last executing test programs: 2.110431968s ago: executing program 0 (id=933): bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0}, 0x18) rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x20) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net\x00') getdents64(r0, 0x0, 0x0) 2.014054191s ago: executing program 0 (id=935): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) io_setup(0x3ff, &(0x7f0000000500)=0x0) io_getevents(r1, 0x4, 0x4, &(0x7f00000019c0)=[{}, {}, {}, {}], 0x0) io_submit(r1, 0x1, &(0x7f0000000300)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r0, 0x0}]) io_destroy(r1) 1.840994064s ago: executing program 2 (id=938): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4) bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xa, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800"], 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000480)='kfree\x00', r2, 0x0, 0x7}, 0x18) connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000540), 0x3c) setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000040)=@gcm_256={{0x304, 0x36}, "1a88ef816c4b42ed", "a5fdeb69a751e94df50ad7e9fb4b4d1665e9298b01e49419567b443803cf578f", "6d02cd81", "066580001e00"}, 0x38) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, 0x0) 1.366420343s ago: executing program 1 (id=943): bpf$PROG_LOAD_XDP(0x5, &(0x7f00000003c0)={0x6, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}}, &(0x7f0000000240)='syzkaller\x00', 0xf, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x60, &(0x7f00000002c0)={0x0, 0x2}, 0x10}, 0x94) 1.366181533s ago: executing program 2 (id=944): bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='kfree\x00', r1}, 0x9) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x2400, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_ENABLE_BEARER(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20010814) close(r2) 1.312365424s ago: executing program 1 (id=945): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000280)={0x1f, 0xffff, 0x3}, 0x6) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x50) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10) bind$bt_hci(r3, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6) 1.309095504s ago: executing program 3 (id=946): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='kfree\x00', r1, 0x0, 0xffffffffffffffff}, 0x18) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000200), &(0x7f0000000240)=r1}, 0x20) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000046c0)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x8000000, 0x0, {0x0, 0x0, 0x0, r4, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x2c, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x0, 0x3, 0x0, 0x0, 0x0, 0xc0000001}, {0x3, 0x0, 0xb, 0x0, 0x0, 0xffffffff}, 0x7, 0x10, 0x2000000}}]}}]}, 0x58}}, 0x0) 1.146358847s ago: executing program 1 (id=947): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x800040, &(0x7f0000000340), 0x1, 0x5a3, &(0x7f00000005c0)="$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") r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108) getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000340)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x9, 0x4, 0x7ffc0002}]}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000b00)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94) r3 = socket(0x200000000000011, 0x2, 0xe6) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'bridge0\x00', 0x0}) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e22, 0x9dc, @dev={0xfe, 0x80, '\x00', 0x1e}, 0x5}, 0x1c) bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x1a, 0xb, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b70300000000000085000000", @ANYRESDEC=r3, @ANYRES16=r4], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a5b}, 0x94) r5 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100), 0x8080, 0x0) read$rfkill(r5, &(0x7f0000000080), 0x8) 1.112511338s ago: executing program 2 (id=948): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'geneve0\x00', 0x0}) sendto$packet(r0, &(0x7f0000000180)="0b0312002e0064000200475400f6a13bb1000000086086dd4803", 0x100a6, 0x0, &(0x7f0000000140)={0x11, 0x88a8, r1}, 0x14) 1.092404978s ago: executing program 3 (id=949): bpf$MAP_CREATE(0x2000000000000013, &(0x7f0000000140)=ANY=[], 0x48) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'ip6gretap0\x00', 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = bpf$MAP_CREATE(0x0, 0x0, 0x48) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r3}, 0x0, &(0x7f0000000040)}, 0x20) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r2) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000900)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a30000000006c000000160a01020000000000000000010000000900010073797a30000000000900020073797a3000000000400003802c00038004000100766c616e31000000000000000000000014000100776c616e3100000000000000000000000800014000000000"], 0xfc}}, 0x44080) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, &(0x7f0000000680)={"eec407b86f201d4f177604dbb774a7d9", 0x0, 0x0, {0x7, 0x4}, {0x5a0, 0x7}, 0x3, [0x2, 0x101, 0x8000000000000000, 0x9, 0x6, 0x1, 0xfffffffffffffffc, 0x8001, 0x8, 0x0, 0x100, 0x401, 0x80, 0xe, 0x4, 0x10]}) r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000080000000000000004850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r4}, 0x10) sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd24, 0x2000, {0x0, 0x0, 0x74, r1, {0xfffd, 0x10}, {0x1, 0xfff1}, {0xfff2, 0x3}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x14004804}, 0x840) 1.02242873s ago: executing program 0 (id=950): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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") 911.637732ms ago: executing program 2 (id=951): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000700)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) socket$nl_route(0x10, 0x3, 0x0) r2 = socket(0x10, 0x3, 0x6) r3 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@typedef={0x2}]}, {0x0, [0x0, 0x61]}}, 0x0, 0x28}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10) r5 = socket$netlink(0x10, 0x3, 0xc) bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc) r6 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a30000000005400038008000240000000000800"], 0xa8}}, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r7 = socket(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000000040)={'team0\x00', 0x0}) sendmsg$nl_route_sched(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newqdisc={0x88, 0x24, 0xf0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r8, {0x0, 0xffff}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_mqprio={{0xb}, {0x58, 0x2, {{0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x0, [0x4, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c4, 0x0, 0x0, 0x0, 0x3dc], [0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000]}}}}]}, 0x88}}, 0x20000000) 570.560439ms ago: executing program 1 (id=952): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x3f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_PAUSE_GET(r1, &(0x7f0000001ac0)={0x0, 0xffa1, &(0x7f0000000440)={&(0x7f00000003c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r2, @ANYBLOB="01dfffffff9a2600000021"], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0) 514.34511ms ago: executing program 3 (id=953): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x17, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) signalfd4(0xffffffffffffffff, &(0x7f00000004c0)={[0x4]}, 0x8, 0x800) 497.55783ms ago: executing program 0 (id=954): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000130000000000"], 0x0, 0x800, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200a}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x42073, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0) 421.378291ms ago: executing program 3 (id=955): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000ac0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x14, 0x14, 0x2, [@enum={0x0, 0x1, 0x0, 0x6, 0x4, [{0x1000000, 0x80000000}]}]}}, 0x0, 0x2e, 0x0, 0x1}, 0x28) 330.406303ms ago: executing program 0 (id=956): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x0, &(0x7f00000001c0), 0x1, 0x4bc, &(0x7f0000000a40)="$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") r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x8}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) r1 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000940)="2e00000010008188e6b62aa73772cc9f1ba1f8482e0000005e140602000000000e000a001000000002800000128c", 0x2e}], 0x1}, 0x0) 330.165113ms ago: executing program 3 (id=957): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0xfd}]}, 0x10) bind$bt_hci(r2, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6) 230.512735ms ago: executing program 1 (id=958): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e0000000000202020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x20605) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000000c0)={0x0, 0x3, 0x0, 'queue1\x00', 0x8001}) writev(r0, &(0x7f0000000580)=[{&(0x7f0000000000)="218292", 0xfff6}], 0x2) 220.109425ms ago: executing program 3 (id=959): socket$kcm(0x2b, 0x1, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f00000000c0)="6880a642beaf34317f0dd3122a90ad0d2b", 0x11}], 0x2d}, 0x0) r0 = socket$kcm(0x10, 0x2, 0x4) recvmsg$kcm(r0, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0) sendmsg$inet(r0, &(0x7f0000000540)={0x0, 0xc027, &(0x7f0000000340)=[{&(0x7f00000000c0)="97eb000014006bcd9e", 0xeb97}], 0x1, 0x0, 0x0, 0x1f000000}, 0x600) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x80078b, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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") 118.441077ms ago: executing program 2 (id=960): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48) bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) r2 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000080)=0x14) ioctl$IMADDTIMER(r2, 0x80044940, &(0x7f0000000200)=0x32) close(r2) 118.214467ms ago: executing program 1 (id=961): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10) sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff00"/20, @ANYRES32=0x0, @ANYBLOB="00f7ffffffffffff130012800b00010062617461647600000400028008000a00", @ANYRES32], 0x3c}}, 0x0) sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000140)=ANY=[], 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0) 35.804059ms ago: executing program 2 (id=962): openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) r0 = socket$netlink(0x10, 0x3, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94) syz_genetlink_get_family_id$smc(&(0x7f0000000280), r0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r1}, &(0x7f0000000180), &(0x7f00000001c0)}, 0x20) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socket(0x10, 0x3, 0x0) r2 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETS2(r2, 0x402c542b, &(0x7f0000000380)={0x100, 0x0, 0x5, 0x0, 0x9, "08cfa44488efef1b4f730000000500", 0x56, 0xffff}) write$binfmt_misc(r2, &(0x7f0000000240), 0xfffffecc) ioctl$FIONREAD(r2, 0x541b, &(0x7f0000000000)) 0s ago: executing program 0 (id=963): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x70bd27, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93, 0xfc}, [{0x0, 0x0, 0x0, 0x0, 0xfffffffd}, {0x0, 0xfffffffc}, {0x1, 0x0, 0x0, 0x4000000, 0x7, 0x80000}, {0x8, 0x5, 0x0, 0xfffffffc, 0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x6}, {0x0, 0xc3}, {0x0, 0x5, 0x0, 0x0, 0x0, 0x4000000}, {0x5}, {}, {0x0, 0x10}, {0x0, 0x4, 0x0, 0x8000000}, {0x0, 0xffffffff, 0x0, 0x0, 0xfffffffd}, {0x2, 0x0, 0x400000, 0x0, 0x6}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0x0, 0x8000000}, {}, {0x0, 0x0, 0x0, 0x0, 0x1d}, {0xfffffffd}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x2000}, {}, {0x0, 0x7, 0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x2, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffd}, {0xffffffff}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xffffffff}, {}, {}, {}, {0xffffffff, 0x0, 0x0, 0x0, 0x3}, {}, {0x20, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x0, 0x1, 0x3}, {0x80}, {0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x8}, {0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x15, 0x0, 0x48510}, {}, {}, {}, {}, {0x0, 0x8, 0x0, 0x0, 0xd, 0xffffffff}, {}, {}, {0x0, 0xfffefffd}, {0x0, 0x0, 0x0, 0x1}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0x3ff, 0x40000000}, {}, {0x0, 0x7, 0x0, 0x0, 0x0, 0x400000}, {0x4, 0x0, 0x200}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x5}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfb4}, {}, {0x0, 0x101, 0x0, 0x0, 0x0, 0xffffffff}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x4, 0x9}, {0xfffffffe}, {0x0, 0x0, 0x0, 0x0, 0x1}, {0x0, 0x2}, {}, {}, {}, {0x800000, 0x0, 0x0, 0x0, 0x0, 0x56}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffefffff}, {}, {0x0, 0x0, 0x6, 0x0, 0x4}, {}, {}, {0x0, 0xfffffffd}, {0x6}, {0x7f}, {0x0, 0x0, 0x0, 0x0, 0x5}, {}, {0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {0x2, 0x0, 0x20000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x292}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x6a44, 0x0, 0x0, 0x0, 0x101}, {0x0, 0x5, 0x0, 0x0, 0x1}, {0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x80}, {0x10000000, 0x0, 0x0, 0x0, 0x4}, {0x0, 0x2e9c, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {}, {}, {0xfffffffe, 0x0, 0x0, 0x0, 0x8000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, {}, {}, {0x0, 0x8000}, {0x0, 0x0, 0x10000, 0x0, 0xfffffffc}, {0x0, 0x80000000, 0x0, 0x7dff800}, {0x0, 0x0, 0x0, 0x0, 0x4}], [{}, {}, {}, {}, {}, {0x3}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x5}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}, {}, {}, {}, {0x0, 0x1}, {}, {0x4}, {}, {}, {}, {}, {0x1}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x1}, {}, {}, {}, {}, {}, {0x3}, {0x0, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {0x1}, {}, {0x5}, {}, {0x3}, {}, {}, {}, {}, {}, {0x2, 0x1}, {}, {}, {}, {0x3}, {0x0, 0x1}, {}, {}, {}, {0x2}, {}, {0x0, 0x1}, {0x4}, {0x3}, {}, {}, {0x0, 0x1}, {0x2}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0) kernel console output (not intermixed with test programs): 2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6075 comm="syz.2.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 86.814957][ T28] audit: type=1326 audit(1758240928.599:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6075 comm="syz.2.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 86.841576][ T28] audit: type=1326 audit(1758240928.599:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6075 comm="syz.2.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 86.864727][ T28] audit: type=1326 audit(1758240928.599:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6075 comm="syz.2.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 86.914027][ T28] audit: type=1326 audit(1758240928.599:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6075 comm="syz.2.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 86.938437][ T28] audit: type=1326 audit(1758240928.609:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6075 comm="syz.2.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 86.938442][ T5781] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 86.966680][ T28] audit: type=1326 audit(1758240928.629:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6075 comm="syz.2.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 86.998722][ T28] audit: type=1326 audit(1758240928.629:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6075 comm="syz.2.51" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 87.046690][ T6078] loop2: detected capacity change from 0 to 128 [ 87.205940][ T5942] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 87.248868][ T6078] +}[@: attempt to access beyond end of device [ 87.248868][ T6078] loop2: rw=2049, sector=138, nr_sectors = 112 limit=128 [ 87.957081][ T6085] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 88.847790][ T6095] syz.1.56 uses obsolete (PF_INET,SOCK_PACKET) [ 88.897955][ T6095] netlink: 348 bytes leftover after parsing attributes in process `syz.1.56'. [ 88.972597][ T6095] loop1: detected capacity change from 0 to 512 [ 88.987722][ T6095] ======================================================= [ 88.987722][ T6095] WARNING: The mand mount option has been deprecated and [ 88.987722][ T6095] and is ignored by this kernel. Remove the mand [ 88.987722][ T6095] option from the mount to silence this warning. [ 88.987722][ T6095] ======================================================= [ 89.051201][ T6095] EXT4-fs (loop1): orphan cleanup on readonly fs [ 89.097440][ T6101] netlink: 'syz.2.58': attribute type 13 has an invalid length. [ 89.133290][ T6095] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.56: bg 0: block 248: padding at end of block bitmap is not set [ 89.153843][ T6101] gretap0: refused to change device tx_queue_len [ 89.172635][ T6095] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.56: Failed to acquire dquot type 1 [ 89.172708][ T6101] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 89.209255][ T6095] EXT4-fs (loop1): 1 truncate cleaned up [ 89.233939][ T6095] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 89.356626][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 89.549333][ T6113] netlink: 4 bytes leftover after parsing attributes in process `syz.1.63'. [ 89.584819][ T6113] hsr_slave_0: left promiscuous mode [ 89.599132][ T6113] hsr_slave_1: left promiscuous mode [ 91.729877][ T6111] loop0: detected capacity change from 0 to 32768 [ 91.777731][ T6111] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.61 (6111) [ 91.927770][ T6111] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 91.964751][ T6111] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 91.987293][ T6111] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 92.041107][ T6111] BTRFS info (device loop0): use zstd compression, level 3 [ 92.081148][ T6111] BTRFS info (device loop0): max_inline at 0 [ 92.098502][ T6111] BTRFS info (device loop0): force clearing of disk cache [ 92.107078][ T6111] BTRFS info (device loop0): turning on sync discard [ 92.113935][ T6111] BTRFS info (device loop0): disabling free space tree [ 92.454535][ T6111] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR [ 92.654467][ T6111] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR [ 92.811805][ T6111] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR [ 92.853626][ T6111] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR [ 92.867897][ T6111] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR [ 92.994606][ T6111] BTRFS error (device loop0): open_ctree failed: -12 [ 93.046734][ T6156] loop1: detected capacity change from 0 to 2048 [ 93.174280][ T6156] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 93.523247][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 96.452669][ T6179] loop0: detected capacity change from 0 to 128 [ 96.625061][ T6179] FAT-fs (loop0): Directory bread(block 162) failed [ 96.639059][ T6179] FAT-fs (loop0): Directory bread(block 163) failed [ 96.645713][ T6179] FAT-fs (loop0): Directory bread(block 164) failed [ 96.686530][ T6179] FAT-fs (loop0): Directory bread(block 165) failed [ 96.718918][ T6179] FAT-fs (loop0): Directory bread(block 166) failed [ 96.725586][ T6179] FAT-fs (loop0): Directory bread(block 167) failed [ 96.747785][ T6179] FAT-fs (loop0): Directory bread(block 168) failed [ 96.768801][ T6179] FAT-fs (loop0): Directory bread(block 169) failed [ 96.853440][ T6179] FAT-fs (loop0): Directory bread(block 162) failed [ 96.884709][ T6179] FAT-fs (loop0): Directory bread(block 163) failed [ 96.900567][ T6179] syz.0.80: attempt to access beyond end of device [ 96.900567][ T6179] loop0: rw=3, sector=226, nr_sectors = 6 limit=128 [ 96.916495][ T6179] syz.0.80: attempt to access beyond end of device [ 96.916495][ T6179] loop0: rw=2051, sector=232, nr_sectors = 2 limit=128 [ 98.093789][ T6198] netlink: '': attribute type 10 has an invalid length. [ 98.165866][ T6198] team0: Port device dummy0 added [ 98.179789][ T6200] netlink: 'syz.3.88': attribute type 10 has an invalid length. [ 98.198877][ T6200] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 98.243193][ T6200] team0: Failed to send options change via netlink (err -105) [ 98.272290][ T6200] team0: Failed to send port change of device dummy0 via netlink (err -105) [ 98.284042][ T6200] team0: Port device dummy0 removed [ 98.320876][ T6200] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 98.339932][ T6203] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 98.423397][ T6188] loop1: detected capacity change from 0 to 32768 [ 98.472247][ T6188] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.83 (6188) [ 98.505781][ T6188] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 98.531838][ T6207] capability: warning: `syz.0.92' uses deprecated v2 capabilities in a way that may be insecure [ 98.542921][ T6188] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 98.572246][ T6188] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 98.589964][ T6188] BTRFS info (device loop1): use zstd compression, level 3 [ 98.604704][ T6188] BTRFS info (device loop1): max_inline at 0 [ 98.628996][ T6188] BTRFS info (device loop1): force clearing of disk cache [ 98.660879][ T6188] BTRFS info (device loop1): turning on sync discard [ 98.722758][ T6188] BTRFS info (device loop1): disabling free space tree [ 98.943117][ T6188] BTRFS info (device loop1): rebuilding free space tree [ 99.016026][ T6188] BTRFS info (device loop1): disabling free space tree [ 99.047952][ T6188] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 99.111622][ T6188] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 99.823363][ T6188] loop1: detected capacity change from 32768 to 64 [ 100.060934][ T11] kworker/u4:0: attempt to access beyond end of device [ 100.060934][ T11] loop1: rw=6145, sector=10488, nr_sectors = 8 limit=64 [ 100.087167][ T11] BTRFS error (device loop1): bdev /dev/loop1 errs: wr 1, rd 0, flush 0, corrupt 0, gen 0 [ 100.134690][ T5783] BTRFS error (device loop1: state A): Transaction aborted (error -5) [ 100.145513][ T5783] BTRFS: error (device loop1: state A) in __btrfs_run_delayed_items:1161: errno=-5 IO failure [ 100.178132][ T5783] BTRFS info (device loop1: state EA): forced readonly [ 100.195807][ T5783] BTRFS warning (device loop1: state EA): Skipping commit of aborted transaction. [ 100.208439][ T5783] BTRFS: error (device loop1: state EA) in cleanup_transaction:2004: errno=-5 IO failure [ 100.225180][ T5783] BTRFS info (device loop1: state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 100.442867][ T6260] loop0: detected capacity change from 0 to 512 [ 100.635465][ T28] kauditd_printk_skb: 14 callbacks suppressed [ 100.635479][ T28] audit: type=1800 audit(1758240942.609:42): pid=6260 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.104" name="file2" dev="loop0" ino=1048612 res=0 errno=0 [ 101.866033][ T6280] bridge0: entered promiscuous mode [ 101.875911][ T6280] macvtap1: entered allmulticast mode [ 101.888803][ T6280] bridge0: entered allmulticast mode [ 101.910700][ T6280] bridge0: port 3(macvtap1) entered blocking state [ 101.940131][ T6283] loop3: detected capacity change from 0 to 256 [ 101.966390][ T6280] bridge0: port 3(macvtap1) entered disabled state [ 101.983505][ T6283] FAT-fs (loop3): Unrecognized mount option "tz=UTC" or missing value [ 102.020330][ T6280] bridge0: left allmulticast mode [ 102.042091][ T6280] bridge0: left promiscuous mode [ 102.166955][ T6286] loop1: detected capacity change from 0 to 512 [ 102.200039][ T6286] EXT4-fs: Ignoring removed mblk_io_submit option [ 102.235878][ T6286] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 102.305997][ T6286] EXT4-fs (loop1): 1 truncate cleaned up [ 102.316085][ T6286] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.356713][ T28] audit: type=1804 audit(1758240944.319:43): pid=6286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.112" name="/newroot/32/bus/bus" dev="loop1" ino=18 res=1 errno=0 [ 102.439619][ T6273] loop0: detected capacity change from 0 to 32768 [ 102.482050][ T6273] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.107 (6273) [ 102.520364][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.542336][ T6273] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 102.625690][ T6273] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 102.667316][ T6273] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 102.697060][ T6295] loop1: detected capacity change from 0 to 512 [ 102.697877][ T6273] BTRFS info (device loop0): use zstd compression, level 3 [ 102.742271][ T6273] BTRFS info (device loop0): max_inline at 0 [ 102.744077][ T6295] EXT4-fs (loop1): filesystem is read-only [ 102.748286][ T6273] BTRFS info (device loop0): force clearing of disk cache [ 102.782568][ T6295] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 102.820721][ T6295] EXT4-fs (loop1): filesystem is read-only [ 102.826584][ T6295] EXT4-fs (loop1): orphan cleanup on readonly fs [ 102.848685][ T6273] BTRFS info (device loop0): turning on sync discard [ 102.848785][ T6295] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #16: comm syz.1.114: iget: bad i_size value: 648518346341360424 [ 102.856168][ T6273] BTRFS info (device loop0): disabling free space tree [ 102.891167][ T6295] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.114: couldn't read orphan inode 16 (err -117) [ 102.911820][ T6295] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 103.016823][ T6273] BTRFS info (device loop0): rebuilding free space tree [ 103.017609][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.098973][ T6273] BTRFS info (device loop0): disabling free space tree [ 103.106301][ T6273] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 103.158007][ T6273] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 103.812776][ T6273] loop0: detected capacity change from 32768 to 64 [ 104.919883][ T28] audit: type=1326 audit(1758240946.899:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.1.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 104.942096][ T28] audit: type=1326 audit(1758240946.899:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.1.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 104.964256][ T28] audit: type=1326 audit(1758240946.929:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.1.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 104.991674][ T28] audit: type=1326 audit(1758240946.929:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.1.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 105.016368][ T28] audit: type=1326 audit(1758240946.929:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.1.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 105.023317][ T1074] kworker/u4:5: attempt to access beyond end of device [ 105.023317][ T1074] loop0: rw=6145, sector=10488, nr_sectors = 8 limit=64 [ 105.051523][ T28] audit: type=1326 audit(1758240946.929:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.1.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 105.112445][ T28] audit: type=1326 audit(1758240946.929:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.1.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 105.117159][ T1074] BTRFS error (device loop0): bdev /dev/loop0 errs: wr 1, rd 0, flush 0, corrupt 0, gen 0 [ 105.162106][ T5782] BTRFS error (device loop0: state A): Transaction aborted (error -5) [ 105.199682][ T28] audit: type=1326 audit(1758240946.929:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.1.119" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 105.248814][ T5782] BTRFS: error (device loop0: state A) in __btrfs_run_delayed_items:1161: errno=-5 IO failure [ 105.275151][ T5782] BTRFS info (device loop0: state EA): forced readonly [ 105.287648][ T5782] BTRFS warning (device loop0: state EA): Skipping commit of aborted transaction. [ 105.307397][ T5782] BTRFS: error (device loop0: state EA) in cleanup_transaction:2004: errno=-5 IO failure [ 105.329681][ T5782] BTRFS info (device loop0: state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 105.872515][ T6347] futex_wake_op: syz.0.120 tries to shift op by -1; fix this program [ 108.981767][ T6372] netlink: 4 bytes leftover after parsing attributes in process `syz.1.134'. [ 109.316056][ T6380] loop1: detected capacity change from 0 to 512 [ 109.712004][ T6387] loop3: detected capacity change from 0 to 8192 [ 109.808932][ T28] kauditd_printk_skb: 21 callbacks suppressed [ 109.808946][ T28] audit: type=1326 audit(1758240951.779:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6390 comm="syz.1.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 109.857707][ T28] audit: type=1326 audit(1758240951.779:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6390 comm="syz.1.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 109.888292][ T28] audit: type=1326 audit(1758240951.779:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6390 comm="syz.1.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 109.909523][ T5781] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1) [ 109.924105][ T5781] FAT-fs (loop3): Filesystem has been set read-only [ 110.270685][ T28] audit: type=1326 audit(1758240951.829:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6390 comm="syz.1.142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 110.697972][ T6399] loop2: detected capacity change from 0 to 256 [ 110.706056][ T6402] tipc: Started in network mode [ 110.733058][ T6402] tipc: Node identity ac141413, cluster identity 4711 [ 110.753609][ T6402] tipc: Enabling of bearer rejected, failed to enable media [ 110.799025][ T6399] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001) [ 111.150619][ T6423] loop1: detected capacity change from 0 to 512 [ 111.283595][ T6423] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 111.344623][ T6423] EXT4-fs (loop1): orphan cleanup on readonly fs [ 111.351448][ T6423] EXT4-fs warning (device loop1): ext4_enable_quotas:7175: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 111.369635][ T6423] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 111.376268][ T6423] EXT4-fs error (device loop1): ext4_orphan_get:1425: comm syz.1.155: bad orphan inode 768 [ 111.423278][ T6423] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 112.037397][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 112.636419][ T6441] loop9: detected capacity change from 0 to 7 [ 112.652061][ T6441] Dev loop9: unable to read RDB block 7 [ 112.657819][ T6441] loop9: unable to read partition table [ 112.663864][ T6441] loop9: partition table beyond EOD, truncated [ 112.673596][ T6441] loop_reread_partitions: partition scan of loop9 (被xڬdGݡ [ 112.673596][ T6441] ) failed (rc=-5) [ 112.894874][ T6445] dummy0: entered allmulticast mode [ 112.919676][ T6445] dummy0: left allmulticast mode [ 113.004915][ T28] audit: type=1326 audit(1758240954.979:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6450 comm="syz.0.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 113.009805][ T6447] loop1: detected capacity change from 0 to 512 [ 113.044727][ T28] audit: type=1326 audit(1758240955.009:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6450 comm="syz.0.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 113.067192][ T28] audit: type=1326 audit(1758240955.009:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6450 comm="syz.0.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 113.128004][ T28] audit: type=1326 audit(1758240955.009:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6450 comm="syz.0.168" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 113.184423][ T6447] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 113.241457][ T6447] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 113.344307][ T6447] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 113.381333][ T6447] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 13 with max blocks 1 with error 28 [ 113.395487][ T6447] EXT4-fs (loop1): This should not happen!! Data will be lost [ 113.395487][ T6447] [ 113.407524][ T6447] EXT4-fs (loop1): Total free blocks count 0 [ 113.413627][ T6447] EXT4-fs (loop1): Free/Dirty block details [ 113.419664][ T6447] EXT4-fs (loop1): free_blocks=65280 [ 113.425014][ T6447] EXT4-fs (loop1): dirty_blocks=1 [ 113.430226][ T6447] EXT4-fs (loop1): Block reservation details [ 113.436217][ T6447] EXT4-fs (loop1): i_reserved_data_blocks=1 [ 114.125224][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.698285][ T6492] program syz.1.181 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 114.707797][ T6492] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 114.721055][ T6492] netlink: '+}[@': attribute type 1 has an invalid length. [ 114.728636][ T6492] netlink: 224 bytes leftover after parsing attributes in process `+}[@'. [ 114.778036][ T6492] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 115.057796][ T6502] netlink: 44 bytes leftover after parsing attributes in process `syz.3.186'. [ 115.137782][ T6492] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 115.808015][ T6492] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 115.964996][ T6492] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 116.047992][ T6518] loop2: detected capacity change from 0 to 512 [ 116.056032][ T6518] EXT4-fs: Ignoring removed mblk_io_submit option [ 116.094127][ T28] audit: type=1326 audit(1758240958.069:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.3.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 116.162496][ T6518] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 116.169136][ T28] audit: type=1326 audit(1758240958.069:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.3.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 116.177516][ T6518] EXT4-fs (loop2): orphan cleanup on readonly fs [ 116.200684][ T28] audit: type=1326 audit(1758240958.069:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.3.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 116.228607][ T28] audit: type=1326 audit(1758240958.069:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.3.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 116.246776][ T6526] process 'syz.1.193' launched './file1' with NULL argv: empty string added [ 116.257056][ T28] audit: type=1326 audit(1758240958.069:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.3.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 116.260636][ T6518] Quota error (device loop2): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 116.296636][ T6518] EXT4-fs warning (device loop2): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 116.311624][ T28] audit: type=1326 audit(1758240958.069:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.3.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 116.338490][ T6518] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 116.339550][ T28] audit: type=1326 audit(1758240958.069:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.3.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 116.375281][ T28] audit: type=1326 audit(1758240958.069:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.3.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 116.378678][ T6518] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.192: bg 0: block 40: padding at end of block bitmap is not set [ 116.403126][ T28] audit: type=1326 audit(1758240958.069:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6513 comm="syz.3.190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 116.454957][ T6518] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 116.508347][ T6518] EXT4-fs (loop2): 1 truncate cleaned up [ 116.527666][ T6518] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 116.617917][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 117.648251][ T6545] bridge0: entered promiscuous mode [ 117.658703][ T6548] netlink: 8 bytes leftover after parsing attributes in process `syz.1.203'. [ 117.677474][ T6545] macsec1: entered promiscuous mode [ 117.688926][ T6545] bridge0: port 3(macsec1) entered blocking state [ 117.705767][ T6545] bridge0: port 3(macsec1) entered disabled state [ 117.734556][ T6545] macsec1: entered allmulticast mode [ 117.767569][ T6545] bridge0: entered allmulticast mode [ 117.813982][ T6545] macsec1: left allmulticast mode [ 117.826931][ T6557] syz.0.205[6557] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 117.827050][ T6557] syz.0.205[6557] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 117.845904][ T6545] bridge0: left allmulticast mode [ 117.869831][ T6557] netlink: 8 bytes leftover after parsing attributes in process `syz.0.205'. [ 117.883952][ T6545] bridge0: left promiscuous mode [ 117.927332][ T6559] netlink: 4 bytes leftover after parsing attributes in process `syz.1.206'. [ 118.347705][ T6567] loop2: detected capacity change from 0 to 8192 [ 118.365639][ T6572] Zero length message leads to an empty skb [ 118.418288][ T6576] tipc: Started in network mode [ 118.424574][ T6576] tipc: Node identity b676ea2a7d32, cluster identity 4711 [ 118.432098][ T6576] tipc: Enabled bearer , priority 0 [ 118.441091][ T6576] syzkaller0: entered promiscuous mode [ 118.446881][ T6576] syzkaller0: entered allmulticast mode [ 118.698011][ T6578] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) ! [ 119.108699][ T6576] tipc: Resetting bearer [ 119.243958][ T6575] tipc: Resetting bearer [ 119.412293][ T6575] tipc: Disabling bearer [ 119.905386][ T6604] loop2: detected capacity change from 0 to 512 [ 119.935077][ T6604] EXT4-fs (loop2): filesystem is read-only [ 119.966018][ T6604] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 120.018193][ T6604] EXT4-fs (loop2): filesystem is read-only [ 120.028973][ T6604] EXT4-fs (loop2): orphan cleanup on readonly fs [ 120.040526][ T6604] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #16: comm syz.2.222: iget: bad i_size value: 648518346341360424 [ 120.062391][ T6604] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.222: couldn't read orphan inode 16 (err -117) [ 120.081674][ T6604] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 120.758939][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.920503][ T6615] netlink: 12 bytes leftover after parsing attributes in process `syz.1.224'. [ 121.039432][ T6619] netlink: 'syz.3.227': attribute type 4 has an invalid length. [ 121.107116][ T6619] netlink: 'syz.3.227': attribute type 4 has an invalid length. [ 122.499336][ T6647] Illegal XDP return value 4294967274 on prog (id 152) dev syz_tun, expect packet loss! [ 122.653273][ T6652] loop3: detected capacity change from 0 to 512 [ 122.702991][ T6652] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 122.740103][ T6652] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 122.752308][ T28] kauditd_printk_skb: 25 callbacks suppressed [ 122.752320][ T28] audit: type=1326 audit(1758240964.729:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 122.786307][ T28] audit: type=1326 audit(1758240964.769:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 122.831211][ T28] audit: type=1326 audit(1758240964.799:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 122.853658][ T28] audit: type=1326 audit(1758240964.799:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 122.878827][ T28] audit: type=1326 audit(1758240964.799:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 122.913718][ T28] audit: type=1326 audit(1758240964.799:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 122.937004][ T28] audit: type=1326 audit(1758240964.799:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 122.964070][ T28] audit: type=1326 audit(1758240964.809:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 122.986828][ T28] audit: type=1326 audit(1758240964.809:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 122.991357][ T5781] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 123.009187][ T28] audit: type=1326 audit(1758240964.809:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6659 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 123.348350][ T6671] loop3: detected capacity change from 0 to 764 [ 123.417659][ T6671] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 123.476625][ T6671] Symlink component flag not implemented [ 123.495659][ T6671] Symlink component flag not implemented (7) [ 123.551712][ T6673] loop2: detected capacity change from 0 to 512 [ 123.569543][ T6673] EXT4-fs: Ignoring removed oldalloc option [ 123.606253][ T6673] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.250: Parent and EA inode have the same ino 15 [ 123.652083][ T6673] EXT4-fs (loop2): 1 orphan inode deleted [ 123.683939][ T6673] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 123.775471][ T6667] loop0: detected capacity change from 0 to 32768 [ 123.834611][ T6667] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.247 (6667) [ 123.895497][ T6667] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 123.904268][ T6682] pimreg: entered allmulticast mode [ 123.954782][ T6682] pimreg: left allmulticast mode [ 123.955689][ T6667] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 123.974704][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 123.994920][ T6667] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 124.022856][ T6667] BTRFS info (device loop0): use zstd compression, level 3 [ 124.033770][ T6667] BTRFS info (device loop0): max_inline at 0 [ 124.045075][ T6667] BTRFS info (device loop0): force clearing of disk cache [ 124.057102][ T6667] BTRFS info (device loop0): turning on sync discard [ 124.077059][ T6667] BTRFS info (device loop0): disabling free space tree [ 124.255274][ T6667] BTRFS info (device loop0): rebuilding free space tree [ 124.326494][ T6667] BTRFS info (device loop0): disabling free space tree [ 124.333181][ T6703] loop2: detected capacity change from 0 to 2048 [ 124.360926][ T6667] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 124.390261][ T6667] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 124.398933][ T6703] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 124.405779][ T6710] 9pnet: p9_errstr2errno: server reported unknown error 1 [ 124.539276][ T6667] loop0: detected capacity change from 32768 to 64 [ 124.565621][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 124.618225][ T1102] kworker/u4:7: attempt to access beyond end of device [ 124.618225][ T1102] loop0: rw=6145, sector=10496, nr_sectors = 8 limit=64 [ 124.636538][ T1102] BTRFS error (device loop0): bdev /dev/loop0 errs: wr 1, rd 0, flush 0, corrupt 0, gen 0 [ 124.651342][ T5782] BTRFS error (device loop0: state A): Transaction aborted (error -5) [ 124.698588][ T5782] BTRFS: error (device loop0: state A) in __btrfs_run_delayed_items:1161: errno=-5 IO failure [ 124.733126][ T5782] BTRFS info (device loop0: state EA): forced readonly [ 124.766372][ T5782] BTRFS warning (device loop0: state EA): Skipping commit of aborted transaction. [ 124.789482][ T5782] BTRFS: error (device loop0: state EA) in cleanup_transaction:2004: errno=-5 IO failure [ 124.815449][ T5782] BTRFS info (device loop0: state EA): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 124.948026][ T6725] loop2: detected capacity change from 0 to 512 [ 125.064264][ T6725] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 125.122141][ T6727] 9pnet: Could not find request transport: fd0xffffffffffffffff [ 125.130088][ T6725] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 125.217978][ T6725] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 125.381076][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 125.527181][ T6741] loop1: detected capacity change from 0 to 1024 [ 125.558919][ T6741] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 125.605393][ T6741] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm +}[@: bg 0: block 10: padding at end of block bitmap is not set [ 125.639480][ T6741] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm +}[@: Failed to acquire dquot type 0 [ 125.661039][ T6741] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm +}[@: Failed to acquire dquot type 0 [ 125.673102][ T6741] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm +}[@: Freeing blocks not in datazone - block = 0, count = 4096 [ 125.706830][ T6746] loop2: detected capacity change from 0 to 164 [ 125.710525][ T6741] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm +}[@: Failed to acquire dquot type 0 [ 125.753887][ T6746] Unable to read rock-ridge attributes [ 125.772709][ T6746] syz.2.274[6746] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 125.772826][ T6746] syz.2.274[6746] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 125.794745][ T6741] EXT4-fs (loop1): 1 orphan inode deleted [ 125.796621][ T6746] Unable to read rock-ridge attributes [ 125.848686][ T6741] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 126.017739][ T6750] netlink: 40 bytes leftover after parsing attributes in process `syz.0.277'. [ 126.056660][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 126.807869][ T6770] syz.0.286 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 127.137316][ T6779] netlink: 24 bytes leftover after parsing attributes in process `syz.1.289'. [ 127.379513][ T6788] netlink: 24 bytes leftover after parsing attributes in process `syz.0.293'. [ 127.670783][ T6798] syz.3.298[6798] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 127.670949][ T6798] syz.3.298[6798] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 127.787514][ T6803] syzkaller0: entered allmulticast mode [ 127.834176][ T6803] syzkaller0 (unregistering): left allmulticast mode [ 127.907982][ T6808] loop0: detected capacity change from 0 to 128 [ 127.936914][ T6808] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 127.960601][ T6808] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 128.035904][ T6815] netlink: 92 bytes leftover after parsing attributes in process `syz.2.304'. [ 128.047319][ T6815] netlink: 8 bytes leftover after parsing attributes in process `syz.2.304'. [ 128.058109][ T6815] netlink: 'syz.2.304': attribute type 1 has an invalid length. [ 128.263895][ T5782] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 128.569687][ T6834] loop2: detected capacity change from 0 to 512 [ 128.601275][ T6834] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 128.666926][ T6834] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 128.684028][ T6834] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 128.776146][ T6834] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #15: comm syz.2.308: corrupted xattr block 19: overlapping e_value [ 128.966075][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.986018][ T6855] netlink: 8 bytes leftover after parsing attributes in process `syz.0.314'. [ 129.314116][ T6861] netlink: 'syz.2.317': attribute type 3 has an invalid length. [ 129.461870][ T6865] netlink: 4 bytes leftover after parsing attributes in process `syz.3.316'. [ 129.471415][ T6865] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 129.599323][ T6866] loop3: detected capacity change from 0 to 512 [ 129.807625][ T6866] EXT4-fs (loop3): 1 orphan inode deleted [ 129.820485][ T6866] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 129.834370][ T6866] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 129.969351][ T6864] loop2: detected capacity change from 0 to 1024 [ 130.033072][ T6865] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 130.070036][ T6864] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 130.253453][ T28] kauditd_printk_skb: 82 callbacks suppressed [ 130.253465][ T28] audit: type=1804 audit(1758240972.229:198): pid=6873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.318" name="/newroot/70/file1/file1" dev="loop2" ino=15 res=1 errno=0 [ 130.282434][ T5781] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 130.307201][ T6875] netlink: 'syz.0.320': attribute type 7 has an invalid length. [ 130.339340][ T28] audit: type=1804 audit(1758240972.279:199): pid=6864 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.318" name="/newroot/70/file1/file1" dev="loop2" ino=15 res=1 errno=0 [ 130.351032][ T6875] netlink: 8 bytes leftover after parsing attributes in process `syz.0.320'. [ 130.364497][ T6877] loop1: detected capacity change from 0 to 1024 [ 130.392990][ T6877] EXT4-fs: Ignoring removed orlov option [ 130.416308][ T6877] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 130.461864][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 130.500762][ T28] audit: type=1326 audit(1758240972.479:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6876 comm="syz.1.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 130.513356][ T6877] netlink: 'syz.1.321': attribute type 21 has an invalid length. [ 130.533820][ T28] audit: type=1326 audit(1758240972.479:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6876 comm="syz.1.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 130.582999][ T28] audit: type=1326 audit(1758240972.479:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6876 comm="syz.1.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 130.659239][ T28] audit: type=1326 audit(1758240972.479:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6876 comm="syz.1.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 130.697652][ T28] audit: type=1326 audit(1758240972.479:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6876 comm="syz.1.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=450 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 130.753256][ T6885] netlink: 199820 bytes leftover after parsing attributes in process `syz.2.323'. [ 130.778985][ T28] audit: type=1326 audit(1758240972.479:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6876 comm="syz.1.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 130.843160][ T28] audit: type=1326 audit(1758240972.479:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6876 comm="syz.1.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 130.875842][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 130.886204][ T28] audit: type=1326 audit(1758240972.479:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6876 comm="syz.1.321" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 131.117614][ T6893] bond1: entered promiscuous mode [ 131.123401][ T6893] bond1: entered allmulticast mode [ 131.129916][ T6893] 8021q: adding VLAN 0 to HW filter on device bond1 [ 131.600980][ T6893] bond1 (unregistering): Released all slaves [ 131.746242][ T6914] loop1: detected capacity change from 0 to 2364 [ 131.847974][ T6920] syz.0.337[6920] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 131.848110][ T6920] syz.0.337[6920] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 131.870391][ T5942] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 132.194753][ T6931] netlink: 'syz.2.342': attribute type 29 has an invalid length. [ 132.195640][ T6930] program syz.1.343 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 132.204027][ T6931] netlink: 'syz.2.342': attribute type 29 has an invalid length. [ 132.224541][ T6931] netlink: 'syz.2.342': attribute type 29 has an invalid length. [ 132.225539][ T6933] autofs4:pid:6933:autofs_fill_super: called with bogus options [ 132.492989][ T6941] loop1: detected capacity change from 0 to 2048 [ 132.497039][ T6943] loop3: detected capacity change from 0 to 512 [ 132.532677][ T6943] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 132.539194][ T6941] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 132.570806][ T6943] EXT4-fs (loop3): 1 truncate cleaned up [ 132.586111][ T6943] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 132.679652][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.322125][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.474562][ T6953] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(11) [ 133.481457][ T6953] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 133.489757][ T6953] vhci_hcd vhci_hcd.0: Device attached [ 133.545397][ T6954] vhci_hcd: connection closed [ 133.571871][ T2909] vhci_hcd: stop threads [ 133.618202][ T2909] vhci_hcd: release socket [ 133.662352][ T2909] vhci_hcd: disconnect device [ 133.702895][ T5781] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.999115][ T6970] netlink: 'syz.0.355': attribute type 2 has an invalid length. [ 134.192607][ T6979] 9p: Unknown access argument : -22 [ 134.233403][ T6977] loop2: detected capacity change from 0 to 1024 [ 134.302854][ T6977] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 134.384151][ T6985] netlink: 4 bytes leftover after parsing attributes in process `syz.1.362'. [ 134.609730][ T6994] loop3: detected capacity change from 0 to 1024 [ 134.621994][ T6994] EXT4-fs: Ignoring removed nobh option [ 134.637191][ T6994] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 134.674857][ T6994] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #11: comm syz.3.367: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 134.703965][ T6994] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.367: couldn't read orphan inode 11 (err -117) [ 134.730432][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.743060][ T6994] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 134.857564][ T5781] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 134.888608][ T7002] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 136.876810][ T7030] netlink: 4 bytes leftover after parsing attributes in process `syz.2.381'. [ 136.899773][ T7030] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 136.918333][ T7030] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 136.939811][ T7030] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 136.979833][ T7030] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 137.068618][ T7038] netlink: 96 bytes leftover after parsing attributes in process `syz.3.384'. [ 138.667729][ T7059] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 138.688043][ T7059] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 139.390394][ T28] kauditd_printk_skb: 83 callbacks suppressed [ 139.390407][ T28] audit: type=1326 audit(1758240981.369:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 139.474909][ T28] audit: type=1326 audit(1758240981.399:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 139.623115][ T28] audit: type=1326 audit(1758240981.399:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 139.678862][ T28] audit: type=1326 audit(1758240981.399:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 139.761395][ T28] audit: type=1326 audit(1758240981.399:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 139.850579][ T28] audit: type=1326 audit(1758240981.399:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 139.901750][ T28] audit: type=1326 audit(1758240981.399:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 140.053405][ T28] audit: type=1326 audit(1758240981.399:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 140.180988][ T28] audit: type=1326 audit(1758240981.399:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 140.205543][ T28] audit: type=1326 audit(1758240981.399:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz.0.392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 141.230938][ T7089] lo: entered allmulticast mode [ 141.248154][ T7089] tunl0: entered allmulticast mode [ 141.279703][ T7089] gre0: entered allmulticast mode [ 141.298685][ T7089] gretap0: entered allmulticast mode [ 141.314284][ T7089] erspan0: entered allmulticast mode [ 141.340053][ T7089] ip_vti0: entered allmulticast mode [ 141.349971][ T7089] ip6_vti0: entered allmulticast mode [ 141.368052][ T7089] sit0: entered allmulticast mode [ 141.384544][ T7089] ip6tnl0: entered allmulticast mode [ 141.404684][ T7089] ip6gre0: entered allmulticast mode [ 141.426677][ T7089] syz_tun: entered allmulticast mode [ 141.434121][ T7089] ip6gretap0: entered allmulticast mode [ 141.443233][ T7089] bridge0: entered allmulticast mode [ 141.453431][ T7089] vcan0: entered allmulticast mode [ 141.465773][ T7089] bond0: entered allmulticast mode [ 141.488496][ T7089] bond_slave_0: entered allmulticast mode [ 141.501410][ T7089] bond_slave_1: entered allmulticast mode [ 141.515894][ T7089] team0: entered allmulticast mode [ 141.526770][ T7089] team_slave_0: entered allmulticast mode [ 141.539173][ T7089] team_slave_1: entered allmulticast mode [ 141.553912][ T7089] dummy0: entered allmulticast mode [ 141.583623][ T7089] nlmon0: entered allmulticast mode [ 141.597841][ T7089] caif0: entered allmulticast mode [ 141.614720][ T7089] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 141.646774][ T7088] veth0: entered promiscuous mode [ 141.658934][ T7093] netlink: 4 bytes leftover after parsing attributes in process `syz.3.398'. [ 141.910185][ T7107] netlink: 32 bytes leftover after parsing attributes in process `syz.1.404'. [ 142.206487][ T7118] netlink: 168 bytes leftover after parsing attributes in process `syz.1.408'. [ 143.388054][ T7149] hub 1-0:1.0: USB hub found [ 143.412690][ T7149] hub 1-0:1.0: 1 port detected [ 144.671545][ T28] kauditd_printk_skb: 56 callbacks suppressed [ 144.671559][ T28] audit: type=1326 audit(1758240986.639:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 144.702029][ T28] audit: type=1326 audit(1758240986.639:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 144.732969][ T28] audit: type=1326 audit(1758240986.639:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 144.764739][ T28] audit: type=1326 audit(1758240986.659:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 144.787295][ T28] audit: type=1326 audit(1758240986.659:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7169 comm="syz.0.422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 145.389340][ T7177] loop1: detected capacity change from 0 to 764 [ 145.423173][ T7177] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 147.011359][ T7217] loop0: detected capacity change from 0 to 4096 [ 147.059995][ T7217] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 147.678908][ T28] audit: type=1800 audit(1758240989.649:362): pid=7230 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.441" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 147.810579][ T28] audit: type=1326 audit(1758240989.789:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7233 comm="syz.3.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 147.868506][ T28] audit: type=1326 audit(1758240989.789:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7233 comm="syz.3.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 147.915351][ T28] audit: type=1326 audit(1758240989.889:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7233 comm="syz.3.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 147.959518][ T28] audit: type=1326 audit(1758240989.889:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7233 comm="syz.3.447" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 148.008921][ T5785] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 148.106546][ T7238] loop1: detected capacity change from 0 to 512 [ 148.129786][ T7238] EXT4-fs: Ignoring removed i_version option [ 148.158683][ T7238] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 148.179265][ T7238] ext4 filesystem being mounted at /130/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 148.252003][ T5785] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 127, changing to 10 [ 148.268952][ T7238] EXT4-fs error (device loop1): ext4_xattr_block_list:768: inode #15: comm syz.1.448: corrupted xattr block 19: overlapping e_value [ 148.273479][ T5785] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1040, setting to 1024 [ 148.298847][ T5785] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 148.311912][ T5785] usb 1-1: New USB device found, idVendor=1c4f, idProduct=0059, bcdDevice= 0.00 [ 148.322506][ T5785] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 148.339378][ T5785] usb 1-1: config 0 descriptor?? [ 148.362845][ T7230] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 148.391929][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.699890][ T5785] usbhid 1-1:0.0: can't add hid device: -71 [ 149.706092][ T5785] usbhid: probe of 1-1:0.0 failed with error -71 [ 149.730511][ T5785] usb 1-1: USB disconnect, device number 3 [ 149.788792][ T28] kauditd_printk_skb: 19 callbacks suppressed [ 149.788806][ T28] audit: type=1326 audit(1758240991.759:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7244 comm="syz.3.450" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 149.884593][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.140463][ T7254] loop3: detected capacity change from 0 to 2048 [ 150.165939][ T7258] netlink: 'syz.1.456': attribute type 1 has an invalid length. [ 150.177730][ T7254] EXT4-fs: Ignoring removed mblk_io_submit option [ 150.246643][ T7254] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal [ 150.379855][ T7264] netlink: 352 bytes leftover after parsing attributes in process `syz.0.458'. [ 150.448986][ T7267] IPVS: sync thread started: state = MASTER, mcast_ifn = vcan0, syncid = 0, id = 0 [ 150.906241][ T7278] syzkaller1: entered promiscuous mode [ 150.934949][ T7278] syzkaller1: entered allmulticast mode [ 151.122806][ T7289] loop2: detected capacity change from 0 to 512 [ 151.444172][ T7282] netlink: 96 bytes leftover after parsing attributes in process `syz.3.467'. [ 151.684860][ T7296] netlink: 16 bytes leftover after parsing attributes in process `syz.2.473'. [ 151.723033][ T28] audit: type=1326 audit(1758240993.699:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7298 comm="syz.1.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 151.771312][ T28] audit: type=1326 audit(1758240993.699:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7298 comm="syz.1.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 151.771377][ T28] audit: type=1326 audit(1758240993.699:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7298 comm="syz.1.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 151.771415][ T28] audit: type=1326 audit(1758240993.699:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7298 comm="syz.1.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 151.771449][ T28] audit: type=1326 audit(1758240993.699:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7298 comm="syz.1.474" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 151.813430][ T7297] loop3: detected capacity change from 0 to 128 [ 151.854673][ T7297] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 151.866801][ T28] audit: type=1800 audit(1758240993.819:392): pid=7297 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.472" name="file2" dev="loop3" ino=1048627 res=0 errno=0 [ 151.910360][ C0] vkms_vblank_simulate: vblank timer overrun [ 151.933283][ T7297] FAT-fs (loop3): Filesystem has been set read-only [ 151.933308][ T7297] syz.3.472: attempt to access beyond end of device [ 151.933308][ T7297] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 151.933557][ T7297] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 151.933575][ T7297] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100) [ 151.975407][ T7297] syz.3.472: attempt to access beyond end of device [ 151.975407][ T7297] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 152.058784][ T28] audit: type=1326 audit(1758240994.009:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 152.110215][ T28] audit: type=1326 audit(1758240994.009:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 152.152884][ T28] audit: type=1326 audit(1758240994.009:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 152.175082][ C0] vkms_vblank_simulate: vblank timer overrun [ 152.766873][ T7321] netlink: 4 bytes leftover after parsing attributes in process `syz.3.483'. [ 153.102970][ T7335] netlink: 48 bytes leftover after parsing attributes in process `syz.2.489'. [ 154.321652][ T7356] netlink: 28 bytes leftover after parsing attributes in process `syz.2.494'. [ 154.334650][ T7356] netlink: 28 bytes leftover after parsing attributes in process `syz.2.494'. [ 154.398184][ T7359] loop0: detected capacity change from 0 to 512 [ 154.474419][ T7359] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 154.491639][ T7364] netlink: 20 bytes leftover after parsing attributes in process `syz.3.499'. [ 154.539991][ T7359] netlink: 8 bytes leftover after parsing attributes in process `+}[@'. [ 154.662278][ T7359] +}[@ (7359) used greatest stack depth: 17960 bytes left [ 154.692935][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 155.738946][ T28] kauditd_printk_skb: 36 callbacks suppressed [ 155.738959][ T28] audit: type=1326 audit(1758240997.709:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 155.805327][ T7388] loop1: detected capacity change from 0 to 1024 [ 155.815660][ T28] audit: type=1326 audit(1758240997.709:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 155.858773][ T28] audit: type=1326 audit(1758240997.769:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="syz.0.507" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 155.916906][ T7388] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 155.939059][ T28] audit: type=1326 audit(1758240997.769:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 155.960708][ C0] vkms_vblank_simulate: vblank timer overrun [ 155.968600][ T7395] loop0: detected capacity change from 0 to 512 [ 156.059183][ T7395] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 156.074506][ T7395] ext4 filesystem being mounted at /133/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 156.077610][ T28] audit: type=1326 audit(1758240997.769:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 156.158268][ T28] audit: type=1326 audit(1758240997.779:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 156.182337][ T28] audit: type=1326 audit(1758240997.779:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 156.184941][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.205582][ T28] audit: type=1326 audit(1758240997.779:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 156.239692][ T28] audit: type=1326 audit(1758240997.779:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 156.262625][ T28] audit: type=1326 audit(1758240997.779:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7384 comm="wg1" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 156.288350][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.589944][ T7408] netlink: 28 bytes leftover after parsing attributes in process `syz.3.516'. [ 156.603676][ T7408] capability: warning: `syz.3.516' uses 32-bit capabilities (legacy support in use) [ 158.368501][ T7441] loop0: detected capacity change from 0 to 128 [ 158.637009][ T7446] syz.0.529: attempt to access beyond end of device [ 158.637009][ T7446] loop0: rw=1, sector=145, nr_sectors = 848 limit=128 [ 158.780441][ T7448] netlink: 'syz.3.530': attribute type 27 has an invalid length. [ 159.539811][ T7452] loop2: detected capacity change from 0 to 8192 [ 159.623047][ T1074] kworker/u4:5: attempt to access beyond end of device [ 159.623047][ T1074] loop0: rw=1, sector=993, nr_sectors = 48 limit=128 [ 159.697304][ T7454] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 649 [ 160.042503][ T7467] loop3: detected capacity change from 0 to 128 [ 160.072235][ T7467] FAT-fs (loop3): Unrecognized mount option "" or missing value [ 160.342641][ T7481] loop1: detected capacity change from 0 to 2048 [ 160.471077][ T7481] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 160.565663][ T7488] netlink: 'syz.3.543': attribute type 27 has an invalid length. [ 161.309790][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 161.371028][ T7496] loop2: detected capacity change from 0 to 512 [ 161.450779][ T7496] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.481728][ T7496] ext4 filesystem being mounted at /127/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 161.548038][ T7505] netlink: 32 bytes leftover after parsing attributes in process `syz.0.552'. [ 161.631677][ T28] kauditd_printk_skb: 102 callbacks suppressed [ 161.632296][ T28] audit: type=1326 audit(1758241003.609:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 161.694215][ T28] audit: type=1326 audit(1758241003.649:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 161.755725][ T28] audit: type=1326 audit(1758241003.649:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 161.775866][ T7512] loop0: detected capacity change from 0 to 128 [ 161.832571][ T28] audit: type=1326 audit(1758241003.649:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 161.860138][ T28] audit: type=1326 audit(1758241003.649:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7506 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 162.600312][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.690247][ T7515] netlink: 'syz.1.557': attribute type 27 has an invalid length. [ 162.824155][ T28] audit: type=1326 audit(1758241004.729:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7519 comm="syz.3.559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 162.956091][ T28] audit: type=1326 audit(1758241004.729:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7519 comm="syz.3.559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 163.007858][ T28] audit: type=1326 audit(1758241004.729:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7519 comm="syz.3.559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 163.085292][ T28] audit: type=1326 audit(1758241004.729:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7519 comm="syz.3.559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 163.112717][ T7528] netdevsim netdevsim0: Direct firmware load for ./file0/file1 failed with error -2 [ 163.124835][ T7528] netdevsim netdevsim0: Falling back to sysfs fallback for: ./file0/file1 [ 163.162840][ T7535] (null): rxe_set_mtu: Set mtu to 4096 [ 163.183832][ T7535] lo speed is unknown, defaulting to 1000 [ 163.204478][ T7535] lo speed is unknown, defaulting to 1000 [ 163.240799][ T7535] lo speed is unknown, defaulting to 1000 [ 163.337973][ T7540] loop1: detected capacity change from 0 to 512 [ 163.347483][ T7540] journal_path: Lookup failure for './bus' [ 163.357434][ T7540] EXT4-fs: error: could not find journal device path [ 163.538850][ T28] audit: type=1326 audit(1758241005.489:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7543 comm="syz.3.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 163.744096][ T7548] syz.2.569[7548] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 163.744301][ T7548] syz.2.569[7548] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 164.456496][ T7550] netlink: 28 bytes leftover after parsing attributes in process `syz.1.570'. [ 164.928376][ T7535] infiniband sz1: set active [ 164.935755][ T5821] lo speed is unknown, defaulting to 1000 [ 164.945505][ T7535] infiniband sz1: added lo [ 164.952852][ T7535] sz1: rxe_create_cq: returned err = -12 [ 164.964592][ T7535] infiniband sz1: Couldn't create ib_mad CQ [ 164.970850][ T7535] infiniband sz1: Couldn't open port 1 [ 165.117362][ T7535] RDS/IB: sz1: added [ 165.128630][ T7535] smc: adding ib device sz1 with port count 1 [ 165.144842][ T7535] smc: ib device sz1 port 1 has pnetid [ 165.152555][ T7559] syz.3.574: attempt to access beyond end of device [ 165.152555][ T7559] loop7: rw=0, sector=0, nr_sectors = 1 limit=0 [ 165.163695][ T5785] lo speed is unknown, defaulting to 1000 [ 165.183970][ T7535] lo speed is unknown, defaulting to 1000 [ 165.188301][ T7559] FAT-fs (loop7): unable to read boot sector [ 165.407318][ T7566] loop1: detected capacity change from 0 to 2048 [ 165.467054][ T7566] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 165.511617][ T7535] lo speed is unknown, defaulting to 1000 [ 165.995177][ T7585] ip6gre1: entered allmulticast mode [ 166.086459][ T7586] netlink: 28 bytes leftover after parsing attributes in process `syz.2.581'. [ 166.695662][ T7535] lo speed is unknown, defaulting to 1000 [ 166.719815][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 166.963942][ T28] kauditd_printk_skb: 33 callbacks suppressed [ 166.963956][ T28] audit: type=1326 audit(1758241008.939:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7601 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 166.998125][ T7535] lo speed is unknown, defaulting to 1000 [ 167.022840][ T28] audit: type=1326 audit(1758241008.939:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7601 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 167.231313][ T28] audit: type=1326 audit(1758241008.989:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7601 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 167.359498][ T28] audit: type=1326 audit(1758241008.989:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7601 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 167.392450][ T28] audit: type=1326 audit(1758241008.989:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7601 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 167.415509][ T28] audit: type=1326 audit(1758241008.989:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7601 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 167.448114][ T28] audit: type=1326 audit(1758241008.989:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7601 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 167.473558][ T28] audit: type=1326 audit(1758241008.989:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7601 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 167.496047][ T28] audit: type=1326 audit(1758241008.989:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7601 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 167.518306][ T28] audit: type=1326 audit(1758241008.989:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7601 comm="syz.1.585" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 168.149108][ T7623] netlink: 28 bytes leftover after parsing attributes in process `syz.3.592'. [ 168.744574][ T7634] netlink: 52 bytes leftover after parsing attributes in process `,&#^%'. [ 170.384782][ T7653] netlink: 'syz.0.606': attribute type 4 has an invalid length. [ 170.477489][ T7653] netlink: 152 bytes leftover after parsing attributes in process `syz.0.606'. [ 170.825872][ T7653] .`: renamed from bond0 (while UP) [ 172.821921][ T7658] lo: left allmulticast mode [ 172.827327][ T7658] tunl0: left allmulticast mode [ 172.833010][ T7658] gre0: left allmulticast mode [ 172.838602][ T7658] gretap0: left allmulticast mode [ 172.844442][ T7658] erspan0: left allmulticast mode [ 172.850147][ T7658] ip_vti0: left allmulticast mode [ 172.855873][ T7658] ip6_vti0: left allmulticast mode [ 172.861818][ T7658] sit0: left allmulticast mode [ 172.867372][ T7658] ip6tnl0: left allmulticast mode [ 172.873147][ T7658] ip6gre0: left allmulticast mode [ 172.880195][ T7658] ip6gretap0: left allmulticast mode [ 172.886042][ T7658] bridge0: left allmulticast mode [ 172.891810][ T7658] vcan0: left allmulticast mode [ 172.898007][ T7658] bond0: left allmulticast mode [ 172.903009][ T7658] bond_slave_0: left allmulticast mode [ 172.908487][ T7658] bond_slave_1: left allmulticast mode [ 172.915122][ T7658] team0: left allmulticast mode [ 172.920084][ T7658] team_slave_0: left allmulticast mode [ 172.925518][ T7666] loop0: detected capacity change from 0 to 256 [ 172.925542][ T7658] team_slave_1: left allmulticast mode [ 172.939354][ T7658] dummy0: left allmulticast mode [ 172.944969][ T7658] nlmon0: left allmulticast mode [ 172.957918][ T7658] caif0: left allmulticast mode [ 172.963022][ T7658] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 173.045903][ T7666] FAT-fs (loop0): Directory bread(block 64) failed [ 173.078240][ T7666] FAT-fs (loop0): Directory bread(block 65) failed [ 173.109286][ T7666] FAT-fs (loop0): Directory bread(block 66) failed [ 173.115866][ T7666] FAT-fs (loop0): Directory bread(block 67) failed [ 173.169987][ T7666] FAT-fs (loop0): Directory bread(block 68) failed [ 173.177416][ T7670] syz.2.611[7670] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 173.177532][ T7670] syz.2.611[7670] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 173.185413][ T7666] FAT-fs (loop0): Directory bread(block 69) failed [ 173.214678][ T7670] netlink: 'syz.2.611': attribute type 1 has an invalid length. [ 173.253703][ T7666] FAT-fs (loop0): Directory bread(block 70) failed [ 173.269181][ T7666] FAT-fs (loop0): Directory bread(block 71) failed [ 173.290284][ T7670] 8021q: adding VLAN 0 to HW filter on device bond1 [ 173.297836][ T7666] FAT-fs (loop0): Directory bread(block 72) failed [ 173.304673][ T7666] FAT-fs (loop0): Directory bread(block 73) failed [ 173.349445][ T7676] netlink: 4 bytes leftover after parsing attributes in process `syz.2.611'. [ 173.421717][ T7666] syz.0.610: attempt to access beyond end of device [ 173.421717][ T7666] loop0: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 174.036635][ T9] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 174.198522][ T7676] bond1 (unregistering): Released all slaves [ 174.305008][ T9] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 174.364194][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 174.418624][ T9] usb 1-1: Product: syz [ 174.493664][ T9] usb 1-1: Manufacturer: syz [ 174.543549][ T9] usb 1-1: SerialNumber: syz [ 174.552687][ T7683] pimreg: entered allmulticast mode [ 174.569978][ T9] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 174.588913][ T7685] pimreg: left allmulticast mode [ 174.679525][ T5878] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 174.744375][ T7688] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 175.061567][ T5821] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0 [ 177.184603][ T5878] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 177.240172][ T5878] ath9k_htc: Failed to initialize the device [ 177.317186][ T5878] usb 1-1: ath9k_htc: USB layer deinitialized [ 177.887795][ T7703] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 178.012469][ T5821] hid-generic 0000:0000:0000.0001: hidraw0: HID v0.00 Device [syz1] on syz0 [ 178.175885][ T7688] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.513995][ T7688] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 178.539801][ T7724] syz.3.626: attempt to access beyond end of device [ 178.539801][ T7724] loop3: rw=0, sector=64, nr_sectors = 2 limit=0 [ 178.584092][ T7724] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32 [ 179.791682][ T7688] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.098451][ T7736] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.300692][ T7744] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 180.775439][ T7736] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 180.924755][ T7688] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.062292][ T7736] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.084777][ T28] kauditd_printk_skb: 36 callbacks suppressed [ 181.084791][ T28] audit: type=1326 audit(1758241023.059:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 181.122904][ T28] audit: type=1326 audit(1758241023.059:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 181.134092][ T7688] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.146022][ T28] audit: type=1326 audit(1758241023.059:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 181.206087][ T28] audit: type=1326 audit(1758241023.059:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 181.222854][ T7688] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.231587][ T28] audit: type=1326 audit(1758241023.059:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 181.262582][ T28] audit: type=1326 audit(1758241023.059:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 181.287715][ T28] audit: type=1326 audit(1758241023.059:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 181.313573][ T7736] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 181.324034][ T28] audit: type=1326 audit(1758241023.059:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 181.325502][ T28] audit: type=1326 audit(1758241023.059:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 181.391454][ T28] audit: type=1326 audit(1758241023.059:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7748 comm="syz.2.636" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 181.426584][ T7688] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.483296][ T27] usb 1-1: USB disconnect, device number 4 [ 181.532104][ T7736] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.554076][ T7736] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.586283][ T7736] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 181.623992][ T7736] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 182.076468][ T7757] loop0: detected capacity change from 0 to 2048 [ 182.500525][ T7757] loop0: p1 < > p4 [ 182.835521][ T7757] loop0: p4 size 8388608 extends beyond EOD, truncated [ 183.402542][ T5158] loop0: p1 < > p4 [ 183.425808][ T5158] loop0: p4 size 8388608 extends beyond EOD, truncated [ 183.641944][ T7782] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 183.970696][ T7784] lo speed is unknown, defaulting to 1000 [ 184.068964][ T7785] loop2: detected capacity change from 0 to 512 [ 184.284901][ T7789] loop0: detected capacity change from 0 to 1024 [ 184.310282][ T7789] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 184.341814][ T7785] EXT4-fs warning (device loop2): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 184.361174][ T7785] EXT4-fs (loop2): mount failed [ 184.406572][ T7789] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 184.663051][ T5942] udevd[5942]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 184.690345][ T5971] udevd[5971]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 185.203152][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 185.475164][ T7820] netlink: 108 bytes leftover after parsing attributes in process `syz.1.656'. [ 185.531669][ T7822] loop3: detected capacity change from 0 to 512 [ 186.279514][ T7822] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 186.300884][ T7825] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 186.343445][ T7822] ext4 filesystem being mounted at /160/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 186.397570][ T7831] bridge_slave_0: left allmulticast mode [ 186.436561][ T7831] bridge_slave_0: left promiscuous mode [ 186.444275][ T7831] bridge0: port 1(bridge_slave_0) entered disabled state [ 186.466414][ T7822] EXT4-fs error (device loop3): ext4_empty_dir:3139: inode #12: comm syz.3.654: Directory hole found for htree leaf block 0 [ 186.491905][ T7831] bridge_slave_1: left allmulticast mode [ 186.499034][ T7831] bridge_slave_1: left promiscuous mode [ 186.505334][ T7822] EXT4-fs (loop3): Remounting filesystem read-only [ 186.521843][ T7831] bridge0: port 2(bridge_slave_1) entered disabled state [ 186.616791][ T7831] bond0: (slave bond_slave_0): Releasing backup interface [ 186.662965][ T7831] bond0: (slave bond_slave_1): Releasing backup interface [ 186.760338][ T7831] team0: Port device team_slave_0 removed [ 186.788091][ T7831] team0: Port device team_slave_1 removed [ 186.800226][ T7831] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 186.807665][ T7831] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 186.840454][ T7831] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 186.858100][ T7831] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 186.932696][ T7832] netlink: 'syz.1.658': attribute type 10 has an invalid length. [ 186.949986][ T7832] netlink: 40 bytes leftover after parsing attributes in process `syz.1.658'. [ 186.966331][ T7832] batman_adv: batadv0: Adding interface: virt_wifi0 [ 186.968650][ T5781] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 186.974963][ T7832] batman_adv: batadv0: The MTU of interface virt_wifi0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 187.010042][ T2909] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 187.022878][ T2909] __quota_error: 231 callbacks suppressed [ 187.022891][ T2909] Quota error (device loop3): write_blk: dquota write failed [ 187.039253][ T7832] batman_adv: batadv0: Interface activated: virt_wifi0 [ 187.042964][ T2909] Quota error (device loop3): free_dqentry: Can't write quota data block 5 [ 187.188250][ T7837] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.306758][ T7847] loop1: detected capacity change from 0 to 512 [ 187.325898][ T7847] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 187.371750][ T7837] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.383453][ T7847] EXT4-fs (loop1): 1 truncate cleaned up [ 187.393323][ T7847] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 187.458599][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 187.594997][ T7837] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 187.964607][ T7837] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 188.163883][ T7866] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 188.686313][ T28] audit: type=1326 audit(1758241030.659:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7868 comm="syz.1.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 188.748882][ T28] audit: type=1326 audit(1758241030.659:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7868 comm="syz.1.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 188.750850][ T7837] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.779632][ T28] audit: type=1326 audit(1758241030.669:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7868 comm="syz.1.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 188.813605][ T7837] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.825480][ T28] audit: type=1326 audit(1758241030.669:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7868 comm="syz.1.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 188.871250][ T28] audit: type=1326 audit(1758241030.669:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7868 comm="syz.1.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 188.907265][ T7837] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.925218][ T7837] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 188.940338][ T7876] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 188.959343][ T28] audit: type=1326 audit(1758241030.689:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7868 comm="syz.1.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 189.052372][ T28] audit: type=1326 audit(1758241030.689:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7868 comm="syz.1.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 189.128894][ T28] audit: type=1326 audit(1758241030.689:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7868 comm="syz.1.671" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 189.257494][ T7883] loop2: detected capacity change from 0 to 512 [ 189.294462][ T7883] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 189.336265][ T7883] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 189.370500][ T7872] lo speed is unknown, defaulting to 1000 [ 189.374225][ T7883] ext4 filesystem being mounted at /153/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 189.390500][ T7889] dummy0: entered allmulticast mode [ 189.406344][ T7889] dummy0: left allmulticast mode [ 189.457794][ T7884] loop3: detected capacity change from 0 to 512 [ 189.486894][ T7883] netlink: 'syz.2.677': attribute type 13 has an invalid length. [ 189.540113][ T7884] EXT4-fs warning (device loop3): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 189.556622][ T7884] EXT4-fs (loop3): mount failed [ 189.580747][ T7894] EXT4-fs error (device loop2): ext4_lookup:1858: inode #12: comm syz.2.677: iget: bad i_size value: 2533274857506816 [ 189.621767][ T7896] netlink: 8 bytes leftover after parsing attributes in process `syz.1.680'. [ 189.648259][ T7894] EXT4-fs error (device loop2): ext4_lookup:1858: inode #12: comm syz.2.677: iget: bad i_size value: 2533274857506816 [ 189.715160][ T7899] EXT4-fs error (device loop2): ext4_lookup:1858: inode #12: comm syz.2.677: iget: bad i_size value: 2533274857506816 [ 189.832300][ T7900] EXT4-fs error (device loop2): ext4_lookup:1858: inode #12: comm syz.2.677: iget: bad i_size value: 2533274857506816 [ 190.905493][ T7883] bridge0: port 2(bridge_slave_1) entered disabled state [ 190.913056][ T7883] bridge0: port 1(bridge_slave_0) entered disabled state [ 191.461946][ T7883] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.473562][ T7883] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.482091][ T7883] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.492885][ T7883] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 191.577545][ T7908] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 191.599986][ T50] Bluetooth: hci3: command 0x0406 tx timeout [ 191.606077][ T5793] Bluetooth: hci0: command 0x0406 tx timeout [ 191.612198][ T5795] Bluetooth: hci1: command 0x0406 tx timeout [ 191.618222][ T5795] Bluetooth: hci2: command 0x0406 tx timeout [ 191.669828][ T7920] netlink: 'syz.0.688': attribute type 11 has an invalid length. [ 191.677646][ T7920] netlink: 'syz.0.688': attribute type 1 has an invalid length. [ 191.685596][ T7920] netlink: 24 bytes leftover after parsing attributes in process `syz.0.688'. [ 191.689206][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 192.853508][ T7949] netlink: 'syz.2.694': attribute type 4 has an invalid length. [ 192.899403][ T7949] netlink: 'syz.2.694': attribute type 4 has an invalid length. [ 193.126910][ T7958] serio: Serial port ttyS3 [ 193.154853][ T7958] loop2: detected capacity change from 0 to 128 [ 193.410648][ T7966] infiniband sz1: set active [ 193.424971][ T7966] 8021q: adding VLAN 0 to HW filter on device .` [ 194.036034][ T7966] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 194.054984][ T7921] lo speed is unknown, defaulting to 1000 [ 194.307212][ T7972] netlink: 12 bytes leftover after parsing attributes in process `syz.2.703'. [ 194.400395][ T7972] netlink: 12 bytes leftover after parsing attributes in process `syz.2.703'. [ 194.411713][ T7976] loop0: detected capacity change from 0 to 512 [ 194.481776][ T7976] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 194.534682][ T7976] ext4 filesystem being mounted at /178/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 194.627481][ T1279] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.675969][ T7972] netlink: 12 bytes leftover after parsing attributes in process `syz.2.703'. [ 194.692344][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 195.094477][ T7997] loop0: detected capacity change from 0 to 512 [ 195.141034][ T7997] netlink: 4 bytes leftover after parsing attributes in process `syz.0.710'. [ 195.317164][ T8003] mmap: syz.1.711 (8003) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 195.901111][ T7997] hsr_slave_1 (unregistering): left promiscuous mode [ 196.202721][ T8011] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 196.294766][ T8014] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 196.327475][ T8026] loop1: detected capacity change from 0 to 512 [ 196.440637][ T8026] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 197.621329][ T8059] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 197.675611][ T28] kauditd_printk_skb: 68 callbacks suppressed [ 197.675623][ T28] audit: type=1326 audit(1758241039.649:948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8063 comm="syz.0.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 197.769119][ T28] audit: type=1326 audit(1758241039.689:949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8063 comm="syz.0.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa29318d510 code=0x7ffc0000 [ 197.850055][ T28] audit: type=1326 audit(1758241039.699:950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8063 comm="syz.0.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 197.889253][ T28] audit: type=1326 audit(1758241039.709:951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8063 comm="syz.0.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 197.997689][ T28] audit: type=1326 audit(1758241039.709:952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8063 comm="syz.0.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 198.156955][ T28] audit: type=1326 audit(1758241039.709:953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8063 comm="syz.0.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 198.205495][ T28] audit: type=1326 audit(1758241039.709:954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8063 comm="syz.0.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 198.259073][ T28] audit: type=1326 audit(1758241039.709:955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8063 comm="syz.0.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 198.319015][ T28] audit: type=1326 audit(1758241039.709:956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8063 comm="syz.0.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 198.342899][ T8070] loop2: detected capacity change from 0 to 2048 [ 198.392206][ T28] audit: type=1326 audit(1758241039.709:957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8063 comm="syz.0.730" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 198.456502][ T8070] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 198.872012][ T8084] loop1: detected capacity change from 0 to 2048 [ 199.000413][ T8084] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 199.082500][ T8084] ext4 filesystem being mounted at /210/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 199.291104][ T8091] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.737: bg 0: block 345: padding at end of block bitmap is not set [ 199.343861][ T8091] EXT4-fs (loop1): Remounting filesystem read-only [ 199.386347][ T1092] EXT4-fs warning (device loop1): ext4_convert_unwritten_extents:4868: inode #15: block 1: len 15: ext4_ext_map_blocks returned -5 [ 199.627495][ T8097] netlink: 12 bytes leftover after parsing attributes in process `syz.0.741'. [ 199.692360][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 200.267409][ T8109] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 201.374182][ T8118] syz.1.750[8118] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 201.374307][ T8118] syz.1.750[8118] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 201.658904][ T7980] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm ext4lazyinit: bg 0: block 234: padding at end of block bitmap is not set [ 201.693219][ T8124] netlink: 536 bytes leftover after parsing attributes in process `syz.0.754'. [ 201.703948][ T8124] netlink: 104 bytes leftover after parsing attributes in process `syz.0.754'. [ 202.019627][ T8131] @: renamed from vlan0 (while UP) [ 202.823153][ T8133] infiniband sz1: set active [ 202.833492][ T8133] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 202.901589][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 202.946171][ T5828] lo speed is unknown, defaulting to 1000 [ 203.416516][ T28] kauditd_printk_skb: 9 callbacks suppressed [ 203.416529][ T28] audit: type=1326 audit(1758241045.389:967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 203.475790][ T28] audit: type=1326 audit(1758241045.389:968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 203.541065][ T28] audit: type=1326 audit(1758241045.429:969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 203.571844][ T28] audit: type=1326 audit(1758241045.429:970): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 203.597123][ T28] audit: type=1326 audit(1758241045.429:971): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 203.652556][ T28] audit: type=1326 audit(1758241045.439:972): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 203.677430][ T28] audit: type=1326 audit(1758241045.439:973): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 203.722090][ T28] audit: type=1326 audit(1758241045.439:974): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 203.768535][ T28] audit: type=1326 audit(1758241045.449:975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 203.812323][ T8154] lo speed is unknown, defaulting to 1000 [ 203.851703][ T28] audit: type=1326 audit(1758241045.459:976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8149 comm="syz.1.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 204.116137][ T8168] 8021q: adding VLAN 0 to HW filter on device bond0 [ 204.128501][ T8168] 8021q: adding VLAN 0 to HW filter on device team0 [ 204.203543][ T8168] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 204.821516][ T8174] netlink: 'syz.2.771': attribute type 13 has an invalid length. [ 204.862438][ T8174] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 206.370641][ T8204] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 206.967671][ T8207] netlink: 64 bytes leftover after parsing attributes in process `syz.2.783'. [ 207.393645][ T8220] syzkaller0: entered promiscuous mode [ 207.409900][ T8220] syzkaller0: entered allmulticast mode [ 207.425050][ T8218] tipc: Started in network mode [ 207.434226][ T8218] tipc: Node identity 925e843a8c5c, cluster identity 4711 [ 207.445678][ T8218] tipc: Enabled bearer , priority 0 [ 207.498923][ T8217] tipc: Resetting bearer [ 208.489477][ T7921] tipc: Node number set to 503481402 [ 209.134456][ T8242] loop0: detected capacity change from 0 to 128 [ 211.201878][ T8217] tipc: Disabling bearer [ 211.216955][ T8234] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 211.449241][ T28] kauditd_printk_skb: 11 callbacks suppressed [ 211.449254][ T28] audit: type=1326 audit(1758241053.429:988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 211.529380][ T28] audit: type=1326 audit(1758241053.429:989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 211.594336][ T28] audit: type=1326 audit(1758241053.459:990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 211.600945][ T8259] netlink: 8 bytes leftover after parsing attributes in process `syz.0.804'. [ 211.618383][ T8257] netlink: 8 bytes leftover after parsing attributes in process `syz.3.803'. [ 211.644754][ T28] audit: type=1326 audit(1758241053.459:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 211.668610][ T8257] IPVS: Error joining to the multicast group [ 211.695032][ T28] audit: type=1326 audit(1758241053.459:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 211.794774][ T28] audit: type=1326 audit(1758241053.459:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 211.865408][ T28] audit: type=1326 audit(1758241053.459:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 211.871927][ T8267] netlink: 256 bytes leftover after parsing attributes in process `syz.3.809'. [ 211.928869][ T28] audit: type=1326 audit(1758241053.459:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 211.990787][ T28] audit: type=1326 audit(1758241053.459:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 212.042970][ T28] audit: type=1326 audit(1758241053.459:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8253 comm="syz.0.802" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa29318eba9 code=0x7ffc0000 [ 212.576574][ T8287] loop2: detected capacity change from 0 to 2048 [ 212.631655][ T8287] Alternate GPT is invalid, using primary GPT. [ 212.649221][ T8287] loop2: p1 p2 p3 [ 212.653319][ T8287] loop2: partition table partially beyond EOD, truncated [ 212.885546][ T8295] loop0: detected capacity change from 0 to 4096 [ 212.920886][ T8301] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 212.927468][ T8301] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 212.960409][ T8295] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 212.984830][ T8310] netlink: 67 bytes leftover after parsing attributes in process `syz.1.827'. [ 213.025754][ T8301] vhci_hcd vhci_hcd.0: Device attached [ 213.026791][ T5994] udevd[5994]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory [ 213.054612][ T5942] udevd[5942]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 213.062362][ T5788] udevd[5788]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory [ 213.074569][ T8302] vhci_hcd: connection closed [ 213.091655][ T58] vhci_hcd: stop threads [ 213.131699][ T58] vhci_hcd: release socket [ 213.155140][ T58] vhci_hcd: disconnect device [ 213.202760][ T5158] udevd[5158]: worker [5971] terminated by signal 33 (Unknown signal 33) [ 213.219869][ T5158] udevd[5158]: worker [5971] failed while handling '/devices/virtual/block/loop0' [ 213.229419][ T7921] vhci_hcd: vhci_device speed not set [ 213.248014][ T5158] udevd[5158]: worker [5942] terminated by signal 33 (Unknown signal 33) [ 213.267549][ T5158] udevd[5158]: worker [5942] failed while handling '/devices/virtual/block/loop2/loop2p1' [ 213.278524][ T8315] loop3: detected capacity change from 0 to 2048 [ 213.290885][ T5158] udevd[5158]: worker [5994] terminated by signal 33 (Unknown signal 33) [ 213.299663][ T5158] udevd[5158]: worker [5994] failed while handling '/devices/virtual/block/loop2/loop2p3' [ 214.127128][ T8329] loop2: detected capacity change from 0 to 512 [ 214.170237][ T8329] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 214.182398][ T8329] EXT4-fs (loop2): can't mount with data_err=abort, fs mounted w/o journal [ 215.728700][ C0] sched: RT throttling activated [ 216.737506][ T28] kauditd_printk_skb: 85 callbacks suppressed [ 216.737520][ T28] audit: type=1326 audit(1758241058.709:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8337 comm="syz.2.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 216.774776][ T28] audit: type=1326 audit(1758241058.729:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8337 comm="syz.2.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 216.811365][ T28] audit: type=1326 audit(1758241058.729:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8337 comm="syz.2.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 216.835988][ T28] audit: type=1326 audit(1758241058.729:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8337 comm="syz.2.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 216.850531][ T8338] netlink: 4 bytes leftover after parsing attributes in process `syz.2.837'. [ 216.860192][ T28] audit: type=1326 audit(1758241058.729:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8337 comm="syz.2.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 216.891925][ T28] audit: type=1326 audit(1758241058.739:1088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8337 comm="syz.2.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 216.916324][ T28] audit: type=1326 audit(1758241058.739:1089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8337 comm="syz.2.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 216.978778][ T28] audit: type=1326 audit(1758241058.739:1090): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8337 comm="syz.2.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 217.031743][ T28] audit: type=1326 audit(1758241058.739:1091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8337 comm="syz.2.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 217.088113][ T28] audit: type=1326 audit(1758241058.739:1092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8337 comm="syz.2.837" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f517f18eba9 code=0x7ffc0000 [ 217.679891][ T8358] syz.2.846: attempt to access beyond end of device [ 217.679891][ T8358] loop5: rw=0, sector=0, nr_sectors = 1 limit=0 [ 217.694105][ T8358] FAT-fs (loop5): unable to read boot sector [ 218.430473][ T8361] loop3: detected capacity change from 0 to 128 [ 218.484535][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 218.664750][ T8367] loop2: detected capacity change from 0 to 512 [ 218.696146][ T8367] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 218.699602][ T8365] loop1: detected capacity change from 0 to 2048 [ 218.756489][ T8367] EXT4-fs (loop2): 1 truncate cleaned up [ 218.765838][ T8367] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 218.780395][ T8365] loop1: p1 < > p4 [ 218.797792][ T8365] loop1: p4 size 8388608 extends beyond EOD, truncated [ 218.916613][ T8365] netlink: 14 bytes leftover after parsing attributes in process `syz.1.850'. [ 218.986984][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 219.149578][ T8386] loop0: detected capacity change from 0 to 2048 [ 219.180967][ T8386] loop0: p1 p3 p4 [ 219.187326][ T8386] loop0: p4 size 589824 extends beyond EOD, truncated [ 219.287796][ T5773] udevd[5773]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 219.302061][ T8378] udevd[8378]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 219.728130][ T8393] udevd[8393]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 219.759868][ T8412] syz.1.866[8412] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 219.759991][ T8412] syz.1.866[8412] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 219.773829][ T8396] udevd[8396]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 220.088511][ T8421] loop3: detected capacity change from 0 to 8192 [ 220.229311][ T8424] loop0: detected capacity change from 0 to 2048 [ 220.325154][ T8424] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 220.463620][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.996540][ T8442] loop0: detected capacity change from 0 to 512 [ 221.041159][ T8442] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 221.096392][ T8442] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c118, mo2=0002] [ 221.208220][ T8442] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2244: inode #15: comm syz.0.880: corrupted in-inode xattr: e_value size too large [ 221.226308][ T8442] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.880: couldn't read orphan inode 15 (err -117) [ 221.283842][ T8442] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 221.461091][ T8456] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 221.588099][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.613026][ T8460] loop2: detected capacity change from 0 to 1024 [ 221.652906][ T8460] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 221.752244][ T28] kauditd_printk_skb: 185 callbacks suppressed [ 221.752258][ T28] audit: type=1804 audit(1758241063.729:1278): pid=8460 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.886" name="/newroot/203/file1/file1" dev="loop2" ino=15 res=1 errno=0 [ 221.880005][ T5780] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 222.303764][ T8474] lo speed is unknown, defaulting to 1000 [ 222.754394][ T8473] loop2: detected capacity change from 0 to 256 [ 222.866330][ T28] audit: type=1800 audit(1758241064.839:1279): pid=8473 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.889" name="bus" dev="loop2" ino=1048709 res=0 errno=0 [ 222.921334][ T28] audit: type=1326 audit(1758241064.889:1280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8476 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 222.965010][ T28] audit: type=1326 audit(1758241064.889:1281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8476 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 222.991117][ T28] audit: type=1326 audit(1758241064.889:1282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8476 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 223.246610][ T28] audit: type=1326 audit(1758241064.899:1283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8476 comm="syz.3.891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 223.894653][ T8488] hub 1-0:1.0: USB hub found [ 223.894771][ T8486] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12 [ 223.909079][ T8486] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12 [ 223.911641][ T8488] hub 1-0:1.0: 1 port detected [ 223.918629][ T8486] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 224.129418][ T8494] syz.2.896[8494] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 224.129540][ T8494] syz.2.896[8494] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 224.318313][ T28] audit: type=1326 audit(1758241066.289:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.3.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 224.392676][ T28] audit: type=1326 audit(1758241066.289:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.3.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 224.448782][ T28] audit: type=1326 audit(1758241066.289:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.3.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 224.492380][ T28] audit: type=1326 audit(1758241066.289:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8500 comm="syz.3.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3ab38eba9 code=0x7ffc0000 [ 224.838240][ T8519] netlink: 'syz.3.909': attribute type 4 has an invalid length. [ 224.851842][ T8519] netlink: 152 bytes leftover after parsing attributes in process `syz.3.909'. [ 224.893835][ T8519] .`: renamed from bond0 (while UP) [ 225.686214][ T8536] lo speed is unknown, defaulting to 1000 [ 225.940938][ T8547] netlink: 48 bytes leftover after parsing attributes in process `syz.3.920'. [ 226.172950][ T8556] syz.3.925[8556] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 226.173070][ T8556] syz.3.925[8556] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 226.601242][ T8565] IPVS: dh: UDP 224.0.0.2:0 - no destination available [ 226.620451][ T5828] IPVS: starting estimator thread 0... [ 226.718976][ T8571] IPVS: using max 19 ests per chain, 45600 per kthread [ 227.600667][ T8604] tipc: Started in network mode [ 227.605585][ T8604] tipc: Node identity 9ae70037c9f1, cluster identity 4711 [ 227.613039][ T8604] tipc: Enabled bearer , priority 0 [ 227.628577][ T8604] tipc: Disabling bearer [ 227.638237][ T8609] sch_tbf: burst 3298 is lower than device lo mtu (11337746) ! [ 227.819265][ T8611] loop1: detected capacity change from 0 to 1024 [ 227.864595][ T8611] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 227.875185][ T8614] netlink: 4 bytes leftover after parsing attributes in process `syz.3.949'. [ 227.887006][ T8611] ext4 filesystem being mounted at /267/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 227.906971][ T8617] loop0: detected capacity change from 0 to 1024 [ 227.927122][ T8617] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 227.938509][ T8617] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 227.953279][ T8617] JBD2: no valid journal superblock found [ 227.959327][ T28] audit: type=1326 audit(1758241069.919:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8610 comm="syz.1.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f47f2f85b67 code=0x7ffc0000 [ 227.959382][ T28] audit: type=1326 audit(1758241069.919:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8610 comm="syz.1.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f47f2f2ada9 code=0x7ffc0000 [ 227.959420][ T28] audit: type=1326 audit(1758241069.919:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8610 comm="syz.1.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f47f2f85b67 code=0x7ffc0000 [ 227.959457][ T28] audit: type=1326 audit(1758241069.919:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8610 comm="syz.1.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f47f2f2ada9 code=0x7ffc0000 [ 227.959494][ T28] audit: type=1326 audit(1758241069.919:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8610 comm="syz.1.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f47f2f85b67 code=0x7ffc0000 [ 227.959529][ T28] audit: type=1326 audit(1758241069.919:1293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8610 comm="syz.1.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f47f2f2ada9 code=0x7ffc0000 [ 228.063773][ T8617] EXT4-fs (loop0): Could not load journal inode [ 228.094808][ T28] audit: type=1326 audit(1758241069.919:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8610 comm="syz.1.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f47f2f85b67 code=0x7ffc0000 [ 228.094855][ T28] audit: type=1326 audit(1758241069.919:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8610 comm="syz.1.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f47f2f2ada9 code=0x7ffc0000 [ 228.094890][ T28] audit: type=1326 audit(1758241069.929:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8610 comm="syz.1.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f47f2f8eba9 code=0x7ffc0000 [ 228.168613][ T28] audit: type=1326 audit(1758241069.929:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8610 comm="syz.1.947" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f47f2f85b67 code=0x7ffc0000 [ 228.272461][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.527554][ T8634] loop0: detected capacity change from 0 to 512 [ 228.567018][ T8634] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 228.599004][ T8634] ext4 filesystem being mounted at /225/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 228.648606][ T8634] netlink: 'syz.0.956': attribute type 10 has an invalid length. [ 228.693794][ T8634] team0: Device hsr_slave_0 failed to register rx_handler [ 228.759842][ T8643] netlink: 3 bytes leftover after parsing attributes in process `syz.1.961'. [ 228.760610][ T8641] loop3: detected capacity change from 0 to 512 [ 228.783168][ T8643] batadv1: entered promiscuous mode [ 228.788526][ T8643] batadv1: entered allmulticast mode [ 228.809405][ T8641] EXT4-fs (loop3): orphan cleanup on readonly fs [ 228.835762][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.835880][ T8641] EXT4-fs warning (device loop3): ext4_xattr_inode_get:559: inode #11: comm syz.3.959: EA inode hash validation failed [ 228.836444][ T8641] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2867: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 228.836782][ T8641] ------------[ cut here ]------------ [ 228.836894][ T8641] EA inode 11 ref_count=-1 [ 228.837101][ T8641] WARNING: CPU: 0 PID: 8641 at fs/ext4/xattr.c:1065 ext4_xattr_inode_update_ref+0x483/0x580 [ 228.837144][ T8641] Modules linked in: [ 228.837167][ T8641] CPU: 0 PID: 8641 Comm: syz.3.959 Not tainted syzkaller #0 [ 228.837186][ T8641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 228.837202][ T8641] RIP: 0010:ext4_xattr_inode_update_ref+0x483/0x580 [ 228.837229][ T8641] Code: 24 50 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 cf 43 9a ff 49 8b 36 48 c7 c7 c0 d0 be 8a 48 89 da e8 6d 74 0d ff <0f> 0b 4c 8b 64 24 18 48 8b 5c 24 10 4c 8d 7c 24 60 e9 d0 fe ff ff [ 228.837246][ T8641] RSP: 0018:ffffc9000392f340 EFLAGS: 00010246 [ 228.837288][ T8641] RAX: de29bbfb26eaf000 RBX: ffffffffffffffff RCX: 0000000000080000 [ 228.837304][ T8641] RDX: ffffc9000da4c000 RSI: 000000000002684a RDI: 000000000002684b [ 228.837317][ T8641] RBP: ffffc9000392f430 R08: ffffffff90da7677 R09: 1ffffffff21b4ece [ 228.837333][ T8641] R10: dffffc0000000000 R11: fffffbfff21b4ecf R12: ffff8880590c66b0 [ 228.837347][ T8641] R13: dffffc0000000000 R14: ffff8880590c6700 R15: ffffc9000392f3a0 [ 228.837363][ T8641] FS: 00007fa3ac1746c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 228.837381][ T8641] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 228.837396][ T8641] CR2: 000000110c38aa0e CR3: 000000007655b000 CR4: 00000000003506f0 [ 228.837412][ T8641] Call Trace: [ 228.837421][ T8641] [ 228.837442][ T8641] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 228.837471][ T8641] ? __ext4_journal_ensure_credits+0x30/0x450 [ 228.837498][ T8641] ext4_xattr_inode_dec_ref_all+0xa2b/0xf90 [ 228.837535][ T8641] ? ext4_xattr_delete_inode+0xc00/0xc00 [ 228.837561][ T8641] ? __ext4_journal_ensure_credits+0x450/0x450 [ 228.837595][ T8641] ext4_xattr_delete_inode+0xa45/0xc00 [ 228.837623][ T8641] ? ext4_truncate+0xc12/0x1060 [ 228.837652][ T8641] ? ext4_expand_extra_isize_ea+0x19e0/0x19e0 [ 228.837688][ T8641] ext4_evict_inode+0xaa3/0xea0 [ 228.837708][ T8641] ? _raw_spin_unlock+0x28/0x40 [ 228.837738][ T8641] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 228.837765][ T8641] ? do_raw_spin_unlock+0x121/0x230 [ 228.837789][ T8641] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 228.837811][ T8641] evict+0x486/0x870 [ 228.837829][ T8641] ? __lock_acquire+0x7c80/0x7c80 [ 228.837857][ T8641] ? proc_nr_inodes+0x230/0x230 [ 228.837877][ T8641] ? do_raw_spin_unlock+0x121/0x230 [ 228.837902][ T8641] ? _raw_spin_unlock+0x28/0x40 [ 228.837919][ T8641] ? iput+0x70a/0x920 [ 228.837943][ T8641] ext4_orphan_cleanup+0xbd4/0x1400 [ 228.837980][ T8641] ? ext4_orphan_del+0xba0/0xba0 [ 228.838005][ T8641] ? ext4_register_li_request+0x183/0x940 [ 228.838028][ T8641] ? errseq_check_and_advance+0x66/0x120 [ 228.838052][ T8641] ext4_fill_super+0x5de7/0x66c0 [ 228.838093][ T8641] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 228.838116][ T8641] ? vscnprintf+0x80/0x80 [ 228.838140][ T8641] ? down_read_killable+0x340/0x340 [ 228.838169][ T8641] ? setup_bdev_super+0x56b/0x660 [ 228.838192][ T8641] get_tree_bdev+0x3e4/0x510 [ 228.838210][ T8641] ? vfs_parse_fs_string+0x160/0x160 [ 228.838231][ T8641] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 228.838253][ T8641] ? setup_bdev_super+0x660/0x660 [ 228.838281][ T8641] ? apparmor_capable+0x137/0x1a0 [ 228.838302][ T8641] ? bpf_lsm_capable+0x9/0x10 [ 228.838325][ T8641] ? security_capable+0x89/0xb0 [ 228.838348][ T8641] vfs_get_tree+0x8c/0x280 [ 228.838367][ T8641] do_new_mount+0x24b/0xa40 [ 228.838394][ T8641] __se_sys_mount+0x2da/0x3c0 [ 228.838417][ T8641] ? __x64_sys_mount+0xc0/0xc0 [ 228.838438][ T8641] ? lockdep_hardirqs_on+0x98/0x150 [ 228.838462][ T8641] ? __x64_sys_mount+0x20/0xc0 [ 228.838482][ T8641] do_syscall_64+0x55/0xb0 [ 228.838502][ T8641] ? clear_bhb_loop+0x40/0x90 [ 228.838518][ T8641] ? clear_bhb_loop+0x40/0x90 [ 228.838537][ T8641] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 228.838563][ T8641] RIP: 0033:0x7fa3ab39034a [ 228.838590][ T8641] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.838607][ T8641] RSP: 002b:00007fa3ac173e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 228.838631][ T8641] RAX: ffffffffffffffda RBX: 00007fa3ac173ef0 RCX: 00007fa3ab39034a [ 228.838645][ T8641] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fa3ac173eb0 [ 228.838659][ T8641] RBP: 0000200000000180 R08: 00007fa3ac173ef0 R09: 000000000080078b [ 228.838755][ T8641] R10: 000000000080078b R11: 0000000000000246 R12: 00002000000001c0 [ 228.838770][ T8641] R13: 00007fa3ac173eb0 R14: 0000000000000473 R15: 0000200000000680 [ 228.838803][ T8641] [ 228.838813][ T8641] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 228.838824][ T8641] CPU: 0 PID: 8641 Comm: syz.3.959 Not tainted syzkaller #0 [ 228.838841][ T8641] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 228.838851][ T8641] Call Trace: [ 228.838858][ T8641] [ 228.838865][ T8641] dump_stack_lvl+0x16c/0x230 [ 228.838891][ T8641] ? show_regs_print_info+0x20/0x20 [ 228.838911][ T8641] ? load_image+0x3b0/0x3b0 [ 228.838942][ T8641] panic+0x2c0/0x710 [ 228.838970][ T8641] ? bpf_jit_dump+0xd0/0xd0 [ 228.839011][ T8641] __warn+0x2e0/0x470 [ 228.839031][ T8641] ? ext4_xattr_inode_update_ref+0x483/0x580 [ 228.839055][ T8641] ? ext4_xattr_inode_update_ref+0x483/0x580 [ 228.839077][ T8641] report_bug+0x2be/0x4f0 [ 228.839096][ T8641] ? ext4_xattr_inode_update_ref+0x483/0x580 [ 228.839119][ T8641] ? ext4_xattr_inode_update_ref+0x483/0x580 [ 228.839140][ T8641] ? ext4_xattr_inode_update_ref+0x485/0x580 [ 228.839162][ T8641] handle_bug+0xcf/0x120 [ 228.839182][ T8641] exc_invalid_op+0x1a/0x50 [ 228.839202][ T8641] asm_exc_invalid_op+0x1a/0x20 [ 228.839217][ T8641] RIP: 0010:ext4_xattr_inode_update_ref+0x483/0x580 [ 228.839240][ T8641] Code: 24 50 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 cf 43 9a ff 49 8b 36 48 c7 c7 c0 d0 be 8a 48 89 da e8 6d 74 0d ff <0f> 0b 4c 8b 64 24 18 48 8b 5c 24 10 4c 8d 7c 24 60 e9 d0 fe ff ff [ 228.839255][ T8641] RSP: 0018:ffffc9000392f340 EFLAGS: 00010246 [ 228.839283][ T8641] RAX: de29bbfb26eaf000 RBX: ffffffffffffffff RCX: 0000000000080000 [ 228.839295][ T8641] RDX: ffffc9000da4c000 RSI: 000000000002684a RDI: 000000000002684b [ 228.839307][ T8641] RBP: ffffc9000392f430 R08: ffffffff90da7677 R09: 1ffffffff21b4ece [ 228.839321][ T8641] R10: dffffc0000000000 R11: fffffbfff21b4ecf R12: ffff8880590c66b0 [ 228.839334][ T8641] R13: dffffc0000000000 R14: ffff8880590c6700 R15: ffffc9000392f3a0 [ 228.839372][ T8641] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 228.839402][ T8641] ? __ext4_journal_ensure_credits+0x30/0x450 [ 228.839428][ T8641] ext4_xattr_inode_dec_ref_all+0xa2b/0xf90 [ 228.839466][ T8641] ? ext4_xattr_delete_inode+0xc00/0xc00 [ 228.839491][ T8641] ? __ext4_journal_ensure_credits+0x450/0x450 [ 228.839521][ T8641] ext4_xattr_delete_inode+0xa45/0xc00 [ 228.839546][ T8641] ? ext4_truncate+0xc12/0x1060 [ 228.839571][ T8641] ? ext4_expand_extra_isize_ea+0x19e0/0x19e0 [ 228.839607][ T8641] ext4_evict_inode+0xaa3/0xea0 [ 228.839625][ T8641] ? _raw_spin_unlock+0x28/0x40 [ 228.839653][ T8641] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 228.839677][ T8641] ? do_raw_spin_unlock+0x121/0x230 [ 228.839700][ T8641] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 228.839720][ T8641] evict+0x486/0x870 [ 228.839737][ T8641] ? __lock_acquire+0x7c80/0x7c80 [ 228.839762][ T8641] ? proc_nr_inodes+0x230/0x230 [ 228.839780][ T8641] ? do_raw_spin_unlock+0x121/0x230 [ 228.839803][ T8641] ? _raw_spin_unlock+0x28/0x40 [ 228.839818][ T8641] ? iput+0x70a/0x920 [ 228.839842][ T8641] ext4_orphan_cleanup+0xbd4/0x1400 [ 228.839877][ T8641] ? ext4_orphan_del+0xba0/0xba0 [ 228.839902][ T8641] ? ext4_register_li_request+0x183/0x940 [ 228.839924][ T8641] ? errseq_check_and_advance+0x66/0x120 [ 228.839946][ T8641] ext4_fill_super+0x5de7/0x66c0 [ 228.839989][ T8641] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 228.840011][ T8641] ? vscnprintf+0x80/0x80 [ 228.840030][ T8641] ? down_read_killable+0x340/0x340 [ 228.840058][ T8641] ? setup_bdev_super+0x56b/0x660 [ 228.840078][ T8641] get_tree_bdev+0x3e4/0x510 [ 228.840094][ T8641] ? vfs_parse_fs_string+0x160/0x160 [ 228.840114][ T8641] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 228.840134][ T8641] ? setup_bdev_super+0x660/0x660 [ 228.840150][ T8641] ? apparmor_capable+0x137/0x1a0 [ 228.840168][ T8641] ? bpf_lsm_capable+0x9/0x10 [ 228.840190][ T8641] ? security_capable+0x89/0xb0 [ 228.840212][ T8641] vfs_get_tree+0x8c/0x280 [ 228.840230][ T8641] do_new_mount+0x24b/0xa40 [ 228.840254][ T8641] __se_sys_mount+0x2da/0x3c0 [ 228.840289][ T8641] ? __x64_sys_mount+0xc0/0xc0 [ 228.840309][ T8641] ? lockdep_hardirqs_on+0x98/0x150 [ 228.840336][ T8641] ? __x64_sys_mount+0x20/0xc0 [ 228.840353][ T8641] do_syscall_64+0x55/0xb0 [ 228.840370][ T8641] ? clear_bhb_loop+0x40/0x90 [ 228.840385][ T8641] ? clear_bhb_loop+0x40/0x90 [ 228.840403][ T8641] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 228.840429][ T8641] RIP: 0033:0x7fa3ab39034a [ 228.840444][ T8641] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 228.840458][ T8641] RSP: 002b:00007fa3ac173e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 228.840475][ T8641] RAX: ffffffffffffffda RBX: 00007fa3ac173ef0 RCX: 00007fa3ab39034a [ 228.840488][ T8641] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fa3ac173eb0 [ 228.840500][ T8641] RBP: 0000200000000180 R08: 00007fa3ac173ef0 R09: 000000000080078b [ 228.840512][ T8641] R10: 000000000080078b R11: 0000000000000246 R12: 00002000000001c0 [ 228.840524][ T8641] R13: 00007fa3ac173eb0 R14: 0000000000000473 R15: 0000200000000680 [ 228.840552][ T8641] [ 228.848729][ T8641] Kernel Offset: disabled