last executing test programs: 1m28.782436052s ago: executing program 3 (id=184): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a00)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xc94284a3061bb7fe, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x7}, 0x94) r0 = epoll_create1(0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0) r2 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0x20000014}) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000600)={0xa0000013}) ppoll(&(0x7f0000000040)=[{r2, 0x1}], 0x1, 0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) getpid() r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000380)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0xffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x3}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={&(0x7f0000000700)="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", &(0x7f0000000240)=""/221, &(0x7f0000000000)="656b60b30225acf92d3fcb1454c81b48b5a1b3e6c9c47adc571fffee", &(0x7f0000000340), 0x77, r3, 0x4}, 0x38) r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101}) r5 = socket(0x400000000010, 0x3, 0x0) r6 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x8001}, 0x20008850) r8 = socket(0x400000000010, 0x3, 0x0) r9 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r8, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@gettfilter={0x24, 0x2e, 0x5e3171053baea80f, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r10, {0xc, 0x10}, {0xffff, 0xfff1}, {0x4, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x5}, 0x4041080) 1m24.974143747s ago: executing program 3 (id=197): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = msgget$private(0x0, 0x0) msgctl$IPC_RMID(r2, 0x0) 1m24.727104302s ago: executing program 3 (id=200): mkdirat(0xffffffffffffff9c, 0x0, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1804000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], 0x0, 0x6, 0x0, 0x0, 0x40f00, 0x20}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000d80)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum={0x0, 0x0, 0x0, 0x13}]}}, 0x0, 0x26}, 0x20) r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="09000000040000000400000002"], 0x50) bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xd, 0x4, 0x4, 0xffffffff, 0x0, r2, 0x7, '\x00', 0x0, r1, 0x0, 0x3}, 0x50) 1m24.518345786s ago: executing program 3 (id=202): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec8500000050000000850000000f00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000140)='kfree\x00', r0, 0x0, 0xfffffffffffffff8}, 0x18) openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={0x0, 0xb4}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00'}, 0x10) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'}) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20000000) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f0000000040)={[{@errors_continue}, {}, {@orlov}]}, 0x1, 0x71e, &(0x7f0000000f40)="$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") socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)) creat(&(0x7f00000000c0)='./bus\x00', 0x0) mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x4000000000, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1000000000000000edf1139c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a00400", "036c47c6780820d1cbf7966d61fdcf335263bd4000bcc2542ded71038259ca17a8a414ef3d000000000000000000000000000000001000", "f28359738e229a4c66810000000000d300e6d6f0ffff1b000500", [0x204]}) 1m23.914971788s ago: executing program 3 (id=204): r0 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000480)={0xa, 0x4e20, 0x0, @mcast1, 0x2}, 0x1c) r1 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f00000000c0)=0x4, 0x4) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x5e20, 0x0, @mcast1, 0x2}, 0x1c) 1m20.499002655s ago: executing program 3 (id=215): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000bc0000000000000000"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x3}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x4c, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x20, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}, {0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}]}]}, @NFT_MSG_DELSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}]}], {0x14, 0x11, 0x7c, 0x0, 0x0, {0x1}}}, 0xdc}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) 1m20.015713135s ago: executing program 32 (id=215): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="18010000bc0000000000000000"], &(0x7f0000000100)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41100, 0x6, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', r0, 0x0, 0x3}, 0x18) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r1, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x4c, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x20, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}]}, {0xc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}]}]}]}, @NFT_MSG_DELSETELEM={0x2c, 0xe, 0xa, 0x201, 0x0, 0x0, {0xa}, [@NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}]}], {0x14, 0x11, 0x7c, 0x0, 0x0, {0x1}}}, 0xdc}, 0x1, 0x0, 0x0, 0x4000850}, 0x40) 5.967802532s ago: executing program 0 (id=510): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000004c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffd}]}) r0 = fsopen(&(0x7f0000000040)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x20140, 0x20) getdents(r1, &(0x7f0000000300)=""/179, 0xb3) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f00000001c0)='X', 0x1, 0x0, 0x0, 0x0) r6 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r6, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendto$inet6(r6, &(0x7f0000000040), 0x0, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r6, 0x84, 0x17, &(0x7f0000000800)=ANY=[], 0x9) r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) fchownat(0xffffffffffffffff, &(0x7f0000000080)='.\x00', 0xffffffffffffffff, 0x0, 0x0) 4.749924847s ago: executing program 0 (id=515): socket$nl_generic(0x10, 0x3, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='mm_page_free\x00', r1}, 0x18) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) ioctl$USBDEVFS_CONTROL(r2, 0xc0105500, &(0x7f0000000040)={0x0, 0x3, 0x1, 0x3, 0x0, 0x7, 0x0}) 4.685885568s ago: executing program 1 (id=516): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = epoll_create1(0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) writev(r4, &(0x7f0000000180)=[{&(0x7f0000000000)="9c", 0xffffff7d}], 0x1) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f0000000100)) shutdown(r3, 0x1) 3.876811634s ago: executing program 4 (id=523): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000004c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffd}]}) r0 = fsopen(&(0x7f0000000040)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x20140, 0x20) getdents(r1, &(0x7f0000000300)=""/179, 0xb3) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f00000001c0)='X', 0x1, 0x0, 0x0, 0x0) r6 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r6, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendto$inet6(r6, &(0x7f0000000040), 0x0, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r7 = fsmount(r0, 0x0, 0x0) r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) fchownat(r7, &(0x7f0000000080)='.\x00', 0xffffffffffffffff, 0x0, 0x0) 3.806748525s ago: executing program 2 (id=524): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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") pwrite64(0xffffffffffffffff, 0x0, 0x0, 0xfecc) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r0 = socket$kcm(0x2, 0xa, 0x2) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r1, 0x107, 0xa, 0x0, 0x0) setsockopt$packet_rx_ring(r1, 0x107, 0x5, 0x0, 0x0) ioctl$SIOCSIFHWADDR(r0, 0x8914, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000440)='kfree\x00', r3, 0x0, 0x5}, 0x18) r4 = open(&(0x7f0000000080)='./bus\x00', 0x14927e, 0x20) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, 0x4002011, r4, 0x3000) fallocate(r4, 0x0, 0x0, 0x1000f4) r5 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201) pwritev2(r5, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x6a000}], 0x1, 0x7000, 0x0, 0x3) 3.466924432s ago: executing program 1 (id=525): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDGKBENT(r2, 0x4b46, &(0x7f0000000200)={0x1, 0xb2, 0x2}) r3 = getpid() sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r4, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x3, &(0x7f0000000500)=ANY=[@ANYRESHEX=r1], &(0x7f0000000040)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000340)='locks_get_lock_context\x00', r6}, 0x10) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) r7 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout_data(r7, 0x107, 0x16, &(0x7f0000000100)={0x8, &(0x7f0000000240)=[{0x3, 0x4, 0x6, 0x5}, {0xe9, 0xb1, 0x7, 0x3}, {0x2, 0x1, 0x2, 0x10}, {0x2, 0xb, 0x1e, 0x427}, {0xffff, 0x6, 0x5, 0xffffffff}, {0x75, 0x9, 0xc1, 0x4}, {0x7, 0x4, 0x1, 0x3}, {0x0, 0x2, 0xd, 0x401}]}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10) prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00') bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000440)={0xffffffffffffffff, 0x0, 0x25, 0x0, @void}, 0x10) stat(0x0, &(0x7f0000000440)) r8 = socket$netlink(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a30000000000800410073697700140033006c6f"], 0xffaf}, 0x1, 0x0, 0x0, 0x40814}, 0x0) ioctl$LOOP_SET_BLOCK_SIZE(0xffffffffffffffff, 0x4c09, 0x3) 3.461977071s ago: executing program 0 (id=526): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000140)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) r2 = getpid() r3 = syz_pidfd_open(r2, 0x0) setns(r3, 0x24020000) mount_setattr(0xffffffffffffff9c, &(0x7f0000000180)='.\x00', 0x8000, &(0x7f0000001dc0)={0x8, 0x70, 0x80000}, 0x20) 2.53058142s ago: executing program 4 (id=527): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, 0x0) 2.398908343s ago: executing program 0 (id=528): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x7, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1001}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r3}, 0x18) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b00)=ANY=[@ANYBLOB="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"], 0x548}, 0x1, 0x0, 0x0, 0x20004000}, 0x0) 2.210154326s ago: executing program 2 (id=529): socket$inet_udp(0x2, 0x2, 0x0) socket$inet6(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x1c, 0x20000000000000bb, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r0}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) socket$vsock_stream(0x28, 0x1, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) socket$can_j1939(0x1d, 0x2, 0x7) socket$nl_generic(0x10, 0x3, 0x10) r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c00000003080102000000074441980000000000050003"], 0x1c}, 0x1, 0x0, 0x0, 0x50}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r3, &(0x7f0000000180), 0xfea7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) r4 = openat$cgroup_ro(r1, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r6, @ANYBLOB="ff830500000700ffffff", @ANYRES8=r1], 0x4}}, 0x0) sendfile(r5, r4, 0x0, 0x100000002) 2.171660347s ago: executing program 0 (id=530): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$MAP_DELETE_ELEM(0x3, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x48) prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) mkdirat(0xffffffffffffff9c, 0x0, 0x0) syz_clone(0x20000000, &(0x7f0000001040), 0x0, 0x0, 0x0, 0x0) unshare(0x2040400) r0 = gettid() timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0) pipe(&(0x7f0000000640)={0xffffffffffffffff}) vmsplice(r1, &(0x7f0000000080)=[{&(0x7f0000000500)="7c15b6bce0568bdbef75e4667376c6507c51094765fcc21aa8810d5a760327a50bc67e6f84", 0x25}], 0x1, 0x0) 2.170977487s ago: executing program 4 (id=531): bpf$MAP_CREATE(0x0, 0x0, 0x48) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r0}, 0x18) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x800) recvmmsg(r1, &(0x7f0000007700), 0x318, 0xfc0, 0x0) 1.879548212s ago: executing program 2 (id=532): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0) mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='proc\x00', 0x0, 0x0) chroot(&(0x7f0000000000)='./file0/../file0\x00') mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1b, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5, 0x0, 0x0, 0x20}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1004}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xeb48195b69e85694, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x18, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00', r1}, 0x10) pivot_root(&(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='./file0\x00') 1.810148354s ago: executing program 1 (id=533): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) r0 = getpid() sched_setscheduler(r0, 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r2 = epoll_create1(0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) writev(r4, &(0x7f0000000180)=[{&(0x7f0000000000)="9c", 0xffffff7d}], 0x1) epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r4, &(0x7f0000000100)) shutdown(r3, 0x1) 1.712802146s ago: executing program 4 (id=534): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r0, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x72, 0x11cfa, 0x0, 0x8000007, 0x3, 0x4, 0x1, 0x0, 0x6}) socket$inet6(0xa, 0x800000000000002, 0x0) r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0x2018, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000040)=0x0, &(0x7f00000001c0)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4) syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) io_uring_enter(r1, 0x47f6, 0x0, 0x4, 0x0, 0x0) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(0xffffffffffffffff, 0x40505330, &(0x7f00000001c0)={0x800100, 0xffffffff, 0x22, 0xe1d9, 0x1101, 0xff}) 1.52692981s ago: executing program 2 (id=535): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000004c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc9ffd}]}) r0 = fsopen(&(0x7f0000000040)='configfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = open$dir(&(0x7f0000000000)='./file0\x00', 0x20140, 0x20) getdents(r1, &(0x7f0000000300)=""/179, 0xb3) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r2 = getpid() sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f00000001c0)='X', 0x1, 0x0, 0x0, 0x0) r6 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r6, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r6, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c) sendto$inet6(r6, &(0x7f0000000040), 0x0, 0x0, &(0x7f0000000100)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) r7 = fsmount(r0, 0x0, 0x0) r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000700000000000000000000850000"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x41100}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) fchownat(r7, &(0x7f0000000080)='.\x00', 0xffffffffffffffff, 0x0, 0x0) 827.623374ms ago: executing program 0 (id=536): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000004000000ff0f000007"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r0}, &(0x7f0000000400), &(0x7f00000004c0)=r1}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000980)='mm_page_free\x00', r2}, 0x10) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r4, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x50) r5 = syz_open_procfs(0x0, &(0x7f0000000180)='pagemap\x00') ioctl$BTRFS_IOC_FS_INFO(r3, 0x8400941f, &(0x7f0000000540)) pread64(r5, &(0x7f0000001240)=""/102400, 0x200000, 0x0) socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$tipc(r6, &(0x7f00000003c0)={&(0x7f0000000180), 0x10, &(0x7f0000000380)=[{&(0x7f0000000480)="c3e972bd85a6d84136d6dd55048d3593a74f338ce6772ab9a6f64041c2f6fbbecdc08ebcd3192b6a53662dae7c8e9c665e80a5d0925f728dcac30c29793992e588952653d414cb8ccdabc38767fee819ec5af0c5ee936880fe8549b4ed347779cab4ffd4e0b62c53a1c01db28f2b3f91c34211c9353bc1dece61511917c2245fd66cb8dffeacb4d46d627c97b498bf1ff6b313bfbc9765457c831771d5eec7997ec242e4505f01c1bb3e069b2e630f42a2be86598a61", 0x64}, {&(0x7f0000000300)='V', 0x1}, {&(0x7f0000001600)="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", 0x1000}, {&(0x7f0000000340)="b768eb20304f2fdc5a9694a4867840d93170ca1a86406f", 0xfffffec0}], 0x4, 0x0, 0x0, 0x8010}, 0x0) r8 = dup2(r7, r6) sendmmsg(r8, &(0x7f0000008800)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000008480)=[{&(0x7f00000062c0)="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", 0x5c5}], 0x1}}], 0x5, 0x20004095) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) syz_clone(0x2c9a4080, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc) 410.746662ms ago: executing program 1 (id=537): ioctl$USBDEVFS_RESETEP(0xffffffffffffffff, 0x80045503, &(0x7f0000000000)={0x1, 0x1}) 378.253533ms ago: executing program 4 (id=538): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r0}, 0x10) r1 = gettid() r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0) read(r2, &(0x7f0000000440)=""/247, 0x26) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f00000000c0)={0x31, @tick=0x40, 0x4, {0x0, 0x2}, 0xa, 0x0, 0x4}) ioctl$SNDRV_SEQ_IOCTL_PVERSION(r2, 0x80045300, &(0x7f0000000180)) tkill(r1, 0x7) 377.393703ms ago: executing program 2 (id=539): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000021007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r2}, 0x10) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="440000000101010200000000000000000a000000240002800c000280040001003a00000014000180080001cd4bde2a0192000000000000000c0019"], 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x0) 195.050186ms ago: executing program 1 (id=540): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000580), &(0x7f00000005c0)=r1}, 0x20) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$inet6(0xa, 0x3, 0xff) dup2(r2, r2) 122.994038ms ago: executing program 2 (id=541): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x80078b, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x46a, &(0x7f0000000bc0)="$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") 25.874529ms ago: executing program 1 (id=542): symlink(&(0x7f0000000000)='.\x00', &(0x7f0000000100)='./file0\x00') syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1018e58, &(0x7f00000001c0), 0x6, 0x623, &(0x7f0000001fc0)="$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") bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) lchown(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) bind$inet6(r0, 0x0, 0x0) sendto$inet6(r0, 0x0, 0x0, 0xe0, 0x0, 0x0) umount2(&(0x7f00000002c0)='./file0\x00', 0x2) 0s ago: executing program 4 (id=543): socket$inet_udp(0x2, 0x2, 0x0) socket$inet6(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000001b40)={0x1c, 0x20000000000000bb, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, 0x2}, 0x94) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) socket$vsock_stream(0x28, 0x1, 0x0) socket$vsock_stream(0x28, 0x1, 0x0) socket$can_j1939(0x1d, 0x2, 0x7) socket$nl_generic(0x10, 0x3, 0x10) r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c00000003080102000000074441980000000000050003"], 0x1c}, 0x1, 0x0, 0x0, 0x50}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000180), 0xfea7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) r3 = openat$cgroup_ro(r0, &(0x7f0000000080)='cgroup.controllers\x00', 0xb00000000065808, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$batadv(&(0x7f0000007580), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, &(0x7f0000007680)={0x0, 0x0, &(0x7f0000007640)={&(0x7f0000000000)=ANY=[@ANYBLOB="46040000", @ANYRES16=r5, @ANYBLOB="ff830500000700ffffff", @ANYRES8=r0], 0x4}}, 0x0) sendfile(r4, r3, 0x0, 0x100000002) kernel console output (not intermixed with test programs): ] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 92.454787][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.468301][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.480090][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.491147][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.502873][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 92.513528][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 92.525004][ T5790] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 92.558279][ T5790] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.575806][ T5790] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.592848][ T5790] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.604514][ T5790] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 92.738044][ T5799] Bluetooth: hci2: command tx timeout [ 92.738104][ T5803] Bluetooth: hci1: command tx timeout [ 92.743518][ T5104] Bluetooth: hci0: command tx timeout [ 92.750059][ T50] Bluetooth: hci3: command tx timeout [ 92.830675][ T5887] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.842448][ T5889] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.851764][ T5887] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.859675][ T5889] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.932798][ T3507] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 92.953430][ T3507] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 92.974758][ T5900] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.000197][ T5900] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.161891][ T194] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.187821][ T194] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.197013][ T5892] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 93.204901][ T5892] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 93.762257][ T28] audit: type=1326 audit(1758360125.400:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 93.814050][ T5924] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4'. [ 93.842918][ T28] audit: type=1326 audit(1758360125.400:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 93.882859][ T28] audit: type=1326 audit(1758360125.410:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 93.917340][ T28] audit: type=1326 audit(1758360125.410:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 93.939883][ T5928] usb usb1: usbfs: process 5928 (syz.0.5) did not claim interface 0 before use [ 93.982059][ T28] audit: type=1326 audit(1758360125.410:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 94.023005][ T28] audit: type=1326 audit(1758360125.410:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 94.100953][ T28] audit: type=1326 audit(1758360125.410:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 94.132940][ T5932] bridge_slave_0: left allmulticast mode [ 94.140875][ T28] audit: type=1326 audit(1758360125.410:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 94.159747][ T5932] bridge_slave_0: left promiscuous mode [ 94.180079][ T28] audit: type=1326 audit(1758360125.450:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 94.197860][ T5932] bridge0: port 1(bridge_slave_0) entered disabled state [ 94.255123][ T5932] bridge_slave_1: left allmulticast mode [ 94.269289][ T5932] bridge_slave_1: left promiscuous mode [ 94.273615][ T28] audit: type=1326 audit(1758360125.450:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5923 comm="syz.3.4" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 94.298657][ T5932] bridge0: port 2(bridge_slave_1) entered disabled state [ 94.322816][ T5932] bond0: (slave bond_slave_0): Releasing backup interface [ 94.350187][ T5932] bond0: (slave bond_slave_1): Releasing backup interface [ 94.412586][ T5932] team0: Port device team_slave_0 removed [ 94.436669][ T5932] team0: Port device team_slave_1 removed [ 94.452225][ T5932] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 94.470692][ T5932] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 94.523563][ T5932] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 94.542233][ T5932] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 94.583332][ T5933] netlink: 'syz.2.7': attribute type 10 has an invalid length. [ 94.660143][ T5933] 8021q: adding VLAN 0 to HW filter on device bond0 [ 94.684581][ T5933] team0: Port device bond0 added [ 94.703176][ T5936] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8'. [ 94.740679][ T5939] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7'. [ 94.817256][ T50] Bluetooth: hci3: command tx timeout [ 94.822794][ T50] Bluetooth: hci1: command tx timeout [ 94.830498][ T5803] Bluetooth: hci0: command tx timeout [ 94.830513][ T5104] Bluetooth: hci2: command tx timeout [ 94.905000][ T5952] syz.3.11[5952]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 94.971464][ T5952] loop3: detected capacity change from 0 to 512 [ 95.112793][ T5952] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 95.180955][ T5952] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 95.222058][ T5961] loop1: detected capacity change from 0 to 8192 [ 95.235147][ T5961] ======================================================= [ 95.235147][ T5961] WARNING: The mand mount option has been deprecated and [ 95.235147][ T5961] and is ignored by this kernel. Remove the mand [ 95.235147][ T5961] option from the mount to silence this warning. [ 95.235147][ T5961] ======================================================= [ 95.363644][ T5939] team0 (unregistering): Port device bond0 removed [ 95.531998][ T5964] Zero length message leads to an empty skb [ 95.810952][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.021416][ T5971] netlink: 8 bytes leftover after parsing attributes in process `syz.0.17'. [ 96.387248][ T5983] netlink: 348 bytes leftover after parsing attributes in process `syz.1.21'. [ 96.396691][ T5983] netlink: 4 bytes leftover after parsing attributes in process `syz.1.21'. [ 96.749928][ T5989] pimreg: entered allmulticast mode [ 96.857420][ T5987] pimreg: left allmulticast mode [ 97.068047][ T6000] syz.1.28 uses obsolete (PF_INET,SOCK_PACKET) [ 97.350166][ T6006] loop2: detected capacity change from 0 to 1764 [ 97.932274][ T6010] loop3: detected capacity change from 0 to 512 [ 98.010963][ T6010] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 98.028880][ T6010] ext4 filesystem being mounted at /8/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 98.194319][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.036585][ T5879] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 99.206277][ T5879] usb 4-1: device descriptor read/64, error -71 [ 99.292107][ T6038] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 649 [ 99.418645][ T6040] futex_wake_op: syz.0.44 tries to shift op by 144; fix this program [ 99.500297][ T5879] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 99.656290][ T5879] usb 4-1: device descriptor read/64, error -71 [ 99.901880][ T5879] usb usb4-port1: attempt power cycle [ 100.284445][ T6053] loop2: detected capacity change from 0 to 1764 [ 100.669845][ T6053] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(9) [ 100.676844][ T6053] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 100.686502][ T6053] vhci_hcd vhci_hcd.0: Device attached [ 100.776015][ T6054] vhci_hcd: connection closed [ 100.796141][ T3507] vhci_hcd: stop threads [ 100.812053][ T3507] vhci_hcd: release socket [ 100.817618][ T3507] vhci_hcd: disconnect device [ 100.861321][ T28] kauditd_printk_skb: 252 callbacks suppressed [ 100.861338][ T28] audit: type=1326 audit(1758360132.510:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz.1.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 100.890518][ T28] audit: type=1326 audit(1758360132.510:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz.1.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 100.913433][ T28] audit: type=1326 audit(1758360132.520:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz.1.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 100.936336][ T28] audit: type=1326 audit(1758360132.520:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz.1.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 100.960353][ T28] audit: type=1326 audit(1758360132.520:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz.1.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 100.984008][ T28] audit: type=1326 audit(1758360132.520:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz.1.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 100.986982][ T5879] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 101.013663][ T28] audit: type=1326 audit(1758360132.520:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz.1.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 101.036523][ T6059] loop1: detected capacity change from 0 to 128 [ 101.036908][ T28] audit: type=1326 audit(1758360132.520:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz.1.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 101.049377][ T5879] usb 4-1: device descriptor read/8, error -71 [ 101.090241][ T6059] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100) [ 101.104298][ T6059] FAT-fs (loop1): Filesystem has been set read-only [ 101.106734][ T28] audit: type=1326 audit(1758360132.630:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz.1.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 101.111545][ T6059] syz.1.51: attempt to access beyond end of device [ 101.111545][ T6059] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 101.134242][ T28] audit: type=1326 audit(1758360132.630:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6058 comm="syz.1.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 101.167293][ T6059] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100) [ 101.179149][ T6059] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100) [ 101.188406][ T6059] syz.1.51: attempt to access beyond end of device [ 101.188406][ T6059] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 101.202414][ T6059] syz.1.51: attempt to access beyond end of device [ 101.202414][ T6059] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 101.215828][ T6059] syz.1.51: attempt to access beyond end of device [ 101.215828][ T6059] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 101.230490][ T6059] syz.1.51: attempt to access beyond end of device [ 101.230490][ T6059] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 101.244567][ T6059] syz.1.51: attempt to access beyond end of device [ 101.244567][ T6059] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 101.258279][ T6059] syz.1.51: attempt to access beyond end of device [ 101.258279][ T6059] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 101.272435][ T6059] syz.1.51: attempt to access beyond end of device [ 101.272435][ T6059] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 101.285810][ T6059] syz.1.51: attempt to access beyond end of device [ 101.285810][ T6059] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 101.299103][ T6059] syz.1.51: attempt to access beyond end of device [ 101.299103][ T6059] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 101.505996][ T5879] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 101.541939][ T5879] usb 4-1: device descriptor read/8, error -71 [ 101.676712][ T5879] usb usb4-port1: unable to enumerate USB device [ 102.844089][ T6085] loop2: detected capacity change from 0 to 512 [ 102.887054][ T6085] EXT4-fs: Ignoring removed mblk_io_submit option [ 102.948249][ T6085] EXT4-fs (loop2): failed to initialize system zone (-117) [ 103.012048][ T6085] EXT4-fs (loop2): mount failed [ 104.586279][ T6104] loop3: detected capacity change from 0 to 1764 [ 104.999119][ T6100] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(9) [ 105.005735][ T6100] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 105.013952][ T6100] vhci_hcd vhci_hcd.0: Device attached [ 105.133279][ T6106] vhci_hcd: connection closed [ 105.139986][ T5882] vhci_hcd: stop threads [ 105.178830][ T5882] vhci_hcd: release socket [ 105.206122][ T5882] vhci_hcd: disconnect device [ 105.733959][ T6124] loop1: detected capacity change from 0 to 512 [ 105.802621][ T6124] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 105.840279][ T6124] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.71: Failed to acquire dquot type 1 [ 105.866354][ T28] kauditd_printk_skb: 353 callbacks suppressed [ 105.866369][ T28] audit: type=1326 audit(1758360137.520:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6119 comm="syz.0.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f76b3985be7 code=0x7ffc0000 [ 105.888032][ T6124] EXT4-fs (loop1): 1 truncate cleaned up [ 105.910485][ T6124] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 105.967352][ T28] audit: type=1326 audit(1758360137.540:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6119 comm="syz.0.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f76b392ae09 code=0x7ffc0000 [ 106.014037][ T28] audit: type=1326 audit(1758360137.540:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6119 comm="syz.0.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f76b3985be7 code=0x7ffc0000 [ 106.042996][ T6124] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 106.096748][ T6124] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 106.107655][ T28] audit: type=1326 audit(1758360137.540:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6119 comm="syz.0.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f76b392ae09 code=0x7ffc0000 [ 106.130379][ T6124] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.71: Failed to acquire dquot type 1 [ 106.130449][ T6133] loop2: detected capacity change from 0 to 1024 [ 106.144935][ T28] audit: type=1326 audit(1758360137.540:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6119 comm="syz.0.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 106.182854][ T28] audit: type=1326 audit(1758360137.560:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6119 comm="syz.0.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f76b3985be7 code=0x7ffc0000 [ 106.193339][ T6133] EXT4-fs: Ignoring removed i_version option [ 106.228910][ T28] audit: type=1326 audit(1758360137.560:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6119 comm="syz.0.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f76b392ae09 code=0x7ffc0000 [ 106.233746][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 106.251617][ T28] audit: type=1326 audit(1758360137.560:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6119 comm="syz.0.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 106.925163][ T6150] sch_tbf: burst 3298 is lower than device lo mtu (65550) ! [ 107.407708][ T6155] 9pnet_fd: Insufficient options for proto=fd [ 108.424596][ T6169] loop2: detected capacity change from 0 to 1024 [ 108.444831][ T6169] EXT4-fs: Ignoring removed bh option [ 108.725165][ T6169] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 108.769073][ T6169] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 109.118857][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 109.272778][ T6181] capability: warning: `syz.1.91' uses deprecated v2 capabilities in a way that may be insecure [ 109.456539][ T6187] 9pnet_fd: Insufficient options for proto=fd [ 109.830289][ T6197] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 109.848097][ T6197] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 110.310881][ T6206] netlink: 'syz.0.99': attribute type 10 has an invalid length. [ 110.382765][ T6206] team0: Port device dummy0 added [ 110.406355][ T6209] netlink: 'syz.0.99': attribute type 10 has an invalid length. [ 110.452842][ T6211] 9pnet_fd: Insufficient options for proto=fd [ 110.474336][ T6209] team0: Port device dummy0 removed [ 110.500162][ T6209] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 111.184505][ T6225] loop3: detected capacity change from 0 to 512 [ 111.223820][ T6225] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 111.289709][ T6225] EXT4-fs (loop3): 1 orphan inode deleted [ 111.299776][ T6225] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 111.322760][ T5916] __quota_error: 404 callbacks suppressed [ 111.322779][ T5916] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 111.356545][ T6225] ext4 filesystem being mounted at /25/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 111.374454][ T5916] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:44: Failed to release dquot type 1 [ 111.395751][ T6225] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.674177][ T6236] 9pnet_fd: Insufficient options for proto=fd [ 112.020730][ T6237] loop0: detected capacity change from 0 to 1764 [ 112.408175][ T6237] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9) [ 112.414771][ T6237] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 112.423395][ T6237] vhci_hcd vhci_hcd.0: Device attached [ 112.502711][ T6238] vhci_hcd: connection closed [ 112.506592][ T5916] vhci_hcd: stop threads [ 112.517759][ T6225] loop3: detected capacity change from 0 to 512 [ 112.544175][ T5916] vhci_hcd: release socket [ 112.547485][ T6225] EXT4-fs: Ignoring removed oldalloc option [ 112.557561][ T5916] vhci_hcd: disconnect device [ 112.565802][ T6225] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 112.654896][ T6225] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2867: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 112.710671][ T6225] EXT4-fs (loop3): 1 truncate cleaned up [ 112.732264][ T6225] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 112.825263][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 113.280226][ T28] audit: type=1326 audit(1758360144.930:1037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 113.343882][ T28] audit: type=1326 audit(1758360144.970:1038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 113.391326][ T28] audit: type=1326 audit(1758360144.970:1039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 113.441032][ T28] audit: type=1326 audit(1758360144.970:1040): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 113.482560][ T28] audit: type=1326 audit(1758360144.970:1041): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 113.510963][ T28] audit: type=1326 audit(1758360144.990:1043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6265 comm="syz.0.115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 113.562458][ T28] audit: type=1326 audit(1758360144.990:1042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 113.585325][ T28] audit: type=1326 audit(1758360145.000:1044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 113.608536][ T28] audit: type=1326 audit(1758360145.010:1045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6261 comm="syz.0.115" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 114.340500][ T6280] tipc: Started in network mode [ 114.345813][ T6280] tipc: Node identity 6af1059550b5, cluster identity 4711 [ 114.355510][ T6280] tipc: Enabled bearer , priority 0 [ 114.370315][ T6277] tipc: Resetting bearer [ 115.561610][ T6304] loop0: detected capacity change from 0 to 1764 [ 115.588704][ T5817] tipc: Node number set to 977536405 [ 115.962089][ T6304] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9) [ 115.968715][ T6304] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 115.976705][ T6304] vhci_hcd vhci_hcd.0: Device attached [ 115.992053][ T6305] vhci_hcd: connection closed [ 115.997307][ T5900] vhci_hcd: stop threads [ 116.025244][ T5900] vhci_hcd: release socket [ 116.030792][ T5900] vhci_hcd: disconnect device [ 116.076865][ T6309] loop2: detected capacity change from 0 to 1024 [ 116.114327][ T6309] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 116.203094][ T6309] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 116.406345][ T28] kauditd_printk_skb: 248 callbacks suppressed [ 116.406362][ T28] audit: type=1326 audit(1758360148.040:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6308 comm="syz.2.126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 116.443572][ T28] audit: type=1326 audit(1758360148.050:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6308 comm="syz.2.126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 116.479262][ T28] audit: type=1326 audit(1758360148.120:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6308 comm="syz.2.126" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 116.778791][ T6318] loop0: detected capacity change from 0 to 128 [ 116.893799][ T6318] bio_check_eod: 5241 callbacks suppressed [ 116.893819][ T6318] syz.0.128: attempt to access beyond end of device [ 116.893819][ T6318] loop0: rw=2049, sector=138, nr_sectors = 2 limit=128 [ 117.012699][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.261476][ T28] audit: type=1326 audit(1758360148.910:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6321 comm="syz.0.130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 117.307586][ T28] audit: type=1326 audit(1758360148.930:1298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6321 comm="syz.0.130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 117.360281][ T28] audit: type=1326 audit(1758360148.930:1299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6321 comm="syz.0.130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 117.405481][ T28] audit: type=1326 audit(1758360148.930:1300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6321 comm="syz.0.130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 117.433653][ T28] audit: type=1326 audit(1758360148.930:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6321 comm="syz.0.130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 117.470788][ T28] audit: type=1326 audit(1758360148.930:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6321 comm="syz.0.130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 117.499136][ T28] audit: type=1326 audit(1758360148.990:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6321 comm="syz.0.130" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 118.225715][ T6332] 9p: Unknown access argument Š: -22 [ 118.827832][ T6277] tipc: Disabling bearer [ 119.641803][ T6363] loop0: detected capacity change from 0 to 512 [ 119.658534][ T6363] EXT4-fs: Ignoring removed bh option [ 119.702069][ T6363] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 119.742993][ T6363] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 119.760936][ T6363] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 119.778374][ T6363] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 119.809574][ T6363] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 120.136266][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.560654][ T6380] loop0: detected capacity change from 0 to 164 [ 120.608459][ T6380] process 'syz.0.147' launched '/dev/fd/4' with NULL argv: empty string added [ 120.647823][ T6381] tipc: Started in network mode [ 120.653433][ T6381] tipc: Node identity 7a32d5a469de, cluster identity 4711 [ 120.663760][ T6380] syz.0.147: attempt to access beyond end of device [ 120.663760][ T6380] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164 [ 120.666298][ T6381] tipc: Enabled bearer , priority 0 [ 120.712710][ T6380] syz.0.147: attempt to access beyond end of device [ 120.712710][ T6380] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164 [ 120.743340][ T6377] tipc: Resetting bearer [ 121.172941][ T6397] xt_l2tp: missing protocol rule (udp|l2tpip) [ 121.655957][ T28] kauditd_printk_skb: 439 callbacks suppressed [ 121.655975][ T28] audit: type=1326 audit(1758360153.290:1743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.2.154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 121.737185][ T5879] tipc: Node number set to 334288292 [ 121.761818][ T28] audit: type=1326 audit(1758360153.300:1744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.2.154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 121.818299][ T28] audit: type=1326 audit(1758360153.300:1745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.2.154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=325 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 121.912777][ T28] audit: type=1326 audit(1758360153.300:1746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.2.154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 121.986066][ T28] audit: type=1326 audit(1758360153.310:1747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6402 comm="syz.2.154" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 122.052666][ T28] audit: type=1326 audit(1758360153.690:1748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6407 comm="syz.0.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 122.072819][ T6409] loop0: detected capacity change from 0 to 1024 [ 122.112507][ T28] audit: type=1326 audit(1758360153.690:1749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6407 comm="syz.0.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 122.112685][ T6411] loop2: detected capacity change from 0 to 512 [ 122.161755][ T6409] EXT4-fs: Ignoring removed mblk_io_submit option [ 122.164334][ T28] audit: type=1326 audit(1758360153.700:1750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6407 comm="syz.0.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 122.183911][ T6409] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 122.236091][ T6411] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 122.252811][ T28] audit: type=1326 audit(1758360153.700:1751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6407 comm="syz.0.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 122.285189][ T6409] EXT4-fs error (device loop0): ext4_orphan_get:1425: comm syz.0.156: bad orphan inode 11 [ 122.323468][ T6411] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 122.324140][ T6409] ext4_test_bit(bit=10, block=4) = 1 [ 122.352507][ T28] audit: type=1326 audit(1758360153.710:1752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6407 comm="syz.0.156" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 122.362813][ T6411] EXT4-fs (loop2): 1 truncate cleaned up [ 122.383215][ T6411] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 122.387125][ T6409] is_bad_inode(inode)=0 [ 122.419945][ T6409] NEXT_ORPHAN(inode)=3254779904 [ 122.424917][ T6409] max_ino=32 [ 122.446200][ T6409] i_nlink=0 [ 122.517906][ T6409] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 2: comm syz.0.156: lblock 2 mapped to illegal pblock 2 (length 1) [ 122.547678][ T6409] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 48: comm syz.0.156: lblock 0 mapped to illegal pblock 48 (length 1) [ 122.569168][ T6409] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.156: Failed to acquire dquot type 0 [ 122.591276][ T6409] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 122.614534][ T6409] EXT4-fs error (device loop0): ext4_evict_inode:252: inode #11: comm syz.0.156: mark_inode_dirty error [ 122.633355][ T6409] EXT4-fs warning (device loop0): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 122.664603][ T6409] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 124.438680][ T6377] tipc: Disabling bearer [ 124.598970][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.616938][ T5787] EXT4-fs error (device loop0): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 124.654294][ T5787] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 124.671840][ T5787] EXT4-fs error (device loop0): ext4_quota_off:7224: inode #3: comm syz-executor: mark_inode_dirty error [ 124.718020][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 125.310932][ T6429] loop1: detected capacity change from 0 to 1764 [ 125.739606][ T6426] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(9) [ 125.746397][ T6426] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 125.754681][ T6426] vhci_hcd vhci_hcd.0: Device attached [ 125.872335][ T6430] vhci_hcd: connection closed [ 125.879377][ T5888] vhci_hcd: stop threads [ 125.895381][ T5888] vhci_hcd: release socket [ 125.900871][ T5888] vhci_hcd: disconnect device [ 126.768069][ T28] kauditd_printk_skb: 40 callbacks suppressed [ 126.768085][ T28] audit: type=1326 audit(1758360158.420:1791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6447 comm="syz.3.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 126.827530][ T28] audit: type=1326 audit(1758360158.450:1792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6447 comm="syz.3.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 126.864239][ T6456] tipc: Started in network mode [ 126.873894][ T6456] tipc: Node identity 76b6ace03d05, cluster identity 4711 [ 126.887109][ T28] audit: type=1326 audit(1758360158.460:1793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6447 comm="syz.3.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 126.909882][ T6455] loop3: detected capacity change from 0 to 1024 [ 126.916208][ T6456] tipc: Enabled bearer , priority 0 [ 126.923843][ T6455] EXT4-fs: Ignoring removed mblk_io_submit option [ 126.946216][ T6446] tipc: Resetting bearer [ 126.956155][ T28] audit: type=1326 audit(1758360158.460:1794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6447 comm="syz.3.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 126.997530][ T28] audit: type=1326 audit(1758360158.460:1795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6447 comm="syz.3.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 127.035756][ T6455] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 127.092151][ T28] audit: type=1326 audit(1758360158.460:1796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6447 comm="syz.3.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 127.156105][ T28] audit: type=1326 audit(1758360158.460:1797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6447 comm="syz.3.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 127.156652][ T6455] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.169: bad orphan inode 11 [ 127.209861][ T6455] ext4_test_bit(bit=10, block=4) = 1 [ 127.215401][ T6455] is_bad_inode(inode)=0 [ 127.228562][ T6455] NEXT_ORPHAN(inode)=3254779904 [ 127.231583][ T28] audit: type=1326 audit(1758360158.460:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6447 comm="syz.3.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 127.233932][ T6455] max_ino=32 [ 127.282263][ T6455] i_nlink=0 [ 127.288242][ T6455] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.169: lblock 2 mapped to illegal pblock 2 (length 1) [ 127.305646][ T28] audit: type=1326 audit(1758360158.460:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6447 comm="syz.3.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=333 compat=0 ip=0x7f61c598ec29 code=0x7ffc0000 [ 127.329036][ T6455] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 127.351558][ T6455] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.169: lblock 0 mapped to illegal pblock 48 (length 1) [ 127.372602][ T6455] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.169: Failed to acquire dquot type 0 [ 127.385267][ T6455] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 127.401254][ T6455] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.169: mark_inode_dirty error [ 127.454384][ T6455] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 127.487387][ T6455] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 127.986062][ T5879] tipc: Node number set to 1270066400 [ 128.458423][ T6469] loop0: detected capacity change from 0 to 2048 [ 128.533287][ T6469] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 128.652428][ T5787] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz-executor: bg 0: block 234: padding at end of block bitmap is not set [ 128.694192][ T5787] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 128.795068][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 129.696833][ T6446] tipc: Disabling bearer [ 129.717481][ T6463] bridge_slave_0: left allmulticast mode [ 129.723438][ T6463] bridge_slave_0: left promiscuous mode [ 129.730855][ T6463] bridge0: port 1(bridge_slave_0) entered disabled state [ 129.751519][ T6463] bridge_slave_1: left allmulticast mode [ 129.759782][ T6463] bridge_slave_1: left promiscuous mode [ 129.775665][ T6463] bridge0: port 2(bridge_slave_1) entered disabled state [ 129.835475][ T6463] bond0: (slave bond_slave_0): Releasing backup interface [ 129.871613][ T6463] bond0: (slave bond_slave_1): Releasing backup interface [ 129.934566][ T6463] team0: Port device team_slave_0 removed [ 129.981344][ T6463] team0: Port device team_slave_1 removed [ 130.025214][ T6463] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 130.045020][ T6463] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 130.060770][ T6463] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 130.069835][ T6463] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 130.109617][ T6453] syzkaller1: entered promiscuous mode [ 130.115245][ T6453] syzkaller1: entered allmulticast mode [ 130.130520][ T6464] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 130.496837][ T6481] loop0: detected capacity change from 0 to 1764 [ 130.771002][ T6481] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(9) [ 130.777616][ T6481] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 130.786002][ T6481] vhci_hcd vhci_hcd.0: Device attached [ 130.873313][ T6482] vhci_hcd: connection closed [ 130.876928][ T3507] vhci_hcd: stop threads [ 130.929100][ T3507] vhci_hcd: release socket [ 130.933649][ T3507] vhci_hcd: disconnect device [ 131.132443][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 131.158203][ T5790] EXT4-fs error (device loop3): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 131.204998][ T5790] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 131.234210][ T5790] EXT4-fs error (device loop3): ext4_quota_off:7224: inode #3: comm syz-executor: mark_inode_dirty error [ 131.776447][ T6503] tipc: Started in network mode [ 131.792775][ T6503] tipc: Node identity e241d822cd75, cluster identity 4711 [ 131.813255][ T6503] tipc: Enabled bearer , priority 0 [ 131.840861][ T6497] tipc: Resetting bearer [ 131.881546][ T6510] netlink: 60 bytes leftover after parsing attributes in process `syz.2.186'. [ 131.919859][ T6510] unsupported nlmsg_type 40 [ 132.109152][ T28] kauditd_printk_skb: 22 callbacks suppressed [ 132.109169][ T28] audit: type=1326 audit(1758360163.760:1821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.1.187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 132.175348][ T28] audit: type=1326 audit(1758360163.760:1822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.1.187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 132.213977][ T28] audit: type=1326 audit(1758360163.760:1823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.1.187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 132.246774][ T28] audit: type=1326 audit(1758360163.760:1824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.1.187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 132.279803][ T28] audit: type=1326 audit(1758360163.760:1825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.1.187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 132.312938][ T28] audit: type=1326 audit(1758360163.760:1826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.1.187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 132.376008][ T28] audit: type=1326 audit(1758360163.760:1827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.1.187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 132.421907][ T28] audit: type=1326 audit(1758360163.760:1828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.1.187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 132.464892][ T28] audit: type=1326 audit(1758360163.760:1829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.1.187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 132.546296][ T28] audit: type=1326 audit(1758360163.760:1830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.1.187" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 132.883143][ T23] tipc: Node number set to 791992354 [ 132.901168][ T6516] loop1: detected capacity change from 0 to 512 [ 132.926182][ T6516] EXT4-fs: Ignoring removed nobh option [ 132.994775][ T6516] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #3: comm syz.1.188: corrupted inode contents [ 133.051343][ T6516] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #3: comm syz.1.188: mark_inode_dirty error [ 133.076271][ T6516] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #3: comm syz.1.188: corrupted inode contents [ 133.089990][ T6516] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #3: comm syz.1.188: mark_inode_dirty error [ 133.112749][ T6516] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.188: Failed to acquire dquot type 0 [ 133.146812][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.147335][ T5842] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 133.154079][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.196709][ T6516] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.188: corrupted inode contents [ 133.244830][ T6516] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #16: comm syz.1.188: mark_inode_dirty error [ 133.259136][ T6516] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.188: corrupted inode contents [ 133.272773][ T6516] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.188: mark_inode_dirty error [ 133.285033][ T6516] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.188: corrupted inode contents [ 133.299071][ T6516] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 133.308788][ T6516] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.188: corrupted inode contents [ 133.324839][ T6516] EXT4-fs error (device loop1): ext4_truncate:4288: inode #16: comm syz.1.188: mark_inode_dirty error [ 133.337235][ T6516] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 133.355415][ T6516] EXT4-fs (loop1): 1 truncate cleaned up [ 133.362997][ T6516] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 133.376205][ T5842] usb 3-1: Using ep0 maxpacket: 16 [ 133.385120][ T6516] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 133.407396][ T5842] usb 3-1: unable to get BOS descriptor or descriptor too short [ 133.436801][ T5842] usb 3-1: unable to read config index 0 descriptor/start: -71 [ 133.444600][ T5842] usb 3-1: can't read configurations, error -71 [ 133.476696][ T6516] EXT4-fs: Ignoring removed orlov option [ 133.482544][ T6516] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 133.494320][ T6516] EXT4-fs (loop1): can't enable nombcache during remount [ 134.283379][ T6531] netlink: 48 bytes leftover after parsing attributes in process `syz.2.192'. [ 135.040226][ T6497] tipc: Disabling bearer [ 135.068325][ T6535] bridge0: port 1(gretap0) entered blocking state [ 135.080950][ T6535] bridge0: port 1(gretap0) entered disabled state [ 135.088728][ T6535] gretap0: entered allmulticast mode [ 135.102729][ T6535] gretap0: entered promiscuous mode [ 135.112070][ T6535] bridge0: port 1(gretap0) entered blocking state [ 135.119053][ T6535] bridge0: port 1(gretap0) entered forwarding state [ 135.413564][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 135.922067][ T6551] loop3: detected capacity change from 0 to 2048 [ 135.947180][ T6551] EXT4-fs: Ignoring removed orlov option [ 136.009256][ T6551] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 136.037453][ T6551] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 136.216686][ T6551] loop3: detected capacity change from 2048 to 0 [ 136.296364][ T5790] syz-executor: attempt to access beyond end of device [ 136.296364][ T5790] loop3: rw=12288, sector=64, nr_sectors = 4 limit=0 [ 136.332378][ T5790] syz-executor: attempt to access beyond end of device [ 136.332378][ T5790] loop3: rw=524288, sector=20, nr_sectors = 4 limit=0 [ 136.374579][ T5790] syz-executor: attempt to access beyond end of device [ 136.374579][ T5790] loop3: rw=524288, sector=24, nr_sectors = 4 limit=0 [ 136.410766][ T5790] syz-executor: attempt to access beyond end of device [ 136.410766][ T5790] loop3: rw=12288, sector=16, nr_sectors = 4 limit=0 [ 136.467028][ T5790] EXT4-fs error (device loop3): ext4_get_inode_loc:4621: inode #2: block 4: comm syz-executor: unable to read itable block [ 136.492826][ T5790] syz-executor: attempt to access beyond end of device [ 136.492826][ T5790] loop3: rw=145409, sector=0, nr_sectors = 4 limit=0 [ 136.525112][ T5790] Buffer I/O error on dev loop3, logical block 0, lost sync page write [ 136.557818][ T6549] openvswitch: netlink: Flow actions attr not present in new flow. [ 136.566568][ T5790] EXT4-fs (loop3): I/O error while writing superblock [ 136.573402][ T5790] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: IO failure [ 136.584352][ T5790] syz-executor: attempt to access beyond end of device [ 136.584352][ T5790] loop3: rw=145409, sector=0, nr_sectors = 4 limit=0 [ 136.631705][ T5790] Buffer I/O error on dev loop3, logical block 0, lost sync page write [ 136.656845][ T5790] EXT4-fs (loop3): I/O error while writing superblock [ 136.663708][ T5790] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #2: comm syz-executor: mark_inode_dirty error [ 136.687059][ T6560] tipc: Enabled bearer , priority 0 [ 136.708644][ T5790] syz-executor: attempt to access beyond end of device [ 136.708644][ T5790] loop3: rw=145409, sector=0, nr_sectors = 4 limit=0 [ 136.728236][ T6558] tipc: Resetting bearer [ 136.736032][ T5790] Buffer I/O error on dev loop3, logical block 0, lost sync page write [ 136.744386][ T5790] EXT4-fs (loop3): I/O error while writing superblock [ 136.810621][ T5890] kworker/u4:20: attempt to access beyond end of device [ 136.810621][ T5890] loop3: rw=524288, sector=20, nr_sectors = 4 limit=0 [ 136.866835][ T5890] kworker/u4:20: attempt to access beyond end of device [ 136.866835][ T5890] loop3: rw=524288, sector=24, nr_sectors = 4 limit=0 [ 136.904901][ T5890] kworker/u4:20: attempt to access beyond end of device [ 136.904901][ T5890] loop3: rw=12288, sector=16, nr_sectors = 4 limit=0 [ 136.917447][ T6567] netlink: 9004 bytes leftover after parsing attributes in process `syz.2.206'. [ 136.922459][ T5890] EXT4-fs error (device loop3): __ext4_get_inode_loc_noinmem:4606: inode #2: block 4: comm kworker/u4:20: unable to read itable block [ 136.971733][ T5890] Buffer I/O error on dev loop3, logical block 0, lost sync page write [ 136.980842][ T6567] openvswitch: netlink: Flow key attr not present in new flow. [ 136.991341][ T5890] EXT4-fs (loop3): I/O error while writing superblock [ 137.022301][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 137.044281][ T5790] Buffer I/O error on dev loop3, logical block 0, lost sync page write [ 137.083206][ T5790] EXT4-fs (loop3): I/O error while writing superblock [ 137.093066][ T6554] Buffer I/O error on dev loop3, logical block 64, lost sync page write [ 137.655777][ T6583] loop2: detected capacity change from 0 to 512 [ 137.725007][ T6583] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 137.740119][ T6583] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 138.076279][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 139.432396][ T6558] tipc: Disabling bearer [ 139.621768][ T6595] tipc: Enabled bearer , priority 0 [ 139.630915][ T6595] syzkaller0: entered promiscuous mode [ 139.637940][ T6595] syzkaller0: entered allmulticast mode [ 139.776876][ T6597] tipc: Resetting bearer [ 139.834125][ T6595] loop0: detected capacity change from 0 to 512 [ 139.861196][ T3484] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 139.885070][ T6595] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 139.922043][ T6595] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 139.942585][ T6595] System zones: 0-2, 18-18, 34-34 [ 139.959794][ T6595] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 139.997140][ T6600] netlink: 4 bytes leftover after parsing attributes in process `syz.2.213'. [ 140.071337][ T6595] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 140.180625][ T3484] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.201372][ T6600] netlink: 4 bytes leftover after parsing attributes in process `syz.2.213'. [ 140.330237][ T6594] tipc: Resetting bearer [ 140.395150][ T6594] tipc: Disabling bearer [ 140.424599][ T3484] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.525701][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.582983][ T3484] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 140.855134][ T5803] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 140.866048][ T5803] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 140.883320][ T5803] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 140.899577][ T5803] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 140.910329][ T5803] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 140.918807][ T5803] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 141.165317][ T6615] tipc: Enabled bearer , priority 0 [ 141.200820][ T6614] tipc: Resetting bearer [ 141.672952][ T6627] loop0: detected capacity change from 0 to 1764 [ 142.039314][ T6627] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10) [ 142.046111][ T6627] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 142.054190][ T6627] vhci_hcd vhci_hcd.0: Device attached [ 142.104489][ T6628] vhci_hcd: connection closed [ 142.114567][ T5897] vhci_hcd: stop threads [ 142.135142][ T5897] vhci_hcd: release socket [ 142.145414][ T5897] vhci_hcd: disconnect device [ 142.902759][ T6637] 9pnet_fd: Insufficient options for proto=fd [ 142.927444][ T6635] loop2: detected capacity change from 0 to 8192 [ 142.955569][ T6635] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 142.983720][ T5803] Bluetooth: hci0: command tx timeout [ 143.070883][ T6635] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 143.091052][ T6635] FAT-fs (loop2): Filesystem has been set read-only [ 143.109177][ T6635] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 143.122745][ T6635] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 1050) [ 143.355574][ T28] kauditd_printk_skb: 21 callbacks suppressed [ 143.355590][ T28] audit: type=1326 audit(1758360175.000:1850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 143.392716][ T28] audit: type=1326 audit(1758360175.000:1851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 143.433363][ T28] audit: type=1326 audit(1758360175.000:1852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 143.469787][ T28] audit: type=1326 audit(1758360175.000:1853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 143.496077][ T28] audit: type=1326 audit(1758360175.000:1854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 143.523134][ T28] audit: type=1326 audit(1758360175.030:1855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 143.552897][ T28] audit: type=1326 audit(1758360175.030:1856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 143.575710][ T28] audit: type=1326 audit(1758360175.030:1857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6645 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 143.598379][ T28] audit: type=1326 audit(1758360175.060:1858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 143.621164][ T28] audit: type=1326 audit(1758360175.060:1859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.2.226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 145.000813][ T6614] tipc: Disabling bearer [ 145.015040][ T3484] tipc: Left network mode [ 145.067262][ T5803] Bluetooth: hci0: command tx timeout [ 145.921827][ T6665] loop2: detected capacity change from 0 to 1764 [ 146.376217][ T6665] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10) [ 146.382910][ T6665] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 146.390884][ T6665] vhci_hcd vhci_hcd.0: Device attached [ 146.410723][ T6669] vhci_hcd: connection closed [ 146.411395][ T5890] vhci_hcd: stop threads [ 146.454637][ T5890] vhci_hcd: release socket [ 146.467845][ T5890] vhci_hcd: disconnect device [ 146.582206][ T6675] loop0: detected capacity change from 0 to 512 [ 146.617440][ T6675] EXT4-fs: Ignoring removed orlov option [ 146.644309][ T6675] ext3: Unknown parameter 'measure' [ 147.165129][ T5803] Bluetooth: hci0: command tx timeout [ 147.291748][ T6619] chnl_net:caif_netlink_parms(): no params data found [ 147.602136][ T6695] tipc: Enabled bearer , priority 0 [ 147.631002][ T6692] tipc: Resetting bearer [ 148.429026][ T6707] tls_set_device_offload: netdev not found [ 149.167337][ T6715] loop1: detected capacity change from 0 to 1764 [ 149.236250][ T5803] Bluetooth: hci0: command tx timeout [ 149.483959][ T6715] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(10) [ 149.490663][ T6715] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 149.499681][ T6715] vhci_hcd vhci_hcd.0: Device attached [ 149.576728][ T6716] vhci_hcd: connection closed [ 149.596913][ T139] vhci_hcd: stop threads [ 149.619942][ T139] vhci_hcd: release socket [ 149.625050][ T139] vhci_hcd: disconnect device [ 149.857132][ T28] kauditd_printk_skb: 226 callbacks suppressed [ 149.857148][ T28] audit: type=1326 audit(1758360181.510:2086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6721 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 149.893915][ T28] audit: type=1326 audit(1758360181.510:2087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6721 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 149.925797][ T28] audit: type=1326 audit(1758360181.560:2088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6721 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 149.958312][ T28] audit: type=1326 audit(1758360181.560:2089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6721 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 149.987108][ T28] audit: type=1326 audit(1758360181.560:2090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6721 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 150.018853][ T28] audit: type=1326 audit(1758360181.560:2091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6721 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 150.048992][ T28] audit: type=1326 audit(1758360181.560:2092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6721 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 150.081070][ T28] audit: type=1326 audit(1758360181.560:2093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6721 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 150.220548][ T28] audit: type=1326 audit(1758360181.560:2094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6721 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 150.260833][ T28] audit: type=1326 audit(1758360181.570:2095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6721 comm="syz.0.245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 150.815702][ T6730] (null): rxe_set_mtu: Set mtu to 1024 [ 151.682945][ T6743] loop1: detected capacity change from 0 to 1024 [ 151.737968][ T6743] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 151.840924][ T6743] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4031: comm syz.1.252: Allocating blocks 385-513 which overlap fs metadata [ 152.013048][ T6692] tipc: Disabling bearer [ 152.038535][ T6743] EXT4-fs (loop1): pa ffff888079afbe80: logic 16, phys. 129, len 24 [ 152.047329][ T6743] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8 [ 152.172953][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 152.263320][ T6750] syz.2.253[6750] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 152.263501][ T6750] syz.2.253[6750] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 152.384881][ T6619] bridge0: port 1(bridge_slave_0) entered blocking state [ 152.413997][ T6619] bridge0: port 1(bridge_slave_0) entered disabled state [ 152.421687][ T6619] bridge_slave_0: entered allmulticast mode [ 152.431403][ T6619] bridge_slave_0: entered promiscuous mode [ 152.469434][ T6752] loop1: detected capacity change from 0 to 1024 [ 152.480987][ T6619] bridge0: port 2(bridge_slave_1) entered blocking state [ 152.514836][ T6752] EXT4-fs: Ignoring removed bh option [ 152.519673][ T6619] bridge0: port 2(bridge_slave_1) entered disabled state [ 152.537545][ T6619] bridge_slave_1: entered allmulticast mode [ 152.549083][ T6619] bridge_slave_1: entered promiscuous mode [ 152.550814][ T6752] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 152.672210][ T6752] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 152.688873][ T6730] infiniband syz0: set active [ 152.696854][ T6730] infiniband syz0: added bond_slave_0 [ 152.704088][ T6730] syz0: rxe_create_cq: returned err = -12 [ 152.711472][ T6730] infiniband syz0: Couldn't create ib_mad CQ [ 152.718246][ T6730] infiniband syz0: Couldn't open port 1 [ 152.818367][ T6730] RDS/IB: syz0: added [ 152.823283][ T6730] smc: adding ib device syz0 with port count 1 [ 152.858520][ T6730] smc: ib device syz0 port 1 has pnetid [ 152.947144][ T6619] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 152.987469][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 153.020699][ T6619] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 153.283169][ T6619] team0: Port device team_slave_0 added [ 153.314588][ T6619] team0: Port device team_slave_1 added [ 153.405210][ T6619] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 153.426424][ T6619] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 153.475131][ T6619] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 153.537995][ T6619] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 153.545028][ T6619] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 153.590420][ T6619] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 153.754660][ T6778] netlink: 4 bytes leftover after parsing attributes in process `syz.1.257'. [ 153.809228][ T6619] hsr_slave_0: entered promiscuous mode [ 153.828794][ T6619] hsr_slave_1: entered promiscuous mode [ 153.832134][ T6780] loop2: detected capacity change from 0 to 1024 [ 153.853847][ T6619] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 153.877667][ T6780] EXT4-fs: Ignoring removed nobh option [ 153.877799][ T6619] Cannot create hsr debugfs directory [ 153.883327][ T6780] EXT4-fs: Ignoring removed bh option [ 153.905111][ T6780] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 153.976783][ T6780] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 154.122211][ T6780] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4031: comm syz.2.258: Allocating blocks 385-513 which overlap fs metadata [ 154.169513][ T6780] EXT4-fs (loop2): pa ffff888079afbae0: logic 16, phys. 129, len 24 [ 154.178732][ T6780] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5372: group 0, free 0, pa_free 8 [ 154.274802][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.474786][ T6789] tipc: Enabled bearer , priority 0 [ 154.504466][ T6786] tipc: Resetting bearer [ 154.984654][ T6792] loop2: detected capacity change from 0 to 32768 [ 155.059724][ T6792] loop2: p1 p3 < > [ 155.198074][ T5796] I/O error, dev loop2, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 155.276757][ T5804] udevd[5804]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 155.277458][ T5796] udevd[5796]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 156.881177][ T6786] tipc: Disabling bearer [ 157.250441][ T6801] loop1: detected capacity change from 0 to 512 [ 157.308544][ T6803] loop2: detected capacity change from 0 to 1024 [ 157.373544][ T6801] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 157.406055][ T6803] __quota_error: 27 callbacks suppressed [ 157.406075][ T6803] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5 [ 157.434301][ T6801] ext4 filesystem being mounted at /72/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 157.461984][ T6803] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 157.472769][ T6803] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.264: Failed to acquire dquot type 0 [ 157.502378][ T6803] EXT4-fs error (device loop2): mb_free_blocks:1938: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 157.538047][ T6619] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 157.562097][ T6803] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.264: corrupted inode contents [ 157.569175][ T6619] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 157.602890][ T6619] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 157.623192][ T6803] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #13: comm syz.2.264: mark_inode_dirty error [ 157.665212][ T6803] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.264: corrupted inode contents [ 157.692089][ T6803] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #13: comm syz.2.264: mark_inode_dirty error [ 157.711821][ T6803] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.264: corrupted inode contents [ 157.715688][ T6619] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 157.784801][ T6803] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 157.871936][ T6803] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #13: comm syz.2.264: corrupted inode contents [ 157.922385][ T6803] EXT4-fs error (device loop2): ext4_truncate:4288: inode #13: comm syz.2.264: mark_inode_dirty error [ 157.972381][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.986544][ T6803] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 158.022628][ T6803] EXT4-fs (loop2): 1 truncate cleaned up [ 158.041003][ T6803] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 158.060099][ T3484] hsr_slave_0: left promiscuous mode [ 158.089868][ T6803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.125550][ T3484] hsr_slave_1: left promiscuous mode [ 158.134779][ T3484] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 158.168759][ T3484] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 158.199460][ T3484] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 158.219563][ T3484] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 158.238331][ T3484] bridge_slave_1: left allmulticast mode [ 158.267921][ T3484] bridge_slave_1: left promiscuous mode [ 158.275428][ T3484] bridge0: port 2(bridge_slave_1) entered disabled state [ 158.326150][ T3484] bridge_slave_0: left allmulticast mode [ 158.344883][ T3484] bridge_slave_0: left promiscuous mode [ 158.365142][ T3484] bridge0: port 1(bridge_slave_0) entered disabled state [ 158.470649][ T3484] veth1_macvtap: left promiscuous mode [ 158.488509][ T3484] veth0_macvtap: left promiscuous mode [ 158.513168][ T3484] veth1_vlan: left promiscuous mode [ 158.519150][ T3484] veth0_vlan: left promiscuous mode [ 158.545489][ T6835] sd 0:0:1:0: device reset [ 159.213176][ T6846] loop0: detected capacity change from 0 to 512 [ 159.282929][ T6846] EXT4-fs (loop0): 1 orphan inode deleted [ 159.290946][ T6846] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 159.305051][ T6846] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 159.305196][ T5892] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 159.382980][ T5892] EXT4-fs error (device loop0): ext4_release_dquot:6976: comm kworker/u4:22: Failed to release dquot type 1 [ 159.427901][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 159.674619][ T3484] team0 (unregistering): Port device team_slave_1 removed [ 159.725336][ T3484] team0 (unregistering): Port device team_slave_0 removed [ 159.784244][ T3484] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 159.881726][ T3484] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 160.516195][ T3484] bond0 (unregistering): Released all slaves [ 160.659560][ T6842] tipc: Enabled bearer , priority 0 [ 160.775677][ T6840] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 160.804305][ T6840] tipc: Resetting bearer [ 160.846995][ T6837] tipc: Resetting bearer [ 160.864888][ T6868] loop1: detected capacity change from 0 to 512 [ 160.942186][ T6868] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.030011][ T6873] loop0: detected capacity change from 0 to 512 [ 161.038032][ T6868] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 161.097772][ T6873] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 161.172406][ T6873] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 161.183164][ T6873] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 161.194071][ T6873] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.275: Failed to acquire dquot type 1 [ 161.221865][ T6873] EXT4-fs (loop0): 1 truncate cleaned up [ 161.229132][ T6873] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.256701][ T6873] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 161.872512][ T6879] mmap: syz.0.276 (6879) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 163.237438][ T6886] loop0: detected capacity change from 0 to 1024 [ 163.298970][ T6886] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 163.324463][ T6886] EXT4-fs error (device loop0): ext4_quota_enable:7127: comm syz.0.279: Bad quota inum: 524288, type: 1 [ 163.345524][ T6886] EXT4-fs warning (device loop0): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=524288). Please run e2fsck to fix. [ 163.373090][ T6886] EXT4-fs (loop0): mount failed [ 164.172893][ T6892] loop0: detected capacity change from 0 to 1764 [ 164.574885][ T6892] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10) [ 164.581581][ T6892] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 164.589607][ T6892] vhci_hcd vhci_hcd.0: Device attached [ 164.618102][ T6837] tipc: Disabling bearer [ 164.701625][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 164.712097][ T6893] vhci_hcd: connection closed [ 164.728987][ T139] vhci_hcd: stop threads [ 164.749480][ T139] vhci_hcd: release socket [ 164.754006][ T139] vhci_hcd: disconnect device [ 164.890356][ T6619] 8021q: adding VLAN 0 to HW filter on device bond0 [ 164.965179][ T6619] 8021q: adding VLAN 0 to HW filter on device team0 [ 165.043866][ T5921] bridge0: port 1(bridge_slave_0) entered blocking state [ 165.052216][ T5921] bridge0: port 1(bridge_slave_0) entered forwarding state [ 165.113100][ T5921] bridge0: port 2(bridge_slave_1) entered blocking state [ 165.120415][ T5921] bridge0: port 2(bridge_slave_1) entered forwarding state [ 165.199617][ T6905] tipc: Enabled bearer , priority 0 [ 165.307843][ T6905] tipc: Resetting bearer [ 165.370649][ T6900] syzkaller0: entered promiscuous mode [ 165.398342][ T6900] syzkaller0: entered allmulticast mode [ 165.476205][ T6898] tipc: Resetting bearer [ 165.535226][ T6898] tipc: Disabling bearer [ 165.630850][ T6619] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 165.997697][ T6925] loop1: detected capacity change from 0 to 512 [ 166.020578][ T6923] siw: device registration error -23 [ 166.051349][ T6925] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 166.200968][ T6925] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 166.216745][ T6925] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 166.244041][ T6925] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.288: Failed to acquire dquot type 1 [ 166.310858][ T6925] EXT4-fs (loop1): 1 truncate cleaned up [ 166.355476][ T6925] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 166.407175][ T6925] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.632350][ T6939] tipc: Enabled bearer , priority 0 [ 166.737102][ T6935] tipc: Resetting bearer [ 168.728569][ T6983] syz.0.299[6983] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 168.728720][ T6983] syz.0.299[6983] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 169.592527][ T6935] tipc: Disabling bearer [ 169.622211][ T6619] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 169.887333][ T28] audit: type=1326 audit(1758360201.540:2123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6987 comm="syz.2.301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 169.954673][ T28] audit: type=1326 audit(1758360201.540:2124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6986 comm="syz.1.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 170.016416][ T28] audit: type=1326 audit(1758360201.550:2125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6986 comm="syz.1.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 170.153079][ T28] audit: type=1326 audit(1758360201.550:2126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6986 comm="syz.1.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 170.186382][ T28] audit: type=1326 audit(1758360201.550:2127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6986 comm="syz.1.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 170.209532][ T28] audit: type=1326 audit(1758360201.550:2128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6986 comm="syz.1.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 170.524628][ T6999] loop0: detected capacity change from 0 to 1764 [ 170.883103][ T6999] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10) [ 170.889821][ T6999] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 170.899494][ T6999] vhci_hcd vhci_hcd.0: Device attached [ 170.922324][ T7000] vhci_hcd: connection closed [ 170.939879][ T28] audit: type=1326 audit(1758360201.550:2129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6986 comm="syz.1.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 171.015610][ T5885] vhci_hcd: stop threads [ 171.021028][ T28] audit: type=1326 audit(1758360201.550:2130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6986 comm="syz.1.300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 171.055206][ T5885] vhci_hcd: release socket [ 171.060218][ T5885] vhci_hcd: disconnect device [ 172.565370][ T6988] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.575351][ T6988] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.594651][ T6988] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.604383][ T6988] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 172.694383][ T7007] netlink: 28 bytes leftover after parsing attributes in process `syz.2.304'. [ 172.716061][ T7007] netlink: 28 bytes leftover after parsing attributes in process `syz.2.304'. [ 172.981605][ T28] kauditd_printk_skb: 36 callbacks suppressed [ 172.981621][ T28] audit: type=1326 audit(1758360204.620:2167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 173.082977][ T7047] tipc: Enabled bearer , priority 0 [ 173.092482][ T28] audit: type=1326 audit(1758360204.620:2168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 173.128446][ T28] audit: type=1326 audit(1758360204.650:2169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 173.165034][ T7045] tipc: Disabling bearer [ 173.200322][ T28] audit: type=1326 audit(1758360204.650:2170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 173.281105][ T28] audit: type=1326 audit(1758360204.650:2171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 173.316343][ T28] audit: type=1326 audit(1758360204.650:2172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 173.504737][ T7054] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present! [ 173.777751][ T28] audit: type=1326 audit(1758360204.650:2173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 173.977540][ T28] audit: type=1326 audit(1758360204.650:2174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 174.000354][ T28] audit: type=1326 audit(1758360204.650:2175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 174.046073][ T28] audit: type=1326 audit(1758360204.650:2176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.310" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 174.206253][ T7059] netlink: 'syz.2.309': attribute type 4 has an invalid length. [ 174.438386][ T6619] veth0_vlan: entered promiscuous mode [ 174.811626][ T7070] loop0: detected capacity change from 0 to 1764 [ 175.226754][ T7070] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10) [ 175.233445][ T7070] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 175.241569][ T7070] vhci_hcd vhci_hcd.0: Device attached [ 175.241667][ T7072] vhci_hcd: connection closed [ 175.266057][ T5890] vhci_hcd: stop threads [ 175.283687][ T5890] vhci_hcd: release socket [ 175.288528][ T5890] vhci_hcd: disconnect device [ 175.338441][ T6619] veth1_vlan: entered promiscuous mode [ 175.445594][ T6619] veth0_macvtap: entered promiscuous mode [ 175.467650][ T6619] veth1_macvtap: entered promiscuous mode [ 175.511377][ T6619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 175.543021][ T6619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.572460][ T6619] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 175.604564][ T6619] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 175.621024][ T6619] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.634402][ T6619] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 175.652294][ T6619] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 175.682253][ T6619] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 175.711639][ T6619] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 175.735928][ T6619] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 176.185817][ T1135] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 176.205127][ T1135] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 176.267201][ T7088] ipvlan2: entered promiscuous mode [ 176.279256][ T7088] bridge0: port 2(ipvlan2) entered blocking state [ 176.286586][ T7088] bridge0: port 2(ipvlan2) entered disabled state [ 176.293649][ T7088] ipvlan2: entered allmulticast mode [ 176.299654][ T7088] bridge0: entered allmulticast mode [ 176.307170][ T7088] ipvlan2: left allmulticast mode [ 176.312290][ T7088] bridge0: left allmulticast mode [ 176.561615][ T7101] loop1: detected capacity change from 0 to 512 [ 176.614654][ T7101] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 176.695490][ T7101] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 176.703873][ T7101] System zones: 0-2, 18-18, 34-34 [ 176.721437][ T7101] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 176.753835][ T7101] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 177.622305][ T7106] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 178.674078][ T7131] loop2: detected capacity change from 0 to 1764 [ 179.031578][ T7131] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(10) [ 179.038280][ T7131] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed) [ 179.046545][ T7131] vhci_hcd vhci_hcd.0: Device attached [ 179.132953][ T7132] vhci_hcd: connection closed [ 179.136016][ T34] vhci_hcd: stop threads [ 179.161362][ T34] vhci_hcd: release socket [ 179.167333][ T34] vhci_hcd: disconnect device [ 179.968787][ T7136] loop2: detected capacity change from 0 to 8192 [ 180.131031][ T7138] 9pnet_fd: Insufficient options for proto=fd [ 180.313673][ T28] kauditd_printk_skb: 21 callbacks suppressed [ 180.313691][ T28] audit: type=1107 audit(1758360211.950:2198): pid=7139 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 180.463023][ T7120] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 180.471252][ T7120] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 180.658652][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 181.373340][ T7165] 9pnet_fd: Insufficient options for proto=fd [ 181.428984][ T7156] netlink: 28 bytes leftover after parsing attributes in process `syz.4.334'. [ 181.446084][ T7156] netlink: 32 bytes leftover after parsing attributes in process `syz.4.334'. [ 181.466369][ T7156] netlink: 28 bytes leftover after parsing attributes in process `syz.4.334'. [ 181.507628][ T7156] netlink: 32 bytes leftover after parsing attributes in process `syz.4.334'. [ 181.743787][ T7176] loop2: detected capacity change from 0 to 512 [ 181.773475][ T7176] ext4: Unknown parameter 'rootcontext' [ 181.971448][ T7179] tipc: Enabled bearer , priority 0 [ 182.001446][ T7176] netlink: 4 bytes leftover after parsing attributes in process `syz.2.339'. [ 182.048630][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found [ 182.055700][ C1] vcan0: j1939_xtp_rx_dat: no rx connection found [ 182.062350][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.070277][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.078333][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.086334][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.094306][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.102256][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.110296][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.118261][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.126299][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.134249][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.142294][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.150504][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.158629][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.166779][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.174948][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.182995][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.191248][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.199382][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.207415][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.215290][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.223333][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.231264][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.239305][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.247235][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.255214][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.263240][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.271274][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.279217][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.287261][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.295234][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.303280][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.311201][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.319305][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.327225][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.335203][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found [ 182.343157][ C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found [ 182.407013][ T7171] tipc: Resetting bearer [ 182.789694][ T7194] 9pnet_fd: Insufficient options for proto=fd [ 182.995408][ T28] audit: type=1326 audit(1758360214.640:2199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 183.046455][ T28] audit: type=1326 audit(1758360214.640:2200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 183.071175][ T7200] netlink: 8 bytes leftover after parsing attributes in process `+}[@'. [ 183.182153][ T28] audit: type=1326 audit(1758360214.660:2201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 183.242638][ T28] audit: type=1326 audit(1758360214.660:2202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 183.311983][ T28] audit: type=1326 audit(1758360214.660:2203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 183.419296][ T28] audit: type=1326 audit(1758360214.660:2204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 183.454983][ T28] audit: type=1326 audit(1758360214.660:2205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 183.478609][ T28] audit: type=1326 audit(1758360214.660:2206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 183.563094][ T28] audit: type=1326 audit(1758360214.660:2207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7198 comm="syz.2.349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 183.632361][ T7211] delete_channel: no stack [ 183.808191][ T7217] 9pnet_fd: Insufficient options for proto=fd [ 186.682896][ T7246] 9pnet_fd: Insufficient options for proto=fd [ 186.685894][ C1] sched: RT throttling activated [ 187.310348][ T7250] loop0: detected capacity change from 0 to 1024 [ 187.354271][ T7250] EXT4-fs: Ignoring removed orlov option [ 187.445135][ T7250] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 187.670926][ T28] kauditd_printk_skb: 38 callbacks suppressed [ 187.670946][ T28] audit: type=1800 audit(1758360219.320:2246): pid=7250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.369" name="bus" dev="loop0" ino=18 res=0 errno=0 [ 187.777303][ T28] audit: type=1804 audit(1758360219.360:2247): pid=7250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.369" name="/newroot/109/bus/bus" dev="loop0" ino=18 res=1 errno=0 [ 188.023769][ T28] audit: type=1326 audit(1758360219.670:2248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7255 comm="syz.2.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 188.051095][ T28] audit: type=1326 audit(1758360219.670:2249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7255 comm="syz.2.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 188.124130][ T28] audit: type=1326 audit(1758360219.670:2250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7255 comm="syz.2.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 188.185124][ T28] audit: type=1326 audit(1758360219.670:2251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7255 comm="syz.2.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 188.274437][ T28] audit: type=1326 audit(1758360219.670:2252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7255 comm="syz.2.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 188.312919][ T28] audit: type=1326 audit(1758360219.670:2253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7255 comm="syz.2.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 188.322909][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.350315][ T28] audit: type=1326 audit(1758360219.670:2254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7255 comm="syz.2.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 188.380738][ T28] audit: type=1326 audit(1758360219.670:2255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7255 comm="syz.2.370" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 189.123575][ T7260] loop0: detected capacity change from 0 to 512 [ 189.156779][ T7260] EXT4-fs: inline encryption not supported [ 189.232475][ T7260] EXT4-fs (loop0): orphan cleanup on readonly fs [ 189.284308][ T7260] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #15: comm syz.0.371: corrupted inode contents [ 189.353082][ T7260] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 189.367320][ T7260] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #15: comm syz.0.371: corrupted inode contents [ 189.411983][ T7260] EXT4-fs error (device loop0): ext4_evict_inode:300: inode #15: comm syz.0.371: mark_inode_dirty error [ 189.456949][ T23] kernel write not supported for file bpf-prog (pid: 23 comm: kworker/1:0) [ 189.462912][ T7260] EXT4-fs (loop0): 1 orphan inode deleted [ 189.474302][ T7260] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 189.590201][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 190.983677][ T7171] tipc: Disabling bearer [ 191.011058][ T7238] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12 [ 191.021102][ T7238] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12 [ 191.032070][ T7238] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 191.053954][ T7271] tipc: Enabling of bearer rejected, failed to enable media [ 191.136556][ T7282] netlink: 4 bytes leftover after parsing attributes in process `syz.2.376'. [ 191.370007][ T7292] netlink: 24 bytes leftover after parsing attributes in process `syz.1.378'. [ 192.759189][ T28] kauditd_printk_skb: 51 callbacks suppressed [ 192.759205][ T28] audit: type=1326 audit(1758360224.410:2307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7297 comm="syz.4.380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44a5b8ec29 code=0x7ffc0000 [ 192.996808][ T28] audit: type=1326 audit(1758360224.410:2308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7297 comm="syz.4.380" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44a5b8ec29 code=0x7ffc0000 [ 193.359190][ T28] audit: type=1326 audit(1758360225.010:2309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7326 comm="syz.2.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 193.380906][ T7327] loop2: detected capacity change from 0 to 128 [ 193.433434][ T28] audit: type=1326 audit(1758360225.010:2310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7326 comm="syz.2.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 193.482897][ T28] audit: type=1326 audit(1758360225.010:2311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7326 comm="syz.2.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 193.515573][ T7325] syzkaller0: entered promiscuous mode [ 193.531804][ T28] audit: type=1326 audit(1758360225.010:2312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7326 comm="syz.2.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 193.551445][ T7325] syzkaller0: entered allmulticast mode [ 193.580831][ T28] audit: type=1326 audit(1758360225.010:2313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7326 comm="syz.2.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 193.608478][ T28] audit: type=1326 audit(1758360225.010:2314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7326 comm="syz.2.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 193.638726][ T7328] tipc: Started in network mode [ 193.643966][ T7328] tipc: Node identity dac9b403ec97, cluster identity 4711 [ 193.659452][ T7328] tipc: Enabled bearer , priority 0 [ 193.671859][ T28] audit: type=1326 audit(1758360225.010:2315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7326 comm="syz.2.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 193.704075][ T28] audit: type=1326 audit(1758360225.010:2316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7326 comm="syz.2.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 193.758247][ T7335] loop2: detected capacity change from 0 to 512 [ 193.805479][ T7335] EXT4-fs warning (device loop2): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 193.823891][ T7335] EXT4-fs (loop2): mount failed [ 193.863644][ T5902] tipc: Resetting bearer [ 193.900688][ T7322] tipc: Resetting bearer [ 193.986892][ T7340] loop1: detected capacity change from 0 to 512 [ 194.071128][ T7340] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.085557][ T7340] ext4 filesystem being mounted at /96/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 194.334437][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.587768][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.594939][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.746178][ T5849] tipc: Node number set to 912176131 [ 196.698821][ T7367] loop2: detected capacity change from 0 to 512 [ 196.752118][ T7367] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.778275][ T7367] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 197.028834][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 198.991299][ T7386] loop2: detected capacity change from 0 to 512 [ 199.034081][ T7322] tipc: Disabling bearer [ 199.044812][ T7386] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 199.055328][ T7386] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 199.101646][ T7386] System zones: 0-1, 15-15, 18-18, 34-34 [ 199.107948][ T7386] EXT4-fs (loop2): orphan cleanup on readonly fs [ 199.114664][ T7386] __quota_error: 92 callbacks suppressed [ 199.114680][ T7386] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 199.132439][ T7386] EXT4-fs warning (device loop2): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 199.147361][ T7386] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 199.159663][ T7386] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.407: bg 0: block 40: padding at end of block bitmap is not set [ 199.235097][ T7386] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 199.245762][ T7386] EXT4-fs (loop2): 1 truncate cleaned up [ 199.311007][ T7386] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 199.360513][ T7386] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz.2.407: bad symlink. [ 199.430244][ T7386] netlink: 4 bytes leftover after parsing attributes in process `syz.2.407'. [ 199.569981][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 199.573929][ T7403] loop0: detected capacity change from 0 to 512 [ 199.737569][ T7403] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 199.773857][ T7403] ext4 filesystem being mounted at /115/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 199.921967][ T28] audit: type=1326 audit(1758360231.560:2408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 199.947493][ T28] audit: type=1326 audit(1758360231.560:2409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 199.973215][ T28] audit: type=1326 audit(1758360231.590:2410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 200.005785][ T28] audit: type=1326 audit(1758360231.590:2411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 200.038843][ T28] audit: type=1326 audit(1758360231.590:2412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 200.136026][ T28] audit: type=1326 audit(1758360231.590:2413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 200.195821][ T28] audit: type=1326 audit(1758360231.590:2414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 200.204705][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.219318][ T28] audit: type=1326 audit(1758360231.590:2415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 200.251974][ T28] audit: type=1326 audit(1758360231.590:2416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7413 comm="syz.1.413" exe="/root/syz-executor" sig=0 arch=c000003e syscall=78 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 201.072532][ T7424] netlink: 4 bytes leftover after parsing attributes in process `syz.2.411'. [ 201.096573][ T7422] loop4: detected capacity change from 0 to 164 [ 201.139322][ T7422] rock: directory entry would overflow storage [ 201.139402][ T7422] rock: sig=0x66, size=4, remaining=3 [ 201.191384][ T7422] rock: directory entry would overflow storage [ 201.191505][ T7422] rock: sig=0x66, size=4, remaining=3 [ 201.192414][ T7422] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 201.213971][ T7411] loop2: detected capacity change from 0 to 8192 [ 201.363088][ T7411] loop2: p1 p2 < > p3 p4 < p5 > [ 201.550692][ T7411] loop2: partition table partially beyond EOD, truncated [ 201.597932][ T7411] loop2: p1 size 100663296 extends beyond EOD, truncated [ 201.638108][ T7411] loop2: p2 start 591104 is beyond EOD, truncated [ 201.671701][ T7411] loop2: p3 start 33572980 is beyond EOD, truncated [ 201.714911][ T7411] loop2: p5 size 100663296 extends beyond EOD, truncated [ 202.078488][ T7448] loop4: detected capacity change from 0 to 512 [ 202.157160][ T7430] siw: device registration error -23 [ 202.166102][ T7448] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.194598][ T7448] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 202.197115][ T7433] udevd[7433]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 202.219070][ T6788] udevd[6788]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory [ 202.235520][ T5796] udevd[5796]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 202.404926][ T7458] loop1: detected capacity change from 0 to 2048 [ 202.413772][ T7458] EXT4-fs: Ignoring removed nomblk_io_submit option [ 202.469512][ T7458] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 202.616338][ T6619] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.643362][ T7458] netlink: '¬í': attribute type 4 has an invalid length. [ 202.788170][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.906617][ T7471] tipc: Enabled bearer , priority 0 [ 202.932640][ T7471] syzkaller0: entered promiscuous mode [ 202.946720][ T7471] syzkaller0: entered allmulticast mode [ 203.000437][ T7469] tipc: Resetting bearer [ 203.074607][ T7470] loop0: detected capacity change from 0 to 8192 [ 203.083644][ T7469] tipc: Disabling bearer [ 203.428415][ T7480] loop1: detected capacity change from 0 to 8192 [ 203.492578][ T7485] netlink: 8 bytes leftover after parsing attributes in process `syz.4.434'. [ 203.523982][ T7475] netlink: 4 bytes leftover after parsing attributes in process `syz.1.431'. [ 203.541737][ T7485] netlink: 8 bytes leftover after parsing attributes in process `syz.4.434'. [ 203.570677][ T7485] netlink: 8 bytes leftover after parsing attributes in process `syz.4.434'. [ 203.571913][ T7480] loop1: p1 p2 < > p3 p4 < p5 > [ 203.582858][ T7485] netlink: 8 bytes leftover after parsing attributes in process `syz.4.434'. [ 203.595662][ T7480] loop1: partition table partially beyond EOD, truncated [ 203.628843][ T7480] loop1: p1 size 100663296 extends beyond EOD, truncated [ 203.656282][ T7480] loop1: p2 start 591104 is beyond EOD, truncated [ 203.732466][ T7480] loop1: p3 start 33572980 is beyond EOD, truncated [ 203.750150][ T7480] loop1: p5 size 100663296 extends beyond EOD, truncated [ 203.875535][ T7493] loop4: detected capacity change from 0 to 512 [ 203.937805][ T7493] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 204.027971][ T7493] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 204.394051][ T5796] udevd[5796]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 204.407220][ T5804] udevd[5804]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 204.442972][ T7433] udevd[7433]: inotify_add_watch(7, /dev/loop1p5, 10) failed: No such file or directory [ 204.524095][ T7510] netlink: 36 bytes leftover after parsing attributes in process `syz.1.441'. [ 204.533310][ T6619] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 205.084359][ T7527] netlink: 8 bytes leftover after parsing attributes in process `syz.1.445'. [ 205.130381][ T7527] netlink: 8 bytes leftover after parsing attributes in process `syz.1.445'. [ 205.180471][ T7527] netlink: 8 bytes leftover after parsing attributes in process `syz.1.445'. [ 205.211023][ T7527] netlink: 8 bytes leftover after parsing attributes in process `syz.1.445'. [ 205.246183][ T7527] netlink: 8 bytes leftover after parsing attributes in process `syz.1.445'. [ 205.317534][ T7537] usb usb1: usbfs: process 7537 (syz.4.447) did not claim interface 0 before use [ 205.725074][ T7548] delete_channel: no stack [ 205.837251][ T7551] loop1: detected capacity change from 0 to 512 [ 205.900573][ T7551] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 205.988252][ T7551] ext4 filesystem being mounted at /117/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 206.199675][ T7562] loop0: detected capacity change from 0 to 2048 [ 206.212596][ T7562] EXT4-fs: Ignoring removed nomblk_io_submit option [ 206.243913][ T7562] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 206.362125][ T7571] netlink: 8 bytes leftover after parsing attributes in process `syz.4.456'. [ 206.373160][ T7571] netlink: 8 bytes leftover after parsing attributes in process `syz.4.456'. [ 206.384660][ T7562] netlink: '¬í': attribute type 4 has an invalid length. [ 206.399672][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.422978][ T7571] netlink: 8 bytes leftover after parsing attributes in process `syz.4.456'. [ 206.462404][ T7571] netlink: 8 bytes leftover after parsing attributes in process `syz.4.456'. [ 206.523420][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 206.709518][ T28] kauditd_printk_skb: 23 callbacks suppressed [ 206.709537][ T28] audit: type=1326 audit(1758360238.358:2440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7577 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 206.809405][ T28] audit: type=1326 audit(1758360238.358:2441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7577 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 206.885261][ T28] audit: type=1326 audit(1758360238.388:2442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7577 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=325 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 206.938985][ T28] audit: type=1326 audit(1758360238.388:2443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7577 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 206.969885][ T28] audit: type=1326 audit(1758360238.398:2444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7577 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 207.055749][ T28] audit: type=1326 audit(1758360238.398:2445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7577 comm="syz.0.458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 207.160490][ T28] audit: type=1326 audit(1758360238.668:2446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7585 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 207.164737][ T7590] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 207.213926][ T7592] loop2: detected capacity change from 0 to 512 [ 207.230220][ T28] audit: type=1326 audit(1758360238.668:2447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7585 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 207.284573][ T7595] loop0: detected capacity change from 0 to 512 [ 207.296208][ T28] audit: type=1326 audit(1758360238.668:2448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7585 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 207.340024][ T28] audit: type=1326 audit(1758360238.668:2449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7585 comm="syz.0.462" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 207.391674][ T7592] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 207.431683][ T7592] ext4 filesystem being mounted at /138/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 207.460010][ T7595] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 207.487727][ T7595] EXT4-fs (loop0): orphan cleanup on readonly fs [ 207.533742][ T7595] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.466: corrupted inode contents [ 207.583343][ T7595] EXT4-fs (loop0): Remounting filesystem read-only [ 207.609516][ T7595] EXT4-fs (loop0): 1 truncate cleaned up [ 207.630628][ T7122] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 207.649459][ T7122] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 207.672682][ T7122] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 207.698241][ T7595] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 207.718937][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 207.791310][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 208.527339][ T7629] loop0: detected capacity change from 0 to 512 [ 208.613135][ T7630] siw: device registration error -23 [ 208.639367][ T7629] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 208.665763][ T7629] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 208.898797][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 209.828749][ T7647] capability: warning: `syz.4.484' uses 32-bit capabilities (legacy support in use) [ 210.390272][ T7660] __nla_validate_parse: 9 callbacks suppressed [ 210.390293][ T7660] netlink: 8 bytes leftover after parsing attributes in process `syz.1.487'. [ 211.501738][ T7675] loop4: detected capacity change from 0 to 512 [ 211.638148][ T7680] loop0: detected capacity change from 0 to 512 [ 211.712943][ T7675] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 211.776499][ T7675] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 211.830700][ T7680] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 211.885762][ T28] kauditd_printk_skb: 71 callbacks suppressed [ 211.885779][ T28] audit: type=1800 audit(1758360243.528:2515): pid=7675 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.490" name="bus" dev="loop4" ino=18 res=0 errno=0 [ 211.956073][ T7680] ext4 filesystem being mounted at /132/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 212.021549][ T5797] Bluetooth: hci1: command 0x0406 tx timeout [ 212.027932][ T5797] Bluetooth: hci2: command 0x0406 tx timeout [ 212.034405][ T5797] Bluetooth: hci3: command 0x0406 tx timeout [ 212.183232][ T6619] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 212.311885][ T28] audit: type=1326 audit(1758360243.958:2516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.1.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 212.436103][ T28] audit: type=1326 audit(1758360243.988:2517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.1.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 212.551753][ T28] audit: type=1326 audit(1758360244.008:2518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.1.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 212.595634][ T28] audit: type=1326 audit(1758360244.018:2519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.1.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 212.620589][ T28] audit: type=1326 audit(1758360244.018:2520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.1.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 212.643147][ T28] audit: type=1326 audit(1758360244.018:2521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.1.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 212.651103][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 212.665745][ T28] audit: type=1326 audit(1758360244.018:2522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.1.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 212.665824][ T28] audit: type=1326 audit(1758360244.018:2523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.1.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 212.765157][ T28] audit: type=1326 audit(1758360244.018:2524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7694 comm="syz.1.494" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fec6718ec29 code=0x7ffc0000 [ 213.132494][ T7715] netlink: 8 bytes leftover after parsing attributes in process `syz.0.500'. [ 213.482839][ T7730] loop0: detected capacity change from 0 to 512 [ 213.554939][ T7730] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 213.642106][ T7730] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 213.941961][ T5787] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 214.622165][ T7764] netlink: 8 bytes leftover after parsing attributes in process `syz.4.511'. [ 214.674158][ T7764] netlink: 8 bytes leftover after parsing attributes in process `syz.4.511'. [ 214.683560][ T7764] netlink: 8 bytes leftover after parsing attributes in process `syz.4.511'. [ 214.693814][ T7764] netlink: 8 bytes leftover after parsing attributes in process `syz.4.511'. [ 216.162268][ T7797] netlink: 8 bytes leftover after parsing attributes in process `syz.4.521'. [ 216.179339][ T7797] netlink: 8 bytes leftover after parsing attributes in process `syz.4.521'. [ 216.191120][ T7797] netlink: 8 bytes leftover after parsing attributes in process `syz.4.521'. [ 216.230970][ T7797] netlink: 8 bytes leftover after parsing attributes in process `syz.4.521'. [ 216.319543][ T7801] IPv6: NLM_F_CREATE should be specified when creating new route [ 216.608616][ T7811] loop2: detected capacity change from 0 to 512 [ 217.224909][ T7811] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 217.466560][ T28] kauditd_printk_skb: 85 callbacks suppressed [ 217.466576][ T28] audit: type=1326 audit(1758360249.118:2610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 217.522821][ T7811] ext4 filesystem being mounted at /154/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 217.609581][ T28] audit: type=1326 audit(1758360249.158:2611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 217.636034][ T28] audit: type=1326 audit(1758360249.158:2612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 217.802789][ T28] audit: type=1326 audit(1758360249.168:2613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 217.826263][ T28] audit: type=1326 audit(1758360249.168:2614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 217.876255][ T28] audit: type=1326 audit(1758360249.168:2615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 217.907263][ T7823] siw: device registration error -23 [ 217.919970][ T28] audit: type=1326 audit(1758360249.168:2616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 217.949627][ T28] audit: type=1326 audit(1758360249.188:2617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 217.988596][ T28] audit: type=1326 audit(1758360249.188:2618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7815 comm="syz.0.526" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76b398ec29 code=0x7ffc0000 [ 218.053248][ T5788] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.207853][ T7831] netlink: 8 bytes leftover after parsing attributes in process `syz.4.531'. [ 218.237426][ T7831] netlink: 8 bytes leftover after parsing attributes in process `syz.4.531'. [ 218.256805][ T7831] netlink: 8 bytes leftover after parsing attributes in process `syz.4.531'. [ 218.290639][ T7831] netlink: 8 bytes leftover after parsing attributes in process `syz.4.531'. [ 218.750249][ T28] audit: type=1326 audit(1758360250.398:2619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7852 comm="syz.2.535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1ad98ec29 code=0x7ffc0000 [ 220.273217][ T7883] loop2: detected capacity change from 0 to 512 [ 220.328420][ T7883] EXT4-fs (loop2): orphan cleanup on readonly fs [ 220.380546][ T7887] loop1: detected capacity change from 0 to 1024 [ 220.381536][ T7883] ------------[ cut here ]------------ [ 220.393066][ T7883] WARNING: CPU: 0 PID: 7883 at fs/ext4/xattr.c:1923 ext4_xattr_block_set+0x2a7a/0x32a0 [ 220.399166][ T7887] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 220.403071][ T7883] Modules linked in: [ 220.417219][ T7883] CPU: 0 PID: 7883 Comm: syz.2.541 Not tainted syzkaller #0 [ 220.424564][ T7883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 220.434750][ T7883] RIP: 0010:ext4_xattr_block_set+0x2a7a/0x32a0 [ 220.441069][ T7883] Code: ff 48 8b 5c 24 18 48 8d 7b 28 be 08 00 00 00 e8 ac c4 9a ff f0 80 63 28 fd eb 1b e8 a0 77 43 ff e9 2f f1 ff ff e8 96 77 43 ff <0f> 0b e9 72 d7 ff ff e8 8a 77 43 ff 48 b8 00 00 00 00 00 fc ff df [ 220.462213][ T7883] RSP: 0018:ffffc9000c53f2a0 EFLAGS: 00010283 [ 220.468709][ T7883] RAX: ffffffff8242200a RBX: ffffc9000c53f5a8 RCX: 0000000000080000 [ 220.476788][ T7883] RDX: ffffc9000ce02000 RSI: 000000000001e87f RDI: 000000000001e880 [ 220.484824][ T7883] RBP: ffffc9000c53f490 R08: 00000000ffffffc3 R09: 00000000ffffffc3 [ 220.493354][ T7883] R10: ffff88805ad13400 R11: ffff88805ad13020 R12: 0000000000000000 [ 220.501755][ T7883] R13: 1ffff920018a7eb6 R14: 1ffff920018a7eb5 R15: ffffc9000c53f5b0 [ 220.510347][ T7883] FS: 00007fa1ae8446c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 220.519735][ T7883] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 220.526756][ T7883] CR2: 00007f4fc19f8e9c CR3: 00000000794bc000 CR4: 00000000003506f0 [ 220.534827][ T7883] Call Trace: [ 220.538233][ T7883] [ 220.541228][ T7883] ? __might_sleep+0xe0/0xe0 [ 220.546039][ T7883] ? __getblk_gfp+0x54/0x660 [ 220.550700][ T7883] ? xattr_find_entry+0x12b/0x2f0 [ 220.556911][ T7883] ? ext4_xattr_block_find+0x350/0x350 [ 220.562454][ T7883] ? ext4_xattr_block_find+0x2d4/0x350 [ 220.568248][ T7883] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 220.574248][ T7883] __ext4_expand_extra_isize+0x306/0x400 [ 220.580258][ T7883] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 220.585930][ T7883] ext4_evict_inode+0x7ed/0xea0 [ 220.590872][ T7883] ? _raw_spin_unlock+0x28/0x40 [ 220.595803][ T7883] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 220.601855][ T7883] ? do_raw_spin_unlock+0x121/0x230 [ 220.607198][ T7883] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 220.613284][ T7883] evict+0x486/0x870 [ 220.617302][ T7883] ? __lock_acquire+0x7c80/0x7c80 [ 220.622458][ T7883] ? proc_nr_inodes+0x230/0x230 [ 220.627888][ T7883] ? do_raw_spin_unlock+0x121/0x230 [ 220.633164][ T7883] ? _raw_spin_unlock+0x28/0x40 [ 220.638122][ T7883] ? iput+0x70a/0x920 [ 220.642170][ T7883] ext4_orphan_cleanup+0xbd4/0x1400 [ 220.647607][ T7883] ? ext4_orphan_del+0xba0/0xba0 [ 220.653288][ T7883] ? ext4_register_li_request+0x183/0x940 [ 220.660350][ T7883] ? errseq_check_and_advance+0x66/0x120 [ 220.666697][ T7883] ext4_fill_super+0x5de7/0x66c0 [ 220.671745][ T7883] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 220.678132][ T7883] ? vscnprintf+0x80/0x80 [ 220.682533][ T7883] ? down_read_killable+0x340/0x340 [ 220.688001][ T7883] ? setup_bdev_super+0x56b/0x660 [ 220.692927][ T7887] EXT4-fs error (device loop1): ext4_map_blocks:718: inode #3: block 1: comm syz.1.542: lblock 1 mapped to illegal pblock 1 (length 1) [ 220.693108][ T7883] get_tree_bdev+0x3e4/0x510 [ 220.709236][ T7887] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.542: Failed to acquire dquot type 0 [ 220.711563][ T7883] ? vfs_parse_fs_string+0x160/0x160 [ 220.711598][ T7883] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 220.723400][ T7887] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.542: Freeing blocks not in datazone - block = 0, count = 4096 [ 220.728359][ T7883] ? setup_bdev_super+0x660/0x660 [ 220.728393][ T7883] ? apparmor_capable+0x137/0x1a0 [ 220.728419][ T7883] ? bpf_lsm_capable+0x9/0x10 [ 220.728447][ T7883] ? security_capable+0x89/0xb0 [ 220.728473][ T7883] vfs_get_tree+0x8c/0x280 [ 220.728496][ T7883] do_new_mount+0x24b/0xa40 [ 220.737059][ T7887] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.542: Invalid inode bitmap blk 0 in block_group 0 [ 220.749031][ T7883] __se_sys_mount+0x2da/0x3c0 [ 220.759881][ T7887] EXT4-fs error (device loop1) in ext4_free_inode:363: Corrupt filesystem [ 220.764920][ T7883] ? __x64_sys_mount+0xc0/0xc0 [ 220.796127][ T7887] EXT4-fs (loop1): 1 orphan inode deleted [ 220.803908][ T7883] ? lockdep_hardirqs_on+0x98/0x150 [ 220.820526][ T7883] ? __x64_sys_mount+0x20/0xc0 [ 220.825498][ T7883] do_syscall_64+0x55/0xb0 [ 220.830259][ T7883] ? clear_bhb_loop+0x40/0x90 [ 220.834988][ T7883] ? clear_bhb_loop+0x40/0x90 [ 220.839799][ T7883] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 220.841891][ T7887] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 220.845801][ T7883] RIP: 0033:0x7fa1ad9903ca [ 220.863933][ T7883] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 220.884009][ T7883] RSP: 002b:00007fa1ae843e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 220.892543][ T7883] RAX: ffffffffffffffda RBX: 00007fa1ae843ef0 RCX: 00007fa1ad9903ca [ 220.900739][ T7883] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fa1ae843eb0 [ 220.908899][ T7883] RBP: 0000200000000180 R08: 00007fa1ae843ef0 R09: 000000000080078b [ 220.917006][ T7883] R10: 000000000080078b R11: 0000000000000246 R12: 00002000000001c0 [ 220.925068][ T7883] R13: 00007fa1ae843eb0 R14: 000000000000046a R15: 0000200000000680 [ 220.933161][ T7883] [ 220.936331][ T7883] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 220.943655][ T7883] CPU: 0 PID: 7883 Comm: syz.2.541 Not tainted syzkaller #0 [ 220.950983][ T7883] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 220.961082][ T7883] Call Trace: [ 220.964401][ T7883] [ 220.967368][ T7883] dump_stack_lvl+0x16c/0x230 [ 220.972105][ T7883] ? show_regs_print_info+0x20/0x20 [ 220.977358][ T7883] ? load_image+0x3b0/0x3b0 [ 220.981925][ T7883] panic+0x2c0/0x710 [ 220.985878][ T7883] ? bpf_jit_dump+0xd0/0xd0 [ 220.990463][ T7883] __warn+0x2e0/0x470 [ 220.994498][ T7883] ? ext4_xattr_block_set+0x2a7a/0x32a0 [ 221.000102][ T7883] ? ext4_xattr_block_set+0x2a7a/0x32a0 [ 221.005706][ T7883] report_bug+0x2be/0x4f0 [ 221.010088][ T7883] ? ext4_xattr_block_set+0x2a7a/0x32a0 [ 221.015701][ T7883] ? ext4_xattr_block_set+0x2a7a/0x32a0 [ 221.021316][ T7883] ? ext4_xattr_block_set+0x2a7c/0x32a0 [ 221.027085][ T7883] handle_bug+0xcf/0x120 [ 221.031410][ T7883] exc_invalid_op+0x1a/0x50 [ 221.035973][ T7883] asm_exc_invalid_op+0x1a/0x20 [ 221.040879][ T7883] RIP: 0010:ext4_xattr_block_set+0x2a7a/0x32a0 [ 221.047101][ T7883] Code: ff 48 8b 5c 24 18 48 8d 7b 28 be 08 00 00 00 e8 ac c4 9a ff f0 80 63 28 fd eb 1b e8 a0 77 43 ff e9 2f f1 ff ff e8 96 77 43 ff <0f> 0b e9 72 d7 ff ff e8 8a 77 43 ff 48 b8 00 00 00 00 00 fc ff df [ 221.066763][ T7883] RSP: 0018:ffffc9000c53f2a0 EFLAGS: 00010283 [ 221.072904][ T7883] RAX: ffffffff8242200a RBX: ffffc9000c53f5a8 RCX: 0000000000080000 [ 221.080933][ T7883] RDX: ffffc9000ce02000 RSI: 000000000001e87f RDI: 000000000001e880 [ 221.088955][ T7883] RBP: ffffc9000c53f490 R08: 00000000ffffffc3 R09: 00000000ffffffc3 [ 221.096979][ T7883] R10: ffff88805ad13400 R11: ffff88805ad13020 R12: 0000000000000000 [ 221.105008][ T7883] R13: 1ffff920018a7eb6 R14: 1ffff920018a7eb5 R15: ffffc9000c53f5b0 [ 221.113038][ T7883] ? ext4_xattr_block_set+0x2a7a/0x32a0 [ 221.118651][ T7883] ? __might_sleep+0xe0/0xe0 [ 221.123288][ T7883] ? __getblk_gfp+0x54/0x660 [ 221.127911][ T7883] ? xattr_find_entry+0x12b/0x2f0 [ 221.132974][ T7883] ? ext4_xattr_block_find+0x350/0x350 [ 221.138475][ T7883] ? ext4_xattr_block_find+0x2d4/0x350 [ 221.143966][ T7883] ext4_expand_extra_isize_ea+0x10ea/0x19e0 [ 221.149919][ T7883] __ext4_expand_extra_isize+0x306/0x400 [ 221.155586][ T7883] __ext4_mark_inode_dirty+0x45d/0x6e0 [ 221.161077][ T7883] ext4_evict_inode+0x7ed/0xea0 [ 221.165951][ T7883] ? _raw_spin_unlock+0x28/0x40 [ 221.170847][ T7883] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 221.176765][ T7883] ? do_raw_spin_unlock+0x121/0x230 [ 221.182003][ T7883] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 221.187950][ T7883] evict+0x486/0x870 [ 221.191873][ T7883] ? __lock_acquire+0x7c80/0x7c80 [ 221.196924][ T7883] ? proc_nr_inodes+0x230/0x230 [ 221.201801][ T7883] ? do_raw_spin_unlock+0x121/0x230 [ 221.207109][ T7883] ? _raw_spin_unlock+0x28/0x40 [ 221.211981][ T7883] ? iput+0x70a/0x920 [ 221.215988][ T7883] ext4_orphan_cleanup+0xbd4/0x1400 [ 221.221237][ T7883] ? ext4_orphan_del+0xba0/0xba0 [ 221.226211][ T7883] ? ext4_register_li_request+0x183/0x940 [ 221.231960][ T7883] ? errseq_check_and_advance+0x66/0x120 [ 221.237616][ T7883] ext4_fill_super+0x5de7/0x66c0 [ 221.242608][ T7883] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 221.248887][ T7883] ? vscnprintf+0x80/0x80 [ 221.253234][ T7883] ? down_read_killable+0x340/0x340 [ 221.258458][ T7883] ? setup_bdev_super+0x56b/0x660 [ 221.263507][ T7883] get_tree_bdev+0x3e4/0x510 [ 221.268122][ T7883] ? vfs_parse_fs_string+0x160/0x160 [ 221.273429][ T7883] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 221.279696][ T7883] ? setup_bdev_super+0x660/0x660 [ 221.284741][ T7883] ? apparmor_capable+0x137/0x1a0 [ 221.289787][ T7883] ? bpf_lsm_capable+0x9/0x10 [ 221.294493][ T7883] ? security_capable+0x89/0xb0 [ 221.299459][ T7883] vfs_get_tree+0x8c/0x280 [ 221.303900][ T7883] do_new_mount+0x24b/0xa40 [ 221.308470][ T7883] __se_sys_mount+0x2da/0x3c0 [ 221.313170][ T7883] ? __x64_sys_mount+0xc0/0xc0 [ 221.317957][ T7883] ? lockdep_hardirqs_on+0x98/0x150 [ 221.323264][ T7883] ? __x64_sys_mount+0x20/0xc0 [ 221.328046][ T7883] do_syscall_64+0x55/0xb0 [ 221.332485][ T7883] ? clear_bhb_loop+0x40/0x90 [ 221.337175][ T7883] ? clear_bhb_loop+0x40/0x90 [ 221.341905][ T7883] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 221.347826][ T7883] RIP: 0033:0x7fa1ad9903ca [ 221.352263][ T7883] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 221.371902][ T7883] RSP: 002b:00007fa1ae843e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 221.380339][ T7883] RAX: ffffffffffffffda RBX: 00007fa1ae843ef0 RCX: 00007fa1ad9903ca [ 221.388326][ T7883] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fa1ae843eb0 [ 221.396332][ T7883] RBP: 0000200000000180 R08: 00007fa1ae843ef0 R09: 000000000080078b [ 221.404355][ T7883] R10: 000000000080078b R11: 0000000000000246 R12: 00002000000001c0 [ 221.412345][ T7883] R13: 00007fa1ae843eb0 R14: 000000000000046a R15: 0000200000000680 [ 221.420395][ T7883] [ 221.423741][ T7883] Kernel Offset: disabled [ 221.428243][ T7883] Rebooting in 86400 seconds..