last executing test programs: 10.167837087s ago: executing program 3 (id=90): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2010846, &(0x7f0000000b00), 0x1, 0x55f, &(0x7f0000000580)="$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") openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40) open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(0xffffffffffffffff, 0xf502, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newtaction={0x898, 0x32, 0xffff, 0x70bd2d, 0x0, {}, [{0x884, 0x1, [@m_police={0x880, 0x1, 0x0, 0x0, {{0xb}, {0x854, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE64={0xc, 0xb, 0xffffffffffffffff}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, 0x2, 0x4000, 0x0, 0x0, 0x9, 0x0, 0x1d, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x6, 0x0, 0x8000, 0x6, 0x0, 0x4e16, 0x4, 0x0, 0x9, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000002, 0x0, 0x0, 0xffffffff, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, 0x8000000, 0x4, 0x2, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x4, 0xfffffffe, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x10, 0x0, 0x6, 0x8a, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x3, 0x0, 0x3, 0x0, 0x0, 0x1ff, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xb7fe6bd0, 0x6, 0x1ffffffe, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffc, 0x0, 0x6, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x402, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x3a4f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x4, 0x0, 0x0, 0x3, 0x894e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x4000000, 0x9, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4000000, 0x9, 0x0, 0x800, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x400400, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x10, 0x0, 0x8, 0x7, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xffffffff, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4, 0x80000, 0x0, 0x0, 0x319e, 0x4, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffc, 0x0, 0x4, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x401]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x200001, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x4, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x5, 0xc}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x898}}, 0x0) 9.700750993s ago: executing program 3 (id=93): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000044, &(0x7f00000003c0), 0x1, 0x55e, &(0x7f0000001bc0)="$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") r0 = open(&(0x7f0000000200)='./file1\x00', 0x4a07e, 0xdc) fallocate(r0, 0x0, 0x0, 0x8800000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x183042, 0x15) pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xe7c) 8.256098325s ago: executing program 3 (id=102): bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0x18000000000002a0, 0xe, 0x0, &(0x7f00000002c0)="b9ff03076003008cb89e08f086dd", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000001600)={&(0x7f0000000340)="d8aa188d863b33f99f", 0x0, 0x0, 0x0}, 0x38) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000850000002a0000"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 5.019456017s ago: executing program 3 (id=106): prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) socketpair$unix(0x1, 0x3, 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x5, 0x9, 0x6, 0x0, 0xb49, 0x9, 0x8, 0x2, 0x3}, 0x0) socket(0x1e, 0x4, 0x0) socket(0x1e, 0x2, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) sched_setattr(0x0, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x200) ioctl$KVM_SET_MSRS(r0, 0x4008ae89, 0x0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc) syz_genetlink_get_family_id$batadv(&(0x7f0000000140), 0xffffffffffffffff) r2 = socket$inet6(0xa, 0x80003, 0x6) connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0xfffd, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x1, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@broadcast, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8) sendmmsg(r2, &(0x7f0000000480), 0x2e9, 0x0) r3 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r3, &(0x7f00000001c0)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="020100000a0000000600000000000000030006000000000002000000ffffffff0000000000000000030005000000000002000000ac1e00010000000000000000020013"], 0x50}}, 0x0) r4 = syz_usb_connect(0x0, 0x36, &(0x7f0000000540)=ANY=[@ANYBLOB="120141014813442024040075ee69010203010902240001000010000904b8070259d1ca000905060200020d0006090582020002"], 0x0) syz_usb_control_io$uac1(r4, 0x0, 0x0) syz_usb_control_io(r4, 0x0, &(0x7f0000000480)={0x84, &(0x7f0000000940)={0x40, 0xa, 0x4, "a0e763a8"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 4.707960801s ago: executing program 1 (id=109): userfaultfd(0x80001) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000001840)={0x1, &(0x7f0000001880)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x2000077d, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg$inet(r0, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000002c0)="6321a1780e3fe8d9098f1f28f3c1f1895857b6b4afebba414b5998fa7c73702eb715d85b6a7709a53bf91325a9fbf7387371592c3533a8a34a28e9364405bb05cdeedb9ddfbe45a6933c33e5019991d691e8e8817a584f5392630d34c12a00aac5c546266df9fbb755447a0ff32acb32fc4b9c54b7fa15f82a9848478df5354f7158ece711c634aead9f427b8a3e580b3bd0920814473069f285753c945e0baa9072f76c542acf2986649075a243126f6d736b8bfa9a88672388eaa7902fc6c9a3c1b2781d", 0xc5}], 0x1}}], 0x1, 0x20000001) recvmmsg(r0, &(0x7f0000005b00)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000700)=""/242, 0xf2}], 0x1}, 0x4}, {{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f00000005c0)=""/262, 0x106}], 0x1}, 0x8}], 0x2, 0x20, 0x0) writev(r0, &(0x7f0000000840)=[{&(0x7f0000000240)="150f1af82ddda258ec7e22e5be4761314d089a19758d151924", 0x19}, {&(0x7f00000018c0)="f9c2f06ad9a9f1c4e4c798e577ed142636bf0f25be83a62236e4dddd50f0797ccea4b9e909e170f22a10445e2a4b7bf3ffca22742033cbc159f11df7ed000bffb271036525234eeb8b2322e6e66c645ab7f22598e5bdfd23ef6088254072cc9d4665b93878f03cb27a3b3b918167e9c451bbc07d26999950fa24d67d9b2ae7311db096d68c2563d74568ec7e4e93962b86d20d2ce83569", 0x97}], 0x2) sendmmsg$sock(r0, &(0x7f00000000c0)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="d1a797c2b46d80cf49939ed1045d08831ff06923aa18e224bc2495b7a1", 0x1d}], 0x1}}], 0x1, 0x4c000) 4.526193619s ago: executing program 2 (id=110): openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0) syz_clone3(&(0x7f00000004c0)={0x1000, 0x0, 0x0, 0x0, {0x2b}, 0x0, 0x0, 0x0, 0x0}, 0x58) 4.446926665s ago: executing program 1 (id=111): r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000140)=0xfffffff4, 0x4) bind$inet6(r0, &(0x7f0000f65000)={0xa, 0x4e20, 0x97f, @loopback, 0x1}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0xfffffefffbfbbfbe, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c) getsockopt$inet6_buf(r0, 0x29, 0x6, 0x0, &(0x7f0000000080)) 4.183957238s ago: executing program 1 (id=112): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000280)=[{0x6, 0x5, 0x7, 0x7ffc0001}]}) readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0) 4.183632018s ago: executing program 2 (id=113): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2010846, &(0x7f0000000b00), 0x1, 0x55f, &(0x7f0000000580)="$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") openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40) open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(0xffffffffffffffff, 0xf502, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newtaction={0x898, 0x32, 0xffff, 0x70bd2d, 0x0, {}, [{0x884, 0x1, [@m_police={0x880, 0x1, 0x0, 0x0, {{0xb}, {0x854, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE64={0xc, 0xb, 0xffffffffffffffff}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, 0x2, 0x4000, 0x0, 0x0, 0x9, 0x0, 0x1d, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x6, 0x0, 0x8000, 0x6, 0x0, 0x4e16, 0x4, 0x0, 0x9, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000002, 0x0, 0x0, 0xffffffff, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, 0x8000000, 0x4, 0x2, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x4, 0xfffffffe, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x10, 0x0, 0x6, 0x8a, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x3, 0x0, 0x3, 0x0, 0x0, 0x1ff, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xb7fe6bd0, 0x6, 0x1ffffffe, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffc, 0x0, 0x6, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x402, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x3a4f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x4, 0x0, 0x0, 0x3, 0x894e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x4000000, 0x9, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4000000, 0x9, 0x0, 0x800, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x400400, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x10, 0x0, 0x8, 0x7, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xffffffff, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4, 0x80000, 0x0, 0x0, 0x319e, 0x4, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffc, 0x0, 0x4, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x401]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x200001, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x4, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x5, 0xc}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x898}}, 0x0) 3.964671739s ago: executing program 1 (id=115): rt_sigprocmask(0x0, &(0x7f0000000100)={[0xfffffffffffe]}, 0x0, 0x8) syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000100)='./file1\x00', 0x200c817, &(0x7f0000000280)=ANY=[@ANYBLOB="fd3b1466d8f0ff2b7cbe7e4bdf1c8915470b1d0552ac190bb6806be44943af8ffb396885bbd9e4aeb457a36c0a67bf090eba5aa6661d8fa9de2dfbe2f87d5c8cd92cec29d40362926d2403ed3e5c3048697bd5ce3838dd413196eb87e160", @ANYRES64, @ANYRES8, @ANYRESHEX, @ANYRES16, @ANYRES32, @ANYRES16], 0x2, 0x216, &(0x7f0000000400)="$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") sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4010) r0 = gettid() timer_create(0x9, &(0x7f0000000180)={0x0, 0x1e, 0x4, @tid=r0}, &(0x7f00000000c0)) timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) rt_sigsuspend(&(0x7f0000000000)={[0xff]}, 0x8) ioctl$PIO_UNIMAPCLR(0xffffffffffffffff, 0x4b68, 0x0) 3.025008821s ago: executing program 0 (id=116): mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0xa5) prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$tipc(0x1e, 0x5, 0x0) sendmsg$tipc(r3, &(0x7f00000005c0)={&(0x7f0000000000), 0x10, 0x0}, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0) r4 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x0, 0x0, 0x1, 0x1}, 0x21) r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r5, 0xaf01, 0x0) r6 = eventfd2(0xffffffff, 0x80000) ioctl$VHOST_SET_VRING_CALL(r5, 0x4008af21, &(0x7f0000000040)={0x0, r6}) r7 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) close_range(r7, 0xffffffffffffffff, 0x0) 2.995254325s ago: executing program 2 (id=117): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, 0x0, 0x0) 2.68391261s ago: executing program 1 (id=118): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_SET_CLOCK(r1, 0x4030ae7b, &(0x7f0000000100)={0x4, 0x0, 0xfffffff8, 0xfffffffffffffff7, 0xffff}) 1.964239842s ago: executing program 2 (id=119): userfaultfd(0x80001) r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000001840)={0x1, &(0x7f0000001880)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x2000077d, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg$inet(r0, &(0x7f0000001340)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f00000002c0)="6321a1780e3fe8d9098f1f28f3c1f1895857b6b4afebba414b5998fa7c73702eb715d85b6a7709a53bf91325a9fbf7387371592c3533a8a34a28e9364405bb05cdeedb9ddfbe45a6933c33e5019991d691e8e8817a584f5392630d34c12a00aac5c546266df9fbb755447a0ff32acb32fc4b9c54b7fa15f82a9848478df5354f7158ece711c634aead9f427b8a3e580b3bd0920814473069f285753c945e0baa9072f76c542acf2986649075a243126f6d736b8bfa9a88672388eaa7902fc6c9a3c1b2781d", 0xc5}], 0x1}}], 0x1, 0x20000001) recvmmsg(r0, &(0x7f0000005b00)=[{{0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000700)=""/242, 0xf2}], 0x1}, 0x4}, {{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f00000005c0)=""/262, 0x106}], 0x1}, 0x8}], 0x2, 0x20, 0x0) writev(r0, &(0x7f0000000840)=[{&(0x7f0000000240)="150f1af82ddda258ec7e22e5be4761314d089a19758d151924", 0x19}, {&(0x7f00000018c0)="f9c2f06ad9a9f1c4e4c798e577ed142636bf0f25be83a62236e4dddd50f0797ccea4b9e909e170f22a10445e2a4b7bf3ffca22742033cbc159f11df7ed000bffb271036525234eeb8b2322e6e66c645ab7f22598e5bdfd23ef6088254072cc9d4665b93878f03cb27a3b3b918167e9c451bbc07d26999950fa24d67d9b2ae7311db096d68c2563d74568ec7e4e93962b86d20d2ce835692d8810dabc4ea4b33d70d8", 0xa2}], 0x2) sendmmsg$sock(r0, &(0x7f00000000c0)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000140)="d1a797c2b46d80cf49939ed1045d08831ff06923aa18e224bc2495b7a1", 0x1d}], 0x1}}], 0x1, 0x4c000) 1.89984043s ago: executing program 0 (id=120): r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000140)=0xfffffff4, 0x4) bind$inet6(r0, &(0x7f0000f65000)={0xa, 0x4e20, 0x97f, @loopback, 0x1}, 0x1c) sendto$inet6(r0, 0x0, 0x0, 0xfffffefffbfbbfbe, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c) getsockopt$inet6_buf(r0, 0x29, 0x6, 0x0, &(0x7f0000000080)) 1.759740434s ago: executing program 1 (id=121): r0 = socket$nl_audit(0x10, 0x3, 0x9) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@textreal={0x8, &(0x7f0000000480)="b8ed0b8ee8ba6100ec0fb08900013e3664660fef8b0eceb802008ee80fc71fc4e391cf0f0b650f011965650fc761242f", 0x30}], 0x1, 0x74, 0x0, 0x0) r1 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001) syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2004006, &(0x7f0000001180)=ANY=[@ANYBLOB='rodir,utf8=0,nonumtail=0,uni_xlate=1,utf8=1,shortname=mixed,utf8=0,shortname=mixed,shortname=winnt,iocharset=mn,shortname=winnt,uni_xlate=1,iocharset=default,shortname=lower,shortname=mixed,\x00\x00\x00\x00\x00\x00\x00'], 0x25, 0x36e, &(0x7f0000000ac0)="$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") r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_misc(r2, &(0x7f0000000040), 0xe09) ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r2, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x14, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d960001000000000000000000007efff100004000", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c527d3d458dd4992861ac00", "f4bd000000801900", [0x8, 0xffffffff9673e35d]}}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf32(r3, &(0x7f0000000580)=ANY=[@ANYBLOB="7f454c462f02034201000080000000000200060014000000630000003800000081020000020000000000200003006200070005000000002006000000f7ffff803dffffff03000000feffffffffffffff1374b04a0500000005000000090000000100000000000000380000000c000000080000000600000003"], 0x98) bind$inet6(0xffffffffffffffff, 0x0, 0x0) close(r3) execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000) r4 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="09000000040000000c0000000b"], 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800"/14, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000640)={{0x8000000, 0x4, 0x8, 0x7f, 0x2, 0x7, 0x9b, 0x1, 0x3, 0x7f, 0xd, 0x1}, {0x58000, 0x70000, 0xc, 0x4, 0xb, 0x5, 0x40, 0xff, 0x2, 0x6, 0xbc, 0x5}, {0xe000, 0xfec00000, 0xe, 0x4, 0x6, 0x7, 0x63, 0x7, 0x5, 0xb, 0x6, 0x6}, {0x2000, 0xb000, 0xf, 0x6, 0x6, 0x80, 0x7, 0x6, 0x2, 0xc6, 0x5, 0x5}, {0x8000000, 0xeeee8000, 0xb, 0x2, 0x49, 0x1, 0x0, 0xbf, 0x3, 0x1, 0x9, 0x7}, {0x30000, 0xdddd1000, 0x4, 0x36, 0x3, 0x7, 0xcb, 0x7, 0x6, 0xd, 0x2, 0xc9}, {0xa000, 0x40000, 0xb, 0x5, 0x9, 0x1, 0x4, 0x1, 0x97, 0x3, 0x3, 0x5}, {0x54000, 0x8000000, 0x10, 0x3, 0xd8, 0x7, 0x3, 0x2, 0x1b, 0x5, 0x5, 0x4}, {0x9000, 0x2}, {0xd000, 0xf}, 0x39, 0x0, 0xe000, 0x20000, 0x6, 0x400, 0x4000, [0x5, 0x9, 0x7, 0x80000001]}) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r5 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r6, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e) sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)=@getqdisc={0x24, 0x26, 0x705, 0x70bf2b, 0x5, {0x0, 0x0, 0x0, 0x0, {0xffff, 0xffe0}, {0xc, 0x78bbe9f1cfa0a994}, {0xfff2, 0x7}}}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x20004000) read$FUSE(r8, &(0x7f0000000c00)={0x2020}, 0x3de) ioctl$BTRFS_IOC_BALANCE(r0, 0x5000940c, 0x0) 1.701492344s ago: executing program 0 (id=122): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) setuid(0x0) 1.583332413s ago: executing program 0 (id=123): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) close_range(r0, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0x1, 0x16, 0x8, 0x9, 0x89}, 0x48) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='freezer.state\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000240)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) 1.439986298s ago: executing program 3 (id=124): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) listen(r3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) connect$unix(r4, &(0x7f0000000000)=@file={0x1}, 0x6e) 1.33971956s ago: executing program 0 (id=125): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2010846, &(0x7f0000000b00), 0x1, 0x55f, &(0x7f0000000580)="$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") openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40) open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x1) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(0xffffffffffffffff, 0xf502, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newtaction={0x898, 0x32, 0xffff, 0x70bd2d, 0x0, {}, [{0x884, 0x1, [@m_police={0x880, 0x1, 0x0, 0x0, {{0xb}, {0x854, 0x2, 0x0, 0x1, [[@TCA_POLICE_PEAKRATE64={0xc, 0xb, 0xffffffffffffffff}, @TCA_POLICE_RATE={0x404, 0x2, [0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, 0x2, 0x4000, 0x0, 0x0, 0x9, 0x0, 0x1d, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x6, 0x0, 0x8000, 0x6, 0x0, 0x4e16, 0x4, 0x0, 0x9, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000002, 0x0, 0x0, 0xffffffff, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, 0x8000000, 0x4, 0x2, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x4, 0xfffffffe, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0x10, 0x0, 0x6, 0x8a, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x3, 0x0, 0x3, 0x0, 0x0, 0x1ff, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0xb7fe6bd0, 0x6, 0x1ffffffe, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x98, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffc, 0x0, 0x6, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]}, @TCA_POLICE_PEAKRATE={0x404, 0x3, [0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x402, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x3a4f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x4, 0x0, 0x0, 0x3, 0x894e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x6, 0x0, 0x5, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x4000000, 0x9, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4000000, 0x9, 0x0, 0x800, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x400400, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x10, 0x0, 0x8, 0x7, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0xfffffffb, 0x0, 0x3, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xffffffff, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x4, 0x80000, 0x0, 0x0, 0x319e, 0x4, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffc, 0x0, 0x4, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x401]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x0, 0x200001, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x4, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0x5, 0xc}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x898}}, 0x0) 387.24065ms ago: executing program 3 (id=126): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800718, &(0x7f0000000200)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x47f, &(0x7f00000004c0)="$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") r0 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f0000000300)='./file0\x00', 0x40000, &(0x7f0000000980)={{}, 0x2c, {'rootmode', 0x3d, 0x1000}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[], [{@dont_measure}, {@dont_appraise}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@audit}, {@appraise}]}}, 0x0, 0x0, &(0x7f0000000b80)) ioctl$FS_IOC_GET_ENCRYPTION_POLICY_EX(r0, 0xc0096616, 0x0) 335.693431ms ago: executing program 2 (id=127): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00000001c0)={0x500, 0x0, 0x0}, 0x0) 322.992819ms ago: executing program 0 (id=128): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000080)={0x1, &(0x7f00000003c0)=[{0x6, 0x0, 0x3, 0x7fff0004}]}) rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]}) 0s ago: executing program 2 (id=129): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000f00), 0xc03, 0x0) ioctl$UI_SET_KEYBIT(r0, 0x40045565, 0x2b7) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.0.32' (ED25519) to the list of known hosts. [ 63.759343][ T5759] cgroup: Unknown subsys name 'net' [ 63.893549][ T5759] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 65.310849][ T5759] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 66.726131][ T5780] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 66.727520][ T5783] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 66.734588][ T5780] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 66.748654][ T5783] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 66.759171][ T5783] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 66.767026][ T5785] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 66.767423][ T5783] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 66.782060][ T5785] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 66.782588][ T5783] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 66.798970][ T5783] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 66.804559][ T5782] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 66.806929][ T5783] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 66.815061][ T5782] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 66.827971][ T5785] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 66.836933][ T5785] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 66.844970][ T5782] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 66.855626][ T5085] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 66.861388][ T5785] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 66.869816][ T5085] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 66.870159][ T5785] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 66.885810][ T5785] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 66.893774][ T5785] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 66.901850][ T5785] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 66.910638][ T5785] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 67.245433][ T5774] chnl_net:caif_netlink_parms(): no params data found [ 67.359285][ T5773] chnl_net:caif_netlink_parms(): no params data found [ 67.438319][ T5772] chnl_net:caif_netlink_parms(): no params data found [ 67.477290][ T5774] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.485099][ T5774] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.492814][ T5774] bridge_slave_0: entered allmulticast mode [ 67.500692][ T5774] bridge_slave_0: entered promiscuous mode [ 67.509727][ T5771] chnl_net:caif_netlink_parms(): no params data found [ 67.521659][ T5774] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.529138][ T5774] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.536440][ T5774] bridge_slave_1: entered allmulticast mode [ 67.543420][ T5774] bridge_slave_1: entered promiscuous mode [ 67.634746][ T5773] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.641978][ T5773] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.649291][ T5773] bridge_slave_0: entered allmulticast mode [ 67.655980][ T5773] bridge_slave_0: entered promiscuous mode [ 67.665802][ T5774] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 67.679232][ T5774] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.697091][ T5773] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.704212][ T5773] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.711907][ T5773] bridge_slave_1: entered allmulticast mode [ 67.719077][ T5773] bridge_slave_1: entered promiscuous mode [ 67.795870][ T5773] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 67.808771][ T5774] team0: Port device team_slave_0 added [ 67.821555][ T5772] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.829291][ T5772] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.836466][ T5772] bridge_slave_0: entered allmulticast mode [ 67.843418][ T5772] bridge_slave_0: entered promiscuous mode [ 67.851178][ T5772] bridge0: port 2(bridge_slave_1) entered blocking state [ 67.858418][ T5772] bridge0: port 2(bridge_slave_1) entered disabled state [ 67.865615][ T5772] bridge_slave_1: entered allmulticast mode [ 67.872426][ T5772] bridge_slave_1: entered promiscuous mode [ 67.880938][ T5773] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 67.902014][ T5774] team0: Port device team_slave_1 added [ 67.928639][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state [ 67.935969][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state [ 67.943298][ T5771] bridge_slave_0: entered allmulticast mode [ 67.950013][ T5771] bridge_slave_0: entered promiscuous mode [ 67.984602][ T5773] team0: Port device team_slave_0 added [ 67.993896][ T5773] team0: Port device team_slave_1 added [ 68.000055][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state [ 68.007240][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state [ 68.014498][ T5771] bridge_slave_1: entered allmulticast mode [ 68.021882][ T5771] bridge_slave_1: entered promiscuous mode [ 68.040935][ T5774] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.048011][ T5774] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.074430][ T5774] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.104024][ T5772] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.114433][ T5774] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.121957][ T5774] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.148158][ T5774] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.191522][ T5772] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.213210][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 68.223110][ T5773] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.230349][ T5773] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.256587][ T5773] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.269469][ T5773] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.276439][ T5773] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.303075][ T5773] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.344733][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 68.370887][ T5772] team0: Port device team_slave_0 added [ 68.380213][ T5772] team0: Port device team_slave_1 added [ 68.394470][ T5774] hsr_slave_0: entered promiscuous mode [ 68.401513][ T5774] hsr_slave_1: entered promiscuous mode [ 68.463529][ T5773] hsr_slave_0: entered promiscuous mode [ 68.470091][ T5773] hsr_slave_1: entered promiscuous mode [ 68.476386][ T5773] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 68.484381][ T5773] Cannot create hsr debugfs directory [ 68.513275][ T5771] team0: Port device team_slave_0 added [ 68.524327][ T5771] team0: Port device team_slave_1 added [ 68.530942][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.538199][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.564292][ T5772] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.582029][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.589307][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.615460][ T5772] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.680359][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 68.687382][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.713833][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 68.742595][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 68.749778][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 68.775788][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 68.829830][ T5772] hsr_slave_0: entered promiscuous mode [ 68.836325][ T5772] hsr_slave_1: entered promiscuous mode [ 68.842531][ T5772] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 68.850124][ T5772] Cannot create hsr debugfs directory [ 68.867603][ T5778] Bluetooth: hci0: command tx timeout [ 68.946900][ T5778] Bluetooth: hci3: command tx timeout [ 68.952981][ T51] Bluetooth: hci2: command tx timeout [ 68.952997][ T5785] Bluetooth: hci1: command tx timeout [ 68.992823][ T5771] hsr_slave_0: entered promiscuous mode [ 69.000101][ T5771] hsr_slave_1: entered promiscuous mode [ 69.006129][ T5771] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 69.014607][ T5771] Cannot create hsr debugfs directory [ 69.197707][ T5774] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 69.211511][ T5774] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 69.233783][ T5774] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 69.243525][ T5774] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 69.349845][ T5772] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 69.361876][ T5772] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 69.371999][ T5772] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 69.383023][ T5772] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 69.470447][ T5773] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 69.501161][ T5773] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 69.512654][ T5773] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 69.548846][ T5773] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 69.598615][ T5771] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 69.609872][ T5771] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 69.635436][ T5771] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 69.659171][ T5771] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 69.683576][ T5774] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.745464][ T5774] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.767620][ T5772] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.797156][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.804487][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.831666][ T5772] 8021q: adding VLAN 0 to HW filter on device team0 [ 69.841626][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.848812][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 69.886186][ T5773] 8021q: adding VLAN 0 to HW filter on device bond0 [ 69.904458][ T79] bridge0: port 1(bridge_slave_0) entered blocking state [ 69.911733][ T79] bridge0: port 1(bridge_slave_0) entered forwarding state [ 69.936050][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 69.943331][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.016061][ T5773] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.045482][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.052678][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.075646][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.082781][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.110197][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0 [ 70.211637][ T5771] 8021q: adding VLAN 0 to HW filter on device team0 [ 70.293992][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 70.301213][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 70.313867][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 70.321066][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 70.578041][ T5774] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.618347][ T5772] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.694753][ T5773] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.750074][ T5772] veth0_vlan: entered promiscuous mode [ 70.782887][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 70.810441][ T5772] veth1_vlan: entered promiscuous mode [ 70.832300][ T5774] veth0_vlan: entered promiscuous mode [ 70.845803][ T5773] veth0_vlan: entered promiscuous mode [ 70.865904][ T5774] veth1_vlan: entered promiscuous mode [ 70.891102][ T5773] veth1_vlan: entered promiscuous mode [ 70.909814][ T5772] veth0_macvtap: entered promiscuous mode [ 70.925972][ T5771] veth0_vlan: entered promiscuous mode [ 70.948114][ T51] Bluetooth: hci0: command tx timeout [ 70.971264][ T5772] veth1_macvtap: entered promiscuous mode [ 70.981621][ T5771] veth1_vlan: entered promiscuous mode [ 70.991693][ T5774] veth0_macvtap: entered promiscuous mode [ 71.017338][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.027445][ T51] Bluetooth: hci2: command tx timeout [ 71.031500][ T5774] veth1_macvtap: entered promiscuous mode [ 71.032885][ T5778] Bluetooth: hci3: command tx timeout [ 71.041001][ T5785] Bluetooth: hci1: command tx timeout [ 71.063084][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.088036][ T5772] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.097304][ T5772] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.106003][ T5772] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.115809][ T5772] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.130005][ T5773] veth0_macvtap: entered promiscuous mode [ 71.145559][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.158810][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.170891][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.181157][ T5773] veth1_macvtap: entered promiscuous mode [ 71.204824][ T5774] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.215460][ T5774] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.228819][ T5774] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.263034][ T5774] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.273407][ T5774] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.282622][ T5774] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.294037][ T5774] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.317243][ T5771] veth0_macvtap: entered promiscuous mode [ 71.340039][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.352080][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.365657][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.377037][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.390221][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.400185][ T5771] veth1_macvtap: entered promiscuous mode [ 71.420210][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.433153][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.443763][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.454302][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.465278][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.477457][ T5773] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.486183][ T5773] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.495197][ T5773] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.504249][ T5773] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.609556][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.628955][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.640544][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.651189][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.661116][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 71.675661][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.675712][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.688065][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 71.692882][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.732197][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.743519][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.754598][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.765820][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.776526][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 71.787725][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 71.799363][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 71.811946][ T5771] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.821257][ T5771] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.832113][ T5771] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.841380][ T5771] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 71.867278][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.875271][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.899786][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 71.910989][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 71.985647][ T2963] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.013735][ T2963] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.062920][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.071731][ T2915] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.081930][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.082357][ T2915] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.156351][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.204802][ T79] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.228902][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.236736][ T79] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.274545][ T5836] syz.0.1[5836]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 72.323723][ T5836] loop0: detected capacity change from 0 to 1024 [ 72.348572][ T5836] ======================================================= [ 72.348572][ T5836] WARNING: The mand mount option has been deprecated and [ 72.348572][ T5836] and is ignored by this kernel. Remove the mand [ 72.348572][ T5836] option from the mount to silence this warning. [ 72.348572][ T5836] ======================================================= [ 72.403734][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 72.420588][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 72.535565][ T5836] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 73.174167][ T5785] Bluetooth: hci0: command tx timeout [ 73.183741][ T5785] Bluetooth: hci1: command tx timeout [ 73.189573][ T5785] Bluetooth: hci3: command tx timeout [ 73.197493][ T5785] Bluetooth: hci2: command tx timeout [ 73.407093][ T27] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 73.496774][ T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!! [ 73.734079][ T5857] loop3: detected capacity change from 0 to 512 [ 73.921076][ T27] usb 3-1: Using ep0 maxpacket: 32 [ 74.492019][ T27] usb 3-1: config 0 has an invalid interface number: 184 but max is 0 [ 74.507565][ T27] usb 3-1: config 0 has no interface number 0 [ 74.513887][ T27] usb 3-1: config 0 interface 184 has no altsetting 0 [ 74.543399][ T27] usb 3-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 74.554538][ T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 74.562842][ T27] usb 3-1: Product: syz [ 74.568023][ T27] usb 3-1: Manufacturer: syz [ 74.573855][ T27] usb 3-1: SerialNumber: syz [ 74.592574][ T27] usb 3-1: config 0 descriptor?? [ 74.606374][ T27] smsc75xx v1.0.0 [ 74.613030][ T5857] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 74.671696][ T5857] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 75.019256][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.096956][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 75.197741][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 75.206165][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 75.267041][ T51] Bluetooth: hci2: command tx timeout [ 75.267115][ T5785] Bluetooth: hci3: command tx timeout [ 75.272591][ T51] Bluetooth: hci1: command tx timeout [ 75.277967][ T5778] Bluetooth: hci0: command tx timeout [ 75.589719][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 75.604699][ T5866] loop1: detected capacity change from 0 to 32768 [ 75.689938][ T5866] Dev loop1 SGI disklabel: csum bad, label corrupted [ 75.754019][ T5875] loop0: detected capacity change from 0 to 16 [ 75.791071][ T5875] erofs: (device loop0): mounted with root inode @ nid 36. [ 75.984406][ T27] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -71 [ 76.018394][ T27] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 76.207630][ T27] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 76.218584][ T27] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71 [ 76.229656][ T27] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset [ 76.251399][ T27] smsc75xx 3-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71 [ 76.276914][ T27] smsc75xx: probe of 3-1:0.184 failed with error -71 [ 76.379573][ T28] audit: type=1326 audit(1772870233.130:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 76.448166][ T27] usb 3-1: USB disconnect, device number 2 [ 77.083038][ T28] audit: type=1326 audit(1772870233.130:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 77.313603][ T28] audit: type=1326 audit(1772870233.130:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 77.356821][ T28] audit: type=1326 audit(1772870233.130:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 77.596961][ T5885] syz.1.9 uses obsolete (PF_INET,SOCK_PACKET) [ 78.617001][ T5884] sched: RT throttling activated [ 78.621010][ T28] audit: type=1326 audit(1772870233.130:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=261 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 78.782537][ T28] audit: type=1326 audit(1772870233.140:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 79.339140][ T28] audit: type=1326 audit(1772870233.140:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 79.620207][ T28] audit: type=1326 audit(1772870233.140:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 80.170254][ T5891] loop2: detected capacity change from 0 to 16 [ 80.185852][ T5891] erofs: Unknown parameter '0x0000000000000003' [ 80.460931][ T28] audit: type=1326 audit(1772870233.140:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 80.781204][ T5891] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 80.915275][ T5764] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 81.544219][ T28] audit: type=1326 audit(1772870233.140:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 81.569920][ T5893] loop3: detected capacity change from 0 to 16 [ 81.614542][ T5897] binder: 5896:5897 unknown command 1074553619 [ 81.641904][ T5893] erofs: (device loop3): mounted with root inode @ nid 36. [ 81.649812][ T5897] binder: 5896:5897 ioctl c0306201 200000000540 returned -22 [ 81.746728][ T28] audit: type=1326 audit(1772870233.140:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 81.778773][ T5897] binder: 5896:5897 unknown command 1074553620 [ 81.784984][ T5897] binder: 5896:5897 ioctl c0306201 200000000640 returned -22 [ 81.940625][ T23] cfg80211: failed to load regulatory.db [ 81.976884][ T28] audit: type=1326 audit(1772870233.140:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 82.082607][ T28] audit: type=1326 audit(1772870233.140:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 82.206791][ T28] audit: type=1326 audit(1772870233.140:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 82.256303][ T28] audit: type=1326 audit(1772870233.140:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 82.301903][ T28] audit: type=1326 audit(1772870233.140:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 82.426872][ T28] audit: type=1326 audit(1772870233.140:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 82.494725][ T28] audit: type=1326 audit(1772870233.140:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 82.701910][ T5905] loop3: detected capacity change from 0 to 256 [ 82.965386][ T5905] FAT-fs (loop3): Directory bread(block 64) failed [ 82.972488][ T5905] FAT-fs (loop3): Directory bread(block 65) failed [ 82.979559][ T5905] FAT-fs (loop3): Directory bread(block 66) failed [ 82.986219][ T5905] FAT-fs (loop3): Directory bread(block 67) failed [ 82.993344][ T5905] FAT-fs (loop3): Directory bread(block 68) failed [ 83.000069][ T5905] FAT-fs (loop3): Directory bread(block 69) failed [ 83.007186][ T5905] FAT-fs (loop3): Directory bread(block 70) failed [ 83.013831][ T5905] FAT-fs (loop3): Directory bread(block 71) failed [ 83.020900][ T5905] FAT-fs (loop3): Directory bread(block 72) failed [ 83.027600][ T5905] FAT-fs (loop3): Directory bread(block 73) failed [ 83.372485][ T5903] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 83.380140][ T5903] IPv6: NLM_F_CREATE should be set when creating new route [ 83.390391][ T28] audit: type=1326 audit(1772870233.140:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5876 comm="syz.0.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 84.665187][ T5920] loop1: detected capacity change from 0 to 1024 [ 84.764362][ T5920] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 85.185500][ T5927] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 85.774227][ T5906] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.782895][ T5906] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.337554][ T5934] loop0: detected capacity change from 0 to 1024 [ 86.397627][ T5934] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 86.429871][ T5934] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 86.544620][ T5906] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 86.570671][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 86.620762][ T5906] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 87.898841][ T28] kauditd_printk_skb: 49 callbacks suppressed [ 87.898855][ T28] audit: type=1326 audit(1772870244.690:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5941 comm="syz.0.26" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x0 [ 88.052445][ T5906] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.065270][ T5906] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.080078][ T5906] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.090270][ T5906] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 88.341388][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 88.651072][ T5953] loop1: detected capacity change from 0 to 256 [ 90.039348][ T28] audit: type=1326 audit(1772870246.800:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5974 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 90.210495][ T28] audit: type=1326 audit(1772870246.800:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5974 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 90.742097][ T28] audit: type=1326 audit(1772870246.860:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5974 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 90.886234][ T28] audit: type=1326 audit(1772870246.860:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5974 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 90.982522][ T28] audit: type=1326 audit(1772870246.860:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5974 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 91.034746][ T28] audit: type=1326 audit(1772870246.860:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5974 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 91.101543][ T28] audit: type=1326 audit(1772870246.860:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5974 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 91.162068][ T28] audit: type=1326 audit(1772870246.860:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5974 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 91.220892][ T28] audit: type=1326 audit(1772870246.860:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5974 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa27a99c799 code=0x7ffc0000 [ 91.638307][ T5986] bridge0: entered promiscuous mode [ 93.342503][ T6012] loop3: detected capacity change from 0 to 1024 [ 93.487140][ T6014] loop0: detected capacity change from 0 to 256 [ 93.653648][ T6014] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 93.664154][ T6014] FAT-fs (loop0): Filesystem has been set read-only [ 93.671525][ T6014] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 93.682218][ T6014] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 93.700756][ T6014] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000001) [ 93.775423][ T28] kauditd_printk_skb: 1 callbacks suppressed [ 93.775458][ T28] audit: type=1800 audit(1772870250.490:81): pid=6014 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.47" name="file1" dev="loop0" ino=1048592 res=0 errno=0 [ 93.936423][ T6012] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 94.031876][ T6023] loop1: detected capacity change from 0 to 1024 [ 94.183406][ T6014] syz.0.47 (6014) used greatest stack depth: 20264 bytes left [ 94.222473][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.266258][ T6023] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 94.361188][ T28] audit: type=1800 audit(1772870251.150:82): pid=6023 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.52" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 94.776830][ T9] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 95.008987][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 95.053861][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 95.080814][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 95.094279][ T9] usb 1-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00 [ 95.133596][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 95.176124][ T9] usb 1-1: config 0 descriptor?? [ 95.824102][ T9] hid-led: probe of 0003:27B8:01ED.0001 failed with error -71 [ 95.864448][ T9] usb 1-1: USB disconnect, device number 2 [ 97.061267][ T6061] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 98.540058][ T6084] loop1: detected capacity change from 0 to 256 [ 98.602155][ T28] audit: type=1804 audit(1772870255.390:83): pid=6084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.74" name="/newroot/23/file0/file0" dev="loop1" ino=1048593 res=1 errno=0 [ 98.799526][ T6087] loop3: detected capacity change from 0 to 1024 [ 99.022127][ T6087] EXT4-fs: Ignoring removed i_version option [ 99.031396][ T6087] EXT4-fs (loop3): Test dummy encryption mode enabled [ 99.067598][ T6087] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 99.290421][ T6099] netlink: 8 bytes leftover after parsing attributes in process `syz.1.78'. [ 99.467861][ T6087] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 99.483367][ T6108] loop1: detected capacity change from 0 to 1024 [ 99.566215][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 99.579852][ T6108] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 99.601804][ T788] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 99.661403][ T28] audit: type=1800 audit(1772870256.450:84): pid=6108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.80" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 99.966703][ T788] usb 3-1: Using ep0 maxpacket: 16 [ 99.986549][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 100.169044][ T788] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 100.186715][ T788] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 100.196581][ T788] usb 3-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28 [ 100.209688][ T788] usb 3-1: config 0 interface 0 has no altsetting 0 [ 100.216327][ T788] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 100.225846][ T788] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 100.337424][ T788] usb 3-1: config 0 descriptor?? [ 101.154936][ T788] hid (null): invalid report_size 2071583022 [ 101.370414][ T9] usb 3-1: USB disconnect, device number 3 [ 101.675509][ T6134] loop0: detected capacity change from 0 to 1024 [ 101.688970][ T6134] EXT4-fs: Ignoring removed i_version option [ 101.701969][ T6136] loop3: detected capacity change from 0 to 1024 [ 101.706975][ T6134] EXT4-fs (loop0): Test dummy encryption mode enabled [ 101.805052][ T6136] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 101.815230][ T6134] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 101.872015][ T28] audit: type=1800 audit(1772870258.650:85): pid=6136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.90" name="bus" dev="loop3" ino=18 res=0 errno=0 [ 102.083497][ T6141] loop1: detected capacity change from 0 to 512 [ 102.137837][ T6141] EXT4-fs: Ignoring removed i_version option [ 102.170579][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.187797][ T6141] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.351544][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.376300][ T6149] loop3: detected capacity change from 0 to 1024 [ 102.408205][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.443291][ T6149] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 102.520604][ T6149] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4045: comm syz.3.93: Allocating blocks 385-513 which overlap fs metadata [ 102.655032][ T6158] Zero length message leads to an empty skb [ 103.411161][ T6148] EXT4-fs (loop3): pa ffff8880785903a0: logic 16, phys. 129, len 24 [ 103.419873][ T6148] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5386: group 0, free 0, pa_free 8 [ 103.499024][ T6169] loop1: detected capacity change from 0 to 1024 [ 103.532754][ T6169] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 103.600080][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 103.663594][ T28] audit: type=1800 audit(1772870260.450:86): pid=6169 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.101" name="bus" dev="loop1" ino=18 res=0 errno=0 [ 103.751285][ T6177] loop2: detected capacity change from 0 to 1024 [ 104.963118][ T6184] loop0: detected capacity change from 0 to 40427 [ 105.134949][ T6184] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x7ffff [ 105.157575][ T6184] F2FS-fs (loop0): invalid crc value [ 105.224544][ T6184] F2FS-fs (loop0): Found nat_bits in checkpoint [ 105.383213][ T6184] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 105.439729][ T6177] EXT4-fs: Ignoring removed i_version option [ 105.641623][ T6177] EXT4-fs (loop2): Test dummy encryption mode enabled [ 105.957149][ T6177] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 106.672118][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 106.995806][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 107.367379][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 107.406772][ T5761] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 107.637632][ T5761] usb 4-1: Using ep0 maxpacket: 32 [ 107.648642][ T5761] usb 4-1: config 0 has an invalid interface number: 184 but max is 0 [ 107.658024][ T5761] usb 4-1: config 0 has no interface number 0 [ 107.664210][ T5761] usb 4-1: config 0 interface 184 has no altsetting 0 [ 107.717495][ T5761] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 107.746938][ T5761] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 107.781113][ T28] audit: type=1326 audit(1772870264.570:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6214 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aea79c799 code=0x7ffc0000 [ 107.797369][ T5761] usb 4-1: Product: syz [ 107.845784][ T5761] usb 4-1: Manufacturer: syz [ 107.858358][ T5761] usb 4-1: SerialNumber: syz [ 107.870749][ T6217] loop2: detected capacity change from 0 to 1024 [ 107.894931][ T28] audit: type=1326 audit(1772870264.570:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6214 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aea79c799 code=0x7ffc0000 [ 107.928431][ T5761] usb 4-1: config 0 descriptor?? [ 107.951155][ T28] audit: type=1326 audit(1772870264.570:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6214 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aea79c799 code=0x7ffc0000 [ 108.066153][ T5761] smsc75xx v1.0.0 [ 108.071640][ T28] audit: type=1326 audit(1772870264.600:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6214 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7f8aea79c799 code=0x7ffc0000 [ 108.105246][ T6222] loop1: detected capacity change from 0 to 16 [ 108.127300][ T6217] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 108.142656][ T6222] erofs: Unknown parameter ';f+|~KG R kIC9h䮴Wl [ 108.142656][ T6222] g Zf-}\' [ 108.166229][ T28] audit: type=1326 audit(1772870264.600:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6214 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aea79c799 code=0x7ffc0000 [ 108.406764][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 108.439388][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 108.506700][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 108.541826][ T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!! [ 108.724472][ T28] audit: type=1326 audit(1772870264.600:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6214 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aea79c799 code=0x7ffc0000 [ 108.767038][ T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!! [ 108.858632][ T28] audit: type=1326 audit(1772870264.600:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6214 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8aea79c799 code=0x7ffc0000 [ 108.863273][ T5774] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.881156][ T28] audit: type=1326 audit(1772870264.600:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6214 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f8aea79c799 code=0x7ffc0000 [ 108.966829][ T28] audit: type=1326 audit(1772870264.600:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6214 comm="syz.1.112" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f8aea79c799 code=0x7ffc0000 [ 108.989153][ T28] audit: type=1800 audit(1772870265.610:96): pid=6217 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.113" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 109.793305][ T5761] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -71 [ 109.916473][ T5761] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 109.930187][ T5761] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 109.941120][ T5761] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71 [ 109.951466][ T5761] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset [ 109.973912][ T5761] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71 [ 110.008359][ T5761] smsc75xx: probe of 4-1:0.184 failed with error -71 [ 110.035234][ T5761] usb 4-1: USB disconnect, device number 2 [ 110.099953][ T6244] loop1: detected capacity change from 0 to 256 [ 110.121470][ T6244] FAT-fs (loop1): Directory bread(block 64) failed [ 110.133348][ T6244] FAT-fs (loop1): Directory bread(block 65) failed [ 110.144884][ T6244] FAT-fs (loop1): Directory bread(block 66) failed [ 110.152204][ T6244] FAT-fs (loop1): Directory bread(block 67) failed [ 110.166089][ T6244] FAT-fs (loop1): Directory bread(block 68) failed [ 110.173277][ T6244] FAT-fs (loop1): Directory bread(block 69) failed [ 110.201963][ T6244] FAT-fs (loop1): Directory bread(block 70) failed [ 110.213802][ T6244] FAT-fs (loop1): Directory bread(block 71) failed [ 110.223462][ T6244] FAT-fs (loop1): Directory bread(block 72) failed [ 110.233581][ T6244] FAT-fs (loop1): Directory bread(block 73) failed [ 110.292560][ T6244] syz.1.121: attempt to access beyond end of device [ 110.292560][ T6244] loop1: rw=2049, sector=1224, nr_sectors = 8 limit=256 [ 110.311705][ T6244] loop2: detected capacity change from 0 to 7 [ 110.325482][ T5762] Dev loop2: unable to read RDB block 7 [ 110.331786][ T5762] loop2: AHDI p1 p2 p3 [ 110.343682][ T6250] syz.1.121: attempt to access beyond end of device [ 110.343682][ T6250] loop1: rw=524288, sector=1192, nr_sectors = 4 limit=256 [ 110.356998][ T5762] loop2: partition table partially beyond EOD, truncated [ 110.365346][ T5762] loop2: p1 start 1601398130 is beyond EOD, truncated [ 110.371879][ T6250] syz.1.121: attempt to access beyond end of device [ 110.371879][ T6250] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 110.380275][ T5762] loop2: p2 start 1702059890 is beyond EOD, truncated [ 110.436591][ T6250] process 'syz.1.121' launched './file1' with NULL argv: empty string added [ 110.445137][ T6244] Dev loop2: unable to read RDB block 7 [ 110.470378][ T6244] loop2: AHDI p1 p2 p3 [ 110.474775][ T6244] loop2: partition table partially beyond EOD, truncated [ 110.482599][ T6244] loop2: p1 start 1601398130 is beyond EOD, truncated [ 110.491678][ T6244] loop2: p2 start 1702059890 is beyond EOD, truncated [ 110.651039][ T6250] syz.1.121: attempt to access beyond end of device [ 110.651039][ T6250] loop1: rw=0, sector=1192, nr_sectors = 4 limit=256 [ 110.665223][ T6256] loop0: detected capacity change from 0 to 1024 [ 110.702283][ T6256] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 111.516960][ T5139] Dev loop2: unable to read RDB block 7 [ 111.523280][ T5139] loop2: AHDI p1 p2 p3 [ 111.535117][ T5139] loop2: partition table partially beyond EOD, truncated [ 111.548362][ T5139] loop2: p1 start 1601398130 is beyond EOD, truncated [ 111.557786][ T5139] loop2: p2 start 1702059890 is beyond EOD, truncated [ 111.574014][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 111.578436][ T6265] loop3: detected capacity change from 0 to 512 [ 111.677923][ T6265] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 111.774992][ T6265] ------------[ cut here ]------------ [ 111.781029][ T6265] EA inode 11 i_nlink=2 [ 111.824781][ T6265] WARNING: CPU: 1 PID: 6265 at fs/ext4/xattr.c:1059 ext4_xattr_inode_update_ref+0x53c/0x590 [ 111.839914][ T6265] Modules linked in: [ 111.843841][ T6265] CPU: 1 PID: 6265 Comm: syz.3.126 Not tainted syzkaller #0 [ 111.851740][ T6265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 111.862296][ T6265] RIP: 0010:ext4_xattr_inode_update_ref+0x53c/0x590 [ 111.869306][ T6265] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 05 ec 98 ff 49 8b 37 48 c7 c7 60 d5 de 8a 89 da e8 44 77 0a ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 ab fe ff ff e8 ce b3 3e 08 [ 111.889433][ T6265] RSP: 0018:ffffc9000bde72e0 EFLAGS: 00010246 [ 111.895538][ T6265] RAX: 49dc7dbdbdccc200 RBX: 0000000000000002 RCX: 0000000000080000 [ 111.903948][ T6265] RDX: ffffc9000cdba000 RSI: 0000000000038fa7 RDI: 0000000000038fa8 [ 111.912490][ T6265] RBP: ffffc9000bde73d0 R08: ffffc9000bde6ee7 R09: 1ffff920017bcddc [ 111.921487][ T6265] R10: dffffc0000000000 R11: fffff520017bcddd R12: dffffc0000000000 [ 111.930143][ T6265] R13: ffff88805d5d5ea8 R14: ffff88805d5d5cb0 R15: ffff88805d5d5d00 [ 111.938216][ T6265] FS: 00007f08afd786c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 111.947264][ T6265] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.953918][ T6265] CR2: 00007fc8069456b8 CR3: 000000002f683000 CR4: 00000000003506e0 [ 111.962004][ T6265] Call Trace: [ 111.965315][ T6265] [ 111.968396][ T6265] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 111.974076][ T6265] ? __ext4_journal_ensure_credits+0x30/0x450 [ 111.980267][ T6265] ext4_xattr_inode_dec_ref_all+0x9a6/0x1040 [ 111.986308][ T6265] ? ext4_xattr_delete_inode+0xd10/0xd10 [ 111.992250][ T6265] ? __ext4_journal_ensure_credits+0x450/0x450 [ 111.998532][ T6265] ext4_xattr_delete_inode+0xb3e/0xd10 [ 112.004049][ T6265] ? up_write+0x1c3/0x410 [ 112.008509][ T6265] ? ext4_expand_extra_isize_ea+0x1e80/0x1e80 [ 112.014651][ T6265] ext4_evict_inode+0xaaf/0xea0 [ 112.019591][ T6265] ? _raw_spin_unlock+0x28/0x40 [ 112.025046][ T6265] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 112.031217][ T6265] ? do_raw_spin_unlock+0x121/0x230 [ 112.036455][ T6265] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 112.042449][ T6265] evict+0x4ca/0x8d0 [ 112.046469][ T6265] ? proc_nr_inodes+0x230/0x230 [ 112.051444][ T6265] ? do_raw_spin_unlock+0x121/0x230 [ 112.056728][ T6265] ? _raw_spin_unlock+0x28/0x40 [ 112.061601][ T6265] ? iput+0x706/0x920 [ 112.065609][ T6265] ext4_orphan_cleanup+0xbec/0x1420 [ 112.070941][ T6265] ? ext4_orphan_del+0xbf0/0xbf0 [ 112.075899][ T6265] ? ext4_register_li_request+0x183/0x940 [ 112.081748][ T6265] ? errseq_check_and_advance+0x66/0x120 [ 112.087503][ T6265] ext4_fill_super+0x5ed0/0x6790 [ 112.092589][ T6265] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 112.099456][ T6265] ? __might_sleep+0xe0/0xe0 [ 112.104604][ T6265] ? read_lock_is_recursive+0x20/0x20 [ 112.110122][ T6265] ? snprintf+0xe9/0x140 [ 112.114423][ T6265] ? down_read_killable+0x340/0x340 [ 112.119715][ T6265] ? setup_bdev_super+0x56b/0x660 [ 112.124774][ T6265] get_tree_bdev+0x3f3/0x520 [ 112.130120][ T6265] ? vfs_parse_fs_string+0x170/0x170 [ 112.135572][ T6265] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 112.142435][ T6265] ? setup_bdev_super+0x660/0x660 [ 112.147893][ T6265] ? apparmor_capable+0x137/0x1a0 [ 112.152952][ T6265] ? bpf_lsm_capable+0x9/0x10 [ 112.158900][ T6265] ? security_capable+0x89/0xb0 [ 112.163803][ T6265] vfs_get_tree+0x8c/0x280 [ 112.168491][ T6265] do_new_mount+0x24b/0xa40 [ 112.173037][ T6265] __se_sys_mount+0x2e7/0x3d0 [ 112.177806][ T6265] ? __x64_sys_mount+0xc0/0xc0 [ 112.182598][ T6265] ? lockdep_hardirqs_on+0x98/0x150 [ 112.187946][ T6265] ? __x64_sys_mount+0x20/0xc0 [ 112.192742][ T6265] do_syscall_64+0x55/0xa0 [ 112.197257][ T6265] ? clear_bhb_loop+0x40/0x90 [ 112.201963][ T6265] ? clear_bhb_loop+0x40/0x90 [ 112.206724][ T6265] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 112.212650][ T6265] RIP: 0033:0x7f08aef9da0a [ 112.217198][ T6265] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 112.237506][ T6265] RSP: 002b:00007f08afd77e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 112.245961][ T6265] RAX: ffffffffffffffda RBX: 00007f08afd77ee0 RCX: 00007f08aef9da0a [ 112.254216][ T6265] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f08afd77ea0 [ 112.262477][ T6265] RBP: 0000200000000180 R08: 00007f08afd77ee0 R09: 0000000000800718 [ 112.270535][ T6265] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0 [ 112.278636][ T6265] R13: 00007f08afd77ea0 R14: 000000000000047f R15: 0000200000000200 [ 112.286694][ T6265] [ 112.289742][ T6265] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 112.297033][ T6265] CPU: 1 PID: 6265 Comm: syz.3.126 Not tainted syzkaller #0 [ 112.304335][ T6265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 112.314411][ T6265] Call Trace: [ 112.317701][ T6265] [ 112.320642][ T6265] dump_stack_lvl+0x18c/0x250 [ 112.325349][ T6265] ? show_regs_print_info+0x20/0x20 [ 112.330574][ T6265] ? load_image+0x400/0x400 [ 112.335114][ T6265] panic+0x2dc/0x730 [ 112.339043][ T6265] ? bpf_jit_dump+0xd0/0xd0 [ 112.343589][ T6265] __warn+0x2e0/0x470 [ 112.347589][ T6265] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 112.353598][ T6265] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 112.359605][ T6265] report_bug+0x2be/0x4f0 [ 112.363956][ T6265] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 112.369961][ T6265] ? ext4_xattr_inode_update_ref+0x53c/0x590 [ 112.376062][ T6265] ? ext4_xattr_inode_update_ref+0x53e/0x590 [ 112.382065][ T6265] handle_bug+0xcf/0x120 [ 112.386334][ T6265] exc_invalid_op+0x1a/0x50 [ 112.390865][ T6265] asm_exc_invalid_op+0x1a/0x20 [ 112.395818][ T6265] RIP: 0010:ext4_xattr_inode_update_ref+0x53c/0x590 [ 112.402414][ T6265] Code: 8d 7e 50 4c 89 f8 48 c1 e8 03 42 80 3c 20 00 74 08 4c 89 ff e8 05 ec 98 ff 49 8b 37 48 c7 c7 60 d5 de 8a 89 da e8 44 77 0a ff <0f> 0b 4c 8b 74 24 08 4c 8b 7c 24 10 e9 ab fe ff ff e8 ce b3 3e 08 [ 112.422118][ T6265] RSP: 0018:ffffc9000bde72e0 EFLAGS: 00010246 [ 112.428267][ T6265] RAX: 49dc7dbdbdccc200 RBX: 0000000000000002 RCX: 0000000000080000 [ 112.436232][ T6265] RDX: ffffc9000cdba000 RSI: 0000000000038fa7 RDI: 0000000000038fa8 [ 112.444196][ T6265] RBP: ffffc9000bde73d0 R08: ffffc9000bde6ee7 R09: 1ffff920017bcddc [ 112.452162][ T6265] R10: dffffc0000000000 R11: fffff520017bcddd R12: dffffc0000000000 [ 112.460125][ T6265] R13: ffff88805d5d5ea8 R14: ffff88805d5d5cb0 R15: ffff88805d5d5d00 [ 112.468105][ T6265] ? ext4_xattr_list_entries+0x3d0/0x3d0 [ 112.473741][ T6265] ? __ext4_journal_ensure_credits+0x30/0x450 [ 112.479804][ T6265] ext4_xattr_inode_dec_ref_all+0x9a6/0x1040 [ 112.485792][ T6265] ? ext4_xattr_delete_inode+0xd10/0xd10 [ 112.491446][ T6265] ? __ext4_journal_ensure_credits+0x450/0x450 [ 112.497619][ T6265] ext4_xattr_delete_inode+0xb3e/0xd10 [ 112.503093][ T6265] ? up_write+0x1c3/0x410 [ 112.507420][ T6265] ? ext4_expand_extra_isize_ea+0x1e80/0x1e80 [ 112.513493][ T6265] ext4_evict_inode+0xaaf/0xea0 [ 112.518339][ T6265] ? _raw_spin_unlock+0x28/0x40 [ 112.523190][ T6265] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 112.529078][ T6265] ? do_raw_spin_unlock+0x121/0x230 [ 112.534281][ T6265] ? ext4_inode_is_fast_symlink+0x390/0x390 [ 112.540173][ T6265] evict+0x4ca/0x8d0 [ 112.544066][ T6265] ? proc_nr_inodes+0x230/0x230 [ 112.548910][ T6265] ? do_raw_spin_unlock+0x121/0x230 [ 112.554106][ T6265] ? _raw_spin_unlock+0x28/0x40 [ 112.558945][ T6265] ? iput+0x706/0x920 [ 112.562921][ T6265] ext4_orphan_cleanup+0xbec/0x1420 [ 112.568116][ T6265] ? ext4_orphan_del+0xbf0/0xbf0 [ 112.573043][ T6265] ? ext4_register_li_request+0x183/0x940 [ 112.578759][ T6265] ? errseq_check_and_advance+0x66/0x120 [ 112.584390][ T6265] ext4_fill_super+0x5ed0/0x6790 [ 112.589340][ T6265] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 112.595570][ T6265] ? __might_sleep+0xe0/0xe0 [ 112.600161][ T6265] ? read_lock_is_recursive+0x20/0x20 [ 112.605519][ T6265] ? snprintf+0xe9/0x140 [ 112.609764][ T6265] ? down_read_killable+0x340/0x340 [ 112.614957][ T6265] ? setup_bdev_super+0x56b/0x660 [ 112.619971][ T6265] get_tree_bdev+0x3f3/0x520 [ 112.624552][ T6265] ? vfs_parse_fs_string+0x170/0x170 [ 112.629830][ T6265] ? ext4_parse_test_dummy_encryption+0xb0/0xb0 [ 112.636064][ T6265] ? setup_bdev_super+0x660/0x660 [ 112.641090][ T6265] ? apparmor_capable+0x137/0x1a0 [ 112.646115][ T6265] ? bpf_lsm_capable+0x9/0x10 [ 112.650790][ T6265] ? security_capable+0x89/0xb0 [ 112.655636][ T6265] vfs_get_tree+0x8c/0x280 [ 112.660046][ T6265] do_new_mount+0x24b/0xa40 [ 112.664570][ T6265] __se_sys_mount+0x2e7/0x3d0 [ 112.669240][ T6265] ? __x64_sys_mount+0xc0/0xc0 [ 112.674518][ T6265] ? lockdep_hardirqs_on+0x98/0x150 [ 112.679708][ T6265] ? __x64_sys_mount+0x20/0xc0 [ 112.684462][ T6265] do_syscall_64+0x55/0xa0 [ 112.688871][ T6265] ? clear_bhb_loop+0x40/0x90 [ 112.693538][ T6265] ? clear_bhb_loop+0x40/0x90 [ 112.698254][ T6265] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 112.704140][ T6265] RIP: 0033:0x7f08aef9da0a [ 112.708549][ T6265] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 112.728411][ T6265] RSP: 002b:00007f08afd77e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 112.736820][ T6265] RAX: ffffffffffffffda RBX: 00007f08afd77ee0 RCX: 00007f08aef9da0a [ 112.745222][ T6265] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007f08afd77ea0 [ 112.753190][ T6265] RBP: 0000200000000180 R08: 00007f08afd77ee0 R09: 0000000000800718 [ 112.761158][ T6265] R10: 0000000000800718 R11: 0000000000000246 R12: 00002000000001c0 [ 112.769319][ T6265] R13: 00007f08afd77ea0 R14: 000000000000047f R15: 0000200000000200 [ 112.777361][ T6265] [ 112.780738][ T6265] Kernel Offset: disabled [ 112.785103][ T6265] Rebooting in 86400 seconds..