last executing test programs: 1.857364921s ago: executing program 2 (id=750): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400ffd9b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10) r2 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r2, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c) 1.832686751s ago: executing program 2 (id=751): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='rss_stat\x00', r1}, 0x10) syz_clone(0x42000000, 0x0, 0x0, 0x0, 0x0, 0x0) 1.750834382s ago: executing program 2 (id=756): r0 = socket$inet6_udp(0xa, 0x2, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3deff000) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='kfree\x00', r1}, 0x18) sendmmsg$inet(r0, &(0x7f0000002f80)=[{{&(0x7f0000000080)={0x2, 0x4e23, @remote}, 0x10, 0x0}}, {{&(0x7f0000000000)={0x2, 0x4e23, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000040)=ANY=[], 0x18}}], 0x2, 0x0) 1.337469059s ago: executing program 2 (id=772): r0 = socket$inet_sctp(0x2, 0x5, 0x84) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x4e23, @rand_addr=0x64010102}]}, &(0x7f00000002c0)=0x10) getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f00000004c0)=0x27) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000280)={r2, @in6={{0xa, 0x4e22, 0x4, @empty, 0x1}}, 0x6}, &(0x7f0000000040)=0x90) 1.161818582s ago: executing program 1 (id=780): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15) write$P9_RLERRORu(r1, &(0x7f00000023c0)=ANY=[@ANYBLOB="5300000007000046009d40edce82cd28", @ANYRESHEX=r0], 0x53) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6b}}) 1.066675594s ago: executing program 1 (id=787): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0, 0xffffffffffffffff}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2, 0x0, 0x10000002}, 0x18) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x10, 0x16, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48) 1.031781824s ago: executing program 1 (id=789): mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0) r0 = creat(&(0x7f0000000080)='./file0/file1\x00', 0x90) write$cgroup_type(r0, &(0x7f00000009c0), 0xd4ba0ff) unlink(&(0x7f0000000100)='./file0/file1\x00') link(&(0x7f00000000c0)='./file0/file1\x00', &(0x7f0000000180)='./file1\x00') 930.570436ms ago: executing program 4 (id=796): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15) write$P9_RLERRORu(r1, &(0x7f00000023c0)=ANY=[@ANYBLOB="5300000007000046009d40edce82cd28", @ANYRESHEX=r0], 0x53) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6b}}) 835.161357ms ago: executing program 4 (id=798): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_DEBUG_GET(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000580)={0x2c, r2, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}]}]}, 0x2c}}, 0x40) 717.364179ms ago: executing program 4 (id=800): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000ff"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10) syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000180)={{0x12, 0x1, 0x201, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x8, 0x0, 0x7, [{{0x9, 0x4, 0x0, 0xc, 0x3, 0x2, 0x6, 0x0, 0x8, {{0x5}, {0x5, 0x24, 0x0, 0xed33}, {0xd, 0x24, 0xf, 0x1, 0x1a7, 0x7fff, 0x6}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x40, 0xf, 0x0, 0xe}}, {{0x9, 0x5, 0x3, 0x2, 0x400, 0x0, 0xff, 0xaf}}}}}]}}]}}, 0x0) 641.966889ms ago: executing program 1 (id=803): bpf$PROG_LOAD(0x5, &(0x7f0000000b80)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x32) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000840)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x5, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0}, 0x10) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x900, 0x1a4) preadv(r1, &(0x7f0000000bc0)=[{&(0x7f0000000400)=""/127, 0x7f}], 0x1, 0x0, 0x5) 609.69797ms ago: executing program 1 (id=804): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0) ppoll(0x0, 0x0, 0x0, &(0x7f0000000180)={[0x4]}, 0x8) 566.86593ms ago: executing program 1 (id=807): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000180)=[@in6={0xa, 0x4e23, 0x37e, @dev={0xfe, 0x80, '\x00', 0x41}, 0xf}], 0x1c) setsockopt$inet_sctp6_SCTP_RECVRCVINFO(r0, 0x84, 0x20, &(0x7f0000001a80)=0x5, 0x4) setsockopt(r0, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8) recvmsg(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) 494.317252ms ago: executing program 0 (id=811): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10) syz_emit_ethernet(0x6a, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x33, 0x0, @private, @broadcast}, {0x0, 0x0, 0x48, 0x0, @wg=@cookie={0x3, 0x0, "abb99279fd89da307583e654afb42af2dc91b30b60e83d50", "66eb64f2e8a3742962ae5b2fb03f495701288cf603c82fce6302900c99be5aab"}}}}}}, 0x0) 467.642522ms ago: executing program 0 (id=813): perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x37, 0x1, 0x0, 0x0, 0x0, 0x7, 0x510, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, @perf_bp={0x0, 0xd}, 0x4c58, 0x10000, 0x0, 0x1, 0x8, 0x20002, 0xb, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000280)={'\x00', 0x7e, 0x1000, 0x5c8, 0x80000003, 0x6}) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) 467.493392ms ago: executing program 2 (id=815): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002720000850000004300000095"], 0x0, 0x0, 0xffffffffffffff93, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='scsi_dispatch_cmd_start\x00', r1}, 0x10) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) 438.261913ms ago: executing program 2 (id=817): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000001240)='./bus\x00', 0x4010, &(0x7f0000000a40)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x11ee, &(0x7f0000002480)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0) write$cgroup_int(r0, &(0x7f0000000000)=0x10000000000000, 0xffffff6a) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x42, 0x0) pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000) 292.984855ms ago: executing program 0 (id=819): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000280), 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1}}) read(r0, &(0x7f00000002c0)=""/200, 0x39) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r0, 0x54a2) 292.347365ms ago: executing program 3 (id=829): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000013000000850000008600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x18) setrlimit(0x9, &(0x7f0000000000)) io_setup(0x2004, &(0x7f0000000680)) 193.768156ms ago: executing program 0 (id=820): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=@base={0xa, 0x4, 0xfff, 0x7, 0x88, 0xffffffffffffffff, 0x1}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000e41621eb70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000940)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_kthread_work_queue_work\x00', r1}, 0x10) socketpair(0x11, 0xa, 0x0, &(0x7f0000001080)) 193.653546ms ago: executing program 3 (id=821): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000060000000000000000850000000f000000c5000000a0ef010095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000200)='kmem_cache_free\x00', r0}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$TIPC_CMD_RESET_LINK_STATS(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x30, r2, 0x1, 0x0, 0x0, {{}, {}, {0x5, 0x14, 'broadcast-link\x00'}}}, 0x30}}, 0x0) 157.350737ms ago: executing program 3 (id=822): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0) r0 = gettid() r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) kcmp(r1, r0, 0xde6c8001d5ed5ea6, 0xffffffffffffffff, 0xffffffffffffffff) 142.373807ms ago: executing program 4 (id=823): r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) fcntl$setlease(r0, 0x400, 0x0) open(&(0x7f0000000000)='./file1\x00', 0x10b942, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) fcntl$setlease(r1, 0x400, 0x0) 116.580668ms ago: executing program 3 (id=824): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000015c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10) set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8) syz_clone(0x4021400, 0x0, 0x9000, 0x0, 0x0, 0x0) 116.307988ms ago: executing program 4 (id=825): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000a50000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10) r1 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f<\x8f\xc1\x99\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_Z\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!A\x05\xe4\x8f\x9e0\xf8/T\x18\xf7\xa1\x9f\xde1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xad\b\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc00xffffffffffffffff}, &(0x7f0000000180), &(0x7f0000000580)}, 0x33) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000001240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10) 72.073638ms ago: executing program 4 (id=826): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000340)='syzkaller\x00'}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17) mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2) 64.522279ms ago: executing program 0 (id=827): r0 = creat(&(0x7f0000000340)='./file0\x00', 0x0) close(r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff}) write$binfmt_elf64(r1, &(0x7f0000000000)=ANY=[], 0x10132) mount$9p_fd(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000040), 0x208000, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 30.201519ms ago: executing program 3 (id=828): bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0b000000080000000c0000000300000001"], 0x48) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x124}}, 0x0) 0s ago: executing program 3 (id=830): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x18) r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.224' (ED25519) to the list of known hosts. [ 33.912454][ T29] audit: type=1400 audit(1750994597.404:62): avc: denied { mounton } for pid=3297 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 33.913622][ T3297] cgroup: Unknown subsys name 'net' [ 33.935211][ T29] audit: type=1400 audit(1750994597.404:63): avc: denied { mount } for pid=3297 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 33.962708][ T29] audit: type=1400 audit(1750994597.434:64): avc: denied { unmount } for pid=3297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 34.119444][ T3297] cgroup: Unknown subsys name 'cpuset' [ 34.125738][ T3297] cgroup: Unknown subsys name 'rlimit' [ 34.256659][ T29] audit: type=1400 audit(1750994597.744:65): avc: denied { setattr } for pid=3297 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=142 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 34.279964][ T29] audit: type=1400 audit(1750994597.744:66): avc: denied { create } for pid=3297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 34.300543][ T29] audit: type=1400 audit(1750994597.744:67): avc: denied { write } for pid=3297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 34.321368][ T29] audit: type=1400 audit(1750994597.744:68): avc: denied { read } for pid=3297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 34.330865][ T3300] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 34.341827][ T29] audit: type=1400 audit(1750994597.754:69): avc: denied { mounton } for pid=3297 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 34.375234][ T29] audit: type=1400 audit(1750994597.754:70): avc: denied { mount } for pid=3297 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 Setting up swapspace version 1, size = 127995904 bytes [ 34.398567][ T29] audit: type=1400 audit(1750994597.844:71): avc: denied { relabelto } for pid=3300 comm="mkswap" name="swap-file" dev="sda1" ino=2025 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 34.433691][ T3297] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 35.553935][ T3308] chnl_net:caif_netlink_parms(): no params data found [ 35.592012][ T3313] chnl_net:caif_netlink_parms(): no params data found [ 35.607724][ T3315] chnl_net:caif_netlink_parms(): no params data found [ 35.658116][ T3308] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.665317][ T3308] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.672549][ T3308] bridge_slave_0: entered allmulticast mode [ 35.679136][ T3308] bridge_slave_0: entered promiscuous mode [ 35.702728][ T3308] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.709982][ T3308] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.717193][ T3308] bridge_slave_1: entered allmulticast mode [ 35.724761][ T3308] bridge_slave_1: entered promiscuous mode [ 35.775586][ T3308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.790127][ T3313] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.797211][ T3313] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.804466][ T3313] bridge_slave_0: entered allmulticast mode [ 35.811073][ T3313] bridge_slave_0: entered promiscuous mode [ 35.817724][ T3307] chnl_net:caif_netlink_parms(): no params data found [ 35.831781][ T3308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 35.843109][ T3315] bridge0: port 1(bridge_slave_0) entered blocking state [ 35.850223][ T3315] bridge0: port 1(bridge_slave_0) entered disabled state [ 35.857429][ T3315] bridge_slave_0: entered allmulticast mode [ 35.864149][ T3315] bridge_slave_0: entered promiscuous mode [ 35.870817][ T3313] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.878020][ T3313] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.885294][ T3313] bridge_slave_1: entered allmulticast mode [ 35.891737][ T3313] bridge_slave_1: entered promiscuous mode [ 35.912278][ T3315] bridge0: port 2(bridge_slave_1) entered blocking state [ 35.919555][ T3315] bridge0: port 2(bridge_slave_1) entered disabled state [ 35.926695][ T3315] bridge_slave_1: entered allmulticast mode [ 35.933331][ T3315] bridge_slave_1: entered promiscuous mode [ 35.959386][ T3311] chnl_net:caif_netlink_parms(): no params data found [ 35.969077][ T3308] team0: Port device team_slave_0 added [ 35.985920][ T3313] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 35.998726][ T3308] team0: Port device team_slave_1 added [ 36.010068][ T3315] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.023575][ T3315] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.033781][ T3313] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.069545][ T3308] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.076530][ T3308] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.102603][ T3308] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.128261][ T3308] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.135454][ T3308] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.161477][ T3308] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.177566][ T3315] team0: Port device team_slave_0 added [ 36.184183][ T3313] team0: Port device team_slave_0 added [ 36.190932][ T3313] team0: Port device team_slave_1 added [ 36.207115][ T3315] team0: Port device team_slave_1 added [ 36.233590][ T3307] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.240741][ T3307] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.248071][ T3307] bridge_slave_0: entered allmulticast mode [ 36.254556][ T3307] bridge_slave_0: entered promiscuous mode [ 36.271623][ T3311] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.279300][ T3311] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.286432][ T3311] bridge_slave_0: entered allmulticast mode [ 36.293153][ T3311] bridge_slave_0: entered promiscuous mode [ 36.299881][ T3311] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.306997][ T3311] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.314455][ T3311] bridge_slave_1: entered allmulticast mode [ 36.321163][ T3311] bridge_slave_1: entered promiscuous mode [ 36.327329][ T3307] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.334471][ T3307] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.341784][ T3307] bridge_slave_1: entered allmulticast mode [ 36.348240][ T3307] bridge_slave_1: entered promiscuous mode [ 36.354958][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.361986][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.387957][ T3315] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.399090][ T3313] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.406074][ T3313] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.432164][ T3313] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.468072][ T3315] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.475164][ T3315] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.501182][ T3315] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.512360][ T3313] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.519354][ T3313] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.545347][ T3313] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.558269][ T3308] hsr_slave_0: entered promiscuous mode [ 36.564297][ T3308] hsr_slave_1: entered promiscuous mode [ 36.571672][ T3311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.582273][ T3311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.613697][ T3307] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 36.624686][ T3307] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 36.657243][ T3311] team0: Port device team_slave_0 added [ 36.664034][ T3311] team0: Port device team_slave_1 added [ 36.694350][ T3307] team0: Port device team_slave_0 added [ 36.707005][ T3313] hsr_slave_0: entered promiscuous mode [ 36.713189][ T3313] hsr_slave_1: entered promiscuous mode [ 36.719046][ T3313] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 36.726625][ T3313] Cannot create hsr debugfs directory [ 36.740080][ T3311] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.747136][ T3311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.773195][ T3311] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.784800][ T3307] team0: Port device team_slave_1 added [ 36.793637][ T3315] hsr_slave_0: entered promiscuous mode [ 36.799773][ T3315] hsr_slave_1: entered promiscuous mode [ 36.805565][ T3315] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 36.813268][ T3315] Cannot create hsr debugfs directory [ 36.827038][ T3311] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.834173][ T3311] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.860187][ T3311] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 36.887241][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 36.894239][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.920273][ T3307] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 36.953928][ T3307] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 36.961017][ T3307] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 36.987135][ T3307] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 37.042544][ T3311] hsr_slave_0: entered promiscuous mode [ 37.048852][ T3311] hsr_slave_1: entered promiscuous mode [ 37.054785][ T3311] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 37.062404][ T3311] Cannot create hsr debugfs directory [ 37.095206][ T3307] hsr_slave_0: entered promiscuous mode [ 37.101260][ T3307] hsr_slave_1: entered promiscuous mode [ 37.107264][ T3307] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 37.114895][ T3307] Cannot create hsr debugfs directory [ 37.219696][ T3308] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 37.240617][ T3308] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 37.260652][ T3308] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 37.269520][ T3308] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 37.293614][ T3313] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 37.302338][ T3313] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 37.311788][ T3313] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 37.327414][ T3313] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 37.355835][ T3315] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 37.365227][ T3315] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 37.374515][ T3315] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 37.394553][ T3315] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 37.414069][ T3307] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 37.425531][ T3307] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 37.438508][ T3307] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 37.448579][ T3307] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 37.482513][ T3308] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.517430][ T3308] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.528442][ T3311] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 37.537672][ T3311] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 37.552241][ T3311] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 37.560972][ T3311] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 37.570796][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.577954][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.590504][ T1715] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.597595][ T1715] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.646411][ T3307] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.660568][ T3313] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.673540][ T3307] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.683391][ T3315] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.702185][ T295] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.709400][ T295] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.726390][ T295] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.733588][ T295] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.744410][ T3315] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.755068][ T3313] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.767036][ T295] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.774257][ T295] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.784043][ T295] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.791148][ T295] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.809345][ T3308] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 37.817856][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.824961][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.834191][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 37.841374][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 37.867503][ T3311] 8021q: adding VLAN 0 to HW filter on device bond0 [ 37.903398][ T3311] 8021q: adding VLAN 0 to HW filter on device team0 [ 37.921857][ T3315] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 37.941249][ T3307] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 37.954052][ T52] bridge0: port 1(bridge_slave_0) entered blocking state [ 37.961265][ T52] bridge0: port 1(bridge_slave_0) entered forwarding state [ 37.993305][ T52] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.000491][ T52] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.064241][ T3308] veth0_vlan: entered promiscuous mode [ 38.085339][ T3308] veth1_vlan: entered promiscuous mode [ 38.108466][ T3307] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.125642][ T3308] veth0_macvtap: entered promiscuous mode [ 38.134717][ T3308] veth1_macvtap: entered promiscuous mode [ 38.147429][ T3315] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.160301][ T3313] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.182052][ T3308] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.196009][ T3308] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.218027][ T3311] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 38.228060][ T3308] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.236992][ T3308] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.245806][ T3308] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.254624][ T3308] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.386903][ T3313] veth0_vlan: entered promiscuous mode [ 38.394076][ T3308] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 38.402034][ T3313] veth1_vlan: entered promiscuous mode [ 38.425740][ T3315] veth0_vlan: entered promiscuous mode [ 38.433565][ T3315] veth1_vlan: entered promiscuous mode [ 38.450496][ T3307] veth0_vlan: entered promiscuous mode [ 38.477120][ T3307] veth1_vlan: entered promiscuous mode [ 38.489220][ T3313] veth0_macvtap: entered promiscuous mode [ 38.496981][ T3313] veth1_macvtap: entered promiscuous mode [ 38.507713][ T3315] veth0_macvtap: entered promiscuous mode [ 38.545378][ T3315] veth1_macvtap: entered promiscuous mode [ 38.555352][ T3307] veth0_macvtap: entered promiscuous mode [ 38.572234][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.581986][ T3307] veth1_macvtap: entered promiscuous mode [ 38.602549][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.616185][ T3313] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.624697][ T3311] veth0_vlan: entered promiscuous mode [ 38.632461][ T3315] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.641617][ T3311] veth1_vlan: entered promiscuous mode [ 38.652796][ T3313] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.661645][ T3313] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.670576][ T3313] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.679342][ T3313] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.692119][ T3315] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.701064][ T3315] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.709909][ T3315] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.718647][ T3315] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.738078][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.756925][ T3311] veth0_macvtap: entered promiscuous mode [ 38.770854][ T3307] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.792251][ T3311] veth1_macvtap: entered promiscuous mode [ 38.801234][ T3307] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.810220][ T3307] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.819129][ T3307] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.827929][ T3307] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.870397][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 38.903611][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 38.928458][ T3311] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.937523][ T3311] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.946361][ T3311] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.955121][ T3311] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 38.973750][ T29] kauditd_printk_skb: 38 callbacks suppressed [ 38.973770][ T29] audit: type=1400 audit(1750994602.454:110): avc: denied { append } for pid=3492 comm="syz.3.4" name="001" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 39.023618][ T29] audit: type=1400 audit(1750994602.514:111): avc: denied { open } for pid=3496 comm="syz.0.12" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 39.046149][ T29] audit: type=1400 audit(1750994602.514:112): avc: denied { kernel } for pid=3496 comm="syz.0.12" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 39.065513][ T29] audit: type=1400 audit(1750994602.514:113): avc: denied { tracepoint } for pid=3496 comm="syz.0.12" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 39.121953][ T3505] netlink: 24 bytes leftover after parsing attributes in process `syz.1.14'. [ 39.122288][ T29] audit: type=1400 audit(1750994602.574:114): avc: denied { append } for pid=3499 comm="syz.3.13" name="sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 39.154374][ T29] audit: type=1400 audit(1750994602.574:115): avc: denied { open } for pid=3499 comm="syz.3.13" path="/dev/sg0" dev="devtmpfs" ino=135 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 39.163805][ T3505] netlink: 48 bytes leftover after parsing attributes in process `syz.1.14'. [ 39.178148][ T29] audit: type=1400 audit(1750994602.574:116): avc: denied { ioctl } for pid=3499 comm="syz.3.13" path="/dev/sg0" dev="devtmpfs" ino=135 ioctlcmd=0x1273 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:scsi_generic_device_t tclass=chr_file permissive=1 [ 39.212344][ T29] audit: type=1400 audit(1750994602.594:117): avc: denied { create } for pid=3503 comm="syz.1.14" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 39.232994][ T29] audit: type=1400 audit(1750994602.614:118): avc: denied { write } for pid=3503 comm="syz.1.14" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 39.253248][ T29] audit: type=1400 audit(1750994602.614:119): avc: denied { read } for pid=3503 comm="syz.1.14" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 39.286459][ T3497] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12'. [ 39.295385][ T3497] netlink: 28 bytes leftover after parsing attributes in process `syz.0.12'. [ 39.304388][ T3497] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12'. [ 39.369168][ T3497] netlink: 28 bytes leftover after parsing attributes in process `syz.0.12'. [ 39.378039][ T3497] netlink: 'syz.0.12': attribute type 6 has an invalid length. [ 39.683930][ T3543] syz.4.30 uses obsolete (PF_INET,SOCK_PACKET) [ 39.823452][ T3563] netlink: 'syz.0.40': attribute type 1 has an invalid length. [ 40.006837][ T3583] loop0: detected capacity change from 0 to 1764 [ 40.297262][ T3619] binfmt_misc: register: failed to install interpreter file ./file2 [ 40.367381][ T3625] sd 0:0:1:0: device reset [ 40.395564][ T3629] loop4: detected capacity change from 0 to 512 [ 40.403359][ T3627] netlink: 176 bytes leftover after parsing attributes in process `syz.2.70'. [ 40.415219][ T3629] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 40.472316][ T3634] loop0: detected capacity change from 0 to 512 [ 40.482826][ T3634] ======================================================= [ 40.482826][ T3634] WARNING: The mand mount option has been deprecated and [ 40.482826][ T3634] and is ignored by this kernel. Remove the mand [ 40.482826][ T3634] option from the mount to silence this warning. [ 40.482826][ T3634] ======================================================= [ 40.625791][ T3644] x_tables: ip6_tables: tcpmss match: only valid for protocol 6 [ 40.640641][ T3647] loop4: detected capacity change from 0 to 512 [ 40.666655][ T3647] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 40.710105][ T3647] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 40.762703][ T3647] syz.4.80 (3647) used greatest stack depth: 10848 bytes left [ 40.779469][ T3663] rdma_op ffff88811944f980 conn xmit_rdma 0000000000000000 [ 40.824975][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 40.884169][ T3678] netlink: 'syz.2.91': attribute type 3 has an invalid length. [ 40.932799][ T3683] rdma_op ffff88811a30c980 conn xmit_rdma 0000000000000000 [ 41.051956][ T3700] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 41.060760][ T3700] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 41.069581][ T3700] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 41.078323][ T3700] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 41.210855][ T3710] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 41.221301][ T3710] SELinux: failed to load policy [ 41.233781][ T3724] loop0: detected capacity change from 0 to 1024 [ 41.244172][ T3724] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 41.255431][ T3724] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 41.288353][ T3724] JBD2: no valid journal superblock found [ 41.294205][ T3724] EXT4-fs (loop0): Could not load journal inode [ 41.414506][ T3750] SELinux: Context system_u:object_r:fsadm_exec_t:s0 is not valid (left unmapped). [ 41.546215][ T3766] loop1: detected capacity change from 0 to 512 [ 41.569682][ T3766] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 41.593263][ T3766] EXT4-fs error (device loop1): ext4_orphan_get:1393: inode #15: comm syz.1.127: casefold flag without casefold feature [ 41.618830][ T3766] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.127: couldn't read orphan inode 15 (err -117) [ 41.632705][ T3766] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 41.661409][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 41.931741][ T3804] netlink: 16 bytes leftover after parsing attributes in process `syz.1.144'. [ 42.075163][ T3818] Illegal XDP return value 434299264 on prog (id 105) dev syz_tun, expect packet loss! [ 42.105940][ T3820] netlink: 'syz.1.153': attribute type 1 has an invalid length. [ 42.176949][ T3828] @: renamed from vlan0 (while UP) [ 42.619076][ T3878] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=3878 comm=syz.0.177 [ 42.631688][ T3878] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=3878 comm=syz.0.177 [ 42.749841][ T3880] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 42.761542][ T3880] xt_SECMARK: invalid security context 'system_u:object_r:dbusd_etc_t:s0' [ 42.950577][ T3893] syzkaller1: entered promiscuous mode [ 42.956224][ T3893] syzkaller1: entered allmulticast mode [ 43.084576][ T3902] loop0: detected capacity change from 0 to 512 [ 43.099626][ T3903] syz.3.188 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 43.129824][ T3902] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 43.142984][ T3902] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 43.192241][ T3902] EXT4-fs (loop0): orphan cleanup on readonly fs [ 43.200600][ T3902] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 43.200732][ T3902] EXT4-fs (loop0): 1 truncate cleaned up [ 43.201083][ T3902] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 43.294204][ T3921] netlink: 4 bytes leftover after parsing attributes in process `syz.3.196'. [ 43.310488][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 43.384520][ T3921] Zero length message leads to an empty skb [ 43.419150][ T3931] rtc_cmos 00:00: Alarms can be up to one day in the future [ 43.457334][ T10] rtc_cmos 00:00: Alarms can be up to one day in the future [ 43.465305][ T10] rtc_cmos 00:00: Alarms can be up to one day in the future [ 43.473078][ T10] rtc_cmos 00:00: Alarms can be up to one day in the future [ 43.480797][ T10] rtc_cmos 00:00: Alarms can be up to one day in the future [ 43.488199][ T10] rtc rtc0: __rtc_set_alarm: err=-22 [ 43.547339][ T3943] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 43.672716][ T3963] program syz.3.211 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 43.751444][ T3971] netlink: 8 bytes leftover after parsing attributes in process `syz.1.213'. [ 43.877077][ T3983] loop3: detected capacity change from 0 to 2048 [ 43.925309][ T3983] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 43.975619][ T3983] EXT4-fs error (device loop3): ext4_find_extent:939: inode #2: comm syz.3.219: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 44.019925][ T3983] EXT4-fs (loop3): Remounting filesystem read-only [ 44.065948][ T3983] syz.3.219 (3983) used greatest stack depth: 10600 bytes left [ 44.093532][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.124952][ T3998] loop0: detected capacity change from 0 to 1024 [ 44.181631][ T3998] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 44.191865][ T29] kauditd_printk_skb: 296 callbacks suppressed [ 44.191881][ T29] audit: type=1400 audit(1750994607.694:416): avc: denied { setopt } for pid=4002 comm="syz.3.226" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 44.221659][ T3998] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 44.252921][ T3998] EXT4-fs error (device loop0): ext4_get_journal_inode:5796: inode #32: comm syz.0.225: iget: special inode unallocated [ 44.263640][ T29] audit: type=1326 audit(1750994607.754:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d3bee929 code=0x7ffc0000 [ 44.281821][ T3998] EXT4-fs (loop0): Remounting filesystem read-only [ 44.295420][ T3998] EXT4-fs (loop0): no journal found [ 44.300853][ T3998] EXT4-fs (loop0): can't get journal size [ 44.330057][ T29] audit: type=1326 audit(1750994607.784:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d3bee929 code=0x7ffc0000 [ 44.336169][ T3998] EXT4-fs (loop0): filesystem is read-only [ 44.353381][ T29] audit: type=1326 audit(1750994607.784:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83d3bee929 code=0x7ffc0000 [ 44.359829][ T3998] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 44.382595][ T29] audit: type=1326 audit(1750994607.784:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d3bee929 code=0x7ffc0000 [ 44.418276][ T29] audit: type=1326 audit(1750994607.784:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d3bee929 code=0x7ffc0000 [ 44.441642][ T29] audit: type=1326 audit(1750994607.784:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83d3bee929 code=0x7ffc0000 [ 44.465504][ T29] audit: type=1326 audit(1750994607.794:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d3bee929 code=0x7ffc0000 [ 44.489570][ T29] audit: type=1326 audit(1750994607.794:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83d3bee929 code=0x7ffc0000 [ 44.512932][ T29] audit: type=1326 audit(1750994607.794:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4006 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83d3bee929 code=0x7ffc0000 [ 44.561901][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 44.790262][ T4039] rdma_op ffff8881009d0180 conn xmit_rdma 0000000000000000 [ 44.892927][ T4049] PF_CAN: dropped non conform CAN XL skbuff: dev type 65534, len 1 [ 45.000013][ T4062] netlink: 12 bytes leftover after parsing attributes in process `syz.1.253'. [ 45.064007][ T4070] SELinux: Context system_u:object_r:crond_var_run_t:s0 is not valid (left unmapped). [ 45.246892][ T4104] loop3: detected capacity change from 0 to 512 [ 45.266900][ T4104] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 45.325236][ T4101] loop4: detected capacity change from 0 to 8192 [ 45.373488][ T4104] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 45.386286][ T4104] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 45.400815][ T4119] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=4119 comm=syz.1.275 [ 45.413342][ T4119] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=4119 comm=syz.1.275 [ 45.511287][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.552489][ T4140] netlink: 8 bytes leftover after parsing attributes in process `syz.4.283'. [ 45.568113][ T4142] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 45.579682][ T4140] netlink: 8 bytes leftover after parsing attributes in process `syz.4.283'. [ 45.599571][ T4144] netlink: 64535 bytes leftover after parsing attributes in process `syz.1.287'. [ 45.727470][ T4170] loop0: detected capacity change from 0 to 1024 [ 45.744357][ T4170] EXT4-fs: Ignoring removed nomblk_io_submit option [ 45.773782][ T4170] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 45.806723][ T4184] loop2: detected capacity change from 0 to 512 [ 45.816066][ T4184] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 45.834523][ T4187] capability: warning: `syz.4.306' uses deprecated v2 capabilities in a way that may be insecure [ 45.847865][ T4184] EXT4-fs (loop2): 1 truncate cleaned up [ 45.848142][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 45.855199][ T4184] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 45.897428][ T4184] EXT4-fs error (device loop2): ext4_generic_delete_entry:2668: inode #2: block 13: comm syz.2.303: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 45.919983][ T4184] EXT4-fs error (device loop2) in ext4_delete_entry:2739: Corrupt filesystem [ 45.929523][ T4184] EXT4-fs warning (device loop2): ext4_rename_delete:3726: inode #2: comm syz.2.303: Deleting old file: nlink 5, error=-117 [ 45.992749][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.340354][ T4209] process 'syz.0.315' launched '/dev/fd/5' with NULL argv: empty string added [ 46.572462][ T4231] loop0: detected capacity change from 0 to 1024 [ 46.591754][ T4231] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 46.610128][ T4231] ext4 filesystem being mounted at /63/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 46.627197][ T4231] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.325: bg 0: block 393: padding at end of block bitmap is not set [ 46.643505][ T4231] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 117 [ 46.656206][ T4231] EXT4-fs (loop0): This should not happen!! Data will be lost [ 46.656206][ T4231] [ 46.710855][ T4231] syz.0.325 (4231) used greatest stack depth: 9600 bytes left [ 46.721990][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 46.793098][ T4253] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 46.801958][ T4253] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 46.820437][ T4257] loop1: detected capacity change from 0 to 512 [ 46.827687][ T4257] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 46.836813][ T4257] EXT4-fs (loop1): Couldn't mount because of unsupported optional features (800) [ 46.850788][ T4257] netlink: 4 bytes leftover after parsing attributes in process `syz.1.336'. [ 46.859665][ T4257] netlink: 4 bytes leftover after parsing attributes in process `syz.1.336'. [ 46.868588][ T4257] netlink: 4 bytes leftover after parsing attributes in process `syz.1.336'. [ 46.889643][ T4257] netlink: 4 bytes leftover after parsing attributes in process `syz.1.336'. [ 46.898507][ T4257] netlink: 4 bytes leftover after parsing attributes in process `syz.1.336'. [ 46.907696][ T4257] netlink: 4 bytes leftover after parsing attributes in process `syz.1.336'. [ 46.953226][ T4263] capability: warning: `syz.1.337' uses 32-bit capabilities (legacy support in use) [ 46.996717][ T4267] SELinux: Context system_u:object_r:memory_device_t:s0 is not valid (left unmapped). [ 47.035006][ T4275] program syz.4.343 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 47.067883][ T4279] netlink: 'syz.1.344': attribute type 21 has an invalid length. [ 47.095596][ T4282] 9pnet: p9_errstr2errno: server reported unknown error ‌@يخ‚ح(0x0000000000000003 [ 47.145981][ T4290] SET target dimension over the limit! [ 47.970330][ T4381] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4381 comm=syz.3.392 [ 48.335119][ T4406] loop3: detected capacity change from 0 to 128 [ 48.351674][ T4406] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 48.392320][ T4406] ext4 filesystem being mounted at /68/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 48.441667][ T3313] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 48.488187][ T4361] syz.4.383 invoked oom-killer: gfp_mask=0x402d02(GFP_NOIO|__GFP_HIGHMEM|__GFP_ZERO|__GFP_NOWARN|__GFP_ACCOUNT), order=0, oom_score_adj=1000 [ 48.502815][ T4361] CPU: 0 UID: 0 PID: 4361 Comm: syz.4.383 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) [ 48.502850][ T4361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 48.502866][ T4361] Call Trace: [ 48.502872][ T4361] [ 48.502879][ T4361] __dump_stack+0x1d/0x30 [ 48.502900][ T4361] dump_stack_lvl+0xe8/0x140 [ 48.502968][ T4361] dump_stack+0x15/0x1b [ 48.502987][ T4361] dump_header+0x81/0x220 [ 48.503032][ T4361] oom_kill_process+0x334/0x3f0 [ 48.503064][ T4361] out_of_memory+0x979/0xb80 [ 48.503143][ T4361] try_charge_memcg+0x5e6/0x9e0 [ 48.503264][ T4361] obj_cgroup_charge_pages+0xa6/0x150 [ 48.503298][ T4361] __memcg_kmem_charge_page+0x9f/0x170 [ 48.503335][ T4361] __alloc_frozen_pages_noprof+0x188/0x360 [ 48.503393][ T4361] alloc_pages_mpol+0xb3/0x250 [ 48.503433][ T4361] alloc_pages_noprof+0x90/0x130 [ 48.503547][ T4361] __vmalloc_node_range_noprof+0x6f2/0xe00 [ 48.503686][ T4361] __kvmalloc_node_noprof+0x30f/0x4e0 [ 48.503725][ T4361] ? ip_set_alloc+0x1f/0x30 [ 48.503785][ T4361] ? ip_set_alloc+0x1f/0x30 [ 48.503865][ T4361] ? __kmalloc_cache_noprof+0x189/0x320 [ 48.503896][ T4361] ip_set_alloc+0x1f/0x30 [ 48.503930][ T4361] hash_netiface_create+0x282/0x740 [ 48.503972][ T4361] ? __pfx_hash_netiface_create+0x10/0x10 [ 48.504032][ T4361] ip_set_create+0x3c9/0x960 [ 48.504078][ T4361] ? __nla_parse+0x40/0x60 [ 48.504148][ T4361] nfnetlink_rcv_msg+0x4c6/0x590 [ 48.504256][ T4361] ? selinux_capable+0x1f9/0x270 [ 48.504298][ T4361] netlink_rcv_skb+0x120/0x220 [ 48.504337][ T4361] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 48.504379][ T4361] nfnetlink_rcv+0x16b/0x1690 [ 48.504405][ T4361] ? __kfree_skb+0x109/0x150 [ 48.504439][ T4361] ? nlmon_xmit+0x4f/0x60 [ 48.504463][ T4361] ? consume_skb+0x49/0x150 [ 48.504528][ T4361] ? nlmon_xmit+0x4f/0x60 [ 48.504555][ T4361] ? dev_hard_start_xmit+0x3b0/0x3e0 [ 48.504600][ T4361] ? __dev_queue_xmit+0x11c0/0x1fb0 [ 48.504680][ T4361] ? __dev_queue_xmit+0x182/0x1fb0 [ 48.504725][ T4361] ? ref_tracker_free+0x37d/0x3e0 [ 48.504771][ T4361] ? __netlink_deliver_tap+0x4dc/0x500 [ 48.504892][ T4361] netlink_unicast+0x5a1/0x670 [ 48.504927][ T4361] netlink_sendmsg+0x58b/0x6b0 [ 48.505020][ T4361] ? __pfx_netlink_sendmsg+0x10/0x10 [ 48.505044][ T4361] __sock_sendmsg+0x142/0x180 [ 48.505074][ T4361] ____sys_sendmsg+0x31e/0x4e0 [ 48.505120][ T4361] ___sys_sendmsg+0x17b/0x1d0 [ 48.505242][ T4361] __x64_sys_sendmsg+0xd4/0x160 [ 48.505290][ T4361] x64_sys_call+0x2999/0x2fb0 [ 48.505350][ T4361] do_syscall_64+0xd2/0x200 [ 48.505373][ T4361] ? arch_exit_to_user_mode_prepare+0x27/0x60 [ 48.505406][ T4361] ? clear_bhb_loop+0x40/0x90 [ 48.505453][ T4361] ? clear_bhb_loop+0x40/0x90 [ 48.505479][ T4361] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 48.505507][ T4361] RIP: 0033:0x7fd783cae929 [ 48.505536][ T4361] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 48.505559][ T4361] RSP: 002b:00007fd782317038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 48.505588][ T4361] RAX: ffffffffffffffda RBX: 00007fd783ed5fa0 RCX: 00007fd783cae929 [ 48.505604][ T4361] RDX: 0000000000000800 RSI: 0000200000000040 RDI: 0000000000000004 [ 48.505677][ T4361] RBP: 00007fd783d30b39 R08: 0000000000000000 R09: 0000000000000000 [ 48.505692][ T4361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 48.505707][ T4361] R13: 0000000000000000 R14: 00007fd783ed5fa0 R15: 00007ffdd8676a68 [ 48.505731][ T4361] [ 48.505739][ T4361] memory: usage 307200kB, limit 307200kB, failcnt 106 [ 48.860250][ T4361] memory+swap: usage 307200kB, limit 9007199254740988kB, failcnt 0 [ 48.868220][ T4361] kmem: usage 306924kB, limit 9007199254740988kB, failcnt 0 [ 48.875572][ T4361] Memory cgroup stats for /syz4: [ 48.875860][ T4361] cache 65536 [ 48.884333][ T4361] rss 200704 [ 48.887606][ T4361] shmem 0 [ 48.890671][ T4361] mapped_file 65536 [ 48.894491][ T4361] dirty 28672 [ 48.897852][ T4361] writeback 0 [ 48.901207][ T4361] workingset_refault_anon 0 [ 48.905795][ T4361] workingset_refault_file 0 [ 48.910352][ T4361] swap 0 [ 48.913220][ T4361] swapcached 0 [ 48.916637][ T4361] pgpgin 4313 [ 48.920048][ T4361] pgpgout 4248 [ 48.923442][ T4361] pgfault 8972 [ 48.926844][ T4361] pgmajfault 3 [ 48.930434][ T4361] inactive_anon 196608 [ 48.934510][ T4361] active_anon 4096 [ 48.938234][ T4361] inactive_file 0 [ 48.941974][ T4361] active_file 65536 [ 48.945960][ T4361] unevictable 0 [ 48.949458][ T4361] hierarchical_memory_limit 314572800 [ 48.954840][ T4361] hierarchical_memsw_limit 9223372036854771712 [ 48.961062][ T4361] total_cache 65536 [ 48.964891][ T4361] total_rss 200704 [ 48.968635][ T4361] total_shmem 0 [ 48.972173][ T4361] total_mapped_file 65536 [ 48.976544][ T4361] total_dirty 28672 [ 48.980398][ T4361] total_writeback 0 [ 48.984220][ T4361] total_workingset_refault_anon 0 [ 48.989402][ T4361] total_workingset_refault_file 0 [ 48.994474][ T4361] total_swap 0 [ 48.997938][ T4361] total_swapcached 0 [ 49.001898][ T4361] total_pgpgin 4313 [ 49.005723][ T4361] total_pgpgout 4248 [ 49.009666][ T4361] total_pgfault 8972 [ 49.013577][ T4361] total_pgmajfault 3 [ 49.017523][ T4361] total_inactive_anon 196608 [ 49.022187][ T4361] total_active_anon 4096 [ 49.026442][ T4361] total_inactive_file 0 [ 49.030699][ T4361] total_active_file 65536 [ 49.035031][ T4361] total_unevictable 0 [ 49.039424][ T4361] oom-kill:constraint=CONSTRAINT_MEMCG,nodemask=(null),cpuset=/,mems_allowed=0,oom_memcg=/syz4,task_memcg=/syz4,task=syz.4.383,pid=4360,uid=0 [ 49.054103][ T4361] Memory cgroup out of memory: Killed process 4361 (syz.4.383) total-vm:95668kB, anon-rss:1064kB, file-rss:22052kB, shmem-rss:0kB, UID:0 pgtables:124kB oom_score_adj:1000 [ 49.188495][ T4446] loop1: detected capacity change from 0 to 1024 [ 49.206550][ T4446] EXT4-fs: Ignoring removed orlov option [ 49.212649][ T4446] EXT4-fs: Ignoring removed nomblk_io_submit option [ 49.237323][ T4446] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 49.327296][ T29] kauditd_printk_skb: 204 callbacks suppressed [ 49.327314][ T29] audit: type=1326 audit(1750994612.814:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4460 comm="syz.0.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 49.344007][ T4361] syz.4.383 (4361) used greatest stack depth: 7768 bytes left [ 49.364812][ T29] audit: type=1326 audit(1750994612.854:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4460 comm="syz.0.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 49.388232][ T29] audit: type=1326 audit(1750994612.854:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4460 comm="syz.0.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 49.411565][ T29] audit: type=1326 audit(1750994612.854:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4460 comm="syz.0.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 49.435124][ T29] audit: type=1326 audit(1750994612.854:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4460 comm="syz.0.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 49.458628][ T29] audit: type=1326 audit(1750994612.854:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4460 comm="syz.0.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 49.481963][ T29] audit: type=1326 audit(1750994612.854:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4460 comm="syz.0.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 49.505302][ T29] audit: type=1326 audit(1750994612.854:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4460 comm="syz.0.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 49.522846][ T3308] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 49.528581][ T29] audit: type=1326 audit(1750994612.854:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4460 comm="syz.0.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=4 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 49.560635][ T29] audit: type=1326 audit(1750994612.854:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4460 comm="syz.0.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 49.703105][ T4488] netlink: 'syz.3.442': attribute type 4 has an invalid length. [ 49.986452][ T4529] IPv6: Can't replace route, no match found [ 50.138047][ T4549] loop2: detected capacity change from 0 to 512 [ 50.147258][ T4549] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 50.172921][ T4549] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.191445][ T4549] ext4 filesystem being mounted at /121/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 50.252266][ T3307] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.308991][ T4578] netdevsim netdevsim2: Direct firmware load for ./file0 failed with error -2 [ 50.324401][ T4582] loop3: detected capacity change from 0 to 1024 [ 50.355974][ T4582] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 50.369002][ T4582] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 50.384379][ T4590] __nla_validate_parse: 12 callbacks suppressed [ 50.384395][ T4590] netlink: 12 bytes leftover after parsing attributes in process `syz.2.489'. [ 50.484208][ T4601] loop0: detected capacity change from 0 to 512 [ 50.505033][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 50.517001][ T4601] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.494: corrupted inode contents [ 50.530126][ T4601] EXT4-fs error (device loop0): ext4_dirty_inode:6459: inode #16: comm syz.0.494: mark_inode_dirty error [ 50.543027][ T4601] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.494: corrupted inode contents [ 50.557874][ T4601] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #16: comm syz.0.494: mark_inode_dirty error [ 50.579005][ T4601] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.494: corrupted inode contents [ 50.597513][ T4601] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 50.606784][ T4601] EXT4-fs error (device loop0): ext4_do_update_inode:5568: inode #16: comm syz.0.494: corrupted inode contents [ 50.619532][ T4601] EXT4-fs error (device loop0): ext4_truncate:4597: inode #16: comm syz.0.494: mark_inode_dirty error [ 50.634485][ T4601] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 50.654075][ T4601] EXT4-fs (loop0): 1 truncate cleaned up [ 50.660722][ T4601] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 50.678195][ T31] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u8:1: Failed to release dquot type 1 [ 50.685562][ T4601] ext4 filesystem being mounted at /95/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 50.896864][ T4644] netlink: 'syz.2.513': attribute type 1 has an invalid length. [ 50.910219][ T4644] bond1: entered promiscuous mode [ 50.915466][ T4644] 8021q: adding VLAN 0 to HW filter on device bond1 [ 50.933358][ T4644] 8021q: adding VLAN 0 to HW filter on device bond2 [ 50.942239][ T4644] bond1: (slave bond2): making interface the new active one [ 50.949778][ T4644] bond2: entered promiscuous mode [ 50.955744][ T4644] bond1: (slave bond2): Enslaving as an active interface with an up link [ 51.050001][ C0] hrtimer: interrupt took 25023 ns [ 51.331450][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 51.394494][ T4660] netlink: 28 bytes leftover after parsing attributes in process `syz.0.520'. [ 51.403576][ T4660] netlink: 'syz.0.520': attribute type 7 has an invalid length. [ 51.411344][ T4660] netlink: 'syz.0.520': attribute type 8 has an invalid length. [ 51.419027][ T4660] netlink: 4 bytes leftover after parsing attributes in process `syz.0.520'. [ 51.526187][ T4670] netlink: 24 bytes leftover after parsing attributes in process `syz.0.525'. [ 51.535429][ T4670] netlink: 48 bytes leftover after parsing attributes in process `syz.0.525'. [ 51.566540][ T4672] netlink: 12 bytes leftover after parsing attributes in process `syz.0.526'. [ 51.878655][ T4690] loop4: detected capacity change from 0 to 8192 [ 52.534689][ T4744] loop3: detected capacity change from 0 to 512 [ 52.547197][ T4744] EXT4-fs: Ignoring removed nomblk_io_submit option [ 52.556199][ T4744] EXT4-fs (loop3): failed to initialize system zone (-117) [ 52.564146][ T4744] EXT4-fs (loop3): mount failed [ 52.869776][ T4781] loop0: detected capacity change from 0 to 512 [ 52.889556][ T4781] EXT4-fs: Ignoring removed nomblk_io_submit option [ 52.926844][ T4781] EXT4-fs (loop0): failed to initialize system zone (-117) [ 52.951059][ T4781] EXT4-fs (loop0): mount failed [ 52.984530][ T4794] netlink: 16 bytes leftover after parsing attributes in process `syz.1.585'. [ 53.107990][ T4819] netlink: 'syz.2.594': attribute type 1 has an invalid length. [ 53.157077][ T4827] loop2: detected capacity change from 0 to 128 [ 53.169566][ T4827] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 53.193725][ T4827] ext4 filesystem being mounted at /150/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 53.254657][ T4840] netlink: 24 bytes leftover after parsing attributes in process `syz.0.606'. [ 53.256394][ T3307] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 53.297164][ T4846] binfmt_misc: register: failed to install interpreter file ./file2 [ 53.331724][ T4852] loop2: detected capacity change from 0 to 512 [ 53.338473][ T4852] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22 [ 53.451346][ T4872] netlink: 'syz.4.621': attribute type 1 has an invalid length. [ 53.489263][ T4876] netlink: 24 bytes leftover after parsing attributes in process `syz.3.624'. [ 53.502862][ T4878] loop0: detected capacity change from 0 to 128 [ 53.514513][ T4878] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 53.549269][ T4878] ext4 filesystem being mounted at /129/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 53.596758][ T3315] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 53.608576][ T4896] netlink: 64 bytes leftover after parsing attributes in process `syz.2.633'. [ 54.423040][ T29] kauditd_printk_skb: 358 callbacks suppressed [ 54.423058][ T29] audit: type=1326 audit(1750994617.921:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4906 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 54.452850][ T29] audit: type=1326 audit(1750994617.921:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4906 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 54.486844][ T4914] 9pnet_fd: Insufficient options for proto=fd [ 54.566431][ T4923] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 54.574815][ T29] audit: type=1326 audit(1750994617.921:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4906 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 54.575233][ T4923] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 54.575265][ T4923] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 54.598512][ T29] audit: type=1326 audit(1750994617.921:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4906 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 54.607232][ T4923] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 54.648577][ T29] audit: type=1326 audit(1750994617.921:1001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4906 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 54.672107][ T29] audit: type=1326 audit(1750994617.921:1002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4906 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 54.695584][ T29] audit: type=1326 audit(1750994617.921:1003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4906 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 54.719086][ T29] audit: type=1326 audit(1750994617.921:1004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4906 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 54.742500][ T29] audit: type=1326 audit(1750994617.921:1005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4906 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 54.765877][ T29] audit: type=1326 audit(1750994617.981:1006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4906 comm="syz.0.647" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f869127e929 code=0x7ffc0000 [ 54.859080][ T4933] loop4: detected capacity change from 0 to 128 [ 54.890740][ T4933] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 54.926356][ T4933] ext4 filesystem being mounted at /104/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 54.995848][ T3311] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 55.200229][ T4983] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=4983 comm=syz.2.672 [ 55.858731][ T5058] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=5058 comm=syz.3.708 [ 55.871217][ T5058] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=5058 comm=syz.3.708 [ 56.041493][ T5073] loop0: detected capacity change from 0 to 512 [ 56.051362][ T5073] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 56.075938][ T5073] EXT4-fs (loop0): 1 truncate cleaned up [ 56.082245][ T5073] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 56.107235][ T5073] EXT4-fs (loop0): shut down requested (1) [ 56.125585][ T3315] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.386485][ T5106] loop4: detected capacity change from 0 to 512 [ 56.395956][ T5106] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 56.409065][ T5106] EXT4-fs (loop4): 1 truncate cleaned up [ 56.415489][ T5106] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 56.432053][ T5106] EXT4-fs (loop4): shut down requested (1) [ 56.447924][ T3311] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 56.605928][ T5124] loop3: detected capacity change from 0 to 512 [ 56.617232][ T5124] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 56.628307][ T5124] EXT4-fs (loop3): orphan cleanup on readonly fs [ 56.635765][ T5124] EXT4-fs (loop3): 1 truncate cleaned up [ 56.642041][ T5124] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 56.669178][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 57.011393][ T5164] __nla_validate_parse: 6 callbacks suppressed [ 57.011412][ T5164] netlink: 12 bytes leftover after parsing attributes in process `syz.3.758'. [ 57.026688][ T5164] netlink: 12 bytes leftover after parsing attributes in process `syz.3.758'. [ 57.068131][ T5166] netlink: 4 bytes leftover after parsing attributes in process `syz.1.770'. [ 57.226262][ T5182] program syz.4.764 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 57.278736][ T5184] rtc_cmos 00:00: Alarms can be up to one day in the future [ 57.455258][ T3417] rtc_cmos 00:00: Alarms can be up to one day in the future [ 57.463264][ T3417] rtc_cmos 00:00: Alarms can be up to one day in the future [ 57.471074][ T3417] rtc_cmos 00:00: Alarms can be up to one day in the future [ 57.478774][ T3417] rtc_cmos 00:00: Alarms can be up to one day in the future [ 57.486205][ T3417] rtc rtc0: __rtc_set_alarm: err=-22 [ 57.540505][ T5216] 9pnet: p9_errstr2errno: server reported unknown error ‌@يخ‚ح(0x0000000000000003 [ 57.551725][ T5214] SET target dimension over the limit! [ 57.610754][ T5226] program syz.0.783 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 57.724080][ T5245] SET target dimension over the limit! [ 57.757661][ T5249] loop0: detected capacity change from 0 to 512 [ 57.770964][ T5252] 9pnet: p9_errstr2errno: server reported unknown error ‌@يخ‚ح(0x0000000000000003 [ 57.782123][ T5249] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 57.791297][ T5249] EXT4-fs (loop0): Couldn't mount because of unsupported optional features (800) [ 57.811139][ T5249] netlink: 4 bytes leftover after parsing attributes in process `syz.0.795'. [ 57.820095][ T5249] netlink: 4 bytes leftover after parsing attributes in process `syz.0.795'. [ 57.838698][ T5249] netlink: 4 bytes leftover after parsing attributes in process `syz.0.795'. [ 57.869306][ T5249] netlink: 4 bytes leftover after parsing attributes in process `syz.0.795'. [ 57.878485][ T5249] netlink: 4 bytes leftover after parsing attributes in process `syz.0.795'. [ 57.917043][ T5249] netlink: 4 bytes leftover after parsing attributes in process `syz.0.795'. [ 57.950386][ T5249] netlink: 4 bytes leftover after parsing attributes in process `syz.0.795'. [ 57.992805][ T5265] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 58.011572][ T5265] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 58.057399][ T5269] program syz.3.802 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 58.148099][ T5285] SET target dimension over the limit! [ 58.259530][ T5300] loop3: detected capacity change from 0 to 1024 [ 58.273091][ T5300] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 58.290490][ T5300] ext4 filesystem being mounted at /173/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 58.307284][ T5300] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.816: bg 0: block 393: padding at end of block bitmap is not set [ 58.321751][ T5304] loop2: detected capacity change from 0 to 8192 [ 58.323544][ T5300] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 117 [ 58.340795][ T5300] EXT4-fs (loop3): This should not happen!! Data will be lost [ 58.340795][ T5300] [ 58.367337][ T3313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 58.769330][ T37] ================================================================== [ 58.777481][ T37] BUG: KCSAN: data-race in copy_folio_from_iter_atomic / fat16_ent_put [ 58.786029][ T37] [ 58.788377][ T37] write to 0xffff888121edb97c of 2 bytes by task 5304 on cpu 1: [ 58.796030][ T37] fat16_ent_put+0x28/0x60 [ 58.800489][ T37] fat_ent_write+0x6c/0xe0 [ 58.804935][ T37] fat_chain_add+0x15b/0x3f0 [ 58.809562][ T37] fat_get_block+0x46c/0x5e0 [ 58.814192][ T37] __block_write_begin_int+0x400/0xf90 [ 58.819710][ T37] cont_write_begin+0x5fc/0x970 [ 58.824601][ T37] fat_write_begin+0x4f/0xe0 [ 58.829244][ T37] generic_perform_write+0x184/0x490 [ 58.834574][ T37] __generic_file_write_iter+0x9e/0x120 [ 58.840159][ T37] generic_file_write_iter+0x8d/0x2f0 [ 58.845574][ T37] vfs_write+0x4a0/0x8e0 [ 58.849867][ T37] ksys_write+0xda/0x1a0 [ 58.854161][ T37] __x64_sys_write+0x40/0x50 [ 58.858804][ T37] x64_sys_call+0x2cdd/0x2fb0 [ 58.863512][ T37] do_syscall_64+0xd2/0x200 [ 58.868054][ T37] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 58.873994][ T37] [ 58.876351][ T37] read to 0xffff888121edb800 of 512 bytes by task 37 on cpu 0: [ 58.883925][ T37] copy_folio_from_iter_atomic+0x7fc/0x1170 [ 58.889864][ T37] generic_perform_write+0x2c2/0x490 [ 58.895197][ T37] shmem_file_write_iter+0xc5/0xf0 [ 58.900353][ T37] lo_rw_aio+0x6ea/0x7a0 [ 58.904639][ T37] loop_process_work+0x52d/0xa60 [ 58.909618][ T37] loop_workfn+0x31/0x40 [ 58.913909][ T37] process_scheduled_works+0x4ce/0x9d0 [ 58.919425][ T37] worker_thread+0x582/0x770 [ 58.924061][ T37] kthread+0x486/0x510 [ 58.928172][ T37] ret_from_fork+0xda/0x150 [ 58.932709][ T37] ret_from_fork_asm+0x1a/0x30 [ 58.937504][ T37] [ 58.939847][ T37] Reported by Kernel Concurrency Sanitizer on: [ 58.946018][ T37] CPU: 0 UID: 0 PID: 37 Comm: kworker/u8:2 Not tainted 6.16.0-rc3-syzkaller-00121-gf02769e7f272 #0 PREEMPT(voluntary) [ 58.958548][ T37] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 58.968646][ T37] Workqueue: loop2 loop_workfn [ 58.973549][ T37] ==================================================================