250[6523] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 99.561032][ T6523] syz.1.250[6523] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 99.801926][ T6533] netlink: 'syz.3.253': attribute type 1 has an invalid length. [ 100.397900][ T23] tipc: Node number set to 1 [ 101.003058][ T28] kauditd_printk_skb: 65 callbacks suppressed [ 101.003072][ T28] audit: type=1326 audit(1767734327.975:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6594 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 101.086694][ T28] audit: type=1326 audit(1767734328.005:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6594 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 101.124095][ T6599] netlink: 12 bytes leftover after parsing attributes in process `syz.0.279'. [ 101.146366][ T28] audit: type=1326 audit(1767734328.005:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6594 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 101.192060][ T28] audit: type=1326 audit(1767734328.015:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6594 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=87 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 101.220174][ T28] audit: type=1326 audit(1767734328.015:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6594 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 101.253045][ T28] audit: type=1326 audit(1767734328.015:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6594 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 101.281646][ T28] audit: type=1326 audit(1767734328.015:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6594 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 101.312958][ T6603] netlink: 8 bytes leftover after parsing attributes in process `syz.1.278'. [ 101.323529][ T6603] netlink: 8 bytes leftover after parsing attributes in process `syz.1.278'. [ 101.337223][ T28] audit: type=1326 audit(1767734328.015:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6594 comm="syz.3.277" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 101.374124][ T28] audit: type=1107 audit(1767734328.345:343): pid=6604 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='s' [ 101.400842][ T6607] netlink: 16 bytes leftover after parsing attributes in process `syz.3.282'. [ 101.527137][ T6609] syz.0.283 uses obsolete (PF_INET,SOCK_PACKET) [ 101.867115][ T6619] netlink: 96 bytes leftover after parsing attributes in process `syz.0.287'. [ 102.650020][ T6632] loop2: detected capacity change from 0 to 1024 [ 102.725363][ T6632] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 102.743944][ T6632] EXT4-fs error (device loop2): __ext4_iget:5067: inode #17: block 1803188595: comm syz.2.291: invalid block [ 102.760073][ T6632] EXT4-fs (loop2): no journal found [ 103.373280][ T6634] netlink: 16 bytes leftover after parsing attributes in process `syz.0.292'. [ 103.584016][ T6640] netlink: 168 bytes leftover after parsing attributes in process `syz.0.294'. [ 103.699443][ T6642] usb usb5: usbfs: process 6642 (syz.2.295) did not claim interface 0 before use [ 103.735410][ T6642] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 103.896498][ T6651] sch_fq: defrate 4294967295 ignored. [ 104.110231][ T28] audit: type=1326 audit(1767734331.085:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6656 comm="syz.2.302" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 104.601871][ T6676] netlink: 4 bytes leftover after parsing attributes in process `syz.2.308'. [ 104.628158][ T6676] netlink: 4 bytes leftover after parsing attributes in process `syz.2.308'. [ 104.948325][ T6686] netlink: 19 bytes leftover after parsing attributes in process `syz.2.312'. [ 105.574943][ T6708] netlink: 12 bytes leftover after parsing attributes in process `syz.1.320'. [ 106.352264][ T6721] tipc: Started in network mode [ 106.371746][ T6721] tipc: Node identity 023149f81bf7, cluster identity 4711 [ 106.404650][ T6721] tipc: Enabled bearer , priority 0 [ 106.468227][ T6720] tipc: Resetting bearer [ 107.453461][ T6737] netlink: 176 bytes leftover after parsing attributes in process `syz.0.330'. [ 109.631238][ T6720] tipc: Disabling bearer [ 109.639841][ T6229] tipc: Node number set to 432425464 [ 109.645388][ T6744] netlink: 28 bytes leftover after parsing attributes in process `syz.1.334'. [ 109.654786][ T6744] netlink: 32 bytes leftover after parsing attributes in process `syz.1.334'. [ 109.663748][ T6744] netlink: 28 bytes leftover after parsing attributes in process `syz.1.334'. [ 109.674442][ T6754] netlink: '+}[@': attribute type 30 has an invalid length. [ 109.706392][ T6754] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 109.715826][ T6754] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 109.724566][ T6754] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 109.733356][ T6754] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 109.769428][ T6754] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 109.778472][ T6754] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 109.787430][ T6754] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 109.796362][ T6754] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 109.873880][ T6762] netlink: 20 bytes leftover after parsing attributes in process `syz.2.339'. [ 109.913918][ T6762] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0 [ 110.281725][ T28] kauditd_printk_skb: 33 callbacks suppressed [ 110.281739][ T28] audit: type=1326 audit(1767734337.255:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6780 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 110.367044][ T28] audit: type=1326 audit(1767734337.255:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6780 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 110.413251][ T28] audit: type=1326 audit(1767734337.255:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6780 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 110.441369][ T28] audit: type=1326 audit(1767734337.255:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6780 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 110.468495][ T28] audit: type=1326 audit(1767734337.285:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6780 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 110.492981][ T28] audit: type=1326 audit(1767734337.285:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6780 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 110.517832][ T28] audit: type=1326 audit(1767734337.285:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6780 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 110.550229][ T6787] netlink: 4 bytes leftover after parsing attributes in process `syz.1.351'. [ 110.559431][ T28] audit: type=1326 audit(1767734337.285:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6780 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 110.559476][ T28] audit: type=1326 audit(1767734337.285:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6780 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 110.559512][ T28] audit: type=1326 audit(1767734337.285:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6780 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 110.671803][ T6794] netlink: 4 bytes leftover after parsing attributes in process `syz.1.351'. [ 110.800520][ T6796] loop2: detected capacity change from 0 to 8192 [ 111.271810][ T6817] netlink: 24 bytes leftover after parsing attributes in process `syz.3.366'. [ 111.495431][ T6825] mmap: syz.0.364 (6825) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 113.738250][ T6868] binfmt_misc: register: failed to install interpreter file ./bus [ 114.281448][ T6893] loop2: detected capacity change from 0 to 512 [ 114.344960][ T6893] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 114.354668][ T6893] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 114.444869][ T6893] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 114.469579][ T6893] System zones: 0-2, 18-18, 34-35 [ 114.501828][ T6893] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 114.531721][ T6900] serio: Serial port ptm0 [ 115.450463][ T5761] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 115.620431][ T28] kauditd_printk_skb: 41 callbacks suppressed [ 115.620445][ T28] audit: type=1107 audit(1767734342.595:429): pid=6923 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='s' [ 115.873935][ T6936] netlink: 4 bytes leftover after parsing attributes in process `syz.3.415'. [ 115.883909][ T6936] hsr_slave_0: left promiscuous mode [ 115.891118][ T6936] hsr_slave_1: left promiscuous mode [ 116.052838][ T6939] loop2: detected capacity change from 0 to 1024 [ 116.216036][ T6939] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 116.234359][ T6939] EXT4-fs error (device loop2): __ext4_iget:5067: inode #17: block 1803188595: comm syz.2.413: invalid block [ 116.251195][ T6939] EXT4-fs (loop2): no journal found [ 116.590889][ T6933] can0: slcan on ttyS3. [ 116.720892][ T28] audit: type=1326 audit(1767734343.695:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6941 comm="syz.1.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 116.779971][ T28] audit: type=1326 audit(1767734343.715:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6941 comm="syz.1.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 116.831634][ T6946] netlink: 28 bytes leftover after parsing attributes in process `syz.2.418'. [ 116.841763][ T28] audit: type=1326 audit(1767734343.715:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6941 comm="syz.1.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 116.843193][ T6940] can0 (unregistered): slcan off ttyS3. [ 116.894047][ T28] audit: type=1326 audit(1767734343.715:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6941 comm="syz.1.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=226 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 116.966766][ T28] audit: type=1326 audit(1767734343.715:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6941 comm="syz.1.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 117.066034][ T28] audit: type=1326 audit(1767734343.715:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6941 comm="syz.1.417" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 117.187481][ T6952] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.328951][ T6952] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.461152][ T6952] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.530031][ T6968] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 117.586611][ T6952] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 117.800798][ T6952] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.829980][ T28] audit: type=1326 audit(1767734344.805:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.0.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 117.864367][ T6952] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.864469][ T6953] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 117.892797][ T6953] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 117.922058][ T28] audit: type=1326 audit(1767734344.805:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.0.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 117.936142][ T6953] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 117.972770][ T6952] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.974404][ T28] audit: type=1326 audit(1767734344.805:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6981 comm="syz.0.428" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 118.015192][ T6953] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 118.022278][ T6953] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 118.060625][ T6953] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 118.068040][ T6952] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 118.085939][ T6953] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 118.097323][ T6953] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 118.121143][ T6953] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 118.146664][ T6953] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 118.152985][ T6953] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 118.177874][ T6953] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 119.400557][ T5766] Bluetooth: hci0: command 0x0c1a tx timeout [ 119.741311][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 119.761288][ T7024] netlink: 4 bytes leftover after parsing attributes in process `syz.1.439'. [ 119.790263][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 119.811452][ T7024] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 119.835752][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 119.889853][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 119.932906][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 119.968615][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.015801][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.048262][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.070044][ T7024] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 120.083550][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.094868][ T5766] Bluetooth: hci1: command 0x0c1a tx timeout [ 120.114718][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.148540][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.166985][ T5766] Bluetooth: hci3: command 0x0c1a tx timeout [ 120.173145][ T5763] Bluetooth: hci2: command 0x0c1a tx timeout [ 120.200751][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.215655][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.225318][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.238232][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.255922][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.267394][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.275159][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.289286][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.295625][ C0] sched: RT throttling activated [ 120.322483][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.340338][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.355790][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.372989][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.385301][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.413901][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.426132][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.452647][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.473749][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.526883][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.551588][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.570450][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.591062][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.619213][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.636014][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.652958][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.685663][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.714295][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.734590][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.749105][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.760946][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.771034][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.776828][ T7037] netlink: 4 bytes leftover after parsing attributes in process `syz.3.446'. [ 120.789646][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.804662][ T5798] hid-generic 0002:0000:0000.0001: unknown main item tag 0x0 [ 120.831639][ T28] kauditd_printk_skb: 17 callbacks suppressed [ 120.831653][ T28] audit: type=1326 audit(1767734347.805:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 120.867580][ T5798] hid-generic 0002:0000:0000.0001: hidraw0: HID v8.00 Device [syz0] on syz0 [ 120.905702][ T28] audit: type=1326 audit(1767734347.805:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 120.989063][ T28] audit: type=1326 audit(1767734347.805:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 121.057736][ T28] audit: type=1326 audit(1767734347.805:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 121.083992][ T7042] fido_id[7042]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 121.113142][ T28] audit: type=1326 audit(1767734347.805:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7038 comm="syz.0.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 121.384617][ T28] audit: type=1326 audit(1767734348.355:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7055 comm="syz.0.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 121.456385][ T5763] Bluetooth: hci0: command 0x0c1a tx timeout [ 121.604120][ T28] audit: type=1326 audit(1767734348.355:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7055 comm="syz.0.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 121.932675][ T28] audit: type=1326 audit(1767734348.395:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7055 comm="syz.0.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 122.111691][ T28] audit: type=1326 audit(1767734348.395:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7055 comm="syz.0.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 122.170017][ T28] audit: type=1326 audit(1767734348.395:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7055 comm="syz.0.454" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 122.174804][ T5763] Bluetooth: hci1: command 0x0c1a tx timeout [ 122.246585][ T5766] Bluetooth: hci3: command 0x0c1a tx timeout [ 122.252772][ T5763] Bluetooth: hci2: command 0x0c1a tx timeout [ 122.440709][ T7073] syz.2.462[7073] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 122.440849][ T7073] syz.2.462[7073] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 122.759149][ T7088] syz_tun: entered allmulticast mode [ 122.797327][ T7087] syz_tun: left allmulticast mode [ 123.686151][ T5763] Bluetooth: hci0: command 0x0c1a tx timeout [ 123.932603][ T7102] netlink: 'syz.1.474': attribute type 29 has an invalid length. [ 124.013771][ T7104] loop2: detected capacity change from 0 to 512 [ 124.053627][ T7104] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 124.169274][ T7104] EXT4-fs (loop2): orphan cleanup on readonly fs [ 124.202206][ T7104] EXT4-fs error (device loop2): ext4_xattr_inode_iget:449: comm syz.2.475: error while reading EA inode 32 err=-116 [ 124.246222][ T5763] Bluetooth: hci1: command 0x0c1a tx timeout [ 124.275679][ T7104] EXT4-fs (loop2): Remounting filesystem read-only [ 124.283136][ T7104] EXT4-fs (loop2): 1 orphan inode deleted [ 124.290266][ T7104] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 124.326016][ T5763] Bluetooth: hci2: command 0x0c1a tx timeout [ 124.332077][ T5763] Bluetooth: hci3: command 0x0c1a tx timeout [ 124.415007][ T7104] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.562638][ T7113] loop2: detected capacity change from 0 to 128 [ 124.851192][ T7116] program syz.2.479 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 124.854775][ T7095] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 124.928109][ T7109] bridge_slave_0: left allmulticast mode [ 124.935900][ T7109] bridge_slave_0: left promiscuous mode [ 124.956833][ T7109] bridge0: port 1(bridge_slave_0) entered disabled state [ 124.988201][ T7109] bridge_slave_1: left allmulticast mode [ 124.999370][ T7109] bridge_slave_1: left promiscuous mode [ 125.006556][ T7109] bridge0: port 2(bridge_slave_1) entered disabled state [ 125.024921][ T7109] bond0: (slave bond_slave_0): Releasing backup interface [ 125.046329][ T7109] bond0: (slave bond_slave_1): Releasing backup interface [ 125.106594][ T7109] team0: Port device team_slave_0 removed [ 125.133298][ T7109] team0: Port device team_slave_1 removed [ 125.145164][ T7109] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 125.153381][ T7109] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 125.167995][ T7111] tipc: Started in network mode [ 125.182591][ T7111] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711 [ 125.194041][ T7111] tipc: Enabled bearer , priority 0 [ 125.236882][ T7095] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 125.289342][ T2882] tipc: Resetting bearer [ 125.372074][ T7095] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 125.502162][ T7095] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 125.590103][ T7126] loop2: detected capacity change from 0 to 512 [ 125.671633][ T7126] fscrypt (loop2, inode 2): Error -61 getting encryption context [ 125.711647][ T7126] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -61 [ 125.742735][ T7126] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #13: comm syz.2.483: iget: bad i_size value: 12154757448730 [ 125.786392][ T7126] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.483: couldn't read orphan inode 13 (err -117) [ 125.828629][ T7095] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.843142][ T7126] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 125.892661][ T7095] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 125.907604][ T7126] fscrypt (loop2, inode 2): Error -61 getting encryption context [ 125.921216][ T28] kauditd_printk_skb: 76 callbacks suppressed [ 125.921229][ T28] audit: type=1326 audit(1767734352.895:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7125 comm="syz.1.484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 125.982775][ T7095] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.013191][ T28] audit: type=1326 audit(1767734352.895:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7125 comm="syz.1.484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 126.046310][ T7095] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 126.049640][ T5761] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.298111][ T5798] tipc: Node number set to 11578026 [ 126.468616][ T28] audit: type=1326 audit(1767734353.435:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7138 comm="syz.3.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 126.619852][ T7141] loop2: detected capacity change from 0 to 1024 [ 126.684547][ T7141] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 126.705977][ T7141] EXT4-fs error (device loop2): __ext4_iget:5067: inode #17: block 1803188595: comm syz.2.487: invalid block [ 126.720068][ T7141] EXT4-fs (loop2): no journal found [ 126.909687][ T28] audit: type=1326 audit(1767734353.445:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7138 comm="syz.3.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 127.146242][ T28] audit: type=1326 audit(1767734353.445:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7138 comm="syz.3.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 127.175743][ T28] audit: type=1326 audit(1767734353.445:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7138 comm="syz.3.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 127.243967][ T28] audit: type=1326 audit(1767734353.445:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7138 comm="syz.3.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 127.276992][ T28] audit: type=1326 audit(1767734353.445:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7138 comm="syz.3.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 127.395259][ T28] audit: type=1326 audit(1767734353.445:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7138 comm="syz.3.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 127.425695][ T28] audit: type=1326 audit(1767734353.445:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7138 comm="syz.3.488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 127.541235][ T7147] dvmrp6: entered allmulticast mode [ 127.722929][ T7155] bridge0: entered promiscuous mode [ 127.730140][ T7155] bridge0: left promiscuous mode [ 127.879982][ T7163] netlink: 28 bytes leftover after parsing attributes in process `syz.2.498'. [ 128.133821][ T7167] vlan0: entered allmulticast mode [ 128.166089][ T7167] dummy0: entered allmulticast mode [ 129.308838][ T7176] loop2: detected capacity change from 0 to 8192 [ 129.541216][ T7085] Set syz1 is full, maxelem 65536 reached [ 129.807442][ T7196] (null): rxe_set_mtu: Set mtu to 1024 [ 130.065920][ T7196] infiniband syû: set active [ 130.075665][ T7196] infiniband syû: added bond_slave_0 [ 130.145301][ T7208] netlink: 'syz.1.518': attribute type 39 has an invalid length. [ 130.158384][ T7196] RDS/IB: syû: added [ 130.177848][ T7196] smc: adding ib device syû with port count 1 [ 130.184443][ T7196] smc: ib device syû port 1 has pnetid [ 130.459126][ T7214] netlink: 12 bytes leftover after parsing attributes in process `syz.3.520'. [ 130.548137][ T7217] netlink: 16 bytes leftover after parsing attributes in process `syz.3.521'. [ 130.832422][ T7227] xt_hashlimit: max too large, truncated to 1048576 [ 131.006910][ T28] kauditd_printk_skb: 26 callbacks suppressed [ 131.006923][ T28] audit: type=1326 audit(1767734357.985:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7232 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 131.072549][ T28] audit: type=1326 audit(1767734357.985:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7232 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 131.151263][ T28] audit: type=1326 audit(1767734358.005:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7232 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 131.194604][ T28] audit: type=1326 audit(1767734358.005:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7232 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 131.236288][ T28] audit: type=1326 audit(1767734358.035:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7232 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 131.259391][ T28] audit: type=1326 audit(1767734358.035:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7232 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 131.282363][ T28] audit: type=1326 audit(1767734358.035:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7232 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 131.304983][ T28] audit: type=1326 audit(1767734358.035:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7232 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 131.327479][ T28] audit: type=1326 audit(1767734358.035:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7232 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 131.381044][ T28] audit: type=1326 audit(1767734358.035:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7232 comm="syz.0.529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 133.049535][ T7268] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 133.072094][ T7268] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 133.097619][ T7268] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 133.117759][ T7268] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 133.119007][ T7270] netlink: 32 bytes leftover after parsing attributes in process `syz.1.545'. [ 133.139687][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.139736][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.229679][ T7276] IPv6: Can't replace route, no match found [ 133.464448][ T7288] netlink: 'syz.3.553': attribute type 13 has an invalid length. [ 133.620553][ T6229] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 133.644033][ T6229] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz1] on syz0 [ 134.076665][ T7302] loop2: detected capacity change from 0 to 1024 [ 134.085250][ T7302] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 134.099377][ T7302] EXT4-fs error (device loop2): __ext4_iget:5067: inode #17: block 1803188595: comm syz.2.559: invalid block [ 134.112776][ T7302] EXT4-fs (loop2): no journal found [ 134.195389][ T7288] bridge0: port 2(bridge_slave_1) entered disabled state [ 134.204822][ T7288] bridge0: port 1(bridge_slave_0) entered disabled state [ 134.708899][ C0] IPv4: Oversized IP packet from 127.0.0.1 [ 134.934882][ T7324] netlink: 12 bytes leftover after parsing attributes in process `syz.1.570'. [ 134.954183][ T7324] netlink: 12 bytes leftover after parsing attributes in process `syz.1.570'. [ 135.036860][ T7288] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 135.121224][ T7288] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 135.218583][ T7288] batman_adv: batadv0: Interface deactivated: virt_wifi0 [ 135.257253][ T7288] tipc: Resetting bearer [ 135.348440][ T7288] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.357865][ T7288] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.367087][ T7288] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.376056][ T7288] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 135.467007][ T5828] lo speed is unknown, defaulting to 1000 [ 135.474528][ T7329] netlink: 'syz.2.573': attribute type 39 has an invalid length. [ 135.892384][ T7352] netlink: 12 bytes leftover after parsing attributes in process `syz.2.578'. [ 136.288847][ T7372] IPv6: Can't replace route, no match found [ 136.947242][ T28] kauditd_printk_skb: 60 callbacks suppressed [ 136.947255][ T28] audit: type=1326 audit(1767734363.925:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.2.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 137.022818][ T28] audit: type=1326 audit(1767734363.925:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.2.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 137.065105][ T28] audit: type=1326 audit(1767734363.925:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.2.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 137.093625][ T28] audit: type=1326 audit(1767734363.925:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.2.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 137.123529][ T28] audit: type=1326 audit(1767734363.925:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.2.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 137.150061][ T28] audit: type=1326 audit(1767734363.955:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.2.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 137.227710][ T28] audit: type=1326 audit(1767734363.955:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.2.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f95091c2005 code=0x7ffc0000 [ 137.268996][ T28] audit: type=1326 audit(1767734363.955:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.2.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 137.295676][ T28] audit: type=1326 audit(1767734363.955:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.2.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f95091c2005 code=0x7ffc0000 [ 137.324058][ T28] audit: type=1326 audit(1767734363.955:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7394 comm="syz.2.597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f95091c2005 code=0x7ffc0000 [ 137.568548][ T7428] netlink: 4 bytes leftover after parsing attributes in process `syz.1.609'. [ 137.984351][ T7441] netlink: 'syz.3.616': attribute type 3 has an invalid length. [ 138.321299][ T7459] netlink: 8 bytes leftover after parsing attributes in process `syz.0.624'. [ 139.122328][ T7485] binfmt_misc: register: failed to install interpreter file ./file0 [ 139.134994][ T7485] netlink: 'syz.2.636': attribute type 13 has an invalid length. [ 139.212835][ T7487] syz.1.637[7487] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.212954][ T7487] syz.1.637[7487] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 139.232409][ T7487] netlink: 48 bytes leftover after parsing attributes in process `syz.1.637'. [ 139.871700][ T7485] bridge0: port 2(bridge_slave_1) entered disabled state [ 139.879401][ T7485] bridge0: port 1(bridge_slave_0) entered disabled state [ 140.333764][ T7485] infiniband syû: set down [ 140.704491][ T7485] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.718044][ T7485] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.727720][ T7485] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.737920][ T7485] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.941581][ T7499] netlink: 'syz.3.643': attribute type 2 has an invalid length. [ 140.969131][ T7500] sch_fq: defrate 4294967295 ignored. [ 141.110936][ T7524] rdma_op ffff88801df5a9f0 conn xmit_rdma 0000000000000000 [ 141.361984][ T7534] tipc: Started in network mode [ 141.369421][ T7534] tipc: Node identity ac14140f, cluster identity 4711 [ 141.379274][ T7534] tipc: New replicast peer: 255.255.255.255 [ 141.391079][ T7534] tipc: Enabled bearer , priority 10 [ 141.782793][ T7543] binfmt_misc: register: failed to install interpreter file ./file0 [ 141.803126][ T7552] netlink: 'syz.0.658': attribute type 13 has an invalid length. [ 141.979783][ T28] kauditd_printk_skb: 677 callbacks suppressed [ 141.979797][ T28] audit: type=1326 audit(1767734368.955:1335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.1.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 142.026653][ T28] audit: type=1326 audit(1767734368.955:1336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.1.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 142.090559][ T28] audit: type=1326 audit(1767734368.965:1337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.1.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 142.138283][ T28] audit: type=1326 audit(1767734368.965:1338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.1.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 142.165528][ T28] audit: type=1326 audit(1767734368.965:1339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7555 comm="syz.1.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad3018f749 code=0x7ffc0000 [ 142.257715][ T7552] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.265368][ T7552] bridge0: port 1(bridge_slave_0) entered disabled state [ 143.379894][ T6229] IPVS: starting estimator thread 0... [ 143.387173][ T7579] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 143.425062][ T7552] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 143.444142][ T7579] 9pnet_fd: Insufficient options for proto=fd [ 143.486932][ T7552] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 143.519806][ T28] audit: type=1326 audit(1767734370.495:1340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.3.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 143.552605][ T7580] IPVS: using max 18 ests per chain, 43200 per kthread [ 143.574363][ T28] audit: type=1326 audit(1767734370.495:1341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.3.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 143.618530][ T28] audit: type=1326 audit(1767734370.495:1342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.3.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 143.661160][ T28] audit: type=1326 audit(1767734370.495:1343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.3.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 143.721430][ T28] audit: type=1326 audit(1767734370.495:1344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7581 comm="syz.3.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7f7854d8f749 code=0x7ffc0000 [ 144.015483][ T7552] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.025467][ T7552] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.035174][ T7552] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.044835][ T7552] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 144.220757][ T23] tipc: Node number set to 2886997007 [ 144.237629][ T7569] lo speed is unknown, defaulting to 1000 [ 145.220309][ T7602] process 'syz.3.681' launched '/dev/fd/8' with NULL argv: empty string added [ 145.283224][ T7554] syz.2.662: vmalloc error: size 536870912, failed to allocated page array size 1048576, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0-1 [ 145.308038][ T7554] CPU: 0 PID: 7554 Comm: syz.2.662 Not tainted syzkaller #0 [ 145.315373][ T7554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 145.325468][ T7554] Call Trace: [ 145.328778][ T7554] [ 145.331736][ T7554] dump_stack_lvl+0x16c/0x230 [ 145.336466][ T7554] ? show_regs_print_info+0x20/0x20 [ 145.341707][ T7554] ? load_image+0x3b0/0x3b0 [ 145.346250][ T7554] ? cpuset_print_current_mems_allowed+0x1f/0x360 [ 145.352727][ T7554] ? cpuset_print_current_mems_allowed+0x2e3/0x360 [ 145.359265][ T7554] warn_alloc+0x210/0x300 [ 145.363636][ T7554] ? zone_watermark_ok_safe+0x230/0x230 [ 145.369225][ T7554] ? _raw_spin_unlock+0x28/0x40 [ 145.374103][ T7554] ? __kmem_cache_free+0xba/0x1f0 [ 145.379157][ T7554] __vmalloc_node_range+0x662/0x1320 [ 145.384511][ T7554] ? free_vm_area+0x50/0x50 [ 145.389053][ T7554] ? kvmalloc_node+0x70/0x180 [ 145.393753][ T7554] ? rcu_is_watching+0x15/0xb0 [ 145.398631][ T7554] ? kvmalloc_node+0x70/0x180 [ 145.403332][ T7554] ? trace_kmalloc+0x1f/0xa0 [ 145.407958][ T7554] kvmalloc_node+0x13f/0x180 [ 145.412579][ T7554] ? translate_table+0x19c/0x2020 [ 145.417635][ T7554] translate_table+0x19c/0x2020 [ 145.422539][ T7554] ? ip6t_register_table+0x7b0/0x7b0 [ 145.427864][ T7554] ? __might_fault+0xaa/0x120 [ 145.432577][ T7554] ? __lock_acquire+0x7c80/0x7c80 [ 145.437631][ T7554] ? __virt_addr_valid+0x18c/0x540 [ 145.442777][ T7554] ? __might_fault+0xaa/0x120 [ 145.447416][ T7610] block device autoloading is deprecated and will be removed. [ 145.447455][ T7554] ? __might_fault+0xc6/0x120 [ 145.459748][ T7554] ? __might_fault+0xaa/0x120 [ 145.464471][ T7554] do_ip6t_set_ctl+0x969/0xcd0 [ 145.469260][ T7554] ? ip6t_unregister_table_exit+0x230/0x230 [ 145.475169][ T7554] ? __lock_acquire+0x7c80/0x7c80 [ 145.480289][ T7554] ? rcu_is_watching+0x15/0xb0 [ 145.485129][ T7554] ? trace_contention_end+0x39/0xe0 [ 145.490340][ T7554] ? __mutex_unlock_slowpath+0x1a2/0x6a0 [ 145.495978][ T7554] ? mutex_unlock+0x10/0x10 [ 145.500482][ T7554] ? __might_sleep+0xe0/0xe0 [ 145.505068][ T7554] ? __schedule+0x14da/0x44d0 [ 145.509757][ T7554] ? mutex_lock_nested+0x20/0x20 [ 145.514691][ T7554] nf_setsockopt+0x263/0x280 [ 145.519284][ T7554] ? sock_common_recvmsg+0x1b0/0x1b0 [ 145.524566][ T7554] smc_setsockopt+0x229/0xab0 [ 145.529258][ T7554] ? smc_shutdown+0x9b0/0x9b0 [ 145.533927][ T7554] ? __fget_files+0x28/0x4d0 [ 145.538517][ T7554] ? bpf_lsm_socket_setsockopt+0x9/0x10 [ 145.544061][ T7554] ? security_socket_setsockopt+0x7e/0xa0 [ 145.549771][ T7554] ? smc_shutdown+0x9b0/0x9b0 [ 145.554443][ T7554] do_sock_setsockopt+0x175/0x1a0 [ 145.559467][ T7554] ? __fdget+0x180/0x210 [ 145.563712][ T7554] __x64_sys_setsockopt+0x184/0x200 [ 145.568920][ T7554] do_syscall_64+0x55/0xb0 [ 145.573334][ T7554] ? clear_bhb_loop+0x40/0x90 [ 145.578008][ T7554] ? clear_bhb_loop+0x40/0x90 [ 145.582680][ T7554] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 145.588651][ T7554] RIP: 0033:0x7f950918f749 [ 145.593067][ T7554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 145.612843][ T7554] RSP: 002b:00007f950a0de038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 145.621262][ T7554] RAX: ffffffffffffffda RBX: 00007f95093e5fa0 RCX: 00007f950918f749 [ 145.629234][ T7554] RDX: 0000000000000040 RSI: 0000000000000029 RDI: 0000000000000003 [ 145.637201][ T7554] RBP: 00007f9509213f91 R08: 0000000000000330 R09: 0000000000000000 [ 145.645163][ T7554] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000 [ 145.653131][ T7554] R13: 00007f95093e6038 R14: 00007f95093e5fa0 R15: 00007ffe0b690ad8 [ 145.661110][ T7554] [ 145.686452][ T7554] Mem-Info: [ 145.690732][ T7554] active_anon:5735 inactive_anon:0 isolated_anon:0 [ 145.690732][ T7554] active_file:10354 inactive_file:40291 isolated_file:0 [ 145.690732][ T7554] unevictable:768 dirty:59 writeback:0 [ 145.690732][ T7554] slab_reclaimable:10340 slab_unreclaimable:151255 [ 145.690732][ T7554] mapped:25305 shmem:1379 pagetables:648 [ 145.690732][ T7554] sec_pagetables:0 bounce:0 [ 145.690732][ T7554] kernel_misc_reclaimable:0 [ 145.690732][ T7554] free:1281669 free_pcp:9690 free_cma:0 [ 145.744003][ T7554] Node 0 active_anon:22940kB inactive_anon:0kB active_file:41416kB inactive_file:160964kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:101220kB dirty:236kB writeback:0kB shmem:3980kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11756kB pagetables:2592kB sec_pagetables:0kB all_unreclaimable? no [ 145.777100][ T7554] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 145.815557][ T7554] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 145.843489][ T7554] lowmem_reserve[]: 0 2525 2526 2526 2526 [ 145.850422][ T7554] Node 0 DMA32 free:1222744kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:22892kB inactive_anon:0kB active_file:41416kB inactive_file:159644kB unevictable:1536kB writepending:236kB present:3129332kB managed:2589640kB mlocked:0kB bounce:0kB free_pcp:16936kB local_pcp:14532kB free_cma:0kB [ 145.889020][ T7554] lowmem_reserve[]: 0 0 1 1 1 [ 145.893827][ T7554] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 145.925979][ T7554] lowmem_reserve[]: 0 0 0 0 0 [ 145.930837][ T7554] Node 1 Normal free:3888556kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:22340kB local_pcp:13412kB free_cma:0kB [ 145.963683][ T7554] lowmem_reserve[]: 0 0 0 0 0 [ 145.968966][ T7554] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 145.982262][ T7554] Node 0 DMA32: 20*4kB (E) 19*8kB (E) 219*16kB (ME) 316*32kB (ME) 275*64kB (UME) 173*128kB (UME) 59*256kB (UM) 28*512kB (UE) 15*1024kB (UM) 17*2048kB (UME) 266*4096kB (UM) = 1222744kB [ 146.003997][ T7554] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB [ 146.017650][ T7554] Node 1 Normal: 251*4kB (UME) 62*8kB (UME) 49*16kB (UME) 58*32kB (UME) 18*64kB (UME) 8*128kB (UME) 3*256kB (UME) 1*512kB (E) 0*1024kB 1*2048kB (E) 947*4096kB (UM) = 3888556kB [ 146.039194][ T7554] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 146.065641][ T7554] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 146.083313][ T7554] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 146.106020][ T7554] Node 1 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 146.124074][ T7554] 52023 total pagecache pages [ 146.133138][ T7554] 0 pages in swap cache [ 146.140854][ T7554] Free swap = 124436kB [ 146.148464][ T7554] Total swap = 124996kB [ 146.157243][ T7554] 2097051 pages RAM [ 146.165167][ T7554] 0 pages HighMem/MovableOnly [ 146.172847][ T7554] 416127 pages reserved [ 146.181211][ T7554] 0 pages cma reserved [ 146.855003][ T7631] syzkaller0: entered promiscuous mode [ 146.877847][ T7631] syzkaller0: entered allmulticast mode [ 147.023443][ T7633] loop0: detected capacity change from 0 to 1024 [ 147.056565][ T7633] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 147.074321][ T7633] EXT4-fs error (device loop0): __ext4_iget:5067: inode #17: block 1803188595: comm syz.0.691: invalid block [ 147.090051][ T7633] EXT4-fs (loop0): no journal found [ 147.333010][ T7637] netlink: 'syz.3.695': attribute type 6 has an invalid length. [ 147.408224][ T7637] IPVS: persistence engine module ip_vs_pe_ not found [ 147.471348][ T7637] geneve2: entered promiscuous mode [ 147.479718][ T7637] geneve2: entered allmulticast mode [ 147.757499][ T28] kauditd_printk_skb: 156 callbacks suppressed [ 147.757513][ T28] audit: type=1326 audit(1767734374.735:1501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.2.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 147.789416][ T28] audit: type=1326 audit(1767734374.765:1502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.2.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 147.820615][ T28] audit: type=1326 audit(1767734374.795:1503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.2.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 147.864056][ T28] audit: type=1326 audit(1767734374.795:1504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.2.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 147.905872][ T28] audit: type=1326 audit(1767734374.795:1505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.2.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 147.971103][ T28] audit: type=1326 audit(1767734374.795:1506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.2.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 147.997280][ T28] audit: type=1326 audit(1767734374.795:1507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.2.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 148.025192][ T28] audit: type=1326 audit(1767734374.825:1508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.2.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 148.052557][ T28] audit: type=1326 audit(1767734374.825:1509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.2.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950918f749 code=0x7ffc0000 [ 148.079676][ T28] audit: type=1326 audit(1767734374.825:1510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7650 comm="syz.2.701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f95091865e7 code=0x7ffc0000 [ 148.312071][ T7667] netlink: 4 bytes leftover after parsing attributes in process `syz.2.708'. [ 149.616725][ T7700] netlink: 'syz.1.722': attribute type 6 has an invalid length. [ 149.944073][ T7709] xt_CT: You must specify a L4 protocol and not use inversions on it [ 150.269756][ T7719] netlink: 4 bytes leftover after parsing attributes in process `syz.3.730'. [ 151.313479][ T7743] Set syz1 is full, maxelem 6117 reached [ 151.807857][ T7745] netlink: 4 bytes leftover after parsing attributes in process `syz.0.741'. [ 151.831479][ T7754] random: crng reseeded on system resumption [ 151.858423][ T7758] syz.3.745[7758] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 151.858550][ T7758] syz.3.745[7758] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 152.128772][ T7765] tipc: Resetting bearer [ 152.195981][ T7769] team0: Mode changed to "loadbalance" [ 152.294466][ T7772] netlink: 'syz.3.751': attribute type 1 has an invalid length. [ 152.594893][ T7783] : renamed from bond0 [ 152.751644][ T7786] loop0: detected capacity change from 0 to 1024 [ 152.779925][ T7786] EXT4-fs: Ignoring removed nomblk_io_submit option [ 152.818220][ T7786] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 152.858615][ T7786] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 152.873417][ T7786] System zones: 0-1, 3-36 [ 152.892247][ T7786] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.914464][ T28] kauditd_printk_skb: 283 callbacks suppressed [ 152.914477][ T28] audit: type=1326 audit(1767734379.885:1794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 152.971020][ T7797] loop2: detected capacity change from 0 to 1024 [ 152.985436][ T7797] EXT4-fs: Ignoring removed nomblk_io_submit option [ 153.026879][ T7797] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e815c01c, mo2=0003] [ 153.036338][ T28] audit: type=1326 audit(1767734379.885:1795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 153.067017][ T7797] System zones: 0-1, 3-36 [ 153.079442][ T28] audit: type=1326 audit(1767734379.885:1796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 153.086093][ T7797] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 153.102437][ T28] audit: type=1326 audit(1767734379.885:1797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 153.139081][ T5768] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.151837][ T28] audit: type=1326 audit(1767734379.885:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 153.250122][ T7797] EXT4-fs (loop2): shut down requested (0) [ 153.264983][ T28] audit: type=1326 audit(1767734379.885:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 153.312122][ T28] audit: type=1326 audit(1767734379.885:1800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 153.358704][ T28] audit: type=1326 audit(1767734379.885:1801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 153.417729][ T28] audit: type=1326 audit(1767734379.885:1802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 153.443522][ T28] audit: type=1326 audit(1767734379.885:1803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7785 comm="syz.0.757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f350278f749 code=0x7ffc0000 [ 153.469459][ T5761] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.844373][ T7818] loop2: detected capacity change from 0 to 512 [ 153.962398][ T7818] ------------[ cut here ]------------ [ 153.968641][ T7818] EA inode 11 i_nlink=2 [ 153.989138][ T7818] WARNING: CPU: 0 PID: 7818 at fs/ext4/xattr.c:1075 ext4_xattr_inode_update_ref+0x4fb/0x550 [ 154.003685][ T7818] Modules linked in: [ 154.008241][ T7818] CPU: 0 PID: 7818 Comm: syz.2.767 Not tainted syzkaller #0 [ 154.016216][ T7818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 154.028806][ T7818] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 154.035454][ T7818] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08 [ 154.055725][ T7818] RSP: 0018:ffffc90003b8f2e0 EFLAGS: 00010246 [ 154.061839][ T7818] RAX: eee4e4c2f2417300 RBX: 0000000000000002 RCX: 0000000000080000 [ 154.070281][ T7818] RDX: ffffc9000e13e000 RSI: 0000000000036b71 RDI: 0000000000036b72 [ 154.078639][ T7818] RBP: ffffc90003b8f3d0 R08: ffff8880b8e28c13 R09: 1ffff110171c5182 [ 154.087014][ T7818] R10: dffffc0000000000 R11: ffffed10171c5183 R12: dffffc0000000000 [ 154.095092][ T7818] R13: ffff88805e9ccaa8 R14: ffff88805e9cc8b0 R15: ffff88805e9cc900 [ 154.103207][ T7818] FS: 00007f950a0bd6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 154.112245][ T7818] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 154.118940][ T7818] CR2: 00007f26c5a1f000 CR3: 00000000588fa000 CR4: 00000000003506f0 [ 154.127071][ T7818] Call Trace: [ 154.130376][ T7818] [ 154.133343][ T7818] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 154.139166][ T7818] ? __ext4_journal_ensure_credits+0x30/0x450 [ 154.145377][ T7818] ext4_xattr_inode_dec_ref_all+0xa2b/0xf90 [ 154.151506][ T7818] ? ext4_xattr_delete_inode+0xc00/0xc00 [ 154.157282][ T7818] ? __ext4_journal_ensure_credits+0x450/0x450 [ 154.163495][ T7818] ext4_xattr_delete_inode+0xa45/0xc00 [ 154.169143][ T7818] ? ext4_truncate+0xc12/0x1060 [ 154.174042][ T7818] ? ext4_expand_extra_isize_ea+0x19e0/0x19e0 [ 154.180460][ T7818] ext4_evict_inode+0xaa3/0xea0 [ 154.185370][ T7818] ? _raw_spin_unlock+0x28/0x40 [ 154.190436][ T7818] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 154.196839][ T7818] ? do_raw_spin_unlock+0x121/0x230 [ 154.202101][ T7818] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 154.208093][ T7818] evict+0x486/0x870 [ 154.212028][ T7818] ? __lock_acquire+0x7c80/0x7c80 [ 154.217533][ T7818] ? proc_nr_inodes+0x230/0x230 [ 154.222428][ T7818] ? do_raw_spin_unlock+0x121/0x230 [ 154.227734][ T7818] ? _raw_spin_unlock+0x28/0x40 [ 154.232619][ T7818] ? iput+0x70a/0x920 [ 154.236727][ T7818] ext4_orphan_cleanup+0xbd4/0x1400 [ 154.241986][ T7818] ? ext4_orphan_del+0xba0/0xba0 [ 154.247071][ T7818] ? ext4_register_li_request+0x183/0x940 [ 154.252835][ T7818] ? errseq_check_and_advance+0x66/0x120 [ 154.258586][ T7818] ext4_fill_super+0x5de4/0x66c0 [ 154.263583][ T7818] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 154.269927][ T7818] ? __might_sleep+0xe0/0xe0 [ 154.274557][ T7818] ? read_lock_is_recursive+0x20/0x20 [ 154.280239][ T7818] ? snprintf+0xdb/0x120 [ 154.284521][ T7818] ? vscnprintf+0x80/0x80 [ 154.289031][ T7818] ? down_write+0x162/0x1f0 [ 154.293567][ T7818] ? down_read_killable+0x340/0x340 [ 154.298918][ T7818] ? setup_bdev_super+0x56b/0x660 [ 154.304087][ T7818] get_tree_bdev+0x3e4/0x510 [ 154.308758][ T7818] ? vfs_parse_fs_string+0x160/0x160 [ 154.314076][ T7818] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 154.320539][ T7818] ? setup_bdev_super+0x660/0x660 [ 154.325732][ T7818] ? apparmor_capable+0x137/0x1a0 [ 154.330793][ T7818] ? bpf_lsm_capable+0x9/0x10 [ 154.335774][ T7818] ? security_capable+0x89/0xb0 [ 154.340755][ T7818] vfs_get_tree+0x8c/0x280 [ 154.345173][ T7818] do_new_mount+0x24b/0xa40 [ 154.349765][ T7818] __se_sys_mount+0x2da/0x3c0 [ 154.354480][ T7818] ? __x64_sys_mount+0xc0/0xc0 [ 154.359354][ T7818] ? __x64_sys_mount+0x20/0xc0 [ 154.364143][ T7818] do_syscall_64+0x55/0xb0 [ 154.368633][ T7818] ? clear_bhb_loop+0x40/0x90 [ 154.373351][ T7818] ? clear_bhb_loop+0x40/0x90 [ 154.378141][ T7818] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 154.384200][ T7818] RIP: 0033:0x7f9509190eea [ 154.388748][ T7818] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.408527][ T7818] RSP: 002b:00007f950a0bce68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 154.417176][ T7818] RAX: ffffffffffffffda RBX: 00007f950a0bcef0 RCX: 00007f9509190eea [ 154.425183][ T7818] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f950a0bceb0 [ 154.433270][ T7818] RBP: 0000200000000180 R08: 00007f950a0bcef0 R09: 0000000000800718 [ 154.441331][ T7818] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0 [ 154.449382][ T7818] R13: 00007f950a0bceb0 R14: 000000000000047f R15: 0000200000000200 [ 154.457413][ T7818] [ 154.460427][ T7818] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 154.467703][ T7818] CPU: 0 PID: 7818 Comm: syz.2.767 Not tainted syzkaller #0 [ 154.475002][ T7818] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 154.485063][ T7818] Call Trace: [ 154.488874][ T7818] [ 154.491799][ T7818] dump_stack_lvl+0x16c/0x230 [ 154.496486][ T7818] ? show_regs_print_info+0x20/0x20 [ 154.501695][ T7818] ? load_image+0x3b0/0x3b0 [ 154.506236][ T7818] panic+0x2c0/0x710 [ 154.510148][ T7818] ? bpf_jit_dump+0xd0/0xd0 [ 154.514655][ T7818] __warn+0x2e0/0x470 [ 154.518648][ T7818] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 154.524656][ T7818] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 154.530636][ T7818] report_bug+0x2be/0x4f0 [ 154.534961][ T7818] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 154.540955][ T7818] ? ext4_xattr_inode_update_ref+0x4fb/0x550 [ 154.546959][ T7818] ? ext4_xattr_inode_update_ref+0x4fd/0x550 [ 154.552949][ T7818] handle_bug+0xcf/0x120 [ 154.557189][ T7818] exc_invalid_op+0x1a/0x50 [ 154.561690][ T7818] asm_exc_invalid_op+0x1a/0x20 [ 154.566544][ T7818] RIP: 0010:ext4_xattr_inode_update_ref+0x4fb/0x550 [ 154.573149][ T7818] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 06 2c 9a ff 49 8b 37 48 c7 c7 a0 c6 be 8a 89 da e8 35 3a 0d ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 b9 fe ff ff e8 7f a3 24 08 [ 154.592759][ T7818] RSP: 0018:ffffc90003b8f2e0 EFLAGS: 00010246 [ 154.598827][ T7818] RAX: eee4e4c2f2417300 RBX: 0000000000000002 RCX: 0000000000080000 [ 154.606796][ T7818] RDX: ffffc9000e13e000 RSI: 0000000000036b71 RDI: 0000000000036b72 [ 154.614793][ T7818] RBP: ffffc90003b8f3d0 R08: ffff8880b8e28c13 R09: 1ffff110171c5182 [ 154.622779][ T7818] R10: dffffc0000000000 R11: ffffed10171c5183 R12: dffffc0000000000 [ 154.630795][ T7818] R13: ffff88805e9ccaa8 R14: ffff88805e9cc8b0 R15: ffff88805e9cc900 [ 154.638782][ T7818] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 154.644421][ T7818] ? __ext4_journal_ensure_credits+0x30/0x450 [ 154.650492][ T7818] ext4_xattr_inode_dec_ref_all+0xa2b/0xf90 [ 154.656405][ T7818] ? ext4_xattr_delete_inode+0xc00/0xc00 [ 154.662034][ T7818] ? __ext4_journal_ensure_credits+0x450/0x450 [ 154.668193][ T7818] ext4_xattr_delete_inode+0xa45/0xc00 [ 154.673655][ T7818] ? ext4_truncate+0xc12/0x1060 [ 154.678514][ T7818] ? ext4_expand_extra_isize_ea+0x19e0/0x19e0 [ 154.684591][ T7818] ext4_evict_inode+0xaa3/0xea0 [ 154.689438][ T7818] ? _raw_spin_unlock+0x28/0x40 [ 154.694297][ T7818] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 154.700191][ T7818] ? do_raw_spin_unlock+0x121/0x230 [ 154.705385][ T7818] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 154.711275][ T7818] evict+0x486/0x870 [ 154.715165][ T7818] ? __lock_acquire+0x7c80/0x7c80 [ 154.720185][ T7818] ? proc_nr_inodes+0x230/0x230 [ 154.725037][ T7818] ? do_raw_spin_unlock+0x121/0x230 [ 154.730231][ T7818] ? _raw_spin_unlock+0x28/0x40 [ 154.735073][ T7818] ? iput+0x70a/0x920 [ 154.739051][ T7818] ext4_orphan_cleanup+0xbd4/0x1400 [ 154.744280][ T7818] ? ext4_orphan_del+0xba0/0xba0 [ 154.749250][ T7818] ? ext4_register_li_request+0x183/0x940 [ 154.754995][ T7818] ? errseq_check_and_advance+0x66/0x120 [ 154.760634][ T7818] ext4_fill_super+0x5de4/0x66c0 [ 154.765593][ T7818] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 154.771839][ T7818] ? __might_sleep+0xe0/0xe0 [ 154.776425][ T7818] ? read_lock_is_recursive+0x20/0x20 [ 154.781792][ T7818] ? snprintf+0xdb/0x120 [ 154.786042][ T7818] ? vscnprintf+0x80/0x80 [ 154.790367][ T7818] ? down_write+0x162/0x1f0 [ 154.794860][ T7818] ? down_read_killable+0x340/0x340 [ 154.800051][ T7818] ? setup_bdev_super+0x56b/0x660 [ 154.805066][ T7818] get_tree_bdev+0x3e4/0x510 [ 154.809653][ T7818] ? vfs_parse_fs_string+0x160/0x160 [ 154.814932][ T7818] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 154.821174][ T7818] ? setup_bdev_super+0x660/0x660 [ 154.826191][ T7818] ? apparmor_capable+0x137/0x1a0 [ 154.831211][ T7818] ? bpf_lsm_capable+0x9/0x10 [ 154.836145][ T7818] ? security_capable+0x89/0xb0 [ 154.840991][ T7818] vfs_get_tree+0x8c/0x280 [ 154.845403][ T7818] do_new_mount+0x24b/0xa40 [ 154.849904][ T7818] __se_sys_mount+0x2da/0x3c0 [ 154.854583][ T7818] ? __x64_sys_mount+0xc0/0xc0 [ 154.859338][ T7818] ? __x64_sys_mount+0x20/0xc0 [ 154.864094][ T7818] do_syscall_64+0x55/0xb0 [ 154.868501][ T7818] ? clear_bhb_loop+0x40/0x90 [ 154.873174][ T7818] ? clear_bhb_loop+0x40/0x90 [ 154.877849][ T7818] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 154.883738][ T7818] RIP: 0033:0x7f9509190eea [ 154.888145][ T7818] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 154.907750][ T7818] RSP: 002b:00007f950a0bce68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 154.916249][ T7818] RAX: ffffffffffffffda RBX: 00007f950a0bcef0 RCX: 00007f9509190eea [ 154.924214][ T7818] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f950a0bceb0 [ 154.932181][ T7818] RBP: 0000200000000180 R08: 00007f950a0bcef0 R09: 0000000000800718 [ 154.940144][ T7818] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0 [ 154.948105][ T7818] R13: 00007f950a0bceb0 R14: 000000000000047f R15: 0000200000000200 [ 154.956084][ T7818] [ 154.959458][ T7818] Kernel Offset: disabled [ 154.963989][ T7818] Rebooting in 86400 seconds..